From 9921d646e46a4fbdffb5cf1b73864d1a0c0e7455 Mon Sep 17 00:00:00 2001
From: miker <miker@dcc99617-32d9-48b4-a31d-7c20da2025e4>
Date: Fri, 15 May 2009 15:26:21 +0000
Subject: [PATCH] avoid regex-izing user supplied strings

git-svn-id: svn://svn.open-ils.org/ILS/branches/rel_1_4_0@13170 dcc99617-32d9-48b4-a31d-7c20da2025e4
---
 Open-ILS/web/opac/skin/default/js/myopac.js | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/Open-ILS/web/opac/skin/default/js/myopac.js b/Open-ILS/web/opac/skin/default/js/myopac.js
index 02f03034b1..04d5253861 100644
--- a/Open-ILS/web/opac/skin/default/js/myopac.js
+++ b/Open-ILS/web/opac/skin/default/js/myopac.js
@@ -782,7 +782,7 @@ function _myOPACSummaryShowUer(r) {
     }
 
 	var iv1 = user.ident_value()+'';
-	if (iv1.length > 4) iv1 = iv1.replace(new RegExp(iv1.substring(0,iv1.length - 4)), '***********');
+    if (iv1.length > 4 && iv1.match(/\d{4}/)) iv1 = iv1.substring(0,4) + '***********';
 
 	appendClear($('myopac_summary_prefix'),text(user.prefix()));
 	appendClear($('myopac_summary_first'),text(user.first_given_name()));
-- 
2.11.0