1 const char killpopup_rcs[] = "$Id: killpopup.c,v 1.10 2001/09/22 16:34:44 jongfoster Exp $";
2 /*********************************************************************
4 * File : $Source: /cvsroot/ijbswa/current/killpopup.c,v $
6 * Purpose : Handles the filtering of popups.
8 * Copyright : Written by and Copyright (C) 2001 the SourceForge
9 * IJBSWA team. http://ijbswa.sourceforge.net
11 * Based on the Internet Junkbuster originally written
12 * by and Copyright (C) 1997 Anonymous Coders and
13 * Junkbusters Corporation. http://www.junkbusters.com
15 * This program is free software; you can redistribute it
16 * and/or modify it under the terms of the GNU General
17 * Public License as published by the Free Software
18 * Foundation; either version 2 of the License, or (at
19 * your option) any later version.
21 * This program is distributed in the hope that it will
22 * be useful, but WITHOUT ANY WARRANTY; without even the
23 * implied warranty of MERCHANTABILITY or FITNESS FOR A
24 * PARTICULAR PURPOSE. See the GNU General Public
25 * License for more details.
27 * The GNU General Public License should be included with
28 * this file. If not, you can view it at
29 * http://www.gnu.org/copyleft/gpl.html
30 * or write to the Free Software Foundation, Inc., 59
31 * Temple Place - Suite 330, Boston, MA 02111-1307, USA.
34 * $Log: killpopup.c,v $
35 * Revision 1.10 2001/09/22 16:34:44 jongfoster
36 * Removing unneeded #includes
38 * Revision 1.9 2001/07/31 14:44:22 oes
39 * Deleted unused size parameter from filter_popups()
41 * Revision 1.8 2001/07/30 22:08:36 jongfoster
42 * Tidying up #defines:
43 * - All feature #defines are now of the form FEATURE_xxx
44 * - Permanently turned off WIN_GUI_EDIT
45 * - Permanently turned on WEBDAV and SPLIT_PROXY_ARGS
47 * Revision 1.7 2001/07/20 19:29:25 haroon
48 * - In v1.5 forgot to add that I implemented LOG_LEVEL_POPUPS in errlog.c,
49 * errlog.h and killpopup.c. In that case, it is superfluous to have define for
50 * POPUP_VERBOSE, so I removed the defines and logging is now done
51 * via log_error(LOG_LEVEL_POPUPS, ....)
53 * Revision 1.6 2001/07/19 19:11:35 haroon
54 * - Implemented Guy's idea of replacing window.open( with 1;''.concat(
55 * - Implemented Guy's idea of replacing .resizeTo( with .scrollTo(
57 * Revision 1.5 2001/07/18 15:02:52 haroon
58 * improved nuking of window.open
60 * Revision 1.4 2001/06/29 13:29:55 oes
61 * Added FIXMEs (and didn't repair, hehe)
63 * Revision 1.3 2001/05/22 18:56:28 oes
66 * Revision 1.2 2001/05/20 01:21:20 jongfoster
67 * Version 2.9.4 checkin.
68 * - Merged popupfile and cookiefile, and added control over PCRS
69 * filtering, in new "permissionsfile".
70 * - Implemented LOG_LEVEL_FATAL, so that if there is a configuration
71 * file error you now get a message box (in the Win32 GUI) rather
72 * than the program exiting with no explanation.
73 * - Made killpopup use the PCRS MIME-type checking and HTTP-header
75 * - Removed tabs from "config"
76 * - Moved duplicated url parsing code in "loaders.c" to a new funcition.
77 * - Bumped up version number.
79 * Revision 1.1.1.1 2001/05/15 13:58:58 oes
80 * Initial import of version 2.9.3 source tree
83 *********************************************************************/
90 #include <sys/types.h>
102 #include "killpopup.h"
105 const char killpopup_h_rcs[] = KILLPOPUP_H_VERSION;
107 #ifdef FEATURE_KILL_POPUPS
109 /*********************************************************************
111 * Function : filter_popups
113 * Description : Filter the block of data that's been read from the server
114 * for javascript popup code and replace by syntactically
115 * neutral code of the same size.
116 * Raise the CSP_FLAG_MODIFIED flag on success.
119 * 1 : buff = Buffer to scan and modify. Null terminated.
120 * 2 : csp = Client state pointer
124 *********************************************************************/
125 void filter_popups(char *buff, struct client_state *csp)
131 while ((popup = strstr( buff, "window.open(" )) != NULL)
136 * replace the window.open( with a harmless JavaScript replacement (notice the two single quotes)
137 * Guy's idea (thanks)
139 strncpy(popup, "1;''.concat(", 12);
140 log_error(LOG_LEVEL_POPUPS, "Blocked popup window open");
141 csp->flags |= CSP_FLAG_MODIFIED;
145 while ((popup = strstr( buff, ".resizeTo(" )) != NULL)
150 * replace the .resizeTo( with a harmless JavaScript replacement
151 * Guy's idea (thanks)
153 strncpy(popup, ".scrollTo(", 10);
154 log_error(LOG_LEVEL_POPUPS, "Blocked popup window resize");
155 csp->flags |= CSP_FLAG_MODIFIED;
159 /* Filter onUnload and onExit */
160 popup=strstr( buff, "<body");
161 if (!popup) popup=strstr( buff, "<BODY");
162 if (!popup) popup=strstr( buff, "<Body");
163 if (!popup) popup=strstr( buff, "<BOdy");
166 close=strchr(popup,'>');
169 /* we are now between <body and the ending > FIXME: No, we're anywhere! --oes */
170 p=strstr(popup, "onUnload");
174 csp->flags |= CSP_FLAG_MODIFIED;
176 p=strstr(popup, "onExit");
180 csp->flags |= CSP_FLAG_MODIFIED;
187 #endif /* def FEATURE_KILL_POPUPS */