mirrors/btcpayserver
1
0
Fork 0
mirror of https://github.com/btcpayserver/btcpayserver.git synced 2025-02-23 22:46:49 +01:00
Code Issues Projects Releases Packages Wiki Activity
btcpayserver/BTCPayServer/Views/Shared/_StatusMessage.cshtml
Nicolas Dorier 7b5ce8f70c
CSP: Remove unsafe-eval when vue isn't used (#4747) 
* CSP: Remove unsafe-eval when vue isn't used

* Prevent XSS injection via VueJS
2023-03-08 17:57:36 +09:00

24 lines
802 B
Text
Raw Blame History

@using BTCPayServer.Abstractions.Extensions
@{
var parsedModel = TempData.GetStatusMessageModel();
}
@if (parsedModel != null)
{
<div class="alert alert-@parsedModel.SeverityCSS @(parsedModel.AllowDismiss? "alert-dismissible":"" ) @(ViewData["Margin"] ?? "mb-4") text-break" role="alert" v-pre>
@if (parsedModel.AllowDismiss)
{
<button type="button" class="btn-close" data-bs-dismiss="alert" aria-label="Close">
<vc:icon symbol="close" />
</button>
}
@if (!string.IsNullOrEmpty(parsedModel.Message))
{
<span style="white-space: pre-wrap;">@parsedModel.Message</span>
}
@if (!string.IsNullOrEmpty(parsedModel.Html))
{
@Safe.Raw(parsedModel.Html)
}
</div>
}
Reference in a new issue View git blame Copy permalink