mirror of
https://codeberg.org/PostERG/xamxam.git
synced 2026-05-07 03:29:19 +02:00
f5d3281c43
Item 13 — Remove deprecated X-XSS-Protection header
- nginx/posterg.conf: header removed (was '1; mode=block')
- nginx/SECURITY_HEADERS.md: new file documenting header decisions
and explaining why X-XSS-Protection is counterproductive
Item 14 — Add rel="noreferrer" to external target="_blank" link
- public/admin/thanks.php: rel="noopener" → rel="noopener noreferrer"
Item 15 — Explicit (int) casts on all integer HTML outputs
- public/index.php: (int) on item id, page numbers
- public/search.php: (int) on totalItems, year options, item id, pagination
Item 16 — Remove unused DATABASE_PATH constant
- config/bootstrap.php: define('DATABASE_PATH', ...) removed
docs/TODO.SECURITY.md updated: items 13-16 marked resolved and
moved to the ✅ Resolved section.
58 lines
1.8 KiB
PHP
58 lines
1.8 KiB
PHP
<?php
|
|
// Load configuration
|
|
require_once __DIR__ . '/../config/bootstrap.php';
|
|
require_once APP_ROOT . '/lib/Database.php';
|
|
|
|
$pageTitle = "Liste des TFE";
|
|
$page = isset($_GET["page"]) ? intval($_GET["page"]) : 1;
|
|
$itemsPerPage = 10;
|
|
|
|
try {
|
|
$db = Database::getInstance();
|
|
$offset = ($page - 1) * $itemsPerPage;
|
|
$itemsToLoad = $db->getPublishedTheses($itemsPerPage, $offset);
|
|
$totalItems = $db->countPublishedTheses();
|
|
$totalPages = ceil($totalItems / $itemsPerPage);
|
|
} catch (Exception $e) {
|
|
error_log("Error loading theses: " . $e->getMessage());
|
|
$itemsToLoad = [];
|
|
$totalPages = 0;
|
|
}
|
|
|
|
include APP_ROOT . '/includes/header.php';
|
|
?>
|
|
|
|
<main>
|
|
<?php foreach ($itemsToLoad as $item): ?>
|
|
<a href="memoire.php?id=<?= (int)$item["id"] ?>" class="card-link">
|
|
<div class="card">
|
|
<div class="card-content">
|
|
<h2 class="title"><?= htmlspecialchars($item["title"]) ?></h2>
|
|
<p class="authors"><?= htmlspecialchars($item["authors"]) ?></p>
|
|
<p class="year"><?= htmlspecialchars($item["year"]) ?></p>
|
|
</div>
|
|
</div>
|
|
</a>
|
|
<?php endforeach; ?>
|
|
|
|
<?php if (empty($itemsToLoad)): ?>
|
|
<p>Aucun mémoire trouvé.</p>
|
|
<?php endif; ?>
|
|
</main>
|
|
|
|
<?php if ($totalPages > 1): ?>
|
|
<nav class="pagination">
|
|
<?php if ($page > 1): ?>
|
|
<a href="?page=<?= (int)($page - 1) ?>" class="pagination-previous">Précédent</a>
|
|
<?php endif; ?>
|
|
|
|
<?php if ($page < $totalPages): ?>
|
|
<a href="?page=<?= (int)($page + 1) ?>" class="pagination-next">Suivant</a>
|
|
<?php endif; ?>
|
|
|
|
<span class="pagination-info">Page <?= (int)$page ?> sur <?= (int)$totalPages ?></span>
|
|
</nav>
|
|
<?php endif; ?>
|
|
|
|
<?php include APP_ROOT . '/includes/footer.php'; ?>
|