CSRF minor fixes (#1726)

* CSRF minor fixes
LiveHelperChat · Dec 15, 2021 · 2a98c69 · 2a98c69
1 parent fe72be2
commit 2a98c69
Show file tree

Hide file tree

Showing 41 changed files with 102 additions and 135 deletions.
diff --git a/lhc_web/design/defaulttheme/js/js_static/54bcce5942dd8e6e1e1e0c29802cfbef.js b/lhc_web/design/defaulttheme/js/js_static/54bcce5942dd8e6e1e1e0c29802cfbef.js
diff --git a/lhc_web/design/defaulttheme/js/js_static/54bcce5942dd8e6e1e1e0c29802cfbef.js.map b/lhc_web/design/defaulttheme/js/js_static/54bcce5942dd8e6e1e1e0c29802cfbef.js.map
diff --git a/lhc_web/design/defaulttheme/js/js_static/7eb59706c7a02fa801134f7307266524.js b/lhc_web/design/defaulttheme/js/js_static/7eb59706c7a02fa801134f7307266524.js
diff --git a/lhc_web/design/defaulttheme/js/js_static/7eb59706c7a02fa801134f7307266524.js.map b/lhc_web/design/defaulttheme/js/js_static/7eb59706c7a02fa801134f7307266524.js.map
diff --git a/lhc_web/design/defaulttheme/js/js_static/d2012e174bb7dc98cdfd4c4a1a12008c.js b/lhc_web/design/defaulttheme/js/js_static/d2012e174bb7dc98cdfd4c4a1a12008c.js
diff --git a/lhc_web/design/defaulttheme/js/js_static/d2012e174bb7dc98cdfd4c4a1a12008c.js.map b/lhc_web/design/defaulttheme/js/js_static/d2012e174bb7dc98cdfd4c4a1a12008c.js.map
diff --git a/lhc_web/design/defaulttheme/js/lh.js b/lhc_web/design/defaulttheme/js/lh.js
@@ -3394,11 +3394,11 @@ function lh(){
         }
 
     	if (inst.text() == 'volume_off'){
-    		$.get(this.wwwDir+  'user/setsettingajax/chat_message/1');
+    		$.post(this.wwwDir + 'user/setsettingajax/chat_message/1');
     		confLH.new_message_sound_admin_enabled = 1;
     		inst.text('volume_up');
     	} else {
-    		$.get(this.wwwDir+  'user/setsettingajax/chat_message/0');
+    		$.post(this.wwwDir + 'user/setsettingajax/chat_message/0');
     		confLH.new_message_sound_admin_enabled = 0;
     		inst.text('volume_off');
     	}
@@ -3412,23 +3412,23 @@ function lh(){
         }
 
     	if (inst.text() == 'volume_off'){
-    		$.get(this.wwwDir+  'user/setsettingajax/new_chat_sound/1');
+    		$.post(this.wwwDir+  'user/setsettingajax/new_chat_sound/1');
     		confLH.new_chat_sound_enabled = 1;
     		inst.text('volume_up');
     	} else {
-    		$.get(this.wwwDir+  'user/setsettingajax/new_chat_sound/0');
+    		$.post(this.wwwDir+  'user/setsettingajax/new_chat_sound/0');
     		confLH.new_chat_sound_enabled = 0;
     		inst.text('volume_off');
     	}
     	return false;
     };
 
     this.changeUserSettings = function(attr,value){
-    	$.get(this.wwwDir+  'user/setsettingajax/'+attr+'/'+value);
+    	$.post(this.wwwDir+  'user/setsettingajax/'+attr+'/'+value);
     };
 
-    this.changeUserSettingsIndifferent = function(attr,value){
-    	$.get(this.wwwDir+  'user/setsettingajax/'+attr+'/'+encodeURIComponent(value)+'/(indifferent)/true');
+    this.changeUserSettingsIndifferent = function(attr,value) {
+    	$.post(this.wwwDir+  'user/setsettingajax/'+attr+'/'+encodeURIComponent(value)+'/(indifferent)/true');
     };
 
 	this.switchToOfflineForm = function(){
@@ -3468,11 +3468,11 @@ function lh(){
     this.disableChatSoundUser = function(inst)
     {
     	if (inst.find('> i').text() == 'volume_off') {
-    		$.get(this.wwwDir+  'user/setsettingajax/chat_message/1');
+    		$.post(this.wwwDir+  'user/setsettingajax/chat_message/1');
     		confLH.new_message_sound_user_enabled = 1;
     		inst.find('> i').text('volume_up');
     	} else {
-    		$.get(this.wwwDir+  'user/setsettingajax/chat_message/0');
+    		$.post(this.wwwDir+  'user/setsettingajax/chat_message/0');
     		confLH.new_message_sound_user_enabled = 0;
     		inst.find('> i').text('volume_off');
     	};
@@ -4561,6 +4561,10 @@ window.onfocus = window.onblur = function(e) {
 
 window.lhcSelector = null;
 
+$( document ).ready(function() {
+    lhinst.protectCSFR();
+})
+
 /*Helper functions*/
 function chatsyncuser()
 {

diff --git a/lhc_web/design/defaulttheme/js/lh.min.js b/lhc_web/design/defaulttheme/js/lh.min.js
diff --git a/lhc_web/design/defaulttheme/js/widgetv2/1.76e60b1aab09f2ea2bea.ie.js b/lhc_web/design/defaulttheme/js/widgetv2/1.76e60b1aab09f2ea2bea.ie.js
diff --git a/lhc_web/design/defaulttheme/js/widgetv2/1.76e60b1aab09f2ea2bea.ie.js.map b/lhc_web/design/defaulttheme/js/widgetv2/1.76e60b1aab09f2ea2bea.ie.js.map
diff --git a/lhc_web/design/defaulttheme/js/widgetv2/2.90658096bc82c95d6b4b.ie.js b/lhc_web/design/defaulttheme/js/widgetv2/2.90658096bc82c95d6b4b.ie.js
diff --git a/lhc_web/design/defaulttheme/js/widgetv2/2.90658096bc82c95d6b4b.ie.js.map b/lhc_web/design/defaulttheme/js/widgetv2/2.90658096bc82c95d6b4b.ie.js.map
diff --git a/lhc_web/design/defaulttheme/js/widgetv2/3.ebd2630847bc8173025f.ie.js b/lhc_web/design/defaulttheme/js/widgetv2/3.ebd2630847bc8173025f.ie.js
diff --git a/lhc_web/design/defaulttheme/js/widgetv2/3.ebd2630847bc8173025f.ie.js.map b/lhc_web/design/defaulttheme/js/widgetv2/3.ebd2630847bc8173025f.ie.js.map