Project

General

Profile

1
<?php
2
/**
3
 *
4
 * @category        framework
5
 * @package         initialize
6
 * @author          WebsiteBaker Project
7
 * @copyright       2004-2009, Ryan Djurovich
8
 * @copyright       2009-2011, Website Baker Org. e.V.
9
 * @link			http://www.websitebaker2.org/
10
 * @license         http://www.gnu.org/licenses/gpl.html
11
 * @platform        WebsiteBaker 2.8.x
12
 * @requirements    PHP 5.2.2 and higher
13
 * @version         $Id: initialize.php 1686 2012-05-07 12:31:03Z darkviper $
14
 * @filesource		$HeadURL: svn://isteam.dynxs.de/wb-archiv/branches/2.8.x/wb/framework/initialize.php $
15
 * @lastmodified    $Date: 2012-05-07 14:31:03 +0200 (Mon, 07 May 2012) $
16
 *
17
 */
18

    
19
/* -------------------------------------------------------- */
20
// Must include code to stop this file being accessed directly
21
require_once(dirname(__FILE__).'/globalExceptionHandler.php');
22
if(!defined('WB_URL')) { throw new IllegalFileException(); }
23
/* -------------------------------------------------------- */
24
/**
25
 * sanitize $_SERVER['HTTP_REFERER']
26
 * @param string $sWbUrl qualified startup URL of current application
27
 */
28
	function SanitizeHttpReferer($sWbUrl = WB_URL) {
29
		$sTmpReferer = '';
30
		if (isset($_SERVER['HTTP_REFERER']) && $_SERVER['HTTP_REFERER'] != '') {
31
			$aRefUrl = parse_url($_SERVER['HTTP_REFERER']);
32
			if ($aRefUrl !== false) {
33
				$aRefUrl['host'] = isset($aRefUrl['host']) ? $aRefUrl['host'] : '';
34
				$aRefUrl['path'] = isset($aRefUrl['path']) ? $aRefUrl['path'] : '';
35
				$aRefUrl['fragment'] = isset($aRefUrl['fragment']) ? '#'.$aRefUrl['fragment'] : '';
36
				$aWbUrl = parse_url(WB_URL);
37
				if ($aWbUrl !== false) {
38
					$aWbUrl['host'] = isset($aWbUrl['host']) ? $aWbUrl['host'] : '';
39
					$aWbUrl['path'] = isset($aWbUrl['path']) ? $aWbUrl['path'] : '';
40
					if (strpos($aRefUrl['host'].$aRefUrl['path'],
41
							   $aWbUrl['host'].$aWbUrl['path']) !== false) {
42
						$aRefUrl['path'] = preg_replace('#^'.$aWbUrl['path'].'#i', '', $aRefUrl['path']);
43
						$sTmpReferer = WB_URL.$aRefUrl['path'].$aRefUrl['fragment'];
44
					}
45
					unset($aWbUrl);
46
				}
47
				unset($aRefUrl);
48
			}
49
		}
50
		$_SERVER['HTTP_REFERER'] = $sTmpReferer;
51
	}
52
/* -------------------------------------------------------- */
53
	function SetInstallPathConstants() {
54
		if(!defined('DEBUG')){ define('DEBUG', false); }// Include config file
55
		if(!defined('ADMIN_DIRECTORY')){ define('ADMIN_DIRECTORY', 'admin'); }
56
		if(!preg_match('/xx[a-z0-9_][a-z0-9_\-\.]+/i', 'xx'.ADMIN_DIRECTORY)) {
57
			throw new RuntimeException('Invalid admin-directory: ' . ADMIN_DIRECTORY);
58
		}
59
		if(!defined('WB_PATH')){ define('WB_PATH', dirname(dirname(__FILE__))); }
60
		if(!defined('ADMIN_URL')){ define('ADMIN_URL', WB_URL.'/'.ADMIN_DIRECTORY); }
61
		if(!defined('ADMIN_PATH')){ define('ADMIN_PATH', WB_PATH.'/'.ADMIN_DIRECTORY); }
62
		if(!defined('WB_REL')){
63
			$x1 = parse_url(WB_URL);
64
			define('WB_REL', (isset($x1['path']) ? $x1['path'] : ''));
65
		}
66
		if(!defined('DOCUMENT_ROOT')) {
67
			define('DOCUMENT_ROOT', preg_replace('/'.preg_quote(WB_REL, '/').'$/', '', WB_PATH));
68
		}
69
	}
70
/* -------------------------------------------------------- */
71
	$starttime = array_sum(explode(" ",microtime()));
72
	SetInstallPathConstants();
73
	SanitizeHttpReferer(WB_URL); // sanitize $_SERVER['HTTP_REFERER']
74
	if(!class_exists('WbAutoloader', false)){ include(dirname(__FILE__.'/WbAutoloader.php')); }
75
	WbAutoloader::doRegister(array(ADMIN_DIRECTORY => 'a', 'modules' => 'm'));
76
	date_default_timezone_set('UTC');
77
	// Create database class
78
	$sSqlUrl = DB_TYPE.'://'.DB_USERNAME.':'.DB_PASSWORD.'@'.DB_HOST.'/'.DB_NAME;
79
	$database = WbDatabase::getInstance();
80
	$database->doConnect($sSqlUrl);
81
	// disable all kind of magic_quotes
82
	if(get_magic_quotes_gpc() || get_magic_quotes_runtime()) {
83
		@ini_set('magic_quotes_sybase', 0);
84
		@ini_set('magic_quotes_gpc', 0);
85
		@ini_set('magic_quotes_runtime', 0);
86
	}
87
	// Get website settings (title, keywords, description, header, and footer)
88
	$query_settings = "SELECT name,value FROM ".TABLE_PREFIX."settings";
89
	$get_settings = $database->query($query_settings);
90
	if($database->is_error()) { die($database->get_error()); }
91
	if($get_settings->numRows() == 0) { die("Settings not found"); }
92
	while($setting = $get_settings->fetchRow()) {
93
		$setting_name=strtoupper($setting['name']);
94
		$setting_value=$setting['value'];
95
		if ($setting_value=='false')
96
			$setting_value=false;
97
		if ($setting_value=='true')
98
			$setting_value=true;
99
		@define($setting_name,$setting_value);
100
	}
101
	@define('DO_NOT_TRACK', (isset($_SERVER['HTTP_DNT'])));
102
	$string_file_mode = STRING_FILE_MODE;
103
	define('OCTAL_FILE_MODE',(int) octdec($string_file_mode));
104
	$string_dir_mode = STRING_DIR_MODE;
105
	define('OCTAL_DIR_MODE',(int) octdec($string_dir_mode));
106
	$sSecMod = (defined('SECURE_FORM_MODULE') && SECURE_FORM_MODULE != '') ? '.'.SECURE_FORM_MODULE : '';
107
	$sSecMod = WB_PATH.'/framework/SecureForm'.$sSecMod.'.php';
108
	require_once($sSecMod);
109
	if (!defined("WB_INSTALL_PROCESS")) {
110
		// get CAPTCHA and ASP settings
111
		$table = TABLE_PREFIX.'mod_captcha_control';
112
		if( ($get_settings = $database->query("SELECT * FROM $table LIMIT 1")) ) {
113
			if($get_settings->numRows() == 0) { die("CAPTCHA-Settings not found"); }
114
			$setting = $get_settings->fetchRow();
115
			if($setting['enabled_captcha'] == '1') define('ENABLED_CAPTCHA', true);
116
			else define('ENABLED_CAPTCHA', false);
117
			if($setting['enabled_asp'] == '1') define('ENABLED_ASP', true);
118
			else define('ENABLED_ASP', false);
119
			define('CAPTCHA_TYPE', $setting['captcha_type']);
120
			define('ASP_SESSION_MIN_AGE', (int)$setting['asp_session_min_age']);
121
			define('ASP_VIEW_MIN_AGE', (int)$setting['asp_view_min_age']);
122
			define('ASP_INPUT_MIN_AGE', (int)$setting['asp_input_min_age']);
123
		}
124
	}
125

    
126
	// set error-reporting
127
	if(intval(ER_LEVEL) > 0 )
128
	{
129
		error_reporting(ER_LEVEL);
130
		if( intval(ini_get ( 'display_errors' )) == 0 )
131
		{
132
			ini_set('display_errors', 1);
133
		}
134
	}
135
	// Start a session
136
	if(!defined('SESSION_STARTED')) {
137
		session_name(APP_NAME.'_session_id');
138
		@session_start();
139
		define('SESSION_STARTED', true);
140
	}
141
	if(defined('ENABLED_ASP') && ENABLED_ASP && !isset($_SESSION['session_started']))
142
		$_SESSION['session_started'] = time();
143

    
144
	// Get users language
145
	if(isset($_GET['lang']) AND $_GET['lang'] != '' AND !is_numeric($_GET['lang']) AND strlen($_GET['lang']) == 2) {
146
		define('LANGUAGE', strtoupper($_GET['lang']));
147
		$_SESSION['LANGUAGE']=LANGUAGE;
148
	} else {
149
		if(isset($_SESSION['LANGUAGE']) AND $_SESSION['LANGUAGE'] != '') {
150
			define('LANGUAGE', $_SESSION['LANGUAGE']);
151
		} else {
152
			define('LANGUAGE', DEFAULT_LANGUAGE);
153
		}
154
	}
155

    
156
	// Load Language file
157
	if(!defined('LANGUAGE_LOADED')) {
158
		if(!file_exists(WB_PATH.'/languages/'.LANGUAGE.'.php')) {
159
			exit('Error loading language file '.LANGUAGE.', please check configuration');
160
		} else {
161
			require_once(WB_PATH.'/languages/'.LANGUAGE.'.php');
162
		}
163
	}
164

    
165
	// Get users timezone
166
	if(isset($_SESSION['TIMEZONE'])) {
167
		define('TIMEZONE', $_SESSION['TIMEZONE']);
168
	} else {
169
		define('TIMEZONE', DEFAULT_TIMEZONE);
170
	}
171
	// Get users date format
172
	if(isset($_SESSION['DATE_FORMAT'])) {
173
		define('DATE_FORMAT', $_SESSION['DATE_FORMAT']);
174
	} else {
175
		define('DATE_FORMAT', DEFAULT_DATE_FORMAT);
176
	}
177
	// Get users time format
178
	if(isset($_SESSION['TIME_FORMAT'])) {
179
		define('TIME_FORMAT', $_SESSION['TIME_FORMAT']);
180
	} else {
181
		define('TIME_FORMAT', DEFAULT_TIME_FORMAT);
182
	}
183

    
184
	// Set Theme dir
185
	define('THEME_URL', WB_URL.'/templates/'.DEFAULT_THEME);
186
	define('THEME_PATH', WB_PATH.'/templates/'.DEFAULT_THEME);
187

    
188
	// extended wb_settings
189
	define('EDIT_ONE_SECTION', false);
190

    
191
	define('EDITOR_WIDTH', 0);
(23-23/25)