From d5eaf699a7dd5215403b626762b68cd09bc846b5 Mon Sep 17 00:00:00 2001
From: Roberto Hueso Gómez <rhueso@soleta.eu>
Date: Fri, 4 Sep 2020 11:09:44 +0200
Subject: Add WoL action

This action can be applied on one or multiple scopes. This
implementation use Flask-WTF as a way to build and valdiate forms. As a
side effect, this adds CSRF protection to all forms.
---
 ogcp/templates/scopes.html | 9 ++++++---
 1 file changed, 6 insertions(+), 3 deletions(-)

(limited to 'ogcp/templates/scopes.html')

diff --git a/ogcp/templates/scopes.html b/ogcp/templates/scopes.html
index 4603f04..4b9ff28 100644
--- a/ogcp/templates/scopes.html
+++ b/ogcp/templates/scopes.html
@@ -21,7 +21,8 @@
 
 {% block content %}
 
-<form method="post">
+<form>
+  <input type="hidden" name="csrf_token" value="{{ csrf_token() }}"/>
   {{ print_scopes_tree(scopes["scope"]) }}
 
   <div class="dropdown">
@@ -31,10 +32,12 @@
     {{ _('Actions') }}
     </button>
     <div class="dropdown-menu" aria-labelledby="dropdownMenuButton">
+      <input class="dropdown-item" type="submit" value="{{ _('Run') }}"
+             formaction="{{ url_for('action_wol') }}" formmethod="get">
       <input class="dropdown-item" type="submit" value="{{ _('Poweroff') }}"
-             formaction="{{ url_for('action_poweroff') }}">
+             formaction="{{ url_for('action_poweroff') }}" formmethod="post">
       <input class="dropdown-item" type="submit" value="{{ _('Reboot') }}"
-             formaction="{{ url_for('action_reboot') }}">
+             formaction="{{ url_for('action_reboot') }}" formmethod="post">
     </div>
   </div>
 </form>
-- 
cgit v1.2.3-18-g5258