added some http-only configuration to avoid common XSS

[pizzaservice-war.git] / web / customer / checkout.xhtml

diff --git a/web/customer/checkout.xhtml b/web/customer/checkout.xhtml
index 9de80b1d11ce9fa8d02534cd15964af41c8e57e7..88ed1fabf8344583e5a5f4ba15b0bf8e95c6cbf4 100644 (file)
--- a/web/customer/checkout.xhtml
+++ b/web/customer/checkout.xhtml
@@ -9,12 +9,8 @@
        <ui:composition template="/WEB-INF/templates/guest/guest_base.tpl">
                <ui:define name="guest_title">#{msg.PAGE_TITLE_CUSTOMER_CHECKOUT}</ui:define>
 
-               <ui:define name="menu">
-                       <ui:include id="menu" class="guest_menu" src="/WEB-INF/templates/guest/guest_menu.tpl" />
-               </ui:define>
-
                <ui:define name="content_header">
-                       #{msg.SUB_TITLE_CUSTOMER_CHECKOUT}
+                       #{msg.CONTENT_TITLE_CUSTOMER_CHECKOUT}
                </ui:define>
 
                <ui:define name="content">
@@ -68,9 +64,5 @@
                                </div>
                        </div>
                </ui:define>
-
-               <ui:define name="footer">
-                       <ui:include id="footer" class="guest_footer" src="/WEB-INF/templates/guest/guest_footer.tpl" />
-               </ui:define>
        </ui:composition>
 </html>