source: trunk/include/common.inc.php @ 2824

Last change on this file since 2824 was 2824, checked in by rvelices, 16 years ago

merge -c2823 from branch 2.0 to trunk

  • removed some unused constants from constants.php
  • removed some unused css rules
  • removed unused code
  • Property svn:eol-style set to LF
  • Property svn:keywords set to Author Date Id Revision
File size: 7.1 KB
Line 
1<?php
2// +-----------------------------------------------------------------------+
3// | Piwigo - a PHP based picture gallery                                  |
4// +-----------------------------------------------------------------------+
5// | Copyright(C) 2008      Piwigo Team                  http://piwigo.org |
6// | Copyright(C) 2003-2008 PhpWebGallery Team    http://phpwebgallery.net |
7// | Copyright(C) 2002-2003 Pierrick LE GALL   http://le-gall.net/pierrick |
8// +-----------------------------------------------------------------------+
9// | This program is free software; you can redistribute it and/or modify  |
10// | it under the terms of the GNU General Public License as published by  |
11// | the Free Software Foundation                                          |
12// |                                                                       |
13// | This program is distributed in the hope that it will be useful, but   |
14// | WITHOUT ANY WARRANTY; without even the implied warranty of            |
15// | MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU      |
16// | General Public License for more details.                              |
17// |                                                                       |
18// | You should have received a copy of the GNU General Public License     |
19// | along with this program; if not, write to the Free Software           |
20// | Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, |
21// | USA.                                                                  |
22// +-----------------------------------------------------------------------+
23
24defined('PHPWG_ROOT_PATH') or trigger_error('Hacking attempt!', E_USER_ERROR);
25
26// determine the initial instant to indicate the generation time of this page
27$t1 = explode( ' ', microtime() );
28$t2 = explode( '.', $t1[0] );
29$t2 = $t1[1].'.'.$t2[1];
30
31set_magic_quotes_runtime(0); // Disable magic_quotes_runtime
32
33//
34// addslashes to vars if magic_quotes_gpc is off this is a security
35// precaution to prevent someone trying to break out of a SQL statement.
36//
37if( !get_magic_quotes_gpc() )
38{
39  function sanitize_mysql_kv(&$v, $k)
40  {
41    $v = addslashes($v);
42  }
43  if( is_array( $_GET ) )
44  {
45    array_walk_recursive( $_GET, 'sanitize_mysql_kv' );
46  }
47  if( is_array( $_POST ) )
48  {
49    array_walk_recursive( $_POST, 'sanitize_mysql_kv' );
50  }
51  if( is_array( $_COOKIE ) )
52  {
53    array_walk_recursive( $_COOKIE, 'sanitize_mysql_kv' );
54  }
55}
56if ( !empty($_SERVER["PATH_INFO"]) )
57{
58  $_SERVER["PATH_INFO"] = addslashes($_SERVER["PATH_INFO"]);
59}
60
61//
62// Define some basic configuration arrays this also prevents malicious
63// rewriting of language and otherarray values via URI params
64//
65$conf = array();
66$page = array();
67$user = array();
68$lang = array();
69$header_msgs = array();
70$header_notes = array();
71$filter = array();
72
73@include(PHPWG_ROOT_PATH .'include/mysql.inc.php');
74if (!defined('PHPWG_INSTALLED'))
75{
76  header('Location: install.php');
77  exit;
78}
79
80foreach( array(
81  'array_intersect_key', //PHP 5 >= 5.1.0RC1
82  'hash_hmac', //(hash) - enabled by default as of PHP 5.1.2
83  'preg_last_error', // PHP 5 >= 5.2.0
84  'file_put_contents', //PHP5
85  ) as $func)
86{
87  if (!function_exists($func))
88  {
89    include_once(PHPWG_ROOT_PATH . 'include/php_compat/'.$func.'.php');
90  }
91}
92
93include(PHPWG_ROOT_PATH . 'include/config_default.inc.php');
94@include(PHPWG_ROOT_PATH. 'include/config_local.inc.php');
95include(PHPWG_ROOT_PATH . 'include/constants.php');
96include(PHPWG_ROOT_PATH . 'include/functions.inc.php');
97
98// Database connection
99@mysql_connect( $cfgHote, $cfgUser, $cfgPassword ) or my_error( 'mysql_connect', true );
100@mysql_select_db( $cfgBase ) or my_error( 'mysql_select_db', true );
101
102defined('PWG_CHARSET') and defined('DB_CHARSET')
103  or fatal_error('PWG_CHARSET and/or DB_CHARSET is not defined');
104if ( version_compare(mysql_get_server_info(), '4.1.0', '>=') )
105{
106  if (DB_CHARSET!='')
107  {
108    pwg_query('SET NAMES "'.DB_CHARSET.'"');
109  }
110}
111else
112{
113  if ( strtolower(PWG_CHARSET)!='iso-8859-1' )
114  {
115    fatal_error('PWG supports only iso-8859-1 charset on MySql version '.mysql_get_server_info());
116  }
117}
118
119//
120// Setup gallery wide options, if this fails then we output a CRITICAL_ERROR
121// since basic gallery information is not available
122//
123load_conf_from_db();
124load_plugins();
125
126include(PHPWG_ROOT_PATH.'include/user.inc.php');
127
128
129// language files
130load_language('common.lang');
131if ( is_admin() || (defined('IN_ADMIN') and IN_ADMIN) )
132{
133  load_language('admin.lang');
134}
135trigger_action('loading_lang');
136load_language('local.lang', '', array('no_fallback'=>true) );
137
138// only now we can set the localized username of the guest user (and not in
139// include/user.inc.php)
140if (is_a_guest())
141{
142  $user['username'] = l10n('guest');
143}
144
145// template instance
146if ( defined('IN_ADMIN') and IN_ADMIN )
147{// Admin template
148  list($user['admin_template'], $user['admin_theme']) =
149    explode ('/', $conf['admin_layout']);
150  $template = new Template(PHPWG_ROOT_PATH.'admin/template/'
151    . $user['admin_template'], $user['admin_theme'] );
152}
153else
154{ // Classic template
155  $template = new Template(PHPWG_ROOT_PATH.'template/'
156    . $user['template'], $user['theme'] );
157}
158
159if (isset($user['internal_status']['guest_must_be_guest'])
160    and
161    $user['internal_status']['guest_must_be_guest'] === true)
162{
163  $header_msgs[] = l10n('guest_must_be_guest');
164}
165
166if ($conf['gallery_locked'])
167{
168  $header_msgs[] = l10n('gallery_locked_message');
169
170  if ( script_basename() != 'identification' and !is_admin() )
171  {
172    set_status_header(503, 'Service Unavailable');
173    @header('Retry-After: 900');
174    echo l10n('gallery_locked_message')
175      .'<a href="'.get_absolute_root_url(false).'identification.php">.</a>';
176    echo str_repeat( ' ', 512); //IE6 doesn't error output if below a size
177    exit();
178  }
179}
180
181if ($conf['check_upgrade_feed'])
182{
183
184  // retrieve already applied upgrades
185  $query = '
186SELECT id
187  FROM '.UPGRADE_TABLE.'
188;';
189  $applied = array_from_query($query, 'id');
190
191  // retrieve existing upgrades
192  $existing = get_available_upgrade_ids();
193
194  // which upgrades need to be applied?
195  if (count(array_diff($existing, $applied)) > 0)
196  {
197    $header_msgs[] = 'Some database upgrades are missing, '
198      .'<a href="'.get_absolute_root_url(false).'upgrade_feed.php">upgrade now</a>';
199  }
200}
201
202if (is_adviser())
203{
204  $header_msgs[] = l10n('adviser_mode_enabled');
205}
206
207if (count($header_msgs) > 0)
208{
209  $template->assign('header_msgs', $header_msgs);
210  $header_msgs=array();
211}
212
213if (!empty($conf['filter_pages']) and get_filter_page_value('used'))
214{
215  include(PHPWG_ROOT_PATH.'include/filter.inc.php');
216}
217else
218{
219  $filter['enabled'] = false;
220}
221
222if (isset($conf['header_notes']))
223{
224  $header_notes = array_merge($header_notes, $conf['header_notes']);
225}
226
227// default event handlers
228add_event_handler('render_category_literal_description', 'render_category_literal_description');
229add_event_handler('render_category_description', 'render_category_description');
230add_event_handler('render_comment_content', 'htmlspecialchars');
231add_event_handler('render_comment_content', 'parse_comment_content');
232add_event_handler('render_comment_author', 'strip_tags');
233add_event_handler('blockmanager_register_blocks', 'register_default_menubar_blocks', EVENT_HANDLER_PRIORITY_NEUTRAL-1);
234trigger_action('init');
235?>
Note: See TracBrowser for help on using the repository browser.