1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
|
<?php
http_response_code(204);
$dbconn = pg_connect(getenv("CSP_REPORT_URI")) or die();
function _get(&$var, $default=null) {
return isset($var) ? $var : $default;
}
$json_data = file_get_contents('php://input');
if ($json_data = json_decode($json_data, true)) {
$report = _get($json_data["csp-report"], Array());
$blocked_uri = _get($report["blocked-uri"], "");
$document_uri = _get($report["document-uri"], "");
$original_policy = _get($report["original-policy"], "");
$referrer = _get($report["referrer"], "");
$violated_directive = _get($report["violated-directive"], "");
$query = pg_prepare($dbconn, "insert_query", 'INSERT INTO csp_reports (blocked_uri, document_uri, original_policy, referrer, violated_directive, total_count, last) VALUES ($1, $2, $3, $4, $5, 1, NOW()) ON CONFLICT ON CONSTRAINT csp_report_unique DO UPDATE SET total_count = csp_reports.total_count + 1, last = NOW(), referrer = EXCLUDED.referrer, original_policy = EXCLUDED.original_policy');
pg_execute($dbconn, "insert_query", Array($blocked_uri, $document_uri, $original_policy, $referrer, $violated_directive));
}
|