mirror/opensourcepos
1
0
Fork 0
mirror of https://github.com/opensourcepos/opensourcepos.git synced 2026-03-06 08:11:12 -05:00
Code Issues Packages Projects Releases Wiki Activity

Minor fixes

Browse Source
This commit is contained in:
FrancescoUK
2016-08-30 18:01:05 +01:00
parent 96004f5699
commit 3ce939ad20
4 changed files with 7 additions and 8 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
application/config/config.php
View File

@@ -16,7 +16,7 @@ $config['application_version'] = '3.0.0';
|--------------------------------------------------------------------------
| Internal to OSPOS XSS Clean
|--------------------------------------------------------------------------
|²
|
| This is to indicated whether we want XSS clean to be performed or not
| By default it's enabled as it's assumed the installation has Internet access and needs to be protected,
| however intranet only installations may not need this so they can set FALSE to improve performance

1
application/controllers/Login.php
View File

@@ -30,7 +30,6 @@ class Login extends CI_Controller
$login_info = $this->config->item('language') . ' | ' . $this->config->item('timezone') . ' | ' . $this->config->item('currency_symbol') . ' | ' . $this->config->item('theme') . ' | ' . $this->config->item('website') . ' | ' . $this->input->ip_address();
$this->tracking_lib->track_page('login', 'login', $login_info);
}
redirect('home');

10
application/controllers/Secure_Controller.php
View File

@@ -27,20 +27,21 @@ class Secure_Controller extends CI_Controller
redirect('no_access/' . $module_id . '/' . $submodule_id);
}
if (count($this->session->userdata('session_sha1')) == 0)
if(count($this->session->userdata('session_sha1')) == 0)
{
$footer_tags = file_get_contents(APPPATH.'views/partial/footer.php');
$footer_tags = file_get_contents(APPPATH . 'views/partial/footer.php');
$d = preg_replace('/\$Id:\s.*?\s\$/', '$Id$', $footer_tags);
$session_sha1 = sha1("blob " .strlen( $d ). "\0" . $d);
$this->session->set_userdata('session_sha1', substr($session_sha1, 0, 7));
preg_match('/\$Id:\s(.*?)\s\$/', $footer, $matches);
preg_match('/\$Id:\s(.*?)\s\$/', $footer_tags, $matches);
if(!strstr($this->lang->line('common_you_are_using_ospos'), "Open Source Point Of Sale") || $session_sha1 != $matches[1])
{
$this->load->library('tracking_lib');
$footer = $footer . ' | ' . $this->config->item('company') . ' | ' . $this->config->item('address') . ' | ' . $this->config->item('email') . ' | ' . $this->config->item('base_url');
$footer = strip_tags($footer_tags) . ' | ' . $this->Appconfig->get('company') . ' | ' . $this->Appconfig->get('address') . ' | ' . $this->Appconfig->get('email') . ' | ' . $this->config->item('base_url');
$this->tracking_lib->track_page('rogue/footer', 'rogue footer', $footer);
$this->tracking_lib->track_page('rogue/footer', 'rogue footer html', $footer_tags);
$login_footer = $this->_get_login_footer();
@@ -48,7 +49,6 @@ class Secure_Controller extends CI_Controller
{
$this->tracking_lib->track_page('login', 'rogue login', $login_footer);
}
$this->tracking_lib->track_page('rogue/footer', 'rogue footer html', strip_tags($footer_tags));
}
}

2
application/libraries/src/Racecore/GATracking/GATracking.php
View File

@@ -336,7 +336,7 @@ class GATracking
$clientAdapter = $this->clientAdapter;
$clientAdapter->setOptions($adapterOptions);
return $clientAdapter->send($this->apiEndpointUrl, $trackingCollection);
return $clientAdapter->send($this->apiEndpointUrl, $trackingCollection);
}
/**