} else { sendChatMsg(); } break; case "setroom": setRoom($out, $lang); break; } if (!isset($_SESSION["refreshrate"])) { $_SESSION["refreshrate"] = 0; } checkLogin(false); // Auto-reload is off in accessibility mode //--debug:--// echo("<pre>"); print_r($_SESSION); echo("</pre>"); $out->add("\n<div class=\"chatText\">"); $out->add(getMsgBuffer($lang, 25)); $out->add("</div>\n"); $out->add(listUsers($out, $lang)); $out->add(listRooms($out, $lang)); $out->add("\n<div class=\"nofloat\"> </div>\n"); $out->add(getWriteBox($out, $lang)); $backurl = getBackUrl(); if (!empty($backurl)) { $out->add("\n<noscript>\n"); $out->add("<a href=\"" . $backurl . "\">"); $out->add($lang->def("_BACK") . "</a>\n"); $out->add("\n</noscript>\n"); } // ------------------------------------------------------------------- require_once dirname(__FILE__) . "/footer.php"; // -------------------------------------------------------------------
// check for remote file inclusion attempt ------------------------------- $list = array('GLOBALS', '_POST', '_GET', '_COOKIE', '_SESSION'); while (list(, $elem) = each($list)) { if (isset($_REQUEST[$elem])) { die('Request overwrite attempt detected'); } } require_once dirname(__FILE__) . "/header.php"; YuiLib::load(); if (!isset($_GET['op'])) { $_GET['op'] = 'default'; } switch ($_GET['op']) { case "getmess": ob_clean(); echo getMsgBuffer($lang, false, true); if (Docebo::user()->isLoggedIn()) { Docebo::user()->SaveInSession(); } exit; break; default: $script = "\r\n\t\t<script type=\"text/javascript\">\r\n\t\t<!--\r\n\t\t\r\n\t\tfunction loadXMLDoc(url)\r\n\t\t{\r\n\t\t\tvar callback =\r\n\t\t\t{\r\n\t\t\t\tsuccess: function(req)\r\n\t\t\t\t{\r\n\t\t\t\t\tvar write = document.getElementById(\"write_here\");\r\n\t\t\t\t\tif(write)\r\n\t\t\t\t\t{\r\n\t\t\t\t\t\twhile( write.childNodes.length > 200 )\r\n\t\t\t\t\t\t\twrite.removeChild( write.firstChild );\r\n\t\t\t\t\t\t\r\n\t\t\t\t\t\tif(req.responseText.length != 0)\r\n\t\t\t\t\t\t{\r\n\t\t\t\t\t\t\tvar newline = document.createElement(\"div\");\r\n\t\t\t\t\t\t\tnewline.innerHTML = req.responseText;\r\n\t\t\t\t\t\t\twrite.appendChild(newline);\r\n\t\t\t\t\t\t}\r\n\t\t\t\t\t\t\r\n\t\t\t\t\t\tscroll(1, 10000000);\r\n\t\t\t\t\t}\r\n\t\t\t\t\telse\r\n\t\t\t\t\t{\r\n\t\t\t\t\t\talert(\"where to write not found\");\r\n\t\t\t\t\t\twindow.clearInterval(id_interval);\r\n\t\t\t\t\t}\r\n\t\t\t\t},\r\n\t\t\t\t\r\n\t\t\t\tfailure: {}, \r\n\t\t\t\t\r\n\t\t\t\tcache: false\r\n\t\t\t}\r\n\t\t\tvar transaction = YAHOO.util.Connect.asyncRequest('GET', url, callback, null);\r\n\t\t}\r\n\t\t\r\n\t\tfunction sd() {\r\n\t\t\tscroll(1, 10000000);\r\n\t\t}\r\n\t\t\r\n\t\tfunction endRefresh() {\r\n\t\t\twindow.clearInterval(id_interval);\r\n\t\t}\r\n\t\t\r\n\t\t-->\r\n\t\t</script>\r\n\t"; $out->add($script, "page_head"); $out->add('<div class="intestation_2">' . $lang->def('_CHAT') . '</div>' . '<div class="chatText" id="write_here">' . '<div>' . getMsgBuffer($lang) . '</div>' . '</div>' . '<script type="text/javascript"> var id_interval = window.setInterval("loadXMLDoc(\'' . getPopupBaseUrl() . '&op=getmess\')", ' . _REFRESH_RATE . ' * 1000); sd(); </script>'); } // ------------------------------------------------------------------- require_once dirname(__FILE__) . "/footer.php";