//
// Check if data.php exist -> if not, redirect to installer
//
if (!file_exists('inc/data.php')) {
header("Location: install/installer.php");
exit();
}
//
// Define the named constant used as a check by any included PHP file
//
define('IS_VALID_PHPMYFAQ', null);
//
// Autoload classes, prepend and start the PHP session
//
require_once 'inc/Init.php';
PMF_Init::cleanRequest();
session_name(PMF_COOKIE_NAME_AUTH . trim($faqconfig->get('main.phpMyFAQToken')));
session_start();
//
// Include the IDNA class
//
require_once 'inc/libs/idna_convert.class.php';
$IDN = new idna_convert;
//
// Get language (default: english)
//
$pmf = new PMF_Init();
$LANGCODE = $pmf->setLanguage($faqconfig->get('main.languageDetection'), $faqconfig->get('main.language'));
// Preload English strings
require_once 'lang/language_en.php';
$showCaptcha = PMF_Filter::filterInput(INPUT_GET, 'gen', FILTER_SANITIZE_STRING);
if (isset($LANGCODE) && PMF_Init::isASupportedLanguage($LANGCODE) && is_null($showCaptcha)) {
// Overwrite English strings with the ones we have in the current language,
// but don't include UTF-8 encoded files, these will break the captcha images
require_once 'lang/language_'.$LANGCODE.'.php';
} else {
$LANGCODE = 'en';
}
//
// Initalizing static string wrapper
//
PMF_String::init($PMF_LANG["metaCharset"], $LANGCODE);
//
// Get user action
//
$action = PMF_Filter::filterInput(INPUT_GET, 'action', FILTER_SANITIZE_STRING, 'main');
//
// Authenticate current user
//
$auth = null;
$error = '';
$faqusername = PMF_Filter::filterInput(INPUT_POST, 'faqusername', FILTER_SANITIZE_STRING);
$faqpassword = PMF_Filter::filterInput(INPUT_POST, 'faqpassword', FILTER_SANITIZE_STRING);
if (!is_null($faqusername) && !is_null($faqpassword)) {
$user = new PMF_User_CurrentUser();
if ($faqconfig->get('main.ldapSupport')) {
$authLdap = new PMF_Auth_AuthLdap();
$user->addAuth($authLdap, 'ldap');
}
if ($user->login($faqusername, $faqpassword)) {
if ($user->getStatus() != 'blocked') {
$auth = true;
} else {
$error = $PMF_LANG["ad_auth_fail"]." (".$faqusername." / *)";
$user = null;
}
} else {
// error
$error = sprintf(
'%s
%s',
$PMF_LANG['ad_auth_fail'],
$PMF_LANG['lostPassword'],
$PMF_LANG['lostPassword']
);
$user = null;
}
$action = 'main';
} else {
// authenticate with session information
$user = PMF_User_CurrentUser::getFromSession($faqconfig->get('main.ipCheck'));
if ($user) {
$auth = true;
} else {
$user = null;
}
}
//
// Get current user rights
//
$permission = array();
if (isset($auth)) {
// read all rights, set them FALSE
$allRights = $user->perm->getAllRightsData();
foreach ($allRights as $right) {
$permission[$right['name']] = false;
}
// check user rights, set them TRUE
$allUserRights = $user->perm->getAllUserRights($user->getUserId());
foreach ($allRights as $right) {
if (in_array($right['right_id'], $allUserRights))
$permission[$right['name']] = true;
}
}
//
// Logout
//
if ('logout' === $action && isset($auth)) {
$user->deleteFromSession();
$user = null;
$auth = null;
$action = 'main';
}
//
// Get current user and group id - default: -1
//
if (!is_null($user) && $user instanceof PMF_User_CurrentUser) {
$current_user = $user->getUserId();
if ($user->perm instanceof PMF_Perm_PermMedium) {
$current_groups = $user->perm->getUserGroups($current_user);
} else {
$current_groups = array(-1);
}
if (0 == count($current_groups)) {
$current_groups = array(-1);
}
} else {
$current_user = -1;
$current_groups = array(-1);
}
//
// Use mbstring extension if available and when possible
//
$valid_mb_strings = array('ja', 'en', 'uni');
$mbLanguage = ('utf-8' == strtolower($PMF_LANG['metaCharset'])) && ($PMF_LANG['metaLanguage'] != 'ja') ? 'uni' : $PMF_LANG['metaLanguage'];
if (function_exists('mb_language') && in_array($mbLanguage, $valid_mb_strings)) {
mb_language($mbLanguage);
mb_internal_encoding($PMF_LANG['metaCharset']);
}
//
// Found a session ID in _GET or _COOKIE?
//
$sid = null;
$sid_get = PMF_Filter::filterInput(INPUT_GET, PMF_GET_KEY_NAME_SESSIONID, FILTER_VALIDATE_INT);
$sid_cookie = PMF_Filter::filterInput(INPUT_COOKIE, PMF_COOKIE_NAME_SESSIONID, FILTER_VALIDATE_INT);
$faqsession = new PMF_Session();
// Note: do not track internal calls
$internal = false;
if (isset($_SERVER['HTTP_USER_AGENT'])) {
$internal = (strpos($_SERVER['HTTP_USER_AGENT'], 'phpMyFAQ%2F') === 0);
}
if (!$internal) {
if (is_null($sid_get) && is_null($sid_cookie)) {
// Create a per-site unique SID
$faqsession->userTracking('new_session', 0);
} else {
if (!is_null($sid_cookie)) {
$faqsession->checkSessionId($sid_cookie, $_SERVER['REMOTE_ADDR']);
} else {
$faqsession->checkSessionId($sid_get, $_SERVER['REMOTE_ADDR']);
}
}
}
//
// Is user tracking activated?
//
$sids = '';
if ($faqconfig->get('main.enableUserTracking')) {
if (isset($sid)) {
PMF_Session::setCookie($sid);
if (is_null($sid_cookie)) {
$sids = sprintf('sid=%d&lang=%s&', $sid, $LANGCODE);
}
} elseif (is_null($sid_get) || is_null($sid_cookie)) {
if (is_null($sid_cookie)) {
if (!is_null($sid_get)) {
$sids = sprintf('sid=%d&lang=%s&', $sid_get, $LANGCODE);
}
}
}
} else {
if (!setcookie(PMF_GET_KEY_NAME_LANGUAGE, $LANGCODE, $_SERVER['REQUEST_TIME'] + PMF_LANGUAGE_EXPIRED_TIME)) {
$sids = sprintf('lang=%s&', $LANGCODE);
}
}
//
// Found a article language?
//
$lang = PMF_Filter::filterInput(INPUT_POST, 'artlang', FILTER_SANITIZE_STRING);
if (is_null($lang) && !PMF_Init::isASupportedLanguage($lang) ) {
$lang = $LANGCODE;
}
//
// Create a new FAQ object
//
$faq = new PMF_Faq($current_user, $current_groups);
//
// Create a new Category object
//
$category = new PMF_Category($current_user, $current_groups);
//
// Create a new Tags object
//
$oTag = new PMF_Tags();
//
// Found a record ID?
//
$id = PMF_Filter::filterInput(INPUT_GET, 'id', FILTER_VALIDATE_INT);
if (!is_null($id)) {
$title = ' - ' . $faq->getRecordTitle($id);
$keywords = ' ' . $faq->getRecordKeywords($id);
} else {
$id = '';
$title = ' - powered by phpMyFAQ ' . $faqconfig->get('main.currentVersion');
$keywords = '';
}
//
// found a solution ID?
//
$solution_id = PMF_Filter::filterInput(INPUT_GET, 'solution_id', FILTER_VALIDATE_INT);
if (!is_null($solution_id)) {
$title = ' - powered by phpMyFAQ ' . $faqconfig->get('main.currentVersion');
$keywords = '';
$a = $faq->getIdFromSolutionId($solution_id);
if (is_array($a)) {
$id = $a['id'];
$lang = $a['lang'];
$title = ' - ' . $faq->getRecordTitle($id);
$keywords = ' ' . $faq->getRecordKeywords($id);
}
}
//
// Handle the Tagging ID
//
$tag_id = PMF_Filter::filterInput(INPUT_GET, 'tagging_id', FILTER_VALIDATE_INT);
if (!is_null($tag_id)) {
$title = ' - ' . $oTag->getTagNameById($tag_id);
$keywords = '';
}
//
// Found a category ID?
//
$cat = PMF_Filter::filterInput(INPUT_GET, 'cat', FILTER_VALIDATE_INT, 0);
$cat_from_id = -1;
if (is_numeric($id) && $id > 0) {
$cat_from_id = $category->getCategoryIdFromArticle($id);
}
if ($cat_from_id != -1 && $cat == 0) {
$cat = $cat_from_id;
}
$category->transform(0);
$category->collapseAll();
if ($cat != 0) {
$category->expandTo($cat);
}
if (isset($cat) && ($cat != 0) && ($id == '') && isset($category->categoryName[$cat]['name'])) {
$title = ' - '.$category->categoryName[$cat]['name'];
}
//
// Found an action request?
//
if (preg_match("=/=", $action) && !isset($allowedVariables[$action])) {
$action = trim($_REQUEST["action"]);
$template_action = trim($_REQUEST["action"]);
} else {
$action = "main";
}
//
// Select the template for the requested page
//
if (isset($_REQUEST["ost_action"])) { $template_action = $_REQUEST["ost_action"]; }
if (isset($auth)) {
$login_tpl = 'template/loggedin.tpl';
} else {
$login_tpl = 'template/loginbox.tpl';
}
if ($action != 'main') {
$inc_tpl = 'template/' . $action . '.tpl';
$inc_php = $action.".php";
$writeLangAdress = "?".str_replace("&", "&",$_SERVER["QUERY_STRING"]);
} else {
if (isset($solution_id) && is_numeric($solution_id)) {
// show the record with the solution ID
$inc_tpl = 'template/artikel.tpl';
$inc_php = 'artikel.php';
} else {
$inc_tpl = 'template/main.tpl';
$inc_php = 'main.php';
}
$writeLangAdress = '?'.$sids;
}
//
// Set right column
//
// Check in any tags with at leat one entry exist
$hasTags = $oTag->existTagRelations();
if ($hasTags && (($action == 'artikel') || ($action == 'show'))) {
$right_tpl = $action == 'artikel' ? 'template/catandtag.tpl' : 'template/tagcloud.tpl';
} else {
$right_tpl = 'template/startpage.tpl';
}
//
// Load template files and set template variables
//
if (isset($_REQUEST["ost_action"])) {
$tpl = new PMF_Template (array(
'index' => 'template/ost_index.tpl',
'loginBox' => $login_tpl,
'rightBox' => $right_tpl,
'writeContent' => $inc_tpl));
} else {
$tpl = new PMF_Template (array(
'index' => 'template/index.tpl',
'loginBox' => $login_tpl,
'rightBox' => $right_tpl,
'writeContent' => $inc_tpl));
}
$usersOnLine = getUsersOnline();
$totUsersOnLine = $usersOnLine[0] + $usersOnLine[1];
$systemUri = PMF_Link::getSystemUri('index.php');
$main_template_vars = array(
'title' => $faqconfig->get('main.titleFAQ').$title,
'baseHref' => $systemUri,
'version' => $faqconfig->get('main.currentVersion'),
'header' => str_replace('"', '', $faqconfig->get('main.titleFAQ')),
'metaTitle' => str_replace('"', '', $faqconfig->get('main.titleFAQ')),
'metaDescription' => $faqconfig->get('main.metaDescription'),
'metaKeywords' => $faqconfig->get('main.metaKeywords').$keywords,
'metaPublisher' => $faqconfig->get('main.metaPublisher'),
'metaLanguage' => $PMF_LANG['metaLanguage'],
'metaCharset' => $PMF_LANG['metaCharset'],
'phpmyfaqversion' => $faqconfig->get('main.currentVersion'),
'stylesheet' => $PMF_LANG['dir'] == 'rtl' ? 'style.rtl' : 'style',
'action' => $action,
'dir' => $PMF_LANG['dir'],
'msgCategory' => $PMF_LANG['msgCategory'],
'showCategories' => $category->printCategories($cat),
'searchBox' => $PMF_LANG['msgSearch'],
'languageBox' => $PMF_LANG['msgLangaugeSubmit'],
'writeLangAdress' => $writeLangAdress,
'switchLanguages' => selectLanguages($LANGCODE, true),
'userOnline' => $totUsersOnLine.$PMF_LANG['msgUserOnline'].
sprintf($PMF_LANG['msgUsersOnline'],
$usersOnLine[0],
$usersOnLine[1]),
'stickyRecordsHeader' => $PMF_LANG['stickyRecordsHeader'],
'copyright' => 'powered by phpMyFAQ ' .
$faqconfig->get('main.currentVersion'));
$stickyRecordsParams = $faq->getStickyRecords();
if (!isset($stickyRecordsParams['error'])) {
$tpl->processBlock('index', 'stickyRecordsList', array(
'stickyRecordsUrl' => $stickyRecordsParams['url'],
'stickyRecordsTitle' => $stickyRecordsParams['title']));
}
if ($faqconfig->get('main.enableRewriteRules')) {
$links_template_vars = array(
"faqHome" => $_SERVER['PHP_SELF'],
"msgSearch" => ''.$PMF_LANG["msgAdvancedSearch"].'',
'msgAddContent' => ''.$PMF_LANG["msgAddContent"].'',
"msgQuestion" => ''.$PMF_LANG["msgQuestion"].'',
"msgOpenQuestions" => ''.$PMF_LANG["msgOpenQuestions"].'',
'msgHelp' => ''.$PMF_LANG["msgHelp"].'',
"msgContact" => ''.$PMF_LANG["msgContact"].'',
"backToHome" => ''.$PMF_LANG["msgHome"].'',
"allCategories" => ''.$PMF_LANG["msgShowAllCategories"].'',
"writeSendAdress" => $systemUri . 'search.html',
'showInstantResponse' => ''.$PMF_LANG['msgInstantResponse'].'',
'showSitemap' => getLinkHtmlAnchor($_SERVER['PHP_SELF'].'?'.$sids.'action=sitemap&lang='.$LANGCODE, $PMF_LANG['msgSitemap']),
'opensearch' => $systemUri . 'search.html'
);
} else {
$links_template_vars = array(
"faqHome" => $_SERVER['PHP_SELF'],
"msgSearch" => ''.$PMF_LANG["msgAdvancedSearch"].'',
"msgAddContent" => ''.$PMF_LANG["msgAddContent"].'',
"msgQuestion" => ''.$PMF_LANG["msgQuestion"].'',
"msgOpenQuestions" => ''.$PMF_LANG["msgOpenQuestions"].'',
"msgHelp" => ''.$PMF_LANG["msgHelp"].'',
"msgContact" => ''.$PMF_LANG["msgContact"].'',
"allCategories" => ''.$PMF_LANG["msgShowAllCategories"].'',
"backToHome" => ''.$PMF_LANG["msgHome"].'',
"writeSendAdress" => $_SERVER['PHP_SELF'].'?'.$sids.'action=search',
'showInstantResponse' => ''.$PMF_LANG['msgInstantResponse'].'',
'showSitemap' => ''.$PMF_LANG['msgSitemap'].'',
'opensearch' => $_SERVER['PHP_SELF'].'?'.$sids.'action=search',
);
}
//
// Send headers and print template
//
header("Expires: Thu, 07 Apr 1977 14:47:00 GMT");
header("Last-Modified: ".gmdate("D, d M Y H:i:s")." GMT");
header("Cache-Control: no-store, no-cache, must-revalidate");
header("Cache-Control: post-check=0, pre-check=0", false);
header("Pragma: no-cache");
header("Content-type: text/html; charset=".$PMF_LANG['metaCharset']);
header("Vary: Negotiate,Accept");
//
// Add debug info if needed
//
if (DEBUG) {
$debug_template_vars = array(
'debugMessages' => "\n".'DEBUG INFORMATION:
'.$db->sqllog().'
'
);
} else {
$debug_template_vars = array('debugMessages' => '');
}
//
// Get main template, set main variables
//
$tpl->processTemplate(
'index',
array_merge(
$main_template_vars,
$links_template_vars,
$debug_template_vars
)
);
//
// Show login box or logged-in user information
//
if (isset($auth)) {
$tpl->processTemplate('loginBox', array(
'loggedinas' => $PMF_LANG['ad_user_loggedin'],
'currentuser' => $user->getUserData('display_name'),
'printAdminPath' => (in_array(true, $permission)) ? 'admin/index.php' : '#',
'adminSection' => $PMF_LANG['adminSection'],
'printLogoutPath' => $_SERVER['PHP_SELF'].'?action=logout',
'logout' => $PMF_LANG['ad_menu_logout'])
);
} else {
$tpl->processTemplate('loginBox', array(
'writeLoginPath' => $_SERVER['PHP_SELF'].'?action=login',
'login' => $PMF_LANG['ad_auth_ok'],
'username' => $PMF_LANG['ad_auth_user'],
'password' => $PMF_LANG['ad_auth_passwd'],
'msgRegisterUser' => (($faqconfig->get('main.enableRewriteRules'))
?
''.$PMF_LANG['msgRegisterUser'].''
:
''.$PMF_LANG['msgRegisterUser'].''),
'msgLoginFailed' => $error)
);
}
$tpl->includeTemplate('loginBox', 'index');
$toptenParams = $faq->getTopTen();
if (!isset($toptenParams['error'])) {
$tpl->processBlock('rightBox', 'toptenList', array(
'toptenUrl' => $toptenParams['url'],
'toptenTitle' => $toptenParams['title'],
'toptenVisits' => $toptenParams['visits'])
);
} else {
$tpl->processBlock('rightBox', 'toptenListError', array(
'errorMsgTopTen' => $toptenParams['error'])
);
}
$latestEntriesParams = $faq->getLatest();
if (!isset($latestEntriesParams['error'])) {
$tpl->processBlock('rightBox', 'latestEntriesList', array(
'latestEntriesUrl' => $latestEntriesParams['url'],
'latestEntriesTitle' => $latestEntriesParams['title'],
'latestEntriesDate' => $latestEntriesParams['date'])
);
} else {
$tpl->processBlock('rightBox', 'latestEntriesListError', array(
'errorMsgLatest' => $latestEntriesParams['error'])
);
}
$tpl->processTemplate('rightBox', array(
'writeTopTenHeader' => $PMF_LANG['msgTopTen'],
'writeNewestHeader' => $PMF_LANG['msgLatestArticles'],
'writeTagCloudHeader' => $PMF_LANG['msg_tags'],
'writeTags' => $oTag->printHTMLTagsCloud(),
'msgAllCatArticles' => $PMF_LANG['msgAllCatArticles'],
'allCatArticles' => $faq->showAllRecordsWoPaging($cat))
);
$tpl->includeTemplate('rightBox', 'index');
//
// Include requested PHP file
//
require_once $inc_php;
$tpl->printTemplate();
//
// Disconnect from database
//
$db->dbclose();