public ActionResult CreateEntry(CreateEntryViewModel entryViewModel) { MarkupSanitizer sanitizer = new MarkupSanitizer(); entryViewModel.EntryText = sanitizer.Sanitize(string.IsNullOrEmpty(entryViewModel.EntryText) ? string.Empty : entryViewModel.EntryText); entryViewModel.Tags = sanitizer.Sanitize(string.IsNullOrEmpty(entryViewModel.Tags) ? string.Empty : entryViewModel.Tags); entryViewModel.Title = sanitizer.Sanitize(string.IsNullOrEmpty(entryViewModel.Title) ? string.Empty : entryViewModel.Title); BlogEngine.AddEntry(new BlogEngine.Core.DataModels.Entry() { BlogId = CoreConfiguration.Instance.BlogId, EntryText = entryViewModel.EntryText, IsRawHtml = true, Tags = entryViewModel.Tags, Title = entryViewModel.Title, CreateDate = DateTime.Now }); return this.RedirectHome(); }
public ActionResult EditEntry(Entry entry) { MarkupSanitizer sanitizer = new MarkupSanitizer(); var OriginalEntry = BlogEngine.GetBlogEntry(entry.Id); OriginalEntry.Title = sanitizer.Sanitize(entry.Title); OriginalEntry.EntryText = sanitizer.Sanitize(entry.EntryText); OriginalEntry.IsRawHtml = true; //we need to consider getting rid of this, probably not needed anymore. OriginalEntry.Tags = sanitizer.Sanitize(entry.Tags); OriginalEntry.EditedDate = DateTime.Now; BlogEngine.UpdateEntry(OriginalEntry); return this.RedirectHome(); }