2017-07-02 13:18:23 +02:00
< ? php
2023-12-04 13:49:31 +01:00
2021-02-26 18:58:34 +01:00
if ( ! defined ( 'NOREQUIREUSER' )) {
define ( 'NOREQUIREUSER' , '1' );
}
if ( ! defined ( 'NOREQUIREDB' )) {
define ( 'NOREQUIREDB' , '1' );
}
if ( ! defined ( 'NOREQUIRESOC' )) {
define ( 'NOREQUIRESOC' , '1' );
}
if ( ! defined ( 'NOREQUIRETRAN' )) {
define ( 'NOREQUIRETRAN' , '1' );
}
if ( ! defined ( 'NOSTYLECHECK' )) {
define ( 'NOSTYLECHECK' , '1' ); // Do not check style html tag into posted data
}
if ( ! defined ( 'NOREQUIREMENU' )) {
define ( 'NOREQUIREMENU' , '1' ); // If there is no need to load and show top and left menu
}
if ( ! defined ( 'NOREQUIREHTML' )) {
define ( 'NOREQUIREHTML' , '1' ); // If we don't need to load the html.form.class.php
}
if ( ! defined ( 'NOREQUIREAJAX' )) {
define ( 'NOREQUIREAJAX' , '1' ); // Do not load ajax.lib.php library
}
if ( ! defined ( " NOLOGIN " )) {
define ( " NOLOGIN " , '1' ); // If this page is public (can be called outside logged session)
}
2017-07-02 13:18:23 +02:00
// If you don't need session management (can't be logged if no session used). You must also set
2017-07-02 23:38:19 +02:00
// NOCSRFCHECK, NOTOKENRENEWAL, NOLOGIN
2017-07-02 13:18:23 +02:00
// Disable module with GETPOST('disablemodules') won't work. Variable 'dol_...' will not be set.
// $_SESSION are then simple vars if sessions are not active.
2021-02-19 14:43:03 +01:00
// TODO We can close session with session_write_close() as soon as we just need read access everywhere in code.
2021-02-26 18:58:34 +01:00
if ( ! defined ( " NOSESSION " )) {
define ( " NOSESSION " , '1' );
}
2017-07-02 13:18:23 +02:00
2022-07-11 20:18:03 +02:00
// Special
// We add header and output some content before the include of main.inc.php !!
// Because we need to So we can make
header ( " Content-type: text/html; charset=UTF8 " );
// Security options
header ( " X-Content-Type-Options: nosniff " ); // With the nosniff option, if the server says the content is text/html, the browser will render it as text/html (note that most browsers now force this option to on)
header ( " X-Frame-Options: SAMEORIGIN " ); // Frames allowed only if on same domain (stop some XSS attacks)
2021-02-19 15:46:59 +01:00
print " Legend:<br> \n " ;
print 'PHP_SESSION_DISABLED=' . PHP_SESSION_DISABLED . " <br> \n " ;
print 'PHP_SESSION_NONE=' . PHP_SESSION_NONE . " <br> \n " ;
print 'PHP_SESSION_ACTIVE=' . PHP_SESSION_ACTIVE . " <br> \n " ;
2017-07-02 13:18:23 +02:00
print '<br>' ;
2021-02-19 15:46:59 +01:00
print 'session_status=' . session_status () . ' (before main.inc.php)' ;
print '<br>' ;
2021-02-19 14:43:03 +01:00
2022-09-07 20:08:59 +02:00
// Load Dolibarr environment
2017-07-02 13:18:23 +02:00
require '../../main.inc.php' ;
2021-02-19 14:43:03 +01:00
2021-11-24 20:53:17 +01:00
// Security
2021-02-19 14:43:03 +01:00
if ( $dolibarr_main_prod ) {
accessforbidden ();
}
2017-07-02 13:18:23 +02:00
2021-11-24 20:53:17 +01:00
/*
* View
*/
2021-11-24 20:58:34 +01:00
print 'session_status=' . session_status () . ' (after main.inc.php)' ;
print '<br>' ;
2021-11-24 20:53:17 +01:00
2021-11-24 20:58:34 +01:00
//print 'a'.$_SESSION['disablemodules'].'b';
2017-07-02 13:18:23 +02:00
2021-11-24 20:58:34 +01:00
print " \n <br>This page is visible. It means you are not locked by another page called in same session. " ;
2017-07-02 13:18:23 +02:00
2021-11-24 20:58:34 +01:00
//session_write_close();
