d18bd17eb7
- eventsource.php: in case of potential CSRF attack we send an error message from the EventSource to the browser
...
- eventsource.js: handle undefined data on event
- update.js: in case of error we close the event source - advise the user to reload the page
- update.php: EventSource initialization is now done before we enter the maintenance mode in order to allow browser reload in case of possible CSRF attack
12 years ago
8065c73339
fixing eventsource.js for IE8
12 years ago
0986b6f910
Use global oc_requesttoken for Event Source
12 years ago
4c707d1b1f
remove debug output
12 years ago
e5ad774ab0
coding style
12 years ago
4764876192
check whether to join url with ? or &
12 years ago
776be8d9f7
all but the first parameter are introduced by &
12 years ago
393d2517ee
Change the requesttoken back to OC.EventSource.requesttoken
13 years ago
8b01286a5d
Merged branch 'master'
13 years ago
743826bbf3
Reimplementation of CSRF protection including autorefresh
13 years ago
b1010160b3
CSRF protection for eventsource
13 years ago
2f68b08491
fix eventsource for ie
13 years ago
ad495a9218
fix potential problem when using multiply eventsource's
13 years ago
fdf3df3de5
add option to send get data along with an eventsource request
13 years ago
8543e79713
add option to send get data along with an eventsource request
13 years ago
6a1121ab2e
provide server side close option for EventStream
13 years ago
45038af948
provide small wrapper around server side events and provide a fallback for IE
13 years ago
Thomas Müller