Snippet Name: Authorized Domain
Description: Validates a domain name to prevent remote access. Prevents your forms from being submitted from anywhere but your website.
Comment: (none)
Language: PERL
Highlight Mode: PERL
Last Modified: March 06th, 2009
|
#!/usr/bin/perl
# Just the domain name, no "www"
MY $AuthorizedDomain = 'stupidstuff.org';
MY $FormDomain = LC $ENV{HTTP_REFERER};
$FormDomain =~ S!^https?://(?:www\.)?(.*?)(?:/.*)$!$1!;
UNLESS($FormDomain eq LC $AuthorizedDomain)
{ ErrorHTML('Unauthorized access.'); }
SUB ErrorHTML
{
MY $s = JOIN("\n<li>",@_);
PRINT "Content-type: text/html\n\n";
PRINT <<HTML;
<html><body bgcolor="white">
<blockquote><blockquote>
<h4>Message:</h4>
<ul>
<li>$s
</ul>
</blockquote></blockquote>
</body></html>
HTML
Exit();
} # sub ErrorHTML |