WebSVN – cheapmusic – Diff – /www/index.php



	header("X-XSS-Protection: 1; mode=block");
	header("Access-Control-Allow-Origin: *");
	header("Referrer-Policy: no-referrer");
	header("X-Frame-Options: SAMEORIGIN");
	header("Set-Cookie: ^(.*)$ $1;HttpOnly;Secure");
	header("Content-Security-Policy: default-src 'none'; font-src https://use.fontawesome.com; form-action 'self'; img-src 'self' data: https://img.discogs.com https://thumbs1.ebaystatic.com https://thumbs2.ebaystatic.com https://thumbs3.ebaystatic.com https://thumbs4.ebaystatic.com; script-src 'self' 'unsafe-inline' https://ajax.googleapis.com/ajax/libs/jquery/3.4.0/jquery.min.js https://cdnjs.cloudflare.com/ajax/libs/popper.js/1.14.7/umd/popper.min.js https://maxcdn.bootstrapcdn.com/bootstrap/4.3.1/js/bootstrap.min.js; style-src 'self' 'unsafe-inline' https://maxcdn.bootstrapcdn.com/bootstrap/4.3.1/css/ https://use.fontawesome.com/releases/v5.8.1/css/;frame-ancestors 'self'");
}
 
$configFile = parse_ini_file("../MyFiles/config/cheapmusic.ini",true);
$crypt = Cryptor::getInstance($configFile['cryptor']);
$tmpSessionTab = (isset($_POST["sessionTab"]) && $_POST["sessionTab"] > 0 ? $_POST["sessionTab"] : null);

    <!--script src="/js/gtag.js" integrity="sha384-ZoAmOe9K3AXr6ONEK6njtE/HMsMvyjck9EfsgXdZLG7rEiz5GqXEk3RQc2cFIRNY" crossorigin="anonymous"></script-->
</head>
<body>
 
<?php
 
include_once('php/tools.php');
 
initSessionVariables();
 
if ($_SERVER["REQUEST_METHOD"] == "POST") {

        	</div>
        </form>
    </div>
 
    <?php
 
include_once('php/discogs.php');
findDiscogsMaster($_SESSION["searchTerm"]);
echo $_SESSION["discogs"];
 
        if ($_SESSION["lowestPrice"]["All"] > 0.00 || !empty($_SESSION["searchTerm"])) {
            echo printTableHeader();
            echo buildTable();
        }
        echo printSearchFilterModal();

Rev 9	Rev 10
Line 11...	Line 11...
11	`header("X-XSS-Protection: 1; mode=block");`	11	`header("X-XSS-Protection: 1; mode=block");`
12	`header("Access-Control-Allow-Origin: *");`	12	`header("Access-Control-Allow-Origin: *");`
13	`header("Referrer-Policy: no-referrer");`	13	`header("Referrer-Policy: no-referrer");`
14	`header("X-Frame-Options: SAMEORIGIN");`	14	`header("X-Frame-Options: SAMEORIGIN");`
15	`header("Set-Cookie: ^(.*)$ $1;HttpOnly;Secure");`	15	`header("Set-Cookie: ^(.*)$ $1;HttpOnly;Secure");`
16	header("Content-Security-Policy: default-src 'none'; font-src https://use.fontawesome.com; form-action 'self'; img-src 'self' data: https://thumbs1.ebaystatic.com https://thumbs2.ebaystatic.com https://thumbs3.ebaystatic.com https://thumbs4.ebaystatic.com; script-src 'self' 'unsafe-inline' https://ajax.googleapis.com/ajax/libs/jquery/3.4.0/jquery.min.js https://cdnjs.cloudflare.com/ajax/libs/popper.js/1.14.7/umd/popper.min.js https://maxcdn.bootstrapcdn.com/bootstrap/4.3.1/js/bootstrap.min.js; style-src 'self' 'unsafe-inline' https://maxcdn.bootstrapcdn.com/bootstrap/4.3.1/css/ https://use.fontawesome.com/releases/v5.8.1/css/;frame-ancestors 'self'");	16	header("Content-Security-Policy: default-src 'none'; font-src https://use.fontawesome.com; form-action 'self'; img-src 'self' data: https://img.discogs.com https://thumbs1.ebaystatic.com https://thumbs2.ebaystatic.com https://thumbs3.ebaystatic.com https://thumbs4.ebaystatic.com; script-src 'self' 'unsafe-inline' https://ajax.googleapis.com/ajax/libs/jquery/3.4.0/jquery.min.js https://cdnjs.cloudflare.com/ajax/libs/popper.js/1.14.7/umd/popper.min.js https://maxcdn.bootstrapcdn.com/bootstrap/4.3.1/js/bootstrap.min.js; style-src 'self' 'unsafe-inline' https://maxcdn.bootstrapcdn.com/bootstrap/4.3.1/css/ https://use.fontawesome.com/releases/v5.8.1/css/;frame-ancestors 'self'");
17	`}`	17	`}`
18		18
19	`$configFile = parse_ini_file("../MyFiles/config/cheapmusic.ini",true);`	19	`$configFile = parse_ini_file("../MyFiles/config/cheapmusic.ini",true);`
20	`$crypt = Cryptor::getInstance($configFile['cryptor']);`	20	`$crypt = Cryptor::getInstance($configFile['cryptor']);`
21	`$tmpSessionTab = (isset($_POST["sessionTab"]) && $_POST["sessionTab"] > 0 ? $_POST["sessionTab"] : null);`	21	`$tmpSessionTab = (isset($_POST["sessionTab"]) && $_POST["sessionTab"] > 0 ? $_POST["sessionTab"] : null);`
Line 47...	Line 47...
47	`<!--script src="/js/gtag.js" integrity="sha384-ZoAmOe9K3AXr6ONEK6njtE/HMsMvyjck9EfsgXdZLG7rEiz5GqXEk3RQc2cFIRNY" crossorigin="anonymous"></script-->`	47	`<!--script src="/js/gtag.js" integrity="sha384-ZoAmOe9K3AXr6ONEK6njtE/HMsMvyjck9EfsgXdZLG7rEiz5GqXEk3RQc2cFIRNY" crossorigin="anonymous"></script-->`
48	`</head>`	48	`</head>`
49	`<body>`	49	`<body>`
50		50
51	`<?php`	51	`<?php`
52	`include_once('php/clsLibGTIN.php');`	-
53	`include_once('php/tools.php');`	52	`include_once('php/tools.php');`
54		53
55	`initSessionVariables();`	54	`initSessionVariables();`
56		55
57	`if ($_SERVER["REQUEST_METHOD"] == "POST") {`	56	`if ($_SERVER["REQUEST_METHOD"] == "POST") {`
Line 169...	Line 168...
169	`</div>`	168	`</div>`
170	`</form>`	169	`</form>`
171	`</div>`	170	`</div>`
172		171
173	`<?php`	172	`<?php`
-		173
-		174	`include_once('php/discogs.php');`
-		175	`findDiscogsMaster($_SESSION["searchTerm"]);`
-		176	`echo $_SESSION["discogs"];`
-		177
174	`if ($_SESSION["lowestPrice"]["All"] > 0.00 \|\| !empty($_SESSION["searchTerm"])) {`	178	`if ($_SESSION["lowestPrice"]["All"] > 0.00 \|\| !empty($_SESSION["searchTerm"])) {`
175	`echo printTableHeader();`	179	`echo printTableHeader();`
176	`echo buildTable();`	180	`echo buildTable();`
177	`}`	181	`}`
178	`echo printSearchFilterModal();`	182	`echo printSearchFilterModal();`

Subversion Repositories cheapmusic

(root)/www/index.php – Rev 9 → 10