sanitizing correctly

3 files changed, 4 insertions, 4 deletions

diff --git a/public/assets/js/lib/views/mail/compose.js b/public/assets/js/lib/views/mail/compose.js
index 1da4ceb..f2592ea 100644
--- a/public/assets/js/lib/views/mail/compose.js
+++ b/public/assets/js/lib/views/mail/compose.js
@@ -26,12 +26,12 @@ var ComposeView = FormView.extend({
         console.log(tmpl)
         this.$("[name=username]").val(message.sender)
         this.$("[name=subject]").val(message.subject)
-        this.$("[name=body]").val(sanitize(tmpl + message.body))
+        this.$("[name=body]").val(tmpl + message.body)
         $("body").removeClass('loading')
       }.bind(this))
       return
     }
-    this.$("[name=username]").val(sanitize(username))
+    this.$("[name=username]").val(username)
     $("body").removeClass('loading')
   },
   
diff --git a/public/assets/js/lib/views/mail/mailbox.js b/public/assets/js/lib/views/mail/mailbox.js
index 9d988cb..c48d948 100644
--- a/public/assets/js/lib/views/mail/mailbox.js
+++ b/public/assets/js/lib/views/mail/mailbox.js
@@ -14,7 +14,7 @@ var MailboxView = View.extend({
   },
 
   load: function(name){
-    name = sanitize(name) || "inbox"
+    name = sanitizeHTML(name) || "inbox"
     $("h1").html(name)
     var query = window.location.search.substr(1)
     $.get(this.action + name, query, this.populate.bind(this))
diff --git a/public/assets/js/lib/views/mail/message.js b/public/assets/js/lib/views/mail/message.js
index b5258a5..6fa3d78 100644
--- a/public/assets/js/lib/views/mail/message.js
+++ b/public/assets/js/lib/views/mail/message.js
@@ -13,7 +13,7 @@ var MessageView = View.extend({
   },
 
   load: function(name){
-    name = sanitize(name) || "inbox"
+    name = sanitizeHTML(name) || "inbox"
     $.ajax({
       url: this.action + name,
       method: 'get',