X-Git-Url: https://git.mxchange.org/?a=blobdiff_plain;f=index.php;h=3108e57cf25cfd999d9f0ecd3a04bb99f3e3b81e;hb=c0be733d6d5318f333514430a5b1ad11821d2f3d;hp=f05151757b5466f8944299821cde706398e2ae11;hpb=b6d11f21297331cda361ebadca3c1cf453027fdd;p=friendica.git
diff --git a/index.php b/index.php
index f05151757b..3108e57cf2 100644
--- a/index.php
+++ b/index.php
@@ -13,6 +13,8 @@
*
*/
+use \Friendica\Core\Config;
+
require_once('boot.php');
require_once('object/BaseObject.php');
@@ -26,17 +28,17 @@ $a->backend = false;
/**
*
* Load the configuration file which contains our DB credentials.
- * Ignore errors. If the file doesn't exist or is empty, we are running in installation mode.
+ * Ignore errors. If the file doesn't exist or is empty, we are running in
+ * installation mode.
*
*/
$install = ((file_exists('.htconfig.php') && filesize('.htconfig.php')) ? false : true);
-@include(".htconfig.php");
-
-
-
-
+// Only load config if found, don't surpress errors
+if (!$install) {
+ include(".htconfig.php");
+}
/**
*
@@ -46,7 +48,7 @@ $install = ((file_exists('.htconfig.php') && filesize('.htconfig.php')) ? false
require_once("include/dba.php");
-if(!$install) {
+if (!$install) {
$db = new dba($db_host, $db_user, $db_pass, $db_data, $install);
unset($db_host, $db_user, $db_pass, $db_data);
@@ -54,8 +56,7 @@ if(!$install) {
* Load configs from db. Overwrite configs from .htconfig.php
*/
- load_config('config');
- load_config('system');
+ Config::load();
if ($a->max_processes_reached() OR $a->maxload_reached()) {
header($_SERVER["SERVER_PROTOCOL"].' 503 Service Temporarily Unavailable');
@@ -116,12 +117,12 @@ if (x($_SESSION,'authenticated') && !x($_SESSION,'language')) {
if (dbm::is_result($r)) $_SESSION['language'] = $r[0]['language'];
}
-if((x($_SESSION,'language')) && ($_SESSION['language'] !== $lang)) {
+if ((x($_SESSION,'language')) && ($_SESSION['language'] !== $lang)) {
$lang = $_SESSION['language'];
load_translation_table($lang);
}
-if((x($_GET,'zrl')) && (!$install && !$maintenance)) {
+if ((x($_GET,'zrl')) && (!$install && !$maintenance)) {
// Only continue when the given profile link seems valid
// Valid profile links contain a path with "/profile/" and no query parameters
if ((parse_url($_GET['zrl'], PHP_URL_QUERY) == "") AND
@@ -222,7 +223,7 @@ if ((local_user()) || (! $privateapps === "1")) {
* further processing.
*/
-if(strlen($a->module)) {
+if (strlen($a->module)) {
/**
*
@@ -232,12 +233,14 @@ if(strlen($a->module)) {
*/
// Compatibility with the Android Diaspora client
- if ($a->module == "stream")
+ if ($a->module == "stream") {
$a->module = "network";
+ }
// Compatibility with the Firefox App
- if (($a->module == "users") AND ($a->cmd == "users/sign_in"))
+ if (($a->module == "users") AND ($a->cmd == "users/sign_in")) {
$a->module = "login";
+ }
$privateapps = get_config('config','private_addons');
@@ -245,11 +248,11 @@ if(strlen($a->module)) {
//Check if module is an app and if public access to apps is allowed or not
if ((!local_user()) && plugin_is_app($a->module) && $privateapps === "1") {
info( t("You must be logged in to use addons. "));
- }
- else {
+ } else {
include_once("addon/{$a->module}/{$a->module}.php");
- if(function_exists($a->module . '_module'))
+ if (function_exists($a->module . '_module')) {
$a->module_loaded = true;
+ }
}
}
@@ -319,29 +322,29 @@ if (!$install && !$maintenance) {
* Call module functions
*/
-if($a->module_loaded) {
+if ($a->module_loaded) {
$a->page['page_title'] = $a->module;
$placeholder = '';
- if(function_exists($a->module . '_init')) {
+ if (function_exists($a->module . '_init')) {
call_hooks($a->module . '_mod_init', $placeholder);
$func = $a->module . '_init';
$func($a);
}
- if(function_exists(str_replace('-','_',current_theme()) . '_init')) {
+ if (function_exists(str_replace('-','_',current_theme()) . '_init')) {
$func = str_replace('-','_',current_theme()) . '_init';
$func($a);
}
// elseif (x($a->theme_info,"extends") && file_exists("view/theme/".$a->theme_info["extends"]."/theme.php")) {
// require_once("view/theme/".$a->theme_info["extends"]."/theme.php");
-// if(function_exists(str_replace('-','_',$a->theme_info["extends"]) . '_init')) {
+// if (function_exists(str_replace('-','_',$a->theme_info["extends"]) . '_init')) {
// $func = str_replace('-','_',$a->theme_info["extends"]) . '_init';
// $func($a);
// }
// }
- if(($_SERVER['REQUEST_METHOD'] === 'POST') && (! $a->error)
+ if (($_SERVER['REQUEST_METHOD'] === 'POST') && (! $a->error)
&& (function_exists($a->module . '_post'))
&& (! x($_POST,'auth-params'))) {
call_hooks($a->module . '_mod_post', $_POST);
@@ -349,13 +352,13 @@ if($a->module_loaded) {
$func($a);
}
- if((! $a->error) && (function_exists($a->module . '_afterpost'))) {
+ if ((! $a->error) && (function_exists($a->module . '_afterpost'))) {
call_hooks($a->module . '_mod_afterpost',$placeholder);
$func = $a->module . '_afterpost';
$func($a);
}
- if((! $a->error) && (function_exists($a->module . '_content'))) {
+ if ((! $a->error) && (function_exists($a->module . '_content'))) {
$arr = array('content' => $a->page['content']);
call_hooks($a->module . '_mod_content', $arr);
$a->page['content'] = $arr['content'];
@@ -365,7 +368,7 @@ if($a->module_loaded) {
$a->page['content'] .= $arr['content'];
}
- if(function_exists(str_replace('-','_',current_theme()) . '_content_loaded')) {
+ if (function_exists(str_replace('-','_',current_theme()) . '_content_loaded')) {
$func = str_replace('-','_',current_theme()) . '_content_loaded';
$func($a);
}
@@ -391,18 +394,20 @@ $a->init_page_end();
// If you're just visiting, let javascript take you home
-if(x($_SESSION,'visitor_home'))
+if (x($_SESSION,'visitor_home')) {
$homebase = $_SESSION['visitor_home'];
-elseif(local_user())
+} elseif (local_user()) {
$homebase = 'profile/' . $a->user['nickname'];
+}
-if(isset($homebase))
+if (isset($homebase)) {
$a->page['content'] .= '';
+}
// now that we've been through the module content, see if the page reported
// a permission problem and if so, a 403 response would seem to be in order.
-if(stristr( implode("",$_SESSION['sysmsg']), t('Permission denied'))) {
+if (stristr( implode("",$_SESSION['sysmsg']), t('Permission denied'))) {
header($_SERVER["SERVER_PROTOCOL"] . ' 403 ' . t('Permission denied.'));
}
@@ -412,31 +417,15 @@ if(stristr( implode("",$_SESSION['sysmsg']), t('Permission denied'))) {
*
*/
-/*if(x($_SESSION,'sysmsg')) {
- $a->page['content'] = "{$_SESSION['sysmsg']}
\r\n"
- . ((x($a->page,'content')) ? $a->page['content'] : '');
- $_SESSION['sysmsg']="";
- unset($_SESSION['sysmsg']);
-}
-if(x($_SESSION,'sysmsg_info')) {
- $a->page['content'] = "{$_SESSION['sysmsg_info']}
\r\n"
- . ((x($a->page,'content')) ? $a->page['content'] : '');
- $_SESSION['sysmsg_info']="";
- unset($_SESSION['sysmsg_info']);
-}*/
-
-
-
call_hooks('page_end', $a->page['content']);
-
/**
*
* Add the navigation (menu) template
*
*/
-if($a->module != 'install' && $a->module != 'maintenance') {
+if ($a->module != 'install' && $a->module != 'maintenance') {
nav($a);
}
@@ -444,27 +433,27 @@ if($a->module != 'install' && $a->module != 'maintenance') {
* Add a "toggle mobile" link if we're using a mobile device
*/
-if($a->is_mobile || $a->is_tablet) {
- if(isset($_SESSION['show-mobile']) && !$_SESSION['show-mobile']) {
+if ($a->is_mobile || $a->is_tablet) {
+ if (isset($_SESSION['show-mobile']) && !$_SESSION['show-mobile']) {
$link = 'toggle_mobile?address=' . curPageURL();
- }
- else {
+ } else {
$link = 'toggle_mobile?off=1&address=' . curPageURL();
}
$a->page['footer'] = replace_macros(get_markup_template("toggle_mobile_footer.tpl"), array(
- '$toggle_link' => $link,
- '$toggle_text' => t('toggle mobile')
- ));
+ '$toggle_link' => $link,
+ '$toggle_text' => t('toggle mobile')
+ ));
}
/**
* Build the page - now that we have all the components
*/
-if(!$a->theme['stylesheet'])
+if (!$a->theme['stylesheet']) {
$stylesheet = current_theme_url();
-else
+} else {
$stylesheet = $a->theme['stylesheet'];
+}
$a->page['htmlhead'] = str_replace('{{$stylesheet}}',$stylesheet,$a->page['htmlhead']);
//$a->page['htmlhead'] = replace_macros($a->page['htmlhead'], array('$stylesheet' => $stylesheet));
@@ -484,7 +473,6 @@ if (isset($_GET["mode"]) AND (($_GET["mode"] == "raw") OR ($_GET["mode"] == "min
$list = $xpath->query("//*[contains(@id,'tread-wrapper-')]"); /* */
foreach ($list as $item) {
-
$item = $target->importNode($item, true);
// And then append it to the target
@@ -498,8 +486,9 @@ if (isset($_GET["mode"]) AND ($_GET["mode"] == "raw")) {
echo substr($target->saveHTML(), 6, -8);
- if (!$a->is_backend())
+ if (!$a->is_backend()) {
session_write_close();
+ }
exit;
}
@@ -507,23 +496,25 @@ if (isset($_GET["mode"]) AND ($_GET["mode"] == "raw")) {
$page = $a->page;
$profile = $a->profile;
-header("X-Friendica-Version: ".FRIENDICA_VERSION);
+header("X-Friendica-Version: " . FRIENDICA_VERSION);
header("Content-type: text/html; charset=utf-8");
// We use $_GET["mode"] for special page templates. So we will check if we have
// to load another page template than the default one
// The page templates are located in /view/php/ or in the theme directory
if (isset($_GET["mode"])) {
- $template = theme_include($_GET["mode"].'.php');
+ $template = theme_include($_GET["mode"] . '.php');
}
// If there is no page template use the default page template
-if(!$template) {
+if (!$template) {
$template = theme_include("default.php");
}
-require_once($template);
+/// @TODO Looks unsafe (remote-inclusion), is maybe not but theme_include() uses file_exists() but does not escape anything
+require_once $template;
-if (!$a->is_backend())
+if (!$a->is_backend()) {
session_write_close();
-exit;
+}
+exit();