_EXEC=.
_DATA=.
+SESSION_TIMEOUT=43200
. "$_EXEC/cgilite/logging.sh"
. "$_EXEC/cgilite/cgilite.sh"
. "$_EXEC/cgilite/session.sh"
yield_page(){
page="$1"
- printf 'Content-Type: text/html; charset=utf-8\r\n\r\n'
+ printf '%s\r\n' 'Content-Type: text/html; charset=utf-8' \
+ "Content-Security-Policy: script-src 'none'" \
+ ''
{ printf '[html
[head
[meta name="viewport" content="width=device-width"]
settings_menu(){
printf '
[form #settings method="POST" action="?"
+ [hidden "session_key" "%s"]
[h1 Settings][a .settings href="?" Close]'
printf '
[a .section href="#nick" Nickname]
[div #nick [input name="nickname" value="%s"][submit "action" "nick" Set Cookie]]
- ' "$(HTML "${nickname#\?}")"
+ ' "$SESSION_KEY" "$(HTML "${nickname#\?}")"
printf '
[a .section href="#register" Register Nickname]
[div #register
exit 0
;;
\&?*)
- chatfile="$_DATA/${LOCATION}"
+ chatfile="$_DATA/${LOCATION}/channel"
. "$_EXEC/channel.sh"
exit 0
;;