Author: mor
Date: Fri Aug 7 07:27:06 2009
New Revision: 801898
URL: http://svn.apache.org/viewvc?rev=801898&view=rev
Log:
Secure URLs in FTL. Applied a slightly modified patch from Ahmed Dini, part of
OFBIZ-2668 (https://issues.apache.org/jira/browse/OFBIZ-2668)
Modified:
ofbiz/trunk/applications/product/webapp/catalog/store/EditProductStoreSurveys.ftl
Modified:
ofbiz/trunk/applications/product/webapp/catalog/store/EditProductStoreSurveys.ftl
URL:
http://svn.apache.org/viewvc/ofbiz/trunk/applications/product/webapp/catalog/store/EditProductStoreSurveys.ftl?rev=801898&r1=801897&r2=801898&view=diff
==============================================================================
---
ofbiz/trunk/applications/product/webapp/catalog/store/EditProductStoreSurveys.ftl
(original)
+++
ofbiz/trunk/applications/product/webapp/catalog/store/EditProductStoreSurveys.ftl
Fri Aug 7 07:27:06 2009
@@ -44,7 +44,13 @@
<td>${storeSurvey.productCategoryId?default("${uiLabelMap.CommonNA}")}</td>
<td>${storeSurvey.fromDate?string}</td>
<td>${storeSurvey.sequenceNum?if_exists}</td>
- <td><a
href="<@ofbizUrl>deleteProductStoreSurveyAppl?productStoreId=${productStoreId}&productStoreSurveyId=${storeSurvey.productStoreSurveyId}</@ofbizUrl>"
class="buttontext">${uiLabelMap.CommonDelete}</a>
+ <td>
+ <form
name="deleteProductStoreSurveyAppl_${storeSurvey_index}" method="post"
action="<@ofbizUrl>deleteProductStoreSurveyAppl</@ofbizUrl>">
+ <input type="hidden" name="productStoreId"
value="${productStoreId}">
+ <input type="hidden" name="productStoreSurveyId"
value="${storeSurvey.productStoreSurveyId}">
+ <a
href="javascript:document.deleteProductStoreSurveyAppl_${storeSurvey_index}.submit()"
class="buttontext">${uiLabelMap.CommonDelete}</a>
+ </form>
+ </td>
<#-- toggle the row color -->
<#if rowClass == "2">
<#assign rowClass = "1">
