projects / squirrelmail.git / blobdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | inline | side by side
sanitizing address book listing. extra field row is added for plugins
[squirrelmail.git] / functions / addressbook.php
diff --git a/functions/addressbook.php b/functions/addressbook.php
index 362d1e4092b8de2fb219dd238f32b86e659b16b6..6e18d1b68af864cb53197c44e27e871532e83472 100644 (file)
--- a/functions/addressbook.php
+++ b/functions/addressbook.php
@@ -447,6 +447,20 @@ class AddressBook {
      * @var string
      */
     var $localbackendname = '';
+    /**
+     * Controls use of 'extra' field
+     * 
+     * Extra field can be used to add link to form, which allows 
+     * to modify all fields supported by backend. This is the only field 
+     * that is not sanitized with htmlspecialchars. Backends MUST make
+     * sure that field data is sanitized and displayed correctly inside
+     * table cell. Use of html formating in other address book fields is
+     * not allowed. Backends that don't return 'extra' row in address book 
+     * data should not modify this object property.
+     * @var boolean
+     * @since 1.5.1
+     */
+    var $add_extra_field = false;
 
     /**
      * Constructor function.
Unnamed repository; edit this file 'description' to name the repository.