partey_workadventure/maps/tests/Metadata
David Négrier 41fd848fa0 Fixed potential injection by switching map container to PHP
Some HTML files were importing iframe_api.js automatically by detecting the referrer document.

While this was done in a safe way (the map container does not use cookies), it is not
a best practice to load a script originating from document.referrer.

This PR solves the issue by using PHP to inject the correct domain name in the HTML files.
2021-11-29 19:05:13 +01:00
..
cowebsiteAllowApi.js Fixed potential injection by switching map container to PHP 2021-11-29 19:05:13 +01:00
cowebsiteAllowApi.json Cowebsite opened by script can use Iframe Api 2021-06-28 18:00:48 +02:00
cowebsiteAllowApi.php Fixed potential injection by switching map container to PHP 2021-11-29 19:05:13 +01:00
customIframeMenu.html Add documentation 2021-08-27 14:49:57 +02:00
customIframeMenuApi.php Fixed potential injection by switching map container to PHP 2021-11-29 19:05:13 +01:00
customMenu.js Fixed potential injection by switching map container to PHP 2021-11-29 19:05:13 +01:00
customMenu.json Fixed potential injection by switching map container to PHP 2021-11-29 19:05:13 +01:00
customMenu.php Fixed potential injection by switching map container to PHP 2021-11-29 19:05:13 +01:00
floortileset.png Adding maps for test metadata 2021-05-20 08:58:05 +02:00
getCurrentRoom.js Renaming WA.room.getMap to WA.room.getTiledMap 2021-07-21 16:40:53 +02:00
getCurrentRoom.json Adding WA.onInit method to wait for API startup. 2021-07-05 14:41:10 +02:00
map.json Merge branch 'update-game-tiles' into correct-merge 2021-05-27 09:45:25 +02:00
playerMove.json Fixed potential injection by switching map container to PHP 2021-11-29 19:05:13 +01:00
playerMove.php Fixed potential injection by switching map container to PHP 2021-11-29 19:05:13 +01:00
script.js Merge branch 'update-game-tiles' into correct-merge 2021-05-27 09:45:25 +02:00
setProperty.json Fixed potential injection by switching map container to PHP 2021-11-29 19:05:13 +01:00
setProperty.php Fixed potential injection by switching map container to PHP 2021-11-29 19:05:13 +01:00
setTiles.html Fixed potential injection by switching map container to PHP 2021-11-29 19:05:13 +01:00
setTiles.json Fixed potential injection by switching map container to PHP 2021-11-29 19:05:13 +01:00
showHideLayer.html Fixed potential injection by switching map container to PHP 2021-11-29 19:05:13 +01:00
showHideLayer.json Fixed potential injection by switching map container to PHP 2021-11-29 19:05:13 +01:00
tileset_dungeon.png Merge branch 'update-game-tiles' into correct-merge 2021-05-27 09:45:25 +02:00