Skip to content
This repository was archived by the owner on Sep 24, 2018. It is now read-only.

Only call sanitize_text_field() when sanitizing email#2185

Merged
danielbachhuber merged 1 commit intodevelopfrom
1912-sanitize-email
Jan 30, 2016
Merged

Only call sanitize_text_field() when sanitizing email#2185
danielbachhuber merged 1 commit intodevelopfrom
1912-sanitize-email

Conversation

@danielbachhuber
Copy link
Copy Markdown
Member

@danielbachhuber danielbachhuber commented Jan 30, 2016

sanitize_email() also validates the email, and returns an empty string
when the value is invalid, which is unexpected in a sanitization
context. When sanitizing, we just want to make sure we have a reasonably
safe string to work with.

Daniel, Joe, and Ryan discussed this in person.

Fixes #1912

@danielbachhuber
Only call sanitize_text_field() when sanitizing email
3ad9931 
`sanitize_email()` also validates the email, and returns an empty string
when the value is invalid, which is unexpected in a sanitization
context. When sanitizing, we just want to make sure we have a reasonably
safe string to work with.
@danielbachhuber danielbachhuber added this to the 2.0 Beta 12 milestone Jan 30, 2016
danielbachhuber added a commit that referenced this pull request Jan 30, 2016
@danielbachhuber
Merge pull request #2185 from WP-API/1912-sanitize-email
14a4f7b 
Only call `sanitize_text_field()` when sanitizing email
@danielbachhuber danielbachhuber merged commit 14a4f7b into develop Jan 30, 2016
@danielbachhuber danielbachhuber deleted the 1912-sanitize-email branch January 30, 2016 22:06
@dave-green-uk dave-green-uk mentioned this pull request Jun 26, 2016
Closed
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.

Reviewers

No reviews

Assignees

No one assigned

Labels

Review

Projects

None yet

Milestone

2.0 Beta 12

Development

Successfully merging this pull request may close these issues.

1 participant

@danielbachhuber