lbt/i2p.i2p
1
0
Fork 0
forked from I2P_Developers/i2p.i2p
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

SusiMail: onclick removal (part 3)

Browse Source 
Strict CSP
Fix markall/clearall logic
This commit is contained in:
zzz
2020-05-12 17:43:27 +00:00
parent 8aa23c7dc7
commit a47f6d1b2e
2 changed files with 3 additions and 3 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
apps/susimail/src/js/folder.js
View File

@ -40,7 +40,7 @@ function addClickHandler2(elem)
var form = document.forms[0];
form.delete.disabled = false;
form.markall.disabled = true;
form.clearselection.disabled = true;
form.clearselection.disabled = false;
var buttons = document.getElementsByClassName("delete1");
for(index = 0; index < buttons.length; index++)
{
@ -57,7 +57,7 @@ function addClickHandler3(elem)
var form = document.forms[0];
form.delete.disabled = true;
form.markall.disabled = false;
form.clearselection.disabled = false;
form.clearselection.disabled = true;
var buttons = document.getElementsByClassName("delete1");
for(index = 0; index < buttons.length; index++)
{

2
apps/susimail/src/src/i2p/susi/webmail/WebMail.java
View File

@ -2011,7 +2011,7 @@ public class WebMail extends HttpServlet
httpRequest.setCharacterEncoding("UTF-8");
response.setCharacterEncoding("UTF-8");
response.setHeader("X-Frame-Options", "SAMEORIGIN");
response.setHeader("Content-Security-Policy", "default-src 'self'; style-src 'self' 'unsafe-inline'; script-src 'self' 'unsafe-inline'; form-action 'self'; frame-ancestors 'self'; object-src 'none'; media-src 'none'");
response.setHeader("Content-Security-Policy", "default-src 'self'; style-src 'self' 'unsafe-inline'; script-src 'self'; form-action 'self'; frame-ancestors 'self'; object-src 'none'; media-src 'none'");
response.setHeader("X-XSS-Protection", "1; mode=block");
response.setHeader("X-Content-Type-Options", "nosniff");
response.setHeader("Referrer-Policy", "no-referrer");