Better way to check if we're using the safe origin in bounce

7 years ago · b30efff5d1
parent b1765c6ae3
commit b30efff5d1
1 changed files with 2 additions and 2 deletions
--- a/www/bounce/main.js
+++ b/www/bounce/main.js
@ -1,5 +1,5 @@
-define([], function () {
-    if (window.localStorage && window.localStorage.FS_hash) {
+define(['/api/config'], function (ApiConfig) {
+    if (ApiConfig.httpSafeOrigin === window.location.origin) {
        window.alert('The bounce application must only be used from the sandbox domain, ' +
            'please report this issue on https://github.com/xwiki-labs/cryptpad');
        return;