Autres/RaspAP
1
0
Fork 0
mirror of https://github.com/billz/raspap-webgui.git synced 2025-07-09 22:57:41 +02:00
Code Issues Releases Wiki Activity

Refactor templates to use CSRF facade

Browse Source
This commit is contained in:
billz 2025-03-25 14:00:24 -07:00
parent 5584e3b72c
commit a1550d8049
16 changed files with 16 additions and 16 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
templates/adblock.php
View File

@ -28,7 +28,7 @@
<div class="card-body"> <div class="card-body">
<?php $status->showMessages(); ?> <?php $status->showMessages(); ?>
<form role="form" action="adblock_conf" enctype="multipart/form-data" method="POST"> <form role="form" action="adblock_conf" enctype="multipart/form-data" method="POST">
<?php echo $token->CSRFTokenFieldTag(); ?> <?php echo \RaspAP\Tokens\CSRF::hiddenField();?>
<!-- Nav tabs --> <!-- Nav tabs -->
<ul class="nav nav-tabs"> <ul class="nav nav-tabs">
<li class="nav-item"><a class="nav-link active" id="blocklisttab" href="#adblocklistsettings" data-bs-toggle="tab"><?php echo _("Blocklist settings"); ?></a></li> <li class="nav-item"><a class="nav-link active" id="blocklisttab" href="#adblocklistsettings" data-bs-toggle="tab"><?php echo _("Blocklist settings"); ?></a></li>

2
templates/admin.php
View File

@ -19,7 +19,7 @@
<?php $status->showMessages(); ?> <?php $status->showMessages(); ?>
<h4><?php echo _("Authentication settings") ;?></h4> <h4><?php echo _("Authentication settings") ;?></h4>
<form role="form" action="auth_conf" method="POST" class="needs-validation" novalidate> <form role="form" action="auth_conf" method="POST" class="needs-validation" novalidate>
<?php echo $token->CSRFTokenFieldTag() ?> <?php echo \RaspAP\Tokens\CSRF::hiddenField(); ?>
<div class="row"> <div class="row">
<div class="mb-3 col-md-6"> <div class="mb-3 col-md-6">
<label for="username"><?php echo _("Username"); ?></label> <label for="username"><?php echo _("Username"); ?></label>

2
templates/configure_client.php
View File

@ -27,7 +27,7 @@
<div class="row" id="wpaConf"> <div class="row" id="wpaConf">
<div class="col"> <div class="col">
<form method="POST" action="wpa_conf" name="wpa_conf_form"> <form method="POST" action="wpa_conf" name="wpa_conf_form">
<?php echo $token->CSRFTokenFieldTag() ?> <?php echo \RaspAP\Tokens\CSRF::hiddenField(); ?>
<input type="hidden" name="client_settings" ?> <input type="hidden" name="client_settings" ?>
<div class="js-wifi-stations loading-spinner"></div> <div class="js-wifi-stations loading-spinner"></div>
</form> </form>

2
templates/dashboard.php
View File

@ -30,7 +30,7 @@
<div class="card-body"> <div class="card-body">
<?php $status->showMessages(); ?> <?php $status->showMessages(); ?>
<form action="wlan0_info" method="POST"> <form action="wlan0_info" method="POST">
<?php echo $token->CSRFTokenFieldTag() ?> <?php echo \RaspAP\Tokens\CSRF::hiddenField(); ?>
<!-- Nav tabs --> <!-- Nav tabs -->
<ul class="nav nav-tabs"> <ul class="nav nav-tabs">

2
templates/dhcp.php
View File

@ -30,7 +30,7 @@
<div class="card-body"> <div class="card-body">
<?php $status->showMessages(); ?> <?php $status->showMessages(); ?>
<form method="POST" action="dhcpd_conf" class="js-dhcp-settings-form needs-validation" novalidate> <form method="POST" action="dhcpd_conf" class="js-dhcp-settings-form needs-validation" novalidate>
<?php echo $token->CSRFTokenFieldTag() ?> <?php echo \RaspAP\Tokens\CSRF::hiddenField(); ?>
<!-- Nav tabs --> <!-- Nav tabs -->
<ul class="nav nav-tabs mb-3"> <ul class="nav nav-tabs mb-3">

2
templates/hostapd.php
View File

@ -50,7 +50,7 @@
<div class="card-body"> <div class="card-body">
<?php $status->showMessages(); ?> <?php $status->showMessages(); ?>
<form role="form" action="hostapd_conf" method="POST" class="needs-validation" novalidate> <form role="form" action="hostapd_conf" method="POST" class="needs-validation" novalidate>
<?php echo $token->CSRFTokenFieldTag() ?> <?php echo \RaspAP\Tokens\CSRF::hiddenField(); ?>
<!-- Nav tabs --> <!-- Nav tabs -->
<ul class="nav nav-tabs"> <ul class="nav nav-tabs">

2
templates/login.php
View File

@ -15,7 +15,7 @@
</div> </div>
<div class="text-center mb-4"> <div class="text-center mb-4">
<form id="admin-login-form" action="login" method="POST" class="needs-validation" novalidate> <form id="admin-login-form" action="login" method="POST" class="needs-validation" novalidate>
<?php echo $token->CSRFTokenFieldTag() ?> <?php echo \RaspAP\Tokens\CSRF::hiddenField(); ?>
<div class="form-group"> <div class="form-group">
<input type="hidden" name="login-auth"> <input type="hidden" name="login-auth">
<input type="hidden" id="redirect-url" name="redirect-url" value="<?php echo htmlspecialchars($redirectUrl, ENT_QUOTES, 'UTF-8'); ?>"> <input type="hidden" id="redirect-url" name="redirect-url" value="<?php echo htmlspecialchars($redirectUrl, ENT_QUOTES, 'UTF-8'); ?>">

2
templates/openvpn.php
View File

@ -29,7 +29,7 @@
<div class="card-body"> <div class="card-body">
<?php $status->showMessages(); ?> <?php $status->showMessages(); ?>
<form role="form" action="openvpn_conf" enctype="multipart/form-data" method="POST"> <form role="form" action="openvpn_conf" enctype="multipart/form-data" method="POST">
<?php echo $token->CSRFTokenFieldTag() ?> <?php echo \RaspAP\Tokens\CSRF::hiddenField(); ?>
<!-- Nav tabs --> <!-- Nav tabs -->
<ul class="nav nav-tabs"> <ul class="nav nav-tabs">
<li class="nav-item"><a class="nav-link active" id="clienttab" href="#openvpnclient" data-bs-toggle="tab"><?php echo _("Client settings"); ?></a></li> <li class="nav-item"><a class="nav-link active" id="clienttab" href="#openvpnclient" data-bs-toggle="tab"><?php echo _("Client settings"); ?></a></li>

2
templates/restapi.php
View File

@ -28,7 +28,7 @@
<div class="card-body"> <div class="card-body">
<?php $status->showMessages(); ?> <?php $status->showMessages(); ?>
<form role="form" action="restapi_conf" method="POST" class="needs-validation" novalidate> <form role="form" action="restapi_conf" method="POST" class="needs-validation" novalidate>
<?php echo $token->CSRFTokenFieldTag() ?> <?php echo \RaspAP\Tokens\CSRF::hiddenField(); ?>
<!-- Nav tabs --> <!-- Nav tabs -->
<ul class="nav nav-tabs"> <ul class="nav nav-tabs">
<li class="nav-item"><a class="nav-link active" id="restapisettingstab" href="#restapisettings" data-bs-toggle="tab"><?php echo _("Settings"); ?></a></li> <li class="nav-item"><a class="nav-link active" id="restapisettingstab" href="#restapisettings" data-bs-toggle="tab"><?php echo _("Settings"); ?></a></li>

2
templates/system.php
View File

@ -11,7 +11,7 @@
<div class="card-body"> <div class="card-body">
<?php $status->showMessages(); ?> <?php $status->showMessages(); ?>
<form role="form" action="system_info" method="POST"> <form role="form" action="system_info" method="POST">
<?php echo $token->CSRFTokenFieldTag() ?> <?php echo \RaspAP\Tokens\CSRF::hiddenField(); ?>
<ul class="nav nav-tabs" role="tablist"> <ul class="nav nav-tabs" role="tablist">
<li role="presentation" class="nav-item"><a class="nav-link active" id="basictab" href="#basic" aria-controls="basic" role="tab" data-bs-toggle="tab"><?php echo _("Basic"); ?></a></li> <li role="presentation" class="nav-item"><a class="nav-link active" id="basictab" href="#basic" aria-controls="basic" role="tab" data-bs-toggle="tab"><?php echo _("Basic"); ?></a></li>
<li role="presentation" class="nav-item"><a class="nav-link" id="languagetab" href="#language" aria-controls="language" role="tab" data-bs-toggle="tab"><?php echo _("Language"); ?></a></li> <li role="presentation" class="nav-item"><a class="nav-link" id="languagetab" href="#language" aria-controls="language" role="tab" data-bs-toggle="tab"><?php echo _("Language"); ?></a></li>

2
templates/system/advanced.php
View File

@ -3,7 +3,7 @@
<h4 class="mt-3"><?php echo _("Advanced settings") ;?></h4> <h4 class="mt-3"><?php echo _("Advanced settings") ;?></h4>
<?php if (!RASPI_MONITOR_ENABLED) : ?> <?php if (!RASPI_MONITOR_ENABLED) : ?>
<form action="system_info" method="POST"> <form action="system_info" method="POST">
<?php echo $token->CSRFTokenFieldTag() ?> <?php echo \RaspAP\Tokens\CSRF::hiddenField(); ?>
<div class="row"> <div class="row">
<div class="mb-3 col-md-6"> <div class="mb-3 col-md-6">
<label for="code"><?php echo _("Web server port") ;?></label> <label for="code"><?php echo _("Web server port") ;?></label>

2
templates/system/basic.php
View File

@ -56,7 +56,7 @@ include('includes/sysstats.php');
</div> </div>
<form action="system_info" method="POST"> <form action="system_info" method="POST">
<?php echo $token->CSRFTokenFieldTag() ?> <?php echo \RaspAP\Tokens\CSRF::hiddenField(); ?>
<?php if (!RASPI_MONITOR_ENABLED) : ?> <?php if (!RASPI_MONITOR_ENABLED) : ?>
<input type="button" class="btn btn-warning" data-bs-toggle="modal" data-bs-target="#system-confirm-reboot" value="<?php echo _("Reboot"); ?>" /> <input type="button" class="btn btn-warning" data-bs-toggle="modal" data-bs-target="#system-confirm-reboot" value="<?php echo _("Reboot"); ?>" />
<input type="button" class="btn btn-warning" data-bs-toggle="modal" data-bs-target="#system-confirm-shutdown" value="<?php echo _("Shutdown"); ?>" /> <input type="button" class="btn btn-warning" data-bs-toggle="modal" data-bs-target="#system-confirm-shutdown" value="<?php echo _("Shutdown"); ?>" />

2
templates/system/plugins.php
View File

@ -1,7 +1,7 @@
<!-- plugins tab --> <!-- plugins tab -->
<div role="tabpanel" class="tab-pane" id="plugins"> <div role="tabpanel" class="tab-pane" id="plugins">
<h4 class="mt-3"><?php echo _("Plugins") ;?></h4> <h4 class="mt-3"><?php echo _("Plugins") ;?></h4>
<?php echo $token->CSRFTokenFieldTag() ?> <?php echo \RaspAP\Tokens\CSRF::hiddenField(); ?>
<div class="row"> <div class="row">
<div class="form-group col-lg-8 col-md-8"> <div class="form-group col-lg-8 col-md-8">
<label> <label>

2
templates/system/theme.php
View File

@ -12,7 +12,7 @@
</div> </div>
</div> </div>
<form action="system_info" method="POST"> <form action="system_info" method="POST">
<?php echo $token->CSRFTokenFieldTag() ?> <?php echo \RaspAP\Tokens\CSRF::hiddenField(); ?>
<button type="button" onClick="window.location.reload();" class="btn btn-outline btn-primary"><i class="fas fa-sync-alt"></i> <?php echo _("Refresh") ?></a> <button type="button" onClick="window.location.reload();" class="btn btn-outline btn-primary"><i class="fas fa-sync-alt"></i> <?php echo _("Refresh") ?></a>
</form> </form>
</div> </div>

2
templates/system/tools.php
View File

@ -2,7 +2,7 @@
<div role="tabpanel" class="tab-pane" id="tools"> <div role="tabpanel" class="tab-pane" id="tools">
<h4 class="mt-3"><?php echo _("System tools") ;?></h4> <h4 class="mt-3"><?php echo _("System tools") ;?></h4>
<?php if (!RASPI_MONITOR_ENABLED) : ?> <?php if (!RASPI_MONITOR_ENABLED) : ?>
<?php echo $token->CSRFTokenFieldTag() ?> <?php echo \RaspAP\Tokens\CSRF::hiddenField(); ?>
<div class="row"> <div class="row">
<div class="mb-3 col-lg-8 col-md-8"> <div class="mb-3 col-lg-8 col-md-8">

2
templates/wireguard.php
View File

@ -28,7 +28,7 @@
<div class="card-body"> <div class="card-body">
<?php $status->showMessages(); ?> <?php $status->showMessages(); ?>
<form role="form" action="wg_conf" enctype="multipart/form-data" method="POST"> <form role="form" action="wg_conf" enctype="multipart/form-data" method="POST">
<?php echo $token->CSRFTokenFieldTag() ?> <?php echo \RaspAP\Tokens\CSRF::hiddenField(); ?>
<!-- Nav tabs --> <!-- Nav tabs -->
<ul class="nav nav-tabs"> <ul class="nav nav-tabs">
<li class="nav-item"><a class="nav-link active" id="settingstab" href="#wgsettings" data-bs-toggle="tab"><?php echo _("Settings"); ?></a></li> <li class="nav-item"><a class="nav-link active" id="settingstab" href="#wgsettings" data-bs-toggle="tab"><?php echo _("Settings"); ?></a></li>