filippodb/LocalCDN-Firefox-Chrome-Brave
1
0
Fork 0
mirror of https://codeberg.org/nobody/LocalCDN.git synced 2024-12-22 16:12:13 +01:00
Code Issues Projects Releases Wiki Activity

Hotfix: Only remove metadata if origin is not on allowed list (#179)

Browse Source
This commit is contained in:
nobody 2020-11-22 17:06:36 +01:00
parent dfd125d2ca
commit 6296861276
No known key found for this signature in database
GPG Key ID: 8F6DE3D614FCFD7A
2 changed files with 25 additions and 20 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

12
core/request-sanitizer.js
View File

@ -53,10 +53,14 @@ requestSanitizer._stripMetadata = function (requestDetails) {
allowlistedDomains = stateManager._domainIsListed(initiatorDomain);
if (allowlistedDomains) {
for (let i = 0; i < requestDetails.requestHeaders.length; ++i) {
if (sensitiveHeaders.indexOf(requestDetails.requestHeaders[i].name) > -1) {
requestDetails.requestHeaders.splice(i--, 1);
}
return {
[WebRequest.HEADERS]: requestDetails.requestHeaders,
};
}
for (let i = 0; i < requestDetails.requestHeaders.length; ++i) {
if (sensitiveHeaders.indexOf(requestDetails.requestHeaders[i].name) > -1) {
requestDetails.requestHeaders.splice(i--, 1);
}
}

33
pages/updates/updates.html
View File

@ -25,7 +25,22 @@
New in LocalCDN:
</div>
<ul>
<li></li>
<li>Fixed: Exported settings have old values (<a href="https://codeberg.org/nobody/LocalCDN/issues/177">#177</a>)</li>
<li>Updated: algoliasearch v4.7.0 -> v4.8.0 (<a href="https://codeberg.org/nobody/LocalCDN/commit/db3d0447bf">db3d0447bf</a>, <a href="https://codeberg.org/nobody/LocalCDN/commit/4fe79b6362">4fe79b6362</a>)</li>
<li>Updated: Ember.js v3.12.3 -> v3.23.0 (<a href="https://codeberg.org/nobody/LocalCDN/commit/c0272e9e05">c0272e9e05</a>)</li>
<li>Updated: instantsearch.js v4.8.6 -> v4.8.7 (<a href="https://codeberg.org/nobody/LocalCDN/commit/b2d25fef63">b2d25fef63</a>)</li>
<li>Updated: Socket.io v3.0.1 -> v3.0.3 (<a href="https://codeberg.org/nobody/LocalCDN/commit/3df3b5f3a9">3df3b5f3a9</a>, <a href="https://codeberg.org/nobody/LocalCDN/commit/15b5c0d9db">15b5c0d9db</a>)</li>
<li>Added: jQuery v1.11.3 (<a href="https://codeberg.org/nobody/LocalCDN/issues/178">#178</a>)</li>
<li>Updated: vue-i18n v8.22.1 -> v8.22.2 (<a href="https://codeberg.org/nobody/LocalCDN/commit/a392f6b724">a392f6b724</a>)</li>
<li>Updated: highlight.js v10.3.2 -> v10.4.0 (<a href="https://codeberg.org/nobody/LocalCDN/commit/5a10b0258f">5a10b0258f</a>)</li>
<li>Updated: Bootstrap v3.3.7 -> v3.4.1 (<a href="https://codeberg.org/nobody/LocalCDN/commit/f6efcc0ff8">f6efcc0ff8</a>)</li>
<li>Added: Bootstrap (fonts only) (<a href="https://codeberg.org/nobody/LocalCDN/commit/495efcb23f">495efcb23f</a>)</li>
<li>Improved: Only remove metadata if origin is not on allowed list (<a href="https://codeberg.org/nobody/LocalCDN/issues/179">#179</a>)</li>
<li>Added: Swiper v6.3.5 (<a href="https://codeberg.org/nobody/LocalCDN/commit/c51c72da99">c51c72da99</a>)</li>
<li>Added: Swiper to cdn.jsdelivr.net (<a href="https://codeberg.org/nobody/LocalCDN/commit/039d4767f5">039d4767f5</a>)</li>
<li>Updated: jQuery Validation v1.19.1 -> v1.19.2 (<a href="https://codeberg.org/nobody/LocalCDN/commit/9aac5a1ab8">9aac5a1ab8</a>)</li>
<li>Added: jQuery Validation to cdn.jsdelivr.net (<a href="https://codeberg.org/nobody/LocalCDN/commit/c3e9ad9fb5">c3e9ad9fb5</a>)</li>
<li>Hotfix: Only remove metadata if origin is not on allowed list (<a href="https://codeberg.org/nobody/LocalCDN/issues/179">#179</a>)</li>
</ul>
<div id="generator-section">
<div class="topic-label">
@ -59,21 +74,7 @@
<div id="history-release-notes" style="display: none;">
<p class='release-date'>2020-11-22 (v2.5.8)</p>
<ul>
<li>Fixed: Exported settings have old values (<a href="https://codeberg.org/nobody/LocalCDN/issues/177">#177</a>)</li>
<li>Updated: algoliasearch v4.7.0 -> v4.8.0 (<a href="https://codeberg.org/nobody/LocalCDN/commit/db3d0447bf">db3d0447bf</a>, <a href="https://codeberg.org/nobody/LocalCDN/commit/4fe79b6362">4fe79b6362</a>)</li>
<li>Updated: Ember.js v3.12.3 -> v3.23.0 (<a href="https://codeberg.org/nobody/LocalCDN/commit/c0272e9e05">c0272e9e05</a>)</li>
<li>Updated: instantsearch.js v4.8.6 -> v4.8.7 (<a href="https://codeberg.org/nobody/LocalCDN/commit/b2d25fef63">b2d25fef63</a>)</li>
<li>Updated: Socket.io v3.0.1 -> v3.0.3 (<a href="https://codeberg.org/nobody/LocalCDN/commit/3df3b5f3a9">3df3b5f3a9</a>, <a href="https://codeberg.org/nobody/LocalCDN/commit/15b5c0d9db">15b5c0d9db</a>)</li>
<li>Added: jQuery v1.11.3 (<a href="https://codeberg.org/nobody/LocalCDN/issues/178">#178</a>)</li>
<li>Updated: vue-i18n v8.22.1 -> v8.22.2 (<a href="https://codeberg.org/nobody/LocalCDN/commit/a392f6b724">a392f6b724</a>)</li>
<li>Updated: highlight.js v10.3.2 -> v10.4.0 (<a href="https://codeberg.org/nobody/LocalCDN/commit/5a10b0258f">5a10b0258f</a>)</li>
<li>Updated: Bootstrap v3.3.7 -> v3.4.1 (<a href="https://codeberg.org/nobody/LocalCDN/commit/f6efcc0ff8">f6efcc0ff8</a>)</li>
<li>Added: Bootstrap (fonts only) (<a href="https://codeberg.org/nobody/LocalCDN/commit/495efcb23f">495efcb23f</a>)</li>
<li>Improved: Only remove metadata if origin is not on allowed list (<a href="https://codeberg.org/nobody/LocalCDN/issues/179">#179</a>)</li>
<li>Added: Swiper v6.3.5 (<a href="https://codeberg.org/nobody/LocalCDN/commit/c51c72da99">c51c72da99</a>)</li>
<li>Added: Swiper to cdn.jsdelivr.net (<a href="https://codeberg.org/nobody/LocalCDN/commit/039d4767f5">039d4767f5</a>)</li>
<li>Updated: jQuery Validation v1.19.1 -> v1.19.2 (<a href="https://codeberg.org/nobody/LocalCDN/commit/9aac5a1ab8">9aac5a1ab8</a>)</li>
<li>Added: jQuery Validation to cdn.jsdelivr.net (<a href="https://codeberg.org/nobody/LocalCDN/commit/c3e9ad9fb5">c3e9ad9fb5</a>)</li>
<li>Version revoked</li>
</ul>
<p class='release-date'>2020-11-15 (v2.5.7)</p>
<ul>