135/netdisco
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

add a code path for unauthorized XHR

Browse Source
This commit is contained in:
Oliver Gorwits
2021-10-06 09:07:35 +01:00
parent d8a9ad9007
commit 0dbf1b73cb
2 changed files with 6 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

1
.gitattributes vendored
View File

@@ -1,2 +1,3 @@
share/public/javascripts/*.min.js binary share/public/javascripts/*.min.js binary
share/public/css/*.min.css binary share/public/css/*.min.css binary
share/public/swagger-ui/* binary

5
lib/App/Netdisco/Web/AuthN.pm
View File

@@ -210,6 +210,11 @@ get qr{^/(?:login(?:/denied)?)?} => sub {
return_url => param('return_url'), return_url => param('return_url'),
}; };
} }
elsif (defined request->header('X-Requested-With')
and request->header('X-Requested-With') eq 'XMLHttpRequest') {
status('unauthorized');
return '<div class="span2 alert alert-error"><i class="icon-ban-circle"></i> Error: unauthorized.</div>';
}
else { else {
template 'index', { template 'index', {
return_url => param('return_url') return_url => param('return_url')