Added new modules to help prevent Cross Site Request Forgery

[sdnc/oam.git] / admportal / views / user / list.ejs

diff --git a/admportal/views/user/list.ejs b/admportal/views/user/list.ejs
index 947a811..ec650b0 100644 (file)
--- a/admportal/views/user/list.ejs
+++ b/admportal/views/user/list.ejs
@@ -43,7 +43,7 @@
 <div class="container-fluid">
     <div class="actions" style="padding:15px 0px;">
        <% if(priv == 'A') { %>
-       <button class="btn btn-primary" data-toggle="modal" data-target="#newUserModal">Add User</button>
+       <button class="btn btn-primary" data-toggle="modal" data-target="#new_user">Add User</button>
        <% } %>
 
     </div>
@@ -75,14 +75,14 @@
                                <% } %>
                        </td> 
                        <% if(priv == 'A') { %>
-                       <td><form name="rowform">
-                               <input type="hidden" name="rfemail" id="rfemail" value="<%= row.email %>"</input>
+                       <td>
+                               <form name="rowform">
+                                       <button type="button" class="btn btn-default btn-xs"
+                                               onclick="updateRequest('<%=row.email %>', '<%=row.password %>', '<%=row.privilege %>');">Update</button>
+                                       <button type="button" class="btn btn-default btn-xs"
+                                               onclick="deleteRequest('<%=row.email %>');">Delete</button>
                                </form>
-                               <button type="button" class="btn btn-default btn-xs"
-                onclick="updateRequest('<%=row.email %>', '<%=row.password %>', '<%=row.privilege %>');">Update</button>
-                               <button type="button" class="btn btn-default btn-xs"
-                onclick="deleteRequest('<%=row.email %>');">Delete</button>
-            </td>
+                       </td>
                        <% } %>
                        </tr>
     <% }); }; %>