summaryrefslogtreecommitdiff
path: root/cacert/cgi-bin/siteseal.cgi
blob: ac28697471447940e6a5f20c155a3b4f08ed9f14 (plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
#!/usr/bin/php -q
<?
/**
 * check site seal
 *
 * @package org.cacert.framework
 * @author Duane Groth <duane@groth.net>
 * @copyright Copyright (C) 2003-2008, {@link http://www.cacert.org/ CAcert Inc.}
 * @license GPL Version 2
 * @version $Id: siteseal.cgi,v 1.4 2008-04-06 19:44:25 root Exp $
 */

if($_SERVER["HTTPS"] == "on")
  $http = "https";
else
  $http = "http";

/* obfuscate var names */
srand((double)microtime()*1000000);
$var1 = "ca1-".md5(rand(0,9999999));
$var2 = "ca2-".md5(rand(0,9999999));
$var3 = "ca3-".md5(rand(0,9999999));
$var4 = "ca4-".md5(rand(0,9999999));
$var5 = "ca5-".md5(rand(0,9999999));
$var6 = "ca6-".md5(rand(0,9999999));
$var7 = "ca7-".md5(rand(0,9999999));
$var8 = "ca8-".md5(rand(0,9999999));
$var9 = "ca9-".md5(rand(0,9999999));
$var10 = "caa-".md5(rand(0,9999999));
$var11 = "cab-".md5(rand(0,9999999));

header("Content-Type: text/javascript");
header("Content-Disposition: inline; filename=\"siteseal.js\"");

?>

var <?=$var1?> = window.location.href;
<? // var <?=$var2?> = '<?=$http?>://www.cacert.org/certdetails.php?referer=' + <?=$var1?>; ?>
var <?=$var2?> = '<?=$http?>://www.cacert.org';
var <?=$var3?> = (new Date()).getTimezoneOffset();

var <?=$var4?> = navigator.userAgent.toLowerCase();
var <?=$var5?> = false;
if (<?=$var4?>.indexOf("msid") != 1) {
  <?=$var5?> = (<?=$var4?>.indexOf("msie 5") == -1 && <?=$var4?>.indexOf("msie 6") == -1);
}

function <?=$var6?>(e) {
  if (document.addEventListener) {
    if (e.target.name == '<?=$var7?>') {
      <?=$var8?>();
      return false;
    }
  } else if (document.captureEvents) {
    if (e.target.toString().indexOf('certdetails') != -1) {
      <?=$var8?>();
      return false;
    }
  }
  return true;
}

function <?=$var9?>() {
  if (event.button == 1) {
    if (<?=$var5?>) {
      return true;
    } else {
      <?=$var8?>();
      return false;
    }
  } else if (event.button == 2) {
    <?=$var8?>();
    return false;
  }
}

function <?=$var8?>() {
  cacertWindow = window.open(<?=$var2?>, '<?=$var10?>', config='height=420,width=523,toolbar=no,menubar=no,scrollbars=no,resizable=no,location=no,directories=no,status=yes');
  cacertWindow.focus();
}

if (document.addEventListener) {
  document.addEventListener('mouseup', <?=$var6?>, true);
} else {
  if (document.layers) {
    document.captureEvents(Event.MOUSEDOWN);
    document.onmousedown=<?=$var6?>;
  }
}

document.write("<a href='" + <?=$var2?> + "' target='<?=$var10?>'  tabindex='-1' onmousedown='<?=$var9?>(); return false;'><img name='<?=$var7?>' border='0' src='<?=$http?>://www.cacert.org/sealgen.php?cert=<?=$cert?>&referer=" + <?=$var1?> + "' alt='Click to verify' oncontextmenu='return false;' /></a>"); ?>