On Wed, February 10, 2016 3:25 pm, John Thurston wrote:
On 2/10/2016 1:14 PM, J.C. Cleaver wrote:
- separate out info and trends pages from "regular" svcstatus pages. The former won't be auto-refreshed
- adds a previously-referenced XYMWEBREFRESH variable, which can be used to configure this (default: 60s)
Going from 60s to 30s was an error on my part. I'd actually thought that was the value for some reason...
These patches are helping. Thank you!
On info pages not allowing _targets, that's also something caught by CSP. The patch should fix this as well. Please verify if you can.
To let the "target=_blank" option work, I needed to add "allow-popups" to line 269 of lib/cgi.c
269 else if (strncmp(str, "svcstatus-info", 14) == 0) csppol= strdup("script-src 'self' 'unsafe-inline'; connect-src 'self'; form-action 'self'; sandbox allow-forms allow-scripts allow-popups;");
Can you test with the following two patches? I believe these should take care of the outstanding issues. It seems like some versions of Chrome need the allow-modals permission as well.
Regards, -jc