9defff1cf4
use template for dhcp page
2019-08-19 22:37:22 +02:00
c1f75a696a
use template for data usage page
2019-08-19 22:37:22 +02:00
7fcdd5e89c
use template for dashboard
2019-08-19 22:37:22 +02:00
d7ee29aeee
use template for configure client page
2019-08-19 22:37:22 +02:00
e4e9b5c5c1
use template for admin page
2019-08-19 22:35:30 +02:00
2215b11c21
use template for themes page
2019-08-19 22:35:29 +02:00
0608b6cb22
use template for system page
2019-08-19 22:35:29 +02:00
10dd214b17
add class for system information
2019-08-19 22:35:29 +02:00
76f905fe9d
use template for about page
2019-08-19 22:35:29 +02:00
5a49768614
fix renderTemplate() function to allow data-less rendering
2019-08-19 22:35:29 +02:00
6985322ca0
Merge pull request #387 from glaszig/fix/wifi-stations
...
restore configuration of multiple networks
2019-08-19 18:50:58 +02:00
1c8931c63b
restore configuration of multiple networks
...
fucked up in 993dc633a9
2019-08-19 18:06:15 +02:00
20d9e919c3
generate only one csrf token per session
...
some pages issue xhr which lead to new
tokens in the session and a future check
is garuanteed to fail.
2019-08-19 03:12:37 +01:00
5858971762
Merge pull request #372 from glaszig/ui/xhr-load-cached-wifi-stations
...
load wifi stations via ajax, cache the scan result
2019-08-17 09:53:13 +02:00
d2bb1b02b5
move CSRFTokenFieldTag up to the opening form tag
...
for style and discoverability
2019-08-14 02:44:13 +02:00
f5e3b717ff
add missing CSRFTokenFieldTag's
2019-08-14 02:41:58 +02:00
d124e68275
Processed with phpcs for PSR-2
2019-08-12 11:22:06 +02:00
6d347f9a52
Merge pull request #374 from glaszig/feature/rpi4b
...
add RPI 4
2019-08-12 11:12:26 +02:00
e2f07044b4
Merge pull request #362 from glaszig/feature/ap-client-limit
...
make hostapd's max_num_sta configurable
2019-08-10 12:13:30 +02:00
f3e3beb0ce
add RPI 4
2019-08-10 12:09:04 +02:00
3f9d176793
show current nax_num_sta as input value,
...
make field description translatable
2019-08-10 11:57:10 +02:00
6286595898
Merge pull request #369 from glaszig/fix/arp-speed
...
speed up dashboard
2019-08-09 18:02:54 +02:00
b878e87cae
Merge pull request #371 from glaszig/ui/layout-fixes
...
layout improvements
2019-08-09 16:34:14 +02:00
916072f7fd
bootstrap panel-footer goes directly after panel-body
...
https://getbootstrap.com/docs/3.3/components/#panels-footer
2019-08-09 16:21:58 +02:00
a00f1be009
Merge pull request #366 from glaszig/feature/improved-service-status-indicator
...
improved service status display
2019-08-08 20:55:04 +02:00
993dc633a9
load wifi stations via ajax, cache the scan result
...
until the "rescan" button is pressed. speeds up
"configure client" page massively.
2019-08-08 03:44:28 +02:00
56097d5629
send proper csrf header
2019-08-08 00:14:12 +02:00
1fddad190f
fix require paths
2019-08-07 23:51:22 +02:00
c1da509053
remove superfluous, overly nested html (mainly bootstrap panels)
2019-08-07 23:16:56 +02:00
62c7e99465
arp can take for ever
...
added -n to the arp command to speed it up!
2019-08-07 22:48:59 +02:00
b5f875cce7
Updated CSRFTokenFieldTag
2019-08-07 21:01:05 +01:00
da69d3d768
send CSRF token in a response header,
...
update the page's CSRF tokens with the new token
from the response header,
verify csrf token in ajax endpoints,
initialize a session for every endpoint
2019-08-06 21:34:58 +02:00
8f3489cd4a
remove id attribute from csrf token field due to obsolescence
...
and if there's multiple form's on the page it would lead to
multiple elements with the same id which is illegal in html
2019-08-06 20:55:16 +02:00
f36b08c10a
rename CSRFToken() to the more apt CSRFTokenFieldTag()
2019-08-06 20:55:16 +02:00
0a255e8b49
don't write the csrf token field to the output buffer
...
but return and echo it
2019-08-06 20:55:16 +02:00
6f1ae104f3
improve CSRFToken() implementation
2019-08-06 20:55:16 +02:00
2f6dc2cc05
remove superfluous semi-colon
2019-08-06 20:55:16 +02:00
964dc00fab
generate a new csrf token for each request
2019-08-06 20:55:16 +02:00
7898dc24c8
mcrypt_create_iv is deprecated, openssl_random_pseudo_bytes
...
depends on openssl. php7 has the platform-independent
`random_bytes` to generate "cryptographically secure"
random data. use that for csrf token.
2019-08-06 20:55:16 +02:00
490cb14acd
removing superfluous call to CSRFToken() which
...
just put the hidden input onto the page for js
to have access to it. this is now handled with
a meta tag.
2019-08-06 20:55:16 +02:00
b9e9b7fe39
move csrf token initialization into function
2019-08-06 20:55:16 +02:00
0967a53152
validate token value from csrf token header
...
if supplied and not overridden by post request param
2019-08-06 20:55:16 +02:00
20bb9fe42f
add csrf meta tag (for use with xhr, for example)
2019-08-06 20:55:16 +02:00
87fe8948b8
remove splattered, duplicated csrf validation code
...
since we do that always and early, now.
2019-08-06 20:55:16 +02:00
f989b8060b
always verify csrf token for resource-modifying requests,
...
that is post, put, patch, delete
2019-08-06 20:55:16 +02:00
93b458197a
Merge pull request #365 from glaszig/feature/connect-hidden-ssid
...
enable wifi client to connect to hidden ssid
2019-08-05 16:04:29 +02:00
9b66c2cd03
Merge pull request #363 from glaszig/fix/hostapd-wmm
...
properly enable wmm by fixing a typo
2019-08-05 15:46:10 +02:00
c0cfcfa117
Bugfix, resolves #367
2019-08-05 14:26:55 +01:00
1152637120
puts service status as label into panel heading
2019-08-02 23:40:06 +02:00
ff21343751
Merge branch 'master' into ui/escape-interface-settings
2019-08-02 18:18:19 +02:00
glaszig
Bill Zimmerman
sunnybank101