source: main/trunk/greenstone2/macros/gli.dm@ 32096

Last change on this file since 32096 was 28888, checked in by ak19, 10 years ago

First security commit. 1. Introducing the new securitools.h and .cpp files, which port the functions necessary to implement security in Greenstone from OWASP-ESAPI for Java, since OWASP's C++ version is largely not yet implemented, even though their code compiles. The newly added runtime-src/packages/security which contains OWASP ESAPI for C++ will therefore be removed again shortly. 2. receptionist.cpp now sets various web-encoded variants for each cgiarg macro, such as HTML entity encoded, attr encoded, javascript encoded (and css encoded variants). These are now used in the macro files based on which variant is suited to the context. 3. This commit further contains the minimum changes to protect the c, d, and p cgi variables.
  • Property svn:keywords set to Author Date Id Revision
File size: 2.3 KB
Line 
1# this file must be UTF-8 encoded
2
3package gli
4
5#######################################################################
6# global navigation links
7#######################################################################
8
9_globallinks_ {_homelink_}
10
11#######################################################################
12# page content
13#######################################################################
14
15
16_pagetitle_ {_textgli_}
17
18_content_ {
19<div id="content">
20
21<div class="divbar">
22<p class="navbar">
23_textglilong_
24</p>
25</div>
26
27_If_(_gliapplet_,<p>_gliapplet_</p>)
28
29_textglihelp_
30
31_nzdlpagefooter_
32
33</div>
34}
35
36
37
38_gliapplet_ {
39
40<!--
41 <applet CODEBASE="_httpprefix_/bin/java"
42 ARCHIVE="SignedGatherer.jar"
43 CODE = "org.greenstone.gatherer.GathererApplet"
44 name = "gatherer"
45 type="application/x-java-applet;version=1.4"
46 pluginspage="http://java.sun.com/products/plugin/1.4/plugin-install.html"
47 width = "380"
48 height = "50" >
49
50 <param name="httpprefix" value="_httpprefix_">
51 <param name="gwcgi" value="_gwcgi_">
52 <param name="collection" value="_cgiargcAttrsafe_">
53 </applet>
54
55-->
56
57
58<object
59 classid="clsid:8AD9C840-044E-11D1-B3E9-00805F499D93"
60
61 width="380" height="50" name ="gatherer"
62
63 codebase="http://java.sun.com/products/plugin/autodl/jinstall-1_4-windows-i586.cab#Version=1,4,0,0"
64>
65 <param name="type" value="application/x-java-applet;version=1.4">
66 <param name="scriptable" value="false">
67
68 <param name=code value="org.greenstone.gatherer.GathererApplet" >
69 <param name=archive value="_httpprefix_/bin/java/SignedGatherer.jar" >
70 <param name=name value="gatherer" >
71
72 <param name="httpprefix" value="_httpprefix_">
73 <param name="gwcgi" value="_gwcgi_">
74 <param name="collection" value="_cgiargcAttrsafe_">
75
76 <comment>
77
78 <embed
79 pluginspage="http://java.sun.com/products/plugin/index.html#download"
80 type="application/x-java-applet;version=1.4"
81 scriptable="false"
82
83 archive = "_httpprefix_/bin/java/SignedGatherer.jar"
84 code = "org.greenstone.gatherer.GathererApplet"
85 name = "gatherer"
86 width = "380"
87 height = "50"
88
89 httpprefix = "_httpprefix_"
90 gwcgi = "_gwcgi_"
91 collection = "_cgiargcAttrsafe_"
92 >
93
94
95 </embed>
96 <noembed></noembed>
97
98 </comment>
99</object>
100
101}
Note: See TracBrowser for help on using the repository browser.