Integration/ContentConnector
Revision as of 19:58, 21 January 2014 by old>Admin (→Overcoming XSS protection)
CMS content provider
Tempus Serva setup (provider)
CMS system setup (consumer)
Overcoming XSS protection
I cases where the TempusServa server and the CMS system is on different domains (ex. acme.shared.com and cms.acme.com), browsers will prevent pages from accessing content from other servers.
Three options exist
- Set up server to allow XSS (not recommended)
- Use server side includes (ok, but not supported everywhere)
- Set up a mini proxyserver
A mini proxyserver written i PHP is very simple.
<?php echo file_get_contents("http://myserver.dk/TS/cmsinterface?q=".$_GET["q"]."&v=".$_GET["v"]);
Afterwards you just make the calls through the proxy using exact same parameters.