Fixed #6752 -- Corrected the interaction of the safe template filter with other filters. Thanks to Rupe and Alex Gaynor for their work on the patch.

git-svn-id: http://code.djangoproject.com/svn/django/trunk@13171 bcc190cf-cafb-0310-a4f2-bffc1f526a37
author: Russell Keith-Magee <russell@keith-magee.com> 2010-05-09 06:45:21 +0000
committer: Russell Keith-Magee <russell@keith-magee.com> 2010-05-09 06:45:21 +0000
commit: ced4dd2aad6b0203dbf1f477f46e347f918982af (patch)
tree: a5ef3b77694ec89005e1f432388105746fcd43c0 /docs/ref/templates
parent: f9b75db90f606d03569edcfa71792d443d7545f4 (diff)
1 files changed, 10 insertions, 0 deletions
diff --git a/docs/ref/templates/builtins.txt b/docs/ref/templates/builtins.txt
index 01f49714f0..5f04c3d5e1 100644
--- a/docs/ref/templates/builtins.txt
+++ b/docs/ref/templates/builtins.txt
@@ -1683,6 +1683,16 @@ safe
 Marks a string as not requiring further HTML escaping prior to output. When
 autoescaping is off, this filter has no effect.
 
+.. note::
+
+    If you are chaining filters, a filter applied after ``safe`` can
+    make the contents unsafe again. For example, the following code
+    prints the variable as is, unescaped:
+
+    .. code-block:: html+django
+
+        {{ var|safe|escape }}
+
 .. templatefilter:: safeseq
 
 safeseq
author	Russell Keith-Magee <russell@keith-magee.com>	2010-05-09 06:45:21 +0000
committer	Russell Keith-Magee <russell@keith-magee.com>	2010-05-09 06:45:21 +0000
commit	ced4dd2aad6b0203dbf1f477f46e347f918982af (patch)
tree	a5ef3b77694ec89005e1f432388105746fcd43c0 /docs/ref/templates
parent	f9b75db90f606d03569edcfa71792d443d7545f4 (diff)