diff options
| author | Thomas Müller <thomas.mueller@tmit.eu> | 2013-07-11 00:00:01 +0200 |
|---|---|---|
| committer | Thomas Müller <thomas.mueller@tmit.eu> | 2013-07-11 00:27:21 +0200 |
| commit | d18bd17eb7d13010e3daef5351d7f7ec64480fd7 (patch) | |
| tree | c1c729a778c41fc157ba546083fee9e86f174421 /core/js/update.js | |
| parent | d134ba9a82a904ba317d4a6d9a75e46ab9249ddc (diff) | |
| download | nextcloud-server-d18bd17eb7d13010e3daef5351d7f7ec64480fd7.tar.gz nextcloud-server-d18bd17eb7d13010e3daef5351d7f7ec64480fd7.zip | |
- eventsource.php: in case of potential CSRF attack we send an error message from the EventSource to the browser
- eventsource.js: handle undefined data on event
- update.js: in case of error we close the event source - advise the user to reload the page
- update.php: EventSource initialization is now done before we enter the maintenance mode in order to allow browser reload in case of possible CSRF attack
Diffstat (limited to 'core/js/update.js')
| -rw-r--r-- | core/js/update.js | 5 |
1 files changed, 4 insertions, 1 deletions
diff --git a/core/js/update.js b/core/js/update.js index 8ab02bbf935..2c28e72f7cd 100644 --- a/core/js/update.js +++ b/core/js/update.js @@ -5,6 +5,9 @@ $(document).ready(function () { }); updateEventSource.listen('error', function(message) { $('<span>').addClass('error').append(message).append('<br />').appendTo($('.update')); + message = 'Please reload the page.'; + $('<span>').addClass('error').append(message).append('<br />').appendTo($('.update')); + updateEventSource.close(); }); updateEventSource.listen('failure', function(message) { $('<span>').addClass('error').append(message).append('<br />').appendTo($('.update')); @@ -20,4 +23,4 @@ $(document).ready(function () { window.location.href = OC.webroot; }, 3000); }); -});
\ No newline at end of file +}); |