diff options
| -rw-r--r-- | lib/Minz/ActionException.php | 5 |
1 files changed, 4 insertions, 1 deletions
diff --git a/lib/Minz/ActionException.php b/lib/Minz/ActionException.php index 311f15086..82f250958 100644 --- a/lib/Minz/ActionException.php +++ b/lib/Minz/ActionException.php @@ -1,7 +1,10 @@ <?php class Minz_ActionException extends Minz_Exception { public function __construct ($controller_name, $action_name, $code = self::ERROR) { - $message = 'Invalid action name for controller ' . $controller_name; + // Just for security, as we are not supposed to get non-alphanumeric characters. + $action_name = rawurlencode($action_name); + + $message = "Invalid action name “${action_name}” for controller “${controller_name}”."; parent::__construct ($message, $code); } } |