We read every piece of feedback, and take your input very seriously.
To see all available qualifiers, see our documentation.
There was an error while loading. Please reload this page.
1 parent 53541da commit 6ab97e9Copy full SHA for 6ab97e9
app/models/wiki_file.rb
@@ -15,10 +15,12 @@ def self.find_by_file_name(file_name)
15
def validate
16
if file_name
17
if ! WikiFile.is_valid?(file_name)
18
- errors.add("file_name", "is invalid. Only latin characters, digits, dots, underscores, " +
+ if ['.', '..'].include? file_name
19
+ errors.add("file_name", "cannot be '.' or '..'")
20
+ else
21
+ errors.add("file_name", "is invalid. Only latin characters, digits, dots, underscores, " +
22
"dashes and spaces are accepted")
- elsif file_name == '.' or file_name == '..'
- errors.add("file_name", "cannot be '.' or '..'")
23
+ end
24
end
25
26
@@ -60,7 +62,7 @@ def delete_content_file
60
62
61
63
SANE_FILE_NAME = /^[a-zA-Z0-9\-_\. ]*$/
64
def self.is_valid?(name)
- name =~ SANE_FILE_NAME
65
+ name =~ SANE_FILE_NAMEand not ['.','..'].include?name
66
67
68
AltStyle によって変換されたページ (->オリジナル) / アドレス: モード: デフォルト 音声ブラウザ ルビ付き 配色反転 文字拡大 モバイル
0 commit comments