Bug 746379

Summary: messages show HTML, rather than rendering it
Product: [Other] RHQ Project Reporter: John Mazzitelli <mazz>
Component: Core UIAssignee: Heiko W. Rupp <hrupp>
Status: CLOSED DUPLICATE QA Contact: Mike Foley <mfoley>
Severity: high Docs Contact:
Priority: high    
Version: 4.2CC: hrupp
Target Milestone: ---   
Target Release: ---   
Hardware: Unspecified   
OS: Unspecified   
Whiteboard:
Fixed In Version: Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2011-10-15 08:15:06 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:

Description John Mazzitelli 2011-10-15 06:07:01 UTC 
I saw a message in the message bar after creating a group, something like:

"you created group <a href="#Group/10000">My Group</a>"

Looks like we are dumping the HTML directly, not rendering it. We should take out the links or render the HTML properly.

Need to go through all our code to see where we log HTML messages to see if this happens elsewhere (it probably does).
Comment 1 Heiko W. Rupp 2011-10-15 08:07:36 UTC 
This is "fallout" from the sanitizing of Messages ( BZ 742614 ), where the html gets escaped in order to prevent attacks that way.

And yes I agree, this needs to be fixed - especially as the table below immediately shows the new group.
Comment 2 Heiko W. Rupp 2011-10-15 08:15:06 UTC 

*** This bug has been marked as a duplicate of bug 744770 ***