annotate tests/subform.ur @ 1710:540df112ff62

Remove string-valued style attribute, which may allow injection attacks
author Adam Chlipala <adam@chlipala.net>
date Sun, 15 Apr 2012 12:40:53 -0400
parents 8ce31c052dce
children
rev   line source
adamc@756 1 fun handler r = return <xml><body>
adamc@756 2 {[r.A]}, {[r.Sub.A]}, {[r.Sub.B]}, {[r.Sub.Sub]}, {[r.C]}
adamc@756 3 </body></xml>
adamc@756 4
adamc@756 5 fun main () = return <xml><body>
adamc@756 6 <form>
adamc@756 7 <textbox{#A}/><br/>
adamc@756 8 <subform{#Sub}>
adamc@756 9 <textbox{#A}/><br/>
adamc@756 10 <textbox{#B}/><br/>
adamc@756 11 <textbox{#Sub}/><br/>
adamc@756 12 </subform>
adamc@756 13 <textbox{#C}/><br/>
adamc@756 14 <submit action={handler}/>
adamc@756 15 </form>
adamc@756 16 </body></xml>