In the logout link, urlencode the continue url so that ampersands, etc

don't break encapsulation. In the logout controller, don't run the url through url::redirect because that uses url::site(). Just set the Location header directly. This fixes ticket #483.
author: Bharat Mediratta <bharat@menalto.com> 2009-07-21 13:02:20 -0700
committer: Bharat Mediratta <bharat@menalto.com> 2009-07-21 13:02:20 -0700
commit: 80f48b084af874fea52ed29f06a1337954b137bf (patch)
tree: b20fd20d0aa8dca12503814a6defa110d350a441 /modules/user/views
parent: f83db99d39cc65b212f894c7e4ed66a52625f3c8 (diff)
1 files changed, 1 insertions, 1 deletions
diff --git a/modules/user/views/login.html.php b/modules/user/views/login.html.php
index 42bff4da..10ed31b2 100644
--- a/modules/user/views/login.html.php
+++ b/modules/user/views/login.html.php
@@ -15,7 +15,7 @@
       p::clean($user->display_name()) . '</a>')) ?>
   </li>
   <li>
-    <a href="<?= url::site("logout?csrf=$csrf&amp;continue=" . url::current(true)) ?>"
+    <a href="<?= url::site("logout?csrf=$csrf&amp;continue=" . urlencode(url::current(true))) ?>"
        id="gLogoutLink"><?= t("Logout") ?></a>
   </li>
   <? endif ?>
author	Bharat Mediratta <bharat@menalto.com>	2009-07-21 13:02:20 -0700
committer	Bharat Mediratta <bharat@menalto.com>	2009-07-21 13:02:20 -0700
commit	80f48b084af874fea52ed29f06a1337954b137bf (patch)
tree	b20fd20d0aa8dca12503814a6defa110d350a441 /modules/user/views
parent	f83db99d39cc65b212f894c7e4ed66a52625f3c8 (diff)