External-Mirrors/awx
2
0
Fork 0
mirror of https://github.com/ansible/awx.git synced 2026-01-15 20:00:43 -03:30
Code Issues Packages Projects Releases Wiki Activity

Merge pull request #31 from mabashian/7281-xss-inv-source

Browse Source 
Fix inv source schedule title sanitizing
This commit is contained in:
Michael Abashian 2017-07-24 17:23:38 -04:00 committed by GitHub
commit 2125a9b8d0
2 changed files with 3 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
awx/ui/client/src/inventories-hosts/inventories/related/sources/list/schedule/sources-schedule.route.js
View File

@ -44,9 +44,9 @@ export default {
},
// target the un-named ui-view @ root level
'@': {
templateProvider: function(ScheduleList, generateList, ParentObject) {
templateProvider: function(ScheduleList, generateList, ParentObject, $filter) {
// include name of parent resource in listTitle
ScheduleList.listTitle = `${ParentObject.name}<div class='List-titleLockup'></div>` + N_('SCHEDULES');
ScheduleList.listTitle = `${$filter('sanitize')(ParentObject.name)}<div class='List-titleLockup'></div>` + N_('SCHEDULES');
let html = generateList.build({
list: ScheduleList,
mode: 'edit'

2
awx/ui/client/src/scheduler/schedules.list.js
View File

@ -12,7 +12,7 @@ export default ['i18n', function(i18n) {
iterator: 'schedule',
selectTitle: '',
editTitle: 'SCHEDULES',
listTitle: '{{parentObject}} || SCHEDULES',
listTitle: '{{parentObject | sanitize}} || SCHEDULES',
index: false,
hover: true,