summaryrefslogtreecommitdiff
path: root/rt/share/html/Elements/MyRT
diff options
context:
space:
mode:
Diffstat (limited to 'rt/share/html/Elements/MyRT')
-rw-r--r--rt/share/html/Elements/MyRT28
1 files changed, 16 insertions, 12 deletions
diff --git a/rt/share/html/Elements/MyRT b/rt/share/html/Elements/MyRT
index e8b0846..0d07eaa 100644
--- a/rt/share/html/Elements/MyRT
+++ b/rt/share/html/Elements/MyRT
@@ -53,9 +53,9 @@
% $show_cb->($_) foreach @$body;
</td>
-% if ( $summary ) {
+% if ( $sidebar ) {
<td class="boxcontainer">
-% $show_cb->($_) foreach @$summary;
+% $show_cb->($_) foreach @$sidebar;
</td>
% }
@@ -63,24 +63,24 @@
% $m->callback( ARGSRef => \%ARGS, CallbackName => 'AfterTable' );
<%INIT>
-# XXX: we don't use this, but should.
my %allowed_components = map {$_ => 1} @{RT->Config->Get('HomepageComponents')};
my $user = $session{'CurrentUser'}->UserObj;
-$Portlets ||= $user->Preferences('HomepageSettings');
unless ( $Portlets ) {
my ($defaults) = RT::System->new($session{'CurrentUser'})->Attributes->Named('HomepageSettings');
- $Portlets = $defaults ? $defaults->Content : {};
+ $Portlets = $user->Preferences(
+ HomepageSettings => $defaults ? $defaults->Content : {}
+ );
}
$m->callback( CallbackName => 'MassagePortlets', Portlets => $Portlets );
-my ($body, $summary) = @{$Portlets}{qw(body summary)};
+my ($body, $sidebar) = @{$Portlets}{qw(body sidebar)};
unless( $body && @$body ) {
- $body = $summary || [];
- $summary = undef;
+ $body = $sidebar || [];
+ $sidebar = undef;
}
-$summary = undef unless $summary && @$summary;
+$sidebar = undef unless $sidebar && @$sidebar;
my $Rows = $user->Preferences( 'SummaryRows', ( RT->Config->Get('DefaultSummaryRows') || 10 ) );
@@ -89,12 +89,16 @@ my $show_cb = sub {
my $type = $entry->{type};
my $name = $entry->{'name'};
if ( $type eq 'component' ) {
- # XXX: security check etc.
- $m->comp( $name, %{ $entry->{arguments} || {} } );
+ if (!$allowed_components{$name}) {
+ $m->out( $m->interp->apply_escapes( loc("Invalid portlet [_1]", $name), "h" ) );
+ }
+ else {
+ $m->comp( $name, %{ $entry->{arguments} || {} } );
+ }
} elsif ( $type eq 'system' ) {
$m->comp( '/Elements/ShowSearch', Name => $name, Override => { Rows => $Rows } );
} elsif ( $type eq 'saved' ) {
- $m->comp( '/Elements/ShowSearch', SavedSearch => $name, Override => { Rows => $Rows }, IgnoreMissing => 1 );
+ $m->comp( '/Elements/ShowSearch', SavedSearch => $name, Override => { Rows => $Rows } );
} else {
$RT::Logger->error("unknown portlet type '$type'");
}
generated by cgit v1.1 at 2024-06-29 15:53:46 +0000