Skip to content

Commit d515a20

Browse files
iwindiwind
committed
提升Go模板安全性
1 parent a66d3ef commit d515a20

File tree

4 files changed

+6
-6
lines changed

4 files changed

+6
-6
lines changed

web/views/@default/@layout.html

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -1,7 +1,7 @@
11
<!DOCTYPE html>
22
<html lang="zh">
33
<head>
4-
<title>{$.teaTitle}</title>
4+
<title>{$ htmlEncode .teaTitle}</title>
55
<meta charset="UTF-8"/>
66
<meta name="viewport" content="width=device-width, initial-scale=1, user-scalable=0">
77
{$if eq .teaFaviconFileId 0}

web/views/@default/@layout_popup.html

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -1,7 +1,7 @@
11
<!DOCTYPE html>
22
<html>
33
<head>
4-
<title>{$.teaTitle}控制台</title>
4+
<title>{$ htmlEncode .teaTitle}控制台</title>
55
<meta charset="UTF-8"/>
66
<meta name="viewport" content="width=device-width, initial-scale=1, user-scalable=0">
77
{$if eq .teaFaviconFileId 0}

web/views/@default/index/index.html

Lines changed: 2 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -7,7 +7,7 @@
77
{$else}
88
<link rel="shortcut icon" href="/ui/image/{$ .faviconFileId}"/>
99
{$end}
10-
<title>登录{$.systemName}</title>
10+
<title>登录{$ htmlEncode .systemName}</title>
1111
<meta name="viewport" content="width=device-width, initial-scale=1, user-scalable=0">
1212
{$TEA.VUE}
1313
{$TEA.SEMANTIC}
@@ -27,7 +27,7 @@
2727
<input type="hidden" name="token" v-model="token"/>
2828
<div class="ui segment stacked">
2929
<div class="ui header">
30-
登录{$.systemName}
30+
登录{$ htmlEncode .systemName}
3131
</div>
3232
<div class="ui field">
3333
<div class="ui left icon input">

web/views/@default/index/otp.html

Lines changed: 2 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -7,7 +7,7 @@
77
{$else}
88
<link rel="shortcut icon" href="/ui/image/{$ .faviconFileId}"/>
99
{$end}
10-
<title>登录{$.systemName} - 二次验证</title>
10+
<title>登录{$ htmlEncode .systemName} - 二次验证</title>
1111
<meta name="viewport" content="width=device-width, initial-scale=1, user-scalable=0">
1212
{$TEA.VUE}
1313
{$TEA.SEMANTIC}
@@ -27,7 +27,7 @@
2727
<input type="hidden" name="remember" :value="remember ? 1 : 0"/>
2828
<div class="ui segment stacked">
2929
<div class="ui header">
30-
登录{$.systemName}
30+
登录{$ htmlEncode .systemName}
3131
</div>
3232
<div class="ui field">
3333
为了保护你的账户安全,需要进行OTP二次身份验证。

0 commit comments

Comments
 (0)