Project

General

Profile

1 1349 Luisehahne
<?php
2
/**
3 1864 darkviper
 * DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS HEADER.
4 1349 Luisehahne
 *
5 1864 darkviper
 * This program is free software: you can redistribute it and/or modify
6
 * it under the terms of the GNU General Public License as published by
7
 * the Free Software Foundation, either version 3 of the License, or
8
 * (at your option) any later version.
9 1349 Luisehahne
 *
10 1864 darkviper
 * This program is distributed in the hope that it will be useful,
11
 * but WITHOUT ANY WARRANTY; without even the implied warranty of
12
 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
13
 * GNU General Public License for more details.
14
 *
15
 * You should have received a copy of the GNU General Public License
16
 * along with this program.  If not, see <http://www.gnu.org/licenses/>.
17 1349 Luisehahne
 */
18
19 1617 darkviper
/**
20 1864 darkviper
 * initialize.php
21
 *
22
 * @category     Core
23
 * @package      Core_Environment
24
 * @author       Werner v.d.Decken <wkl@isteam.de>
25
 * @copyright    Werner v.d.Decken <wkl@isteam.de>
26
 * @license      http://www.gnu.org/licenses/gpl.html   GPL License
27
 * @version      0.0.1
28
 * @revision     $Revision$
29
 * @link         $HeadURL$
30
 * @lastmodified $Date$
31
 * @since        File replaced since 05.02.2013
32
 * @description  set the basic environment to run WebsiteBaker
33
 */
34
35
/* *** define some helper functions *** */
36
/**
37 1617 darkviper
 * sanitize $_SERVER['HTTP_REFERER']
38
 * @param string $sWbUrl qualified startup URL of current application
39
 */
40
	function SanitizeHttpReferer($sWbUrl = WB_URL) {
41
		$sTmpReferer = '';
42
		if (isset($_SERVER['HTTP_REFERER']) && $_SERVER['HTTP_REFERER'] != '') {
43
			$aRefUrl = parse_url($_SERVER['HTTP_REFERER']);
44
			if ($aRefUrl !== false) {
45
				$aRefUrl['host'] = isset($aRefUrl['host']) ? $aRefUrl['host'] : '';
46
				$aRefUrl['path'] = isset($aRefUrl['path']) ? $aRefUrl['path'] : '';
47
				$aRefUrl['fragment'] = isset($aRefUrl['fragment']) ? '#'.$aRefUrl['fragment'] : '';
48
				$aWbUrl = parse_url(WB_URL);
49
				if ($aWbUrl !== false) {
50
					$aWbUrl['host'] = isset($aWbUrl['host']) ? $aWbUrl['host'] : '';
51
					$aWbUrl['path'] = isset($aWbUrl['path']) ? $aWbUrl['path'] : '';
52
					if (strpos($aRefUrl['host'].$aRefUrl['path'],
53
							   $aWbUrl['host'].$aWbUrl['path']) !== false) {
54
						$aRefUrl['path'] = preg_replace('#^'.$aWbUrl['path'].'#i', '', $aRefUrl['path']);
55
						$sTmpReferer = WB_URL.$aRefUrl['path'].$aRefUrl['fragment'];
56
					}
57
					unset($aWbUrl);
58
				}
59
				unset($aRefUrl);
60
			}
61
		}
62
		$_SERVER['HTTP_REFERER'] = $sTmpReferer;
63
	}
64 1864 darkviper
/**
65
 * Set constants for system/install values
66
 * @throws RuntimeException
67
 */
68 1680 darkviper
	function SetInstallPathConstants() {
69 1864 darkviper
		if(!defined('DEBUG')){ define('DEBUG', false); } // normaly set in config file
70 1680 darkviper
		if(!defined('ADMIN_DIRECTORY')){ define('ADMIN_DIRECTORY', 'admin'); }
71
		if(!preg_match('/xx[a-z0-9_][a-z0-9_\-\.]+/i', 'xx'.ADMIN_DIRECTORY)) {
72
			throw new RuntimeException('Invalid admin-directory: ' . ADMIN_DIRECTORY);
73
		}
74
		if(!defined('WB_PATH')){ define('WB_PATH', dirname(dirname(__FILE__))); }
75
		if(!defined('ADMIN_URL')){ define('ADMIN_URL', WB_URL.'/'.ADMIN_DIRECTORY); }
76
		if(!defined('ADMIN_PATH')){ define('ADMIN_PATH', WB_PATH.'/'.ADMIN_DIRECTORY); }
77
		if(!defined('WB_REL')){
78
			$x1 = parse_url(WB_URL);
79
			define('WB_REL', (isset($x1['path']) ? $x1['path'] : ''));
80
		}
81 1864 darkviper
		define('ADMIN_REL', WB_REL.'/'.ADMIN_DIRECTORY);
82 1680 darkviper
		if(!defined('DOCUMENT_ROOT')) {
83 1864 darkviper
84 1680 darkviper
			define('DOCUMENT_ROOT', preg_replace('/'.preg_quote(WB_REL, '/').'$/', '', WB_PATH));
85
		}
86 1864 darkviper
		define('TMP_PATH', WB_PATH.'/temp');
87 1680 darkviper
	}
88 1864 darkviper
/**
89
 * Read DB settings from configuration file
90
 * @return string
91
 * @throws RuntimeException
92
 *
93
 */
94
	function readConfiguration($sRetvalType = 'url') {
95 1874 darkviper
		// check for valid file request. Becomes more stronger in next version
96 1864 darkviper
		$x = debug_backtrace();
97 1874 darkviper
		$bValidRequest = false;
98
		if(sizeof($x) != 0) {
99
			foreach($x as $aStep) {
100
				// define the scripts which can read the configuration
101 1884 Luisehahne
				if(preg_match('/(save.php|index.php|config.php|upgrade-script.php)$/si', $aStep['file'])) {
102 1874 darkviper
					$bValidRequest = true;
103
					break;
104
				}
105
			}
106 1884 Luisehahne
		} else {
107 1874 darkviper
			$bValidRequest = true;
108
		}
109
		if(!$bValidRequest) {
110
			throw new RuntimeException('illegal function request!');
111
		}
112 1864 darkviper
		$aRetval = array();
113
		$sSetupFile = dirname(dirname(__FILE__)).'/setup.ini.php';
114
		if(is_readable($sSetupFile)) {
115
			$aCfg = parse_ini_file($sSetupFile, true);
116
			foreach($aCfg['Constants'] as $key=>$value) {
117 1885 Luisehahne
				switch($key):
118
					case 'DEBUG':
119
						$value = filter_var($value, FILTER_VALIDATE_BOOLEAN);
120
						break;
121
					case 'WB_URL':
122
					case 'AppUrl':
123
						$value = trim(str_replace('\\', '/', $value), '/');
124
						if(!defined('WB_URL')) { define('WB_URL', $value); }
125
						break;
126
					case 'ADMIN_DIRECTORY':
127
					case 'AcpDir':
128
						$value = trim(str_replace('\\', '/', $value), '/');
129
						if(!defined('ADMIN_DIRECTORY')) { define('ADMIN_DIRECTORY', $value); }
130
						break;
131
					default:
132
						if(!defined($key)) { define($key, $value); }
133
						break;
134
				endswitch;
135 1864 darkviper
			}
136
			$db = $aCfg['DataBase'];
137
			$db['type'] = isset($db['type']) ? $db['type'] : 'mysql';
138
			$db['user'] = isset($db['user']) ? $db['user'] : 'foo';
139
			$db['pass'] = isset($db['pass']) ? $db['pass'] : 'bar';
140
			$db['host'] = isset($db['host']) ? $db['host'] : 'localhost';
141
			$db['port'] = isset($db['port']) ? $db['port'] : '3306';
142
			$db['port'] = ($db['port'] != '3306') ? $db['port'] : '';
143
			$db['name'] = isset($db['name']) ? $db['name'] : 'dummy';
144
			$db['charset'] = isset($db['charset']) ? $db['charset'] : 'utf8';
145
			$db['table_prefix'] = (isset($db['table_prefix']) ? $db['table_prefix'] : '');
146
			define('TABLE_PREFIX', $db['table_prefix']);
147
			if($sRetvalType == 'dsn') {
148
				$aRetval[0] = $db['type'].':dbname='.$db['name'].';host='.$db['host'].';'
149
				            . ($db['port'] != '' ? 'port='.(int)$db['port'].';' : '');
150
				$aRetval[1] = array('CHARSET' => $db['charset'], 'TABLE_PREFIX' => $db['table_prefix']);
151
				$aRetval[2] = array( 'user' => $db['user'], 'pass' => $db['pass']);
152
			}else { // $sRetvalType == 'url'
153
				$aRetval[0] = $db['type'].'://'.$db['user'].':'.$db['pass'].'@'
154 1885 Luisehahne
				            . $db['host'].($db['port'] != '' ? ':'.$db['port'] : '').'/'.$db['name']
155
				            . '?Charset='.$db['charset'].'&TablePrefix='.$db['table_prefix'];
156 1864 darkviper
			}
157
			unset($db, $aCfg);
158 1874 darkviper
			return $aRetval;
159 1864 darkviper
		}
160
		throw new RuntimeException('unable to read setup.ini.php');
161
	}
162
/* ***************************************************************************************
163
 * Start initialization                                                                  *
164
 ****************************************************************************************/
165
// initialize debug evaluation values ---
166
	$sDbConnectType = 'url'; // depending from class WbDatabase it can be 'url' or 'dsn'
167 1680 darkviper
	$starttime = array_sum(explode(" ",microtime()));
168 1864 darkviper
	$iPhpDeclaredClasses = sizeof(get_declared_classes());
169
// disable all kind of magic_quotes in PHP versions before 5.4 ---
170
	if(version_compare(PHP_VERSION, '5.4.0', '<')) {
171
		if(get_magic_quotes_gpc() || get_magic_quotes_runtime()) {
172
			@ini_set('magic_quotes_sybase', 0);
173
			@ini_set('magic_quotes_gpc', 0);
174
			@ini_set('magic_quotes_runtime', 0);
175
		}
176
	}
177 1865 darkviper
// load db configuration ---
178
	if(defined('DB_TYPE')) {
179 1885 Luisehahne
		$sTmp = ($sTmp=((defined('DB_PORT') && DB_PORT !='') ? DB_PORT : '')) ? ':'.$sTmp : '';
180
		$sTmp = DB_TYPE.'://'.DB_USERNAME.':'.DB_PASSWORD.'@'.DB_HOST.$sTmp.'/'.DB_NAME.'?Charset=';
181
		$sTmp .= (defined('DB_CHARSET') ? DB_CHARSET : '').'&TablePrefix='.TABLE_PREFIX;
182
		$aSqlData = array( 0 => $sTmp);
183 1865 darkviper
	}else {
184
		$aSqlData = readConfiguration($sDbConnectType);
185
	}
186
// sanitize $_SERVER['HTTP_REFERER'] ---
187
	SanitizeHttpReferer(WB_URL);
188
	SetInstallPathConstants();
189 1864 darkviper
// define constant systemenvironment settings ---
190
	date_default_timezone_set('UTC');
191
	if(!defined('MAX_TIME')) { define('MAX_TIME', (pow(2, 31)-1)); } // 32-Bit Timestamp of 19 Jan 2038 03:14:07 GMT
192 1873 darkviper
	$sTmp = (isset($_SERVER['HTTP_DNT']) && $_SERVER['HTTP_DNT'] != '') ? $_SERVER['HTTP_DNT'] : '0';
193
	if(!defined('DO_NOT_TRACK')) { define('DO_NOT_TRACK', ($sTmp[0] == '1')); }
194 1864 darkviper
// register WB basic autoloader ---
195
	$sTmp = dirname(__FILE__).'/WbAutoloader.php';
196 1873 darkviper
	if(!class_exists('WbAutoloader')){
197
		include($sTmp);
198
	}
199 1687 darkviper
	WbAutoloader::doRegister(array(ADMIN_DIRECTORY=>'a', 'modules'=>'m'));
200 1864 darkviper
// register TWIG autoloader ---
201 1865 darkviper
	$sTmp = dirname(dirname(__FILE__)).'/include/Sensio/Twig/lib/Twig/Autoloader.php';
202 1873 darkviper
	if(!class_exists('Twig_Autoloader')) {
203
		include($sTmp);
204
	}
205 1687 darkviper
	Twig_Autoloader::register();
206 1864 darkviper
// aktivate exceptionhandler ---
207
	if(!function_exists('globalExceptionHandler')) {
208
		include(dirname(__FILE__).'/globalExceptionHandler.php');
209
	}
210
// ---------------------------
211
// Create global database instance ---
212 1686 darkviper
	$database = WbDatabase::getInstance();
213 1864 darkviper
	if($sDbConnectType == 'dsn') {
214 1874 darkviper
		$bTmp = $database->doConnect($aSqlData[0], $aSqlData[1]['user'], $aSqlData[1]['pass'], $aSqlData[2]);
215 1864 darkviper
	}else {
216 1885 Luisehahne
		$bTmp = $database->doConnect($aSqlData[0]);
217 1680 darkviper
	}
218 1864 darkviper
	unset($aSqlData);
219
// load global settings from database and define global consts from ---
220
	$sql = 'SELECT `name`, `value` FROM `'.TABLE_PREFIX.'settings`';
221
	if(($oSettings = $database->query($sql))) {
222
		if(!$oSettings->numRows()) { throw new AppException('no settings found'); }
223
		while($aSetting = $oSettings->fetchRow(MYSQL_ASSOC)) {
224
			//sanitize true/false values
225
			$aSetting['value'] = ($aSetting['value'] == 'true'
226
								  ? true
227
								  : ($aSetting['value'] == 'false'
228
									 ? false
229
									 : $aSetting['value'])
230
								 );
231 1873 darkviper
			$sSettingName = strtoupper($aSetting['name']);
232
			switch($sSettingName):
233
				case 'STRING_FILE_MODE':
234
					$iTmp = ((intval(octdec($aSetting['value'])) & ~0111)|0600);
235
					define('OCTAL_FILE_MODE', $iTmp);
236
					define('STRING_FILE_MODE', sprintf('0%03o', $iTmp));
237
					break;
238
				case 'STRING_DIR_MODE':
239
					$iTmp = (intval(octdec($aSetting['value'])) |0711);
240
					define('OCTAL_DIR_MODE', $iTmp);
241
					define('STRING_DIR_MODE', sprintf('0%03o', $iTmp));
242 1874 darkviper
					break;
243 1873 darkviper
				case 'PAGES_DIRECTORY':
244
					// sanitize pages_directory
245
					$sTmp = trim($aSetting['value'], '/');
246
					$sTmp = ($sTmp == '' ? '' : '/'.$sTmp);
247
					define('PAGES_DIRECTORY', $sTmp);
248
					break;
249
				default: // make global const from setting
250 1874 darkviper
					@define($sSettingName, $aSetting['value']);
251 1873 darkviper
					break;
252
			endswitch;
253 1864 darkviper
		}
254
	}else { throw new AppException($database->get_error()); }
255 1872 Luisehahne
// set error-reporting from loaded settings ---
256
	if(intval(ER_LEVEL) > 0 ) {
257
		error_reporting(ER_LEVEL);
258
		if( intval(ini_get ( 'display_errors' )) == 0 ) {
259
			ini_set('display_errors', 1);
260
		}
261
	}
262
// Start a session ---
263
	if(!defined('SESSION_STARTED')) {
264
		session_name(APP_NAME.'_session_id');
265
		@session_start();
266
		define('SESSION_STARTED', true);
267
	}
268 1864 darkviper
// get/set users timezone ---
269
	define('TIMEZONE',    (isset($_SESSION['TIMEZONE'])    ? $_SESSION['TIMEZONE']    : DEFAULT_TIMEZONE));
270
	define('DATE_FORMAT', (isset($_SESSION['DATE_FORMAT']) ? $_SESSION['DATE_FORMAT'] : DEFAULT_DATE_FORMAT));
271
	define('TIME_FORMAT', (isset($_SESSION['TIME_FORMAT']) ? $_SESSION['TIME_FORMAT'] : DEFAULT_TIME_FORMAT));
272
// set Theme directory ---
273
	define('THEME_URL',  WB_URL.'/templates/'.DEFAULT_THEME);
274
	define('THEME_PATH', WB_PATH.'/templates/'.DEFAULT_THEME);
275
	define('THEME_REL',  WB_REL.'/templates/'.DEFAULT_THEME);
276
// extended wb editor settings
277
	define('EDIT_ONE_SECTION', false);
278
	define('EDITOR_WIDTH', 0);
279
// define form security class and preload it ---
280 1465 Luisehahne
	$sSecMod = (defined('SECURE_FORM_MODULE') && SECURE_FORM_MODULE != '') ? '.'.SECURE_FORM_MODULE : '';
281 1462 DarkViper
	$sSecMod = WB_PATH.'/framework/SecureForm'.$sSecMod.'.php';
282
	require_once($sSecMod);
283 1864 darkviper
// *** begin deprecated part *************************************************************
284
// load settings for use in Captch and ASP module
285
	if (!defined("WB_INSTALL_PROCESS")) {
286
		$sql = 'SELECT * FROM `'.TABLE_PREFIX.'mod_captcha_control`';
287
		// request settings from database
288
		if(($oSettings = $database->query($sql))) {
289
			if(($aSetting = $oSettings->fetchRow(MYSQL_ASSOC))) {
290
				define('ENABLED_CAPTCHA', ($aSetting['enabled_captcha'] == '1'));
291
				define('ENABLED_ASP', ($aSetting['enabled_asp'] == '1'));
292
				define('CAPTCHA_TYPE', $aSetting['captcha_type']);
293
				define('ASP_SESSION_MIN_AGE', (int)$aSetting['asp_session_min_age']);
294
				define('ASP_VIEW_MIN_AGE', (int)$aSetting['asp_view_min_age']);
295
				define('ASP_INPUT_MIN_AGE', (int)$aSetting['asp_input_min_age']);
296
			}
297
		}
298
	}
299
	if(defined('ENABLED_ASP') && ENABLED_ASP && !isset($_SESSION['session_started'])) {
300 1349 Luisehahne
		$_SESSION['session_started'] = time();
301 1864 darkviper
	}
302
// *** end of deprecated part ************************************************************
303
// get user language ---
304
	$sRequestMethod = '_'.strtoupper($_SERVER['REQUEST_METHOD']);
305
	// check if get/post value is available
306
	$sTempLanguage = (isset(${$sRequestMethod}['lang']) ? ${$sRequestMethod}['lang'] : '');
307
	// validate language code
308
	if(preg_match('/^[a-z]{2}$/si', $sTempLanguage)) {
309
	// if there's valid get/post
310
		define('LANGUAGE', strtoupper($sTempLanguage));
311 1349 Luisehahne
		$_SESSION['LANGUAGE']=LANGUAGE;
312 1864 darkviper
	}else {
313
		if(isset($_SESSION['LANGUAGE']) && $_SESSION['LANGUAGE']) {
314
		// if there's valid session value
315 1349 Luisehahne
			define('LANGUAGE', $_SESSION['LANGUAGE']);
316 1864 darkviper
		}else {
317
		// otherwise set to default
318 1349 Luisehahne
			define('LANGUAGE', DEFAULT_LANGUAGE);
319
		}
320
	}
321 1864 darkviper
// activate translations / load language definitions
322
/** begin of deprecated part || will be replaced by class Translate **/
323
// Load Language file
324
	if(!file_exists(WB_PATH.'/languages/'.LANGUAGE.'.php')) {
325
		$sMsg = 'Error loading language file '.LANGUAGE.', please check configuration';
326
		throw new AppException($sMsg);
327 1349 Luisehahne
	} else {
328 1864 darkviper
	// include language file
329
		require_once(WB_PATH.'/languages/'.LANGUAGE.'.php');
330 1349 Luisehahne
	}
331 1864 darkviper
/** end of deprecated part **/
332
// instantiate and initialize adaptor for temporary registry replacement ---
333
	if(class_exists('WbAdaptor')) {
334
		WbAdaptor::getInstance()->getWbConstants();
335 1349 Luisehahne
	}
336 1864 darkviper
// load and activate new global translation table
337
	Translate::getInstance()->initialize('en',
338 1873 darkviper
										 (defined('DEFAULT_LANGUAGE') ? DEFAULT_LANGUAGE : ''),
339 1885 Luisehahne
										 (defined('LANGUAGE') ? LANGUAGE : ''),
340
										 'WbOldStyle',
341
										 (DEBUG ? Translate::CACHE_DISABLED|Translate::KEEP_MISSING : 0)
342 1873 darkviper
										);
343 1864 darkviper
// *** END OF FILE ***********************************************************************