added the ability to add safe html tags to input (i.e., images)

[selectricity-live] / app / views / common / _sortable_vote.rhtml

diff --git a/app/views/common/_sortable_vote.rhtml b/app/views/common/_sortable_vote.rhtml
index 6876966f0f44dbf6f24aae5aa996c49acfa3e4f7..f026c4216378f65dfcd832b8699ce9beb6c5bb08 100644 (file)
--- a/app/views/common/_sortable_vote.rhtml
+++ b/app/views/common/_sortable_vote.rhtml
@@ -2,7 +2,7 @@
 <ol id="rankings-list">
   <% for ranking in @voter.vote.rankings %>
     <li class="moveable" id="ranking_<%= ranking.candidate.id %>">
-      <%=h ranking.candidate.name.capitalize %></li>
+      <%= white_list(ranking.candidate.name.capitalize) %></li>
   <% end %>
 </ol>
 </div>