X-Git-Url: https://git.mxchange.org/?p=mailer.git;a=blobdiff_plain;f=modules.php;h=4034faef7d39d43af39461c91a9ae1c640c3f240;hp=3a95d923ba0e1db9193fbacde8d79f92632cdb90;hb=3e2e8ea82079f4e76b8add38efccf6c24afda507;hpb=d8148e3f1f3a6762b2e786dbe99ada269dcf2ea0 diff --git a/modules.php b/modules.php index 3a95d923ba..4034faef7d 100644 --- a/modules.php +++ b/modules.php @@ -10,9 +10,14 @@ * -------------------------------------------------------------------- * * Kurzbeschreibung : Hauptladedatei. Laedt alle benoetigten Dateien * * -------------------------------------------------------------------- * - * * + * $Revision:: $ * + * $Date:: $ * + * $Tag:: 0.2.1-FINAL $ * + * $Author:: $ * + * Needs to be in all Files and every File needs "svn propset * + * svn:keywords Date Revision" (autoprobset!) at least!!!!!! * * -------------------------------------------------------------------- * - * Copyright (c) 2003 - 2008 by Roland Haeder * + * Copyright (c) 2003 - 2009 by Roland Haeder * * For more information visit: http://www.mxchange.org * * * * This program is free software; you can redistribute it and/or modify * @@ -32,133 +37,91 @@ ************************************************************************/ // XDEBUG call -//xdebug_start_trace(); +//* DEBUG: */ xdebug_start_trace(); -// Load security stuff here (Oh, I hope this is not unsecure? Am I paranoia??? ;-) ) -require("inc/libs/security_functions.php"); +// Load security stuff here +require('inc/libs/security_functions.php'); -// Init "action" and "what" +// Init start time $GLOBALS['startTime'] = microtime(true); + +// Init output mode and module $GLOBALS['output_mode'] = 0; -$GLOBALS['what'] = ""; -$GLOBALS['action'] = ""; -$GLOBALS['userid'] = 0; +$GLOBALS['module'] = ''; -// Fix missing module to "index" -if (!REQUEST_ISSET_GET(('module'))) REQUEST_SET_GET('module', "index"); +// Needed include files +require('inc/config-global.php'); -// Secure action/what if present -if (REQUEST_ISSET_GET(('action'))) $GLOBALS['action'] = secureString(REQUEST_GET('action')); -if (REQUEST_ISSET_GET(('what'))) $GLOBALS['what'] = secureString(REQUEST_GET('what')); +// Set content type +setContentType('text/html'); -// Secure the module name (very important line!) -$GLOBALS['module'] = secureString(REQUEST_GET('module')); - -// Needed include files -require("inc/config.php"); - -// Check if logged in -if (IS_MEMBER()) { - // Is still logged in so we welcome him with his name - $result = SQL_QUERY_ESC("SELECT surname, family FROM `{!_MYSQL_PREFIX!}_user_data` WHERE userid=%s LIMIT 1", - array($GLOBALS['userid']), __FILE__, __LINE__); - if (SQL_NUMROWS($result) == 1) { - // Load surname and family's name and build the username - list($s, $f) = SQL_FETCHROW($result); - $username = $s." ".$f; - - // Additionally admin? - if (IS_ADMIN()) { - // Add it - $username .= " ({!_ADMIN_SHORT!})"; - } // END - if - } else { - // Hmmm, logged in and no valid userid? - $username = "{!_UNKNOWN!}"; - - // Destroy session - destroy_user_session(); - - // Kill userid - $GLOBALS['userid'] = 0; - } - - // Free memory - SQL_FREERESULT($result); -} elseif (IS_ADMIN()) { - // Admin is there - $username = getMessage('_ADMIN'); -} else { - // He's a guest, hello there... ;-) - $username = getMessage('_GUEST'); -} +// Fix missing module to 'index' +if (!isGetRequestElementSet('module')) setRequestGetElement('module', 'index'); // The header file -LOAD_INC_ONCE("inc/header.php"); +loadIncludeOnce('inc/header.php'); // Modules are by default not valid! -$MOD_VALID = false; $check = "failed"; -if ((getConfig('maintenance') == "Y") && (!IS_ADMIN()) && ($GLOBALS['module'] != "admin")) { +$isModuleValid = false; +$URL = ''; +$check = 'failed'; + +// Is the maintenance mode active or goes all well? +if ((isExtensionActive('maintenance')) && (getConfig('maintenance') == 'Y') && (!isAdmin()) && (getModule() != 'admin')) { // Maintain mode is active and you are no admin - addFatalMessage(getMessage('LANG_DOWN_MAINTAINCE')); + addFatalMessage(__FILE__, __LINE__, getMessage('LANG_DOWN_MAINTAINCE')); } elseif ((SQL_IS_LINK_UP()) && (getTotalFatalErrors() == 0)) { // Construct module name - define('__MODULE', sprintf("inc/modules/%s.php", SQL_ESCAPE($GLOBALS['module']))); - - // Did we found the module listed in allowed modules and are we successfully connected? - $check = CHECK_MODULE($GLOBALS['module']); - switch ($check) - { - case "admin_only": - case "mem_only": - case "done": - // Does the module exists on local file system? - if ((FILE_READABLE(constant('__MODULE'))) && (getTotalFatalErrors() == 0)) { - // Module is valid, active and located on the local disc... - $MOD_VALID = true; - } elseif (!empty($URL)) { - // An URL was specified so we load the de-referrer module - LOAD_URL(DEREFERER($URL)); - } elseif (getTotalFatalErrors() == 0) { - addFatalMessage(sprintf(getMessage('LANG_MOD_REG_404'), $GLOBALS['module'])); - } - break; - - case "404": - addFatalMessage(sprintf(getMessage('LANG_MOD_REG_404'), $GLOBALS['module'])); - break; - - case "locked": - if (!FILE_READABLE(constant('__MODULE'))) { - // Module does addionally not exists - addFatalMessage(sprintf(getMessage('LANG_MOD_REG_404'), $GLOBALS['module'])); - } // END - if - - // Add fatal message - addFatalMessage(sprintf(getMessage('LANG_MOD_REG_LOCKED'), $GLOBALS['module'])); - break; - - default: - DEBUG_LOG(__FILE__, __LINE__, sprintf("Unknown status %s return from module check. Module=%s", $check, $GLOBALS['module'])); - addFatalMessage(sprintf(getMessage('LANG_MOD_REG_UNKNOWN'), $check)); - break; - } + $GLOBALS['module_inc'] = sprintf("inc/modules/%s.php", getModule()); + + // Check module permission (again) + $check = checkModulePermissions(); + switch ($check) { + case 'cache_miss': // The cache is gone + case 'admin_only': // Admin-only access + case 'mem_only': // Member-only access + case 'done': // All fine! + // Does the module exists on local file system? + if ((isIncludeReadable($GLOBALS['module_inc'])) && (getTotalFatalErrors() == 0)) { + // Module is valid, active and located on the local disc... + $isModuleValid = true; + } elseif (getTotalFatalErrors() == 0) { + // Module not found! + addFatalMessage(__FILE__, __LINE__, sprintf(getMessage('LANG_MOD_REG_404'), getModule())); + } + break; + + case '404': + addFatalMessage(__FILE__, __LINE__, sprintf(getMessage('LANG_MOD_REG_404'), getModule())); + break; + + case 'locked': + if (!isIncludeReadable($GLOBALS['module_inc'])) { + // Module does addionally not exists + addFatalMessage(__FILE__, __LINE__, sprintf(getMessage('LANG_MOD_REG_404'), getModule())); + } // END - if + + // Add fatal message + addFatalMessage(__FILE__, __LINE__, sprintf(getMessage('LANG_MOD_REG_LOCKED'), getModule())); + break; + + default: + logDebugMessage(__FILE__, __LINE__, sprintf("Unknown status %s return from module check. Module=%s", $check, getModule())); + addFatalMessage(__FILE__, __LINE__, sprintf(getMessage('LANG_MOD_REG_UNKNOWN'), $check)); + break; + } // END - switch } elseif (getTotalFatalErrors() == 0) { // MySQL problems! - addFatalMessage(getMessage('MYSQL_ERRORS')); + addFatalMessage(__FILE__, __LINE__, getMessage('MYSQL_ERRORS')); } -if (($MOD_VALID) && (defined('__MODULE'))) { - ///////////////////////////////////////////// - // Main including line DO NOT REMOVE/EDIT! // - ///////////////////////////////////////////// - // +if (($isModuleValid === true) && (isset($GLOBALS['module_inc']))) { // Everything is okay so we can load the module - LOAD_INC_ONCE(constant('__MODULE')); + loadIncludeOnce($GLOBALS['module_inc']); } // END - if -// Next-to-end add the footer -LOAD_INC_ONCE("inc/footer.php"); +// Add the footer (this will call shutdown()) +loadIncludeOnce('inc/footer.php'); -// +// [EOF] ?>