Michael Stapelberg
|
7e02056689
|
status: include service status and GOARCH in HTTP headers
This will come in handy in https://github.com/gokrazy/breakglass
|
2020-05-25 09:29:58 +02:00 |
|
Michael Stapelberg
|
3a6c5f85d2
|
header: include model name on supported platforms
|
2020-04-08 15:24:36 +02:00 |
|
Michael Stapelberg
|
ffc8928d2e
|
update to new rootdev API
related to https://github.com/gokrazy/gokrazy/issues/52
|
2020-04-07 09:00:10 +02:00 |
|
Michael Stapelberg
|
09fbdb123e
|
bundle bootstrap, bootstrap-table and jquery assets
This way, the UI works even when the user is offline, which is handy for
router7.
|
2019-11-09 09:37:23 +01:00 |
|
Michael Stapelberg
|
25dc781a8e
|
Set Access-Control-Allow-Origin header to load external CSS
With Chrome 70, I didn’t get the bootstrap CSS files anymore.
|
2018-12-26 16:15:14 +01:00 |
|
Michael Stapelberg
|
1c16b3b4eb
|
serve favicon.ico
|
2018-07-15 18:32:46 +02:00 |
|
Michael Stapelberg
|
9770d4408f
|
move root device finding function to internal/rootdev
|
2018-07-14 23:37:12 +02:00 |
|
Michael Stapelberg
|
c74265523b
|
implement XSRF/CSRF protection for /stop and /restart
While stopping/restarting processes seems like a nuisance at best, it’s good
style to prevent these attacks.
This commit the Double-Submit Cookie protection, which seems appropriate for our
architecture and demands. See also:
https://www.owasp.org/index.php/Cross-Site_Request_Forgery_(CSRF)_Prevention_Cheat_Sheet#Double_Submit_Cookie
|
2018-06-25 18:38:08 +02:00 |
|
Michael Stapelberg
|
59b99bc704
|
remove hard-coded mmcblk0 from all places
|
2018-06-17 09:31:14 +02:00 |
|
Michael Stapelberg
|
b5d7cb2fcf
|
add PublicInterfaceAddrs and display them on the status page
|
2018-03-20 19:34:36 +01:00 |
|
Michael Stapelberg
|
38af7fd18d
|
Initial commit
|
2017-03-04 11:22:48 +01:00 |
|