Function Index
$#! · 0-9 · A · B · C · D · E · F · G · H · I · J · K · L · M · N · O · P · Q · R · S · T · U · V · W · X · Y · Z
C
 csrfp_get_rctx
 csrfp_header_parser
 csrfp_inject
 csrfp_insert_filter
 csrfp_out_filter
 csrfp_sql_addn
 csrfp_sql_init
 csrfp_sql_table_clean
 csrfp_sql_update_counter
 csrfp_strncasestr
F
 failedValidationAction
G
 generateToken
 getCookieToken
 getCurrentUrl
 getOutputContentType
L
 logCSRFAttack
N
 needvalidation
S
 setTokenCookie
V
 validateToken
static csrfp_opf_ctx *csrfp_get_rctx(request_rec *r)
Get or create (and init) the pre request context used by the output filter
static int csrfp_header_parser(request_rec *r)
Callback function for header parser by Hook Registering function
static apr_bucket *csrfp_inject(request_rec *r,
apr_bucket_brigade *bb,
apr_bucket *b,
csrfp_opf_ctx *rctx,
const char *buf,
apr_size_t sz,
int flag)
Injects a new bucket containing a reference to the javascript.
static void csrfp_insert_filter(request_rec *r)
Registers in filter -- csrfp_in_filter
static apr_status_t csrfp_out_filter(ap_filter_t *f,
apr_bucket_brigade *bb)
Filters output generated by content generator and modify content
static int csrfp_sql_addn(request_rec *r,
sqlite3 *db,
const char *sessid,
const char *value)
Function to add / Update token value in the db
static sqlite3 *csrfp_sql_init(request_rec *r)
Function to initiate the sql process for code validation
static void csrfp_sql_table_clean(request_rec *r,
sqlite3 *db)
Function to clear expired tokens from db
static int csrfp_sql_update_counter(request_rec *r,
sqlite3 *db)
Function to add / Update counter value for reseeding
static const char *csrfp_strncasestr(const char *s1,
const char *s2,
int len)
Similar to standard strstr() but case insensitive and lenght limitation (char which is not 0 terminated).
static int failedValidationAction(request_rec *r)
Returns appropriate status code, as per configuration For failed validation action
static char* generateToken(request_rec *r,
int length)
Function to generate a pseudo random no to function as CSRFP_TOKEN
static char* getCookieToken(request_rec *r,
char *key)
Function to return the token value from cookie
static char* getCurrentUrl(request_rec *r)
Function to retrun current url
static const char *getOutputContentType(request_rec *r)
Returns content type of output generated by content generator
static void logCSRFAttack(request_rec *r)
Function to log an attack
static int needvalidation(request_rec *r)
Function to decide weather to validate current request Depending upon requested file, matched against ignore pattern
static void setTokenCookie(request_rec *r,
sqlite3 *db)
Function to append new CSRFP_TOKEN to output header
static int validateToken(request_rec *r,
sqlite3 *db)
Function to validate GET token, csrfp_token in GET query parameter
Close