HackMD/public/views
Sheogorath 70df29790a
Add token based security feature
In the current setup users could be tricked into deleting their data by
providing a malicious link like `[click me](/me/delete)`. This commit
prevents such an easy attack and need the user's deleteToken to get his
data deleted. In case someone requests his deletion by email you can
also ask him for this token.

We can add a GUI that shows it later on.

Signed-off-by: Sheogorath <sheogorath@shivering-isles.com>
2018-05-25 18:26:06 +02:00
..
hackmd Removing google drive integration 2018-05-16 01:34:55 +02:00
includes Update to generate front-end constants on server startup 2017-03-20 01:39:09 +08:00
index Add token based security feature 2018-05-25 18:26:06 +02:00
shared Add matrix.org / Riot link 2018-04-05 11:58:54 +02:00
error.ejs Refactor templates and rearrange its path 2017-01-21 13:08:29 +08:00
hackmd.ejs Refactor templates and rearrange its path 2017-01-21 13:08:29 +08:00
html.hbs Fix to implement toggle of TOC in HTML template 2017-05-09 22:11:57 +08:00
index.ejs Refactor templates and rearrange its path 2017-01-21 13:08:29 +08:00
pretty.ejs Merge pull request #598 from xxyy/feature/csp 2018-01-22 20:43:46 +01:00
slide.ejs Upgrade reveal.js to 3.6.0 and useCDN option for CSS include 2018-01-29 13:09:52 +08:00