From 2c04d09e639266117aa207916860781b09db4853 Mon Sep 17 00:00:00 2001
From: =?utf8?q?David=20=E2=80=98Bombe=E2=80=99=20Roden?=
 <bombe@pterodactylus.net>
Date: Mon, 24 Feb 2014 06:43:42 +0100
Subject: [PATCH] Filter values of profile fields.

This fixes #334.
---
 src/main/java/net/pterodactylus/sone/web/EditProfilePage.java | 6 +++++-
 1 file changed, 5 insertions(+), 1 deletion(-)

diff --git a/src/main/java/net/pterodactylus/sone/web/EditProfilePage.java b/src/main/java/net/pterodactylus/sone/web/EditProfilePage.java
index c79a1e9..d0ddb26 100644
--- a/src/main/java/net/pterodactylus/sone/web/EditProfilePage.java
+++ b/src/main/java/net/pterodactylus/sone/web/EditProfilePage.java
@@ -17,11 +17,14 @@
 
 package net.pterodactylus.sone.web;
 
+import static net.pterodactylus.sone.text.TextFilter.filter;
+
 import java.util.List;
 
 import net.pterodactylus.sone.data.Profile;
 import net.pterodactylus.sone.data.Profile.Field;
 import net.pterodactylus.sone.data.Sone;
+import net.pterodactylus.sone.text.TextFilter;
 import net.pterodactylus.sone.web.page.FreenetRequest;
 import net.pterodactylus.util.number.Numbers;
 import net.pterodactylus.util.template.Template;
@@ -85,7 +88,8 @@ public class EditProfilePage extends SoneTemplatePage {
 				profile.setAvatar(webInterface.getCore().getImage(avatarId, false));
 				for (Field field : fields) {
 					String value = request.getHttpRequest().getPartAsStringFailsafe("field-" + field.getId(), 400);
-					field.setValue(value);
+					String filteredValue = filter(request.getHttpRequest().getHeader("Host"), value);
+					field.setValue(filteredValue);
 				}
 				currentSone.setProfile(profile);
 				webInterface.getCore().touchConfiguration();
-- 
2.7.4