Difference between revisions of "Integration/ContentConnector"

From TempusServa wiki
Jump to navigation Jump to search
old>Admin
(Created page with '== CMS content provider == === Tempus Serva setup (provider) === === CMS system setup (consumer) === === Overcoming XSS protection === I cases where the TempusServa serv…')
 
old>Admin
Line 22: Line 22:
    
    
   <?php  
   <?php  
     echo file_get_contents("http://myserver.dk/TempusServa/cmsinterface?q=".$_GET["q"]."&v=".$_GET["v"]);
     echo file_get_contents("http://myserver.dk/TS/cmsinterface?q=".$_GET["q"]."&v=".$_GET["v"]);

Revision as of 19:57, 21 January 2014

CMS content provider

Tempus Serva setup (provider)

CMS system setup (consumer)

Overcoming XSS protection

I cases where the TempusServa server and the CMS system is on different domains (ex. acme.shared.com and cms.acme.com), browsers will prevent pages from accessing content from other servers.

Three options exist

  1. Set up server to allow XSS (not recommended)
  2. Use server side includes (ok, but not supported everywhere)
  3. Set up a mini proxyserver

A mini proxyserver written i PHP is very simple.

  <?php 
   echo file_get_contents("http://myserver.dk/TS/cmsinterface?q=".$_GET["q"]."&v=".$_GET["v"]);