From 02d88e6c82f8a2a9f833f3ad9d6a5d7b9af56a5f Mon Sep 17 00:00:00 2001
From: zediious <zediious@aol.com>
Date: Fri, 24 Nov 2023 22:22:58 -0500
Subject: [PATCH] Remove autoescape tags from announcements.html

Happily, these can just be removed. Further nested autoescape tags do the job they're meant to do, which is allowing discord messages with links to be injected with anchor/img tags.

Removing these tags does not break this, and now escapes any foreign input the user places into the server parameter.
---
 raptorWeb/templates/raptormc/defaultpages/announcements.html | 2 --
 1 file changed, 2 deletions(-)

diff --git a/raptorWeb/templates/raptormc/defaultpages/announcements.html b/raptorWeb/templates/raptormc/defaultpages/announcements.html
index 43e12362..879488c1 100644
--- a/raptorWeb/templates/raptormc/defaultpages/announcements.html
+++ b/raptorWeb/templates/raptormc/defaultpages/announcements.html
@@ -23,7 +23,6 @@ <h3 class="pageHeader fw-bold text-center mb-2">
 
 <section id="discordAnnouncements" class="container mt-0">
 
-  {% autoescape off %}
   <header class="p-0 mt-4">
     <div class="accordion opacity-75 mt-2 container" id="announcementAccordion">
       <div class="accordion-item">
@@ -55,6 +54,5 @@ <h2 class="accordion-header" id="globalAnnouncements">
            hx-swap="outerHTML"></div>
     </div>
   </header>
-  {% endautoescape %}
 
 </section>