Validate application/json on server side

2025-05-28 18:01:48 +08:00
parent f3d2078b11
commit a3e0318794
3 changed files with 124 additions and 72 deletions
--- a/src_assets/common/assets/web/apps.html
+++ b/src_assets/common/assets/web/apps.html
@@ -637,9 +637,13 @@
      launchApp(app) {
        if (confirm(this.$t('apps.launch_warning'))) {
          this.actionDisabled = true;
-          fetch("./api/apps/launch?uuid=" + app.uuid, {
+          fetch("./api/apps/launch", {
            credentials: 'include',
+            headers: {
+              'Content-Type': 'application/json'
+            },
            method: 'POST',
+            body: JSON.stringify({ uuid: app.uuid })
          })
          .then(r => r.json())
          .then(r => {
@@ -682,9 +686,13 @@
        );
        if (resp) {
          this.actionDisabled = true;
-          fetch("./api/apps/delete?uuid=" + app.uuid, {
+          fetch("./api/apps/delete", {
            credentials: 'include',
-            method: 'POST'
+            headers: {
+              'Content-Type': 'application/json'
+            },
+            method: 'POST',
+            body: JSON.stringify({ uuid: app.uuid })
          }).then((r) => r.json())
          .then((r) => {
            if (!r.status) {