Re-display images & checkboxes in PDF reports

Closes SCI-953.
2024-11-10 17:36:33 +08:00 · 2017-01-26 10:46:58 +01:00 · 2017-01-26 10:46:58 +01:00 · 0baaf12de3
commit 0baaf12de3
parent 042a85af45
2 changed files with 9 additions and 4 deletions
--- a/app/helpers/input_sanitize_helper.rb
+++ b/app/helpers/input_sanitize_helper.rb
@ -1,9 +1,13 @@
 module InputSanitizeHelper
-  def sanitize_input(text)
+  def sanitize_input(
+    text,
+    tags = [],
+    attributes = []
+  )
    ActionController::Base.helpers.sanitize(
      text,
-      tags: Constants::WHITELISTED_TAGS,
-      attributes: Constants::WHITELISTED_ATTRIBUTES
+      tags: Constants::WHITELISTED_TAGS + tags,
+      attributes: Constants::WHITELISTED_ATTRIBUTES + attributes
    )
  end

--- a/app/views/reports/report.pdf.erb
+++ b/app/views/reports/report.pdf.erb
@ -9,7 +9,8 @@
  </head>
  <body class="print-report-body">
    <div class="print-report">
-      <%= sanitize_input(@html) %>
+      <% # Also whitelist <img> and <input type="checkbox"> tags %>
+      <%= sanitize_input(@html, ['img', 'input'], ['type', 'disabled', 'checked']) %>
    </div>
  </body>
 </html>