135/netdisco
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

add a code path for unauthorized XHR

Browse Source
This commit is contained in:
Oliver Gorwits
2021-10-06 09:07:35 +01:00
parent d8a9ad9007
commit 0dbf1b73cb
2 changed files with 6 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

5
lib/App/Netdisco/Web/AuthN.pm
View File

@@ -210,6 +210,11 @@ get qr{^/(?:login(?:/denied)?)?} => sub {
return_url => param('return_url'),
};
}
elsif (defined request->header('X-Requested-With')
and request->header('X-Requested-With') eq 'XMLHttpRequest') {
status('unauthorized');
return '<div class="span2 alert alert-error"><i class="icon-ban-circle"></i> Error: unauthorized.</div>';
}
else {
template 'index', {
return_url => param('return_url')