Context Navigation

common.inc.php @ 1687

Last change on this file since 1687 was 1687, checked in by rub, 18 years ago

Issue ID 0000529 Fixed.

Problem with $_SERVERSCRIPT_FILENAME on IIS server

Merge branch-1_6 1685:1686 into BSF

Property svn:eol-style set to native
Property svn:keywords set to Author Date Id Revision

File size: 7.0 KB

Line
1	<?php
2	// +-----------------------------------------------------------------------+
3	// \| PhpWebGallery - a PHP based picture gallery \|
4	// \| Copyright (C) 2002-2003 Pierrick LE GALL - pierrick@phpwebgallery.net \|
5	// \| Copyright (C) 2003-2006 PhpWebGallery Team - http://phpwebgallery.net \|
6	// +-----------------------------------------------------------------------+
7	// \| branch : BSF (Best So Far)
8	// \| file : $Id: common.inc.php 1687 2006-12-31 17:08:37Z rub $
9	// \| last update : $Date: 2006-12-31 17:08:37 +0000 (Sun, 31 Dec 2006) $
10	// \| last modifier : $Author: rub $
11	// \| revision : $Revision: 1687 $
12	// +-----------------------------------------------------------------------+
13	// \| This program is free software; you can redistribute it and/or modify \|
14	// \| it under the terms of the GNU General Public License as published by \|
15	// \| the Free Software Foundation \|
16	// \| \|
17	// \| This program is distributed in the hope that it will be useful, but \|
18	// \| WITHOUT ANY WARRANTY; without even the implied warranty of \|
19	// \| MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU \|
20	// \| General Public License for more details. \|
21	// \| \|
22	// \| You should have received a copy of the GNU General Public License \|
23	// \| along with this program; if not, write to the Free Software \|
24	// \| Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, \|
25	// \| USA. \|
26	// +-----------------------------------------------------------------------+
27
28	if (!defined('PHPWG_ROOT_PATH'))
29	{
30	die('Hacking attempt!');
31	}
32	// determine the initial instant to indicate the generation time of this page
33	$t1 = explode( ' ', microtime() );
34	$t2 = explode( '.', $t1[0] );
35	$t2 = $t1[1].'.'.$t2[1];
36
37	set_magic_quotes_runtime(0); // Disable magic_quotes_runtime
38
39	//
40	// addslashes to vars if magic_quotes_gpc is off this is a security
41	// precaution to prevent someone trying to break out of a SQL statement.
42	//
43	if( !get_magic_quotes_gpc() )
44	{
45	if( is_array( $_GET ) )
46	{
47	while( list($k, $v) = each($_GET) )
48	{
49	if( is_array($_GET[$k]) )
50	{
51	while( list($k2, $v2) = each($_GET[$k]) )
52	{
53	$_GET[$k][$k2] = addslashes($v2);
54	}
55	@reset($_GET[$k]);
56	}
57	else
58	{
59	$_GET[$k] = addslashes($v);
60	}
61	}
62	@reset($_GET);
63	}
64
65	if( is_array($_POST) )
66	{
67	while( list($k, $v) = each($_POST) )
68	{
69	if( is_array($_POST[$k]) )
70	{
71	while( list($k2, $v2) = each($_POST[$k]) )
72	{
73	$_POST[$k][$k2] = addslashes($v2);
74	}
75	@reset($_POST[$k]);
76	}
77	else
78	{
79	$_POST[$k] = addslashes($v);
80	}
81	}
82	@reset($_POST);
83	}
84
85	if( is_array($_COOKIE) )
86	{
87	while( list($k, $v) = each($_COOKIE) )
88	{
89	if( is_array($_COOKIE[$k]) )
90	{
91	while( list($k2, $v2) = each($_COOKIE[$k]) )
92	{
93	$_COOKIE[$k][$k2] = addslashes($v2);
94	}
95	@reset($_COOKIE[$k]);
96	}
97	else
98	{
99	$_COOKIE[$k] = addslashes($v);
100	}
101	}
102	@reset($_COOKIE);
103	}
104	}
105
106	//
107	// Define some basic configuration arrays this also prevents malicious
108	// rewriting of language and otherarray values via URI params
109	//
110	$conf = array();
111	$page = array();
112	$user = array();
113	$lang = array();
114	$header_msgs = array();
115	$header_notes = array();
116
117	@include(PHPWG_ROOT_PATH .'include/mysql.inc.php');
118	if (!defined('PHPWG_INSTALLED'))
119	{
120	header('Location: install.php');
121	exit;
122	}
123
124	include(PHPWG_ROOT_PATH . 'include/config_default.inc.php');
125	@include(PHPWG_ROOT_PATH. 'include/config_local.inc.php');
126	include(PHPWG_ROOT_PATH . 'include/constants.php');
127	include(PHPWG_ROOT_PATH . 'include/functions.inc.php');
128	include(PHPWG_ROOT_PATH . 'include/template.php');
129
130	// Database connection
131	mysql_connect( $cfgHote, $cfgUser, $cfgPassword )
132	or die ( "Could not connect to database server" );
133	mysql_select_db( $cfgBase )
134	or die ( "Could not connect to database" );
135
136	//
137	// Setup gallery wide options, if this fails then we output a CRITICAL_ERROR
138	// since basic gallery information is not available
139	//
140	load_conf_from_db();
141	load_plugins();
142
143	include(PHPWG_ROOT_PATH.'include/user.inc.php');
144
145
146	// language files
147	include_once(get_language_filepath('common.lang.php'));
148	if (defined('IN_ADMIN') and IN_ADMIN)
149	{
150	include_once(get_language_filepath('admin.lang.php'));
151	}
152	@include_once(get_language_filepath('local.lang.php'));
153
154	// only now we can set the localized username of the guest user (and not in
155	// include/user.inc.php)
156	if ($user['is_the_guest'])
157	{
158	$user['username'] = $lang['guest'];
159	}
160
161	// template instance
162	$template = new Template(PHPWG_ROOT_PATH.'template/'.$user['template'], $user['theme'] );
163
164	if ($conf['gallery_locked'])
165	{
166	$header_msgs[] = $lang['gallery_locked_message'];
167
168	if ( basename($_SERVER["SCRIPT_FILENAME"]) != 'identification.php'
169	and !is_admin() )
170	{
171	//next line required if PATH_INFO (no ? in url) but won't work for scripts outside PWG
172	$page['root_path'] = cookie_path();
173	echo $lang['gallery_locked_message']
174	.'<a href="'.get_root_url().'identification.php">.</a>';
175	exit();
176	}
177	}
178
179	if ($user['is_the_guest'] and !$conf['guest_access']
180	and !in_array( script_basename(),
181	array('identification.php',
182	'password.php',
183	'register.php'
184	)
185	)
186	)
187	{
188	//next line required if PATH_INFO (no ? in url) but won't work for scripts outside PWG
189	$page['root_path'] = cookie_path();
190	redirect (get_root_url().'identification.php');
191	}
192
193	if ($conf['check_upgrade_feed']
194	and defined('PHPWG_IN_UPGRADE')
195	and PHPWG_IN_UPGRADE)
196	{
197
198	// retrieve already applied upgrades
199	$query = '
200	SELECT id
201	FROM '.UPGRADE_TABLE.'
202	;';
203	$applied = array_from_query($query, 'id');
204
205	// retrieve existing upgrades
206	$existing = get_available_upgrade_ids();
207
208	// which upgrades need to be applied?
209	if (count(array_diff($existing, $applied)) > 0)
210	{
211	//next line required if PATH_INFO (no ? in url) but won't work for scripts outside PWG
212	$page['root_path'] = cookie_path();
213	$header_msgs[] = 'Some database upgrades are missing, '
214	.'<a href="'.get_root_url().'upgrade_feed.php">upgrade now</a>';
215	}
216	}
217
218	if (is_adviser())
219	{
220	$header_msgs[] = $lang['adviser_mode_enabled'];
221	}
222
223	if (count($header_msgs) > 0)
224	{
225	$template->assign_block_vars('header_msgs',array());
226	foreach ($header_msgs as $header_msg)
227	{
228	$template->assign_block_vars('header_msgs.header_msg',
229	array('HEADER_MSG'=>$header_msg));
230	}
231	}
232
233	if (!defined('IN_ADMIN') or !IN_ADMIN)
234	{
235	include(PHPWG_ROOT_PATH.'include/functions_filter.inc.php');
236	include(PHPWG_ROOT_PATH.'include/filter.inc.php');
237	}
238
239	if (isset($conf['header_notes']))
240	{
241	$header_notes = array_merge($header_notes, $conf['header_notes']);
242	}
243
244	// default event handlers
245	add_event_handler('render_comment_content', 'parse_comment_content');
246	trigger_action('init');
247	?>

Note: See TracBrowser for help on using the repository browser.

Context Navigation

source: trunk/include/common.inc.php @ 1687

Download in other formats: