Feature/save signs (#2127)

* apply fix

* Fixes empty th:action

* Update build.gradle

* fix

* formatting

* Save signatures

* Fix code scanning alert no. 42: Uncontrolled data used in path expression

Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com>

* fix UserServiceInterface

* Merge branch 'feature/saveSigns' of
git@github.com:Stirling-Tools/Stirling-PDF.git into feature/saveSigns

* 0.31.0 bump and further csrf

* formatting

* preview name

* add

* sign doc

* Update translation files (#2128)

Signed-off-by: GitHub Action <action@github.com>
Co-authored-by: GitHub Action <action@github.com>

---------

Signed-off-by: GitHub Action <action@github.com>
Co-authored-by: Dimitrios Kaitantzidis <james_k23@hotmail.gr>
Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com>
Co-authored-by: a <a>
Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
Co-authored-by: GitHub Action <action@github.com>

src/main/resources/static/css/sign.css

@@ -62,3 +62,53 @@ select#font-select option {
   background-color: rgba(52, 152, 219, 0.2);
   /* Darken background on hover */
 }
+.signature-grid {
+    display: grid;
+    grid-template-columns: repeat(auto-fill, minmax(200px, 1fr));
+    gap: 1rem;
+    padding: 1rem;
+    max-height: 400px;
+    overflow-y: auto;
+}
+
+.signature-list {
+    max-height: 400px;
+    overflow-y: auto;
+}
+
+.signature-list-item {
+    padding: 0.75rem;
+    border: 1px solid #dee2e6;
+    border-radius: 4px;
+    margin-bottom: 0.5rem;
+    cursor: pointer;
+    transition: background-color 0.2s;
+}
+
+.signature-list-item:hover {
+    background-color: #f8f9fa;
+}
+
+.signature-list-info {
+    display: flex;
+    justify-content: space-between;
+    align-items: center;
+}
+
+.signature-list-name {
+    font-weight: 500;
+}
+
+.signature-list-details {
+    color: #6c757d;
+    font-size: 0.875rem;
+}
+
+.signature-list-details small:not(:last-child) {
+    margin-right: 1rem;
+}
+
+.view-toggle {
+    text-align: right;
+    padding: 0.5rem 1rem;
+}

src/main/resources/static/js/fetch-utils.js

@@ -0,0 +1,29 @@
+window.fetchWithCsrf = async function(url, options = {}) {
+    function getCsrfToken() {
+        const cookieValue = document.cookie
+            .split('; ')
+            .find(row => row.startsWith('XSRF-TOKEN='))
+            ?.split('=')[1];
+        
+        if (cookieValue) {
+            return cookieValue;
+        }
+        
+        const csrfElement = document.querySelector('input[name="_csrf"]');
+        return csrfElement ? csrfElement.value : null;
+    }
+
+    // Create a new options object to avoid modifying the passed object
+    const fetchOptions = { ...options };
+    
+    // Ensure headers object exists
+    fetchOptions.headers = { ...options.headers };
+    
+    // Add CSRF token if available
+    const csrfToken = getCsrfToken();
+    if (csrfToken) {
+        fetchOptions.headers['X-XSRF-TOKEN'] = csrfToken;
+    }
+
+    return fetch(url, fetchOptions);
+}

src/main/resources/static/js/pipeline.js

@@ -119,7 +119,7 @@ document.getElementById("submitConfigBtn").addEventListener("click", function ()
   formData.append("json", pipelineConfigJson);
   console.log("formData", formData);
 
-  fetch("api/v1/pipeline/handleData", {
+  fetchWithCsrf("api/v1/pipeline/handleData", {
     method: "POST",
     body: formData,
   })
@@ -154,7 +154,7 @@ let apiDocs = {};
 let apiSchemas = {};
 let operationSettings = {};
 
-fetch("v1/api-docs")
+fetchWithCsrf("v1/api-docs")
   .then((response) => response.json())
   .then((data) => {
     apiDocs = data.paths;