added some http-only configuration to avoid common XSS

[pizzaservice-war.git] / web / admin / category.xhtml

diff --git a/web/admin/category.xhtml b/web/admin/category.xhtml
index efd7ca73445cb44c375beba3f7cdec2dc8ddbdf3..b8730f0e7a0f3dd8cdfc6e8dcfb21d0e43e52428 100644 (file)
--- a/web/admin/category.xhtml
+++ b/web/admin/category.xhtml
@@ -16,7 +16,7 @@
                <ui:define name="content">
                        <div class="para">
                                <h:form id="form">
-                                       <h:dataTable headerClass="table_header_column" rowClasses="table_row" styleClass="table" id="categories" value="#{controller.allCategories}" var="cat">
+                                       <h:dataTable id="categories" var="cat" value="#{controller.allCategories}" styleClass="table" headerClass="table_header_column" summary="#{msg.TABLE_SUMMARY_ADMIN_CATEGORY}">
                                                <h:column>
                                                        <f:facet name="header">#{msg.SELECT_ENTRY}</f:facet>
                                                        #{cat.categoryId}:
@@ -59,7 +59,7 @@
                                                                </div>
 
                                                                <div class="table_right">
-                                                                       <h:inputText class="input" id="title" value="#{admin_category.categoryTitle}" size="10" maxlength="255" required="true" />
+                                                                       <h:inputText class="input" id="guest_title" value="#{admin_category.categoryTitle}" size="10" maxlength="255" required="true" />
                                                                </div>
 
                                                                <div class="clear"></div>