btcpayserver/BTCPayServer/Views/UIManage/ConfirmAPIKey.cshtml

@model BTCPayServer.Controllers.UIManageController.AuthorizeApiKeysViewModel

@{
    var displayName = Model.ApplicationName ?? Model.ApplicationIdentifier;
    ViewData["Title"] = $"Authorize {displayName ?? "Application"}";
    Layout = "_LayoutWizard";
}

@section PageFootContent {
    <script>
        delegate('click', '#back', () => { history.back() });
    </script>
}

<partial name="_StatusMessage" />

<form method="post" asp-controller="UIManage" asp-action="AuthorizeAPIKey">
    <input type="hidden" asp-for="ApplicationName" value="@Model.ApplicationName"/>
    <input type="hidden" asp-for="ApplicationIdentifier" value="@Model.ApplicationIdentifier"/>
    <input type="hidden" asp-for="ApiKey" value="@Model.ApiKey"/>
    <input type="hidden" asp-for="Strict" value="@Model.Strict"/>
    <input type="hidden" asp-for="RedirectUrl" value="@Model.RedirectUrl"/>
    <input type="hidden" asp-for="Permissions" value="@Model.Permissions"/>
    <input type="hidden" asp-for="SelectiveStores" value="@Model.SelectiveStores"/>
    <header class="text-center">
        <h1>@ViewData["Title"]</h1>
        <p class="lead text-secondary mt-3">Are you sure about exposing your API Key to @displayName?</p>
    </header>
    <p>
        You've previously generated the API Key <code>@Model.ApiKey</code> specifically for
        <strong>@displayName</strong> with the URL <code>@Model.RedirectUrl</code>.
    </p>
    <div class="d-flex gap-3">
        <button class="btn btn-primary" name="command" id="continue" type="submit" value="Confirm">Authorize app</button>
        <button class="btn btn-secondary" name="command" id="back" type="button">Cancel</button>
    </div>
</form>
Rename UI controllers 2022-01-07 04:32:00 +01:00			`@model BTCPayServer.Controllers.UIManageController.AuthorizeApiKeysViewModel`
Greenfield: Rename API key redirect params; switch to POST body (#1898) * Rename user param to userId in API key redirect This way it is clearer what to expect and it also make the parameteer easier to consume. * Post redirect: Allow form url and prettify page - Form URL as alternative to controller/action for external URLs - Making it look nice and add explanation for non-JS case * APIKeys: Minor view updates fix * APIKeys: Use POST redirect for confirmation fix * UI: Minor update to confirm view Tidies it up and adapts to the newly added ConfirmAPIKeys view. * APIKeys: Update delete view Structures the information in title and description better. * APIKeys: Distinguish authorize and confirm (reuse) * Upgrade ChromeDriver * Test fixes * Clean up PostRedirect view By adding missing forgery token * Re-add tests for callback post values * Rename key param to apiKey in API key redirect * Update BTCPayServer/wwwroot/swagger/v1/swagger.template.authorization.json Co-authored-by: Andrew Camilleri <evilkukka@gmail.com> * Use DEBUG conditional for postredirect-callback-test route * Remove unnecessary ChromeDriver references * Add debug flag * Remove debug flags Co-authored-by: Andrew Camilleri <evilkukka@gmail.com> 2020-09-17 11:37:49 +02:00
			`@{`
			`var displayName = Model.ApplicationName ?? Model.ApplicationIdentifier;`
Better handling of confirm case (existing API key) 2022-06-21 11:42:58 +02:00			`ViewData["Title"] = $"Authorize {displayName ?? "Application"}";`
			`Layout = "_LayoutWizard";`
Greenfield: Rename API key redirect params; switch to POST body (#1898) * Rename user param to userId in API key redirect This way it is clearer what to expect and it also make the parameteer easier to consume. * Post redirect: Allow form url and prettify page - Form URL as alternative to controller/action for external URLs - Making it look nice and add explanation for non-JS case * APIKeys: Minor view updates fix * APIKeys: Use POST redirect for confirmation fix * UI: Minor update to confirm view Tidies it up and adapts to the newly added ConfirmAPIKeys view. * APIKeys: Update delete view Structures the information in title and description better. * APIKeys: Distinguish authorize and confirm (reuse) * Upgrade ChromeDriver * Test fixes * Clean up PostRedirect view By adding missing forgery token * Re-add tests for callback post values * Rename key param to apiKey in API key redirect * Update BTCPayServer/wwwroot/swagger/v1/swagger.template.authorization.json Co-authored-by: Andrew Camilleri <evilkukka@gmail.com> * Use DEBUG conditional for postredirect-callback-test route * Remove unnecessary ChromeDriver references * Add debug flag * Remove debug flags Co-authored-by: Andrew Camilleri <evilkukka@gmail.com> 2020-09-17 11:37:49 +02:00			`}`

Better handling of confirm case (existing API key) 2022-06-21 11:42:58 +02:00			`@section PageFootContent {`
Fix CSP for inline handlers in Safari (#2946) * Fix CSP for inline handlers on LND seed backup page * Fix CSP for inline handlers on checkout page * Fix CSP for inline handlers on wallet sign pages * Fix CSP for inline handlers on invoices list page * Fix CSP for inline handlers on payouts page * Fix CSP for inline handlers on confirm API key page * Fix CSP for inline handlers on store rates page * Fix CSP for inline handlers on notifications page * Fix CSP for inline handlers on dynamic DNS page * Fix CSP for inline handlers on checkout experience page 2021-10-05 08:52:14 +02:00			`<script>`
			`delegate('click', '#back', () => { history.back() });`
			`</script>`
Better handling of confirm case (existing API key) 2022-06-21 11:42:58 +02:00			`}`

			`<partial name="_StatusMessage" />`

			`<form method="post" asp-controller="UIManage" asp-action="AuthorizeAPIKey">`
			`<input type="hidden" asp-for="ApplicationName" value="@Model.ApplicationName"/>`
			`<input type="hidden" asp-for="ApplicationIdentifier" value="@Model.ApplicationIdentifier"/>`
			`<input type="hidden" asp-for="ApiKey" value="@Model.ApiKey"/>`
			`<input type="hidden" asp-for="Strict" value="@Model.Strict"/>`
			`<input type="hidden" asp-for="RedirectUrl" value="@Model.RedirectUrl"/>`
			`<input type="hidden" asp-for="Permissions" value="@Model.Permissions"/>`
			`<input type="hidden" asp-for="SelectiveStores" value="@Model.SelectiveStores"/>`
			`<header class="text-center">`
			`<h1>@ViewData["Title"]</h1>`
			`<p class="lead text-secondary mt-3">Are you sure about exposing your API Key to @displayName?</p>`
			`</header>`
			`<p>`
			`You've previously generated the API Key <code>@Model.ApiKey</code> specifically for`
			`<strong>@displayName</strong> with the URL <code>@Model.RedirectUrl</code>.`
			`</p>`
			`<div class="d-flex gap-3">`
			`<button class="btn btn-primary" name="command" id="continue" type="submit" value="Confirm">Authorize app</button>`
			`<button class="btn btn-secondary" name="command" id="back" type="button">Cancel</button>`
			`</div>`
			`</form>`