From b76107bb240c54ba4d4c8e1d2badd412e5c473fa Mon Sep 17 00:00:00 2001
From: James Moger <james.moger@gitblit.com>
Date: Tue, 04 Nov 2014 17:23:50 -0500
Subject: [PATCH] Whitelist the "target" link attribute in the XSS filter

---
 src/main/java/com/gitblit/wicket/panels/RepositoryUrlPanel.html |    2 +-
 1 files changed, 1 insertions(+), 1 deletions(-)

diff --git a/src/main/java/com/gitblit/wicket/panels/RepositoryUrlPanel.html b/src/main/java/com/gitblit/wicket/panels/RepositoryUrlPanel.html
index 4b28e71..a537277 100644
--- a/src/main/java/com/gitblit/wicket/panels/RepositoryUrlPanel.html
+++ b/src/main/java/com/gitblit/wicket/panels/RepositoryUrlPanel.html
@@ -95,7 +95,7 @@
        		quality="high"
        		wmode="transparent"
        		scale="noscale"
-       		allowScriptAccess="always"></object>
+       		allowScriptAccess="sameDomain"></object>
 	</wicket:fragment>
 
 	<wicket:fragment wicket:id="workingCopyFragment">

--
Gitblit v1.9.1