fix ppolicy client side javascript checker

Due to a missing encodeURIComponent, the post arguments of the http query on /checkppolicy could be interpreted as several argument if caracters like & or = were present. This commit also adds error handling on http return codes in the checker.
2024-11-21 17:04:21 +01:00 · 2016-07-29 23:00:16 +02:00 · 2016-07-29 23:00:16 +02:00 · 5ff62f0a8c
commit 5ff62f0a8c
parent a84ee528aa
1 changed files with 16 additions and 1 deletions
--- a/resources/static/js/ppolicy.js
+++ b/resources/static/js/ppolicy.js
@ -10,9 +10,24 @@ $('#form').validator({
                type: 'POST',
                dataType: 'json',
                async: false,
-                data: 'pwd=' + $el.val(),
+                data: 'pwd=' + encodeURIComponent($el.val()),
                success: function(data) {
                    $ret = data;
+                },
+                error: function(jqXHR, exception) {
+                    switch (jqXHR.status) {
+                        case 400:
+                            $ret = {"reason":"Javascript ppolicy.js error","match":false};
+                            break;
+                        case 403:
+                            $ret = {"reason":"Session expired, you must reconnect","match":false};
+                            break;
+                        case 500:
+                            $ret = {"reason":"Server error","match":false};
+                            break;
+                        default:
+                            $ret = {"reason":"Unknown error [" + jqXHR.status + "], check logs","match":false};
+                    }
                }
            });
            this.options.errors['ppolicy'] = $ret['reason'];