antville/antville
antville/antville
1
1
Fork 0
Code Issues 51 Pull requests 8 Projects Releases 9 Wiki Activity Actions

Added tobi's fix from Minnegard.

Browse source
This commit is contained in:
Philipp Naderer 2009-05-15 20:44:55 +00:00
parent 23425bc608
commit 9111aefcdd
1 changed files with 1 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

2
code/HopObject/HopObject.js
View file

@ -59,7 +59,7 @@ HopObject.prototype.map = function(values) {
HopObject.prototype.onRequest = function() { HopObject.prototype.onRequest = function() {
// Checking if we are on the correct host to prevent at least some XSS issues // Checking if we are on the correct host to prevent at least some XSS issues
if (false && req.action !== "notfound" && req.action !== "error" && if (req.action !== "notfound" && req.action !== "error" &&
!this.href().toLowerCase().startsWith(req.servletRequest.scheme + !this.href().toLowerCase().startsWith(req.servletRequest.scheme +
"://" + req.servletRequest.serverName.toLowerCase())) { "://" + req.servletRequest.serverName.toLowerCase())) {
res.redirect(this.href(req.action === "main" ? String.EMPTY : req.action)); res.redirect(this.href(req.action === "main" ? String.EMPTY : req.action));