ORGANISATION-KA-INTERNATIONALE/kaubuntu.re
3
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

add input validation and security headers to all pages

Browse Source
This commit is contained in:
Cédric Famibelle-Pronzola
2025-07-17 09:58:38 +04:00
parent b2c9ae8154
commit 8c5737cb28
4 changed files with 18 additions and 6 deletions
Download Patch File Download Diff File Expand all files Collapse all files
categories.php
+7 -2
View File
@@ -2,8 +2,12 @@
// Inclure la configuration // Inclure la configuration
require_once 'includes/config.php'; require_once 'includes/config.php';
// Récupération de l'ID de catégorie // Appliquer les en-têtes de sécurité
$categoryId = isset($_GET['id']) ? intval($_GET['id']) : null; setSecurityHeaders();
// Récupération et validation de l'ID de catégorie
$categoryId = isset($_GET['id']) ? $_GET['id'] : null;
$categoryId = $categoryId ? validateCategoryId($categoryId) : null;
// Récupérer les catégories disponibles // Récupérer les catégories disponibles
$allCategories = PEERTUBE_CATEGORIES; $allCategories = PEERTUBE_CATEGORIES;
@@ -27,6 +31,7 @@ if ($categoryId && isset($allCategories[$categoryId])) {
<head> <head>
<meta charset="UTF-8"> <meta charset="UTF-8">
<meta name="viewport" content="width=device-width, initial-scale=1.0"> <meta name="viewport" content="width=device-width, initial-scale=1.0">
<meta name="csrf-token" content="<?php echo generateCSRFToken(); ?>">
<title><?php echo htmlspecialchars($categoryName); ?> - kaubuntu.re</title> <title><?php echo htmlspecialchars($categoryName); ?> - kaubuntu.re</title>
<link rel="stylesheet" href="css/styles.css"> <link rel="stylesheet" href="css/styles.css">
<link rel="stylesheet" href="https://cdnjs.cloudflare.com/ajax/libs/font-awesome/6.5.1/css/all.min.css"> <link rel="stylesheet" href="https://cdnjs.cloudflare.com/ajax/libs/font-awesome/6.5.1/css/all.min.css">
direct.php
+2
View File
@@ -19,6 +19,8 @@
<?php <?php
// Inclure la configuration // Inclure la configuration
require_once 'includes/config.php'; require_once 'includes/config.php';
// Appliquer les en-têtes de sécurité
setSecurityHeaders();
?> ?>
<?php include 'includes/sidebar.php'; ?> <?php include 'includes/sidebar.php'; ?>
<!-- Contenu principal --> <!-- Contenu principal -->
index.php
+7 -4
View File
@@ -1,8 +1,15 @@
<?php
// Inclure la configuration
require_once 'includes/config.php';
// Appliquer les en-têtes de sécurité
setSecurityHeaders();
?>
<!DOCTYPE html> <!DOCTYPE html>
<html lang="fr"> <html lang="fr">
<head> <head>
<meta charset="UTF-8"> <meta charset="UTF-8">
<meta name="viewport" content="width=device-width, initial-scale=1.0"> <meta name="viewport" content="width=device-width, initial-scale=1.0">
<meta name="csrf-token" content="<?php echo generateCSRFToken(); ?>">
<title>kaubuntu.re - Plateforme Multimédia</title> <title>kaubuntu.re - Plateforme Multimédia</title>
<link rel="stylesheet" href="css/styles.css"> <link rel="stylesheet" href="css/styles.css">
<link rel="stylesheet" href="https://cdnjs.cloudflare.com/ajax/libs/font-awesome/6.5.1/css/all.min.css"> <link rel="stylesheet" href="https://cdnjs.cloudflare.com/ajax/libs/font-awesome/6.5.1/css/all.min.css">
@@ -17,10 +24,6 @@
<meta name="theme-color" content="#ffffff"> <meta name="theme-color" content="#ffffff">
</head> </head>
<body> <body>
<?php
// Inclure la configuration
require_once 'includes/config.php';
?>
<?php include 'includes/sidebar.php'; ?> <?php include 'includes/sidebar.php'; ?>
<!-- Contenu principal --> <!-- Contenu principal -->
<div class="main-content"> <div class="main-content">
mentions-legales.php
+2
View File
@@ -19,6 +19,8 @@
<?php <?php
// Inclure la configuration // Inclure la configuration
require_once 'includes/config.php'; require_once 'includes/config.php';
// Appliquer les en-têtes de sécurité
setSecurityHeaders();
?> ?>
<?php include 'includes/sidebar.php'; ?> <?php include 'includes/sidebar.php'; ?>
<!-- Contenu principal --> <!-- Contenu principal -->