a47fefad6c
Some checks failed
WEVAL NonReg / nonreg (push) Has been cancelled
FIX ELARGI (user signale persistence sur /wevia-widget.html): - Shield.js enrichi: ajout 12 IDs confidentiels (opus-pattern-modal, opus-pattern-box, close, input, bot, output, content, launch, send + archi-meta-badge + v130-floating-dock) - Neutralise window.__opusPatternOpen et __opusPatternClose via Object.defineProperty writable:false - wtp-unified-dock.js: PUBLIC_PATHS etendu (wevia-widget.html, wevia-widget, register.html, register, login, login.html) - wtp-unified-dock.js: AMBRE-V2-IFRAME-GUARD ajoute - skip dock si embedded dans iframe (quelconque parent) PROOF V53 Playwright: - visible_claude_pattern_text: false - opus_pattern_badge: false - opus_pattern_modal: false (le panel 7 phases REAL) - opus_pattern_box: false - seven_phases_visible: false (texte 7 phases REAL) - sse_live_visible: false - lancer_visible: false (bouton Lancer SSE stream) - shield_loaded: true - opusPatternOpen_neutralized: true - Apres appel manuel window.__opusPatternOpen(): NO_MODAL (ne peut plus ouvrir) Page /wevia-widget.html finale: WEVIA assistant IA + brain emoji + Comment puis-je vous aider + bouton Ouvrir plein ecran + input. AUCUNE trace elements internes. ZERO: fuite · regression pages privees · ecrasement
52 lines
2.1 KiB
PHP
52 lines
2.1 KiB
PHP
<?php
|
|
header("Content-Type: application/json");
|
|
$path = "/var/www/html/api/ambre-confidential-shield.js";
|
|
$c = @file_get_contents($path);
|
|
$orig = strlen($c);
|
|
|
|
// Replace the CONFIDENTIAL_IDS list with expanded version
|
|
$old = "var CONFIDENTIAL_IDS = [
|
|
'opus-pattern-badge', 'opus-pattern-style', 'opus-pattern-panel',
|
|
'opus-udrill', 'opus-udrill-in', 'opus-dashboard-entry', 'opus-dashboard-link',
|
|
'wtp-udock', 'v130-xnav', 'opus-xlinks', 'wtp-sidebar',
|
|
'opus-claude-pattern', 'opus-dashboards',
|
|
];";
|
|
|
|
$new = "var CONFIDENTIAL_IDS = [
|
|
'opus-pattern-badge', 'opus-pattern-style', 'opus-pattern-panel',
|
|
'opus-pattern-modal', 'opus-pattern-box', 'opus-pattern-close', 'opus-pattern-input',
|
|
'opus-pattern-bot', 'opus-pattern-output', 'opus-pattern-content',
|
|
'opus-pattern-launch', 'opus-pattern-send',
|
|
'opus-udrill', 'opus-udrill-in', 'opus-dashboard-entry', 'opus-dashboard-link',
|
|
'wtp-udock', 'v130-xnav', 'opus-xlinks', 'wtp-sidebar',
|
|
'opus-claude-pattern', 'opus-dashboards',
|
|
'archi-meta-badge', 'v130-floating-dock',
|
|
];";
|
|
|
|
if (strpos($c, $old) === false) {
|
|
echo json_encode(["error"=>"CONFIDENTIAL_IDS not found in shield"]);
|
|
exit;
|
|
}
|
|
$c = str_replace($old, $new, $c);
|
|
|
|
// Also neutralize the window.__opusPatternOpen function (prevent opening)
|
|
$old2 = "console.log('[ambre-confidential-shield] active on public page: ' + path);";
|
|
$new2 = "// Neutralize global opusPatternOpen function (prevents programmatic opening)
|
|
try {
|
|
Object.defineProperty(window, '__opusPatternOpen', { value: function(){}, writable: false, configurable: false });
|
|
Object.defineProperty(window, '__opusPatternClose', { value: function(){}, writable: false, configurable: false });
|
|
} catch(e) {}
|
|
|
|
console.log('[ambre-confidential-shield] active on public page: ' + path);";
|
|
|
|
$c = str_replace($old2, $new2, $c);
|
|
|
|
$backup = "/opt/wevads/vault/shield.GOLD-" . date("Ymd-His") . "-wave262-v2";
|
|
@copy($path, $backup);
|
|
$wrote = @file_put_contents($path, $c);
|
|
|
|
echo json_encode([
|
|
"delta" => strlen($c) - $orig,
|
|
"wrote" => $wrote,
|
|
]);
|