source: subversion/trunk/roundcubemail/program/steps/error.inc @ 319

Last change on this file since 319 was 319, checked in by thomasb, 7 years ago

Fixed some XSS and SQL injection issues
  • Property svn:eol-style set to native
  • Property svn:keywords set to Author Date Id Revision
File size: 3.3 KB
Line 
1<?php
2
3/*
4 +-----------------------------------------------------------------------+
5 | program/steps/error.inc                                               |
6 |                                                                       |
7 | This file is part of the RoundCube Webmail client                     |
8 | Copyright (C) 2005, RoundCube Dev. - Switzerland                      |
9 | Licensed under the GNU GPL                                            |
10 |                                                                       |
11 | PURPOSE:                                                              |
12 |   Display error message page                                          |
13 |                                                                       |
14 +-----------------------------------------------------------------------+
15 | Author: Thomas Bruederli <roundcube@gmail.com>                        |
16 +-----------------------------------------------------------------------+
17
18 $Id$
19
20*/
21
22
23// browser is not compatible with this application
24if ($ERROR_CODE==409)
25  {
26  $user_agent = $GLOBALS['HTTP_SERVER_VARS']['HTTP_USER_AGENT'];
27  $__error_title = 'Your browser does not suit the requirements for this application';
28  $__error_text = <<<EOF
29<i>Supported browsers:</i><br />
30&raquo; &nbsp;Netscape 7+<br />
31&raquo; &nbsp;Microsoft Internet Explorer 6+<br />
32&raquo; &nbsp;Mozilla Firefox 1.0+<br />
33&raquo; &nbsp;Opera 8.0+<br />
34&raquo; &nbsp;Safari 1.2+<br />
35<br />
36&raquo; &nbsp;JavaScript enabled<br />
37&raquo; &nbsp;Support for XMLHTTPRequest<br />
38
39<p><i>Your configuration:</i><br />
40$user_agent</p>
41EOF;
42  }
43
44// authorization error
45else if ($ERROR_CODE==401)
46  {
47  $__error_title = "AUTHORIZATION FAILED";
48  $__error_text  = "Could not verify that you are authorized to access this service!<br />\n".
49                   "Please contact your server-administrator.";
50  }
51 
52// failed request (wrong step in URL)
53else if ($ERROR_CODE==404)
54  {
55  $__error_title = "REQUEST FAILED/FILE NOT FOUND";
56  $request_url = htmlentities($_SERVER['HTTP_HOST'].$_SERVER['REQUEST_URI']);
57  $__error_text  = <<<EOF
58The requested page was not found!<br />
59Please contact your server-administrator.
60
61<p><i>Failed request:</i><br />
62http://$request_url</p>
63EOF;
64  }
65
66
67// system error
68else
69  {
70  $__error_title = "SERVICE CURRENTLY NOT AVAILABLE!";
71  $__error_text  = "Please contact your server-administrator.";
72 
73  if (($CONFIG['debug_level'] & 4) && $ERROR_MESSAGE)
74    $__error_text = $ERROR_MESSAGE;
75  else
76    $__error_text = 'Error No. '.dechex($ERROR_CODE).')';
77  }
78
79
80// compose page content
81
82$__page_content = <<<EOF
83<div>
84<h3 class="error-title">$__error_title</h3>
85<p class="error-text">$__error_text</p>
86</div>
87EOF;
88
89
90
91if (template_exists('error'))
92  {
93  $OUTPUT->scripts = array();
94  $OUTPUT->script_files = array();
95  parse_template('error');
96  }
97
98
99// print system error page
100print <<<EOF
101<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
102<html xmlns="http://www.w3.org/1999/xhtml"><head>
103<title>RoundCube|Mail : ERROR $ERROR_CODE</title>
104<link rel="stylesheet" type="text/css" href="program/style.css" />
105</head>
106<body>
107
108<table border="0" cellsapcing="0" cellpadding="0" width="100%" height="80%"><tr><td align="center">
109
110$__page_content
111
112</td></tr></table>
113
114</body>
115</html>
116EOF;
117
118?>
Note: See TracBrowser for help on using the repository browser.