Dasko/GoNtech
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases 1 Wiki Activity

Bezbednost: ispravke kontrole pristupa u admin i handler sloju

Browse Source
This commit is contained in:
Dalibor Marković
2026-06-05 22:41:20 +02:00
parent ccc08aee08
commit 2b3636528f
44 changed files with 1310 additions and 480 deletions
Download Patch File Download Diff File Expand all files Collapse all files
web/templates/teme/podrazumevana/base.html
+9
View File
@@ -102,6 +102,15 @@
i.type = 'hidden'; i.name = '_csrf'; i.value = m.content;
f.appendChild(i);
});
// data-potvrda: sigurna alternativa za onclick=confirm() na dugmadima i linkovima
// Vrednost atributa je poruka koja se prikazuje korisniku. Go template je HTML-escape-uje,
// JS čita originalnu vrednost — nema problema sa specijalnim karakterima u imenima.
document.querySelectorAll('[data-potvrda]').forEach(function(el) {
el.addEventListener('click', function(e) {
if (!confirm(el.getAttribute('data-potvrda'))) e.preventDefault();
});
});
});
</script>
</body>