From 6d03ebd1c61b7551925841eb0e42d30a22ad83cd Mon Sep 17 00:00:00 2001
From: Faris Ansari <netchampfaris@users.noreply.github.com>
Date: Mon, 25 Dec 2017 18:48:59 +0530
Subject: [PATCH] Hotfix login (#4680)

* FIx XSS Sanitize

* Don't sanitize password
---
 frappe/templates/includes/login/login.js | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/frappe/templates/includes/login/login.js b/frappe/templates/includes/login/login.js
index d02d449c38..3584998434 100644
--- a/frappe/templates/includes/login/login.js
+++ b/frappe/templates/includes/login/login.js
@@ -18,7 +18,7 @@ login.bind_events = function() {
 		var args = {};
 		args.cmd = "login";
 		args.usr = frappe.utils.xss_sanitise(($("#login_email").val() || "").trim());
-		args.pwd = frappe.utils.xss_sanitise($("#login_password").val());
+		args.pwd = $("#login_password").val();
 		args.device = "desktop";
 		if(!args.usr || !args.pwd) {
 			frappe.msgprint("{{ _("Both login and password required") }}");