Skip to content

GitLab

Explore

Sign in
Register

Primary navigation

Project

S

swh-web
- Activity
- Members
- Labels

Snippets Groups Projects

1cf93d82

Commit 1cf93d82 authored 6 years ago by Antoine Lambert

Downloads
- Patches
- Plain Diff

assets: XSS filtering improvements

  - put related code in a dedicated file

  - use a XSS filtering hook to fix some image relative src urls included in README
    HTML rendering (load image bytes from the archive content if available)

  - remove previoulsy introduced hacks in Python code as correct image loading in
    README HTML rendering is now handled client-side by the feature described above

Related T1641

parent 3bb1a709

No related branches found

No related tags found

Loading

Changes 7

Hide whitespace changes

Inline Side-by-side

Showing

swh/web/assets/src/bundles/webapp/readme-rendering.js 2 additions, 17 deletions

swh/web/assets/src/bundles/webapp/readme-rendering.js
swh/web/assets/src/bundles/webapp/webapp-utils.js 10 additions, 0 deletions

swh/web/assets/src/bundles/webapp/webapp-utils.js
swh/web/assets/src/bundles/webapp/xss-filtering.js 42 additions, 0 deletions

swh/web/assets/src/bundles/webapp/xss-filtering.js
swh/web/browse/views/directory.py 24 additions, 8 deletions

swh/web/browse/views/directory.py
swh/web/browse/views/revision.py 1 addition, 13 deletions

swh/web/browse/views/revision.py
swh/web/browse/views/utils/snapshot_context.py 1 addition, 9 deletions

swh/web/browse/views/utils/snapshot_context.py
swh/web/templates/includes/show-metadata.html 5 additions, 1 deletion

swh/web/templates/includes/show-metadata.html

with 85 additions and 48 deletions

Loading

Phabricator Migration user @phabricator-migration · 6 years ago

Owner
Some references in the commit message have been migrated:

T1641 is now #1641 (closed)

Some references in the commit message have been migrated: * T1641 is now #1641

0% Loading or .

You are about to add 0 people to the discussion. Proceed with caution.

Finish editing this message first!

Please register or sign in to comment