Context Navigation

common.inc.php @ 1110

Last change on this file since 1110 was 1092, checked in by rvelices, 18 years ago

URL rewriting: capable of fully working with urls without ?

URL rewriting: works with image file instead of image id (change
make_picture_url to generate urls with file name instead of image id)

URL rewriting: completely works with category/best_rated and
picture/best_rated/534 (change 'category.php?' to 'category' in make_index_url
and 'picture.php?' to 'picture' in make_picture_url to see it)

fix: picture category display in upper bar

fix: function rate_picture variables and use of the new user type

fix: caddie icon appears now on category page

fix: admin element_set sql query was using storage_category_id column
(column has moved to #image_categories)

fix: replaced some old $_GET[xxx] with $page[xxx]

fix: pictures have metadata url (use ? parameter - might change later)

Property svn:eol-style set to native
Property svn:keywords set to Author Date Id Revision

File size: 6.5 KB

Line
1	<?php
2	// +-----------------------------------------------------------------------+
3	// \| PhpWebGallery - a PHP based picture gallery \|
4	// \| Copyright (C) 2002-2003 Pierrick LE GALL - pierrick@phpwebgallery.net \|
5	// \| Copyright (C) 2003-2006 PhpWebGallery Team - http://phpwebgallery.net \|
6	// +-----------------------------------------------------------------------+
7	// \| branch : BSF (Best So Far)
8	// \| file : $RCSfile$
9	// \| last update : $Date: 2006-03-22 01:01:47 +0000 (Wed, 22 Mar 2006) $
10	// \| last modifier : $Author: rvelices $
11	// \| revision : $Revision: 1092 $
12	// +-----------------------------------------------------------------------+
13	// \| This program is free software; you can redistribute it and/or modify \|
14	// \| it under the terms of the GNU General Public License as published by \|
15	// \| the Free Software Foundation \|
16	// \| \|
17	// \| This program is distributed in the hope that it will be useful, but \|
18	// \| WITHOUT ANY WARRANTY; without even the implied warranty of \|
19	// \| MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU \|
20	// \| General Public License for more details. \|
21	// \| \|
22	// \| You should have received a copy of the GNU General Public License \|
23	// \| along with this program; if not, write to the Free Software \|
24	// \| Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, \|
25	// \| USA. \|
26	// +-----------------------------------------------------------------------+
27
28	if (!defined('PHPWG_ROOT_PATH'))
29	{
30	die('Hacking attempt!');
31	}
32	// determine the initial instant to indicate the generation time of this page
33	$t1 = explode( ' ', microtime() );
34	$t2 = explode( '.', $t1[0] );
35	$t2 = $t1[1].'.'.$t2[1];
36
37	set_magic_quotes_runtime(0); // Disable magic_quotes_runtime
38
39	//
40	// addslashes to vars if magic_quotes_gpc is off this is a security
41	// precaution to prevent someone trying to break out of a SQL statement.
42	//
43	if( !get_magic_quotes_gpc() )
44	{
45	if( is_array( $_GET ) )
46	{
47	while( list($k, $v) = each($_GET) )
48	{
49	if( is_array($_GET[$k]) )
50	{
51	while( list($k2, $v2) = each($_GET[$k]) )
52	{
53	$_GET[$k][$k2] = addslashes($v2);
54	}
55	@reset($_GET[$k]);
56	}
57	else
58	{
59	$_GET[$k] = addslashes($v);
60	}
61	}
62	@reset($_GET);
63	}
64
65	if( is_array($_POST) )
66	{
67	while( list($k, $v) = each($_POST) )
68	{
69	if( is_array($_POST[$k]) )
70	{
71	while( list($k2, $v2) = each($_POST[$k]) )
72	{
73	$_POST[$k][$k2] = addslashes($v2);
74	}
75	@reset($_POST[$k]);
76	}
77	else
78	{
79	$_POST[$k] = addslashes($v);
80	}
81	}
82	@reset($_POST);
83	}
84
85	if( is_array($_COOKIE) )
86	{
87	while( list($k, $v) = each($_COOKIE) )
88	{
89	if( is_array($_COOKIE[$k]) )
90	{
91	while( list($k2, $v2) = each($_COOKIE[$k]) )
92	{
93	$_COOKIE[$k][$k2] = addslashes($v2);
94	}
95	@reset($_COOKIE[$k]);
96	}
97	else
98	{
99	$_COOKIE[$k] = addslashes($v);
100	}
101	}
102	@reset($_COOKIE);
103	}
104	}
105
106	//
107	// Define some basic configuration arrays this also prevents malicious
108	// rewriting of language and otherarray values via URI params
109	//
110	$conf = array();
111	$page = array();
112	$user = array();
113	$lang = array();
114
115
116	@include(PHPWG_ROOT_PATH .'include/mysql.inc.php');
117	if (!defined('PHPWG_INSTALLED'))
118	{
119	header('Location: install.php');
120	exit;
121	}
122
123	include(PHPWG_ROOT_PATH . 'include/config_default.inc.php');
124	@include(PHPWG_ROOT_PATH. 'include/config_local.inc.php');
125	include(PHPWG_ROOT_PATH . 'include/constants.php');
126	include(PHPWG_ROOT_PATH . 'include/functions.inc.php');
127	include(PHPWG_ROOT_PATH . 'include/template.php');
128
129	// Database connection
130	mysql_connect( $cfgHote, $cfgUser, $cfgPassword )
131	or die ( "Could not connect to database server" );
132	mysql_select_db( $cfgBase )
133	or die ( "Could not connect to database" );
134
135	if ($conf['check_upgrade_feed'])
136	{
137	// retrieve already applied upgrades
138	$query = '
139	SELECT id
140	FROM '.UPGRADE_TABLE.'
141	;';
142	$applied = array_from_query($query, 'id');
143
144	// retrieve existing upgrades
145	$existing = get_available_upgrade_ids();
146
147	// which upgrades need to be applied?
148	if (count(array_diff($existing, $applied)) > 0)
149	{
150	ob_start();// buffer output so that cookies work
151	echo
152	'<p>'
153	.'Some database upgrades are missing, '
154	.'<a href="'.PHPWG_ROOT_PATH.'upgrade_feed.php">upgrade now</a>'
155	.'</p>'
156	;
157	}
158	}
159
160	//
161	// Setup gallery wide options, if this fails then we output a CRITICAL_ERROR
162	// since basic gallery information is not available
163	//
164	$query = '
165	SELECT param,value
166	FROM '.CONFIG_TABLE.'
167	;';
168	if (!($result = pwg_query($query)))
169	{
170	die("Could not query config information");
171	}
172
173	while ( $row =mysql_fetch_array( $result ) )
174	{
175	if ( isset( $row['value'] ) )
176	{
177	$conf[$row['param']] = $row['value'];
178	}
179	else
180	{
181	$conf[$row['param']] = '';
182	}
183	// If the field is true or false, the variable is transformed into a
184	// boolean value.
185	if ( $conf[$row['param']] == 'true' or $conf[$row['param']] == 'false' )
186	{
187	$conf[$row['param']] = get_boolean( $conf[$row['param']] );
188	}
189	}
190
191	include(PHPWG_ROOT_PATH.'include/user.inc.php');
192
193	// language files
194	include_once(get_language_filepath('common.lang.php'));
195
196	if (defined('IN_ADMIN') and IN_ADMIN)
197	{
198	include_once(get_language_filepath('admin.lang.php'));
199	}
200
201	if ($conf['gallery_locked'])
202	{
203	ob_start(); // make sure we can send cookies
204	echo
205	'<div style="text-align:center;">'
206	.$lang['gallery_locked_message'];
207	echo '<a href="'.PHPWG_ROOT_PATH.'identification.php">.</a>';
208	echo '</div>';
209
210	if ( basename($_SERVER["PHP_SELF"]) != 'identification.php'
211	and !is_admin() )
212	{
213	exit();
214	}
215	}
216
217	// only now we can set the localized username of the guest user (and not in
218	// include/user.inc.php)
219	if ($user['is_the_guest'])
220	{
221	$user['username'] = $lang['guest'];
222	}
223
224	// include template/theme configuration
225	list($user['template'], $user['theme']) = explode('/', $user['template']);
226	// TODO : replace initial $user['template'] by $user['layout']
227
228	include(
229	PHPWG_ROOT_PATH
230	.'template/'.$user['template']
231	.'/theme/'.$user['theme']
232	.'/themeconf.inc.php'
233	);
234
235	if (is_adviser())
236	{
237	echo '
238	<div class="titrePage">
239	<h2>
240	<div style="text-align:center;">'.$lang['adviser_mode_enabled'].'
241	</div>
242	</h2>
243	</div>
244	';
245	}
246
247	// template instance
248	$template = new Template(PHPWG_ROOT_PATH.'template/'.$user['template']);
249	?>

Note: See TracBrowser for help on using the repository browser.

Context Navigation

source: trunk/include/common.inc.php @ 1110

Download in other formats: