fixing some security issues and harderning service

2026-05-06 08:51:51 +02:00
parent 4d8ce1da43
commit 7ae7df0a11
30 changed files with 328 additions and 124 deletions
@@ -1,5 +1,6 @@
 <?php
-session_start();
+include "../api/utils/security.php";
+secure_session_start();
 ?>
 <!DOCTYPE html>
 <html lang="en" data-bs-theme="dark">
@@ -134,12 +135,8 @@ session_start();
            showModalMessage('Success', 'Registration successful!');
            // Redirect to a different page if needed after closing the modal
            setTimeout(() => {
-              <?php
-              	if(empty($_SESSION["end_url"]))
-              		echo("window.location.href = '/?send_to=/account/';");
-              	else
-              		echo("window.location.href = '/?send_to=".$_SESSION["end_url"]."';");
-              ?>
+              const endUrl = <?php echo json_encode($_SESSION["end_url"] ?? "/account/"); ?>;
+              window.location.href = '/?send_to=' + encodeURIComponent(endUrl);
            }, 2000);
          } else {
            showModalMessage('Error', result.message || 'Registration failed!');