threadr.lostcave.ddnss.de/macros
BodgeMaster 57d5859e04 un-hard-coded database user credentials fixing #25 2021-09-02 09:02:48 +02:00
..
templates started working on moving hard-coded things to config 2021-09-02 07:40:16 +02:00
README.md started working on moving hard-coded things to config 2021-09-02 07:40:16 +02:00
pass0_templates.json started working on moving hard-coded things to config 2021-09-02 07:40:16 +02:00
pass1_misc.json messing around with macros to make ThreadR less LostCave specific 2021-09-02 07:49:10 +02:00
pass2_session.json messing around with macros to make ThreadR less LostCave specific 2021-09-02 07:49:10 +02:00
pass3_install-config.json un-hard-coded database user credentials fixing #25 2021-09-02 09:02:48 +02:00

README.md

Files

variable_grabbler.pass0.json, variable_grabbler.pass1.json, variable_grabbler.pass2.json

These are the the config files for ../variable_grabbler.py. A short description of what the variables do and where they should go:

  • %NAVBAR% (in HTML part of PHP file) → the Navbar, also includes an automatic logout-function if the user is in a place where they should never be logged in (triggered by absence of the $login variable)
  • %SET_LOGIN_VARIABLE% (in PHP code) → sets the $login variable in PHP by detecting if the user has a valid logged in session
  • %NO_CHEAP_LOGIN_STEALING% (in PHP code, before any non-header data is sent to client) → prevents the most primitive cookie stealing attempts, nothing advanced though
  • %BANNER_COOKIES% (in HTML part of PHP file) → the cookie banner that every web page has
  • %PLEAZE_NO_CACHE% (in PHP code, before any non-header data is sent to client) → requests the browser to not cache this page
  • %FORCE_LOGOUT% (in PHP code) → logout immediately (obviously less common than the other variables...)
  • %CONTENT_DIR% (anywhere in code) → the path to the ThreadR directory (without domain name)
  • %STYLESHEET% (in HTML) → adds the tag linking the stylesheet
  • %REQUIRE_LOGIN% (in PHP code, before any non-header data is sent to client) → sends users to the login page if they are not logged in

README.md

this file