Update of /cvsroot/popfile/engine/UI
In directory sc8-pr-cvs1:/tmp/cvs-serv2537/UI
Modified Files:
HTML.pm
Log Message:
Protect the log through the session key
Index: HTML.pm
===================================================================
RCS file: /cvsroot/popfile/engine/UI/HTML.pm,v
retrieving revision 1.160
retrieving revision 1.161
diff -C2 -d -r1.160 -r1.161
*** HTML.pm 23 May 2003 15:59:26 -0000 1.160
--- HTML.pm 23 May 2003 16:05:53 -0000 1.161
***************
*** 280,283 ****
--- 280,298 ----
}
+ if ( $url =~ /\/(.+\.gif)/ ) {
+ $self->http_file_( $client, $1, 'image/gif' );
+ return 1;
+ }
+
+ if ( $url =~ /(skins\/.+\.css)/ ) {
+ $self->http_file_( $client, $1, 'text/css' );
+ return 1;
+ }
+
+ if ( $url =~ /(manual\/.+\.html)/ ) {
+ $self->http_file_( $client, $1, 'text/html' );
+ return 1;
+ }
+
# Check the password
***************
*** 340,358 ****
}
- if ( $url =~ /\/(.+\.gif)/ ) {
- $self->http_file_( $client, $1, 'image/gif' );
- return 1;
- }
-
- if ( $url =~ /(skins\/.+\.css)/ ) {
- $self->http_file_( $client, $1, 'text/css' );
- return 1;
- }
-
- if ( $url =~ /(manual\/.+\.html)/ ) {
- $self->http_file_( $client, $1, 'text/html' );
- return 1;
- }
-
if ( ( defined($self->{form_}{session}) ) && ( $self->{form_}{session} ne $self->{session_key__} ) ) {
session_page( $self, $client, 0, $url );
--- 355,358 ----
***************
*** 959,963 ****
if ( $self->global_config_( 'debug' ) & 1 ) {
! $body .= "<p><a href=\"" . $self->logger()->debug_filename() . "\">$self->{language__}{Configuration_CurrentLogFile}</a>";
}
--- 959,963 ----
if ( $self->global_config_( 'debug' ) & 1 ) {
! $body .= "<p><a href=\"" . $self->logger()->debug_filename() . "?session=$self->{session_key__}\">$self->{language__}{Configuration_CurrentLogFile}</a>";
}
***************
*** 3100,3104 ****
if ( $index == -1 ) {
! return $self->http_redirect( $client, '/history' );
}
--- 3100,3104 ----
if ( $index == -1 ) {
! return $self->http_redirect_( $client, '/history' );
}
|
