Projekt

Allgemein

Profil

« Zurück | Weiter » 

Revision f2078516

Von Sven Schöling vor mehr als 15 Jahren hinzugefügt

  • ID f20785168580f2d3587ebb2d06ade189246fd5f3
  • Vorgänger ebceac3e
  • Nachfolger 31b977d6

Nur realtive URIs für logon.pl?callback= erlauben.

Unterschiede anzeigen:

bin/mozilla/menu.pl
$menufile = "menu.ini";
use SL::Menu;
use Data::Dumper;
use URI;
1;
......
sub display {
$lxdebug->enter_sub();
$form->{callback} = $form->unescape($form->{callback});
$form->{callback} ||= "login.pl?action=company_logo";
my $callback = $form->unescape($form->{callback});
$callback = URI->new($callback)->rel($callback) if $callback;
$callback = "login.pl?action=company_logo" if $callback =~ /^(.\/)?$/;
$form->header;
......
<frame src="kopf.pl" name="kopf" scrolling="NO">
<frameset cols="$framesize,*" framespacing="0" frameborder="0" border="0" >
<frame src="$form->{script}?action=acc_menu" name="acc_menu" scrolling="auto" noresize marginwidth="0">
<frame src="$form->{callback}" name="main_window" scrolling="auto">
<frame src="$callback" name="main_window" scrolling="auto">
</frameset>
<noframes>
You need a browser that can read frames to see this page.
bin/mozilla/menuXML.pl
use CGI::Carp qw(fatalsToBrowser);
use Encode;
use URI;
1;
# end of main
......
sub display {
$locale = Locale->new($language, "menu");
my $charset = $dbcharset || 'ISO-8859-1';
my $callback = $form->unescape($form->{callback}) || "login.pl?action=company_logo";
my $callback = $form->unescape($form->{callback});
$callback = URI->new($callback)->rel($callback) if $callback;
$callback = "login.pl?action=company_logo" if $callback =~ /^(.\/)?$/;
my $text = $form->create_http_response('content_type' => 'text/xml',
'charset' => $charset)
bin/mozilla/menunew.pl
use English qw(-no_match_vars);
use List::Util qw(max);
use URI;
use SL::Menu;
......
$form->{force_ul_width} = 1;
$form->{date} = clock_line();
$form->{menu_items} = acc_menu();
$form->{callback} = $form->unescape($form->{callback}) || "login.pl?action=company_logo";
my $callback = $form->unescape($form->{callback});
$callback = URI->new($callback)->rel($callback) if $callback;
$callback = "login.pl?action=company_logo" if $callback =~ /^(.\/)?$/;
$form->{callback} = $callback;
print $form->parse_html_template("menu/menunew");
}
bin/mozilla/menuv3.pl
$menufile = "menu.ini";
use SL::Menu;
use URI;
1;
......
$form->{date} = clock_line();
$form->{menu} = acc_menu();
$form->{callback} = $form->unescape($form->{callback}) || "login.pl?action=company_logo";
my $callback = $form->unescape($form->{callback});
$callback = URI->new($callback)->rel($callback) if $callback;
$callback = "login.pl?action=company_logo" if $callback =~ /^(.\/)?$/;
$form->{callback} = $callback;
print $form->parse_html_template("menu/menuv3");
bin/mozilla/menuv4.pl
$menufile = "menu.ini";
use SL::Menu;
use URI;
1;
......
$form->{date} = clock_line();
$form->{menu} = acc_menu();
$form->{callback} = $form->unescape($form->{callback}) || "login.pl?action=company_logo";
my $callback = $form->unescape($form->{callback});
$main::lxdebug->message(0, ">>>>> $callback");
$callback = URI->new($callback)->rel($callback) if $callback;
$main::lxdebug->message(0, ">>>>> $callback");
$callback = "login.pl?action=company_logo" if $callback =~ /^(.\/)?$/;
$main::lxdebug->message(0, ">>>>> $callback");
$form->{callback} = $callback;
print $form->parse_html_template("menu/menuv4");
templates/webpages/menu/menuv4_de.html
<div style="clear: both;"></div>
<iframe id="win1" src="login.pl?action=company_logo" width="100%" height="94%" name="main_window" style="position: absolute; border: 0px; z-index: 99; ">
<iframe id="win1" src="[% callback %]" width="100%" height="94%" name="main_window" style="position: absolute; border: 0px; z-index: 99; ">
<p>Ihr Browser kann leider keine eingebetteten Frames anzeigen. Bitte w&auml;hlen Sie ein anderes Men&uuml; in der Benutzerkonfiguration im Administrationsmen&uuml; aus.</p>
</iframe>
</body>

Auch abrufbar als: Unified diff