Added more safe/escape tags for Django 1.x

- Legacy-Id: 1708

ietf/templates/announcements/nomcom.html

@@ -20,7 +20,7 @@
   {% for ann in regime.announcements %}
     <tr>
       <td>{{ ann.announced_date|date:"Y-M-d" }}</td>
-      <td style="max-width:50%"><a href="/ann/nomcom/{{ ann.announcement_id  }}/">{{ ann.subject }}</a></td>
+      <td style="max-width:50%"><a href="/ann/nomcom/{{ ann.announcement_id  }}/">{{ ann.subject|escape }}</a></td>
       <td>{{ ann.announced_to }}</td>
     <tr>
   {% endfor %}

ietf/templates/liaisons/liaisondetail_detail.html

@@ -39,18 +39,18 @@ a:hover {
   <tr>
   <td bgcolor="#efefef" width="25%">From: </td><td width="75%"><pre>{{ object.from_body|escape }} (<a href="mailto:{{ object.from_email|fix_ampersands }}">{{ object.person|escape }}</a>)</pre></td></tr>
   <tr>
-  <td bgcolor="#efefef">To: </td><td><pre>{{ object.to_body|escape }} ({{ object.to_poc|parse_email_list }})</pre></td></tr>
+  <td bgcolor="#efefef">To: </td><td><pre>{{ object.to_body|escape }} ({{ object.to_poc|parse_email_list|safe }})</pre></td></tr>
   <tr>
-  <td bgcolor="#efefef">Cc:</td><td><pre>{{ object.cc1|parse_email_list|make_one_per_line }}</pre></td></tr>
+  <td bgcolor="#efefef">Cc:</td><td><pre>{{ object.cc1|parse_email_list|make_one_per_line|safe }}</pre></td></tr>
   <tr>
   <td bgcolor="#efefef">Response Contact:</td>
   <td>
-<pre>{{ object.response_contact|parse_email_list|make_one_per_line }}</pre>
+<pre>{{ object.response_contact|parse_email_list|make_one_per_line|safe }}</pre>
   </td></tr>
   <tr>
   <td bgcolor="#efefef">Technical Contact:</td>
   <td>
-<pre>{{ object.technical_contact|parse_email_list|make_one_per_line }}</pre></td>
+<pre>{{ object.technical_contact|parse_email_list|make_one_per_line|safe }}</pre></td>
   </tr>
   <tr>
   <td bgcolor="#efefef">Purpose:</td><td><pre>{% if object.purpose_text %}{{ object.purpose_text }}{% else %}{{ object.purpose }}{% endif %}</pre></td></tr>

ietf/templates/liaisons/liaisondetail_list.html

@@ -10,25 +10,25 @@
 {% for liaison in object_list %}
 <tr>
 <td>{{ liaison.submitted_date|date:"F Y" }}</td>
-<td>{{ liaison.from_body }}</td>
+<td>{{ liaison.from_body|escape }}</td>
 <td>
 {% if liaison.by_secretariat %}
   {% if liaison.submitter_email %}
-    <a href="mailto:{{ liaison.submitter_email}}">{{ liaison.submitter_name }}</a>
+    <a href="mailto:{{ liaison.submitter_email}}">{{ liaison.submitter_name|escape }}</a>
   {% else %}
-    {{ liaison.submitter_name }}
+    {{ liaison.submitter_name|escape }}
   {% endif %}
 {% else %}
-  {{ liaison.to_body }}
+  {{ liaison.to_body|escape }}
 {% endif %}
 </td>
 <td>
 {% if liaison.by_secretariat %}
   {% for file in liaison.uploads_set.all %}
-    <a href="https://datatracker.ietf.org/documents/LIAISON/file{{ file.file_id }}{{ file.file_extension }}">{{ file.file_title }}</a><br>
+    <a href="https://datatracker.ietf.org/documents/LIAISON/file{{ file.file_id }}{{ file.file_extension }}">{{ file.file_title|escape }}</a><br>
   {% endfor %}
 {% else %}
-  <a href="{{ liaison.detail_id }}/">{{ liaison.title }}</a>
+  <a href="{{ liaison.detail_id }}/">{{ liaison.title|escape }}</a>
 {% endif %}
 </td>
 </tr>

ietf/templates/meeting/list_group.html

@@ -7,7 +7,7 @@
 {% if wg.agenda_file %}<a href="http://www.ietf.org/proceedings/{{ wg.agenda_file }}">Agenda</a>{% else %}<span style="background:#ff8888;padding:0 2px;">No agenda received</span> {% endif %}<br/>
 {% if wg.minute_file %} <a href="http://www.ietf.org/proceedings/{{ wg.minute_file }}">Minutes</a>{% else %}No minutes received{% endif %}<br/>
 {% for slide in wg.slides %}
-<a href="http://www.ietf.org/proceedings/{{ slide.file_loc }}">{{ slide.slide_name }}</a><br/>
+<a href="http://www.ietf.org/proceedings/{{ slide.file_loc }}">{{ slide.slide_name|escape }}</a><br/>
 {% endfor %}
 </td></tr>
 </table>