AS1024/itflow
1
0
Fork 0
mirror of https://github.com/itflow-org/itflow synced 2026-03-01 11:24:52 +00:00
Code Issues Packages Projects Releases Wiki Activity

Merge pull request #607 from wrongecho/headers

Browse Source 
Add X-Frame-Options to login pages & client portal
This commit is contained in:
Johnny
2023-02-05 15:46:22 -05:00
committed by GitHub
parent 4d55d0dfa2 e8c9e63a7b
commit b433cdb7e2
4 changed files with 7 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
login.php
View File

@@ -1,5 +1,7 @@
<?php <?php
header("X-Frame-Options: DENY");
if (!file_exists('config.php')) { if (!file_exists('config.php')) {
header("Location: setup.php"); header("Location: setup.php");
exit; exit;

2
portal/check_login.php
View File

@@ -15,7 +15,7 @@ if (!isset($_SESSION)) {
session_start(); session_start();
} }
if (!$_SESSION['client_logged_in']) { if (!isset($_SESSION['client_logged_in']) || !$_SESSION['client_logged_in']) {
header("Location: login.php"); header("Location: login.php");
die; die;
} }

2
portal/login.php
View File

@@ -4,6 +4,8 @@
* Landing / Home page for the client portal * Landing / Home page for the client portal
*/ */
header("X-Frame-Options: DENY");
$session_company_id = 1; $session_company_id = 1;
require_once('../config.php'); require_once('../config.php');
require_once('../functions.php'); require_once('../functions.php');

2
portal/portal_header.php
View File

@@ -3,6 +3,8 @@
* Client Portal * Client Portal
* HTML Header * HTML Header
*/ */
header("X-Frame-Options: DENY");
?> ?>
<!DOCTYPE html> <!DOCTYPE html>