diff options
| author | Vsevolod Stakhov <vsevolod@highsecure.ru> | 2016-04-17 09:32:33 +0100 |
|---|---|---|
| committer | Vsevolod Stakhov <vsevolod@highsecure.ru> | 2016-04-17 09:32:33 +0100 |
| commit | 068fb8011af4b269cbaf8dadaf779ceff02898ee (patch) | |
| tree | 7f03d789ca8f999a561e659a3b9d1554512f32b5 | |
| parent | a07cde0866c9229b31f81282b975b0ec67f4dcb2 (diff) | |
| parent | 5c71b574aba4af3203358284a716061353c521bc (diff) | |
| download | rspamd-068fb8011af4b269cbaf8dadaf779ceff02898ee.tar.gz rspamd-068fb8011af4b269cbaf8dadaf779ceff02898ee.zip | |
Merge pull request #594 from fatalbanana/master
[Fix] Make web interface not send password in query strings (#585)
| -rw-r--r-- | interface/js/rspamd.js | 36 |
1 files changed, 18 insertions, 18 deletions
diff --git a/interface/js/rspamd.js b/interface/js/rspamd.js index 3d6484cd8..2fcc6bfc3 100644 --- a/interface/js/rspamd.js +++ b/interface/js/rspamd.js @@ -78,8 +78,8 @@ dataType: 'json', type: 'GET', url: 'auth', - data: { - password: getPassword() + beforeSend: function (xhr) { + xhr.setRequestHeader('Password', getPassword()); }, success: function (data) { if (data.auth === 'failed') { @@ -94,8 +94,8 @@ dataType: 'json', type: 'GET', url: 'auth', - data: { - password: getPassword() + beforeSend: function (xhr) { + xhr.setRequestHeader('Password', getPassword()); }, success: function (data) { saveCredentials(data, password); @@ -180,8 +180,8 @@ $.ajax({ dataType: 'json', url: 'maps', - data: { - password: getPassword() + beforeSend: function (xhr) { + xhr.setRequestHeader('Password', getPassword()); }, error: function () { alertMessage('alert-modal alert-error', data.statusText); @@ -374,8 +374,8 @@ dataType: 'json', type: 'GET', url: 'pie', - data: { - password: getPassword() + beforeSend: function (xhr) { + xhr.setRequestHeader('Password', getPassword()); }, success: function (data) { if (pie) { @@ -484,8 +484,8 @@ $.ajax({ dataType: 'json', url: 'history', - data: { - password: getPassword() + beforeSend: function (xhr) { + xhr.setRequestHeader('Password', getPassword()); }, error: function () { alertMessage('alert-error', 'Cannot receive history'); @@ -549,8 +549,8 @@ dataType: 'json', type: 'GET', url: 'symbols', - data: { - password: getPassword() + beforeSend: function (xhr) { + xhr.setRequestHeader('Password', getPassword()); }, success: function (data) { $('#modalBody').empty(); @@ -608,8 +608,8 @@ dataType: 'json', type: 'GET', url: 'historyreset', - data: { - password: getPassword() + beforeSend: function (xhr) { + xhr.setRequestHeader('Password', getPassword()); }, success: function (data) { getHistory(); @@ -907,8 +907,8 @@ dataType: 'json', type: 'GET', url: 'actions', - data: { - password: getPassword() + beforeSend: function (xhr) { + xhr.setRequestHeader('Password', getPassword()); }, success: function (data) { // Order of sliders greylist -> probable spam -> spam @@ -1081,8 +1081,8 @@ dataType: 'json', type: 'GET', url: 'auth', - data: { - password: password + beforeSend: function (xhr) { + xhr.setRequestHeader('Password', password); }, success: function (data) { if (data.auth === 'failed') { |