From: Art Cancro <ajc@citadel.org>
Date: Wed, 9 Nov 2022 21:37:28 +0000 (-0500)
Subject: Sending now works because HTML entities are unescaped in the metadata.
X-Git-Tag: v959~5
X-Git-Url: https://code.citadel.org/?a=commitdiff_plain;h=5e6f201c8d3b8b50348d036279bc4156adb3d9d7;p=citadel.git

Sending now works because HTML entities are unescaped in the metadata.
---

diff --git a/webcit-ng/static/js/view_mail.js b/webcit-ng/static/js/view_mail.js
index fac046dec..cb33d577d 100644
--- a/webcit-ng/static/js/view_mail.js
+++ b/webcit-ng/static/js/view_mail.js
@@ -367,10 +367,15 @@ function make_cc_bcc_visible() {
 }
 
 
-// Helper function for mail_send_messages() to extract form values.
-// (We have to replace "|" with "!" because "|" is a field separator in the Citadel protocol)
+// Helper function for mail_send_messages() to extract and decode metadata values.
 function msm_field(element_name, separator) {
-	return (document.getElementById(element_name).innerHTML).replaceAll("|",separator);
+	let s1 = document.getElementById(element_name).innerHTML;
+	let s2 = s1.replaceAll("|",separator);	// Replace "|" with "!" because "|" is a field separator in Citadel wire protocol
+	let s3 = decodeURI(s2);
+	let s4 = document.createElement("textarea");	// This One Weird Trick Unescapes All HTML Entities
+	s4.innerHTML = s3;
+	s5 = s4.value;
+	return(s5);
 }