From f5908c29daf24efd9e3fb0fce12e26282e49fa67 Mon Sep 17 00:00:00 2001
From: Laurent Destailleur <eldy@destailleur.fr>
Date: Thu, 17 Sep 2020 20:55:20 +0200
Subject: [PATCH] Fix regression in website module to get javascript files

---
 htdocs/document.php | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/htdocs/document.php b/htdocs/document.php
index 1bb4ce285e8..d4d2b5fb909 100644
--- a/htdocs/document.php
+++ b/htdocs/document.php
@@ -157,7 +157,8 @@ $type = 'application/octet-stream';	// By default
 if (GETPOST('type', 'alpha')) $type = GETPOST('type', 'alpha');
 else $type = dol_mimetype($original_file);
 // Security: Force to octet-stream if file is a dangerous file. For example when it is a .noexe file
-if (!dolIsAllowedForPreview($original_file)) {
+// We do not force if file is a javascript to be able to get js from website module with <script src="
+if (! in_array($type, array('text/x-javascript')) && !dolIsAllowedForPreview($original_file)) {
 	$type = 'application/octet-stream';
 }