256
+ − 1
<?php
+ − 2
+ − 3
/*
+ − 4
* Enano - an open-source CMS capable of wiki functions, Drupal-like sidebar blocks, and everything in between
317
+ − 5
* Version 1.0.3 (Dyrad)
256
+ − 6
* Copyright (C) 2006-2007 Dan Fuhry
+ − 7
* install.php - handles everything related to installation and initial configuration
+ − 8
*
+ − 9
* This program is Free Software; you can redistribute and/or modify it under the terms of the GNU General Public License
+ − 10
* as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version.
+ − 11
*
+ − 12
* This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied
+ − 13
* warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for details.
+ − 14
*/
+ − 15
+ − 16
@include('config.php');
276
acfdccf7a2bf
Re-sync Oxygen and Mint and Oxygen simple with Oxygen main; a couple improvements to the redirect-on-no-config code
Dan
diff
changeset
+ − 17
if( ( defined('ENANO_INSTALLED') || defined('MIDGET_INSTALLED') ) && ((isset($_GET['mode']) && ($_GET['mode']!='finish' && $_GET['mode']!='css') && $_GET['mode']!='showlicense') || !isset($_GET['mode'])))
256
+ − 18
{
+ − 19
$_GET['title'] = 'Enano:Installation_locked';
+ − 20
require('includes/common.php');
+ − 21
die_friendly('Installation locked', '<p>The Enano installer has found a Enano installation in this directory. You MUST delete config.php if you want to re-install Enano.</p><p>If you wish to upgrade an older Enano installation to this version, please use the <a href="upgrade.php">upgrade script</a>.</p>');
+ − 22
exit;
+ − 23
}
+ − 24
+ − 25
define('IN_ENANO_INSTALL', 'true');
+ − 26
317
+ − 27
define('ENANO_VERSION', '1.0.3');
256
+ − 28
// In beta versions, define ENANO_BETA_VERSION here
+ − 29
+ − 30
if(!defined('scriptPath')) {
+ − 31
$sp = dirname($_SERVER['REQUEST_URI']);
+ − 32
if($sp == '/' || $sp == '\\') $sp = '';
+ − 33
define('scriptPath', $sp);
+ − 34
}
+ − 35
+ − 36
if(!defined('contentPath')) {
+ − 37
$sp = dirname($_SERVER['REQUEST_URI']);
+ − 38
if($sp == '/' || $sp == '\\') $sp = '';
+ − 39
define('contentPath', $sp);
+ − 40
}
+ − 41
global $_starttime, $this_page, $sideinfo;
+ − 42
$_starttime = microtime(true);
+ − 43
322
+ − 44
global $db;
+ − 45
256
+ − 46
// Determine directory (special case for development servers)
+ − 47
if ( strpos(__FILE__, '/repo/') && file_exists('.enanodev') )
+ − 48
{
+ − 49
$filename = str_replace('/repo/', '/', __FILE__);
+ − 50
}
+ − 51
else
+ − 52
{
+ − 53
$filename = __FILE__;
+ − 54
}
+ − 55
+ − 56
define('ENANO_ROOT', dirname($filename));
+ − 57
+ − 58
function is_page($p)
+ − 59
{
+ − 60
return true;
+ − 61
}
+ − 62
+ − 63
require('includes/wikiformat.php');
+ − 64
require('includes/constants.php');
+ − 65
require('includes/rijndael.php');
+ − 66
require('includes/functions.php');
+ − 67
+ − 68
strip_magic_quotes_gpc();
+ − 69
$neutral_color = 'C';
+ − 70
+ − 71
//
+ − 72
// INSTALLER LIBRARY
+ − 73
//
+ − 74
+ − 75
function run_installer_stage($stage_id, $stage_name, $function, $failure_explanation, $allow_skip = true)
+ − 76
{
+ − 77
static $resumed = false;
+ − 78
static $resume_stack = array();
+ − 79
+ − 80
if ( empty($resume_stack) && isset($_POST['resume_stack']) && preg_match('/[a-z_]+((\|[a-z_]+)+)/', $_POST['resume_stack']) )
+ − 81
{
+ − 82
$resume_stack = explode('|', $_POST['resume_stack']);
+ − 83
}
+ − 84
+ − 85
$already_run = false;
+ − 86
if ( in_array($stage_id, $resume_stack) )
+ − 87
{
+ − 88
$already_run = true;
+ − 89
}
+ − 90
+ − 91
if ( !$resumed )
+ − 92
{
+ − 93
if ( !isset($_GET['stage']) )
+ − 94
$resumed = true;
+ − 95
if ( isset($_GET['stage']) && $_GET['stage'] == $stage_id )
+ − 96
{
+ − 97
$resumed = true;
+ − 98
}
+ − 99
}
+ − 100
if ( !$resumed && $allow_skip )
+ − 101
{
267
+ − 102
echo_stage_success($stage_id, $stage_name);
256
+ − 103
return false;
+ − 104
}
+ − 105
if ( !function_exists($function) )
+ − 106
die('libenanoinstall: CRITICAL: function "' . $function . '" for ' . $stage_id . ' doesn\'t exist');
+ − 107
$result = @call_user_func($function, false, $already_run);
+ − 108
if ( $result )
+ − 109
{
+ − 110
echo_stage_success($stage_id, $stage_name);
+ − 111
$resume_stack[] = $stage_id;
+ − 112
return true;
+ − 113
}
+ − 114
else
+ − 115
{
+ − 116
echo_stage_failure($stage_id, $stage_name, $failure_explanation, $resume_stack);
+ − 117
return false;
+ − 118
}
+ − 119
}
+ − 120
+ − 121
function start_install_table()
+ − 122
{
+ − 123
echo '<table border="0" cellspacing="0" cellpadding="0">' . "\n";
270
5bcdee999015
Major fixes to the ban system - large IP match lists don't slow down the server miserably anymore.
Dan
diff
changeset
+ − 124
ob_start();
256
+ − 125
}
+ − 126
+ − 127
function close_install_table()
+ − 128
{
+ − 129
echo '</table>' . "\n\n";
270
5bcdee999015
Major fixes to the ban system - large IP match lists don't slow down the server miserably anymore.
Dan
diff
changeset
+ − 130
ob_end_flush();
256
+ − 131
}
+ − 132
+ − 133
function echo_stage_success($stage_id, $stage_name)
+ − 134
{
+ − 135
global $neutral_color;
+ − 136
$neutral_color = ( $neutral_color == 'A' ) ? 'C' : 'A';
+ − 137
echo '<tr><td style="width: 500px; background-color: #' . "{$neutral_color}{$neutral_color}FF{$neutral_color}{$neutral_color}" . '; padding: 0 5px;">' . htmlspecialchars($stage_name) . '</td><td style="padding: 0 5px;"><img alt="Done" src="images/good.gif" /></td></tr>' . "\n";
270
5bcdee999015
Major fixes to the ban system - large IP match lists don't slow down the server miserably anymore.
Dan
diff
changeset
+ − 138
ob_flush();
256
+ − 139
}
+ − 140
+ − 141
function echo_stage_failure($stage_id, $stage_name, $failure_explanation, $resume_stack)
+ − 142
{
+ − 143
global $neutral_color;
+ − 144
+ − 145
$neutral_color = ( $neutral_color == 'A' ) ? 'C' : 'A';
+ − 146
echo '<tr><td style="width: 500px; background-color: #' . "FF{$neutral_color}{$neutral_color}{$neutral_color}{$neutral_color}" . '; padding: 0 5px;">' . htmlspecialchars($stage_name) . '</td><td style="padding: 0 5px;"><img alt="Failed" src="images/bad.gif" /></td></tr>' . "\n";
270
5bcdee999015
Major fixes to the ban system - large IP match lists don't slow down the server miserably anymore.
Dan
diff
changeset
+ − 147
ob_flush();
256
+ − 148
close_install_table();
+ − 149
$post_data = '';
+ − 150
$mysql_error = mysql_error();
+ − 151
foreach ( $_POST as $key => $value )
+ − 152
{
269
+ − 153
// FIXME: These should really also be sanitized for double quotes
256
+ − 154
$value = htmlspecialchars($value);
+ − 155
$key = htmlspecialchars($key);
+ − 156
$post_data .= " <input type=\"hidden\" name=\"$key\" value=\"$value\" />\n";
+ − 157
}
+ − 158
echo '<form action="install.php?mode=install&stage=' . $stage_id . '" method="post">
+ − 159
' . $post_data . '
+ − 160
<input type="hidden" name="resume_stack" value="' . htmlspecialchars(implode('|', $resume_stack)) . '" />
+ − 161
<h3>Enano installation failed.</h3>
+ − 162
<p>' . $failure_explanation . '</p>
+ − 163
' . ( !empty($mysql_error) ? "<p>The error returned from MySQL was: $mysql_error</p>" : '' ) . '
+ − 164
<p>When you have corrected the error, click the button below to attempt to continue the installation.</p>
+ − 165
<p style="text-align: center;"><input type="submit" value="Retry installation" /></p>
+ − 166
</form>';
+ − 167
global $template, $template_bak;
+ − 168
if ( is_object($template_bak) )
+ − 169
$template_bak->footer();
+ − 170
else
+ − 171
$template->footer();
+ − 172
exit;
+ − 173
}
+ − 174
+ − 175
//
+ − 176
// INSTALLER STAGES
+ − 177
//
+ − 178
+ − 179
function stg_mysql_connect($act_get = false)
+ − 180
{
322
+ − 181
global $db;
+ − 182
$db = new mysql();
+ − 183
256
+ − 184
static $conn = false;
+ − 185
if ( $act_get )
+ − 186
return $conn;
+ − 187
258
+ − 188
$db_user =& $_POST['db_user'];
+ − 189
$db_pass =& $_POST['db_pass'];
+ − 190
$db_name =& $_POST['db_name'];
256
+ − 191
258
+ − 192
if ( !preg_match('/^[a-z0-9_-]+$/', $db_name) )
+ − 193
{
+ − 194
$db_name = htmlspecialchars($db_name);
+ − 195
die("<p>SECURITY: malformed database name \"$db_name\"</p>");
+ − 196
}
256
+ − 197
+ − 198
// First, try to connect using the normal credentials
+ − 199
$conn = @mysql_connect($_POST['db_host'], $_POST['db_user'], $_POST['db_pass']);
+ − 200
if ( !$conn )
+ − 201
{
+ − 202
// Connection failed. Do we have the root username and password?
+ − 203
if ( !empty($_POST['db_root_user']) && !empty($_POST['db_root_pass']) )
+ − 204
{
+ − 205
$conn_root = @mysql_connect($_POST['db_host'], $_POST['db_root_user'], $_POST['db_root_pass']);
+ − 206
if ( !$conn_root )
+ − 207
{
+ − 208
// Couldn't connect using either set of credentials. Bail out.
+ − 209
return false;
+ − 210
}
258
+ − 211
unset($db_user, $db_pass);
+ − 212
$db_user = mysql_real_escape_string($_POST['db_user']);
+ − 213
$db_pass = mysql_real_escape_string($_POST['db_pass']);
256
+ − 214
// Create the user account
+ − 215
$q = @mysql_query("GRANT ALL PRIVILEGES ON test.* TO '{$db_user}'@'localhost' IDENTIFIED BY '$db_pass' WITH GRANT OPTION;", $conn_root);
+ − 216
if ( !$q )
+ − 217
{
+ − 218
return false;
+ − 219
}
+ − 220
// Revoke privileges from test, we don't need them
+ − 221
$q = @mysql_query("REVOKE ALL PRIVILEGES ON test.* FROM '{$db_user}'@'localhost';", $conn_root);
+ − 222
if ( !$q )
+ − 223
{
+ − 224
return false;
+ − 225
}
+ − 226
if ( $_POST['db_host'] != 'localhost' && $_POST['db_host'] != '127.0.0.1' && $_POST['db_host'] != '::1' )
+ − 227
{
+ − 228
// If not connecting to a server running on localhost, allow from any host
+ − 229
// this is safer than trying to detect the hostname of the webserver, but less secure
+ − 230
$q = @mysql_query("GRANT ALL PRIVILEGES ON test.* TO '{$db_user}'@'%' IDENTIFIED BY '$db_pass' WITH GRANT OPTION;", $conn_root);
+ − 231
if ( !$q )
+ − 232
{
+ − 233
return false;
+ − 234
}
+ − 235
// Revoke privileges from test, we don't need them
+ − 236
$q = @mysql_query("REVOKE ALL PRIVILEGES ON test.* FROM '{$db_user}'@'%';", $conn_root);
+ − 237
if ( !$q )
+ − 238
{
+ − 239
return false;
+ − 240
}
+ − 241
}
258
+ − 242
mysql_close($conn_root);
+ − 243
$conn = @mysql_connect($_POST['db_host'], $_POST['db_user'], $_POST['db_pass']);
+ − 244
if ( !$conn )
+ − 245
{
+ − 246
// This should honestly never happen.
+ − 247
return false;
+ − 248
}
256
+ − 249
}
+ − 250
}
258
+ − 251
$q = @mysql_query("USE `$db_name`;", $conn);
256
+ − 252
if ( !$q )
+ − 253
{
+ − 254
// access denied to the database; try the whole root schenanegan again
+ − 255
if ( !empty($_POST['db_root_user']) && !empty($_POST['db_root_pass']) )
+ − 256
{
+ − 257
$conn_root = @mysql_connect($_POST['db_host'], $_POST['db_root_user'], $_POST['db_root_pass']);
+ − 258
if ( !$conn_root )
+ − 259
{
+ − 260
// Couldn't connect as root; bail out
+ − 261
return false;
+ − 262
}
+ − 263
// create the database, if it doesn't exist
258
+ − 264
$q = @mysql_query("CREATE DATABASE IF NOT EXISTS `$db_name`;", $conn_root);
256
+ − 265
if ( !$q )
+ − 266
{
+ − 267
// this really should never fail, so don't give any tolerance to it
+ − 268
return false;
+ − 269
}
258
+ − 270
unset($db_user, $db_pass);
+ − 271
$db_user = mysql_real_escape_string($_POST['db_user']);
+ − 272
$db_pass = mysql_real_escape_string($_POST['db_pass']);
256
+ − 273
// we're in with root rights; grant access to the database
258
+ − 274
$q = @mysql_query("GRANT ALL PRIVILEGES ON `$db_name`.* TO '{$db_user}'@'localhost';", $conn_root);
256
+ − 275
if ( !$q )
+ − 276
{
+ − 277
return false;
+ − 278
}
+ − 279
if ( $_POST['db_host'] != 'localhost' && $_POST['db_host'] != '127.0.0.1' && $_POST['db_host'] != '::1' )
+ − 280
{
258
+ − 281
$q = @mysql_query("GRANT ALL PRIVILEGES ON `$db_name`.* TO '{$db_user}'@'%';", $conn_root);
256
+ − 282
if ( !$q )
+ − 283
{
+ − 284
return false;
+ − 285
}
+ − 286
}
258
+ − 287
mysql_close($conn_root);
+ − 288
// grant tables have hopefully been flushed, kill and reconnect our regular user connection
+ − 289
mysql_close($conn);
+ − 290
$conn = @mysql_connect($_POST['db_host'], $_POST['db_user'], $_POST['db_pass']);
+ − 291
if ( !$conn )
+ − 292
{
+ − 293
return false;
+ − 294
}
256
+ − 295
}
+ − 296
else
+ − 297
{
+ − 298
return false;
+ − 299
}
+ − 300
// try again
258
+ − 301
$q = @mysql_query("USE `$db_name`;", $conn);
256
+ − 302
if ( !$q )
+ − 303
{
+ − 304
// really failed this time; bail out
+ − 305
return false;
+ − 306
}
+ − 307
}
322
+ − 308
// initialize DBAL
+ − 309
$db->connect(true, $_POST['db_host'], $db_user, $db_pass, $db_name);
+ − 310
// connected and database exists
+ − 311
return true;
+ − 312
}
+ − 313
+ − 314
function stg_pgsql_connect($act_get = false)
+ − 315
{
+ − 316
global $db;
+ − 317
$db = new postgresql();
+ − 318
+ − 319
static $conn = false;
+ − 320
if ( $act_get )
+ − 321
return $conn;
+ − 322
+ − 323
$db_user =& $_POST['db_user'];
+ − 324
$db_pass =& $_POST['db_pass'];
+ − 325
$db_name =& $_POST['db_name'];
+ − 326
+ − 327
if ( !preg_match('/^[a-z0-9_-]+$/', $db_name) )
+ − 328
{
+ − 329
$db_name = htmlspecialchars($db_name);
+ − 330
die("<p>SECURITY: malformed database name \"$db_name\"</p>");
+ − 331
}
+ − 332
+ − 333
// First, try to connect using the normal credentials
+ − 334
$conn = @pg_connect("host={$_POST['db_host']} port=5432 user={$_POST['db_user']} password={$_POST['db_pass']}");
+ − 335
if ( !$conn )
+ − 336
{
+ − 337
// Connection failed. Do we have the root username and password?
+ − 338
if ( !empty($_POST['db_root_user']) && !empty($_POST['db_root_pass']) )
+ − 339
{
+ − 340
$conn_root = @pg_connect("host={$_POST['db_host']} port=5432 user={$_POST['db_root_user']} password={$_POST['db_root_pass']}");
+ − 341
if ( !$conn_root )
+ − 342
{
+ − 343
// Couldn't connect using either set of credentials. Bail out.
+ − 344
return false;
+ − 345
}
+ − 346
unset($db_user, $db_pass);
+ − 347
$db_user = pg_escape_string($_POST['db_user']);
+ − 348
$db_pass = pg_escape_string($_POST['db_pass']);
+ − 349
// Create the user account
+ − 350
$q = @pg_query("CREATE ROLE '$db_user' WITH NOSUPERUSER UNENCRYPTED PASSWORD '$db_pass';", $conn_root);
+ − 351
if ( !$q )
+ − 352
{
+ − 353
return false;
+ − 354
}
+ − 355
pg_close($conn_root);
+ − 356
$conn = @pg_connect("host={$_POST['db_host']} port=5432 user={$_POST['db_user']} password={$_POST['db_pass']}");
+ − 357
if ( !$conn )
+ − 358
{
+ − 359
// This should honestly never happen.
+ − 360
return false;
+ − 361
}
+ − 362
}
+ − 363
}
+ − 364
if ( !$q )
+ − 365
{
+ − 366
// access denied to the database; try the whole root schenanegan again
+ − 367
if ( !empty($_POST['db_root_user']) && !empty($_POST['db_root_pass']) )
+ − 368
{
+ − 369
$conn_root = @pg_connect("host={$_POST['db_host']} port=5432 user={$_POST['db_root_user']} password={$_POST['db_root_pass']}");
+ − 370
if ( !$conn_root )
+ − 371
{
+ − 372
// Couldn't connect as root; bail out
+ − 373
return false;
+ − 374
}
+ − 375
unset($db_user, $db_pass);
+ − 376
$db_user = pg_escape_string($_POST['db_user']);
+ − 377
$db_pass = pg_escape_string($_POST['db_pass']);
+ − 378
// create the database, if it doesn't exist
+ − 379
$q = @mysql_query("CREATE DATABASE $db_name WITH OWNER $db_user;", $conn_root);
+ − 380
if ( !$q )
+ − 381
{
+ − 382
// this really should never fail, so don't give any tolerance to it
+ − 383
return false;
+ − 384
}
+ − 385
// Setting the owner to $db_user should grant all the rights we need
+ − 386
pg_close($conn_root);
+ − 387
// grant tables have hopefully been flushed, kill and reconnect our regular user connection
+ − 388
pg_close($conn);
+ − 389
$conn = @pg_connect("host={$_POST['db_host']} port=5432 user={$_POST['db_user']} password={$_POST['db_pass']}");
+ − 390
if ( !$conn )
+ − 391
{
+ − 392
return false;
+ − 393
}
+ − 394
}
+ − 395
else
+ − 396
{
+ − 397
return false;
+ − 398
}
+ − 399
// try again
+ − 400
$q = @mysql_query("USE `$db_name`;", $conn);
+ − 401
if ( !$q )
+ − 402
{
+ − 403
// really failed this time; bail out
+ − 404
return false;
+ − 405
}
+ − 406
}
+ − 407
// initialize DBAL
+ − 408
$db->connect(true, $_POST['db_host'], $db_user, $db_pass, $db_name);
256
+ − 409
// connected and database exists
+ − 410
return true;
+ − 411
}
+ − 412
+ − 413
function stg_drop_tables()
+ − 414
{
322
+ − 415
global $db;
256
+ − 416
// Our list of tables included in Enano
272
e0ec986c0af3
Searching sucks, and Enano's search algorithm was complete bullcrap. So I rewrote it. No, it does not use Google search technology. Like they have a patent for using the Arial font on search result pages anyway.
Dan
diff
changeset
+ − 417
$tables = Array( 'categories', 'comments', 'config', 'logs', 'page_text', 'session_keys', 'pages', 'users', 'users_extra', 'themes', 'buddies', 'banlist', 'files', 'privmsgs', 'sidebar', 'hits', 'search_index', 'groups', 'group_members', 'acl', 'tags', 'page_groups', 'page_group_members' );
256
+ − 418
+ − 419
// Drop each table individually; if it fails, it probably means we're trying to drop a
+ − 420
// table that didn't exist in the Enano version we're deleting the database for.
+ − 421
foreach ( $tables as $table )
+ − 422
{
+ − 423
// Remember that table_prefix is sanitized.
+ − 424
$table = "{$_POST['table_prefix']}$table";
322
+ − 425
$db->sql_query("DROP TABLE $table;", $conn);
256
+ − 426
}
+ − 427
return true;
+ − 428
}
+ − 429
+ − 430
function stg_decrypt_admin_pass($act_get = false)
+ − 431
{
+ − 432
static $decrypted_pass = false;
+ − 433
if ( $act_get )
+ − 434
return $decrypted_pass;
+ − 435
286
b2f985e4cef3
Fixed a number of issues with SQL query readability and some undefined index-ish errors; consequently the SQL report feature was added
Dan
diff
changeset
+ − 436
$aes = AESCrypt::singleton(AES_BITS, AES_BLOCKSIZE);
256
+ − 437
+ − 438
if ( !empty($_POST['crypt_data']) )
+ − 439
{
+ − 440
require('config.new.php');
+ − 441
if ( !isset($cryptkey) )
+ − 442
{
+ − 443
return false;
+ − 444
}
+ − 445
define('_INSTRESUME_AES_KEYBACKUP', $key);
+ − 446
$key = hexdecode($cryptkey);
+ − 447
+ − 448
$decrypted_pass = $aes->decrypt($_POST['crypt_data'], $key, ENC_HEX);
+ − 449
+ − 450
}
+ − 451
else
+ − 452
{
+ − 453
$decrypted_pass = $_POST['admin_pass'];
+ − 454
}
+ − 455
if ( empty($decrypted_pass) )
+ − 456
return false;
+ − 457
return true;
+ − 458
}
+ − 459
+ − 460
function stg_generate_aes_key($act_get = false)
+ − 461
{
+ − 462
static $key = false;
+ − 463
if ( $act_get )
+ − 464
return $key;
+ − 465
286
b2f985e4cef3
Fixed a number of issues with SQL query readability and some undefined index-ish errors; consequently the SQL report feature was added
Dan
diff
changeset
+ − 466
$aes = AESCrypt::singleton(AES_BITS, AES_BLOCKSIZE);
256
+ − 467
$key = $aes->gen_readymade_key();
+ − 468
return true;
+ − 469
}
+ − 470
+ − 471
function stg_parse_schema($act_get = false)
+ − 472
{
+ − 473
static $schema;
+ − 474
if ( $act_get )
+ − 475
return $schema;
+ − 476
322
+ − 477
global $db;
+ − 478
256
+ − 479
$admin_pass = stg_decrypt_admin_pass(true);
+ − 480
$key = stg_generate_aes_key(true);
286
b2f985e4cef3
Fixed a number of issues with SQL query readability and some undefined index-ish errors; consequently the SQL report feature was added
Dan
diff
changeset
+ − 481
$aes = AESCrypt::singleton(AES_BITS, AES_BLOCKSIZE);
256
+ − 482
$key = $aes->hextostring($key);
+ − 483
$admin_pass = $aes->encrypt($admin_pass, $key, ENC_HEX);
+ − 484
+ − 485
$cacheonoff = is_writable(ENANO_ROOT.'/cache/') ? '1' : '0';
+ − 486
270
5bcdee999015
Major fixes to the ban system - large IP match lists don't slow down the server miserably anymore.
Dan
diff
changeset
+ − 487
$admin_user = $_POST['admin_user'];
5bcdee999015
Major fixes to the ban system - large IP match lists don't slow down the server miserably anymore.
Dan
diff
changeset
+ − 488
$admin_user = str_replace('_', ' ', $admin_user);
322
+ − 489
$admin_user = $db->escape($admin_user);
+ − 490
+ − 491
switch ( $_POST['db_driver'] )
+ − 492
{
+ − 493
case 'mysql':
+ − 494
$schema_file = 'schema.sql';
+ − 495
break;
+ − 496
case 'postgresql':
+ − 497
$schema_file = 'schema-pg.sql';
+ − 498
break;
+ − 499
}
270
5bcdee999015
Major fixes to the ban system - large IP match lists don't slow down the server miserably anymore.
Dan
diff
changeset
+ − 500
322
+ − 501
if ( !isset($schema_file) )
+ − 502
die('insanity');
+ − 503
+ − 504
$schema = file_get_contents($schema_file);
+ − 505
$schema = str_replace('{{SITE_NAME}}', $db->escape($_POST['sitename'] ), $schema);
+ − 506
$schema = str_replace('{{SITE_DESC}}', $db->escape($_POST['sitedesc'] ), $schema);
+ − 507
$schema = str_replace('{{COPYRIGHT}}', $db->escape($_POST['copyright'] ), $schema);
270
5bcdee999015
Major fixes to the ban system - large IP match lists don't slow down the server miserably anymore.
Dan
diff
changeset
+ − 508
$schema = str_replace('{{ADMIN_USER}}', $admin_user , $schema);
322
+ − 509
$schema = str_replace('{{ADMIN_PASS}}', $db->escape($admin_pass ), $schema);
+ − 510
$schema = str_replace('{{ADMIN_EMAIL}}', $db->escape($_POST['admin_email']), $schema);
+ − 511
$schema = str_replace('{{ENABLE_CACHE}}', $db->escape($cacheonoff ), $schema);
256
+ − 512
$schema = str_replace('{{REAL_NAME}}', '', $schema);
+ − 513
$schema = str_replace('{{TABLE_PREFIX}}', $_POST['table_prefix'], $schema);
+ − 514
$schema = str_replace('{{VERSION}}', ENANO_VERSION, $schema);
+ − 515
$schema = str_replace('{{ADMIN_EMBED_PHP}}', $_POST['admin_embed_php'], $schema);
+ − 516
// Not anymore!! :-D
+ − 517
// $schema = str_replace('{{BETA_VERSION}}', ENANO_BETA_VERSION, $schema);
+ − 518
+ − 519
if(isset($_POST['wiki_mode']))
+ − 520
{
+ − 521
$schema = str_replace('{{WIKI_MODE}}', '1', $schema);
+ − 522
}
+ − 523
else
+ − 524
{
+ − 525
$schema = str_replace('{{WIKI_MODE}}', '0', $schema);
+ − 526
}
+ − 527
+ − 528
// Build an array of queries
+ − 529
$schema = explode("\n", $schema);
+ − 530
+ − 531
foreach ( $schema as $i => $sql )
+ − 532
{
+ − 533
$query =& $schema[$i];
+ − 534
$t = trim($query);
+ − 535
if ( empty($t) || preg_match('/^(\#|--)/i', $t) )
+ − 536
{
+ − 537
unset($schema[$i]);
+ − 538
unset($query);
+ − 539
}
+ − 540
}
+ − 541
+ − 542
$schema = array_values($schema);
+ − 543
$schema = implode("\n", $schema);
+ − 544
$schema = explode(";\n", $schema);
+ − 545
+ − 546
foreach ( $schema as $i => $sql )
+ − 547
{
+ − 548
$query =& $schema[$i];
+ − 549
if ( substr($query, ( strlen($query) - 1 ), 1 ) != ';' )
+ − 550
{
+ − 551
$query .= ';';
+ − 552
}
+ − 553
}
+ − 554
+ − 555
return true;
+ − 556
}
+ − 557
+ − 558
function stg_install($_unused, $already_run)
+ − 559
{
+ − 560
// This one's pretty easy.
+ − 561
$conn = stg_mysql_connect(true);
+ − 562
if ( !is_resource($conn) )
+ − 563
return false;
+ − 564
$schema = stg_parse_schema(true);
+ − 565
if ( !is_array($schema) )
+ − 566
return false;
+ − 567
+ − 568
// If we're resuming installation, the encryption key was regenerated.
+ − 569
// This means we'll have to update the encrypted password in the database.
+ − 570
if ( $already_run )
+ − 571
{
+ − 572
$admin_pass = stg_decrypt_admin_pass(true);
+ − 573
$key = stg_generate_aes_key(true);
286
b2f985e4cef3
Fixed a number of issues with SQL query readability and some undefined index-ish errors; consequently the SQL report feature was added
Dan
diff
changeset
+ − 574
$aes = AESCrypt::singleton(AES_BITS, AES_BLOCKSIZE);
256
+ − 575
$key = $aes->hextostring($key);
+ − 576
$admin_pass = $aes->encrypt($admin_pass, $key, ENC_HEX);
+ − 577
$admin_user = mysql_real_escape_string($_POST['admin_user']);
270
5bcdee999015
Major fixes to the ban system - large IP match lists don't slow down the server miserably anymore.
Dan
diff
changeset
+ − 578
$admin_user = str_replace('_', ' ', $admin_user);
256
+ − 579
+ − 580
$q = @mysql_query("UPDATE {$_POST['table_prefix']}users SET password='$admin_pass' WHERE username='$admin_user';");
+ − 581
if ( !$q )
+ − 582
{
+ − 583
echo '<p><tt>MySQL return: ' . mysql_error() . '</tt></p>';
+ − 584
return false;
+ − 585
}
+ − 586
+ − 587
return true;
+ − 588
}
+ − 589
+ − 590
// OK, do the loop, baby!!!
+ − 591
foreach($schema as $q)
+ − 592
{
+ − 593
$r = mysql_query($q, $conn);
+ − 594
if ( !$r )
+ − 595
{
+ − 596
echo '<p><tt>MySQL return: ' . mysql_error() . '</tt></p>';
+ − 597
return false;
+ − 598
}
+ − 599
}
+ − 600
+ − 601
return true;
+ − 602
}
+ − 603
+ − 604
function stg_write_config()
+ − 605
{
+ − 606
$privkey = stg_generate_aes_key(true);
+ − 607
+ − 608
switch($_POST['urlscheme'])
+ − 609
{
+ − 610
case "ugly":
+ − 611
default:
+ − 612
$cp = scriptPath.'/index.php?title=';
+ − 613
break;
+ − 614
case "short":
+ − 615
$cp = scriptPath.'/index.php/';
+ − 616
break;
+ − 617
case "tiny":
+ − 618
$cp = scriptPath.'/';
+ − 619
break;
+ − 620
}
+ − 621
+ − 622
if ( $_POST['urlscheme'] == 'tiny' )
+ − 623
{
+ − 624
$contents = '# Begin Enano rules
+ − 625
RewriteEngine on
+ − 626
RewriteCond %{REQUEST_FILENAME} !-d
+ − 627
RewriteCond %{REQUEST_FILENAME} !-f
+ − 628
RewriteRule ^(.+) '.scriptPath.'/index.php?title=$1 [L,QSA]
+ − 629
RewriteRule \.(php|html|gif|jpg|png|css|js)$ - [L]
+ − 630
# End Enano rules
+ − 631
';
+ − 632
if ( file_exists('./.htaccess') )
+ − 633
$ht = fopen(ENANO_ROOT.'/.htaccess', 'a+');
+ − 634
else
+ − 635
$ht = fopen(ENANO_ROOT.'/.htaccess.new', 'w');
+ − 636
if ( !$ht )
+ − 637
return false;
+ − 638
fwrite($ht, $contents);
+ − 639
fclose($ht);
+ − 640
}
+ − 641
+ − 642
$config_file = '<?php
+ − 643
/* Enano auto-generated configuration file - editing not recommended! */
+ − 644
$dbhost = \''.addslashes($_POST['db_host']).'\';
+ − 645
$dbname = \''.addslashes($_POST['db_name']).'\';
+ − 646
$dbuser = \''.addslashes($_POST['db_user']).'\';
+ − 647
$dbpasswd = \''.addslashes($_POST['db_pass']).'\';
+ − 648
if ( !defined(\'ENANO_CONSTANTS\') )
+ − 649
{
+ − 650
define(\'ENANO_CONSTANTS\', \'\');
+ − 651
define(\'table_prefix\', \''.addslashes($_POST['table_prefix']).'\');
+ − 652
define(\'scriptPath\', \''.scriptPath.'\');
+ − 653
define(\'contentPath\', \''.$cp.'\');
+ − 654
define(\'ENANO_INSTALLED\', \'true\');
+ − 655
}
+ − 656
$crypto_key = \''.$privkey.'\';
+ − 657
?>';
+ − 658
+ − 659
$cf_handle = fopen(ENANO_ROOT.'/config.new.php', 'w');
+ − 660
if ( !$cf_handle )
+ − 661
return false;
+ − 662
fwrite($cf_handle, $config_file);
+ − 663
+ − 664
fclose($cf_handle);
+ − 665
+ − 666
return true;
+ − 667
}
+ − 668
+ − 669
function _stg_rename_config_revert()
+ − 670
{
+ − 671
if ( file_exists('./config.php') )
+ − 672
{
+ − 673
@rename('./config.php', './config.new.php');
+ − 674
}
+ − 675
+ − 676
$handle = @fopen('./config.php.new', 'w');
+ − 677
if ( !$handle )
+ − 678
return false;
+ − 679
$contents = '<?php $cryptkey = \'' . _INSTRESUME_AES_KEYBACKUP . '\'; ?>';
+ − 680
fwrite($handle, $contents);
+ − 681
fclose($handle);
+ − 682
return true;
+ − 683
}
+ − 684
272
e0ec986c0af3
Searching sucks, and Enano's search algorithm was complete bullcrap. So I rewrote it. No, it does not use Google search technology. Like they have a patent for using the Arial font on search result pages anyway.
Dan
diff
changeset
+ − 685
function stg_build_index()
e0ec986c0af3
Searching sucks, and Enano's search algorithm was complete bullcrap. So I rewrote it. No, it does not use Google search technology. Like they have a patent for using the Arial font on search result pages anyway.
Dan
diff
changeset
+ − 686
{
e0ec986c0af3
Searching sucks, and Enano's search algorithm was complete bullcrap. So I rewrote it. No, it does not use Google search technology. Like they have a patent for using the Arial font on search result pages anyway.
Dan
diff
changeset
+ − 687
global $db, $session, $paths, $template, $plugins; // Common objects;
e0ec986c0af3
Searching sucks, and Enano's search algorithm was complete bullcrap. So I rewrote it. No, it does not use Google search technology. Like they have a patent for using the Arial font on search result pages anyway.
Dan
diff
changeset
+ − 688
if ( $paths->rebuild_search_index() )
e0ec986c0af3
Searching sucks, and Enano's search algorithm was complete bullcrap. So I rewrote it. No, it does not use Google search technology. Like they have a patent for using the Arial font on search result pages anyway.
Dan
diff
changeset
+ − 689
return true;
e0ec986c0af3
Searching sucks, and Enano's search algorithm was complete bullcrap. So I rewrote it. No, it does not use Google search technology. Like they have a patent for using the Arial font on search result pages anyway.
Dan
diff
changeset
+ − 690
return false;
e0ec986c0af3
Searching sucks, and Enano's search algorithm was complete bullcrap. So I rewrote it. No, it does not use Google search technology. Like they have a patent for using the Arial font on search result pages anyway.
Dan
diff
changeset
+ − 691
}
e0ec986c0af3
Searching sucks, and Enano's search algorithm was complete bullcrap. So I rewrote it. No, it does not use Google search technology. Like they have a patent for using the Arial font on search result pages anyway.
Dan
diff
changeset
+ − 692
256
+ − 693
function stg_rename_config()
+ − 694
{
+ − 695
if ( !@rename('./config.new.php', './config.php') )
+ − 696
{
+ − 697
echo '<p>Can\'t rename config.php</p>';
+ − 698
_stg_rename_config_revert();
+ − 699
return false;
+ − 700
}
+ − 701
+ − 702
if ( $_POST['urlscheme'] == 'tiny' && !file_exists('./.htaccess') )
+ − 703
{
+ − 704
if ( !@rename('./.htaccess.new', './.htaccess') )
+ − 705
{
+ − 706
echo '<p>Can\'t rename .htaccess</p>';
+ − 707
_stg_rename_config_revert();
+ − 708
return false;
+ − 709
}
+ − 710
}
+ − 711
return true;
+ − 712
}
+ − 713
+ − 714
function stg_start_api_success()
+ − 715
{
+ − 716
return true;
+ − 717
}
+ − 718
+ − 719
function stg_start_api_failure()
+ − 720
{
+ − 721
return false;
+ − 722
}
+ − 723
+ − 724
function stg_init_logs()
+ − 725
{
+ − 726
global $db, $session, $paths, $template, $plugins; // Common objects
+ − 727
+ − 728
$q = $db->sql_query('INSERT INTO ' . table_prefix . 'logs(log_type,action,time_id,date_string,author,page_text,edit_summary) VALUES(\'security\', \'install_enano\', ' . time() . ', \'' . date('d M Y h:i a') . '\', \'' . mysql_real_escape_string($_POST['admin_user']) . '\', \'' . mysql_real_escape_string(ENANO_VERSION) . '\', \'' . mysql_real_escape_string($_SERVER['REMOTE_ADDR']) . '\');');
+ − 729
if ( !$q )
+ − 730
{
+ − 731
echo '<p><tt>MySQL return: ' . mysql_error() . '</tt></p>';
+ − 732
return false;
+ − 733
}
+ − 734
+ − 735
if ( !$session->get_permissions('clear_logs') )
+ − 736
{
+ − 737
echo '<p><tt>$session: denied clear_logs</tt></p>';
+ − 738
return false;
+ − 739
}
+ − 740
+ − 741
PageUtils::flushlogs('Main_Page', 'Article');
+ − 742
+ − 743
return true;
+ − 744
}
+ − 745
+ − 746
//die('Key size: ' . AES_BITS . '<br />Block size: ' . AES_BLOCKSIZE);
+ − 747
+ − 748
if(!function_exists('wikiFormat'))
+ − 749
{
+ − 750
function wikiFormat($message, $filter_links = true)
+ − 751
{
+ − 752
$wiki = & Text_Wiki::singleton('Mediawiki');
+ − 753
$wiki->setRenderConf('Xhtml', 'code', 'css_filename', 'codefilename');
+ − 754
$wiki->setRenderConf('Xhtml', 'wikilink', 'view_url', contentPath);
+ − 755
$result = $wiki->transform($message, 'Xhtml');
+ − 756
+ − 757
// HTML fixes
+ − 758
$result = preg_replace('#<tr>([\s]*?)<\/tr>#is', '', $result);
+ − 759
$result = preg_replace('#<p>([\s]*?)<\/p>#is', '', $result);
+ − 760
$result = preg_replace('#<br />([\s]*?)<table#is', '<table', $result);
+ − 761
+ − 762
return $result;
+ − 763
}
+ − 764
}
+ − 765
+ − 766
global $failed, $warned;
+ − 767
+ − 768
$failed = false;
+ − 769
$warned = false;
+ − 770
+ − 771
function not($var)
+ − 772
{
+ − 773
if($var)
+ − 774
{
+ − 775
return false;
+ − 776
}
+ − 777
else
+ − 778
{
+ − 779
return true;
+ − 780
}
+ − 781
}
+ − 782
+ − 783
function run_test($code, $desc, $extended_desc, $warn = false)
+ − 784
{
+ − 785
global $failed, $warned;
+ − 786
static $cv = true;
+ − 787
$cv = not($cv);
+ − 788
$val = eval($code);
+ − 789
if($val)
+ − 790
{
+ − 791
if($cv) $color='CCFFCC'; else $color='AAFFAA';
322
+ − 792
echo "<tr><td style='background-color: #$color; width: 500px; padding: 5px;'>$desc</td><td style='padding-left: 10px;'><img alt='Test passed' src='images/good.gif' /></td></tr>";
256
+ − 793
} elseif(!$val && $warn) {
+ − 794
if($cv) $color='FFFFCC'; else $color='FFFFAA';
322
+ − 795
echo "<tr><td style='background-color: #$color; width: 500px; padding: 5px;'>$desc<br /><b>$extended_desc</b></td><td style='padding-left: 10px;'><img alt='Test passed with warning' src='images/unknown.gif' /></td></tr>";
256
+ − 796
$warned = true;
+ − 797
} else {
+ − 798
if($cv) $color='FFCCCC'; else $color='FFAAAA';
322
+ − 799
echo "<tr><td style='background-color: #$color; width: 500px; padding: 5px;'>$desc<br /><b>$extended_desc</b></td><td style='padding-left: 10px;'><img alt='Test failed' src='images/bad.gif' /></td></tr>";
256
+ − 800
$failed = true;
+ − 801
}
+ − 802
}
+ − 803
function is_apache() { $r = strstr($_SERVER['SERVER_SOFTWARE'], 'Apache') ? true : false; return $r; }
+ − 804
276
acfdccf7a2bf
Re-sync Oxygen and Mint and Oxygen simple with Oxygen main; a couple improvements to the redirect-on-no-config code
Dan
diff
changeset
+ − 805
function show_license($fb = false)
acfdccf7a2bf
Re-sync Oxygen and Mint and Oxygen simple with Oxygen main; a couple improvements to the redirect-on-no-config code
Dan
diff
changeset
+ − 806
{
acfdccf7a2bf
Re-sync Oxygen and Mint and Oxygen simple with Oxygen main; a couple improvements to the redirect-on-no-config code
Dan
diff
changeset
+ − 807
?>
acfdccf7a2bf
Re-sync Oxygen and Mint and Oxygen simple with Oxygen main; a couple improvements to the redirect-on-no-config code
Dan
diff
changeset
+ − 808
<div style="height: 500px; clip: rect(0px,auto,500px,auto); overflow: auto; padding: 10px; border: 1px dashed #456798; margin: 1em;">
acfdccf7a2bf
Re-sync Oxygen and Mint and Oxygen simple with Oxygen main; a couple improvements to the redirect-on-no-config code
Dan
diff
changeset
+ − 809
<h2>GNU General Public License</h2>
acfdccf7a2bf
Re-sync Oxygen and Mint and Oxygen simple with Oxygen main; a couple improvements to the redirect-on-no-config code
Dan
diff
changeset
+ − 810
acfdccf7a2bf
Re-sync Oxygen and Mint and Oxygen simple with Oxygen main; a couple improvements to the redirect-on-no-config code
Dan
diff
changeset
+ − 811
<h3>Declaration of license usage</h3>
acfdccf7a2bf
Re-sync Oxygen and Mint and Oxygen simple with Oxygen main; a couple improvements to the redirect-on-no-config code
Dan
diff
changeset
+ − 812
<p>Enano is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version.</p>
acfdccf7a2bf
Re-sync Oxygen and Mint and Oxygen simple with Oxygen main; a couple improvements to the redirect-on-no-config code
Dan
diff
changeset
+ − 813
<p>This program is distributed in the hope that it will be useful, but <u>without any warranty</u>; without even the implied warranty of <u>merchantability</u> or <u>fitness for a particular purpose</u>. See the GNU General Public License (below) for more details.</p>
acfdccf7a2bf
Re-sync Oxygen and Mint and Oxygen simple with Oxygen main; a couple improvements to the redirect-on-no-config code
Dan
diff
changeset
+ − 814
<p><b>By clicking the button below or otherwise continuing the installation, you indicate your acceptance of this license agreement.</b></p>
acfdccf7a2bf
Re-sync Oxygen and Mint and Oxygen simple with Oxygen main; a couple improvements to the redirect-on-no-config code
Dan
diff
changeset
+ − 815
acfdccf7a2bf
Re-sync Oxygen and Mint and Oxygen simple with Oxygen main; a couple improvements to the redirect-on-no-config code
Dan
diff
changeset
+ − 816
<h3>Human-readable version</h3>
acfdccf7a2bf
Re-sync Oxygen and Mint and Oxygen simple with Oxygen main; a couple improvements to the redirect-on-no-config code
Dan
diff
changeset
+ − 817
<p>Enano is distributed under certain licensing terms that we believe make it of the greatest possible use to the public. The license we distribute it under, the GNU General Public License, provides certain terms and conditions that, rather than limit your use of Enano, allow you to get the most out of it. If you would like to read the full text, it can be found below. Here is a human-readable version that we think is a little easier to understand.</p>
acfdccf7a2bf
Re-sync Oxygen and Mint and Oxygen simple with Oxygen main; a couple improvements to the redirect-on-no-config code
Dan
diff
changeset
+ − 818
acfdccf7a2bf
Re-sync Oxygen and Mint and Oxygen simple with Oxygen main; a couple improvements to the redirect-on-no-config code
Dan
diff
changeset
+ − 819
<ul>
acfdccf7a2bf
Re-sync Oxygen and Mint and Oxygen simple with Oxygen main; a couple improvements to the redirect-on-no-config code
Dan
diff
changeset
+ − 820
<li>You may to run Enano for any purpose.</li>
acfdccf7a2bf
Re-sync Oxygen and Mint and Oxygen simple with Oxygen main; a couple improvements to the redirect-on-no-config code
Dan
diff
changeset
+ − 821
<li>You may study how Enano works and adapt it to your needs.</li>
acfdccf7a2bf
Re-sync Oxygen and Mint and Oxygen simple with Oxygen main; a couple improvements to the redirect-on-no-config code
Dan
diff
changeset
+ − 822
<li>You may redistribute copies so you can help your neighbor.</li>
acfdccf7a2bf
Re-sync Oxygen and Mint and Oxygen simple with Oxygen main; a couple improvements to the redirect-on-no-config code
Dan
diff
changeset
+ − 823
<li>You may improve Enano and release your improvements to the public, so that the whole community benefits.</li>
acfdccf7a2bf
Re-sync Oxygen and Mint and Oxygen simple with Oxygen main; a couple improvements to the redirect-on-no-config code
Dan
diff
changeset
+ − 824
</ul>
acfdccf7a2bf
Re-sync Oxygen and Mint and Oxygen simple with Oxygen main; a couple improvements to the redirect-on-no-config code
Dan
diff
changeset
+ − 825
acfdccf7a2bf
Re-sync Oxygen and Mint and Oxygen simple with Oxygen main; a couple improvements to the redirect-on-no-config code
Dan
diff
changeset
+ − 826
<p>You may exercise the freedoms specified here provided that you comply with the express conditions of this license. The principal conditions are:</p>
acfdccf7a2bf
Re-sync Oxygen and Mint and Oxygen simple with Oxygen main; a couple improvements to the redirect-on-no-config code
Dan
diff
changeset
+ − 827
acfdccf7a2bf
Re-sync Oxygen and Mint and Oxygen simple with Oxygen main; a couple improvements to the redirect-on-no-config code
Dan
diff
changeset
+ − 828
<ul>
acfdccf7a2bf
Re-sync Oxygen and Mint and Oxygen simple with Oxygen main; a couple improvements to the redirect-on-no-config code
Dan
diff
changeset
+ − 829
<li>You must conspicuously and appropriately publish on each copy distributed an appropriate copyright notice and disclaimer of warranty and keep intact all the notices that refer to this License and to the absence of any warranty; and give any other recipients of Enano a copy of the GNU General Public License along with Enano. Any translation of the GNU General Public License must be accompanied by the GNU General Public License.</li>
acfdccf7a2bf
Re-sync Oxygen and Mint and Oxygen simple with Oxygen main; a couple improvements to the redirect-on-no-config code
Dan
diff
changeset
+ − 830
<li>If you modify your copy or copies of Enano or any portion of it, or develop a program based upon it, you may distribute the resulting work provided you do so under the GNU General Public License. Any translation of the GNU General Public License must be accompanied by the GNU General Public License.</li>
acfdccf7a2bf
Re-sync Oxygen and Mint and Oxygen simple with Oxygen main; a couple improvements to the redirect-on-no-config code
Dan
diff
changeset
+ − 831
<li>If you copy or distribute Enano, you must accompany it with the complete corresponding machine-readable source code or with a written offer, valid for at least three years, to furnish the complete corresponding machine-readable source code.</li>
acfdccf7a2bf
Re-sync Oxygen and Mint and Oxygen simple with Oxygen main; a couple improvements to the redirect-on-no-config code
Dan
diff
changeset
+ − 832
</ul>
acfdccf7a2bf
Re-sync Oxygen and Mint and Oxygen simple with Oxygen main; a couple improvements to the redirect-on-no-config code
Dan
diff
changeset
+ − 833
acfdccf7a2bf
Re-sync Oxygen and Mint and Oxygen simple with Oxygen main; a couple improvements to the redirect-on-no-config code
Dan
diff
changeset
+ − 834
<p><b>Disclaimer</b>: The above text is not a license. It is simply a handy reference for understanding the Legal Code (the full license) – it is a human-readable expression of some of its key terms. Think of it as the user-friendly interface to the Legal Code beneath. The above text itself has no legal value, and its contents do not appear in the actual license.<br /><span style="color: #CCC">Text copied from the <a href="http://creativecommons.org/licenses/GPL/2.0/">Creative Commons GPL Deed page</a></span></p>
acfdccf7a2bf
Re-sync Oxygen and Mint and Oxygen simple with Oxygen main; a couple improvements to the redirect-on-no-config code
Dan
diff
changeset
+ − 835
<?php
acfdccf7a2bf
Re-sync Oxygen and Mint and Oxygen simple with Oxygen main; a couple improvements to the redirect-on-no-config code
Dan
diff
changeset
+ − 836
if ( defined('ENANO_BETA_VERSION') )
acfdccf7a2bf
Re-sync Oxygen and Mint and Oxygen simple with Oxygen main; a couple improvements to the redirect-on-no-config code
Dan
diff
changeset
+ − 837
{
acfdccf7a2bf
Re-sync Oxygen and Mint and Oxygen simple with Oxygen main; a couple improvements to the redirect-on-no-config code
Dan
diff
changeset
+ − 838
?>
acfdccf7a2bf
Re-sync Oxygen and Mint and Oxygen simple with Oxygen main; a couple improvements to the redirect-on-no-config code
Dan
diff
changeset
+ − 839
<h3>Notice for prerelease versions</h3>
acfdccf7a2bf
Re-sync Oxygen and Mint and Oxygen simple with Oxygen main; a couple improvements to the redirect-on-no-config code
Dan
diff
changeset
+ − 840
<p>This version of Enano is designed only for testing and evaluation purposes. <b>It is not yet completely stable, and should not be used on production websites.</b> As with any Enano version, Dan Fuhry and the Enano team cannot be responsible for any damage, physical or otherwise, to any property as a result of the use of Enano. While security is a number one priority, sometimes things slip through.</p>
acfdccf7a2bf
Re-sync Oxygen and Mint and Oxygen simple with Oxygen main; a couple improvements to the redirect-on-no-config code
Dan
diff
changeset
+ − 841
<?php
acfdccf7a2bf
Re-sync Oxygen and Mint and Oxygen simple with Oxygen main; a couple improvements to the redirect-on-no-config code
Dan
diff
changeset
+ − 842
}
acfdccf7a2bf
Re-sync Oxygen and Mint and Oxygen simple with Oxygen main; a couple improvements to the redirect-on-no-config code
Dan
diff
changeset
+ − 843
?>
acfdccf7a2bf
Re-sync Oxygen and Mint and Oxygen simple with Oxygen main; a couple improvements to the redirect-on-no-config code
Dan
diff
changeset
+ − 844
<h3>Lawyer-readable version</h3>
acfdccf7a2bf
Re-sync Oxygen and Mint and Oxygen simple with Oxygen main; a couple improvements to the redirect-on-no-config code
Dan
diff
changeset
+ − 845
<?php echo wikiFormat(file_get_contents(ENANO_ROOT . '/GPL')); ?>
acfdccf7a2bf
Re-sync Oxygen and Mint and Oxygen simple with Oxygen main; a couple improvements to the redirect-on-no-config code
Dan
diff
changeset
+ − 846
<?php
acfdccf7a2bf
Re-sync Oxygen and Mint and Oxygen simple with Oxygen main; a couple improvements to the redirect-on-no-config code
Dan
diff
changeset
+ − 847
global $template;
acfdccf7a2bf
Re-sync Oxygen and Mint and Oxygen simple with Oxygen main; a couple improvements to the redirect-on-no-config code
Dan
diff
changeset
+ − 848
if ( $fb )
acfdccf7a2bf
Re-sync Oxygen and Mint and Oxygen simple with Oxygen main; a couple improvements to the redirect-on-no-config code
Dan
diff
changeset
+ − 849
{
acfdccf7a2bf
Re-sync Oxygen and Mint and Oxygen simple with Oxygen main; a couple improvements to the redirect-on-no-config code
Dan
diff
changeset
+ − 850
echo '<p style="text-align: center;">Because I could never find the Create a Page button in PHP-Nuke.</p>';
acfdccf7a2bf
Re-sync Oxygen and Mint and Oxygen simple with Oxygen main; a couple improvements to the redirect-on-no-config code
Dan
diff
changeset
+ − 851
echo '<p>' . str_replace('http://enanocms.org/', 'http://www.2robots.com/2003/10/15/web-portals-suck/', $template->fading_button) . '</p>';
acfdccf7a2bf
Re-sync Oxygen and Mint and Oxygen simple with Oxygen main; a couple improvements to the redirect-on-no-config code
Dan
diff
changeset
+ − 852
echo '<p style="text-align: center;">It\'s not a portal, my friends.</p>';
acfdccf7a2bf
Re-sync Oxygen and Mint and Oxygen simple with Oxygen main; a couple improvements to the redirect-on-no-config code
Dan
diff
changeset
+ − 853
}
acfdccf7a2bf
Re-sync Oxygen and Mint and Oxygen simple with Oxygen main; a couple improvements to the redirect-on-no-config code
Dan
diff
changeset
+ − 854
?>
acfdccf7a2bf
Re-sync Oxygen and Mint and Oxygen simple with Oxygen main; a couple improvements to the redirect-on-no-config code
Dan
diff
changeset
+ − 855
</div>
acfdccf7a2bf
Re-sync Oxygen and Mint and Oxygen simple with Oxygen main; a couple improvements to the redirect-on-no-config code
Dan
diff
changeset
+ − 856
<?php
acfdccf7a2bf
Re-sync Oxygen and Mint and Oxygen simple with Oxygen main; a couple improvements to the redirect-on-no-config code
Dan
diff
changeset
+ − 857
}
acfdccf7a2bf
Re-sync Oxygen and Mint and Oxygen simple with Oxygen main; a couple improvements to the redirect-on-no-config code
Dan
diff
changeset
+ − 858
256
+ − 859
require_once('includes/template.php');
+ − 860
+ − 861
if(!isset($_GET['mode'])) $_GET['mode'] = 'welcome';
+ − 862
switch($_GET['mode'])
+ − 863
{
+ − 864
case 'mysql_test':
+ − 865
error_reporting(0);
+ − 866
$dbhost = rawurldecode($_POST['host']);
+ − 867
$dbname = rawurldecode($_POST['name']);
+ − 868
$dbuser = rawurldecode($_POST['user']);
+ − 869
$dbpass = rawurldecode($_POST['pass']);
+ − 870
$dbrootuser = rawurldecode($_POST['root_user']);
+ − 871
$dbrootpass = rawurldecode($_POST['root_pass']);
+ − 872
if($dbrootuser != '')
+ − 873
{
+ − 874
$conn = mysql_connect($dbhost, $dbrootuser, $dbrootpass);
+ − 875
if(!$conn)
+ − 876
{
+ − 877
$e = mysql_error();
+ − 878
if(strstr($e, "Lost connection"))
+ − 879
die('host'.$e);
+ − 880
else
+ − 881
die('root'.$e);
+ − 882
}
+ − 883
$rsp = 'good';
257
+ − 884
$q = mysql_query('USE `' . mysql_real_escape_string($dbname) . '`;', $conn);
256
+ − 885
if(!$q)
+ − 886
{
+ − 887
$e = mysql_error();
+ − 888
if(strstr($e, 'Unknown database'))
+ − 889
{
+ − 890
$rsp .= '_creating_db';
+ − 891
}
+ − 892
}
+ − 893
mysql_close($conn);
+ − 894
$conn = mysql_connect($dbhost, $dbuser, $dbpass);
+ − 895
if(!$conn)
+ − 896
{
+ − 897
$e = mysql_error();
+ − 898
if(strstr($e, "Lost connection"))
+ − 899
die('host'.$e);
+ − 900
else
+ − 901
$rsp .= '_creating_user';
+ − 902
}
+ − 903
mysql_close($conn);
+ − 904
die($rsp);
+ − 905
}
+ − 906
else
+ − 907
{
+ − 908
$conn = mysql_connect($dbhost, $dbuser, $dbpass);
+ − 909
if(!$conn)
+ − 910
{
+ − 911
$e = mysql_error();
+ − 912
if(strstr($e, "Lost connection"))
+ − 913
die('host'.$e);
+ − 914
else
+ − 915
die('auth'.$e);
+ − 916
}
257
+ − 917
$q = mysql_query('USE `' . mysql_real_escape_string($dbname) . '`;', $conn);
256
+ − 918
if(!$q)
+ − 919
{
+ − 920
$e = mysql_error();
+ − 921
if(strstr($e, 'Unknown database'))
+ − 922
{
+ − 923
die('name'.$e);
+ − 924
}
+ − 925
else
+ − 926
{
+ − 927
die('perm'.$e);
+ − 928
}
+ − 929
}
+ − 930
}
+ − 931
$v = mysql_get_server_info();
+ − 932
if(version_compare($v, '4.1.17', '<')) die('vers'.$v);
+ − 933
mysql_close($conn);
+ − 934
die('good');
+ − 935
break;
322
+ − 936
case 'pgsql_test':
+ − 937
error_reporting(0);
+ − 938
$dbhost = rawurldecode($_POST['host']);
+ − 939
$dbname = rawurldecode($_POST['name']);
+ − 940
$dbuser = rawurldecode($_POST['user']);
+ − 941
$dbpass = rawurldecode($_POST['pass']);
+ − 942
$dbrootuser = rawurldecode($_POST['root_user']);
+ − 943
$dbrootpass = rawurldecode($_POST['root_pass']);
+ − 944
if($dbrootuser != '')
+ − 945
{
+ − 946
$conn = @pg_connect("host=$dbhost port=5432 user=$dbuser password=$dbpass dbname=$dbname");
+ − 947
if(!$conn)
+ − 948
{
+ − 949
$e = pg_last_error();
+ − 950
if(strstr($e, "Lost connection"))
+ − 951
die('host'.$e);
+ − 952
else
+ − 953
die('root'.$e);
+ − 954
}
+ − 955
$rsp = 'good';
+ − 956
$q = mysql_query('USE `' . mysql_real_escape_string($dbname) . '`;', $conn);
+ − 957
if(!$q)
+ − 958
{
+ − 959
$e = mysql_error();
+ − 960
if(strstr($e, 'Unknown database'))
+ − 961
{
+ − 962
$rsp .= '_creating_db';
+ − 963
}
+ − 964
}
+ − 965
mysql_close($conn);
+ − 966
$conn = mysql_connect($dbhost, $dbuser, $dbpass);
+ − 967
if(!$conn)
+ − 968
{
+ − 969
$e = mysql_error();
+ − 970
if(strstr($e, "Lost connection"))
+ − 971
die('host'.$e);
+ − 972
else
+ − 973
$rsp .= '_creating_user';
+ − 974
}
+ − 975
mysql_close($conn);
+ − 976
die($rsp);
+ − 977
}
+ − 978
else
+ − 979
{
+ − 980
$conn = mysql_connect($dbhost, $dbuser, $dbpass);
+ − 981
if(!$conn)
+ − 982
{
+ − 983
$e = mysql_error();
+ − 984
if(strstr($e, "Lost connection"))
+ − 985
die('host'.$e);
+ − 986
else
+ − 987
die('auth'.$e);
+ − 988
}
+ − 989
$q = mysql_query('USE `' . mysql_real_escape_string($dbname) . '`;', $conn);
+ − 990
if(!$q)
+ − 991
{
+ − 992
$e = mysql_error();
+ − 993
if(strstr($e, 'Unknown database'))
+ − 994
{
+ − 995
die('name'.$e);
+ − 996
}
+ − 997
else
+ − 998
{
+ − 999
die('perm'.$e);
+ − 1000
}
+ − 1001
}
+ − 1002
}
+ − 1003
$v = mysql_get_server_info();
+ − 1004
if(version_compare($v, '4.1.17', '<')) die('vers'.$v);
+ − 1005
mysql_close($conn);
+ − 1006
die('good');
+ − 1007
break;
256
+ − 1008
case 'pophelp':
+ − 1009
$topic = ( isset($_GET['topic']) ) ? $_GET['topic'] : 'invalid';
+ − 1010
switch($topic)
+ − 1011
{
+ − 1012
case 'admin_embed_php':
+ − 1013
$title = 'Allow administrators to embed PHP';
+ − 1014
$content = '<p>This option allows you to control whether anything between the standard <?php and ?> tags will be treated as
+ − 1015
PHP code by Enano. If this option is enabled, and members of the Administrators group use these tags, Enano will
+ − 1016
execute that code when the page is loaded. There are obvious potential security implications here, which should
+ − 1017
be carefully considered before enabling this option.</p>
+ − 1018
<p>If you are the only administrator of this site, or if you have a high level of trust for those will be administering
+ − 1019
the site with you, you should enable this to allow extreme customization of pages.</p>
+ − 1020
<p>Leave this option off if you are at all concerned about security – if your account is compromised and PHP embedding
+ − 1021
is enabled, an attacker can run arbitrary code on your server! Enabling this will also allow administrators to
+ − 1022
embed Javascript and arbitrary HTML and CSS.</p>
+ − 1023
<p>If you don\'t have experience coding in PHP, you can safely disable this option. You may change this at any time
+ − 1024
using the ACL editor by selecting the Administrators group and This Entire Website under the scope selection. <!-- , or by
+ − 1025
using the "embedded PHP kill switch" in the administration panel. --></p>';
+ − 1026
break;
300
c9e192a059c1
Add installer pop-help topic for URL scheme, in response to http://forum.enanocms.org/viewtopic.php?f=5&t=19
Dan
diff
changeset
+ − 1027
case 'url_schemes':
c9e192a059c1
Add installer pop-help topic for URL scheme, in response to http://forum.enanocms.org/viewtopic.php?f=5&t=19
Dan
diff
changeset
+ − 1028
$title = 'URL schemes';
c9e192a059c1
Add installer pop-help topic for URL scheme, in response to http://forum.enanocms.org/viewtopic.php?f=5&t=19
Dan
diff
changeset
+ − 1029
$content = '<p>The URL scheme allows you to decide how the URLs to your Enano pages will look.</p>
c9e192a059c1
Add installer pop-help topic for URL scheme, in response to http://forum.enanocms.org/viewtopic.php?f=5&t=19
Dan
diff
changeset
+ − 1030
<p>The first option (Standard URLs) works on any web server. You should select it if your server doesn\'t run Apache, or
c9e192a059c1
Add installer pop-help topic for URL scheme, in response to http://forum.enanocms.org/viewtopic.php?f=5&t=19
Dan
diff
changeset
+ − 1031
if you are at all unsure of your server\'s configuration. With this scheme, URLs at your site will look like <tt>
c9e192a059c1
Add installer pop-help topic for URL scheme, in response to http://forum.enanocms.org/viewtopic.php?f=5&t=19
Dan
diff
changeset
+ − 1032
http://yoursite.com/path-to-enano/index.php/Main_Page</tt>.</p>
c9e192a059c1
Add installer pop-help topic for URL scheme, in response to http://forum.enanocms.org/viewtopic.php?f=5&t=19
Dan
diff
changeset
+ − 1033
<p>The second option, Small URLs, will be selected by default if Enano detects Apache. Small URLs are more friendly towards
c9e192a059c1
Add installer pop-help topic for URL scheme, in response to http://forum.enanocms.org/viewtopic.php?f=5&t=19
Dan
diff
changeset
+ − 1034
search engines, but they don\'t work on very many non-Apache servers, or if PHP is set up through CGI on your server. Many
c9e192a059c1
Add installer pop-help topic for URL scheme, in response to http://forum.enanocms.org/viewtopic.php?f=5&t=19
Dan
diff
changeset
+ − 1035
free and low-cost web hosts will configure PHP through CGI in order to keep your user account as the owner of any files that
c9e192a059c1
Add installer pop-help topic for URL scheme, in response to http://forum.enanocms.org/viewtopic.php?f=5&t=19
Dan
diff
changeset
+ − 1036
Enano generates. With this scheme, URLs at your site will look like <tt>http://yoursite.com/path-to-enano/index.php/Main_Page</tt>.
c9e192a059c1
Add installer pop-help topic for URL scheme, in response to http://forum.enanocms.org/viewtopic.php?f=5&t=19
Dan
diff
changeset
+ − 1037
</p>
c9e192a059c1
Add installer pop-help topic for URL scheme, in response to http://forum.enanocms.org/viewtopic.php?f=5&t=19
Dan
diff
changeset
+ − 1038
<p>The last option, Tiny URLs, is the most friendly URL scheme for search engines, because your URLs won\'t have any special characters
c9e192a059c1
Add installer pop-help topic for URL scheme, in response to http://forum.enanocms.org/viewtopic.php?f=5&t=19
Dan
diff
changeset
+ − 1039
at all in them. However, this only works if your webhost has configured Apache with support for mod_rewrite. Most of the time if your
c9e192a059c1
Add installer pop-help topic for URL scheme, in response to http://forum.enanocms.org/viewtopic.php?f=5&t=19
Dan
diff
changeset
+ − 1040
host supports this you will see a listing for it in their feature matrix. None of the popular Linux distributions (such as Ubuntu,
c9e192a059c1
Add installer pop-help topic for URL scheme, in response to http://forum.enanocms.org/viewtopic.php?f=5&t=19
Dan
diff
changeset
+ − 1041
Debian, Red Hat Enterprise Linux™, Fedora, openSUSE™, or CentOS) come with mod_rewrite enabled, so if you run a
c9e192a059c1
Add installer pop-help topic for URL scheme, in response to http://forum.enanocms.org/viewtopic.php?f=5&t=19
Dan
diff
changeset
+ − 1042
home-brew server, you should consult your distribution\'s documentation for enabling mod_rewrite before selecting this option.
c9e192a059c1
Add installer pop-help topic for URL scheme, in response to http://forum.enanocms.org/viewtopic.php?f=5&t=19
Dan
diff
changeset
+ − 1043
With this scheme, URLs at your site will look like <tt>http://yoursite.com/path-to-enano/Main_Page</tt>.</p>
c9e192a059c1
Add installer pop-help topic for URL scheme, in response to http://forum.enanocms.org/viewtopic.php?f=5&t=19
Dan
diff
changeset
+ − 1044
</p>';
c9e192a059c1
Add installer pop-help topic for URL scheme, in response to http://forum.enanocms.org/viewtopic.php?f=5&t=19
Dan
diff
changeset
+ − 1045
break;
256
+ − 1046
default:
+ − 1047
$title = 'Invalid topic';
+ − 1048
$content = 'Invalid help topic.';
+ − 1049
break;
+ − 1050
}
+ − 1051
echo <<<EOF
+ − 1052
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN" "http://www.w3.org/TR/xhtml11/DTD/xhtml11.dtd">
+ − 1053
<html>
+ − 1054
<head>
+ − 1055
<title>Enano installation quick help • {$title}</title>
+ − 1056
<meta http-equiv="Content-type" content="text/html; charset=utf-8" />
+ − 1057
<style type="text/css">
+ − 1058
body {
+ − 1059
font-family: trebuchet ms, verdana, arial, helvetica, sans-serif;
+ − 1060
font-size: 9pt;
+ − 1061
}
+ − 1062
h2 { border-bottom: 1px solid #90B0D0; margin-bottom: 0; }
+ − 1063
h3 { font-size: 11pt; font-weight: bold; }
+ − 1064
li { list-style: url(../images/bullet.gif); }
+ − 1065
p { margin: 1.0em; }
+ − 1066
blockquote { background-color: #F4F4F4; border: 1px dotted #406080; margin: 1em; padding: 10px; max-height: 250px; overflow: auto; }
+ − 1067
a { color: #7090B0; }
+ − 1068
a:hover { color: #90B0D0; }
+ − 1069
</style>
+ − 1070
</head>
+ − 1071
<body>
+ − 1072
<h2>{$title}</h2>
+ − 1073
{$content}
+ − 1074
<p style="text-align: right;">
+ − 1075
<a href="#" onclick="window.close(); return false;">Close window</a>
+ − 1076
</p>
+ − 1077
</body>
+ − 1078
</html>
+ − 1079
EOF;
+ − 1080
exit;
+ − 1081
break;
+ − 1082
default:
+ − 1083
break;
+ − 1084
}
+ − 1085
+ − 1086
$template = new template_nodb();
+ − 1087
$template->load_theme('oxygen', 'bleu', false);
+ − 1088
+ − 1089
$modestrings = Array(
+ − 1090
'welcome' => 'Welcome',
+ − 1091
'license' => 'License Agreement',
+ − 1092
'sysreqs' => 'Server requirements',
322
+ − 1093
'database' => 'Select database driver',
+ − 1094
'database_mysql'=> 'Database information',
+ − 1095
'database_pgsql'=> 'Database information',
256
+ − 1096
'website' => 'Website configuration',
+ − 1097
'login' => 'Administration login',
+ − 1098
'confirm' => 'Confirm installation',
+ − 1099
'install' => 'Database installation',
276
acfdccf7a2bf
Re-sync Oxygen and Mint and Oxygen simple with Oxygen main; a couple improvements to the redirect-on-no-config code
Dan
diff
changeset
+ − 1100
'finish' => 'Installation complete',
acfdccf7a2bf
Re-sync Oxygen and Mint and Oxygen simple with Oxygen main; a couple improvements to the redirect-on-no-config code
Dan
diff
changeset
+ − 1101
'_hiddenstages' => '...', // all stages below this line are hidden
acfdccf7a2bf
Re-sync Oxygen and Mint and Oxygen simple with Oxygen main; a couple improvements to the redirect-on-no-config code
Dan
diff
changeset
+ − 1102
'showlicense' => 'License Agreement'
256
+ − 1103
);
+ − 1104
+ − 1105
$sideinfo = '';
+ − 1106
$vars = $template->extract_vars('elements.tpl');
+ − 1107
$p = $template->makeParserText($vars['sidebar_button']);
276
acfdccf7a2bf
Re-sync Oxygen and Mint and Oxygen simple with Oxygen main; a couple improvements to the redirect-on-no-config code
Dan
diff
changeset
+ − 1108
$hidden = false;
256
+ − 1109
foreach ( $modestrings as $id => $str )
+ − 1110
{
+ − 1111
if ( $_GET['mode'] == $id )
+ − 1112
{
+ − 1113
$flags = 'style="font-weight: bold; text-decoration: underline;"';
+ − 1114
$this_page = $str;
+ − 1115
}
+ − 1116
else
+ − 1117
{
+ − 1118
$flags = '';
+ − 1119
}
276
acfdccf7a2bf
Re-sync Oxygen and Mint and Oxygen simple with Oxygen main; a couple improvements to the redirect-on-no-config code
Dan
diff
changeset
+ − 1120
if ( $id == '_hiddenstages' )
acfdccf7a2bf
Re-sync Oxygen and Mint and Oxygen simple with Oxygen main; a couple improvements to the redirect-on-no-config code
Dan
diff
changeset
+ − 1121
$hidden = true;
acfdccf7a2bf
Re-sync Oxygen and Mint and Oxygen simple with Oxygen main; a couple improvements to the redirect-on-no-config code
Dan
diff
changeset
+ − 1122
if ( !$hidden )
acfdccf7a2bf
Re-sync Oxygen and Mint and Oxygen simple with Oxygen main; a couple improvements to the redirect-on-no-config code
Dan
diff
changeset
+ − 1123
{
acfdccf7a2bf
Re-sync Oxygen and Mint and Oxygen simple with Oxygen main; a couple improvements to the redirect-on-no-config code
Dan
diff
changeset
+ − 1124
$p->assign_vars(Array(
acfdccf7a2bf
Re-sync Oxygen and Mint and Oxygen simple with Oxygen main; a couple improvements to the redirect-on-no-config code
Dan
diff
changeset
+ − 1125
'HREF' => '#',
acfdccf7a2bf
Re-sync Oxygen and Mint and Oxygen simple with Oxygen main; a couple improvements to the redirect-on-no-config code
Dan
diff
changeset
+ − 1126
'FLAGS' => $flags . ' onclick="return false;"',
acfdccf7a2bf
Re-sync Oxygen and Mint and Oxygen simple with Oxygen main; a couple improvements to the redirect-on-no-config code
Dan
diff
changeset
+ − 1127
'TEXT' => $str
acfdccf7a2bf
Re-sync Oxygen and Mint and Oxygen simple with Oxygen main; a couple improvements to the redirect-on-no-config code
Dan
diff
changeset
+ − 1128
));
acfdccf7a2bf
Re-sync Oxygen and Mint and Oxygen simple with Oxygen main; a couple improvements to the redirect-on-no-config code
Dan
diff
changeset
+ − 1129
$sideinfo .= $p->run();
acfdccf7a2bf
Re-sync Oxygen and Mint and Oxygen simple with Oxygen main; a couple improvements to the redirect-on-no-config code
Dan
diff
changeset
+ − 1130
}
256
+ − 1131
}
+ − 1132
+ − 1133
$template->init_vars();
+ − 1134
+ − 1135
if(isset($_GET['mode']) && $_GET['mode'] == 'css')
+ − 1136
{
+ − 1137
header('Content-type: text/css');
+ − 1138
echo $template->get_css();
+ − 1139
exit;
+ − 1140
}
+ − 1141
+ − 1142
$template->header();
276
acfdccf7a2bf
Re-sync Oxygen and Mint and Oxygen simple with Oxygen main; a couple improvements to the redirect-on-no-config code
Dan
diff
changeset
+ − 1143
if ( !isset($_GET['mode']) )
acfdccf7a2bf
Re-sync Oxygen and Mint and Oxygen simple with Oxygen main; a couple improvements to the redirect-on-no-config code
Dan
diff
changeset
+ − 1144
{
acfdccf7a2bf
Re-sync Oxygen and Mint and Oxygen simple with Oxygen main; a couple improvements to the redirect-on-no-config code
Dan
diff
changeset
+ − 1145
$_GET['mode'] = 'welcome';
acfdccf7a2bf
Re-sync Oxygen and Mint and Oxygen simple with Oxygen main; a couple improvements to the redirect-on-no-config code
Dan
diff
changeset
+ − 1146
}
256
+ − 1147
switch($_GET['mode'])
+ − 1148
{
+ − 1149
default:
+ − 1150
case 'welcome':
+ − 1151
?>
+ − 1152
<div style="text-align: center; margin-top: 10px;">
+ − 1153
<img alt="[ Enano CMS Project logo ]" src="images/enano-artwork/installer-greeting-blue.png" style="display: block; margin: 0 auto; padding-left: 100px;" />
+ − 1154
<h2>Welcome to Enano</h2>
317
+ − 1155
<h3>Version 1.0.3 – stable<br />
256
+ − 1156
<span style="font-weight: normal;">also affectionately known as "coblynau" <tt>:)</tt></span></h3>
+ − 1157
<?php
+ − 1158
if ( file_exists('./_nightly.php') )
+ − 1159
{
+ − 1160
echo '<div class="warning-box" style="text-align: left; margin: 10px 0;"><b>You are about to install a NIGHTLY BUILD of Enano.</b><br />Nightly builds are NOT upgradeable and may contain serious flaws, security problems, or extraneous debugging information. Installing this version of Enano on a production site is NOT recommended.</div>';
+ − 1161
}
+ − 1162
?>
+ − 1163
<form action="install.php?mode=license" method="post">
+ − 1164
<input type="submit" value="Start installation" />
+ − 1165
</form>
+ − 1166
</div>
+ − 1167
<?php
+ − 1168
break;
+ − 1169
case "license":
+ − 1170
?>
+ − 1171
<h3>Welcome to the Enano installer.</h3>
+ − 1172
<p>Thank you for choosing Enano as your CMS. You've selected the finest in design, the strongest in security, and the latest in Web 2.0 toys. Trust us, you'll like it.</p>
+ − 1173
<p>To get started, please read and accept the following license agreement. You've probably seen it before.</p>
276
acfdccf7a2bf
Re-sync Oxygen and Mint and Oxygen simple with Oxygen main; a couple improvements to the redirect-on-no-config code
Dan
diff
changeset
+ − 1174
<?php show_license(); ?>
256
+ − 1175
<div class="pagenav">
+ − 1176
<form action="install.php?mode=sysreqs" method="post">
+ − 1177
<table border="0">
+ − 1178
<tr>
+ − 1179
<td><input type="submit" value="I agree to the license terms" /></td><td><p><span style="font-weight: bold;">Before clicking continue:</span><br />• Ensure that you agree with the terms of the license<br />• Have your database host, name, username, and password available</p></td>
+ − 1180
</tr>
+ − 1181
</table>
+ − 1182
</form>
+ − 1183
</div>
+ − 1184
<?php
+ − 1185
break;
+ − 1186
case "sysreqs":
+ − 1187
error_reporting(E_ALL);
+ − 1188
?>
+ − 1189
<h3>Checking your server</h3>
+ − 1190
<p>Enano has several requirements that must be met before it can be installed. If all is good then note any warnings and click Continue below.</p>
+ − 1191
<table border="0" cellspacing="0" cellpadding="0">
+ − 1192
<?php
+ − 1193
run_test('return version_compare(\'4.3.0\', PHP_VERSION, \'<\');', 'PHP Version >=4.3.0', 'It seems that the version of PHP that your server is running is too old to support Enano properly. If this is your server, please upgrade to the most recent version of PHP, remembering to use the --with-mysql configure option if you compile it yourself. If this is not your server, please contact your webhost and ask them if it would be possible to upgrade PHP. If this is not possible, you will need to switch to a different webhost in order to use Enano.');
295
f948557af068
Add warning in installer for PHP < 5.2.0; hopefully fix validation of e-mail addresses with dashes
Dan
diff
changeset
+ − 1194
run_test('return version_compare(\'5.2.0\', PHP_VERSION, \'<\');', 'PHP 5.2.0 or later', 'Your server does not have support for PHP 5.2.0. While you may continue installing Enano, please be warned that as of December 31, 2007, all support for Enano on PHP 4 servers is discontinued. If you have at least PHP 5.0.0, support will still be available, but there are many security problems in PHP versions under 5.2.0 that Enano cannot effectively prevent.', true);
322
+ − 1195
run_test('return function_exists(\'mysql_connect\');', 'MySQL extension for PHP', 'It seems that your PHP installation does not have the MySQL extension enabled. The MySQL database driver will be unavailable. In many cases this is OK if you have another supported database type available. If this is your own server, you may need to just enable the "libmysql.so" extension in php.ini. If you do not have the MySQL extension installed, you will need to either use your distribution\'s package manager to install it, or you will have to compile PHP from source. If you compile PHP from source, please remember to use the "--with-mysql" configure option, and you will have to have the MySQL development files installed (they usually are). If this is not your server, please contact your hosting company and ask them to install the PHP MySQL extension.', true);
+ − 1196
run_test('return function_exists(\'pg_connect\');', 'PostgreSQL extension for PHP', 'It seems that your PHP installation does not have the PostgreSQL extension enabled. Because of this, you won\'t be able to use the PostgreSQL database driver. This is OK in the majority of cases. If you want to use PostgreSQL support, you\'ll need to either compile the PHP extension for Postgres or install the extension with your distribution\'s package manager. Windows administrators will need enable php_pgsql.dll in their php.ini.', true);
256
+ − 1197
run_test('return @ini_get(\'file_uploads\');', 'File upload support', 'It seems that your server does not support uploading files. Enano *requires* this functionality in order to work properly. Please ask your server administrator to set the "file_uploads" option in php.ini to "On".');
+ − 1198
run_test('return is_apache();', 'Apache HTTP Server', 'Apparently your server is running a web server other than Apache. Enano will work nontheless, but there are some known bugs with non-Apache servers, and the "fancy" URLs will not work properly. The "Standard URLs" option will be set on the website configuration page, only change it if you are absolutely certain that your server is running Apache.', true);
+ − 1199
//run_test('return function_exists(\'finfo_file\');', 'Fileinfo PECL extension', 'The MIME magic PHP extension is used to determine the type of a file by looking for a certain "magic" string of characters inside it. This functionality is used by Enano to more effectively prevent malicious file uploads. The MIME magic option will be disabled by default.', true);
+ − 1200
run_test('return is_writable(ENANO_ROOT.\'/config.new.php\');', 'Configuration file writable', 'It looks like the configuration file, config.new.php, is not writable. Enano needs to be able to write to this file in order to install.<br /><br /><b>If you are installing Enano on a SourceForge web site:</b><br />SourceForge mounts the web partitions read-only now, so you will need to use the project shell service to symlink config.php to a file in the /tmp/persistent directory.');
+ − 1201
run_test('return file_exists(\'/usr/bin/convert\');', 'ImageMagick support', 'Enano uses ImageMagick to scale images into thumbnails. Because ImageMagick was not found on your server, Enano will use the width= and height= attributes on the <img> tag to scale images. This can cause somewhat of a performance increase, but bandwidth usage will be higher, especially if you use high-resolution images on your site.<br /><br />If you are sure that you have ImageMagick, you can set the location of the "convert" program using the administration panel after installation is complete.', true);
+ − 1202
run_test('return is_writable(ENANO_ROOT.\'/cache/\');', 'Cache directory writable', 'Apparently the cache/ directory is not writable. Enano will still work, but you will not be able to cache thumbnails, meaning the server will need to re-render them each time they are requested. In some cases, this can cause a significant slowdown.', true);
+ − 1203
run_test('return is_writable(ENANO_ROOT.\'/files/\');', 'File uploads directory writable', 'It seems that the directory where uploaded files are stored (' . ENANO_ROOT . '/files) cannot be written by the server. Enano will still function, but file uploads will not function, and will be disabled by default.', true);
322
+ − 1204
if ( !function_exists('mysql_connect') && !function_exists('pg_connect') )
+ − 1205
{
+ − 1206
run_test('return false;', 'No database drivers are available.', 'You need to have at least one database driver working to install Enano. See the warnings on MySQL and PostgreSQL above for more information on installing these database drivers.', false);
+ − 1207
}
256
+ − 1208
echo '</table>';
+ − 1209
if(!$failed)
+ − 1210
{
+ − 1211
?>
+ − 1212
+ − 1213
<div class="pagenav">
+ − 1214
<?php
+ − 1215
if($warned) {
+ − 1216
echo '<table border="0" cellspacing="0" cellpadding="0">';
295
f948557af068
Add warning in installer for PHP < 5.2.0; hopefully fix validation of e-mail addresses with dashes
Dan
diff
changeset
+ − 1217
run_test('return false;', 'Some of the features of Enano have been turned off to accommodate your server.', 'Enano has detected that some of the features or configuration settings on your server are not optimal for the best behavior and/or performance for Enano. As a result, Enano has disabled these features as a precaution to prevent errors and potential security issues.', true);
256
+ − 1218
echo '</table>';
+ − 1219
} else {
+ − 1220
echo '<table border="0" cellspacing="0" cellpadding="0">';
+ − 1221
run_test('return true;', '<b>Your server meets all the requirements for running Enano.</b><br />Click the button below to continue the installation.', 'You should never see this text. Congratulations for being an Enano hacker!');
+ − 1222
echo '</table>';
+ − 1223
}
+ − 1224
?>
+ − 1225
<form action="install.php?mode=database" method="post">
+ − 1226
<table border="0">
+ − 1227
<tr>
257
+ − 1228
<td><input type="submit" value="Continue" /></td><td><p><span style="font-weight: bold;">Before clicking continue:</span><br />• Ensure that you are satisfied with any scalebacks that may have been made to accomodate your server configuration<br />• Have your database host, name, username, and password available</p></td>
256
+ − 1229
</tr>
+ − 1230
</table>
+ − 1231
</form>
+ − 1232
</div>
+ − 1233
<?php
+ − 1234
} else {
+ − 1235
if($failed) {
+ − 1236
echo '<div class="pagenav"><table border="0" cellspacing="0" cellpadding="0">';
+ − 1237
run_test('return false;', 'Your server does not meet the requirements for Enano to run.', 'As a precaution, Enano will not install until the above requirements have been met. Contact your server administrator or hosting company and convince them to upgrade. Good luck.');
+ − 1238
echo '</table></div>';
+ − 1239
}
+ − 1240
}
+ − 1241
?>
+ − 1242
<?php
+ − 1243
break;
+ − 1244
case "database":
322
+ − 1245
echo '<h3>Choose a database driver</h3>';
+ − 1246
echo '<p>The next step is to choose the database driver that Enano will use. In most cases this is MySQL, but there are certain
+ − 1247
advantages to PostgreSQL, which is made available only experimentally.</p>';
+ − 1248
if ( @file_exists('/etc/enano-is-virt-appliance') )
+ − 1249
{
+ − 1250
echo '<p><b>You\'re using the Enano virtual appliance.</b><br />Unless you configured the appliance manually, PostgreSQL support is not available. In 99% of cases you\'ll want to click MySQL below.</p>';
+ − 1251
}
+ − 1252
+ − 1253
$mysql_disable_reason = '';
+ − 1254
$pgsql_disable_reason = '';
+ − 1255
$mysql_disable = '';
+ − 1256
$pgsql_disable = '';
+ − 1257
if ( !function_exists('mysql_connect') )
+ − 1258
{
+ − 1259
$mysql_disable = ' disabled="disabled"';
+ − 1260
$mysql_disable_reason = 'You don\'t have the MySQL PHP extension installed.';
+ − 1261
}
+ − 1262
if ( !function_exists('pg_connect') )
+ − 1263
{
+ − 1264
$pgsql_disable = ' disabled="disabled"';
+ − 1265
$pgsql_disable_reason = 'You don\'t have the PostgreSQL PHP extensnion installed.';
+ − 1266
}
+ − 1267
if ( function_exists('pg_connect') && version_compare(PHP_VERSION, '5.0.0', '<') )
+ − 1268
{
+ − 1269
$pgsql_disable = ' disabled="disabled"';
+ − 1270
$pgsql_disable_reason = 'You need to have at least PHP 5 to use the PostgreSQL database driver.';
+ − 1271
}
+ − 1272
+ − 1273
echo '<form action="install.php" method="get">';
+ − 1274
?>
+ − 1275
<table border="0" cellspacing="5">
+ − 1276
<tr>
+ − 1277
<td>
+ − 1278
<input type="image" name="mode" value="database_mysql" src="images/about-powered-mysql.png"<?php echo $mysql_disable; ?>/>
+ − 1279
</td>
+ − 1280
<td<?php if ( $mysql_disable ) echo ' style="opacity: 0.5; filter: alpha(opacity=50);"'; ?>>
+ − 1281
<b>MySQL</b><br />
+ − 1282
Click this button to use MySQL as the database backend for your site. Most web hosts support MySQL, and if you have
+ − 1283
administrative access to your MySQL server, you can create a new database and user during this installation process if you
+ − 1284
haven't done so already.
+ − 1285
<?php
+ − 1286
if ( $mysql_disable )
+ − 1287
{
+ − 1288
echo "<br /><br /><b>$mysql_disable_reason</b>";
+ − 1289
}
+ − 1290
?>
+ − 1291
</td>
+ − 1292
</tr>
+ − 1293
<tr>
+ − 1294
<td>
+ − 1295
<input type="image" name="mode" value="database_pgsql" src="images/about-powered-pgsql.png"<?php echo $pgsql_disable; ?> />
+ − 1296
</td>
+ − 1297
<td<?php if ( $pgsql_disable ) echo ' style="opacity: 0.5; filter: alpha(opacity=50);"'; ?>>
+ − 1298
<b>PostgreSQL</b><br />
+ − 1299
Click this button to use PostgreSQL as the database backend for your site. While not as widely supported, PostgreSQL has more
+ − 1300
liberal licensing conditions and when properly configured is faster than MySQL. Some plugins may not work with the PostgreSQL
+ − 1301
driver.
+ − 1302
<?php
+ − 1303
if ( $pgsql_disable )
+ − 1304
{
+ − 1305
echo "<br /><br /><b>$pgsql_disable_reason</b>";
+ − 1306
}
+ − 1307
?>
+ − 1308
</td>
+ − 1309
</tr>
+ − 1310
</table>
+ − 1311
<?php
+ − 1312
echo '</form>';
+ − 1313
break;
+ − 1314
case "database_mysql":
256
+ − 1315
?>
+ − 1316
<script type="text/javascript">
+ − 1317
function ajaxGet(uri, f) {
+ − 1318
if (window.XMLHttpRequest) {
+ − 1319
ajax = new XMLHttpRequest();
+ − 1320
} else {
+ − 1321
if (window.ActiveXObject) {
+ − 1322
ajax = new ActiveXObject("Microsoft.XMLHTTP");
+ − 1323
} else {
+ − 1324
alert('Enano client-side runtime error: No AJAX support, unable to continue');
+ − 1325
return;
+ − 1326
}
+ − 1327
}
+ − 1328
ajax.onreadystatechange = f;
+ − 1329
ajax.open('GET', uri, true);
+ − 1330
ajax.send(null);
+ − 1331
}
+ − 1332
+ − 1333
function ajaxPost(uri, parms, f) {
+ − 1334
if (window.XMLHttpRequest) {
+ − 1335
ajax = new XMLHttpRequest();
+ − 1336
} else {
+ − 1337
if (window.ActiveXObject) {
+ − 1338
ajax = new ActiveXObject("Microsoft.XMLHTTP");
+ − 1339
} else {
+ − 1340
alert('Enano client-side runtime error: No AJAX support, unable to continue');
+ − 1341
return;
+ − 1342
}
+ − 1343
}
+ − 1344
ajax.onreadystatechange = f;
+ − 1345
ajax.open('POST', uri, true);
+ − 1346
ajax.setRequestHeader("Content-type", "application/x-www-form-urlencoded");
+ − 1347
ajax.setRequestHeader("Content-length", parms.length);
+ − 1348
ajax.setRequestHeader("Connection", "close");
+ − 1349
ajax.send(parms);
+ − 1350
}
+ − 1351
function ajaxTestConnection()
+ − 1352
{
+ − 1353
v = verify();
+ − 1354
if(!v)
+ − 1355
{
+ − 1356
alert('One or more of the form fields is incorrect. Please correct any information in the form that has an "X" next to it.');
+ − 1357
return false;
+ − 1358
}
+ − 1359
var frm = document.forms.dbinfo;
+ − 1360
db_host = escape(frm.db_host.value.replace('+', '%2B'));
+ − 1361
db_name = escape(frm.db_name.value.replace('+', '%2B'));
+ − 1362
db_user = escape(frm.db_user.value.replace('+', '%2B'));
+ − 1363
db_pass = escape(frm.db_pass.value.replace('+', '%2B'));
+ − 1364
db_root_user = escape(frm.db_root_user.value.replace('+', '%2B'));
+ − 1365
db_root_pass = escape(frm.db_root_pass.value.replace('+', '%2B'));
+ − 1366
+ − 1367
parms = 'host='+db_host+'&name='+db_name+'&user='+db_user+'&pass='+db_pass+'&root_user='+db_root_user+'&root_pass='+db_root_pass;
+ − 1368
ajaxPost('<?php echo scriptPath; ?>/install.php?mode=mysql_test', parms, function() {
+ − 1369
if(ajax.readyState==4)
+ − 1370
{
+ − 1371
s = ajax.responseText.substr(0, 4);
+ − 1372
t = ajax.responseText.substr(4, ajax.responseText.length);
+ − 1373
if(s.substr(0, 4)=='good')
+ − 1374
{
+ − 1375
document.getElementById('s_db_host').src='images/good.gif';
+ − 1376
document.getElementById('s_db_name').src='images/good.gif';
+ − 1377
document.getElementById('s_db_auth').src='images/good.gif';
+ − 1378
document.getElementById('s_db_root').src='images/good.gif';
+ − 1379
if(t.match(/_creating_db/)) document.getElementById('e_db_name').innerHTML = '<b>Warning:<\/b> The database you specified does not exist. It will be created during installation.';
+ − 1380
if(t.match(/_creating_user/)) document.getElementById('e_db_auth').innerHTML = '<b>Warning:<\/b> The specified regular user does not exist or the password is incorrect. The user will be created during installation. If the user already exists, the password will be reset.';
+ − 1381
document.getElementById('s_mysql_version').src='images/good.gif';
+ − 1382
document.getElementById('e_mysql_version').innerHTML = 'Your version of MySQL meets Enano requirements.';
+ − 1383
}
+ − 1384
else
+ − 1385
{
+ − 1386
switch(s)
+ − 1387
{
+ − 1388
case 'host':
+ − 1389
document.getElementById('s_db_host').src='images/bad.gif';
+ − 1390
document.getElementById('s_db_name').src='images/unknown.gif';
+ − 1391
document.getElementById('s_db_auth').src='images/unknown.gif';
+ − 1392
document.getElementById('s_db_root').src='images/unknown.gif';
+ − 1393
document.getElementById('e_db_host').innerHTML = '<b>Error:<\/b> The database server "'+document.forms.dbinfo.db_host.value+'" couldn\'t be contacted.<br \/>'+t;
+ − 1394
document.getElementById('e_mysql_version').innerHTML = 'The MySQL version that your server is running could not be determined.';
+ − 1395
break;
+ − 1396
case 'auth':
+ − 1397
document.getElementById('s_db_host').src='images/good.gif';
+ − 1398
document.getElementById('s_db_name').src='images/unknown.gif';
+ − 1399
document.getElementById('s_db_auth').src='images/bad.gif';
+ − 1400
document.getElementById('s_db_root').src='images/unknown.gif';
+ − 1401
document.getElementById('e_db_auth').innerHTML = '<b>Error:<\/b> Access to MySQL under the specified credentials was denied.<br \/>'+t;
+ − 1402
document.getElementById('e_mysql_version').innerHTML = 'The MySQL version that your server is running could not be determined.';
+ − 1403
break;
+ − 1404
case 'perm':
+ − 1405
document.getElementById('s_db_host').src='images/good.gif';
+ − 1406
document.getElementById('s_db_name').src='images/bad.gif';
+ − 1407
document.getElementById('s_db_auth').src='images/good.gif';
+ − 1408
document.getElementById('s_db_root').src='images/unknown.gif';
+ − 1409
document.getElementById('e_db_name').innerHTML = '<b>Error:<\/b> Access to the specified database using those login credentials was denied.<br \/>'+t;
+ − 1410
document.getElementById('e_mysql_version').innerHTML = 'The MySQL version that your server is running could not be determined.';
+ − 1411
break;
+ − 1412
case 'name':
+ − 1413
document.getElementById('s_db_host').src='images/good.gif';
+ − 1414
document.getElementById('s_db_name').src='images/bad.gif';
+ − 1415
document.getElementById('s_db_auth').src='images/good.gif';
+ − 1416
document.getElementById('s_db_root').src='images/unknown.gif';
+ − 1417
document.getElementById('e_db_name').innerHTML = '<b>Error:<\/b> The specified database does not exist<br \/>'+t;
+ − 1418
document.getElementById('e_mysql_version').innerHTML = 'The MySQL version that your server is running could not be determined.';
+ − 1419
break;
+ − 1420
case 'root':
+ − 1421
document.getElementById('s_db_host').src='images/good.gif';
+ − 1422
document.getElementById('s_db_name').src='images/unknown.gif';
+ − 1423
document.getElementById('s_db_auth').src='images/unknown.gif';
+ − 1424
document.getElementById('s_db_root').src='images/bad.gif';
+ − 1425
document.getElementById('e_db_root').innerHTML = '<b>Error:<\/b> Access to MySQL under the specified credentials was denied.<br \/>'+t;
+ − 1426
document.getElementById('e_mysql_version').innerHTML = 'The MySQL version that your server is running could not be determined.';
+ − 1427
break;
+ − 1428
case 'vers':
+ − 1429
document.getElementById('s_db_host').src='images/good.gif';
+ − 1430
document.getElementById('s_db_name').src='images/good.gif';
+ − 1431
document.getElementById('s_db_auth').src='images/good.gif';
+ − 1432
document.getElementById('s_db_root').src='images/good.gif';
+ − 1433
if(t.match(/_creating_db/)) document.getElementById('e_db_name').innerHTML = '<b>Warning:<\/b> The database you specified does not exist. It will be created during installation.';
+ − 1434
if(t.match(/_creating_user/)) document.getElementById('e_db_auth').innerHTML = '<b>Warning:<\/b> The specified regular user does not exist or the password is incorrect. The user will be created during installation. If the user already exists, the password will be reset.';
+ − 1435
+ − 1436
document.getElementById('e_mysql_version').innerHTML = '<b>Error:<\/b> Your version of MySQL ('+t+') is older than 4.1.17. Enano will still work, but there is a known bug with the comment system and MySQL 4.1.11 that involves some comments not being displayed, due to an issue with the PHP function mysql_fetch_row().';
+ − 1437
document.getElementById('s_mysql_version').src='images/bad.gif';
+ − 1438
default:
+ − 1439
alert(t);
+ − 1440
break;
+ − 1441
}
+ − 1442
}
+ − 1443
}
+ − 1444
});
+ − 1445
}
+ − 1446
function verify()
+ − 1447
{
+ − 1448
document.getElementById('e_db_host').innerHTML = '';
+ − 1449
document.getElementById('e_db_auth').innerHTML = '';
+ − 1450
document.getElementById('e_db_name').innerHTML = '';
+ − 1451
document.getElementById('e_db_root').innerHTML = '';
+ − 1452
var frm = document.forms.dbinfo;
+ − 1453
ret = true;
+ − 1454
if(frm.db_host.value != '')
+ − 1455
{
+ − 1456
document.getElementById('s_db_host').src='images/unknown.gif';
+ − 1457
}
+ − 1458
else
+ − 1459
{
+ − 1460
document.getElementById('s_db_host').src='images/bad.gif';
+ − 1461
ret = false;
+ − 1462
}
262
+ − 1463
if(frm.db_name.value.match(/^([a-z0-9_-]+)$/g))
256
+ − 1464
{
+ − 1465
document.getElementById('s_db_name').src='images/unknown.gif';
+ − 1466
}
+ − 1467
else
+ − 1468
{
+ − 1469
document.getElementById('s_db_name').src='images/bad.gif';
+ − 1470
ret = false;
+ − 1471
}
+ − 1472
if(frm.db_user.value != '')
+ − 1473
{
+ − 1474
document.getElementById('s_db_auth').src='images/unknown.gif';
+ − 1475
}
+ − 1476
else
+ − 1477
{
+ − 1478
document.getElementById('s_db_auth').src='images/bad.gif';
+ − 1479
ret = false;
+ − 1480
}
+ − 1481
if(frm.table_prefix.value.match(/^([a-z0-9_]*)$/g))
+ − 1482
{
+ − 1483
document.getElementById('s_table_prefix').src='images/good.gif';
+ − 1484
}
+ − 1485
else
+ − 1486
{
+ − 1487
document.getElementById('s_table_prefix').src='images/bad.gif';
+ − 1488
ret = false;
+ − 1489
}
+ − 1490
if(frm.db_root_user.value == '')
+ − 1491
{
+ − 1492
document.getElementById('s_db_root').src='images/good.gif';
+ − 1493
}
+ − 1494
else if(frm.db_root_user.value != '' && frm.db_root_pass.value == '')
+ − 1495
{
+ − 1496
document.getElementById('s_db_root').src='images/bad.gif';
+ − 1497
ret = false;
+ − 1498
}
+ − 1499
else
+ − 1500
{
+ − 1501
document.getElementById('s_db_root').src='images/unknown.gif';
+ − 1502
}
+ − 1503
if(ret) frm._cont.disabled = false;
+ − 1504
else frm._cont.disabled = true;
+ − 1505
return ret;
+ − 1506
}
+ − 1507
window.onload = verify;
+ − 1508
</script>
+ − 1509
<p>Now we need some information that will allow Enano to contact your database server. Enano uses MySQL as a data storage backend,
+ − 1510
and we need to have access to a MySQL server in order to continue.</p>
+ − 1511
<p>If you do not have access to a MySQL server, and you are using your own server, you can download MySQL for free from
+ − 1512
<a href="http://www.mysql.com/">MySQL.com</a>. <b>Please note that, like Enano, MySQL is licensed under the GNU GPL.</b>
+ − 1513
If you need to modify MySQL and then distribute your modifications, you must either distribute them under the terms of the GPL
+ − 1514
or purchase a proprietary license.</p>
+ − 1515
<?php
257
+ − 1516
if ( @file_exists('/etc/enano-is-virt-appliance') )
256
+ − 1517
{
+ − 1518
echo '<p><b>MySQL login information for this virtual appliance:</b><br /><br />Database hostname: localhost<br />Database login: username "enano", password: "clurichaun" (without quotes)<br />Database name: enano_www1</p>';
+ − 1519
}
+ − 1520
?>
+ − 1521
<form name="dbinfo" action="install.php?mode=website" method="post">
322
+ − 1522
<input type="hidden" name="db_driver" value="mysql" />
256
+ − 1523
<table border="0">
257
+ − 1524
<tr><td colspan="3" style="text-align: center"><h3>Database information</h3></td></tr>
+ − 1525
<tr><td><b>Database hostname</b><br />This is the hostname (or sometimes the IP address) of your MySQL server. In many cases, this is "localhost".<br /><span style="color: #993300" id="e_db_host"></span></td><td><input onkeyup="verify();" name="db_host" size="30" type="text" /></td><td><img id="s_db_host" alt="Good/bad icon" src="images/bad.gif" /></td></tr>
+ − 1526
<tr><td><b>Database name</b><br />The name of the actual database. If you don't already have a database, you can create one here, if you have the username and password of a MySQL user with administrative rights.<br /><span style="color: #993300" id="e_db_name"></span></td><td><input onkeyup="verify();" name="db_name" size="30" type="text" /></td><td><img id="s_db_name" alt="Good/bad icon" src="images/bad.gif" /></td></tr>
+ − 1527
<tr><td rowspan="2"><b>Database login</b><br />These fields should be the username and password of a user with "select", "insert", "update", "delete", "create table", and "replace" privileges for your database.<br /><span style="color: #993300" id="e_db_auth"></span></td><td><input onkeyup="verify();" name="db_user" size="30" type="text" /></td><td rowspan="2"><img id="s_db_auth" alt="Good/bad icon" src="images/bad.gif" /></td></tr>
+ − 1528
<tr><td><input name="db_pass" size="30" type="password" /></td></tr>
+ − 1529
<tr><td colspan="3" style="text-align: center"><h3>Optional information</h3></td></tr>
+ − 1530
<tr><td><b>Table prefix</b><br />The value that you enter here will be added to the beginning of the name of each Enano table. You may use lowercase letters (a-z), numbers (0-9), and underscores (_).</td><td><input onkeyup="verify();" name="table_prefix" size="30" type="text" /></td><td><img id="s_table_prefix" alt="Good/bad icon" src="images/good.gif" /></td></tr>
+ − 1531
<tr><td rowspan="2"><b>Database administrative login</b><br />If the MySQL database or username that you entered above does not exist yet, you can create them here, assuming that you have the login information for an administrative user (such as root). Leave these fields blank unless you need to use them.<br /><span style="color: #993300" id="e_db_root"></span></td><td><input onkeyup="verify();" name="db_root_user" size="30" type="text" /></td><td rowspan="2"><img id="s_db_root" alt="Good/bad icon" src="images/good.gif" /></td></tr>
+ − 1532
<tr><td><input onkeyup="verify();" name="db_root_pass" size="30" type="password" /></td></tr>
+ − 1533
<tr><td><b>MySQL version</b></td><td id="e_mysql_version">MySQL version information will be checked when you click "Test Connection".</td><td><img id="s_mysql_version" alt="Good/bad icon" src="images/unknown.gif" /></td></tr>
+ − 1534
<tr><td><b>Delete existing tables?</b><br />If this option is checked, all the tables that will be used by Enano will be dropped (deleted) before the schema is executed. Do NOT use this option unless specifically instructed to.</td><td><input type="checkbox" name="drop_tables" id="dtcheck" /> <label for="dtcheck">Drop existing tables</label></td></tr>
+ − 1535
<tr><td colspan="3" style="text-align: center"><input type="button" value="Test connection" onclick="ajaxTestConnection();" /></td></tr>
256
+ − 1536
</table>
+ − 1537
<div class="pagenav">
257
+ − 1538
<table border="0">
+ − 1539
<tr>
+ − 1540
<td><input type="submit" value="Continue" onclick="return verify();" name="_cont" /></td><td><p><span style="font-weight: bold;">Before clicking continue:</span><br />• Check your MySQL connection using the "Test Connection" button.<br />• Be aware that your database information will be transmitted unencrypted several times.</p></td>
+ − 1541
</tr>
+ − 1542
</table>
+ − 1543
</div>
256
+ − 1544
</form>
+ − 1545
<?php
+ − 1546
break;
322
+ − 1547
case "database_pgsql":
+ − 1548
?>
+ − 1549
<script type="text/javascript">
+ − 1550
function ajaxGet(uri, f) {
+ − 1551
if (window.XMLHttpRequest) {
+ − 1552
ajax = new XMLHttpRequest();
+ − 1553
} else {
+ − 1554
if (window.ActiveXObject) {
+ − 1555
ajax = new ActiveXObject("Microsoft.XMLHTTP");
+ − 1556
} else {
+ − 1557
alert('Enano client-side runtime error: No AJAX support, unable to continue');
+ − 1558
return;
+ − 1559
}
+ − 1560
}
+ − 1561
ajax.onreadystatechange = f;
+ − 1562
ajax.open('GET', uri, true);
+ − 1563
ajax.send(null);
+ − 1564
}
+ − 1565
+ − 1566
function ajaxPost(uri, parms, f) {
+ − 1567
if (window.XMLHttpRequest) {
+ − 1568
ajax = new XMLHttpRequest();
+ − 1569
} else {
+ − 1570
if (window.ActiveXObject) {
+ − 1571
ajax = new ActiveXObject("Microsoft.XMLHTTP");
+ − 1572
} else {
+ − 1573
alert('Enano client-side runtime error: No AJAX support, unable to continue');
+ − 1574
return;
+ − 1575
}
+ − 1576
}
+ − 1577
ajax.onreadystatechange = f;
+ − 1578
ajax.open('POST', uri, true);
+ − 1579
ajax.setRequestHeader("Content-type", "application/x-www-form-urlencoded");
+ − 1580
ajax.setRequestHeader("Content-length", parms.length);
+ − 1581
ajax.setRequestHeader("Connection", "close");
+ − 1582
ajax.send(parms);
+ − 1583
}
+ − 1584
function ajaxTestConnection()
+ − 1585
{
+ − 1586
v = verify();
+ − 1587
if(!v)
+ − 1588
{
+ − 1589
alert('One or more of the form fields is incorrect. Please correct any information in the form that has an "X" next to it.');
+ − 1590
return false;
+ − 1591
}
+ − 1592
var frm = document.forms.dbinfo;
+ − 1593
db_host = escape(frm.db_host.value.replace('+', '%2B'));
+ − 1594
db_name = escape(frm.db_name.value.replace('+', '%2B'));
+ − 1595
db_user = escape(frm.db_user.value.replace('+', '%2B'));
+ − 1596
db_pass = escape(frm.db_pass.value.replace('+', '%2B'));
+ − 1597
db_root_user = escape(frm.db_root_user.value.replace('+', '%2B'));
+ − 1598
db_root_pass = escape(frm.db_root_pass.value.replace('+', '%2B'));
+ − 1599
+ − 1600
parms = 'host='+db_host+'&name='+db_name+'&user='+db_user+'&pass='+db_pass+'&root_user='+db_root_user+'&root_pass='+db_root_pass;
+ − 1601
ajaxPost('<?php echo scriptPath; ?>/install.php?mode=pgsql_test', parms, function() {
+ − 1602
if(ajax.readyState==4)
+ − 1603
{
+ − 1604
s = ajax.responseText.substr(0, 4);
+ − 1605
t = ajax.responseText.substr(4, ajax.responseText.length);
+ − 1606
if(s.substr(0, 4)=='good')
+ − 1607
{
+ − 1608
document.getElementById('s_db_host').src='images/good.gif';
+ − 1609
document.getElementById('s_db_name').src='images/good.gif';
+ − 1610
document.getElementById('s_db_auth').src='images/good.gif';
+ − 1611
document.getElementById('s_db_root').src='images/good.gif';
+ − 1612
if(t.match(/_creating_db/)) document.getElementById('e_db_name').innerHTML = '<b>Warning:<\/b> The database you specified does not exist. It will be created during installation.';
+ − 1613
if(t.match(/_creating_user/)) document.getElementById('e_db_auth').innerHTML = '<b>Warning:<\/b> The specified regular user does not exist or the password is incorrect. The user will be created during installation. If the user already exists, the password will be reset.';
+ − 1614
document.getElementById('s_mysql_version').src='images/good.gif';
+ − 1615
document.getElementById('e_mysql_version').innerHTML = 'Your version of PostgreSQL meets Enano requirements.';
+ − 1616
}
+ − 1617
else
+ − 1618
{
+ − 1619
switch(s)
+ − 1620
{
+ − 1621
case 'host':
+ − 1622
document.getElementById('s_db_host').src='images/bad.gif';
+ − 1623
document.getElementById('s_db_name').src='images/unknown.gif';
+ − 1624
document.getElementById('s_db_auth').src='images/unknown.gif';
+ − 1625
document.getElementById('s_db_root').src='images/unknown.gif';
+ − 1626
document.getElementById('e_db_host').innerHTML = '<b>Error:<\/b> The database server "'+document.forms.dbinfo.db_host.value+'" couldn\'t be contacted.<br \/>'+t;
+ − 1627
document.getElementById('e_mysql_version').innerHTML = 'The MySQL version that your server is running could not be determined.';
+ − 1628
break;
+ − 1629
case 'auth':
+ − 1630
document.getElementById('s_db_host').src='images/good.gif';
+ − 1631
document.getElementById('s_db_name').src='images/unknown.gif';
+ − 1632
document.getElementById('s_db_auth').src='images/bad.gif';
+ − 1633
document.getElementById('s_db_root').src='images/unknown.gif';
+ − 1634
document.getElementById('e_db_auth').innerHTML = '<b>Error:<\/b> Access to MySQL under the specified credentials was denied.<br \/>'+t;
+ − 1635
document.getElementById('e_mysql_version').innerHTML = 'The MySQL version that your server is running could not be determined.';
+ − 1636
break;
+ − 1637
case 'perm':
+ − 1638
document.getElementById('s_db_host').src='images/good.gif';
+ − 1639
document.getElementById('s_db_name').src='images/bad.gif';
+ − 1640
document.getElementById('s_db_auth').src='images/good.gif';
+ − 1641
document.getElementById('s_db_root').src='images/unknown.gif';
+ − 1642
document.getElementById('e_db_name').innerHTML = '<b>Error:<\/b> Access to the specified database using those login credentials was denied.<br \/>'+t;
+ − 1643
document.getElementById('e_mysql_version').innerHTML = 'The MySQL version that your server is running could not be determined.';
+ − 1644
break;
+ − 1645
case 'name':
+ − 1646
document.getElementById('s_db_host').src='images/good.gif';
+ − 1647
document.getElementById('s_db_name').src='images/bad.gif';
+ − 1648
document.getElementById('s_db_auth').src='images/good.gif';
+ − 1649
document.getElementById('s_db_root').src='images/unknown.gif';
+ − 1650
document.getElementById('e_db_name').innerHTML = '<b>Error:<\/b> The specified database does not exist<br \/>'+t;
+ − 1651
document.getElementById('e_mysql_version').innerHTML = 'The MySQL version that your server is running could not be determined.';
+ − 1652
break;
+ − 1653
case 'root':
+ − 1654
document.getElementById('s_db_host').src='images/good.gif';
+ − 1655
document.getElementById('s_db_name').src='images/unknown.gif';
+ − 1656
document.getElementById('s_db_auth').src='images/unknown.gif';
+ − 1657
document.getElementById('s_db_root').src='images/bad.gif';
+ − 1658
document.getElementById('e_db_root').innerHTML = '<b>Error:<\/b> Access to MySQL under the specified credentials was denied.<br \/>'+t;
+ − 1659
document.getElementById('e_mysql_version').innerHTML = 'The MySQL version that your server is running could not be determined.';
+ − 1660
break;
+ − 1661
case 'vers':
+ − 1662
document.getElementById('s_db_host').src='images/good.gif';
+ − 1663
document.getElementById('s_db_name').src='images/good.gif';
+ − 1664
document.getElementById('s_db_auth').src='images/good.gif';
+ − 1665
document.getElementById('s_db_root').src='images/good.gif';
+ − 1666
if(t.match(/_creating_db/)) document.getElementById('e_db_name').innerHTML = '<b>Warning:<\/b> The database you specified does not exist. It will be created during installation.';
+ − 1667
if(t.match(/_creating_user/)) document.getElementById('e_db_auth').innerHTML = '<b>Warning:<\/b> The specified regular user does not exist or the password is incorrect. The user will be created during installation. If the user already exists, the password will be reset.';
+ − 1668
+ − 1669
document.getElementById('e_mysql_version').innerHTML = '<b>Error:<\/b> Your version of MySQL ('+t+') is older than 4.1.17. Enano will still work, but there is a known bug with the comment system and MySQL 4.1.11 that involves some comments not being displayed, due to an issue with the PHP function mysql_fetch_row().';
+ − 1670
document.getElementById('s_mysql_version').src='images/bad.gif';
+ − 1671
default:
+ − 1672
alert(t);
+ − 1673
break;
+ − 1674
}
+ − 1675
}
+ − 1676
}
+ − 1677
});
+ − 1678
}
+ − 1679
function verify()
+ − 1680
{
+ − 1681
document.getElementById('e_db_host').innerHTML = '';
+ − 1682
document.getElementById('e_db_auth').innerHTML = '';
+ − 1683
document.getElementById('e_db_name').innerHTML = '';
+ − 1684
document.getElementById('e_db_root').innerHTML = '';
+ − 1685
var frm = document.forms.dbinfo;
+ − 1686
ret = true;
+ − 1687
if(frm.db_host.value != '')
+ − 1688
{
+ − 1689
document.getElementById('s_db_host').src='images/unknown.gif';
+ − 1690
}
+ − 1691
else
+ − 1692
{
+ − 1693
document.getElementById('s_db_host').src='images/bad.gif';
+ − 1694
ret = false;
+ − 1695
}
+ − 1696
if(frm.db_name.value.match(/^([a-z0-9_-]+)$/g))
+ − 1697
{
+ − 1698
document.getElementById('s_db_name').src='images/unknown.gif';
+ − 1699
}
+ − 1700
else
+ − 1701
{
+ − 1702
document.getElementById('s_db_name').src='images/bad.gif';
+ − 1703
ret = false;
+ − 1704
}
+ − 1705
if(frm.db_user.value != '')
+ − 1706
{
+ − 1707
document.getElementById('s_db_auth').src='images/unknown.gif';
+ − 1708
}
+ − 1709
else
+ − 1710
{
+ − 1711
document.getElementById('s_db_auth').src='images/bad.gif';
+ − 1712
ret = false;
+ − 1713
}
+ − 1714
if(frm.table_prefix.value.match(/^([a-z0-9_]*)$/g))
+ − 1715
{
+ − 1716
document.getElementById('s_table_prefix').src='images/good.gif';
+ − 1717
}
+ − 1718
else
+ − 1719
{
+ − 1720
document.getElementById('s_table_prefix').src='images/bad.gif';
+ − 1721
ret = false;
+ − 1722
}
+ − 1723
if(frm.db_root_user.value == '')
+ − 1724
{
+ − 1725
document.getElementById('s_db_root').src='images/good.gif';
+ − 1726
}
+ − 1727
else if(frm.db_root_user.value != '' && frm.db_root_pass.value == '')
+ − 1728
{
+ − 1729
document.getElementById('s_db_root').src='images/bad.gif';
+ − 1730
ret = false;
+ − 1731
}
+ − 1732
else
+ − 1733
{
+ − 1734
document.getElementById('s_db_root').src='images/unknown.gif';
+ − 1735
}
+ − 1736
if(ret) frm._cont.disabled = false;
+ − 1737
else frm._cont.disabled = true;
+ − 1738
return ret;
+ − 1739
}
+ − 1740
window.onload = verify;
+ − 1741
</script>
+ − 1742
<p>Now we need some information that will allow Enano to contact your database server. Enano uses PostgreSQL as a data storage backend,
+ − 1743
and we need to have access to a PostgreSQL server in order to continue.</p>
+ − 1744
<p>If you do not have access to a PostgreSQL server, and you are using your own server, you can download PostgreSQL for free from
+ − 1745
<a href="http://www.postgresql.org/">PostgreSQL.org</a>.</p>
+ − 1746
<form name="dbinfo" action="install.php?mode=website" method="post">
+ − 1747
<input type="hidden" name="db_driver" value="postgresql" />
+ − 1748
<table border="0">
+ − 1749
<tr><td colspan="3" style="text-align: center"><h3>Database information</h3></td></tr>
+ − 1750
<tr><td><b>Database hostname</b><br />This is the hostname (or sometimes the IP address) of your Postgres server. In many cases, this is "localhost".<br /><span style="color: #993300" id="e_db_host"></span></td><td><input onkeyup="verify();" name="db_host" size="30" type="text" /></td><td><img id="s_db_host" alt="Good/bad icon" src="images/bad.gif" /></td></tr>
+ − 1751
<tr><td><b>Database name</b><br />The name of the actual database. If you don't already have a database, you can create one here, if you have the username and password of a PostgreSQL superuser.<br /><span style="color: #993300" id="e_db_name"></span></td><td><input onkeyup="verify();" name="db_name" size="30" type="text" /></td><td><img id="s_db_name" alt="Good/bad icon" src="images/bad.gif" /></td></tr>
+ − 1752
<tr><td rowspan="2"><b>Database login</b><br />These fields should be the username and password for a role that has permission to create and alter tables, select data, insert data, update data, and delete data. You may or may not choose to allow dropping tables.<br /><span style="color: #993300" id="e_db_auth"></span></td><td><input onkeyup="verify();" name="db_user" size="30" type="text" /></td><td rowspan="2"><img id="s_db_auth" alt="Good/bad icon" src="images/bad.gif" /></td></tr>
+ − 1753
<tr><td><input name="db_pass" size="30" type="password" /></td></tr>
+ − 1754
<tr><td colspan="3" style="text-align: center"><h3>Optional information</h3></td></tr>
+ − 1755
<tr><td><b>Table prefix</b><br />The value that you enter here will be added to the beginning of the name of each Enano table. You may use lowercase letters (a-z), numbers (0-9), and underscores (_).</td><td><input onkeyup="verify();" name="table_prefix" size="30" type="text" /></td><td><img id="s_table_prefix" alt="Good/bad icon" src="images/good.gif" /></td></tr>
+ − 1756
<tr><td rowspan="2"><b>Database administrative login</b><br />If the Postgres database or role that you entered above does not exist yet, you can create them here, assuming that you have the login information for a PostgreSQL superuser. Leave these fields blank unless you need to use them.<br /><span style="color: #993300" id="e_db_root"></span></td><td><input onkeyup="verify();" name="db_root_user" size="30" type="text" /></td><td rowspan="2"><img id="s_db_root" alt="Good/bad icon" src="images/good.gif" /></td></tr>
+ − 1757
<tr><td><input onkeyup="verify();" name="db_root_pass" size="30" type="password" /></td></tr>
+ − 1758
<tr><td><b>PostgreSQL version</b></td><td id="e_mysql_version">PostgreSQL version information will<br />be checked when you click "Test<br />Connection". You need to have at<br />least PostgreSQL 8.2.0 to install Enano.</td><td><img id="s_mysql_version" alt="Good/bad icon" src="images/unknown.gif" /></td></tr>
+ − 1759
<tr><td><b>Delete existing tables?</b><br />If this option is checked, all the tables that will be used by Enano will be dropped (deleted) before the schema is executed. Do NOT use this option unless specifically instructed to.</td><td><input type="checkbox" name="drop_tables" id="dtcheck" /> <label for="dtcheck">Drop existing tables</label></td></tr>
+ − 1760
<tr><td colspan="3" style="text-align: center"><input type="button" value="Test connection" onclick="ajaxTestConnection();" /></td></tr>
+ − 1761
</table>
+ − 1762
<div class="pagenav">
+ − 1763
<table border="0">
+ − 1764
<tr>
+ − 1765
<td><input type="submit" value="Continue" onclick="return verify();" name="_cont" /></td><td><p><span style="font-weight: bold;">Before clicking continue:</span><br />• Check your PostgreSQL connection using the "Test Connection" button.<br />• Be aware that your database information will be transmitted unencrypted several times.</p></td>
+ − 1766
</tr>
+ − 1767
</table>
+ − 1768
</div>
+ − 1769
</form>
+ − 1770
<?php
+ − 1771
break;
256
+ − 1772
case "website":
+ − 1773
if(!isset($_POST['_cont'])) {
+ − 1774
echo 'No POST data signature found. Please <a href="install.php?mode=sysreqs">restart the installation</a>.';
+ − 1775
$template->footer();
+ − 1776
exit;
+ − 1777
}
+ − 1778
unset($_POST['_cont']);
+ − 1779
?>
+ − 1780
<script type="text/javascript">
+ − 1781
function verify()
+ − 1782
{
+ − 1783
var frm = document.forms.siteinfo;
+ − 1784
ret = true;
+ − 1785
if(frm.sitename.value.match(/^(.+)$/g) && frm.sitename.value != 'Enano')
+ − 1786
{
+ − 1787
document.getElementById('s_name').src='images/good.gif';
+ − 1788
}
+ − 1789
else
+ − 1790
{
+ − 1791
document.getElementById('s_name').src='images/bad.gif';
+ − 1792
ret = false;
+ − 1793
}
+ − 1794
if(frm.sitedesc.value.match(/^(.+)$/g))
+ − 1795
{
+ − 1796
document.getElementById('s_desc').src='images/good.gif';
+ − 1797
}
+ − 1798
else
+ − 1799
{
+ − 1800
document.getElementById('s_desc').src='images/bad.gif';
+ − 1801
ret = false;
+ − 1802
}
+ − 1803
if(frm.copyright.value.match(/^(.+)$/g))
+ − 1804
{
+ − 1805
document.getElementById('s_copyright').src='images/good.gif';
+ − 1806
}
+ − 1807
else
+ − 1808
{
+ − 1809
document.getElementById('s_copyright').src='images/bad.gif';
+ − 1810
ret = false;
+ − 1811
}
+ − 1812
if(ret) frm._cont.disabled = false;
+ − 1813
else frm._cont.disabled = true;
+ − 1814
return ret;
+ − 1815
}
+ − 1816
window.onload = verify;
+ − 1817
</script>
+ − 1818
<form name="siteinfo" action="install.php?mode=login" method="post">
+ − 1819
<?php
+ − 1820
$k = array_keys($_POST);
+ − 1821
for($i=0;$i<sizeof($_POST);$i++) {
+ − 1822
echo '<input type="hidden" name="'.htmlspecialchars($k[$i]).'" value="'.htmlspecialchars($_POST[$k[$i]]).'" />'."\n";
+ − 1823
}
+ − 1824
?>
+ − 1825
<p>The next step is to enter some information about your website. You can always change this information later, using the administration panel.</p>
+ − 1826
<table border="0">
257
+ − 1827
<tr><td><b>Website name</b><br />The display name of your website. Allowed characters are uppercase and lowercase letters, numerals, and spaces. This must not be blank or "Enano".</td><td><input onkeyup="verify();" name="sitename" type="text" size="30" /></td><td><img id="s_name" alt="Good/bad icon" src="images/bad.gif" /></td></tr>
+ − 1828
<tr><td><b>Website description</b><br />This text will be shown below the name of your website.</td><td><input onkeyup="verify();" name="sitedesc" type="text" size="30" /></td><td><img id="s_desc" alt="Good/bad icon" src="images/bad.gif" /></td></tr>
+ − 1829
<tr><td><b>Copyright info</b><br />This should be a one-line legal notice that will appear at the bottom of all your pages.</td><td><input onkeyup="verify();" name="copyright" type="text" size="30" /></td><td><img id="s_copyright" alt="Good/bad icon" src="images/bad.gif" /></td></tr>
+ − 1830
<tr><td><b>Wiki mode</b><br />This feature allows people to create and edit pages on your site. Enano keeps a history of all page modifications, and you can protect pages to prevent editing.</td><td><input name="wiki_mode" type="checkbox" id="wmcheck" /> <label for="wmcheck">Yes, make my website a wiki.</label></td><td></td></tr>
300
c9e192a059c1
Add installer pop-help topic for URL scheme, in response to http://forum.enanocms.org/viewtopic.php?f=5&t=19
Dan
diff
changeset
+ − 1831
<tr><td><b>URL scheme</b><br />Choose how the page URLs will look. Depending on your server configuration, you may need to select the first option. If you don't know, select the first option, and you can always change it later.</td><td colspan="2"><input type="radio" <?php if(!is_apache()) echo 'checked="checked" '; ?>name="urlscheme" value="ugly" id="ugly"> <label for="ugly">Standard URLs - compatible with any web server (www.example.com/index.php?title=Page_name)</label><br /><input type="radio" <?php if(is_apache()) echo 'checked="checked" '; ?>name="urlscheme" value="short" id="short"> <label for="short">Short URLs - requires Apache with a PHP module (www.example.com/index.php/Page_name)</label><br /><input type="radio" name="urlscheme" value="tiny" id="petite"> <label for="petite">Tiny URLs - requires Apache on Linux/Unix/BSD with PHP module and mod_rewrite enabled (www.example.com/Page_name)</label><br /><small><a href="install.php?mode=pophelp&topic=url_schemes" onclick="window.open(this.href, 'pophelpwin', 'width=550,height=400,status=no,toolbars=no,toolbar=no,address=no,scroll=yes'); return false;">Which URL scheme should I choose?</a></small></td></tr>
256
+ − 1832
</table>
+ − 1833
<div class="pagenav">
+ − 1834
<table border="0">
257
+ − 1835
<tr>
+ − 1836
<td><input type="submit" value="Continue" onclick="return verify();" name="_cont" /></td><td><p><span style="font-weight: bold;">Before clicking continue:</span><br />• Verify that your site information is correct. Again, all of the above settings can be changed from the administration panel.</p></td>
+ − 1837
</tr>
256
+ − 1838
</table>
+ − 1839
</div>
+ − 1840
</form>
+ − 1841
<?php
+ − 1842
break;
+ − 1843
case "login":
+ − 1844
if(!isset($_POST['_cont'])) {
+ − 1845
echo 'No POST data signature found. Please <a href="install.php?mode=sysreqs">restart the installation</a>.';
+ − 1846
$template->footer();
+ − 1847
exit;
+ − 1848
}
+ − 1849
unset($_POST['_cont']);
+ − 1850
require('config.new.php');
286
b2f985e4cef3
Fixed a number of issues with SQL query readability and some undefined index-ish errors; consequently the SQL report feature was added
Dan
diff
changeset
+ − 1851
$aes = AESCrypt::singleton(AES_BITS, AES_BLOCKSIZE);
256
+ − 1852
if ( isset($crypto_key) )
+ − 1853
{
+ − 1854
$cryptkey = $crypto_key;
+ − 1855
}
+ − 1856
if(!isset($cryptkey) || ( isset($cryptkey) && strlen($cryptkey) != AES_BITS / 4) )
+ − 1857
{
+ − 1858
$cryptkey = $aes->gen_readymade_key();
+ − 1859
$handle = @fopen(ENANO_ROOT.'/config.new.php', 'w');
+ − 1860
if(!$handle)
+ − 1861
{
+ − 1862
echo '<p>ERROR: Cannot open config.php for writing - exiting!</p>';
+ − 1863
$template->footer();
+ − 1864
exit;
+ − 1865
}
+ − 1866
fwrite($handle, '<?php $cryptkey = \''.$cryptkey.'\'; ?>');
+ − 1867
fclose($handle);
+ − 1868
}
+ − 1869
// Sorry for the ugly hack, but this f***s up jEdit badly.
+ − 1870
echo '
+ − 1871
<script type="text/javascript">
+ − 1872
function verify()
+ − 1873
{
+ − 1874
var frm = document.forms.login;
+ − 1875
ret = true;
284
0f039028f7a5
Made the username validation regexp in install less picky since it was blacklisting two of the letters in my name. >.<
Dan
diff
changeset
+ − 1876
if ( frm.admin_user.value.match(/^([^<>&\?\'"%\/]+)$/) && !frm.admin_user.value.match(/^(?:(?:\\d{1,2}|1\\d\\d|2[0-4]\\d|25[0-5])\\.){3}(?:\\d{1,2}|1\\d\\d|2[0-4]\\d|25[0-5])$/) && frm.admin_user.value.toLowerCase() != \'anonymous\' )
256
+ − 1877
{
+ − 1878
document.getElementById(\'s_user\').src = \'images/good.gif\';
+ − 1879
}
+ − 1880
else
+ − 1881
{
+ − 1882
document.getElementById(\'s_user\').src = \'images/bad.gif\';
+ − 1883
ret = false;
+ − 1884
}
+ − 1885
if(frm.admin_pass.value.length >= 6 && frm.admin_pass.value == frm.admin_pass_confirm.value)
+ − 1886
{
+ − 1887
document.getElementById(\'s_password\').src = \'images/good.gif\';
+ − 1888
}
+ − 1889
else
+ − 1890
{
+ − 1891
document.getElementById(\'s_password\').src = \'images/bad.gif\';
+ − 1892
ret = false;
+ − 1893
}
295
f948557af068
Add warning in installer for PHP < 5.2.0; hopefully fix validation of e-mail addresses with dashes
Dan
diff
changeset
+ − 1894
if(frm.admin_email.value.match(/^(?:[\\w\\d_-]+\\.?)+@(?:(?:[\\w\\d-]\\-?)+\\.)+\\w{2,4}$/))
256
+ − 1895
{
+ − 1896
document.getElementById(\'s_email\').src = \'images/good.gif\';
+ − 1897
}
+ − 1898
else
+ − 1899
{
+ − 1900
document.getElementById(\'s_email\').src = \'images/bad.gif\';
+ − 1901
ret = false;
+ − 1902
}
+ − 1903
if(ret) frm._cont.disabled = false;
+ − 1904
else frm._cont.disabled = true;
+ − 1905
return ret;
+ − 1906
}
+ − 1907
window.onload = verify;
+ − 1908
+ − 1909
function cryptdata()
+ − 1910
{
+ − 1911
if(!verify()) return false;
+ − 1912
}
+ − 1913
</script>
+ − 1914
';
+ − 1915
?>
+ − 1916
<form name="login" action="install.php?mode=confirm" method="post" onsubmit="runEncryption();">
+ − 1917
<?php
+ − 1918
$k = array_keys($_POST);
+ − 1919
for($i=0;$i<sizeof($_POST);$i++) {
+ − 1920
echo '<input type="hidden" name="'.htmlspecialchars($k[$i]).'" value="'.htmlspecialchars($_POST[$k[$i]]).'" />'."\n";
+ − 1921
}
+ − 1922
?>
+ − 1923
<p>Next, enter your desired username and password. The account you create here will be used to administer your site.</p>
+ − 1924
<table border="0">
257
+ − 1925
<tr><td><b>Administration username</b><br /><small>The administration username you will use to log into your site.<br />This cannot be "anonymous" or in the form of an IP address.</small></td><td><input onkeyup="verify();" name="admin_user" type="text" size="30" /></td><td><img id="s_user" alt="Good/bad icon" src="images/bad.gif" /></td></tr>
+ − 1926
<tr><td>Administration password:</td><td><input onkeyup="verify();" name="admin_pass" type="password" size="30" /></td><td rowspan="2"><img id="s_password" alt="Good/bad icon" src="images/bad.gif" /></td></tr>
+ − 1927
<tr><td>Enter it again to confirm:</td><td><input onkeyup="verify();" name="admin_pass_confirm" type="password" size="30" /></td></tr>
+ − 1928
<tr><td>Your e-mail address:</td><td><input onkeyup="verify();" name="admin_email" type="text" size="30" /></td><td><img id="s_email" alt="Good/bad icon" src="images/bad.gif" /></td></tr>
256
+ − 1929
<tr>
+ − 1930
<td>
+ − 1931
Allow administrators to embed PHP code into pages:<br />
+ − 1932
<small><span style="color: #D84308">Do not under any circumstances enable this option without reading these
+ − 1933
<a href="install.php?mode=pophelp&topic=admin_embed_php"
+ − 1934
onclick="window.open(this.href, 'pophelpwin', 'width=550,height=400,status=no,toolbars=no,toolbar=no,address=no,scroll=yes'); return false;"
+ − 1935
style="color: #D84308; text-decoration: underline;">important security implications</a>.
+ − 1936
</span></small>
+ − 1937
</td>
+ − 1938
<td>
+ − 1939
<label><input type="radio" name="admin_embed_php" value="2" checked="checked" /> Disabled</label>
+ − 1940
<label><input type="radio" name="admin_embed_php" value="4" /> Enabled</label>
+ − 1941
</td>
+ − 1942
<td></td>
+ − 1943
</tr>
+ − 1944
<tr><td colspan="3">If your browser supports Javascript, the password you enter here will be encrypted with AES before it is sent to the server.</td></tr>
+ − 1945
</table>
+ − 1946
<div class="pagenav">
+ − 1947
<table border="0">
257
+ − 1948
<tr>
+ − 1949
<td><input type="submit" value="Continue" onclick="return cryptdata();" name="_cont" /></td><td><p><span style="font-weight: bold;">Before clicking continue:</span><br />• Remember the username and password you enter here! You will not be able to administer your site without the information you enter on this page.</p></td>
+ − 1950
</tr>
256
+ − 1951
</table>
+ − 1952
</div>
+ − 1953
<div id="cryptdebug"></div>
257
+ − 1954
<input type="hidden" name="use_crypt" value="no" />
+ − 1955
<input type="hidden" name="crypt_key" value="<?php echo $cryptkey; ?>" />
+ − 1956
<input type="hidden" name="crypt_data" value="" />
256
+ − 1957
</form>
+ − 1958
<script type="text/javascript">
+ − 1959
// <![CDATA[
+ − 1960
var frm = document.forms.login;
+ − 1961
frm.admin_user.focus();
+ − 1962
function runEncryption()
+ − 1963
{
+ − 1964
str = '';
+ − 1965
for(i=0;i<keySizeInBits/4;i++) str+='0';
+ − 1966
var key = hexToByteArray(str);
+ − 1967
var pt = hexToByteArray(str);
+ − 1968
var ct = rijndaelEncrypt(pt, key, "ECB");
+ − 1969
var ect = byteArrayToHex(ct);
+ − 1970
switch(keySizeInBits)
+ − 1971
{
+ − 1972
case 128:
+ − 1973
v = '66e94bd4ef8a2c3b884cfa59ca342b2e';
+ − 1974
break;
+ − 1975
case 192:
+ − 1976
v = 'aae06992acbf52a3e8f4a96ec9300bd7aae06992acbf52a3e8f4a96ec9300bd7';
+ − 1977
break;
+ − 1978
case 256:
+ − 1979
v = 'dc95c078a2408989ad48a21492842087dc95c078a2408989ad48a21492842087';
+ − 1980
break;
+ − 1981
}
+ − 1982
var testpassed = ( ect == v && md5_vm_test() );
+ − 1983
var frm = document.forms.login;
+ − 1984
if(testpassed)
+ − 1985
{
+ − 1986
// alert('encryption self-test passed');
+ − 1987
frm.use_crypt.value = 'yes';
+ − 1988
var cryptkey = frm.crypt_key.value;
+ − 1989
frm.crypt_key.value = '';
+ − 1990
if(cryptkey != byteArrayToHex(hexToByteArray(cryptkey)))
+ − 1991
{
+ − 1992
alert('Byte array conversion SUCKS');
+ − 1993
testpassed = false;
+ − 1994
}
+ − 1995
cryptkey = hexToByteArray(cryptkey);
+ − 1996
if(!cryptkey || ( ( typeof cryptkey == 'string' || typeof cryptkey == 'object' ) ) && cryptkey.length != keySizeInBits / 8 )
+ − 1997
{
+ − 1998
frm._cont.disabled = true;
+ − 1999
len = ( typeof cryptkey == 'string' || typeof cryptkey == 'object' ) ? '\nLen: '+cryptkey.length : '';
+ − 2000
alert('The key is messed up\nType: '+typeof(cryptkey)+len);
+ − 2001
}
+ − 2002
}
+ − 2003
else
+ − 2004
{
+ − 2005
// alert('encryption self-test FAILED');
+ − 2006
}
+ − 2007
if(testpassed)
+ − 2008
{
+ − 2009
pass = frm.admin_pass.value;
+ − 2010
pass = stringToByteArray(pass);
+ − 2011
cryptstring = rijndaelEncrypt(pass, cryptkey, 'ECB');
+ − 2012
//decrypted = rijndaelDecrypt(cryptstring, cryptkey, 'ECB');
+ − 2013
//decrypted = byteArrayToString(decrypted);
+ − 2014
//return false;
+ − 2015
if(!cryptstring)
+ − 2016
{
+ − 2017
return false;
+ − 2018
}
+ − 2019
cryptstring = byteArrayToHex(cryptstring);
+ − 2020
// document.getElementById('cryptdebug').innerHTML = '<pre>Data: '+cryptstring+'<br />Key: '+byteArrayToHex(cryptkey)+'</pre>';
+ − 2021
frm.crypt_data.value = cryptstring;
+ − 2022
frm.admin_pass.value = '';
+ − 2023
frm.admin_pass_confirm.value = '';
+ − 2024
}
+ − 2025
return false;
+ − 2026
}
+ − 2027
// ]]>
+ − 2028
</script>
+ − 2029
<?php
+ − 2030
break;
+ − 2031
case "confirm":
+ − 2032
if(!isset($_POST['_cont'])) {
+ − 2033
echo 'No POST data signature found. Please <a href="install.php?mode=sysreqs">restart the installation</a>.';
+ − 2034
$template->footer();
+ − 2035
exit;
+ − 2036
}
+ − 2037
unset($_POST['_cont']);
+ − 2038
?>
+ − 2039
<form name="confirm" action="install.php?mode=install" method="post">
+ − 2040
<?php
+ − 2041
$k = array_keys($_POST);
+ − 2042
for($i=0;$i<sizeof($_POST);$i++) {
+ − 2043
echo '<input type="hidden" name="'.htmlspecialchars($k[$i]).'" value="'.htmlspecialchars($_POST[$k[$i]]).'" />'."\n";
+ − 2044
}
+ − 2045
?>
+ − 2046
<h3>Enano is ready to install.</h3>
+ − 2047
<p>The wizard has finished collecting information and is ready to install the database schema. Please review the information below,
+ − 2048
and then click the button below to install the database.</p>
+ − 2049
<ul>
+ − 2050
<li>Database hostname: <?php echo $_POST['db_host']; ?></li>
+ − 2051
<li>Database name: <?php echo $_POST['db_name']; ?></li>
+ − 2052
<li>Database user: <?php echo $_POST['db_user']; ?></li>
+ − 2053
<li>Database password: <hidden></li>
+ − 2054
<li>Site name: <?php echo $_POST['sitename']; ?></li>
+ − 2055
<li>Site description: <?php echo $_POST['sitedesc']; ?></li>
+ − 2056
<li>Administration username: <?php echo $_POST['admin_user']; ?></li>
+ − 2057
<li>Cipher strength: <?php echo (string)AES_BITS; ?>-bit AES<br /><small>Cipher strength is defined in the file constants.php; if you desire to change the cipher strength, you may do so and then restart installation. Unless your site is mission-critical, changing the cipher strength is not necessary.</small></li>
+ − 2058
</ul>
+ − 2059
<div class="pagenav">
+ − 2060
<table border="0">
+ − 2061
<tr>
+ − 2062
<td><input type="submit" value="Install Enano!" name="_cont" /></td><td><p><span style="font-weight: bold;">Before clicking continue:</span><br />• Pray.</p></td>
+ − 2063
</tr>
+ − 2064
</table>
+ − 2065
</div>
+ − 2066
</form>
+ − 2067
<?php
+ − 2068
break;
+ − 2069
case "install":
+ − 2070
if(!isset($_POST['db_host']) ||
+ − 2071
!isset($_POST['db_name']) ||
+ − 2072
!isset($_POST['db_user']) ||
+ − 2073
!isset($_POST['db_pass']) ||
322
+ − 2074
!isset($_POST['db_driver']) ||
256
+ − 2075
!isset($_POST['sitename']) ||
+ − 2076
!isset($_POST['sitedesc']) ||
+ − 2077
!isset($_POST['copyright']) ||
+ − 2078
!isset($_POST['admin_user']) ||
+ − 2079
!isset($_POST['admin_pass']) ||
+ − 2080
!isset($_POST['admin_embed_php']) || ( isset($_POST['admin_embed_php']) && !in_array($_POST['admin_embed_php'], array('2', '4')) ) ||
+ − 2081
!isset($_POST['urlscheme'])
+ − 2082
)
+ − 2083
{
+ − 2084
echo 'The installer has detected that one or more required form values is not set. Please <a href="install.php?mode=sysreqs">restart the installation</a>.';
+ − 2085
$template->footer();
+ − 2086
exit;
+ − 2087
}
322
+ − 2088
if ( !in_array($_POST['db_driver'], array('mysql', 'postgresql')) )
+ − 2089
{
+ − 2090
echo 'Invalid database driver.';
+ − 2091
$template->footer();
+ − 2092
exit;
+ − 2093
}
256
+ − 2094
switch($_POST['urlscheme'])
+ − 2095
{
+ − 2096
case "ugly":
+ − 2097
default:
+ − 2098
$cp = scriptPath.'/index.php?title=';
+ − 2099
break;
+ − 2100
case "short":
+ − 2101
$cp = scriptPath.'/index.php/';
+ − 2102
break;
+ − 2103
case "tiny":
+ − 2104
$cp = scriptPath.'/';
+ − 2105
break;
+ − 2106
}
+ − 2107
function err($t) { global $template; echo $t; $template->footer(); exit; }
+ − 2108
+ − 2109
// $stages = array('connect', 'decrypt', 'genkey', 'parse', 'sql', 'writeconfig', 'renameconfig', 'startapi', 'initlogs');
+ − 2110
+ − 2111
if ( !preg_match('/^[a-z0-9_]*$/', $_POST['table_prefix']) )
+ − 2112
err('Hacking attempt was detected in table_prefix.');
+ − 2113
+ − 2114
start_install_table();
269
+ − 2115
+ − 2116
// Are we just trying to auto-rename the config files? If so, skip everything else
270
5bcdee999015
Major fixes to the ban system - large IP match lists don't slow down the server miserably anymore.
Dan
diff
changeset
+ − 2117
if ( !isset($_GET['stage']) || ( isset($_GET['stage']) && $_GET['stage'] != 'renameconfig' ) )
256
+ − 2118
{
+ − 2119
269
+ − 2120
// The stages connect, decrypt, genkey, and parse are preprocessing and don't do any actual data modification.
+ − 2121
// Thus, they need to be run on each retry, e.g. never skipped.
+ − 2122
run_installer_stage('connect', 'Connect to MySQL', 'stg_mysql_connect', 'MySQL denied our attempt to connect to the database. This is most likely because your login information was incorrect. You will most likely need to <a href="install.php?mode=license">restart the installation</a>.', false);
+ − 2123
if ( isset($_POST['drop_tables']) )
+ − 2124
{
+ − 2125
// Are we supposed to drop any existing tables? If so, do it now
+ − 2126
run_installer_stage('drop', 'Drop existing Enano tables', 'stg_drop_tables', 'This step never returns failure');
+ − 2127
}
+ − 2128
run_installer_stage('decrypt', 'Decrypt administration password', 'stg_decrypt_admin_pass', 'The administration password you entered couldn\'t be decrypted. It is possible that your server did not properly store the encryption key in the configuration file. Please check the file permissions on config.new.php. You may have to return to the login stage of the installation, clear your browser cache, and then rerun this installation.', false);
+ − 2129
run_installer_stage('genkey', 'Generate ' . AES_BITS . '-bit AES private key', 'stg_generate_aes_key', 'Enano encountered an internal error while generating the site encryption key. Please contact the Enano team for support.', false);
+ − 2130
run_installer_stage('parse', 'Prepare to execute schema file', 'stg_parse_schema', 'Enano encountered an internal error while parsing the SQL file that contains the database structure and initial data. Please contact the Enano team for support.', false);
+ − 2131
run_installer_stage('sql', 'Execute installer schema', 'stg_install', 'The installation failed because an SQL query wasn\'t quite correct. It is possible that you entered malformed data into a form field, or there may be a bug in Enano with your version of MySQL. Please contact the Enano team for support.', false);
+ − 2132
run_installer_stage('writeconfig', 'Write configuration files', 'stg_write_config', 'Enano was unable to write the configuration file with your site\'s database credentials. This is almost always because your configuration file does not have the correct permissions. On Windows servers, you may see this message even if the check on the System Requirements page passed. Temporarily running IIS as the Administrator user may help.');
+ − 2133
+ − 2134
// Mainstream installation complete - Enano should be usable now
+ − 2135
// The stage of starting the API is special because it has to be called out of function context.
+ − 2136
// To alleviate this, we have two functions, one that returns success and one that returns failure
+ − 2137
// If the Enano API load is successful, the success function is called to report the action to the user
+ − 2138
// If unsuccessful, the failure report is sent
+ − 2139
+ − 2140
$template_bak = $template;
+ − 2141
+ − 2142
$_GET['title'] = 'Main_Page';
+ − 2143
require('includes/common.php');
+ − 2144
+ − 2145
if ( is_object($db) && is_object($session) )
+ − 2146
{
+ − 2147
run_installer_stage('startapi', 'Start the Enano API', 'stg_start_api_success', '...', false);
+ − 2148
}
+ − 2149
else
+ − 2150
{
+ − 2151
run_installer_stage('startapi', 'Start the Enano API', 'stg_start_api_failure', 'The Enano API could not be started. This is an error that should never occur; please contact the Enano team for support.', false);
+ − 2152
}
+ − 2153
+ − 2154
// We need to be logged in (with admin rights) before logs can be flushed
+ − 2155
$admin_password = stg_decrypt_admin_pass(true);
+ − 2156
$session->login_without_crypto($_POST['admin_user'], $admin_password, false);
+ − 2157
+ − 2158
// Now that login cookies are set, initialize the session manager and ACLs
+ − 2159
$session->start();
+ − 2160
$paths->init();
+ − 2161
+ − 2162
run_installer_stage('initlogs', 'Initialize logs', 'stg_init_logs', '<b>The session manager denied the request to flush logs for the main page.</b><br />
270
5bcdee999015
Major fixes to the ban system - large IP match lists don't slow down the server miserably anymore.
Dan
diff
changeset
+ − 2163
While under most circumstances you can still <a href="install.php?mode=finish">finish the installation</a> after renaming your configuration files, you should be aware that some servers cannot
269
+ − 2164
properly set cookies due to limitations with PHP. These limitations are exposed primarily when this issue is encountered during installation. If you choose
+ − 2165
to finish the installation, please be aware that you may be unable to log into your site.');
+ − 2166
272
e0ec986c0af3
Searching sucks, and Enano's search algorithm was complete bullcrap. So I rewrote it. No, it does not use Google search technology. Like they have a patent for using the Arial font on search result pages anyway.
Dan
diff
changeset
+ − 2167
run_installer_stage('buildindex', 'Initialize search index', 'stg_build_index', 'Something went wrong while the page manager was attempting to build a search index.');
e0ec986c0af3
Searching sucks, and Enano's search algorithm was complete bullcrap. So I rewrote it. No, it does not use Google search technology. Like they have a patent for using the Arial font on search result pages anyway.
Dan
diff
changeset
+ − 2168
270
5bcdee999015
Major fixes to the ban system - large IP match lists don't slow down the server miserably anymore.
Dan
diff
changeset
+ − 2169
/*
5bcdee999015
Major fixes to the ban system - large IP match lists don't slow down the server miserably anymore.
Dan
diff
changeset
+ − 2170
* HACKERS:
5bcdee999015
Major fixes to the ban system - large IP match lists don't slow down the server miserably anymore.
Dan
diff
changeset
+ − 2171
* If you're making a custom distribution of Enano, put all your custom plugin-related code here.
5bcdee999015
Major fixes to the ban system - large IP match lists don't slow down the server miserably anymore.
Dan
diff
changeset
+ − 2172
* You have access to the full Enano API as well as being logged in with complete admin rights.
5bcdee999015
Major fixes to the ban system - large IP match lists don't slow down the server miserably anymore.
Dan
diff
changeset
+ − 2173
* Don't do anything horrendously fancy here, unless you add a new stage (or more than one) and
5bcdee999015
Major fixes to the ban system - large IP match lists don't slow down the server miserably anymore.
Dan
diff
changeset
+ − 2174
* have the progress printed out properly.
5bcdee999015
Major fixes to the ban system - large IP match lists don't slow down the server miserably anymore.
Dan
diff
changeset
+ − 2175
*/
5bcdee999015
Major fixes to the ban system - large IP match lists don't slow down the server miserably anymore.
Dan
diff
changeset
+ − 2176
269
+ − 2177
} // check for stage == renameconfig
256
+ − 2178
else
+ − 2179
{
270
5bcdee999015
Major fixes to the ban system - large IP match lists don't slow down the server miserably anymore.
Dan
diff
changeset
+ − 2180
// If we did skip the main installer routine, set $template_bak to make the reversal later work properly
269
+ − 2181
$template_bak = $template;
256
+ − 2182
}
268
58477ab3937f
Hopefully managed to put enough hacks in there to make renaming the config file the last step, so if it fails, it can be done manually
Dan
diff
changeset
+ − 2183
270
5bcdee999015
Major fixes to the ban system - large IP match lists don't slow down the server miserably anymore.
Dan
diff
changeset
+ − 2184
// Final step is to rename the config file
5bcdee999015
Major fixes to the ban system - large IP match lists don't slow down the server miserably anymore.
Dan
diff
changeset
+ − 2185
// In early revisions of 1.0.2, this step was performed prior to the initialization of the Enano API. It was decided to move
5bcdee999015
Major fixes to the ban system - large IP match lists don't slow down the server miserably anymore.
Dan
diff
changeset
+ − 2186
// this stage to the end because it will fail more often than any other stage, thus making alternate routes imperative. If this
5bcdee999015
Major fixes to the ban system - large IP match lists don't slow down the server miserably anymore.
Dan
diff
changeset
+ − 2187
// stage fails, then no big deal, we'll just have the user rename the files manually and then let them see the pretty success message.
269
+ − 2188
run_installer_stage('renameconfig', 'Rename configuration files', 'stg_rename_config', 'Enano couldn\'t rename the configuration files to their correct production names. Please CHMOD the folder where your Enano files are to 777 and click the retry button below, <b><u>or</u></b> perform the following rename operations and then <a href="install.php?mode=finish">finish the installation</a>.<ul><li>Rename config.new.php to config.php</li><li>Rename .htaccess.new to .htaccess (only if you selected Tiny URLs)</li></ul>');
268
58477ab3937f
Hopefully managed to put enough hacks in there to make renaming the config file the last step, so if it fails, it can be done manually
Dan
diff
changeset
+ − 2189
256
+ − 2190
close_install_table();
+ − 2191
+ − 2192
unset($template);
+ − 2193
$template =& $template_bak;
+ − 2194
+ − 2195
echo '<h3>Installation of Enano is complete.</h3><p>Review any warnings above, and then <a href="install.php?mode=finish">click here to finish the installation</a>.';
+ − 2196
+ − 2197
// echo '<script type="text/javascript">window.location="'.scriptPath.'/install.php?mode=finish";</script>';
+ − 2198
+ − 2199
break;
+ − 2200
case "finish":
+ − 2201
echo '<h3>Congratulations!</h3>
+ − 2202
<p>You have finished installing Enano on this server.</p>
+ − 2203
<h3>Now what?</h3>
+ − 2204
<p>Click the link below to see the main page for your website. Where to go from here:</p>
+ − 2205
<ul>
+ − 2206
<li>The first thing you should do is log into your site using the Log in link on the sidebar.</li>
+ − 2207
<li>Go into the Administration panel, expand General, and click General Configuration. There you will be able to configure some basic information about your site.</li>
+ − 2208
<li>Visit the <a href="http://enanocms.org/Category:Plugins" onclick="window.open(this.href); return false;">Enano Plugin Gallery</a> to download and use plugins on your site.</li>
+ − 2209
<li>Periodically create a backup of your database and filesystem, in case something goes wrong. This should be done at least once a week – more for wiki-based sites.</li>
+ − 2210
<li>Hire some moderators, to help you keep rowdy users tame.</li>
+ − 2211
<li>Tell the <a href="http://enanocms.org/Contact_us">Enano team</a> what you think.</li>
+ − 2212
<li><b>Spread the word about Enano by adding a link to the Enano homepage on your sidebar!</b> You can enable this option in the General Configuration section of the administration panel.</li>
+ − 2213
</ul>
+ − 2214
<p><a href="index.php">Go to your website...</a></p>';
+ − 2215
break;
276
acfdccf7a2bf
Re-sync Oxygen and Mint and Oxygen simple with Oxygen main; a couple improvements to the redirect-on-no-config code
Dan
diff
changeset
+ − 2216
// this stage is never shown during the installation, but is provided for legal purposes
acfdccf7a2bf
Re-sync Oxygen and Mint and Oxygen simple with Oxygen main; a couple improvements to the redirect-on-no-config code
Dan
diff
changeset
+ − 2217
case "showlicense":
acfdccf7a2bf
Re-sync Oxygen and Mint and Oxygen simple with Oxygen main; a couple improvements to the redirect-on-no-config code
Dan
diff
changeset
+ − 2218
show_license(true);
acfdccf7a2bf
Re-sync Oxygen and Mint and Oxygen simple with Oxygen main; a couple improvements to the redirect-on-no-config code
Dan
diff
changeset
+ − 2219
break;
256
+ − 2220
}
+ − 2221
$template->footer();
+ − 2222
+ − 2223
?>