PHP get_unique_token примеры использования

Пример #1

Файл: insert_image.php Проект: joshgillies/mysource-matrix

				document.getElementById('main-form').target = "create_image_frame";
			}

		</script>

		<?php 
define('SQ_PAINTED_SIMPLE_ASSET_MAP', TRUE);
?>
	</head>

	<body onload="Init();" onUnload="asset_finder_onunload();">
		<form action="" method="get" name="main_form" id="main-form">
	    	<?php 
// insert nonce secuirty token.
if ($GLOBALS['SQ_SYSTEM']->user && !$GLOBALS['SQ_SYSTEM']->user instanceof Public_User) {
    hidden_field('token', get_unique_token());
}
?>
			<table class="sq-fieldsets-table">
				<tr>
				    <td valign="top" class="sq-popup-asset-map">
				        <div id="asset_map">
				            <iframe src="insert_image_asset_map.php" name="sq_wysiwyg_popup_sidenav" frameborder="0" width="200" height="600px" scrolling="no">
				            </iframe>
				        </div>
				    </td>
					<td valign="top">
						<table cellspacing="0" cellpadding="0">
							<tr>
								<td valign="top" width="100%" colspan=2>
								<fieldset>

Пример #2

Файл: spell_checker_popup.php Проект: joshgillies/mysource-matrix

		<script type="text/javascript" src="<?php 
echo '../' . $plugin->get_popup_href('spell_checker.js', 'spell_checker');
?>
"></script>

	
	</head>

	<body onLoad="Init(); initDocument(); if (opener) opener.blockEvents('spellChecker')" onUnload="if (opener) opener.unblockEvents(); parent_object._tmp['disable_toolbar'] = false; parent_object.updateToolbar();">
		<form style="display: none;" action="spell_checker.php" method="post" target="framecontent" accept-charset="utf-8">
			<input type="hidden" name="content" id="f_content"/>
			<input type="hidden" name="dictionary" id="f_dictionary"/>
			<input type="hidden" name="init" id="f_init" value="1"/>
			<input type="hidden" name="token" id="f_token" value="<?php 
echo get_unique_token();
?>
"/>
		</form>
		<div id="spellchecker">
			<table cellspacing="0" cellpadding="0" width="100%">
				<tr>
					<td colspan="2">
						<table width="100%" cellpadding="0" cellspacing="0">
							<tr>
								<td class="sq-popup-heading-frame title">						
										<h1 id="status"><?php 
echo translate('Please wait');
?>
...</h1>							
								</td>

Пример #3

Файл: spell_checker.php Проект: joshgillies/mysource-matrix

* $Id: spell_checker.php,v 1.18 2013/09/11 03:30:49 ewang Exp $
*
*/
/**
* Spell Checker Popup for the WYSIWYG
*
* @author  Marc McIntyre <*****@*****.**>
* @version $Revision: 1.18 $
* @package MySource_Matrix
*/
require_once dirname(__FILE__) . '/../../../../core/include/init.inc';
include_once dirname(__FILE__) . '/../../../../data/private/conf/tools.inc';
if (empty($GLOBALS['SQ_SYSTEM']->user) || !($GLOBALS['SQ_SYSTEM']->user->canAccessBackend() || $GLOBALS['SQ_SYSTEM']->user->type() == 'simple_edit_user' || method_exists($GLOBALS['SQ_SYSTEM']->user, 'isShadowSimpleEditUser') && $GLOBALS['SQ_SYSTEM']->user->isShadowSimpleEditUser())) {
    exit;
}
if (get_unique_token() !== $_POST['token']) {
    exit;
}
header('Content-type: text/html; charset: utf-8');
?>
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
<html>
	<head>
		<meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1"/>
		<meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
		<style type="text/css">
			.HA-spellcheck-error {
				border-bottom: 2px dotted #FF0000;
				cursor: pointer;
			}

Пример #4

Файл: upload_image.php Проект: joshgillies/mysource-matrix

* @author  Benjamin Pearson <*****@*****.**>
* @version $Revision: 1.10 $
* @package MySource_Matrix
*/
require_once dirname(__FILE__) . '/../../../../core/include/init.inc';
require_once dirname(__FILE__) . '/../../../../core/assets/files/image/image.inc';
if (empty($GLOBALS['SQ_SYSTEM']->user) || !($GLOBALS['SQ_SYSTEM']->user->canAccessBackend() || $GLOBALS['SQ_SYSTEM']->user->type() == 'simple_edit_user' || method_exists($GLOBALS['SQ_SYSTEM']->user, 'isShadowSimpleEditUser') && $GLOBALS['SQ_SYSTEM']->user->isShadowSimpleEditUser())) {
    echo return_javascript_error('You cannot upload file as a non-backend user');
    exit;
}
// verify nonce secuirty token to make sure the user submitting the request is using Matrix's backend interface
if (!isset($_POST['token'])) {
    trigger_error('Security token not found');
    exit;
}
$token = get_unique_token();
if ($_POST['token'] !== $token) {
    trigger_error('Invalid secuirty token');
    exit;
}
// Check if something was submitted
if (!isset($_FILES['create_image_upload']['name']) || !isset($_FILES['create_image_upload']['tmp_name']) || empty($_FILES['create_image_upload']['tmp_name']) || !isset($_FILES['create_image_upload']['error']) || !empty($_FILES['create_image_upload']['error'])) {
    // No file submitted
    echo return_javascript_error('No file submitted');
    exit;
} else {
    if (!isset($_POST['f_create_root_node']['assetid']) || empty($_POST['f_create_root_node']['assetid'])) {
        // No root node specified
        echo return_javascript_error('No root node selected');
        exit;
    }