Context Navigation

source: trunk/include/common.inc.php @ 2586

Last change on this file since 2586 was 2544, checked in by plg, 16 years ago
bug 861 fixed: only $confcheck_upgrade_feed is required to check for development upgrades, not PHPWG_IN_UPGRADE constant any longer.
Property svn:eol-style set to `LF` Property svn:keywords set to `Author Date Id Revision`
File size: 8.0 KB

Rev	Line
[354]	1	<?php
	2	// +-----------------------------------------------------------------------+
[2297]	3	// \| Piwigo - a PHP based picture gallery \|
	4	// +-----------------------------------------------------------------------+
	5	// \| Copyright(C) 2008 Piwigo Team http://piwigo.org \|
	6	// \| Copyright(C) 2003-2008 PhpWebGallery Team http://phpwebgallery.net \|
	7	// \| Copyright(C) 2002-2003 Pierrick LE GALL http://le-gall.net/pierrick \|
	8	// +-----------------------------------------------------------------------+
	9	// \| This program is free software; you can redistribute it and/or modify \|
	10	// \| it under the terms of the GNU General Public License as published by \|
	11	// \| the Free Software Foundation \|
	12	// \| \|
	13	// \| This program is distributed in the hope that it will be useful, but \|
	14	// \| WITHOUT ANY WARRANTY; without even the implied warranty of \|
	15	// \| MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU \|
	16	// \| General Public License for more details. \|
	17	// \| \|
	18	// \| You should have received a copy of the GNU General Public License \|
	19	// \| along with this program; if not, write to the Free Software \|
	20	// \| Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, \|
	21	// \| USA. \|
	22	// +-----------------------------------------------------------------------+
[383]	23
[2502]	24	defined('PHPWG_ROOT_PATH') or trigger_error('Hacking attempt!', E_USER_ERROR);
	25
[364]	26	// determine the initial instant to indicate the generation time of this page
[354]	27	$t1 = explode( ' ', microtime() );
	28	$t2 = explode( '.', $t1[0] );
	29	$t2 = $t1[1].'.'.$t2[1];
	30
	31	set_magic_quotes_runtime(0); // Disable magic_quotes_runtime
	32
	33	//
[359]	34	// addslashes to vars if magic_quotes_gpc is off this is a security
	35	// precaution to prevent someone trying to break out of a SQL statement.
[354]	36	//
	37	if( !get_magic_quotes_gpc() )
	38	{
[359]	39	if( is_array( $_GET ) )
[354]	40	{
[359]	41	while( list($k, $v) = each($_GET) )
[354]	42	{
[359]	43	if( is_array($_GET[$k]) )
	44	{
	45	while( list($k2, $v2) = each($_GET[$k]) )
[354]	46	{
[359]	47	$_GET[$k][$k2] = addslashes($v2);
	48	}
	49	@reset($_GET[$k]);
	50	}
	51	else
	52	{
	53	$_GET[$k] = addslashes($v);
	54	}
	55	}
	56	@reset($_GET);
[354]	57	}
[1092]	58
[359]	59	if( is_array($_POST) )
[354]	60	{
[359]	61	while( list($k, $v) = each($_POST) )
	62	{
	63	if( is_array($_POST[$k]) )
	64	{
	65	while( list($k2, $v2) = each($_POST[$k]) )
	66	{
	67	$_POST[$k][$k2] = addslashes($v2);
	68	}
	69	@reset($_POST[$k]);
	70	}
	71	else
	72	{
	73	$_POST[$k] = addslashes($v);
	74	}
[354]	75	}
[359]	76	@reset($_POST);
[354]	77	}
	78
[359]	79	if( is_array($_COOKIE) )
[354]	80	{
[359]	81	while( list($k, $v) = each($_COOKIE) )
[354]	82	{
[359]	83	if( is_array($_COOKIE[$k]) )
	84	{
	85	while( list($k2, $v2) = each($_COOKIE[$k]) )
	86	{
	87	$_COOKIE[$k][$k2] = addslashes($v2);
	88	}
	89	@reset($_COOKIE[$k]);
	90	}
	91	else
	92	{
	93	$_COOKIE[$k] = addslashes($v);
	94	}
[354]	95	}
[359]	96	@reset($_COOKIE);
[354]	97	}
	98	}
[2484]	99	if ( !empty($_SERVER["PATH_INFO"]) )
	100	{
	101	$_SERVER["PATH_INFO"] = addslashes($_SERVER["PATH_INFO"]);
	102	}
[354]	103
	104	//
[359]	105	// Define some basic configuration arrays this also prevents malicious
	106	// rewriting of language and otherarray values via URI params
[354]	107	//
	108	$conf = array();
	109	$page = array();
	110	$user = array();
	111	$lang = array();
[1414]	112	$header_msgs = array();
[1677]	113	$header_notes = array();
[2111]	114	$filter = array();
[354]	115
[766]	116	@include(PHPWG_ROOT_PATH .'include/mysql.inc.php');
[650]	117	if (!defined('PHPWG_INSTALLED'))
[354]	118	{
[650]	119	header('Location: install.php');
[359]	120	exit;
[354]	121	}
	122
[1744]	123	foreach( array(
	124	'array_intersect_key', //PHP 5 >= 5.1.0RC1
	125	'hash_hmac', //(hash) - enabled by default as of PHP 5.1.2
[2213]	126	'preg_last_error', // PHP 5 >= 5.2.0
[2215]	127	'file_put_contents', //PHP5
[1744]	128	) as $func)
	129	{
	130	if (!function_exists($func))
	131	{
	132	include_once(PHPWG_ROOT_PATH . 'include/php_compat/'.$func.'.php');
	133	}
	134	}
	135
[770]	136	include(PHPWG_ROOT_PATH . 'include/config_default.inc.php');
	137	@include(PHPWG_ROOT_PATH. 'include/config_local.inc.php');
[808]	138	include(PHPWG_ROOT_PATH . 'include/constants.php');
[364]	139	include(PHPWG_ROOT_PATH . 'include/functions.inc.php');
[2290]	140	include(PHPWG_ROOT_PATH . 'include/template.class.php');
[364]	141
[354]	142	// Database connection
[2484]	143	@mysql_connect( $cfgHote, $cfgUser, $cfgPassword ) or my_error( 'mysql_connect', true );
	144	@mysql_select_db( $cfgBase ) or my_error( 'mysql_select_db', true );
[953]	145
[2127]	146	defined('PWG_CHARSET') and defined('DB_CHARSET')
[2502]	147	or fatal_error('PWG_CHARSET and/or DB_CHARSET is not defined');
[2127]	148	if ( version_compare(mysql_get_server_info(), '4.1.0', '>=') )
	149	{
	150	if (DB_CHARSET!='')
	151	{
	152	pwg_query('SET NAMES "'.DB_CHARSET.'"');
	153	}
	154	}
	155	else
	156	{
	157	if ( strtolower(PWG_CHARSET)!='iso-8859-1' )
	158	{
[2502]	159	fatal_error('PWG supports only iso-8859-1 charset on MySql version '.mysql_get_server_info());
[2127]	160	}
	161	}
	162
[354]	163	//
[394]	164	// Setup gallery wide options, if this fails then we output a CRITICAL_ERROR
	165	// since basic gallery information is not available
[354]	166	//
[1284]	167	load_conf_from_db();
[1655]	168	load_plugins();
[354]	169
[650]	170	include(PHPWG_ROOT_PATH.'include/user.inc.php');
[808]	171
[1568]	172
[808]	173	// language files
[2126]	174	load_language('common.lang');
[2413]	175	if ( is_admin() \|\| (defined('IN_ADMIN') and IN_ADMIN) )
[808]	176	{
[2126]	177	load_language('admin.lang');
[808]	178	}
[1699]	179	trigger_action('loading_lang');
[2479]	180	load_language('local.lang', '', array('no_fallback'=>true) );
[808]	181
[1568]	182	// only now we can set the localized username of the guest user (and not in
	183	// include/user.inc.php)
[2029]	184	if (is_a_guest())
[1568]	185	{
[2201]	186	$user['username'] = l10n('guest');
[1568]	187	}
	188
	189	// template instance
[2117]	190	if
[2038]	191	(
[2476]	192	defined('IN_ADMIN') and IN_ADMIN
[2038]	193	)
	194	{
	195	// Admin template
[2390]	196	//$template = new Template(PHPWG_ROOT_PATH.'template/'.$user['admin_template'], $user['admin_theme'] );
[2394]	197	list($user['admin_template'], $user['admin_theme']) =
	198	explode ('/', $conf['admin_layout']);
[2476]	199	$template = new Template(PHPWG_ROOT_PATH.'admin/template/'
[2394]	200	. $user['admin_template'], $user['admin_theme'] );
[2038]	201	}
	202	else
	203	{
	204	// Classic template
[2394]	205	$template = new Template(PHPWG_ROOT_PATH.'template/'
	206	. $user['template'], $user['theme'] );
[2038]	207	}
[1568]	208
[2055]	209	if (isset($user['internal_status']['guest_must_be_guest'])
	210	and
	211	$user['internal_status']['guest_must_be_guest'] === true)
	212	{
	213	$header_msgs[] = l10n('guest_must_be_guest');
	214	}
	215
[1036]	216	if ($conf['gallery_locked'])
	217	{
[2201]	218	$header_msgs[] = l10n('gallery_locked_message');
[1036]	219
[1692]	220	if ( script_basename() != 'identification' and !is_admin() )
[1036]	221	{
[2046]	222	set_status_header(503, 'Service Unavailable');
	223	@header('Retry-After: 900');
[2201]	224	echo l10n('gallery_locked_message')
[1750]	225	.'<a href="'.get_absolute_root_url(false).'identification.php">.</a>';
[2543]	226	echo str_repeat( ' ', 512); //IE6 doesn't error output if below a size
[1036]	227	exit();
	228	}
	229	}
	230
[2544]	231	if ($conf['check_upgrade_feed'])
[1377]	232	{
[1578]	233
[1568]	234	// retrieve already applied upgrades
	235	$query = '
	236	SELECT id
	237	FROM '.UPGRADE_TABLE.'
	238	;';
	239	$applied = array_from_query($query, 'id');
	240
	241	// retrieve existing upgrades
	242	$existing = get_available_upgrade_ids();
	243
	244	// which upgrades need to be applied?
	245	if (count(array_diff($existing, $applied)) > 0)
	246	{
	247	$header_msgs[] = 'Some database upgrades are missing, '
[1750]	248	.'<a href="'.get_absolute_root_url(false).'upgrade_feed.php">upgrade now</a>';
[1568]	249	}
[1377]	250	}
[960]	251
[1303]	252	if (is_adviser())
	253	{
[2201]	254	$header_msgs[] = l10n('adviser_mode_enabled');
[1303]	255	}
	256
[1414]	257	if (count($header_msgs) > 0)
[1380]	258	{
[2240]	259	$template->assign('header_msgs', $header_msgs);
	260	$header_msgs=array();
[1380]	261	}
[1598]	262
[1722]	263	if (!empty($conf['filter_pages']) and get_filter_page_value('used'))
[1677]	264	{
	265	include(PHPWG_ROOT_PATH.'include/filter.inc.php');
	266	}
[1722]	267	else
	268	{
	269	$filter['enabled'] = false;
	270	}
[1677]	271
	272	if (isset($conf['header_notes']))
	273	{
	274	$header_notes = array_merge($header_notes, $conf['header_notes']);
	275	}
	276
[1598]	277	// default event handlers
[2117]	278	add_event_handler('render_category_literal_description', 'render_category_literal_description');
	279	add_event_handler('render_category_description', 'render_category_description');
[1849]	280	add_event_handler('render_comment_content', 'htmlspecialchars');
[1598]	281	add_event_handler('render_comment_content', 'parse_comment_content');
[2030]	282	add_event_handler('render_comment_author', 'strip_tags');
[2488]	283	add_event_handler('blockmanager_register_blocks', 'register_default_menubar_blocks', EVENT_HANDLER_PRIORITY_NEUTRAL-1);
[1598]	284	trigger_action('init');
[1679]	285	?>

Note: See TracBrowser for help on using the repository browser.

Download in other formats: