mirror of
https://github.com/onionshare/onionshare.git
synced 2025-01-15 09:17:25 -05:00
Make uploading over ajax, and ajax flash messages, work
This commit is contained in:
parent
a22d21c222
commit
e2c4ec1f6f
@ -1,5 +1,6 @@
|
||||
import os
|
||||
import tempfile
|
||||
import json
|
||||
from datetime import datetime
|
||||
from flask import Request, request, render_template, make_response, flash, redirect
|
||||
from werkzeug.utils import secure_filename
|
||||
@ -150,6 +151,21 @@ class ReceiveModeWeb(object):
|
||||
return self.web.error404()
|
||||
return upload_logic()
|
||||
|
||||
@self.web.app.route("/<slug_candidate>/upload-ajax", methods=['POST'])
|
||||
def upload_ajax(slug_candidate):
|
||||
if not self.can_upload:
|
||||
return self.web.error403()
|
||||
self.web.check_slug_candidate(slug_candidate)
|
||||
return upload_logic(slug_candidate, ajax=True)
|
||||
|
||||
@self.web.app.route("/upload-ajax", methods=['POST'])
|
||||
def upload_ajax_public():
|
||||
if not self.can_upload:
|
||||
return self.web.error403()
|
||||
if not self.common.settings.get('public_mode'):
|
||||
return self.web.error404()
|
||||
return upload_logic(ajax=True)
|
||||
|
||||
|
||||
class ReceiveModeWSGIMiddleware(object):
|
||||
"""
|
||||
@ -251,12 +267,12 @@ class ReceiveModeRequest(Request):
|
||||
# Is this a valid upload request?
|
||||
self.upload_request = False
|
||||
if self.method == 'POST':
|
||||
if self.path == '/{}/upload'.format(self.web.slug):
|
||||
self.upload_request = True
|
||||
if self.web.common.settings.get('public_mode'):
|
||||
if self.path == '/upload' or self.path == '/upload-ajax':
|
||||
self.upload_request = True
|
||||
else:
|
||||
if self.web.common.settings.get('public_mode'):
|
||||
if self.path == '/upload':
|
||||
self.upload_request = True
|
||||
if self.path == '/{}/upload'.format(self.web.slug) or self.path == '/{}/upload-ajax'.format(self.web.slug):
|
||||
self.upload_request = True
|
||||
|
||||
if self.upload_request:
|
||||
# No errors yet
|
||||
|
@ -139,30 +139,22 @@ ul.flashes {
|
||||
}
|
||||
|
||||
ul.flashes li {
|
||||
margin: 0;
|
||||
margin: 0 0 5px 0;
|
||||
padding: 10px;
|
||||
list-style: none;
|
||||
border: 0;
|
||||
border-radius: 3px;
|
||||
text-align: left;
|
||||
}
|
||||
|
||||
li.error {
|
||||
list-style: none;
|
||||
margin: 0;
|
||||
padding: 0;
|
||||
color: #ffffff;
|
||||
background-color: #c90c0c;
|
||||
border: 0;
|
||||
border-radius: 5px;
|
||||
text-align: left;
|
||||
}
|
||||
|
||||
li.info {
|
||||
list-style: none;
|
||||
margin: 0;
|
||||
padding: 0;
|
||||
color: #000000;
|
||||
background-color: #a9e26c;
|
||||
border: 0;
|
||||
border-radius: 5px;
|
||||
text-align: left;
|
||||
}
|
||||
|
||||
.closed-wrapper {
|
||||
|
@ -4,6 +4,15 @@ document.getElementById('noscript').style.display = 'none';
|
||||
var form = document.getElementById('send');
|
||||
var fileSelect = document.getElementById('file-select');
|
||||
var uploadButton = document.getElementById('send-button');
|
||||
var flashes = document.getElementById('flashes');
|
||||
|
||||
// Add a flash message
|
||||
function flash(category, message) {
|
||||
var el = document.createElement('li');
|
||||
el.innerText = message;
|
||||
el.className = category;
|
||||
flashes.appendChild(el);
|
||||
}
|
||||
|
||||
form.onsubmit = function(event) {
|
||||
event.preventDefault();
|
||||
@ -30,9 +39,37 @@ form.onsubmit = function(event) {
|
||||
uploadButton.innerHTML = 'Uploading '+percent+'%';
|
||||
}, false);
|
||||
|
||||
ajax.addEventListener("load", function(event){
|
||||
console.log("upload finished");
|
||||
ajax.addEventListener('load', function(event){
|
||||
console.log('upload finished', ajax.response);
|
||||
if(ajax.status == 200) {
|
||||
// Parse response
|
||||
try {
|
||||
var response = JSON.parse(ajax.response);
|
||||
|
||||
// The 'new_body' response replaces the whole HTML document and ends
|
||||
if('new_body' in response) {
|
||||
document.body.innerHTML = response['new_body'];
|
||||
return;
|
||||
}
|
||||
|
||||
// Show error flashes
|
||||
if('error_flashes' in response) {
|
||||
for(var i=0; i<response['error_flashes'].length; i++) {
|
||||
flash('error', response['error_flashes'][i]);
|
||||
}
|
||||
}
|
||||
|
||||
// Show info flashes
|
||||
if('info_flashes' in response) {
|
||||
for(var i=0; i<response['info_flashes'].length; i++) {
|
||||
flash('info', response['info_flashes'][i]);
|
||||
}
|
||||
}
|
||||
} catch(e) {
|
||||
console.log('invalid response', ajax.response);
|
||||
flash('error', 'Invalid response from server: '+ajax.response);
|
||||
}
|
||||
|
||||
// Re-enable button, and update text
|
||||
uploadButton.innerHTML = 'Send Files';
|
||||
uploadButton.disabled = false;
|
||||
@ -40,16 +77,18 @@ form.onsubmit = function(event) {
|
||||
}
|
||||
}, false);
|
||||
|
||||
ajax.addEventListener("error", function(event){
|
||||
ajax.addEventListener('error', function(event){
|
||||
console.log('error', event);
|
||||
flash('error', 'Error uploading');
|
||||
}, false);
|
||||
|
||||
ajax.addEventListener("abort", function(event){
|
||||
ajax.addEventListener('abort', function(event){
|
||||
console.log('abort', event);
|
||||
flash('error', 'Upload aborted');
|
||||
}, false);
|
||||
|
||||
// Send the request
|
||||
ajax.open('POST', window.location.pathname + '/upload', true);
|
||||
ajax.open('POST', window.location.pathname + '/upload-ajax', true);
|
||||
ajax.send(formData);
|
||||
console.log("upload started");
|
||||
console.log('upload started');
|
||||
}
|
||||
|
@ -21,23 +21,21 @@
|
||||
<p><input type="file" id="file-select" name="file[]" multiple /></p>
|
||||
<p><button type="submit" id="send-button" class="button">Send Files</button></p>
|
||||
<div>
|
||||
{% with messages = get_flashed_messages(with_categories=true) %}
|
||||
{% if messages %}
|
||||
<ul class=flashes>
|
||||
{% for category, message in messages %}
|
||||
<li class="{{ category }}">{{ message }}</li>
|
||||
{% endfor %}
|
||||
</ul>
|
||||
{% endif %}
|
||||
{% endwith %}
|
||||
<ul id="flashes" class="flashes">
|
||||
{% with messages = get_flashed_messages(with_categories=true) %}
|
||||
{% if messages %}
|
||||
{% for category, message in messages %}
|
||||
<li class="{{ category }}">{{ message }}</li>
|
||||
{% endfor %}
|
||||
{% endif %}
|
||||
{% endwith %}
|
||||
</ul>
|
||||
</div>
|
||||
</form>
|
||||
|
||||
<!-- We are not using a <noscript> tag because it only works when the security slider
|
||||
is set to Safest, not Safer.
|
||||
|
||||
For more information about the upload issue:
|
||||
https://github.com/micahflee/onionshare/issues/899
|
||||
<!--
|
||||
We are not using a <noscript> tag because it only works when the security slider is set to
|
||||
Safest, not Safer: https://trac.torproject.org/projects/tor/ticket/29506
|
||||
-->
|
||||
<div id="noscript">
|
||||
<p>
|
||||
@ -47,6 +45,7 @@
|
||||
to Standard or
|
||||
<a target="_blank" href="/noscript-xss-instructions">turn off your Tor Browser's NoScript XSS setting</a>.</p>
|
||||
</div>
|
||||
|
||||
</div>
|
||||
</div>
|
||||
<script src="/static/js/receive.js"></script>
|
||||
|
Loading…
Reference in New Issue
Block a user