/trunk/ajax.php |
---|
19,6 → 19,7 |
use ViaThinkSoft\OIDplus\OIDplus; |
use ViaThinkSoft\OIDplus\OIDplusException; |
use ViaThinkSoft\OIDplus\OIDplusAuthContentStoreJWT; |
require_once __DIR__ . '/includes/oidplus.inc.php'; |
25,7 → 26,7 |
try { |
OIDplus::init(false); |
if (isset($_GET['OIDPLUS_AUTH_JWT']) || isset($_POST['OIDPLUS_AUTH_JWT'])) { |
if (isset($_GET[OIDplusAuthContentStoreJWT::COOKIE_NAME]) || isset($_POST[OIDplusAuthContentStoreJWT::COOKIE_NAME])) { |
originHeaders(); // Allows queries from other domains |
OIDplus::authUtils()->disableCSRF(); // allow access to ajax.php without valid CSRF token |
} |
/trunk/plugins/viathinksoft/adminPages/910_automated_ajax_calls/OIDplusPageAdminAutomatedAJAXCalls.class.php |
---|
89,7 → 89,7 |
$out['text'] .= '<p><b>'.OIDplus::webpath(null,OIDplus::PATH_ABSOLUTE_CANONICAL).'ajax.php</b></p>'; |
$out['text'] .= '<p>'._L('You must at least provide following fields:').'</p>'; |
$out['text'] .= '<p><pre id="oidplus_auth_jwt">'; |
$out['text'] .= 'OIDPLUS_AUTH_JWT = "'.htmlentities($token).'"'."\n"; |
$out['text'] .= htmlentities(OIDplusAuthContentStoreJWT::COOKIE_NAME).' = "'.htmlentities($token).'"'."\n"; |
$out['text'] .= '</pre></p>'; |
$out['text'] .= '<p><input type="button" value="'._L('Copy to clipboard').'" onClick="copyToClipboard(oidplus_auth_jwt)"></p>'; |
$out['text'] .= '<p>'._L('Please keep this information confidential!').'</p>'; |
/trunk/plugins/viathinksoft/raPages/910_automated_ajax_calls/OIDplusPageRaAutomatedAJAXCalls.class.php |
---|
95,7 → 95,7 |
$out['text'] .= '<p><b>'.OIDplus::webpath(null,OIDplus::PATH_ABSOLUTE_CANONICAL).'ajax.php</b></p>'; |
$out['text'] .= '<p>'._L('You must at least provide following fields:').'</p>'; |
$out['text'] .= '<p><pre>'; |
$out['text'] .= 'OIDPLUS_AUTH_JWT = "'.htmlentities($token).'"'."\n"; |
$out['text'] .= htmlentities(OIDplusAuthContentStoreJWT::COOKIE_NAME).' = "'.htmlentities($token).'"'."\n"; |
$out['text'] .= '</pre></p>'; |
$out['text'] .= '<p><input type="button" value="'._L('Copy to clipboard').'" onClick="copyToClipboard(oidplus_auth_jwt)"></p>'; |
$out['text'] .= '<p>'._L('Please keep this information confidential!').'</p>'; |