Adds client-side check for invalid characters in email addresses

Adds server-side validation of email addresses using WP's is_email()
2017-06-04 17:38:28 -04:00
parent d27968a215
commit 7f566fb672
3 changed files with 77 additions and 6 deletions
--- a/assets/js/src/subscribers/importExport/import.js
+++ b/assets/js/src/subscribers/importExport/import.js
@ -323,6 +323,10 @@ define(
                    // is the email in 'mailto:email' format?
                    email = test[1].trim();
                  }
+                  // test for valid characters using WP's rule (https://core.trac.wordpress.org/browser/tags/4.7.3/src/wp-includes/formatting.php#L2902)
+                  if (!/^[a-zA-Z0-9!#$%&\'*+\/=?^_`{|}~\.-@]+$/.test(email) ) {
+                    return false;
+                  }
                  return email;
                };