diff options
| author | Christian Schneider | 2009-11-18 16:17:06 +0000 |
|---|---|---|
| committer | Christian Schneider | 2009-11-18 16:17:06 +0000 |
| commit | cff801de3dc850209199c15a24f82049b29653b9 (patch) | |
| tree | 46d647532c01f80a87685a3276104631cb0cd2d7 | |
| parent | 4de65e4b0abb98e8cf7603b2cd93855f43d23dd5 (diff) | |
| download | itools-cff801de3dc850209199c15a24f82049b29653b9.tar.gz itools-cff801de3dc850209199c15a24f82049b29653b9.tar.bz2 itools-cff801de3dc850209199c15a24f82049b29653b9.zip | |
Protect from Firewalls/Proxies altering Javascript source code
| -rw-r--r-- | itjs.php | 2 | ||||
| -rw-r--r-- | itjs/boot.js | 2 |
2 files changed, 2 insertions, 2 deletions
@@ -70,7 +70,7 @@ if ($checksum != $_SERVER['HTTP_IF_NONE_MATCH']) if ($_REQUEST['boot']) { $data .= "window.it_boot_init();\n"; - $data = sprintf("/*sln:%d*/\n%s/*eln:%d*/", strlen($data), $data, strlen($data)); + $data = sprintf("/*sln:%d*/\n%s/*eln:%d*/", strlen($data), strtr($data, '%' => "%25", '.' => "%2e", 'e' => "%65", 'i' => "%69"), strlen($data)); # Protect from Firewalls/Proxies altering Javascript source code } echo it_untaint($data); diff --git a/itjs/boot.js b/itjs/boot.js index 6ee8845..50e7a26 100644 --- a/itjs/boot.js +++ b/itjs/boot.js @@ -198,7 +198,7 @@ function it_boot(file, isretry) { // check length cookie var ln = String(loader.responseText).match(/\*sln:([0-9]+)[^\n]*\n([\s\S]*\n)\/\*eln:\1/); - code = ln ? ln[2] : loader.responseText; + code = ln ? unescape(ln[2]) : loader.responseText; if (ln && ln[1]-0 == code.length) { it_boot.sequence += "e"; |