diff options
author | Silvio Rhatto <rhatto@riseup.net> | 2014-03-15 14:46:48 -0300 |
---|---|---|
committer | Silvio Rhatto <rhatto@riseup.net> | 2014-03-15 14:46:48 -0300 |
commit | a89ba6df7133bc7f0b8ea96d4a5673887b267af4 (patch) | |
tree | e6850ce6c3f894b3867d172cbdea6cd75031ab26 /mod/cool_theme/views/default/search/search_box.php | |
parent | 0d860aca4fda73fce303dad41003e61f040acca8 (diff) | |
parent | 5041c6c48153453ed597206d08eeff37cf20e676 (diff) | |
download | elgg-a89ba6df7133bc7f0b8ea96d4a5673887b267af4.tar.gz elgg-a89ba6df7133bc7f0b8ea96d4a5673887b267af4.tar.bz2 |
Merge commit '5041c6c48153453ed597206d08eeff37cf20e676' as 'mod/cool_theme'
Diffstat (limited to 'mod/cool_theme/views/default/search/search_box.php')
-rw-r--r-- | mod/cool_theme/views/default/search/search_box.php | 27 |
1 files changed, 27 insertions, 0 deletions
diff --git a/mod/cool_theme/views/default/search/search_box.php b/mod/cool_theme/views/default/search/search_box.php new file mode 100644 index 000000000..36cceef4a --- /dev/null +++ b/mod/cool_theme/views/default/search/search_box.php @@ -0,0 +1,27 @@ +<?php +/** + * Search box + * + * @uses $vars['value'] Current search query + * + * @todo Move javascript into something that extends elgg.js + */ + +$value = ''; +if (array_key_exists('value', $vars)) { + $value = $vars['value']; +} elseif ($value = get_input('q', get_input('tag', NULL))) { + $value = $value; +} + +// @todo - why the strip slashes? +$value = stripslashes($value); + +// @todo - create function for sanitization of strings for display in 1.8 +// encode <,>,&, quotes and characters above 127 +$display_query = mb_convert_encoding($value, 'HTML-ENTITIES', 'UTF-8'); +$display_query = htmlspecialchars($display_query, ENT_QUOTES, 'UTF-8', false); + + +?> +<form class="elgg-search" action="<?php echo elgg_get_site_url(); ?>search" method="get"><fieldset><input type="text" size="21" name="q" placeholder="<?php echo elgg_echo('search'); ?>" class="search-input" value="<?php echo $value; ?>"/><input type="submit" value="<?php echo elgg_echo('search:go'); ?>" class="search-submit-button" /></fieldset></form>
\ No newline at end of file |