Use a sanitize filter to correct a security issue (closes #283)

author: Étienne Loks <etienne.loks@peacefrogs.net> 2010-11-27 19:09:37 +0100
committer: Étienne Loks <etienne.loks@peacefrogs.net> 2010-11-27 19:09:37 +0100
commit: 9938ec566e87fe66cd8e91576fefbfbcadddd9c3 (patch)
tree: 50aba593f62f4b05cd23ecb2be4395a7ffd2b1bb /chimere/main/views.py
parent: 30c05dafd18c1c6670453a0fecbedef21cae9ddf (diff)
download: Chimère-9938ec566e87fe66cd8e91576fefbfbcadddd9c3.tar.bz2
Chimère-9938ec566e87fe66cd8e91576fefbfbcadddd9c3.zip
1 files changed, 1 insertions, 1 deletions
diff --git a/chimere/main/views.py b/chimere/main/views.py
index d8e9719..5d13dcb 100644
--- a/chimere/main/views.py
+++ b/chimere/main/views.py
@@ -243,7 +243,7 @@ def getDetail(request, area_name, marker_id):
     Get the detail for a marker
     '''
     try:
-        marker = Marker.objects.filter(id=int(marker_id), status='A')[0]
+        marker = Marker.objects.filter(id=int(marker_id), status__in=['A', 'S'])[0]
     except (ValueError, IndexError):
         return HttpResponse('no results')
     response_dct = get_base_response()
author	Étienne Loks <etienne.loks@peacefrogs.net>	2010-11-27 19:09:37 +0100
committer	Étienne Loks <etienne.loks@peacefrogs.net>	2010-11-27 19:09:37 +0100
commit	9938ec566e87fe66cd8e91576fefbfbcadddd9c3 (patch)
tree	50aba593f62f4b05cd23ecb2be4395a7ffd2b1bb /chimere/main/views.py
parent	30c05dafd18c1c6670453a0fecbedef21cae9ddf (diff)
download	Chimère-9938ec566e87fe66cd8e91576fefbfbcadddd9c3.tar.bz2 Chimère-9938ec566e87fe66cd8e91576fefbfbcadddd9c3.zip