all template files(home,login) #2

shailaja · 2024-02-08T10:05:39Z

shailaja commented

2024-02-08 10:05:39 +00:00

No description provided.

shailaja added 1 commit 2024-02-08 10:05:39 +00:00

0c69354aca

all template files(home,login)

shailaja requested review from swapnil 2024-02-08 10:05:50 +00:00

swapnil commented

2024-02-08 10:31:47 +00:00

@PeterSurda this is what you wanted?

PeterSurda commented

2024-02-08 10:44:04 +00:00

@PeterSurda this is what you wanted?

yes

> @PeterSurda this is what you wanted? yes

PeterSurda requested changes 2024-02-08 10:46:45 +00:00

templates/login.html Outdated

						
				@ -0,0 +6,4 @@

				    <title>Inoreader To Readwise</title>

				</head>

				<body>

				    <button onclick="redirectToOAuth()">Login using inoreader</button>

PeterSurda commented

2024-02-08 10:46:39 +00:00

why not just have a <a href="{{auth_url}blablabla">Login via InoReader</a>? Then you don't need javascript.

why not just have a `<a href="{{auth_url}blablabla">Login via InoReader</a>`? Then you don't need javascript.

swapnil commented

2024-02-08 13:03:05 +00:00

Why is JS a problem?

PeterSurda commented

2024-02-09 01:29:59 +00:00

It’s an overkill. If you prefer a button, you can still do a form with hidden inputs.

shailaja added 1 commit 2024-02-09 06:18:43 +00:00

bc31779360

replaced button with href

shailaja force-pushed Services/part1 from bc31779360 to 0de43c4c86

2024-02-09 07:01:47 +00:00

Compare

PeterSurda requested changes 2024-02-09 07:56:32 +00:00

PeterSurda left a comment

It's unfinished.

swapnil commented

2024-02-09 08:41:35 +00:00

@shailaja You forgot to remove the script part in the template. JS script is no more required as we'll send the created oauth_url from python code.

PeterSurda commented

2024-02-09 08:46:05 +00:00

@shailaja You forgot to remove the script part in the template.

Yes that's part of what I meant.

JS script is no more required as we'll send the created oauth_url from python code.

Or, you can use a button and hidden form input fields, or you can do the string concatenation of the URL in Jinja2. But in any case don't forget to escape the values, either in python or in jinja2 (e.g. see here: https://stackoverflow.com/questions/1556554/how-do-i-html-escape-dangerous-unsanitized-input-in-jinja2)

> @shailaja You forgot to remove the script part in the template. Yes that's part of what I meant. > JS script is no more required as we'll send the created oauth_url from python code. Or, you can use a button and hidden form input fields, or you can do the string concatenation of the URL in Jinja2. But in any case don't forget to escape the values, either in python or in jinja2 (e.g. see here: https://stackoverflow.com/questions/1556554/how-do-i-html-escape-dangerous-unsanitized-input-in-jinja2)

PeterSurda commented

2024-02-09 08:50:32 +00:00

I think that the form with a button and hidden input fields is the cleanest, but my instinct tells me that it's too fancy:

I think that the form with a button and hidden input fields is the cleanest, but my instinct tells me that it's too fancy: ![too fancy](https://i.imgflip.com/4uoes3.jpg)

swapnil commented

2024-02-09 08:53:48 +00:00

A simple href with already constructed url looks a good suggestion to me.

shailaja added 1 commit 2024-02-09 08:55:33 +00:00

9448f1b7f9

removed script tag

shailaja force-pushed Services/part1 from 9448f1b7f9 to 02e7cd4be4

2024-02-09 08:56:36 +00:00

Compare

PeterSurda approved these changes 2024-02-10 04:27:51 +00:00

PeterSurda merged commit 02e7cd4be4 into main

2024-02-10 04:28:06 +00:00

Sign in to join this conversation.

No reviewers

No Label

No Milestone

No project

No Assignees

3 Participants

Notifications

Due Date

The due date is invalid or out of range. Please use the format 'yyyy-mm-dd'.

No due date set.

Dependencies

No dependencies set.

Reference: PeterSurda/inoreader2readwise#2