BlueLotus_XSSReceiver/auth.php

<?php
if(!defined('IN_XSS_PLATFORM')) {
	exit('Access Denied');
}
header("Content-Security-Policy: default-src 'self'; object-src 'none'; style-src 'self' 'unsafe-inline'; frame-src 'none' ");
header("X-Content-Security-Policy: default-src 'self'; object-src 'none'; style-src 'self' 'unsafe-inline'; frame-src 'none' ");
header("X-WebKit-CSP: default-src 'self'; object-src 'none'; style-src 'self' 'unsafe-inline'; frame-src 'none' ");


?>
Version 1.0 2015-10-13 00:07:10 +08:00			`<?php`
Version 2.0 实现基本功能实现了基本界面admin.php 支持查看各种信息，支持自动base64解码 todolist keepsession 认证完全启用CSP 我的js js模板为实现一些jqxgrid无法实现的功能改动了jqx库，详见diff文件夹 2015-10-27 12:26:59 +08:00			`if(!defined('IN_XSS_PLATFORM')) {`
			`exit('Access Denied');`
			`}`
			`header("Content-Security-Policy: default-src 'self'; object-src 'none'; style-src 'self' 'unsafe-inline'; frame-src 'none' ");`
			`header("X-Content-Security-Policy: default-src 'self'; object-src 'none'; style-src 'self' 'unsafe-inline'; frame-src 'none' ");`
			`header("X-WebKit-CSP: default-src 'self'; object-src 'none'; style-src 'self' 'unsafe-inline'; frame-src 'none' ");`

Version 1.0 2015-10-13 00:07:10 +08:00
			`?>`