minor security fix
This commit is contained in:
Your Name
Henri Dickson
parent
8edce3122b
commit
26eddd848a
18 changed files with 25 additions and 57 deletions
|
|
@ -35,7 +35,7 @@
|
|||
<link rel="stylesheet" href="{% static 'css/boofilsic.css' %}">
|
||||
<link rel="stylesheet" href="{% static 'lib/css/rating-star.css' %}">
|
||||
<link rel="stylesheet" href="{% static 'lib/css/collection.css' %}">
|
||||
<link rel="search"type="application/opensearchdescription+xml" title="{{ site_name }}" href="{% static 'opensearch.xml' %}">
|
||||
<link rel="search" type="application/opensearchdescription+xml" title="{{ site_name }}" href="{% static 'opensearch.xml' %}">
|
||||
<script src="{% static 'catalog.js' %}"></script>
|
||||
<script src="{% static 'lib/js/tag-input.js' %}"></script>
|
||||
<link href="{% static 'lib/css/tag-input.css' %}" type="text/css" media="all" rel="stylesheet">
|
||||
|
|
|
|||
|
|
@ -98,8 +98,8 @@
|
|||
<div class="action-panel">
|
||||
<div class="action-panel__label">{% trans '借阅或购买' %}</div>
|
||||
<div class="action-panel__button-group">
|
||||
<a class="action-panel__button" target="_blank" href="https://www.worldcat.org/isbn/{{ item.isbn }}">{% trans 'WorldCat' %}</a>
|
||||
<a class="action-panel__button" target="_blank" href="https://openlibrary.org/search?isbn={{ item.isbn }}">{% trans 'Open Library' %}</a>
|
||||
<a class="action-panel__button" target="_blank" rel="noopener" href="https://www.worldcat.org/isbn/{{ item.isbn }}">{% trans 'WorldCat' %}</a>
|
||||
<a class="action-panel__button" target="_blank" rel="noopener" href="https://openlibrary.org/search?isbn={{ item.isbn }}">{% trans 'Open Library' %}</a>
|
||||
</div>
|
||||
</div>
|
||||
</div>
|
||||
|
|
|
|||
|
|
@ -41,7 +41,7 @@
|
|||
<div class="main-section-wrapper">
|
||||
<div class="entity-detail">
|
||||
|
||||
<a href="{{ item.cover.url }}" class="entity-detail__img-origin" target="_blank" title="{% trans '查看原图' %}">
|
||||
<a href="{{ item.cover.url }}" class="entity-detail__img-origin" target="_blank" rel="noopener" title="{% trans '查看原图' %}">
|
||||
<img src="{{ item.cover|thumb:'normal' }}" class="entity-detail__img" alt="{{ item.title }}">
|
||||
</a>
|
||||
|
||||
|
|
@ -148,7 +148,7 @@
|
|||
{% endif %}
|
||||
|
||||
{% if others_mark.shelfmember.metadata.shared_link %}
|
||||
<a href="{{ others_mark.shelfmember.metadata.shared_link }}" target="_blank"><span class="entity-marks__mark-time">{{ others_mark.created_time | date }}</span></a>
|
||||
<a href="{{ others_mark.shelfmember.metadata.shared_link }}" target="_blank" rel="noopener"><span class="entity-marks__mark-time">{{ others_mark.created_time | date }}</span></a>
|
||||
{% else %}
|
||||
<span class="entity-marks__mark-time">{{ others_mark.created_time | date }}</span>
|
||||
{% endif %}
|
||||
|
|
|
|||
|
|
@ -47,7 +47,7 @@
|
|||
{% endif %}
|
||||
|
||||
{% if others_mark.metadata.shared_link %}
|
||||
<a href="{{ others_mark.metadata.shared_link }}" target="_blank"><span class="entity-marks__mark-time">{{ others_mark.mark.created_time|date }}</span></a>
|
||||
<a href="{{ others_mark.metadata.shared_link }}" target="_blank" rel="noopener"><span class="entity-marks__mark-time">{{ others_mark.mark.created_time|date }}</span></a>
|
||||
{% else %}
|
||||
<span class="entity-marks__mark-time">{{ others_mark.mark.created_time|date }}</span>
|
||||
{% endif %}
|
||||
|
|
|
|||
|
|
@ -45,7 +45,7 @@
|
|||
{% endif %}
|
||||
</div>
|
||||
<div>{% if item.imdb %}
|
||||
{% trans 'IMDb:' %}<a href="https://www.imdb.com/title/{{ item.imdb }}/" target="_blank">{{ item.imdb }}</a>
|
||||
{% trans 'IMDb:' %}<a href="https://www.imdb.com/title/{{ item.imdb }}/" target="_blank" rel="noopener">{{ item.imdb }}</a>
|
||||
{% endif %}
|
||||
</div>
|
||||
<div>{% if item.director %}{% trans '导演:' %}
|
||||
|
|
@ -144,7 +144,7 @@
|
|||
{% endfor %}
|
||||
{% endif %}</div>
|
||||
<div>{% if item.site %}{% trans '网站:' %}
|
||||
<a href="{{ item.site }}" target="_blank">{{ item.site|strip_scheme }}</a>
|
||||
<a href="{{ item.site }}" target="_blank" rel="noopener">{{ item.site|strip_scheme }}</a>
|
||||
{% endif %}</div>
|
||||
{% if item.other_info %}
|
||||
{% for k, v in item.other_info.items %}
|
||||
|
|
|
|||
|
|
@ -32,7 +32,7 @@
|
|||
<!-- <a class="icon" title="详细介绍" href="{{ep.link}}">
|
||||
<i class="fa-solid fa-circle-info"></i>
|
||||
</a> -->
|
||||
<a class="icon" title="打开源网站" target="_blank" href="{{ep.link}}">
|
||||
<a class="icon" title="打开源网站" target="_blank" rel="noopener" href="{{ep.link}}">
|
||||
<i class="fa-solid fa-arrow-up-right-from-square"></i>
|
||||
</a>
|
||||
</div>
|
||||
|
|
|
|||
|
|
@ -45,7 +45,7 @@
|
|||
{% endif %}
|
||||
</div>
|
||||
<div>{% if item.imdb %}
|
||||
{% trans 'IMDb:' %}<a href="https://www.imdb.com/title/{{ item.imdb }}/" target="_blank">{{ item.imdb }}</a>
|
||||
{% trans 'IMDb:' %}<a href="https://www.imdb.com/title/{{ item.imdb }}/" target="_blank" rel="noopener">{{ item.imdb }}</a>
|
||||
{% endif %}
|
||||
</div>
|
||||
<div>{% if item.director %}{% trans '导演:' %}
|
||||
|
|
@ -158,7 +158,7 @@
|
|||
{% endfor %}
|
||||
{% endif %}</div>
|
||||
<div>{% if item.site %}{% trans '网站:' %}
|
||||
<a href="{{ item.site }}" target="_blank">{{ item.site|strip_scheme }}</a>
|
||||
<a href="{{ item.site }}" target="_blank" rel="noopener">{{ item.site|strip_scheme }}</a>
|
||||
{% endif %}</div>
|
||||
{% if item.other_info %}
|
||||
{% for k, v in item.other_info.items %}
|
||||
|
|
|
|||
|
|
@ -45,7 +45,7 @@
|
|||
{% endif %}
|
||||
</div>
|
||||
<div>{% if item.imdb %}
|
||||
{% trans 'IMDb:' %}<a href="https://www.imdb.com/title/{{ item.imdb }}/" target="_blank">{{ item.imdb }}</a>
|
||||
{% trans 'IMDb:' %}<a href="https://www.imdb.com/title/{{ item.imdb }}/" target="_blank" rel="noopener">{{ item.imdb }}</a>
|
||||
{% endif %}
|
||||
</div>
|
||||
<div>{% if item.director %}{% trans '导演:' %}
|
||||
|
|
@ -156,7 +156,7 @@
|
|||
{% endfor %}
|
||||
{% endif %}</div>
|
||||
<div>{% if item.site %}{% trans '网站:' %}
|
||||
<a href="{{ item.site }}" target="_blank">{{ item.site|strip_scheme }}</a>
|
||||
<a href="{{ item.site }}" target="_blank" rel="noopener">{{ item.site|strip_scheme }}</a>
|
||||
{% endif %}</div>
|
||||
{% if item.other_info %}
|
||||
{% for k, v in item.other_info.items %}
|
||||
|
|
|
|||
|
|
@ -100,38 +100,6 @@ async function getFollowing(id, mastodonURI, token, callback) {
|
|||
callback(json, nextUrl);
|
||||
}
|
||||
|
||||
// {
|
||||
// "id": "1",
|
||||
// "username": "Gargron",
|
||||
// "acct": "Gargron",
|
||||
// "display_name": "Eugen",
|
||||
// "locked": false,
|
||||
// "bot": false,
|
||||
// "created_at": "2016-03-16T14:34:26.392Z",
|
||||
// "note": "<p>Developer of Mastodon and administrator of mastodon.social. I post service announcements, development updates, and personal stuff.</p>",
|
||||
// "url": "https://mastodon.social/@Gargron",
|
||||
// "avatar": "https://files.mastodon.social/accounts/avatars/000/000/001/original/d96d39a0abb45b92.jpg",
|
||||
// "avatar_static": "https://files.mastodon.social/accounts/avatars/000/000/001/original/d96d39a0abb45b92.jpg",
|
||||
// "header": "https://files.mastodon.social/accounts/headers/000/000/001/original/c91b871f294ea63e.png",
|
||||
// "header_static": "https://files.mastodon.social/accounts/headers/000/000/001/original/c91b871f294ea63e.png",
|
||||
// "followers_count": 318699,
|
||||
// "following_count": 453,
|
||||
// "statuses_count": 61013,
|
||||
// "last_status_at": "2019-11-30T20:02:08.277Z",
|
||||
// "emojis": [],
|
||||
// "fields": [
|
||||
// {
|
||||
// "name": "Patreon",
|
||||
// "value": "<a href=\"https://www.patreon.com/mastodon\" rel=\"me nofollow noopener noreferrer\" target=\"_blank\"><span class=\"invisible\">https://www.</span><span class=\"\">patreon.com/mastodon</span><span class=\"invisible\"></span></a>",
|
||||
// "verified_at": null
|
||||
// },
|
||||
// {
|
||||
// "name": "Homepage",
|
||||
// "value": "<a href=\"https://zeonfederated.com\" rel=\"me nofollow noopener noreferrer\" target=\"_blank\"><span class=\"invisible\">https://</span><span class=\"\">zeonfederated.com</span><span class=\"invisible\"></span></a>",
|
||||
// "verified_at": "2019-07-15T18:29:57.191+00:00"
|
||||
// }
|
||||
// ]
|
||||
// }
|
||||
function getUserInfo(id, mastodonURI, token, callback) {
|
||||
let url = mastodonURI + API_GET_ACCOUNT.replace(":id", id);
|
||||
fetch(url, {headers: {'Authorization': 'Bearer ' + token}}).then((response) => response.json()).then(callback);
|
||||
|
|
|
|||
|
|
@ -2,14 +2,14 @@
|
|||
<div class="grid">
|
||||
<div class="footer__border">
|
||||
{% if social_link %}
|
||||
<a class="footer__link" target="_blank" href="{{ social_link }}">关注我们</a>
|
||||
<a class="footer__link" target="_blank" rel="noopener" href="{{ social_link }}">关注我们</a>
|
||||
{% endif %}
|
||||
{% if support_link %}
|
||||
<a class="footer__link" target="_blank" href="{{ support_link }}">问题反馈</a>
|
||||
<a class="footer__link" target="_blank" rel="noopener" href="{{ support_link }}">问题反馈</a>
|
||||
{% endif %}
|
||||
<a class="footer__link" target="_blank" href="https://github.com/neodb-social">源代码</a>
|
||||
<a class="footer__link" target="_blank" rel="noopener" href="https://github.com/neodb-social">源代码</a>
|
||||
{% if donation_link %}
|
||||
<a class="footer__link" target="_blank" href="{{ donation_link }}">捐助本站</a>
|
||||
<a class="footer__link" target="_blank" rel="noopener" href="{{ donation_link }}">捐助本站</a>
|
||||
{% endif %}
|
||||
<a class="footer__link" href="/announcement/">公告栏</a>
|
||||
</div>
|
||||
|
|
|
|||
|
|
@ -19,7 +19,7 @@
|
|||
</a>
|
||||
<!-- {{ user.id }} -->
|
||||
</div>
|
||||
<p><a class="user-profile__link mast-acct" target="_blank" rel="me" href="{{ user.mastodon_account.url }}">@{{ user.username }}@{{ user.mastodon_site }}</a>
|
||||
<p><a class="user-profile__link mast-acct" target="_blank" rel="me noopener" href="{{ user.mastodon_account.url }}">@{{ user.username }}@{{ user.mastodon_site }}</a>
|
||||
{% current_user_relationship user as relationship %}
|
||||
{% if relationship %}
|
||||
<a class="user-profile__report-link">
|
||||
|
|
|
|||
|
|
@ -44,7 +44,7 @@
|
|||
|
||||
<span>
|
||||
{% if activity.action_object.metadata.shared_link %}
|
||||
<a href="{{ activity.action_object.metadata.shared_link }}" target="_blank" title="打开联邦网络分享链接">
|
||||
<a href="{{ activity.action_object.metadata.shared_link }}" target="_blank" rel="noopener" title="打开联邦网络分享链接">
|
||||
<i class="fa-solid fa-circle-nodes icon-spin"></i>
|
||||
<span>{{ activity.action_object.created_time|prettydate }}</span>
|
||||
</a>
|
||||
|
|
|
|||
|
|
@ -22,7 +22,7 @@
|
|||
<div class="action-bar">
|
||||
<span>
|
||||
{% if activity.action_object.metadata.shared_link %}
|
||||
<a href="{{ activity.action_object.metadata.shared_link }}" target="_blank" title="打开联邦网络分享链接">
|
||||
<a href="{{ activity.action_object.metadata.shared_link }}" target="_blank" rel="noopener" title="打开联邦网络分享链接">
|
||||
<i class="fa-solid fa-circle-nodes icon-spin"></i>
|
||||
<span>{{ activity.action_object.created_time|prettydate }}</span>
|
||||
</a>
|
||||
|
|
|
|||
|
|
@ -23,7 +23,7 @@
|
|||
<div class="action-bar">
|
||||
<span>
|
||||
{% if activity.action_object.metadata.shared_link %}
|
||||
<a href="{{ activity.action_object.metadata.shared_link }}" target="_blank" title="打开联邦网络分享链接">
|
||||
<a href="{{ activity.action_object.metadata.shared_link }}" target="_blank" rel="noopener" title="打开联邦网络分享链接">
|
||||
<i class="fa-solid fa-circle-nodes icon-spin"></i>
|
||||
<span>{{ activity.action_object.created_time|prettydate }}</span>
|
||||
</a>
|
||||
|
|
|
|||
|
|
@ -22,7 +22,7 @@
|
|||
<div class="action-bar">
|
||||
<span>
|
||||
{% if activity.action_object.metadata.shared_link %}
|
||||
<a href="{{ activity.action_object.metadata.shared_link }}" target="_blank" title="打开联邦网络分享链接">
|
||||
<a href="{{ activity.action_object.metadata.shared_link }}" target="_blank" rel="noopener" title="打开联邦网络分享链接">
|
||||
<i class="fa-solid fa-circle-nodes icon-spin"></i>
|
||||
<span>{{ activity.action_object.created_time|prettydate }}</span>
|
||||
</a>
|
||||
|
|
|
|||
|
|
@ -44,7 +44,7 @@
|
|||
|
||||
<span>
|
||||
{% if activity.action_object.metadata.shared_link %}
|
||||
<a href="{{ activity.action_object.metadata.shared_link }}" target="_blank" title="打开联邦网络分享链接">
|
||||
<a href="{{ activity.action_object.metadata.shared_link }}" target="_blank" rel="noopener" title="打开联邦网络分享链接">
|
||||
<i class="fa-solid fa-circle-nodes icon-spin"></i>
|
||||
<span>{{ activity.action_object.created_time|prettydate }}</span>
|
||||
</a>
|
||||
|
|
|
|||
|
|
@ -42,7 +42,7 @@
|
|||
|
||||
<span>
|
||||
{% if activity.action_object.metadata.shared_link %}
|
||||
<a href="{{ activity.action_object.metadata.shared_link }}" target="_blank" title="打开联邦网络分享链接">
|
||||
<a href="{{ activity.action_object.metadata.shared_link }}" target="_blank" rel="noopener" title="打开联邦网络分享链接">
|
||||
<i class="fa-solid fa-circle-nodes icon-spin"></i>
|
||||
<span>{{ activity.action_object.created_time|prettydate }}</span>
|
||||
</a>
|
||||
|
|
|
|||
|
|
@ -38,7 +38,7 @@
|
|||
<div>
|
||||
请在豆伴(豆坟)导出时勾选「书影音游剧」和「评论」。
|
||||
</div>
|
||||
从<a href="https://doufen.org" target="_blank">豆伴(豆坟)</a>备份导出的.xlsx文件:
|
||||
从<a href="https://doufen.org" target="_blank" rel="noopener">豆伴(豆坟)</a>备份导出的.xlsx文件:
|
||||
<input type="file" name="file" id="excel" required accept=".xlsx">
|
||||
</p>
|
||||
<p>
|
||||
|
|
|
|||
Loading…
Add table
Reference in a new issue