Update the noscript upload instructions on the receive mode upload page, and add separate page for instructions to disable NoScript XSS setting

author: Micah Lee <micah@micahflee.com> 2019-02-14 09:31:39 -0800
committer: Micah Lee <micah@micahflee.com> 2019-02-14 09:31:39 -0800
commit: dd3f2d60b6e99f83c1fb0f80026e608719588590 (patch)
tree: d0972805b2aa47651e1e345efafecb899e5ac2d2 /onionshare
parent: 1c16b092a3c6c433326c82fde72c6bb0c59522ae (diff)
download: onionshare-dd3f2d60b6e99f83c1fb0f80026e608719588590.tar.gz
onionshare-dd3f2d60b6e99f83c1fb0f80026e608719588590.zip
1 files changed, 8 insertions, 0 deletions
diff --git a/onionshare/web/web.py b/onionshare/web/web.py
index 183c512c..010702be 100644
--- a/onionshare/web/web.py
+++ b/onionshare/web/web.py
@@ -132,6 +132,14 @@ class Web(object):
             self.force_shutdown()
             return ""
 
+        @self.app.route("/noscript-xss-instructions")
+        def noscript_xss_instructions():
+            """
+            Display instructions for disabling Tor Browser's NoScript XSS setting
+            """
+            r = make_response(render_template('receive_noscript_xss.html'))
+            return self.add_security_headers(r)
+
     def error404(self):
         self.add_request(Web.REQUEST_OTHER, request.path)
         if request.path != '/favicon.ico':
author	Micah Lee <micah@micahflee.com>	2019-02-14 09:31:39 -0800
committer	Micah Lee <micah@micahflee.com>	2019-02-14 09:31:39 -0800
commit	dd3f2d60b6e99f83c1fb0f80026e608719588590 (patch)
tree	d0972805b2aa47651e1e345efafecb899e5ac2d2 /onionshare
parent	1c16b092a3c6c433326c82fde72c6bb0c59522ae (diff)
download	onionshare-dd3f2d60b6e99f83c1fb0f80026e608719588590.tar.gz onionshare-dd3f2d60b6e99f83c1fb0f80026e608719588590.zip