Mark fields in TeX templates as safe

2024-11-26 18:37:12 +00:00 · 2020-08-14 19:35:21 +02:00 · 2020-08-14 19:35:21 +02:00 · eca4767155
commit eca4767155
parent 21ba46c1bc
2 changed files with 4 additions and 3 deletions
--- a/apps/treasury/models.py
+++ b/apps/treasury/models.py
@ -137,7 +137,7 @@ class Product(models.Model):

    @property
    def amount_euros(self):
-        return self.amount / 100
+        return "{:.2f}".format(self.amount / 100)

    @property
    def total(self):
@ -145,7 +145,7 @@ class Product(models.Model):

    @property
    def total_euros(self):
-        return self.total / 100
+        return "{:.2f}".format(self.total / 100)

    class Meta:
        verbose_name = _("product")
--- a/apps/treasury/templatetags/escape_tex.py
+++ b/apps/treasury/templatetags/escape_tex.py
@ -2,10 +2,11 @@
 # SPDX-License-Identifier: GPL-3.0-or-later

 from django import template
+from django.utils.safestring import mark_safe


 def do_latex_escape(value):
-    return (
+    return mark_safe(
        value.replace("&", "\\&")
        .replace("$", "\\$")
        .replace("%", "\\%")