[add] csrf defense and render_array functionality

author: Stanislav-Wolski <stanislau.wolski@gmail.com> 2012-05-28 17:29:54 +0300
committer: Stanislav-Wolski <stanislau.wolski@gmail.com> 2012-05-28 17:29:54 +0300
commit: f412231c95a2d54a1061b597b4032227e5e0bdb5 (patch)
tree: 0a4b388edebba591e6fd19dbe1cea2f7978d7294 /samples
parent: 6c5b0c64092ad095d55412b5765c14bd121b508c (diff)
download: connector-php-f412231c95a2d54a1061b597b4032227e5e0bdb5.zip
connector-php-f412231c95a2d54a1061b597b4032227e5e0bdb5.tar.gz
connector-php-f412231c95a2d54a1061b597b4032227e5e0bdb5.tar.bz2
9 files changed, 153 insertions, 3 deletions
diff --git a/samples/config.php b/samples/config.php
index 79d6843..753650a 100644
--- a/samples/config.php
+++ b/samples/config.php
@@ -1,7 +1,7 @@
 <?php
-	$mysql_server="localhost";
-	$mysql_user = "root";
-	$mysql_pass = "";
+	$mysql_server="192.168.1.251";
+	$mysql_user = "sampleDB";
+	$mysql_pass = "sampleDB";
 	$mysql_db = "sampleDB";
 	$excel_file = "../common/excel_sample.xls";
 	
diff --git a/samples/scheduler/07_array_connector.html b/samples/scheduler/07_array_connector.html
new file mode 100644
index 0000000..c4c2183
--- /dev/null
+++ b/samples/scheduler/07_array_connector.html
@@ -0,0 +1,54 @@
+<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
+	"http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
+<head>
+	<meta http-equiv="Content-type" content="text/html; charset=utf-8">
+	<title></title>
+</head>
+	<script src="../dhtmlx/dhtmlxscheduler.js" type="text/javascript" charset="utf-8"></script>
+	<link rel="stylesheet" href="../dhtmlx/dhtmlxscheduler.css" type="text/css" title="no title" charset="utf-8">
+
+<style type="text/css" media="screen">
+	html, body{
+		margin:0px;
+		padding:0px;
+		height:100%;
+		overflow:hidden;
+	}	
+</style>
+
+<script type="text/javascript" charset="utf-8">
+	function init() {
+		scheduler.config.multi_day = true;
+		scheduler.config.prevent_cache = true;
+		scheduler.config.xml_date="%Y-%m-%d %H:%i";
+		scheduler.init('scheduler_here',new Date(2012,4,1),"month");
+		
+		
+		scheduler.locale.labels.section_type = "Type";
+		scheduler.config.lightbox.sections = [	
+			{name:"description", height:200, map_to:"text", type:"textarea" , focus:true},
+			{name:"type", height:21, map_to:"type", type:"select", 
+				options:scheduler.serverList("type")},	
+			{name:"time", height:72, type:"time", map_to:"auto"}	
+		];
+		scheduler.load("07_array_connector.php");
+	}
+</script>
+
+<body onload="init();">
+	<div id="scheduler_here" class="dhx_cal_container" style='width:100%; height:100%;'>
+		<div class="dhx_cal_navline">
+			<div class="dhx_cal_prev_button">&nbsp;</div>
+			<div class="dhx_cal_next_button">&nbsp;</div>
+			<div class="dhx_cal_today_button"></div>
+			<div class="dhx_cal_date"></div>
+			<div class="dhx_cal_tab" name="day_tab" style="right:204px;"></div>
+			<div class="dhx_cal_tab" name="week_tab" style="right:140px;"></div>
+			<div class="dhx_cal_tab" name="month_tab" style="right:76px;"></div>
+		</div>
+		<div class="dhx_cal_header">
+		</div>
+		<div class="dhx_cal_data">
+		</div>
+	</div>
+</body>
+\ No newline at end of file
diff --git a/samples/scheduler/07_array_connector.php b/samples/scheduler/07_array_connector.php
new file mode 100644
index 0000000..7415a53
--- /dev/null
+++ b/samples/scheduler/07_array_connector.php
@@ -0,0 +1,11 @@
+<?php
+	include ('../../codebase/scheduler_connector.php');
+
+    $data = array(
+    	array("event_id" => 1, "start_date" => "2012-05-24 00:00", "end_date" => "2012-05-25 00:00", "event_name" => "creation time"),
+    	array("event_id" => 2, "start_date" => "2010-02-16", "end_date" => "2084-06-08", "event_name" => "second part")
+    );
+
+	$scheduler = new SchedulerConnector();
+	$scheduler->render_array($data,"event_id","start_date,end_date,event_name");
+?>
+\ No newline at end of file
diff --git a/samples/security/data_csrf.php b/samples/security/data_csrf.php
new file mode 100644
index 0000000..1cfaf11
--- /dev/null
+++ b/samples/security/data_csrf.php
@@ -0,0 +1,14 @@
+<?php
+	require_once("../config.php");
+
+	$res=mysql_connect($mysql_server,$mysql_user,$mysql_pass);
+	mysql_select_db($mysql_db);
+
+	require("../../codebase/data_connector.php");
+
+	ConnectorSecurity::$security_key = true;
+
+	$grid = new JSONDataConnector($res);
+	$grid->set_limit(10);
+	$grid->render_table("grid50000","item_id","item_nm,item_cd");
+?>
+\ No newline at end of file
diff --git a/samples/security/dataview_csrf.php b/samples/security/dataview_csrf.php
new file mode 100644
index 0000000..1971380
--- /dev/null
+++ b/samples/security/dataview_csrf.php
@@ -0,0 +1,14 @@
+<?php
+	require_once("../config.php");
+
+	$res=mysql_connect($mysql_server,$mysql_user,$mysql_pass);
+	mysql_select_db($mysql_db);
+
+	require("../../codebase/dataview_connector.php");
+
+	ConnectorSecurity::$security_key = true;
+
+	$grid = new DataViewConnector($res);
+	$grid->set_limit(10);
+	$grid->render_table("grid50000","item_id","item_nm,item_cd");
+?>
+\ No newline at end of file
diff --git a/samples/security/form_csrf.php b/samples/security/form_csrf.php
new file mode 100644
index 0000000..8f76f03
--- /dev/null
+++ b/samples/security/form_csrf.php
@@ -0,0 +1,15 @@
+<?php
+	require_once("../config.php");
+
+	$res=mysql_connect($mysql_server,$mysql_user,$mysql_pass);
+	mysql_select_db($mysql_db);
+
+	require("../../codebase/form_connector.php");
+
+	ConnectorSecurity::$security_key = true;
+
+	$_GET["id"] = 810;
+
+	$grid = new FormConnector($res);
+	$grid->render_table("grid50000","item_id","item_nm,item_cd");
+?>
+\ No newline at end of file
diff --git a/samples/security/grid_csrf.php b/samples/security/grid_csrf.php
new file mode 100644
index 0000000..d3a1c82
--- /dev/null
+++ b/samples/security/grid_csrf.php
@@ -0,0 +1,14 @@
+<?php
+	require_once("../config.php");
+
+	$res=mysql_connect($mysql_server,$mysql_user,$mysql_pass);
+	mysql_select_db($mysql_db);
+
+	require("../../codebase/grid_connector.php");
+
+	ConnectorSecurity::$security_key = true;
+
+	$grid = new GridConnector($res);
+	$grid->set_limit(10);
+	$grid->render_table("grid50000","item_id","item_nm,item_cd");
+?>
+\ No newline at end of file
diff --git a/samples/security/scheduler_csrf.php b/samples/security/scheduler_csrf.php
new file mode 100644
index 0000000..9db3900
--- /dev/null
+++ b/samples/security/scheduler_csrf.php
@@ -0,0 +1,15 @@
+<?php
+	require_once("../config.php");
+
+	$res=mysql_connect($mysql_server,$mysql_user,$mysql_pass);
+	mysql_select_db($mysql_db);
+
+	require("../../codebase/scheduler_connector.php");
+
+	ConnectorSecurity::$security_key = true;
+
+	$_GET["id"] = 810;
+
+	$grid = new JSONSchedulerConnector($res);
+	$grid->render_table("events","event_id","start_date, end_date, event_name");
+?>
+\ No newline at end of file
diff --git a/samples/security/tree_csrf.php b/samples/security/tree_csrf.php
new file mode 100644
index 0000000..eca30e9
--- /dev/null
+++ b/samples/security/tree_csrf.php
@@ -0,0 +1,13 @@
+<?php
+	require_once("../config.php");
+
+	$res=mysql_connect($mysql_server,$mysql_user,$mysql_pass);
+	mysql_select_db($mysql_db);
+
+	require("../../codebase/tree_connector.php");
+
+	ConnectorSecurity::$security_key = true;
+
+	$grid = new TreeConnector($res);
+	$grid->render_table("tasks","taskId","taskName","","parentId");
+?>
+\ No newline at end of file
author	Stanislav-Wolski <stanislau.wolski@gmail.com>	2012-05-28 17:29:54 +0300
committer	Stanislav-Wolski <stanislau.wolski@gmail.com>	2012-05-28 17:29:54 +0300
commit	f412231c95a2d54a1061b597b4032227e5e0bdb5 (patch)
tree	0a4b388edebba591e6fd19dbe1cea2f7978d7294 /samples
parent	6c5b0c64092ad095d55412b5765c14bd121b508c (diff)
download	connector-php-f412231c95a2d54a1061b597b4032227e5e0bdb5.zip connector-php-f412231c95a2d54a1061b597b4032227e5e0bdb5.tar.gz connector-php-f412231c95a2d54a1061b597b4032227e5e0bdb5.tar.bz2