--- a/mod_http_upload_external/share.php Mon Apr 02 10:57:17 2018 +0100
+++ b/mod_http_upload_external/share.php Mon Apr 02 15:00:57 2018 +0100
@@ -70,7 +70,7 @@
$request_method = $_SERVER['REQUEST_METHOD'];
if(array_key_exists('v', $_GET) === TRUE && $request_method === 'PUT') {
- $upload_file_size = $_SERVER['HTTP_CONTENT_LENGTH'];
+ $upload_file_size = $_SERVER['CONTENT_LENGTH'];
$upload_token = $_GET['v'];
$calculated_token = hash_hmac('sha256', "$upload_file_name $upload_file_size", $CONFIG_SECRET);
@@ -104,9 +104,9 @@
header('Content-Disposition: attachment');
header('Content-Type: application/octet-stream');
header('Content-Length: '.filesize($store_file_name));
- header('Content-Security-Policy: "default-src \'none\'"');
- header('X-Content-Security-Policy: "default-src \'none\'"');
- header('X-WebKit-CSP: "default-src 'none'"');
+ header("Content-Security-Policy: \"default-src 'none'\"");
+ header("X-Content-Security-Policy: \"default-src 'none'\"");
+ header("X-WebKit-CSP: \"default-src 'none'\"");
if($request_method !== 'HEAD') {
readfile($store_file_name);
}