| 11 |
- |
1 |
<?php
|
| 13 |
- |
2 |
if ($_SERVER["SERVER_NAME"] == "www.findcheapmusic.com") {
|
| 14 |
- |
3 |
ini_set("zlib.output_compression", "On");
|
| 13 |
- |
4 |
header("Strict-Transport-Security: max-age=31536000; includeSubDomains; preload");
|
|
|
5 |
header("X-Content-Type-Options: nosniff");
|
|
|
6 |
header("X-XSS-Protection: 1; mode=block");
|
|
|
7 |
header("Access-Control-Allow-Origin: *");
|
|
|
8 |
header("Referrer-Policy: no-referrer");
|
|
|
9 |
header("X-Frame-Options: SAMEORIGIN");
|
|
|
10 |
header("Set-Cookie: ^(.*)$ $1;HttpOnly;Secure");
|
|
|
11 |
header("Content-Security-Policy: default-src 'none'; img-src 'self'; script-src 'unsafe-inline'; style-src 'unsafe-inline';frame-ancestors 'self'");
|
|
|
12 |
}
|
|
|
13 |
|
| 11 |
- |
14 |
include_once('php/sessions_db.php');
|
|
|
15 |
include_once('php/cryptor.php');
|
|
|
16 |
include_once('php/tools.php');
|
|
|
17 |
|
|
|
18 |
error_reporting(E_ALL);
|
|
|
19 |
|
|
|
20 |
$configFile = parse_ini_file("../MyFiles/config/cheapmusic.ini",true);
|
|
|
21 |
$crypt = Cryptor::getInstance($configFile['cryptor']);
|
|
|
22 |
$tmpSessionTab = (isset($_POST["sessionTab"]) && $_POST["sessionTab"] > 0 ? $_POST["sessionTab"] : null);
|
|
|
23 |
$handler = MySessionHandler::getInstance($tmpSessionTab, $configFile['mysqli']);
|
|
|
24 |
unset($configFile);
|
|
|
25 |
|
|
|
26 |
ini_set("session.cookie_httponly", 1);
|
|
|
27 |
ini_set("session.cookie_secure", 1);
|
|
|
28 |
session_set_save_handler($handler, true);
|
|
|
29 |
session_start();
|
|
|
30 |
|
|
|
31 |
initSessionVariables();
|
|
|
32 |
|
|
|
33 |
if ($_SERVER["REQUEST_METHOD"] == "POST") {
|
|
|
34 |
if (in_array($_POST["submit"], $buttonArr)) {
|
|
|
35 |
$_SESSION["currentView"] = $_POST["submit"];
|
|
|
36 |
|
|
|
37 |
filterResults();
|
|
|
38 |
echo printTableHeader();
|
|
|
39 |
echo buildTable();
|
|
|
40 |
}
|
|
|
41 |
}
|
| 14 |
- |
42 |
|
|
|
43 |
session_commit();
|