├── Dockerfile
├── LICENSE
├── README.md
└── proxy.php


/Dockerfile:
--------------------------------------------------------------------------------
 1 | # Use the official PHP image as the base image
 2 | FROM php:7.4-cli
 3 | 
 4 | # Copy the proxy.php file into the Docker image
 5 | COPY proxy.php /var/www/html/proxy.php
 6 | 
 7 | # Expose port 80 for the web server
 8 | EXPOSE 80
 9 | 
10 | # Use CMD to start the PHP built-in web server
11 | CMD ["php", "-S", "0.0.0.0:80", "-t", "/var/www/html"]
12 | 


--------------------------------------------------------------------------------
/LICENSE:
--------------------------------------------------------------------------------
 1 | MIT License
 2 | 
 3 | Copyright (c) 2022 Heiswayi Nrird
 4 | 
 5 | Permission is hereby granted, free of charge, to any person obtaining a copy
 6 | of this software and associated documentation files (the "Software"), to deal
 7 | in the Software without restriction, including without limitation the rights
 8 | to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
 9 | copies of the Software, and to permit persons to whom the Software is
10 | furnished to do so, subject to the following conditions:
11 | 
12 | The above copyright notice and this permission notice shall be included in all
13 | copies or substantial portions of the Software.
14 | 
15 | THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
16 | IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
17 | FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
18 | AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
19 | LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
20 | OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
21 | SOFTWARE.
22 | 


--------------------------------------------------------------------------------
/README.md:
--------------------------------------------------------------------------------
 1 | # web-proxy-script
 2 | 
 3 | A minimalist, private web proxy script written in PHP code.
 4 | 
 5 | ## Running the Project Locally
 6 | 
 7 | To run the project locally, you need to have PHP installed on your machine. The required PHP version is 7.4 or higher. Additionally, you need to have the cURL extension enabled.
 8 | 
 9 | 1. Clone the repository:
10 |    ```sh
11 |    git clone https://github.com/heiswayi/web-proxy-script.git
12 |    cd web-proxy-script
13 |    ```
14 | 
15 | 2. Start the PHP built-in web server:
16 |    ```sh
17 |    php -S localhost:8000
18 |    ```
19 | 
20 | 3. Open your web browser and navigate to `http://localhost:8000/proxy.php`.
21 | 
22 | ## Using Docker
23 | 
24 | To build and run the Docker container, follow these steps:
25 | 
26 | 1. Build the Docker image:
27 |    ```sh
28 |    docker build -t web-proxy-script .
29 |    ```
30 | 
31 | 2. Run the Docker container:
32 |    ```sh
33 |    docker run -p 80:80 web-proxy-script
34 |    ```
35 | 
36 | 3. Open your web browser and navigate to `http://localhost/proxy.php`.
37 | 
38 | ## License
39 | 
40 | [MIT](LICENSE)
41 | 


--------------------------------------------------------------------------------
/proxy.php:
--------------------------------------------------------------------------------
  1 | <?php
  2 | 
  3 | // Private web proxy script by Heiswayi Nrird (https://heiswayi.nrird.com)
  4 | // Released under MIT license
  5 | // Free Software should work like this: whatever you take for free, you must give back for free.
  6 | 
  7 | ob_start("ob_gzhandler");
  8 | 
  9 | if (!function_exists("curl_init")) die ("This proxy requires PHP's cURL extension. Please install/enable it on your server and try again.");
 10 | 
 11 | //Adapted from http://www.php.net/manual/en/function.getallheaders.php#99814
 12 | if (!function_exists("getallheaders")) {
 13 |   function getallheaders() {
 14 |     $result = array();
 15 |     foreach($_SERVER as $key => $value) {
 16 |       if (substr($key, 0, 5) == "HTTP_") {
 17 |         $key = str_replace(" ", "-", ucwords(strtolower(str_replace("_", " ", substr($key, 5)))));
 18 |         $result[$key] = $value;
 19 |       } else {
 20 |         $result[$key] = $value;
 21 |       }
 22 |     }
 23 |     return $result;
 24 |   }
 25 | }
 26 | 
 27 | define("PROXY_PREFIX", "http" . (isset($_SERVER['HTTPS']) ? "s" : "") . "://" . $_SERVER["SERVER_NAME"] . ($_SERVER["SERVER_PORT"] != 80 ? ":" . $_SERVER["SERVER_PORT"] : "") . $_SERVER["SCRIPT_NAME"] . "/");
 28 | 
 29 | //Makes an HTTP request via cURL, using request data that was passed directly to this script.
 30 | function makeRequest($url) {
 31 | 
 32 |   //Tell cURL to make the request using the brower's user-agent if there is one, or a fallback user-agent otherwise.
 33 |   $user_agent = $_SERVER["HTTP_USER_AGENT"];
 34 |   if (empty($user_agent)) {
 35 |     $user_agent = "Mozilla/5.0 (compatible; nrird.xyz/proxy)";
 36 |   }
 37 |   $ch = curl_init();
 38 |   curl_setopt($ch, CURLOPT_USERAGENT, $user_agent);
 39 | 
 40 |   //Proxy the browser's request headers.
 41 |   $browserRequestHeaders = getallheaders();
 42 |   //(...but let cURL set some of these headers on its own.)
 43 |   //TODO: The unset()s below assume that browsers' request headers
 44 |   //will use casing (capitalizations) that appear within them.
 45 |   unset($browserRequestHeaders["Host"]);
 46 |   unset($browserRequestHeaders["Content-Length"]);
 47 |   //Throw away the browser's Accept-Encoding header if any;
 48 |   //let cURL make the request using gzip if possible.
 49 |   unset($browserRequestHeaders["Accept-Encoding"]);
 50 |   curl_setopt($ch, CURLOPT_ENCODING, "");
 51 |   //Transform the associative array from getallheaders() into an
 52 |   //indexed array of header strings to be passed to cURL.
 53 |   $curlRequestHeaders = array();
 54 |   foreach ($browserRequestHeaders as $name => $value) {
 55 |     $curlRequestHeaders[] = $name . ": " . $value;
 56 |   }
 57 |   curl_setopt($ch, CURLOPT_HTTPHEADER, $curlRequestHeaders);
 58 | 
 59 |   //Proxy any received GET/POST/PUT data.
 60 |   switch ($_SERVER["REQUEST_METHOD"]) {
 61 |     case "GET":
 62 |       $getData = array();
 63 |       foreach ($_GET as $key => $value) {
 64 |           $getData[] = urlencode($key) . "=" . urlencode($value);
 65 |       }
 66 |       if (count($getData) > 0) {
 67 |         //Remove any GET data from the URL, and re-add what was read.
 68 |         //TODO: Is the code in this "GET" case necessary?
 69 |         //It reads, strips, then re-adds all GET data; this may be a no-op.
 70 |         $url = substr($url, 0, strrpos($url, "?"));
 71 |         $url .= "?" . implode("&", $getData);
 72 |       }
 73 |     break;
 74 |     case "POST":
 75 |       curl_setopt($ch, CURLOPT_POST, true);
 76 |       //For some reason, $HTTP_RAW_POST_DATA isn't working as documented at
 77 |       //http://php.net/manual/en/reserved.variables.httprawpostdata.php
 78 |       //but the php://input method works. This is likely to be flaky
 79 |       //across different server environments.
 80 |       //More info here: http://stackoverflow.com/questions/8899239/http-raw-post-data-not-being-populated-after-upgrade-to-php-5-3
 81 |       curl_setopt($ch, CURLOPT_POSTFIELDS, file_get_contents("php://input"));
 82 |     break;
 83 |     case "PUT":
 84 |       curl_setopt($ch, CURLOPT_PUT, true);
 85 |       curl_setopt($ch, CURLOPT_INFILE, fopen("php://input"));
 86 |     break;
 87 |   }
 88 | 
 89 |   //Other cURL options.
 90 |   curl_setopt($ch, CURLOPT_HEADER, true);
 91 |   curl_setopt($ch, CURLOPT_FOLLOWLOCATION, true);
 92 |   curl_setopt($ch, CURLOPT_RETURNTRANSFER, true);
 93 |   curl_setopt ($ch, CURLOPT_FAILONERROR, true);
 94 | 
 95 |   //Set the request URL.
 96 |   curl_setopt($ch, CURLOPT_URL, $url);
 97 | 
 98 |   //Make the request.
 99 |   $response = curl_exec($ch);
100 |   $responseInfo = curl_getinfo($ch);
101 |   $headerSize = curl_getinfo($ch, CURLINFO_HEADER_SIZE);
102 |   curl_close($ch);
103 | 
104 |   //Setting CURLOPT_HEADER to true above forces the response headers and body
105 |   //to be output together--separate them.
106 |   $responseHeaders = substr($response, 0, $headerSize);
107 |   $responseBody = substr($response, $headerSize);
108 | 
109 |   return array("headers" => $responseHeaders, "body" => $responseBody, "responseInfo" => $responseInfo);
110 | }
111 | 
112 | //Converts relative URLs to absolute ones, given a base URL.
113 | //Modified version of code found at http://nashruddin.com/PHP_Script_for_Converting_Relative_to_Absolute_URL
114 | function rel2abs($rel, $base) {
115 |   if (empty($rel)) $rel = ".";
116 |   if (parse_url($rel, PHP_URL_SCHEME) != "" || strpos($rel, "//") === 0) return $rel; //Return if already an absolute URL
117 |   if ($rel[0] == "#" || $rel[0] == "?") return $base.$rel; //Queries and anchors
118 |   extract(parse_url($base)); //Parse base URL and convert to local variables: $scheme, $host, $path
119 |   $path = isset($path) ? preg_replace('#/[^/]*$#', "", $path) : "/"; //Remove non-directory element from path
120 |   if ($rel[0] == '/') $path = ""; //Destroy path if relative url points to root
121 |   $port = isset($port) && $port != 80 ? ":" . $port : "";
122 |   $auth = "";
123 |   if (isset($user)) {
124 |     $auth = $user;
125 |     if (isset($pass)) {
126 |       $auth .= ":" . $pass;
127 |     }
128 |     $auth .= "@";
129 |   }
130 |   $abs = "$auth$host$path$port/$rel"; //Dirty absolute URL
131 |   for ($n = 1; $n > 0; $abs = preg_replace(array("#(/\.?/)#", "#/(?!\.\.)[^/]+/\.\./#"), "/", $abs, -1, $n)) {} //Replace '//' or '/./' or '/foo/../' with '/'
132 |   return $scheme . "://" . $abs; //Absolute URL is ready.
133 | }
134 | 
135 | //Proxify contents of url() references in blocks of CSS text.
136 | function proxifyCSS($css, $baseURL) {
137 |   return preg_replace_callback(
138 |     '/url\((.*?)\)/i',
139 |     function($matches) use ($baseURL) {
140 |         $url = $matches[1];
141 |         //Remove any surrounding single or double quotes from the URL so it can be passed to rel2abs - the quotes are optional in CSS
142 |         //Assume that if there is a leading quote then there should be a trailing quote, so just use trim() to remove them
143 |         if (strpos($url, "'") === 0) {
144 |           $url = trim($url, "'");
145 |         }
146 |         if (strpos($url, "\"") === 0) {
147 |           $url = trim($url, "\"");
148 |         }
149 |         if (stripos($url, "data:") === 0) return "url(" . $url . ")"; //The URL isn't an HTTP URL but is actual binary data. Don't proxify it.
150 |         return "url(" . PROXY_PREFIX . rel2abs($url, $baseURL) . ")";
151 |     },
152 |     $css);
153 | }
154 | 
155 | // Create log
156 | function recordLog($url) {
157 |   $userip = $_SERVER['REMOTE_ADDR'];
158 |   $rdate = date("d-m-Y", time());
159 |   $data = $rdate.','.$userip.','.$url.PHP_EOL;
160 |   $logfile = 'logs/'.$userip.'_log.txt';
161 |   $fp = fopen($logfile, 'a');
162 |   fwrite($fp, $data);
163 | }
164 | 
165 | $proxy_prefix = PROXY_PREFIX;
166 | $htmlcode = <<<ENDHTML
167 | <!DOCTYPE html>
168 | <html>
169 | <head>
170 |     <meta charset="utf-8" />
171 |     <title>Upload</title>
172 |     <style>
173 |         *,::after,::before{box-sizing:border-box}body{margin:0;font-family:-apple-system,BlinkMacSystemFont,"Segoe UI",Roboto,"Helvetica Neue",Arial,"Noto Sans",sans-serif,"Apple Color Emoji","Segoe UI Emoji","Segoe UI Symbol","Noto Color Emoji";font-size:1rem;font-weight:400;line-height:1.5;color:#212529;background-color:#fff;-webkit-text-size-adjust:100%;-webkit-tap-highlight-color:transparent}[tabindex="-1"]:focus:not(:focus-visible){outline:0!important}hr{margin:1rem 0;color:inherit;background-color:currentColor;border:0;opacity:.25}hr:not([size]){height:1px}h1,h2,h3,h4,h5,h6{margin-top:0;margin-bottom:.5rem;font-weight:500;line-height:1.2}h1{font-size:2.5rem}h2{font-size:2rem}h3{font-size:1.75rem}h4{font-size:1.5rem}h5{font-size:1.25rem}h6{font-size:1rem}p{margin-top:0;margin-bottom:1rem}abbr[data-original-title],abbr[title]{text-decoration:underline;-webkit-text-decoration:underline dotted;text-decoration:underline dotted;cursor:help;-webkit-text-decoration-skip-ink:none;text-decoration-skip-ink:none}address{margin-bottom:1rem;font-style:normal;line-height:inherit}ol,ul{padding-left:2rem}dl,ol,ul{margin-top:0;margin-bottom:1rem}ol ol,ol ul,ul ol,ul ul{margin-bottom:0}dt{font-weight:700}dd{margin-bottom:.5rem;margin-left:0}blockquote{margin:0 0 1rem}b,strong{font-weight:bolder}small{font-size:.875em}sub,sup{position:relative;font-size:.75em;line-height:0;vertical-align:baseline}sub{bottom:-.25em}sup{top:-.5em}a{color:#0d6efd;text-decoration:none}a:hover{color:#024dbc;text-decoration:underline}a:not([href]),a:not([href]):hover{color:inherit;text-decoration:none}code,kbd,pre,samp{font-family:SFMono-Regular,Menlo,Monaco,Consolas,"Liberation Mono","Courier New",monospace;font-size:1em}pre{display:block;margin-top:0;margin-bottom:1rem;overflow:auto;font-size:.875em}pre code{font-size:inherit;color:inherit;word-break:normal}code{font-size:.875em;color:#d63384;word-wrap:break-word}a&gt;code{color:inherit}kbd{padding:.2rem .4rem;font-size:.875em;color:#fff;background-color:#212529;border-radius:.2rem}kbd kbd{padding:0;font-size:1em;font-weight:700}figure{margin:0 0 1rem}img{vertical-align:middle}svg{overflow:hidden;vertical-align:middle}table{border-collapse:collapse}caption{padding-top:.5rem;padding-bottom:.5rem;color:#6c757d;text-align:left;caption-side:bottom}th{text-align:inherit}label{display:inline-block;margin-bottom:.5rem}button{border-radius:0}button:focus{outline:1px dotted;outline:5px auto -webkit-focus-ring-color}button,input,optgroup,select,textarea{margin:0;font-family:inherit;font-size:inherit;line-height:inherit}button,input{overflow:visible}button,select{text-transform:none}select{word-wrap:normal}[list]::-webkit-calendar-picker-indicator{display:none}[type=button],[type=reset],[type=submit],button{-webkit-appearance:button}[type=button]:not(:disabled),[type=reset]:not(:disabled),[type=submit]:not(:disabled),button:not(:disabled){cursor:pointer}::-moz-focus-inner{padding:0;border-style:none}input[type=date],input[type=datetime-local],input[type=month],input[type=time]{-webkit-appearance:textfield}textarea{overflow:auto;resize:vertical}fieldset{min-width:0;padding:0;margin:0;border:0}legend{float:left;width:100%;padding:0;margin-bottom:.5rem;font-size:1.5rem;line-height:inherit;color:inherit;white-space:normal}mark{padding:.2em;background-color:#fcf8e3}progress{vertical-align:baseline}::-webkit-datetime-edit{overflow:visible;line-height:0}[type=search]{outline-offset:-2px;-webkit-appearance:textfield}::-webkit-search-decoration{-webkit-appearance:none}::-webkit-color-swatch-wrapper{padding:0}::-webkit-file-upload-button{font:inherit;-webkit-appearance:button}output{display:inline-block}summary{display:list-item;cursor:pointer}template{display:none}main{display:block}[hidden]{display:none!important}
174 |         form {
175 |             display: flex;
176 |             flex-direction: column;
177 |             gap: 1ch;
178 |             padding: 12px;
179 |         }
180 |         input[type="submit"] {
181 |             width: fit-content;
182 |         }
183 |     </style>
184 | </head>
185 | <body>
186 |     <form onsubmit="window.location.href='$proxy_prefix' + document.getElementById('site').value; return false;">
187 |         <div>Enter the full URL to proxify:</div>
188 |         <input type="text" id="site" placeholder="http://www.google.com" required/>
189 |         <input type="submit" value="Proxify"/>
190 |     </form>
191 | </body>
192 | </html>
193 | ENDHTML;
194 | 
195 | $url = substr($_SERVER["REQUEST_URI"], strlen($_SERVER["SCRIPT_NAME"]) + 1);
196 | if (empty($url)) die($htmlcode);
197 | 
198 | if (strpos($url, "//") === 0) $url = "http:" . $url; //Assume that any supplied URLs starting with // are HTTP URLs.
199 | if (!preg_match("@^.*://@", $url)) $url = "http://" . $url; //Assume that any supplied URLs without a scheme are HTTP URLs.
200 | 
201 | // recordLog($url);
202 | 
203 | $response = makeRequest($url);
204 | $rawResponseHeaders = $response["headers"];
205 | $responseBody = $response["body"];
206 | $responseInfo = $response["responseInfo"];
207 | 
208 | //cURL can make multiple requests internally (while following 302 redirects), and reports
209 | //headers for every request it makes. Only proxy the last set of received response headers,
210 | //corresponding to the final request made by cURL for any given call to makeRequest().
211 | $responseHeaderBlocks = array_filter(explode("\r\n\r\n", $rawResponseHeaders));
212 | $lastHeaderBlock = end($responseHeaderBlocks);
213 | $headerLines = explode("\r\n", $lastHeaderBlock);
214 | foreach ($headerLines as $header) {
215 |   if (stripos($header, "Content-Length") === false && stripos($header, "Transfer-Encoding") === false) {
216 |     header($header);
217 |   }
218 | }
219 | 
220 | $contentType = "";
221 | if (isset($responseInfo["content_type"])) $contentType = $responseInfo["content_type"];
222 | 
223 | //This is presumably a web page, so attempt to proxify the DOM.
224 | if (stripos($contentType, "text/html") !== false) {
225 | 
226 |   //Attempt to normalize character encoding.
227 |   $responseBody = mb_convert_encoding($responseBody, "HTML-ENTITIES", mb_detect_encoding($responseBody));
228 | 
229 |   //Parse the DOM.
230 |   $doc = new DomDocument();
231 |   @$doc->loadHTML($responseBody);
232 |   $xpath = new DOMXPath($doc);
233 | 
234 |   //Rewrite forms so that their actions point back to the proxy.
235 |   foreach($xpath->query('//form') as $form) {
236 |     $method = $form->getAttribute("method");
237 |     $action = $form->getAttribute("action");
238 |     //If the form doesn't have an action, the action is the page itself.
239 |     //Otherwise, change an existing action to an absolute version.
240 |     $action = empty($action) ? $url : rel2abs($action, $url);
241 |     //Rewrite the form action to point back at the proxy.
242 |     $form->setAttribute("action", PROXY_PREFIX . $action);
243 |   }
244 |   //Profixy <style> tags.
245 |   foreach($xpath->query('//style') as $style) {
246 |     $style->nodeValue = proxifyCSS($style->nodeValue, $url);
247 |   }
248 |   //Proxify tags with a "style" attribute.
249 |   foreach ($xpath->query('//*[@style]') as $element) {
250 |     $element->setAttribute("style", proxifyCSS($element->getAttribute("style"), $url));
251 |   }
252 |   //Proxify any of these attributes appearing in any tag.
253 |   $proxifyAttributes = array("href", "src");
254 |   foreach($proxifyAttributes as $attrName) {
255 |     foreach($xpath->query('//*[@' . $attrName . ']') as $element) { //For every element with the given attribute...
256 |       $attrContent = $element->getAttribute($attrName);
257 |       if ($attrName == "href" && (stripos($attrContent, "javascript:") === 0 || stripos($attrContent, "mailto:") === 0)) continue;
258 |       $attrContent = rel2abs($attrContent, $url);
259 |       $attrContent = PROXY_PREFIX . $attrContent;
260 |       $element->setAttribute($attrName, $attrContent);
261 |     }
262 |   }
263 | 
264 |   //Attempt to force AJAX requests to be made through the proxy by
265 |   //wrapping window.XMLHttpRequest.prototype.open in order to make
266 |   //all request URLs absolute and point back to the proxy.
267 |   //The rel2abs() JavaScript function serves the same purpose as the server-side one in this file,
268 |   //but is used in the browser to ensure all AJAX request URLs are absolute and not relative.
269 |   //Uses code from these sources:
270 |   //http://stackoverflow.com/questions/7775767/javascript-overriding-xmlhttprequest-open
271 |   //https://gist.github.com/1088850
272 |   //TODO: This is obviously only useful for browsers that use XMLHttpRequest but
273 |   //it's better than nothing.
274 | 
275 |   $head = $xpath->query('//head')->item(0);
276 |   $body = $xpath->query('//body')->item(0);
277 |   $prependElem = $head != NULL ? $head : $body;
278 | 
279 |   //Only bother trying to apply this hack if the DOM has a <head> or <body> element;
280 |   //insert some JavaScript at the top of whichever is available first.
281 |   //Protects against cases where the server sends a Content-Type of "text/html" when
282 |   //what's coming back is most likely not actually HTML.
283 |   //TODO: Do this check before attempting to do any sort of DOM parsing?
284 |   if ($prependElem != NULL) {
285 | 
286 |     $scriptElem = $doc->createElement("script",
287 |       '(function() {
288 | 
289 |         if (window.XMLHttpRequest) {
290 | 
291 |           function parseURI(url) {
292 |             var m = String(url).replace(/^\s+|\s+$/g, "").match(/^([^:\/?#]+:)?(\/\/(?:[^:@]*(?::[^:@]*)?@)?(([^:\/?#]*)(?::(\d*))?))?([^?#]*)(\?[^#]*)?(#[\s\S]*)?/);
293 |             // authority = "//" + user + ":" + pass "@" + hostname + ":" port
294 |             return (m ? {
295 |               href : m[0] || "",
296 |               protocol : m[1] || "",
297 |               authority: m[2] || "",
298 |               host : m[3] || "",
299 |               hostname : m[4] || "",
300 |               port : m[5] || "",
301 |               pathname : m[6] || "",
302 |               search : m[7] || "",
303 |               hash : m[8] || ""
304 |             } : null);
305 |           }
306 | 
307 |           function rel2abs(base, href) { // RFC 3986
308 | 
309 |             function removeDotSegments(input) {
310 |               var output = [];
311 |               input.replace(/^(\.\.?(\/|$))+/, "")
312 |                 .replace(/\/(\.(\/|$))+/g, "/")
313 |                 .replace(/\/\.\.$/, "/../")
314 |                 .replace(/\/?[^\/]*/g, function (p) {
315 |                   if (p === "/..") {
316 |                     output.pop();
317 |                   } else {
318 |                     output.push(p);
319 |                   }
320 |                 });
321 |               return output.join("").replace(/^\//, input.charAt(0) === "/" ? "/" : "");
322 |             }
323 | 
324 |             href = parseURI(href || "");
325 |             base = parseURI(base || "");
326 | 
327 |             return !href || !base ? null : (href.protocol || base.protocol) +
328 |             (href.protocol || href.authority ? href.authority : base.authority) +
329 |             removeDotSegments(href.protocol || href.authority || href.pathname.charAt(0) === "/" ? href.pathname : (href.pathname ? ((base.authority && !base.pathname ? "/" : "") + base.pathname.slice(0, base.pathname.lastIndexOf("/") + 1) + href.pathname) : base.pathname)) +
330 |             (href.protocol || href.authority || href.pathname ? href.search : (href.search || base.search)) +
331 |             href.hash;
332 | 
333 |           }
334 | 
335 |           var proxied = window.XMLHttpRequest.prototype.open;
336 |           window.XMLHttpRequest.prototype.open = function() {
337 |               if (arguments[1] !== null && arguments[1] !== undefined) {
338 |                 var url = arguments[1];
339 |                 url = rel2abs("' . $url . '", url);
340 |                 url = "' . PROXY_PREFIX . '" + url;
341 |                 arguments[1] = url;
342 |               }
343 |               return proxied.apply(this, [].slice.call(arguments));
344 |           };
345 | 
346 |         }
347 | 
348 |       })();'
349 |     );
350 |     $scriptElem->setAttribute("type", "text/javascript");
351 | 
352 |     $prependElem->insertBefore($scriptElem, $prependElem->firstChild);
353 | 
354 |   }
355 | 
356 |   echo "<!-- Proxified page constructed by https://dev.nrird.com/web-proxy/ -->\n" . $doc->saveHTML();
357 | } else if (stripos($contentType, "text/css") !== false) { //This is CSS, so proxify url() references.
358 |   echo proxifyCSS($responseBody, $url);
359 | } else { //This isn't a web page or CSS, so serve unmodified through the proxy with the correct headers (images, JavaScript, etc.)
360 |   header("Content-Length: " . strlen($responseBody));
361 |   echo $responseBody;
362 | }
363 | 


--------------------------------------------------------------------------------