Fixed #267

- Added csrf middleware to management portal mux
- Added csrf token to all html templates
- Added csrf validation to all endpoints
- Optimized some old endpoints implementation

src/web/tools/sshconn.html

@@ -1,6 +1,7 @@
 <!DOCTYPE html>
 <html>
     <head>
+        <meta name="zoraxy.csrf.Token" content="{{.csrfToken}}">
         <meta name="apple-mobile-web-app-capable" content="yes" />
         <meta name="viewport" content="user-scalable=no, width=device-width, initial-scale=1, maximum-scale=1"/>
         <meta charset="UTF-8">
@@ -13,6 +14,7 @@
         <script src="../script/semantic/semantic.min.js"></script>
         <script src="../script/tablesort.js"></script>
         <link rel="stylesheet" href="../main.css">
+        <script src="../script/utils.js"></script>
         <style>
             #loadingUI{
                 width: 100%;
@@ -153,7 +155,7 @@
             //Try to ask the server side to create a ssh proxy object
             function createSSHProxy(remoteAddr, remotePort, username){
                 //Request to create a ssh session instance
-                $.ajax({
+                $.cjax({
                     url: "/api/tools/webssh",
                     data: {ipaddr: remoteAddr, port: remotePort, username:username},
                     method: "POST",