From dfaf1fc1f6d8214bcabb9a613d53d0f0dc45352c Mon Sep 17 00:00:00 2001
From: James Moger <james.moger@gitblit.com>
Date: Sun, 07 Sep 2014 11:43:33 -0400
Subject: [PATCH] XSS sanitize standard page url parameters

---
 src/main/java/com/gitblit/utils/CommitCache.java |    6 ++++--
 1 files changed, 4 insertions(+), 2 deletions(-)

diff --git a/src/main/java/com/gitblit/utils/CommitCache.java b/src/main/java/com/gitblit/utils/CommitCache.java
index fd3a659..a3963f5 100644
--- a/src/main/java/com/gitblit/utils/CommitCache.java
+++ b/src/main/java/com/gitblit/utils/CommitCache.java
@@ -225,7 +225,8 @@
 		List<RepositoryCommit> commits = new ArrayList<RepositoryCommit>();
 		for (RevCommit commit : JGitUtils.getRevLog(repository, branch, sinceDate)) {
 			RepositoryCommit commitModel = new RepositoryCommit(repositoryName, branch, commit);
-			commitModel.setRefs(allRefs.get(commitModel.getName()));
+			List<RefModel> commitRefs = allRefs.get(commitModel.getId());
+			commitModel.setRefs(commitRefs);
 			commits.add(commitModel);
 		}
 		return commits;
@@ -245,7 +246,8 @@
 		List<RepositoryCommit> commits = new ArrayList<RepositoryCommit>();
 		for (RevCommit commit : JGitUtils.getRevLog(repository, sinceCommit.getName(), branch)) {
 			RepositoryCommit commitModel = new RepositoryCommit(repositoryName, branch, commit);
-			commitModel.setRefs(allRefs.get(commitModel.getName()));
+			List<RefModel> commitRefs = allRefs.get(commitModel.getId());
+			commitModel.setRefs(commitRefs);
 			commits.add(commitModel);
 		}
 		return commits;

--
Gitblit v1.9.1