chore(release): obfuscate and hash production assets [skip ci]

backend/includes/functions.php

@@ -1,11 +1,11 @@
 <?php
-/**
- * Helper functions for HexaHost.de
- */
 
-// Sichere Session-Konfiguration
+
+
+
+
 if (session_status() === PHP_SESSION_NONE) {
-    // Session-Cookie-Sicherheit
+    
     ini_set('session.cookie_httponly', 1);
     ini_set('session.cookie_secure', isset($_SERVER['HTTPS']) ? 1 : 0);
     ini_set('session.cookie_samesite', 'Strict');
@@ -14,14 +14,14 @@ if (session_status() === PHP_SESSION_NONE) {
     
     session_start();
     
-    // Session-ID regenerieren bei Login/wichtigen Aktionen (Schutz vor Session Fixation)
+    
     if (!isset($_SESSION['initiated'])) {
         session_regenerate_id(true);
         $_SESSION['initiated'] = true;
     }
 }
 
-// PHP Error Display in Produktion deaktivieren
+
 if (!defined('DEBUG_MODE') || !DEBUG_MODE) {
     ini_set('display_errors', 0);
     ini_set('display_startup_errors', 0);
@@ -29,18 +29,18 @@ if (!defined('DEBUG_MODE') || !DEBUG_MODE) {
     ini_set('log_errors', 1);
 }
 
-/**
- * Set page configuration and include header
- * 
- * @param string $title The page title
- * @param string $description The page description
- * @param string $page The current page identifier
- * @param array $scripts Additional scripts to include
- */
+
+
+
+
+
+
+
+
 function includeHeader($title = '', $description = '', $page = '', $scripts = []) {
     global $page_title, $page_description, $current_page, $additional_scripts;
     
-    // Set page configuration from parameters
+    
     $page_title = !empty($title) 
         ? $title 
         : 'HexaHost.de - Zuverlässiges Hosting aus Niederbayern';
@@ -55,28 +55,28 @@ function includeHeader($title = '', $description = '', $page = '', $scripts = []
     include __DIR__ . '/header.php';
 }
 
-/**
- * Include footer
- */
+
+
+
 function includeFooter() {
     include __DIR__ . '/footer.php';
 }
 
-/**
- * Generate breadcrumb navigation
- * 
- * @param array $breadcrumbs Array of breadcrumb items [['title' => 'Home', 'url' => 'index.html'], ...]
- */
+
+
+
+
+
 function generateBreadcrumbs($breadcrumbs) {
     echo '<div class="breadcrumb">';
     $last_index = count($breadcrumbs) - 1;
     
     foreach ($breadcrumbs as $index => $item) {
         if ($index === $last_index) {
-            // Last item (current page)
+            
             echo '<span>' . htmlspecialchars($item['title']) . '</span>';
         } else {
-            // Link to other pages
+            
             echo '<a href="' . htmlspecialchars($item['url']) . '">' . htmlspecialchars($item['title']) . '</a>';
             echo '<span>/</span>';
         }
@@ -84,11 +84,11 @@ function generateBreadcrumbs($breadcrumbs) {
     echo '</div>';
 }
 
-/**
- * Generate CSRF token for form security
- * 
- * @return string CSRF token
- */
+
+
+
+
+
 function generateCSRFToken() {
     if (!isset($_SESSION['csrf_token'])) {
         $_SESSION['csrf_token'] = bin2hex(random_bytes(32));
@@ -96,9 +96,9 @@ function generateCSRFToken() {
     return $_SESSION['csrf_token'];
 }
 
-/**
- * CSRF-Token prüfen und nach Erfolg invalidieren (Replay-Schutz)
- */
+
+
+
 function validateCSRFToken($token) {
     if (!isset($_SESSION['csrf_token']) || !is_string($token)) {
         return false;
@@ -110,16 +110,16 @@ function validateCSRFToken($token) {
     return true;
 }
 
-/**
- * Werte für E-Mail-Header bereinigen (Header-Injection verhindern)
- */
+
+
+
 function sanitizeHeaderValue(string $value): string {
     return str_replace(["\r", "\n", "\0"], '', trim($value));
 }
 
-/**
- * Client-IP für Logging (Cloudflare / vertrauenswürdiger Reverse-Proxy)
- */
+
+
+
 function getClientIP(): string {
     if (!empty($_SERVER['HTTP_CF_CONNECTING_IP'])
         && filter_var($_SERVER['HTTP_CF_CONNECTING_IP'], FILTER_VALIDATE_IP)) {