Skip to content
体验新版
项目
组织
正在加载...
登录
切换导航
打开侧边栏
superrain51
apollo
提交
b5832dad
apollo
项目概览
superrain51
/
apollo
与 Fork 源项目一致
从无法访问的项目Fork
通知
1
Star
0
Fork
0
代码
文件
提交
分支
Tags
贡献者
分支图
Diff
Issue
0
列表
看板
标记
里程碑
合并请求
0
Wiki
0
Wiki
分析
仓库
DevOps
项目成员
Pages
apollo
项目概览
项目概览
详情
发布
仓库
仓库
文件
提交
分支
标签
贡献者
分支图
比较
Issue
0
Issue
0
列表
看板
标记
里程碑
合并请求
0
合并请求
0
Pages
分析
分析
仓库分析
DevOps
Wiki
0
Wiki
成员
成员
收起侧边栏
关闭侧边栏
动态
分支图
创建新Issue
提交
Issue看板
前往新版Gitcode,体验更适合开发者的 AI 搜索 >>
提交
b5832dad
编写于
10月 18, 2020
作者:
J
Jason Song
浏览文件
操作
浏览文件
下载
电子邮件补丁
差异文件
fix potential xss issue with user id
上级
77f801c8
变更
6
隐藏空白更改
内联
并排
Showing
6 changed file
with
8 addition
and
6 deletion
+8
-6
apollo-portal/src/main/resources/static/app.html
apollo-portal/src/main/resources/static/app.html
+2
-0
apollo-portal/src/main/resources/static/scripts/controller/AccessKeyController.js
...esources/static/scripts/controller/AccessKeyController.js
+1
-1
apollo-portal/src/main/resources/static/scripts/controller/AppController.js
...main/resources/static/scripts/controller/AppController.js
+1
-1
apollo-portal/src/main/resources/static/scripts/controller/SettingController.js
.../resources/static/scripts/controller/SettingController.js
+2
-2
apollo-portal/src/main/resources/static/scripts/controller/config/ConfigNamespaceController.js
...ic/scripts/controller/config/ConfigNamespaceController.js
+1
-1
apollo-portal/src/main/resources/static/scripts/directive/delete-namespace-modal-directive.js
...tic/scripts/directive/delete-namespace-modal-directive.js
+1
-1
未找到文件。
apollo-portal/src/main/resources/static/app.html
浏览文件 @
b5832dad
...
...
@@ -118,6 +118,8 @@
<!-- bootstrap.js -->
<script
src=
"vendor/bootstrap/js/bootstrap.min.js"
type=
"text/javascript"
></script>
<script
src=
"../vendor/lodash.min.js"
></script>
<!--valdr-->
<script
src=
"vendor/valdr/valdr.min.js"
type=
"text/javascript"
></script>
<script
src=
"vendor/valdr/valdr-message.min.js"
type=
"text/javascript"
></script>
...
...
apollo-portal/src/main/resources/static/scripts/controller/AccessKeyController.js
浏览文件 @
b5832dad
...
...
@@ -79,7 +79,7 @@ function AccessKeyController($scope, $location, $translate, toastr,
$scope
.
appRoleUsers
=
result
;
$scope
.
admins
=
[];
$scope
.
appRoleUsers
.
masterUsers
.
forEach
(
function
(
user
)
{
$scope
.
admins
.
push
(
user
.
userId
);
$scope
.
admins
.
push
(
_
.
escape
(
user
.
userId
)
);
});
});
}
...
...
apollo-portal/src/main/resources/static/scripts/controller/AppController.js
浏览文件 @
b5832dad
...
...
@@ -118,7 +118,7 @@ function createAppController($scope, $window, $translate, toastr, AppService, Ap
if
(
owner
)
{
$
(
"
.adminSelector
"
).
parent
().
find
(
"
.select2-selection__rendered
"
).
prepend
(
'
<li class="select2-selection__choice J_owner">
'
+
owner
.
text
+
'
</li>
'
)
+
_
.
escape
(
owner
.
text
)
+
'
</li>
'
)
}
}
}
apollo-portal/src/main/resources/static/scripts/controller/SettingController.js
浏览文件 @
b5832dad
...
...
@@ -86,7 +86,7 @@ function SettingController($scope, $location, $translate, toastr,
$scope
.
appRoleUsers
=
result
;
$scope
.
admins
=
[];
$scope
.
appRoleUsers
.
masterUsers
.
forEach
(
function
(
user
)
{
$scope
.
admins
.
push
(
user
.
userId
);
$scope
.
admins
.
push
(
_
.
escape
(
user
.
userId
)
);
});
});
...
...
@@ -106,7 +106,7 @@ function SettingController($scope, $location, $translate, toastr,
$orgWidget
.
val
(
app
.
orgId
).
trigger
(
"
change
"
);
var
$ownerSelector
=
$
(
'
.ownerSelector
'
);
var
defaultSelectedDOM
=
'
<option value="
'
+
app
.
ownerName
+
'
" selected="selected">
'
+
app
.
ownerName
var
defaultSelectedDOM
=
'
<option value="
'
+
_
.
escape
(
app
.
ownerName
)
+
'
" selected="selected">
'
+
_
.
escape
(
app
.
ownerName
)
+
'
</option>
'
;
$ownerSelector
.
append
(
defaultSelectedDOM
);
$ownerSelector
.
trigger
(
'
change
'
);
...
...
apollo-portal/src/main/resources/static/scripts/controller/config/ConfigNamespaceController.js
浏览文件 @
b5832dad
...
...
@@ -35,7 +35,7 @@ function controller($rootScope, $scope, $translate, toastr, AppUtil, EventManage
.
then
(
function
(
result
)
{
var
masterUsers
=
''
;
result
.
masterUsers
.
forEach
(
function
(
user
)
{
masterUsers
+=
user
.
userId
+
'
,
'
;
masterUsers
+=
_
.
escape
(
user
.
userId
)
+
'
,
'
;
});
$scope
.
masterUsers
=
masterUsers
.
substring
(
0
,
masterUsers
.
length
-
1
);
},
function
(
result
)
{
...
...
apollo-portal/src/main/resources/static/scripts/directive/delete-namespace-modal-directive.js
浏览文件 @
b5832dad
...
...
@@ -58,7 +58,7 @@ function deleteNamespaceModalDirective($window, $q, $translate, toastr, AppUtil,
var
masterUsers
=
[];
appRoleUsers
.
masterUsers
.
forEach
(
function
(
user
)
{
masterUsers
.
push
(
user
.
userId
);
masterUsers
.
push
(
_
.
escape
(
user
.
userId
)
);
if
(
currentUser
.
userId
==
user
.
userId
)
{
isAppMasterUser
=
true
;
...
...
编辑
预览
Markdown
is supported
0%
请重试
或
添加新附件
.
添加附件
取消
You are about to add
0
people
to the discussion. Proceed with caution.
先完成此消息的编辑!
取消
想要评论请
注册
或
登录