daenamnu/nextcloud
1
0
Fork 0
mirror of https://github.com/nextcloud/all-in-one.git synced 2026-05-21 02:40:09 +00:00
Code Issues Packages Projects Releases Wiki Activity

aio-interface: do not cache the containers, logs and setup screen as it shows credentials

Browse Source 
Signed-off-by: Simon L. <szaimen@e.mail.de>
This commit is contained in:
Simon L.
2026-05-19 16:18:47 +02:00
parent a3d84cce7b
commit 8f18bde3e6
1 changed files with 9 additions and 3 deletions
Download Patch File Download Diff File Expand all files Collapse all files

12
php/public/index.php
View File

@@ -181,8 +181,10 @@ $app->get('/containers', function (Request $request, Response $response, array $
'community_containers' => $configurationManager->listAvailableCommunityContainers(), 'community_containers' => $configurationManager->listAvailableCommunityContainers(),
'community_containers_enabled' => $configurationManager->aioCommunityContainers, 'community_containers_enabled' => $configurationManager->aioCommunityContainers,
'bypass_container_update' => $bypass_container_update, 'bypass_container_update' => $bypass_container_update,
]); // Do not cache the page as it shows credentials
])->withHeader('Cache-Control', 'no-store');
})->setName('profile'); })->setName('profile');
$app->get('/login', function (Request $request, Response $response, array $args) use ($container) { $app->get('/login', function (Request $request, Response $response, array $args) use ($container) {
$view = Twig::fromRequest($request); $view = Twig::fromRequest($request);
/** @var \AIO\Docker\DockerActionManager $dockerActionManager */ /** @var \AIO\Docker\DockerActionManager $dockerActionManager */
@@ -191,6 +193,7 @@ $app->get('/login', function (Request $request, Response $response, array $args)
'is_login_allowed' => $dockerActionManager->isLoginAllowed(), 'is_login_allowed' => $dockerActionManager->isLoginAllowed(),
]); ]);
}); });
$app->get('/setup', function (Request $request, Response $response, array $args) use ($container) { $app->get('/setup', function (Request $request, Response $response, array $args) use ($container) {
$view = Twig::fromRequest($request); $view = Twig::fromRequest($request);
/** @var \AIO\Data\Setup $setup */ /** @var \AIO\Data\Setup $setup */
@@ -210,7 +213,9 @@ $app->get('/setup', function (Request $request, Response $response, array $args)
'password' => $setup->Setup(), 'password' => $setup->Setup(),
] ]
); );
}); // Do not cache the page as it shows credentials
})->withHeader('Cache-Control', 'no-store');
$app->get('/log', function (Request $request, Response $response, array $args) use ($container) { $app->get('/log', function (Request $request, Response $response, array $args) use ($container) {
$params = $request->getQueryParams(); $params = $request->getQueryParams();
$id = $params['id'] ?? ''; $id = $params['id'] ?? '';
@@ -219,7 +224,8 @@ $app->get('/log', function (Request $request, Response $response, array $args) u
} }
$view = Twig::fromRequest($request); $view = Twig::fromRequest($request);
return $view->render($response, 'log.twig', ['id' => $id]); return $view->render($response, 'log.twig', ['id' => $id]);
}); // Do not cache the page as it might shows credentials
})->withHeader('Cache-Control', 'no-store');
// Auth Redirector // Auth Redirector
$app->get('/', function (\Psr\Http\Message\RequestInterface $request, Response $response, array $args) use ($container) { $app->get('/', function (\Psr\Http\Message\RequestInterface $request, Response $response, array $args) use ($container) {