* * DO NOT ALTER OR REMOVE COPYRIGHT OR THIS HEADER * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation, version 2 of the License. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License 2 for more details. * * You should have received a copy of the GNU General Public License 2 * along with this program. If not, see . */ /** * @package Core * @copyright Ryan Djurovich * @author Ryan Djurovich * @author Manuela v.d.Decken * @license GNU General Public License 2.0 * @version 1.0.1 * @revision $Id: initialize.php 34 2017-12-05 09:42:43Z Manuela $ * @deprecated no / since 0000/00/00 * @description xxx */ // $aPhpFunctions = get_defined_functions(); /** * sanitize $_SERVER['HTTP_REFERER'] * @param string $sWbUrl qualified startup URL of current application */ function SanitizeHttpReferer($sWbUrl = WB_URL) { $sTmpReferer = ''; if (isset($_SERVER['HTTP_REFERER']) && $_SERVER['HTTP_REFERER'] != '') { define('ORG_REFERER', ($_SERVER['HTTP_REFERER'] ?: '')); $aRefUrl = parse_url($_SERVER['HTTP_REFERER']); if ($aRefUrl !== false) { $aRefUrl['host'] = isset($aRefUrl['host']) ? $aRefUrl['host'] : ''; $aRefUrl['path'] = isset($aRefUrl['path']) ? $aRefUrl['path'] : ''; $aRefUrl['fragment'] = isset($aRefUrl['fragment']) ? '#'.$aRefUrl['fragment'] : ''; $aWbUrl = parse_url(WB_URL); if ($aWbUrl !== false) { $aWbUrl['host'] = isset($aWbUrl['host']) ? $aWbUrl['host'] : ''; $aWbUrl['path'] = isset($aWbUrl['path']) ? $aWbUrl['path'] : ''; if (strpos($aRefUrl['host'].$aRefUrl['path'], $aWbUrl['host'].$aWbUrl['path']) !== false) { $aRefUrl['path'] = preg_replace('#^'.$aWbUrl['path'].'#i', '', $aRefUrl['path']); $sTmpReferer = WB_URL.$aRefUrl['path'].$aRefUrl['fragment']; } unset($aWbUrl); } unset($aRefUrl); } } $_SERVER['HTTP_REFERER'] = $sTmpReferer; } /** * makePhExp * @param array list of names for placeholders * @return array reformatted list * @description makes an RegEx-Expression for preg_replace() of each item in $aList * Example: from 'TEST_NAME' it mades '/\[TEST_NAME\]/s' */ function makePhExp($sList) { $aList = func_get_args(); // return preg_replace('/^(.*)$/', '/\[$1\]/s', $aList); return preg_replace('/^(.*)$/', '[$1]', $aList); } /** * Read DB settings from configuration file * @return array * @throws RuntimeException * */ function initReadSetupFile() { // check for valid file request. Becomes more stronger in next version // initCheckValidCaller(array('save.php','index.php','config.php','upgrade-script.php')); $aCfg = array(); $sSetupFile = dirname(dirname(__FILE__)).'/setup.ini.php'; if(is_readable($sSetupFile) && !defined('WB_URL')) { $aCfg = parse_ini_file($sSetupFile, true); if (!isset($aCfg['Constants']) || !isset($aCfg['DataBase'])) { throw new InvalidArgumentException('configuration missmatch in setup.ini.php'); } foreach($aCfg['Constants'] as $key=>$value) { switch($key): case 'DEBUG': $value = filter_var($value, FILTER_VALIDATE_BOOLEAN); if(!defined('DEBUG')) { define('DEBUG', $value); } break; case 'WB_URL': // << case is set deprecated case 'AppUrl': $value = trim(str_replace('\\', '/', $value), '/'); if(!defined('WB_URL')) { define('WB_URL', $value); } break; case 'ADMIN_DIRECTORY': // << case is set deprecated case 'AcpDir': $value = trim(str_replace('\\', '/', $value), '/'); if(!defined('ADMIN_DIRECTORY')) { define('ADMIN_DIRECTORY', $value); } break; default: if(!defined($key)) { define($key, $value); } break; endswitch; } } return $aCfg; // throw new RuntimeException('unable to read setup.ini.php'); } /** * Set constants for system/install values * @throws RuntimeException */ function initSetInstallWbConstants($aCfg) { if (sizeof($aCfg)) { foreach($aCfg['Constants'] as $key=>$value) { switch($key): case 'DEBUG': $value = filter_var($value, FILTER_VALIDATE_BOOLEAN); if(!defined('DEBUG')) { define('DEBUG', $value); } break; case 'WB_URL': // << case is set deprecated case 'AppUrl': $value = trim(str_replace('\\', '/', $value), '/'); if(!defined('WB_URL')) { define('WB_URL', $value); } break; case 'ADMIN_DIRECTORY': // << case is set deprecated case 'AcpDir': $value = trim(str_replace('\\', '/', $value), '/'); if(!defined('ADMIN_DIRECTORY')) { define('ADMIN_DIRECTORY', $value); } if(!preg_match('/xx[a-z0-9_][a-z0-9_\-\.]+/i', 'xx'.ADMIN_DIRECTORY)) { throw new RuntimeException('Invalid admin-directory: ' . ADMIN_DIRECTORY); } break; default: if(!defined($key)) { define($key, $value); } break; endswitch; } } if(!defined('WB_PATH')){ define('WB_PATH', dirname(__DIR__)); } if(!defined('ADMIN_URL')){ define('ADMIN_URL', rtrim(WB_URL, '/\\').'/'.ADMIN_DIRECTORY); } if(!defined('ADMIN_PATH')){ define('ADMIN_PATH', WB_PATH.'/'.ADMIN_DIRECTORY); } if(!defined('WB_REL')){ $x1 = parse_url(WB_URL); define('WB_REL', (isset($x1['path']) ? $x1['path'] : '')); } if(!defined('ADMIN_REL')){ define('ADMIN_REL', WB_REL.'/'.ADMIN_DIRECTORY); } if(!defined('DOCUMENT_ROOT')) { define('DOCUMENT_ROOT', preg_replace('/'.preg_quote(str_replace('\\', '/', WB_REL), '/').'$/', '', str_replace('\\', '/', WB_PATH))); $_SERVER['DOCUMENT_ROOT'] = DOCUMENT_ROOT; } if(!defined('TMP_PATH')){ define('TMP_PATH', WB_PATH.'/temp'); } if (defined('DB_TYPE')) { // import constants for compatibility reasons $db = array(); if (defined('DB_TYPE')) { $db['type'] = DB_TYPE; } if (defined('DB_USERNAME')) { $db['user'] = DB_USERNAME; } if (defined('DB_PASSWORD')) { $db['pass'] = DB_PASSWORD; } if (defined('DB_HOST')) { $db['host'] = DB_HOST; } if (defined('DB_PORT')) { $db['port'] = DB_PORT; } if (defined('DB_NAME')) { $db['name'] = DB_NAME; } if (defined('DB_CHARSET')) { $db['charset'] = DB_CHARSET; } if (defined('TABLE_PREFIX')) { $db['table_prefix'] = TABLE_PREFIX; } } else { foreach($aCfg['DataBase'] as $key=>$value) { switch($key): case 'type': if(!defined('DB_TYPE')) { define('DB_TYPE', $value); } break; case 'user': if(!defined('DB_USERNAME')) { define('DB_USERNAME', $value); } break; case 'pass': if(!defined('DB_PASSWORD')) { define('DB_PASSWORD', $value); } break; case 'host': if(!defined('DB_HOST')) { define('DB_HOST', $value); } break; case 'port': if(!defined('DB_PORT')) { define('DB_PORT', $value); } break; case 'name': if(!defined('DB_NAME')) { define('DB_NAME', $value); } break; case 'charset': if(!defined('DB_CHARSET')) { define('DB_CHARSET', $value); } break; default: $key = strtoupper($key); if(!defined($key)) { define($key, $value); } break; endswitch; } } } function WbErrorHandler($iErrorCode, $sErrorText, $sErrorFile, $iErrorLine) { $bRetval = false; if ((error_reporting() & $iErrorCode) || ini_get('log_errors') != 0) { $sErrorLogFile = ini_get ('error_log'); if (is_writeable($sErrorLogFile)) { $sErrorType = E_NOTICE ; $aErrors = [ E_USER_DEPRECATED => 'E_USER_DEPRECATED', E_USER_NOTICE => 'E_USER_NOTICE', E_USER_WARNING => 'E_USER_WARNING', E_DEPRECATED => 'E_DEPRECATED', E_NOTICE => 'E_NOTICE', E_WARNING => 'E_WARNING', E_CORE_WARNING => 'E_CORE_WARNING', E_COMPILE_WARNING => 'E_COMPILE_WARNING', E_STRICT => 'E_STRICT', E_RECOVERABLE_ERROR => 'E_RECOVERABLE_ERROR', ]; if (array_key_exists($iErrorCode, $aErrors)) { $sErrorType = $aErrors[$iErrorCode]; $bRetval = true; } $aBt= debug_backtrace(DEBUG_BACKTRACE_IGNORE_ARGS); $x = sizeof($aBt) -1; $iSize = $x < 0 ? 0 : ($x <= 2 ? $x : 2); $sEntry = date('c').' '.'['.$sErrorType.'] '.str_replace(dirname(__DIR__), '', $sErrorFile).':['.$iErrorLine.'] ' . ' from '.str_replace(dirname(__DIR__), '', $aBt[$iSize]['file']).':['.$aBt[$iSize]['line'].'] ' . (isset($aBt[$iSize]['class']) ? $aBt[$iSize]['class'].$aBt[$iSize]['type'] : '').$aBt[$iSize]['function'].' ' . '"'.$sErrorText.'"'.PHP_EOL; file_put_contents($sErrorLogFile, $sEntry, FILE_APPEND); } } return $bRetval; } /** * create / recreate a admin object * @param string $section_name (default: '##skip##') * @param string $section_permission (default: 'start') * @param bool $auto_header (default: true) * @param bool $auto_auth (default: true) * @return \admin */ function newAdmin($section_name= '##skip##', $section_permission = 'start', $auto_header = true, $auto_auth = true) { if (isset($GLOBALS['admin']) && $GLOBALS['admin'] instanceof admin) { unset($GLOBALS['admin']); usleep(10000); } return new admin($section_name, $section_permission, $auto_header, $auto_auth); } /* *************************************************************************************** * Start initialization * ****************************************************************************************/ // Stop execution if PHP version is too old // PHP less then 5.6.0 is prohibited --- if (version_compare(PHP_MAJOR_VERSION.'.'.PHP_MINOR_VERSION.'.'.PHP_RELEASE_VERSION, '5.6.0', '<')) { $sMsg = '

WebsiteBaker is not able to run with PHP-Version less then 5.6.0!!
' . 'Please change your PHP-Version to any kind from 5.6.0 and up!
' . 'If you have problems to solve that, ask your hosting provider for it.
' . 'The very best solution is the use of PHP-7.0 and up

'; die($sMsg); } error_reporting(E_ALL); $sStarttime = array_sum(explode(" ", microtime())); if (!defined('MAX_DATETIME')) { define('MAX_DATETIME', ((2**31)-1)); } /* -------------------------------------------------------- */ if ( !defined('WB_PATH')) { define('WB_PATH', dirname(__DIR__)); } // activate PHP5 randomizer compatibility layer ----------------------------------------------------- if (PHP_MAJOR_VERSION < 7 && is_readable(WB_PATH.'/include/Paragonie/random.php')) { include_once WB_PATH.'/include/Paragonie/random.php'; } // activate Autoloader ------------------------------------------------------------------- if (!class_exists('\bin\CoreAutoloader')) { include __DIR__.'/CoreAutoloader.php'; } \bin\CoreAutoloader::doRegister(dirname(__DIR__)); \bin\CoreAutoloader::addNamespace([ // add several needed namespaces->folder translations // Namespace Directory 'bin' => 'framework', 'addon' => 'modules', 'vendor' => 'include', 'vendor\\jscalendar' => 'include/jscalendar', 'bin\\db' => 'framework/db', 'bin\\requester' => 'framework', 'bin\\requester\\filter' => 'framework', 'bin\\security' => 'framework', 'bin\\interfaces' => 'framework', 'api' => 'framework/api', ]); // *** initialize Exception handling if(!function_exists('globalExceptionHandler')) { include(__DIR__.'/globalExceptionHandler.php'); } // *** initialize Error handling $sErrorLogFile = dirname(__DIR__).'/var/logs/php_error.log.php'; $sErrorLogPath = dirname($sErrorLogFile); if (!file_exists($sErrorLogFile)) { $sTmp = '' . 'created: ['.date('c').']'.PHP_EOL; if (false === file_put_contents($sErrorLogFile, $sTmp, FILE_APPEND)) { throw new Exception('unable to create logfile \'/var/logs/php_error.log.php\''); } } if (!is_writeable($sErrorLogFile)) { throw new Exception('not writeable logfile \'/var/logs/php_error.log.php\''); } ini_set('log_errors', 1); ini_set ('error_log', $sErrorLogFile); // activate errorhandler ----------------------------------------------------------------- set_error_handler('WbErrorHandler', -1 ); defined('SYSTEM_RUN') ? '' : define('SYSTEM_RUN', true); // load configuration --- $aCfg = initReadSetupFile(); initSetInstallWbConstants($aCfg); // activate requester -------------------------------------------------------------------- $oRequest = new \bin\requester\HttpRequester(); // --------------------------- // get Database connection data from configuration defined('ADMIN_DIRECTORY') ? '' : define('ADMIN_DIRECTORY', 'admin'); if ( !preg_match('/xx[a-z_][a-z0-9_\-\.]+/i', 'xx'.ADMIN_DIRECTORY) || !is_dir(dirname(__DIR__).'/'.ADMIN_DIRECTORY) ) { throw new RuntimeException('Invalid admin-directory set: ' . ADMIN_DIRECTORY); } // add Namespace 'acp' to Autoloader \bin\CoreAutoloader::addNamespace('acp', ADMIN_DIRECTORY); defined('ADMIN_URL') ? '' : define('ADMIN_URL', WB_URL.'/'.ADMIN_DIRECTORY); defined('ADMIN_PATH') ? '' : define('ADMIN_PATH', WB_PATH.'/'.ADMIN_DIRECTORY); if ( !defined('WB_REL')){ $x1 = parse_url(WB_URL); define('WB_REL', (isset($x1['path']) ? $x1['path'] : '')); } if ( !defined('DOCUMENT_ROOT')) { define('DOCUMENT_ROOT', preg_replace('/'.preg_quote(str_replace('\\', '/', WB_REL), '/').'$/', '', str_replace('\\', '/', WB_PATH))); $_SERVER['DOCUMENT_ROOT'] = DOCUMENT_ROOT; } if (class_exists('database')) { // sanitize $_SERVER['HTTP_REFERER'] SanitizeHttpReferer(WB_URL); date_default_timezone_set('UTC'); // register TWIG autoloader --- $sTmp = dirname(dirname(__FILE__)).'/include/Sensio/Twig/lib/Twig/Autoloader.php'; if (!class_exists('Twig_Autoloader') && is_readable($sTmp)){ include $sTmp; Twig_Autoloader::register(); } // register PHPMailer autoloader --- $sTmp = dirname(dirname(__FILE__)).'/include/phpmailer/PHPMailerAutoload.php'; if (!function_exists('PHPMailerAutoload') && is_readable($sTmp)) { include $sTmp; } // Create database class $database = new database(); // activate frontend OutputFilterApi (initialize.php) if (is_readable(WB_PATH .'/modules/output_filter/OutputFilterApi.php')) { if (!function_exists('OutputFilterApi')) { include WB_PATH .'/modules/output_filter/OutputFilterApi.php'; } } else { throw new RuntimeException('missing mandatory global OutputFilterApi!'); } // Get website settings (title, keywords, description, header, and footer) $sql = 'SELECT `name`, `value` FROM `'.TABLE_PREFIX.'settings`'; if (($get_settings = $database->query($sql))) { $x = 0; while ($setting = $get_settings->fetchRow(MYSQLI_ASSOC)) { $setting_name = strtoupper($setting['name']); $setting_value = $setting['value']; if ($setting_value == 'false') { $setting_value = false; } if ($setting_value == 'true') { $setting_value = true; } defined($setting_name) ? '' : define($setting_name, $setting_value); $x++; } } else { die($database->get_error()); } if (!$x) { throw new RuntimeException('no settings found'); } defined('DO_NOT_TRACK') ? '' : define('DO_NOT_TRACK', ($oRequest->issetHeader('DNT'))); ini_set('display_errors', ((defined('DEBUG') && (DEBUG==true)) ? '1' : '0')); defined('DEBUG') ? '' : define('DEBUG', false); $string_file_mode = defined('STRING_FILE_MODE') ? STRING_FILE_MODE : '0644'; defined('OCTAL_FILE_MODE') ? '' : define('OCTAL_FILE_MODE', (int) octdec($string_file_mode)); $string_dir_mode = defined('STRING_DIR_MODE') ? STRING_DIR_MODE : '0755'; defined('OCTAL_DIR_MODE') ? '' : define('OCTAL_DIR_MODE', (int) octdec($string_dir_mode)); if (!defined('WB_INSTALL_PROCESS') && !defined('WB_UPGRADE_PROCESS')) { // get CAPTCHA and ASP settings $sql = 'SELECT * FROM `'.TABLE_PREFIX.'mod_captcha_control`'; if (($get_settings = $database->query($sql)) && ($setting = $get_settings->fetchRow(MYSQLI_ASSOC)) ) { defined('ENABLED_CAPTCHA') ? '' : define('ENABLED_CAPTCHA', (bool) ($setting['enabled_captcha'] == '1')); defined('ENABLED_ASP') ? '' : define('ENABLED_ASP', (bool) ($setting['enabled_asp'] == '1')); defined('CAPTCHA_TYPE') ? '' : define('CAPTCHA_TYPE', $setting['captcha_type']); defined('ASP_SESSION_MIN_AGE') ? '' : define('ASP_SESSION_MIN_AGE', (int) $setting['asp_session_min_age']); defined('ASP_VIEW_MIN_AGE') ? '' : define('ASP_VIEW_MIN_AGE', (int) $setting['asp_view_min_age']); defined('ASP_INPUT_MIN_AGE') ? '' : define('ASP_INPUT_MIN_AGE', (int) $setting['asp_input_min_age']); } else { throw new RuntimeException('CAPTCHA-Settings not found'); } } // Start a session if (!defined('SESSION_STARTED')) { session_name(APP_NAME.'-sid'); @session_start(); define('SESSION_STARTED', true); } if (defined('ENABLED_ASP') && ENABLED_ASP && !isset($_SESSION['session_started'])) { $_SESSION['session_started'] = time(); } // Get users language -------------------------------------------------------------------- $sLang = $oRequest->getParam('lang'); $aMatches = []; $sPattern = '/^\s*([a-z]{2})(?:[\-_]([a-z]{2})(?:[\-_]([a-z\-_]{2,8}))?)?[\s_\-]*$/i'; if ($sLang && preg_match($sPattern, $sLang, $aMatches)) { $sLang = strtoupper($aMatches[1]); define('LANGUAGE', $sLang); $_SESSION['LANGUAGE'] = $sLang; } else { if (isset($_SESSION['LANGUAGE']) && preg_match($sPattern, $_SESSION['LANGUAGE'], $aMatches)) { define('LANGUAGE', strtoupper($aMatches[1])); } else { define('LANGUAGE', DEFAULT_LANGUAGE); } } unset($sLang, $sPattern, $aMatches); // Load Language file(s) ----------------------------------------------------------------- $sCurrLanguage = ''; $slangFile = WB_PATH.'/languages/EN.php'; if (is_readable($slangFile)) { require $slangFile; $sCurrLanguage ='EN'; } if ($sCurrLanguage != DEFAULT_LANGUAGE) { $slangFile = WB_PATH.'/languages/'.DEFAULT_LANGUAGE.'.php'; if (is_readable($slangFile)) { require $slangFile; $sCurrLanguage = DEFAULT_LANGUAGE; } } if ($sCurrLanguage != LANGUAGE) { $slangFile = WB_PATH.'/languages/'.LANGUAGE.'.php'; if (is_readable($slangFile)) { require $slangFile; } } // activate SecureTokens ----------------------------------------------------------------- $oApp = (object) [ 'oRequester' => $oRequest, 'oRegistry' => (object) [ 'SecTokenFingerprint' => (bool) SEC_TOKEN_FINGERPRINT, 'SecTokenNetmask4' => SEC_TOKEN_NETMASK4, 'SecTokenNetmask6' => SEC_TOKEN_NETMASK6, 'SecTokenLifeTime' => SEC_TOKEN_LIFE_TIME ] ]; \bin\SecureTokens::getInstance($oApp); \bin\SecureTokens::checkFTAN(); // activate Translate -------------------------------------------------------------------- $sCachePath = dirname(__DIR__).'/temp/cache/'; if (!file_exists($sCachePath)) { if (!mkdir($sCachePath, 0777, true)) { $sCachePath = dirname(__DIR__).'/temp/'; } } $oTrans = Translate::getInstance(); $oTrans->initialize(array('EN', DEFAULT_LANGUAGE, LANGUAGE), $sCachePath); // 'none' // --------------------------------------------------------------------------------------- // Get users timezone if (isset($_SESSION['TIMEZONE'])) { define('TIMEZONE', $_SESSION['TIMEZONE']); } else { define('TIMEZONE', DEFAULT_TIMEZONE); } // Get users date format if (isset($_SESSION['DATE_FORMAT'])) { define('DATE_FORMAT', $_SESSION['DATE_FORMAT']); } else { define('DATE_FORMAT', DEFAULT_DATE_FORMAT); } // Get users time format if (isset($_SESSION['TIME_FORMAT'])) { define('TIME_FORMAT', $_SESSION['TIME_FORMAT']); } else { define('TIME_FORMAT', DEFAULT_TIME_FORMAT); } // Set Theme dir define('THEME_URL', WB_URL.'/templates/'.DEFAULT_THEME); define('THEME_PATH', WB_PATH.'/templates/'.DEFAULT_THEME); // extended wb_settings define('EDIT_ONE_SECTION', false); define('EDITOR_WIDTH', 0); }