rhodecode-enterprise-ce Files · rhodecode/templates/widgets.mako

security: make sure the admin of repo can only delete comments which are from the same repo....

security: make sure the admin of repo can only delete comments which are from the same repo. - fixes IDOR issue - protects against other people comment deletion by repo admins.

marcink - - Load All Authors

File last commit:

r1282:90601d74 default


                r1818:1ced1b24

default

Download file

             widgets.mako
        
                    18 lines
            
             | 441 B
            
                | application/x-mako
            
             |
                MakoHtmlLexer
            
             / rhodecode / templates / widgets.mako
          
                    History
                
                 |
                  Annotation
                 | Raw
                 |Copy content
                 |Copy permalink

      <%def name="panel(title='', category='default', class_='')">

          <div class="panel panel-${category} ${class_}">

          %if title or hasattr(caller, 'title'):

            <div class="panel-heading">

              <h3 class="panel-title">

              %if title:

              ${title}

              %else:

              ${caller.title()}

              %endif

              </h3>

            </div>

          %endif

            <div class="panel-body">

              ${caller.body()}

            </div>

          </div>

      </%def>

	Site-wide shortcuts
/	Use quick search box
g h	Goto home page
g g	Goto my private gists page
g G	Goto my public gists page
g 0-9	Goto bookmarked items from 0-9
n r	New repository page
n g	New gist page

	Repositories
g s	Goto summary page
g c	Goto changelog page
g f	Goto files page
g F	Goto files page with file search activated
g p	Goto pull requests page
g o	Goto repository settings
g O	Goto repository access permissions settings
t s	Toggle sidebar on some pages

				<%def name="panel(title='', category='default', class_='')">
				<div class="panel panel-${category} ${class_}">
				%if title or hasattr(caller, 'title'):
				<div class="panel-heading">
				<h3 class="panel-title">
				%if title:
				${title}
				%else:
				${caller.title()}
				%endif
				</h3>
				</div>
				%endif
				<div class="panel-body">
				${caller.body()}
				</div>
				</div>
				</%def>