Permalink
Browse files

use the decimal HTML escape code for single quotes instead of the hex…

… one so webkit-based browsers properly translate the code in form fields
  • Loading branch information...
morgancurrie authored and rafaelfranca committed Feb 1, 2013
1 parent d868a80 commit 88331c575bf5a7ef2451e008881641322ee562b4
Showing with 1 addition and 1 deletion.
  1. +1 −1 activesupport/lib/active_support/core_ext/string/output_safety.rb
@@ -2,7 +2,7 @@
class ERB
module Util
- HTML_ESCAPE = { '&' => '&amp;', '>' => '&gt;', '<' => '&lt;', '"' => '&quot;', "'" => '&#x27;' }
+ HTML_ESCAPE = { '&' => '&amp;', '>' => '&gt;', '<' => '&lt;', '"' => '&quot;', "'" => '&#39;' }
JSON_ESCAPE = { '&' => '\u0026', '>' => '\u003E', '<' => '\u003C' }
# A utility method for escaping HTML tag characters.

0 comments on commit 88331c5

Please sign in to comment.