1
0
mirror of https://github.com/billz/raspap-webgui.git synced 2023-10-10 13:37:24 +02:00
Commit Graph

283 Commits

Author SHA1 Message Date
glaszig
259d3838b5 improved theme dropdown, selected theme detection 2019-08-19 22:37:22 +02:00
glaszig
2c64ff0b3e removed logic from system template 2019-08-19 22:37:22 +02:00
glaszig
df429064c6 fixed up dhcp template 2019-08-19 22:37:22 +02:00
glaszig
89f3330606 use template for network page 2019-08-19 22:37:22 +02:00
glaszig
33b99c0ae7 use template for hostapd page 2019-08-19 22:37:22 +02:00
glaszig
9defff1cf4 use template for dhcp page 2019-08-19 22:37:22 +02:00
glaszig
c1f75a696a use template for data usage page 2019-08-19 22:37:22 +02:00
glaszig
7fcdd5e89c use template for dashboard 2019-08-19 22:37:22 +02:00
glaszig
d7ee29aeee use template for configure client page 2019-08-19 22:37:22 +02:00
glaszig
e4e9b5c5c1 use template for admin page 2019-08-19 22:35:30 +02:00
glaszig
2215b11c21 use template for themes page 2019-08-19 22:35:29 +02:00
glaszig
0608b6cb22 use template for system page 2019-08-19 22:35:29 +02:00
glaszig
10dd214b17 add class for system information 2019-08-19 22:35:29 +02:00
glaszig
76f905fe9d use template for about page 2019-08-19 22:35:29 +02:00
glaszig
5a49768614 fix renderTemplate() function to allow data-less rendering 2019-08-19 22:35:29 +02:00
Bill Zimmerman
6985322ca0
Merge pull request #387 from glaszig/fix/wifi-stations
restore configuration of multiple networks
2019-08-19 18:50:58 +02:00
glaszig
1c8931c63b restore configuration of multiple networks
fucked up in 993dc633a9
2019-08-19 18:06:15 +02:00
glaszig
20d9e919c3 generate only one csrf token per session
some pages issue xhr which lead to new
tokens in the session and a future check
is garuanteed to fail.
2019-08-19 03:12:37 +01:00
Bill Zimmerman
5858971762
Merge pull request #372 from glaszig/ui/xhr-load-cached-wifi-stations
load wifi stations via ajax, cache the scan result
2019-08-17 09:53:13 +02:00
glaszig
d2bb1b02b5 move CSRFTokenFieldTag up to the opening form tag
for style and discoverability
2019-08-14 02:44:13 +02:00
glaszig
f5e3b717ff add missing CSRFTokenFieldTag's 2019-08-14 02:41:58 +02:00
Bill Zimmerman
d124e68275 Processed with phpcs for PSR-2 2019-08-12 11:22:06 +02:00
Bill Zimmerman
6d347f9a52
Merge pull request #374 from glaszig/feature/rpi4b
add RPI 4
2019-08-12 11:12:26 +02:00
Bill Zimmerman
e2f07044b4
Merge pull request #362 from glaszig/feature/ap-client-limit
make hostapd's max_num_sta configurable
2019-08-10 12:13:30 +02:00
sunnybank101
f3e3beb0ce add RPI 4 2019-08-10 12:09:04 +02:00
glaszig
3f9d176793 show current nax_num_sta as input value,
make field description translatable
2019-08-10 11:57:10 +02:00
Bill Zimmerman
6286595898
Merge pull request #369 from glaszig/fix/arp-speed
speed up dashboard
2019-08-09 18:02:54 +02:00
Bill Zimmerman
b878e87cae
Merge pull request #371 from glaszig/ui/layout-fixes
layout improvements
2019-08-09 16:34:14 +02:00
glaszig
916072f7fd bootstrap panel-footer goes directly after panel-body
https://getbootstrap.com/docs/3.3/components/#panels-footer
2019-08-09 16:21:58 +02:00
Bill Zimmerman
a00f1be009
Merge pull request #366 from glaszig/feature/improved-service-status-indicator
improved service status display
2019-08-08 20:55:04 +02:00
glaszig
993dc633a9 load wifi stations via ajax, cache the scan result
until the "rescan" button is pressed. speeds up
"configure client" page massively.
2019-08-08 03:44:28 +02:00
glaszig
56097d5629 send proper csrf header 2019-08-08 00:14:12 +02:00
glaszig
1fddad190f fix require paths 2019-08-07 23:51:22 +02:00
glaszig
c1da509053 remove superfluous, overly nested html (mainly bootstrap panels) 2019-08-07 23:16:56 +02:00
sunnybank101
62c7e99465 arp can take for ever
added -n to the arp command to speed it up!
2019-08-07 22:48:59 +02:00
billz
b5f875cce7 Updated CSRFTokenFieldTag 2019-08-07 21:01:05 +01:00
glaszig
da69d3d768 send CSRF token in a response header,
update the page's CSRF tokens with the new token
from the response header,
verify csrf token in ajax endpoints,
initialize a session for every endpoint
2019-08-06 21:34:58 +02:00
glaszig
8f3489cd4a remove id attribute from csrf token field due to obsolescence
and if there's multiple form's on the page it would lead to
multiple elements with the same id which is illegal in html
2019-08-06 20:55:16 +02:00
glaszig
f36b08c10a rename CSRFToken() to the more apt CSRFTokenFieldTag() 2019-08-06 20:55:16 +02:00
glaszig
0a255e8b49 don't write the csrf token field to the output buffer
but return and echo it
2019-08-06 20:55:16 +02:00
glaszig
6f1ae104f3 improve CSRFToken() implementation 2019-08-06 20:55:16 +02:00
glaszig
2f6dc2cc05 remove superfluous semi-colon 2019-08-06 20:55:16 +02:00
glaszig
964dc00fab generate a new csrf token for each request 2019-08-06 20:55:16 +02:00
glaszig
7898dc24c8 mcrypt_create_iv is deprecated, openssl_random_pseudo_bytes
depends on openssl. php7 has the platform-independent
`random_bytes` to generate "cryptographically secure"
random data. use that for csrf token.
2019-08-06 20:55:16 +02:00
glaszig
490cb14acd removing superfluous call to CSRFToken() which
just put the hidden input onto the page for js
to have access to it. this is now handled with
a meta tag.
2019-08-06 20:55:16 +02:00
glaszig
b9e9b7fe39 move csrf token initialization into function 2019-08-06 20:55:16 +02:00
glaszig
0967a53152 validate token value from csrf token header
if supplied and not overridden by post request param
2019-08-06 20:55:16 +02:00
glaszig
20bb9fe42f add csrf meta tag (for use with xhr, for example) 2019-08-06 20:55:16 +02:00
glaszig
87fe8948b8 remove splattered, duplicated csrf validation code
since we do that always and early, now.
2019-08-06 20:55:16 +02:00
glaszig
f989b8060b always verify csrf token for resource-modifying requests,
that is post, put, patch, delete
2019-08-06 20:55:16 +02:00