CanDoOperation('security_frame_settings_read'); $canWrite = $USER->CanDoOperation('security_frame_settings_write'); if(!$canRead && !$canWrite) $APPLICATION->AuthForm(GetMessage("ACCESS_DENIED")); $aTabs = array( array( "DIV" => "main", "TAB" => GetMessage("SEC_FRAME_MAIN_TAB"), "ICON"=>"main_user_edit", "TITLE"=>GetMessage("SEC_FRAME_MAIN_TAB_TITLE"), ), array( "DIV" => "exceptions", "TAB" => GetMessage("SEC_FRAME_EXCEPTIONS_TAB"), "ICON"=>"main_user_edit", "TITLE"=>GetMessage("SEC_FRAME_EXCEPTIONS_TAB_TITLE"), ), ); $tabControl = new CAdminTabControl("tabControl", $aTabs, true, true); $bVarsFromForm = false; $_GET["return_url"] = $_GET["return_url"] ?? ""; if($_SERVER["REQUEST_METHOD"] == "POST" && (isset($_REQUEST["save"]) || isset($_REQUEST["apply"]) || isset($_REQUEST["frame_siteb"])) && $canWrite && check_bitrix_sessid()) { if($_REQUEST["frame_siteb"] != "") CSecurityFrame::SetActive($_POST["frame_active"]==="Y"); CSecurityFrameMask::Update($_POST["FRAME_MASKS"]); if(isset($_REQUEST["save"]) && $_GET["return_url"] != "") LocalRedirect($_GET["return_url"]); $returnUrl = $_GET["return_url"]? "&return_url=".urlencode($_GET["return_url"]): ""; LocalRedirect("/bitrix/admin/security_frame.php?lang=".LANGUAGE_ID.$returnUrl."&".$tabControl->ActiveTabParam()); } $rsSecurityFrameExclMask = CSecurityFrameMask::GetList(); if($rsSecurityFrameExclMask->Fetch()) $bSecurityFrameExcl = true; else $bSecurityFrameExcl = false; $messageDetails = ""; if (CHTMLPagesCache::IsOn()) { $messageType = "ERROR"; $messageText = GetMessage("SEC_FRAME_HTML_CACHE"); } else if (CSecurityFrame::IsActive()) { $messageType = "OK"; $messageText = GetMessage("SEC_FRAME_ON"); if($bSecurityFrameExcl) $messageDetails = "".GetMessage("SEC_FRAME_EXCL_FOUND").""; } else { $messageType = "ERROR"; $messageText = GetMessage("SEC_FRAME_OFF"); } $APPLICATION->SetTitle(GetMessage("SEC_FRAME_TITLE")); CUtil::InitJSCore(); $APPLICATION->AddHeadScript('/bitrix/js/security/admin/interface.js'); require($_SERVER["DOCUMENT_ROOT"]."/bitrix/modules/main/include/prolog_admin_after.php"); CAdminMessage::ShowMessage(array( "MESSAGE"=>$messageText, "TYPE"=>$messageType, "DETAILS"=>$messageDetails, "HTML"=>true ) ); ?>

" enctype="multipart/form-data" name="editform"> Begin(); ?> BeginNextTab(); ?> "> " class="adm-btn-save"> BeginNextTab(); $arMasks = array(); if($bVarsFromForm) { if(is_array($_POST["FRAME_MASKS"])) foreach($_POST["FRAME_MASKS"] as $i => $POST_MASK) $arMasks[] = array( "SITE_ID" => htmlspecialcharsbx($POST_MASK["SITE_ID"]), "FRAME_MASK" => htmlspecialcharsbx($POST_MASK["FRAME_MASK"]), ); } else { $rs = CSecurityFrameMask::GetList(); while($ar = $rs->Fetch()) $arMasks[] = array( "SITE_ID" => htmlspecialcharsbx($ar["SITE_ID"]), "FRAME_MASK" => htmlspecialcharsbx($ar["FRAME_MASK"]), ); } ?> $arMask):?>

">

">

Buttons( array( "disabled"=>(!$canWrite), "back_url"=>$_GET["return_url"]? $_GET["return_url"]: "security_iprule_list.php?lang=".LANG, ) ); ?> End(); ?>