MERGE: リビジョン1705/1706をマージ

[nucleus-jp/nucleus-next.git] / install / index.php

<?php\r
/*\r
 * Nucleus: PHP/MySQL Weblog CMS (http://nucleuscms.org/)\r
 * Copyright (C) 2002-2012 The Nucleus Group\r
 *\r
 * This program is free software; you can redistribute it and/or\r
 * modify it under the terms of the GNU General Public License\r
 * as published by the Free Software Foundation; either version 2\r
 * of the License, or (at your option) any later version.\r
 * (see nucleus/documentation/index.html#license for more info)\r
 *\r
 * This script will install the Nucleus tables in your SQL-database,\r
 * and initialize the data in those tables.\r
 */\r
\r
/**\r
 * @license http://nucleuscms.org/license.txt GNU General Public License\r
 * @copyright Copyright (C) 2002-2012 The Nucleus Group\r
 * @version $Id: index.php 1705 2012-03-23 15:46:55Z sakamocchi $\r
 */\r
\r
/* global values initialize */\r
$CONF = array();\r
\r
/* reporting all errors for support */\r
error_reporting(E_ALL);\r
\r
$minimum_php_version    = '5.0.6';\r
$minimum_mysql_version  = '3.23';\r
\r
$page_footer_copyright  = '&copy; 2001-2012 The Nucleus Groupe . Running Nucleus CMS v4.00';\r
\r
// begin if: server's PHP version is below the minimum; halt installation\r
if ( version_compare(PHP_VERSION, $minimum_php_version, '<') )\r
{\r
        exit('<div style="font-size: xx-large;"> Nucleus requires at least PHP version '. $minimum_php_version .'</div>');\r
}\r
\r
// make sure there's no unnecessary escaping: # set_magic_quotes_runtime(0);\r
if ( version_compare(PHP_VERSION, '5.3.0', '<') )\r
{\r
        ini_set('magic_quotes_runtime', '0');\r
}\r
\r
/* default installed plugins and skins */\r
$aConfPlugsToInstall    = array('NP_SecurityEnforcer', 'NP_SkinFiles', 'NP_Text');\r
$aConfSkinsToImport             = array('atom', 'rss2.0', 'rsd', 'default');\r
\r
// Check if some important files\r
do_check_files();\r
\r
/* i18n class is needed for internationalization */\r
include_once('../nucleus/libs/i18n.php');\r
if ( !i18n::init('UTF-8', './locales') )\r
{\r
        exit('<div style="font-size: xx-large;"> Failed to initialize iconv or mbstring extension. Would you please contact the administrator of your PHP server? </div>');\r
}\r
\r
// check if mysql support is installed; this check may not make sense, as is, in a version past 3.5x\r
if ( !function_exists('mysql_query') && !function_exists('mysqli_query') )\r
{\r
        exit('<div style="font-size: xx-large;"> Your PHP version does not have support for MySQL :( </div>');\r
}\r
\r
// include core classes that are needed for login & plugin handling\r
include_once('../nucleus/libs/mysql.php');\r
\r
// added for 3.5 sql_* wrapper\r
global $MYSQL_HANDLER;\r
\r
if ( !isset($MYSQL_HANDLER) )\r
{\r
        $MYSQL_HANDLER = array('mysql', '');\r
}\r
include_once('../nucleus/libs/sql/' . $MYSQL_HANDLER[0] . '.php');\r
\r
session_start();\r
if ( count($_GET) == 0 && count($_POST) == 0 )\r
{\r
        unset($_SESSION['param_manager']);\r
}\r
\r
// restore the $param from the session\r
if ( array_key_exists('param_manager', $_SESSION) )\r
{\r
        $param = $_SESSION['param_manager'];\r
}\r
else\r
{\r
        $param = new PARAM_MANAGER();\r
}\r
\r
// include translation file\r
if ( array_key_exists('locale', $_POST) ) $param->set_locale();\r
i18n::set_current_locale($param->locale);\r
$translation_file = './locales/' . i18n::get_current_locale() . '.' . i18n::get_current_charset() . '.php';\r
if ( !file_exists($translation_file) )\r
{\r
        $translation_file = './locales/en_Latn_US.UTF-8.php';\r
}\r
include($translation_file);\r
\r
do_action();\r
\r
// $param is saved to the session\r
if ( isset($param) )\r
{\r
        $_SESSION['param_manager'] = $param;\r
}\r
else\r
{\r
        unset($_SESSION['param_manager']);\r
}\r
exit;\r
\r
\r
/**\r
 * installer action\r
 */\r
function do_action()\r
{\r
        global $param;\r
\r
        if ( array_key_exists('action', $_POST) )\r
        {\r
                $isPostback = true;\r
        }\r
        else\r
        {\r
                $isPostback = false;\r
        }\r
\r
        // mode change\r
        if ( array_key_exists('mode', $_REQUEST) )\r
        {\r
                if ( $_REQUEST['mode'] == 'detail' )\r
                {\r
                        $param->set_state('detail');\r
                }\r
                elseif ( $_REQUEST['mode'] == 'simple' )\r
                {\r
                        $param->set_state('mysql');\r
                }\r
        }\r
\r
        // input parameter check\r
        if ( $isPostback )\r
        {\r
                switch ( $param->state )\r
                {\r
                        case 'locale':\r
                                $param->set_locale();\r
                                $param->set_state('mysql');\r
                                $isPostback = false;\r
                                break;\r
                        case 'mysql':\r
                                if ( count($param->check_mysql_parameters()) == 0 )\r
                                {\r
                                        $param->set_state('weblog');\r
                                        $isPostback = false;\r
                                }\r
                                break;\r
                        case 'weblog':\r
                                if ( count($param->check_user_parameters()) == 0\r
                                        && count($param->check_weblog_parameters()) == 0 )\r
                                {\r
                                        $param->set_state('install');\r
                                        $isPostback = false;\r
                                }\r
                                break;\r
                        case 'detail':\r
                                if ( $param->check_all_parameters() )\r
                                {\r
                                        $param->set_state('install');\r
                                        $isPostback = false;\r
                                }\r
                                break;\r
                }\r
        }\r
\r
        // page render\r
        show_header();\r
        switch ( $param->state )\r
        {\r
                case 'locale':\r
                        show_select_locale_form();\r
                        break;\r
                case 'mysql':\r
                        show_database_setting_form($isPostback);\r
                        break;\r
                case 'weblog':\r
                        show_blog_setting_form($isPostback);\r
                        break;\r
                case 'detail':\r
                        show_detail_setting_form($isPostback);\r
                        break;\r
                case 'install':\r
                        show_install_complete_form();\r
                        break;\r
        }\r
        show_footer();\r
}\r
\r
/**\r
 * header tag of the installation screens\r
 **/\r
function show_header()\r
{\r
        global $param;\r
\r
        /* HTTP 1.1 application for no caching */\r
        header("Cache-Control: no-cache, must-revalidate");\r
        header("Expires: Sat, 26 Jul 1997 05:00:00 GMT");\r
        header('Content-Type: text/html; charset=' . i18n::get_current_charset());\r
\r
?>\r
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">\r
<html xmlns="http://www.w3.org/1999/xhtml">\r
        <head>\r
                <title><?php echo _TITLE; ?></title>\r
                <link rel="stylesheet" type="text/css" href="./styles/inst.css" />\r
                <style type="text/css">\r
                <!--\r
                <?php echo _BODYFONTSTYLE; ?>\r
                -->\r
                </style>\r
        </head>\r
        <body>\r
                <div id="header">\r
                        <div id="navigation">\r
                                <h1><img src="./styles/nucleus_rogo.png" alt="NucleusCMS" /></h1>\r
                                <ul>\r
                                        <?php\r
                                        if ( in_array($param->state, array('mysql', 'weblog', 'install')) )\r
                                        {\r
                                                echo '<li>', _STEP1, '</li><li';\r
                                                if ( $param->state == 'mysql' )\r
                                                {\r
                                                        echo ' class="gry"';\r
                                                }\r
                                                echo '>&nbsp; &gt; &nbsp;', _STEP2, '</li><li';\r
                                                if ( in_array($param->state, array('mysql', 'weblog')) )\r
                                                {\r
                                                        echo ' class="gry"';\r
                                                }\r
                                                echo '>&nbsp; &gt; &nbsp;', _STEP3, "</li>¥n";\r
                                        }\r
                                        if ( in_array($param->state, array('mysql', 'weblog', 'detail')) )\r
                                        {\r
                                                echo '<li class="rightbox">';\r
                                                if ( in_array($param->state, array('mysql', 'weblog')) )\r
                                                {\r
                                                        echo '<a href="./?mode=detail">', _MODE2, '</a>';\r
                                                }\r
                                                else\r
                                                {\r
                                                        echo '<a href="./?mode=simple">', _MODE1, '</a>';\r
                                                }\r
                                                echo '</li>';\r
                                        }\r
                                        ?>\r
                                </ul>\r
                        </div>\r
                </div>\r
<?php\r
}\r
\r
/**\r
 * footer tag of the installation screens\r
 **/\r
function show_footer()\r
{\r
        global $page_footer_copyright;\r
?>\r
                <div id="footer">\r
                        <?php echo $page_footer_copyright; ?>\r
                </div>\r
        </body>\r
</html>\r
<?php\r
}\r
\r
/**\r
 * Display the form for language select\r
 */\r
function show_select_locale_form()\r
{\r
        // Get the browser language that can be displayed\r
        // TODO: default locale select simple implementation\r
        $languages = explode(',', $_SERVER['HTTP_ACCEPT_LANGUAGE']);\r
        foreach ($languages as $language)\r
        {\r
                $language = preg_replace('#([¥w]+).*#', '$1', $language);\r
                break;\r
        }\r
\r
        $locales = array(\r
                array('en_Latn_US', 'English - United States'),\r
                array('ja_Jpan_JP', 'Japanese - Japan')\r
        );\r
?>\r
                <div id="container">\r
                        <p style="font-size:152%;font-weight:bold;">\r
                                Select your locale:\r
                        </p>\r
                        <form method="post" action="./index.php">\r
\r
                                <div class="prt">\r
                                        <select name="locale">\r
<?php\r
        foreach ( $locales as $locale )\r
        {\r
                echo "<option value=¥"$locale[0]¥"";\r
                if ( i18n::strpos($locale[0], $language) === 0 )\r
                {\r
                        echo ' selected';\r
                }\r
                echo ">$locale[1]</option>¥n";\r
        }\r
?>\r
                                        </select>\r
                                        <p class="sbt">\r
                                                <button type="submit" name="action" value="locale" class="sbt_arw">START</button>\r
                                        </p>\r
                                </div>\r
                        </form>\r
                </div>\r
<?php\r
}\r
\r
/**\r
 * Display the form to set up a database\r
 * @param bool $isPostback\r
 */\r
function show_database_setting_form($isPostback)\r
{\r
        global $param, $minimum_mysql_version;\r
\r
        $config_writable = canConfigFileWritable();\r
        $mysql_version = getMySqlVersion();\r
        ?>\r
                <div id="container">\r
                        <p class="msg">\r
<?php\r
        echo _SIMPLE_NAVI1;\r
        if ( $config_writable != '' )\r
        {\r
                echo '<span class="err">', $config_writable, '</span>';\r
        }\r
        if ( $mysql_version == '0.0.0' )\r
        {\r
                echo '<span class="err">', _ERROR21, '</span>';\r
        }\r
        elseif ( version_compare($mysql_version, $minimum_mysql_version, '<') )\r
        {\r
                echo '<span class="err">', sprintf(_ERROR20 , $minimum_mysql_version), '</span>';\r
        }\r
?>\r
                        </p>\r
                        <form method="post" action="./index.php">\r
                                <div class="prt">\r
                                        <h2><?php echo _DB_HEADER; ?></h2>\r
                                        <p class="msg">\r
<?php\r
        if ( $isPostback )\r
        {\r
                $errors = $param->check_mysql_parameters();\r
                if ( is_array($errors) )\r
                {\r
                        foreach ( $errors as $error )\r
                        {\r
                                echo '<span class="err">', $error, "</span>¥n";\r
                        }\r
                }\r
        }\r
?>\r
                                        </p>\r
                                        <table>\r
                                                <tr>\r
                                                        <th><span class="nam"><?php echo _DB_FIELD1; ?></span><span class="sub"><?php echo _DB_FIELD1_DESC; ?></span></th>\r
                                                                <td><input type="text" name="mysql_host" value="<?php echo $param->mysql_host; ?>" /></td>\r
                                                </tr>\r
                                                <tr>\r
                                                        <th><span class="nam"><?php echo _DB_FIELD2; ?></span><span class="sub"><?php echo _DB_FIELD2_DESC; ?></span></th>\r
                                                                <td><input type="text" name="mysql_user" value="<?php echo $param->mysql_user; ?>" /></td>\r
                                                </tr>\r
                                                <tr>\r
                                                        <th><span class="nam"><?php echo _DB_FIELD3; ?></span><span class="sub"><?php echo _DB_FIELD3_DESC; ?></span></th>\r
                                                                <td><input type="text" name="mysql_password" value="<?php echo $param->mysql_password; ?>" /></td>\r
                                                </tr>\r
                                                <tr>\r
                                                        <th><span class="nam"><?php echo _DB_FIELD4; ?></span><span class="sub"><?php echo _DB_FIELD4_DESC; ?></span></th>\r
                                                                <td><input type="text" name="mysql_database" value="<?php echo $param->mysql_database; ?>" /></td>\r
                                                </tr>\r
                                        </table>\r
                                        <p class="sbt">\r
                                                <button type="submit" name="mode" value="detail" class="sbt_sqr"><?php echo _MODE2; ?></button>\r
                                                <button type="submit" name="action" value="mysql" class="sbt_arw"><?php echo _NEXT; ?></button>\r
                                        </p>\r
                                        <p class="msg">\r
                                                <?php echo _DB_TEXT1; ?>\r
                                        </p>\r
                                </div>\r
                        </form>\r
                </div>\r
<?php\r
}\r
\r
/**\r
 * Displays a form to the blog settings\r
 * @param bool $isPostback\r
 */\r
function show_blog_setting_form($isPostback)\r
{\r
        global $param;\r
\r
?>\r
                <div id="container">\r
                        <p class="msg">\r
                                <?php echo _SIMPLE_NAVI2; ?>\r
                        </p>\r
                        <form method="post" action="./index.php">\r
                                <div class="prt">\r
                                        <h2><?php echo _BLOG_HEADER; ?></h2>\r
                                        <p class="msg">\r
<?php\r
        if ( $isPostback )\r
        {\r
                $errors = $param->check_weblog_parameters();\r
                if ( is_array($errors) )\r
                {\r
                        foreach ( $errors as $error )\r
                        {\r
                                echo '<span class="err">', $error, "</span>¥n";\r
                        }\r
                }\r
        }\r
?>\r
                                        </p>\r
                                        <table>\r
                                                <tr>\r
                                                        <th><span class="nam"><?php echo _BLOG_FIELD1; ?></span></th>\r
                                                                <td><input type="text" name="blog_name" value="<?php echo $param->blog_name; ?>" /></td>\r
                                                </tr>\r
                                                <tr>\r
                                                        <th><span class="nam"><?php echo _BLOG_FIELD2; ?></span><span class="sub"><?php echo _BLOG_FIELD2_DESC; ?></span></th>\r
                                                                <td><input type="text" name="blog_shortname" value="<?php echo $param->blog_shortname; ?>" /></td>\r
                                                </tr>\r
                                        </table>\r
                                </div>\r
\r
                                <div class="prt">\r
                                        <h2><?php echo _ADMIN_HEADER; ?></h2>\r
                                        <p class="msg">\r
<?php\r
        if ( $isPostback )\r
        {\r
                $errors = $param->check_user_parameters();\r
                if ( is_array($errors) )\r
                {\r
                        foreach ( $errors as $error )\r
                        {\r
                                echo '<span class="err">', $error, "</span>¥n";\r
                        }\r
                }\r
        }\r
?>\r
                                        </p>\r
                                        <table>\r
                                                <tr>\r
                                                        <th><span class="nam"><?php echo _ADMIN_FIELD1; ?></span></th>\r
                                                                <td><input type="text" name="user_realname" value="<?php echo $param->user_realname; ?>" /></td>\r
                                                </tr>\r
                                                <tr>\r
                                                        <th><span class="nam"><?php echo _ADMIN_FIELD2; ?></span><span class="sub"><?php echo _ADMIN_FIELD2_DESC; ?></span></th>\r
                                                                <td><input type="text" name="user_name" value="<?php echo $param->user_name; ?>" /></td>\r
                                                </tr>\r
                                                <tr>\r
                                                        <th><span class="nam"><?php echo _ADMIN_FIELD3; ?></span><span class="sub"><?php echo _ADMIN_FIELD3_DESC; ?></span></th>\r
                                                                <td><input type="password" name="user_password" /></td>\r
                                                </tr>\r
                                                <tr>\r
                                                        <th><span class="nam"><?php echo _ADMIN_FIELD4; ?></span><span class="sub"><?php echo _ADMIN_FIELD4_DESC; ?></span></th>\r
                                                                <td><input type="password" name="user_password2" /></td>\r
                                                </tr>\r
                                                <tr>\r
                                                        <th><span class="nam"><?php echo _ADMIN_FIELD5; ?></span></th>\r
                                                                <td><input type="text" name="user_email" value="<?php echo $param->user_email; ?>" /></td>\r
                                                </tr>\r
                                        </table>\r
                                        <p class="sbt">\r
                                                <button type="submit" name="action" value="weblog" class="sbt_arw"><?php echo _INSTALL; ?></button>\r
                                        </p>\r
                                </div>\r
                        </form>\r
                </div>\r
<?php\r
}\r
\r
/**\r
 * Displays a form to the detail settings\r
 * @param bool $isPostback\r
 */\r
function show_detail_setting_form($isPostback)\r
{\r
        global $param, $minimum_mysql_version;\r
\r
        $mysql_version = getMySqlVersion();\r
?>\r
                <div id="container_detailed">\r
                        <p class="msg">\r
                                <?php echo _DETAIL_NAVI1; ?>\r
<?php\r
        if ( $isPostback && !$param->check_all_parameters() )\r
        {\r
                echo '<span class="err">', _ERROR26, "</span>¥n";\r
        }\r
?>\r
                        </p>\r
                        <ul class="msg">\r
                                <li>PHP: <?php echo phpversion(); ?></li>\r
                                <li>MySQL:\r
<?php\r
        echo ($mysql_version == '0.0.0') ? _ERROR21 : $mysql_version;\r
        if ( version_compare($mysql_version, $minimum_mysql_version, '<') )\r
        {\r
                echo '<span class="err">', sprintf(_ERROR20 , $minimum_mysql_version), '</span>';\r
        }\r
?></li>\r
                        </ul>\r
                        <form method="post" action="">\r
\r
                                <div class="prt">\r
                                        <h2><?php echo _DETAIL_HEADER1; ?></h2>\r
                                        <p class="msg">\r
<?php\r
        if ( $isPostback )\r
        {\r
                $errors = $param->check_mysql_parameters();\r
                if ( is_array($errors) )\r
                {\r
                        foreach ( $errors as $error )\r
                        {\r
                                echo '<span class="err">', $error, "</span>¥n";\r
                        }\r
                }\r
        }\r
?>\r
                                        </p>\r
                                        <table>\r
                                                <tr>\r
                                                        <th><span class="nam"><?php echo _DB_FIELD1; ?></span><span class="sub"><?php echo _DB_FIELD1_DESC; ?></span></th>\r
                                                                <td><input type="text" name="mysql_host" value="<?php echo $param->mysql_host; ?>" /></td>\r
                                                </tr>\r
                                                <tr>\r
                                                        <th><span class="nam"><?php echo _DB_FIELD2; ?></span><span class="sub"><?php echo _DB_FIELD2_DESC; ?></span></th>\r
                                                                <td><input type="text" name="mysql_user" value="<?php echo $param->mysql_user; ?>" /></td>\r
                                                </tr>\r
                                                <tr>\r
                                                        <th><span class="nam"><?php echo _DB_FIELD3; ?></span><span class="sub"><?php echo _DB_FIELD3_DESC; ?></span></th>\r
                                                                <td><input type="text" name="mysql_password" value="<?php echo $param->mysql_password; ?>" /></td>\r
                                                </tr>\r
                                                <tr>\r
                                                        <th><span class="nam"><?php echo _DB_FIELD4; ?></span><span class="sub"><?php echo _DB_FIELD4_DESC; ?></span></th>\r
                                                                <td><input type="text" name="mysql_database" value="<?php echo $param->mysql_database; ?>" /></td>\r
                                                </tr>\r
                                                <tr>\r
                                                        <th><span class="nam"><?php echo _DB_FIELD5; ?></span><span class="sub"><?php echo _DB_FIELD5_DESC; ?></span></th>\r
                                                                <td><input type="text" name="mysql_tablePrefix" value="<?php echo $param->mysql_tablePrefix; ?>" /></td>\r
                                                </tr>\r
                                        </table>\r
\r
                                        <h2><?php echo _DETAIL_HEADER2; ?></h2>\r
                                        <p class="msg">\r
<?php\r
        if ( $isPostback )\r
        {\r
                $errors = $param->check_uri_parameters();\r
                if ( is_array($errors) )\r
                {\r
                        foreach ( $errors as $error )\r
                        {\r
                                echo '<span class="err">', $error, "</span>¥n";\r
                        }\r
                }\r
                $errors = $param->check_path_parameters();\r
                if ( is_array($errors) )\r
                {\r
                        foreach ( $errors as $error )\r
                        {\r
                                echo '<span class="err">', $error, "</span>¥n";\r
                        }\r
                }\r
        }\r
?>\r
                                        </p>\r
                                        <table>\r
                                                <tr>\r
                                                        <th><span class="nam"><?php echo _PATH_FIELD1; ?></span></th>\r
                                                                <td><input type="text" name="IndexURL" value="<?php echo $param->IndexURL; ?>" /></td>\r
                                                </tr>\r
                                                <tr>\r
                                                        <th><span class="nam"><?php echo _PATH_FIELD2; ?></span></th>\r
                                                                <td><input type="text" name="AdminURL" value="<?php echo $param->AdminURL; ?>" /></td>\r
                                                </tr>\r
                                                <tr>\r
                                                        <th><span class="nam"><?php echo _PATH_FIELD3; ?></span></th>\r
                                                                <td><input type="text" name="AdminPath" value="<?php echo $param->AdminPath; ?>" /></td>\r
                                                </tr>\r
                                                <tr>\r
                                                        <th><span class="nam"><?php echo _PATH_FIELD4; ?></span></th>\r
                                                                <td><input type="text" name="MediaURL" value="<?php echo $param->MediaURL; ?>" /></td>\r
                                                </tr>\r
                                                <tr>\r
                                                        <th><span class="nam"><?php echo _PATH_FIELD5; ?></span></th>\r
                                                                <td><input type="text" name="MediaPath" value="<?php echo $param->MediaPath; ?>" /></td>\r
                                                </tr>\r
                                                <tr>\r
                                                        <th><span class="nam"><?php echo _PATH_FIELD6; ?></span></th>\r
                                                                <td><input type="text" name="SkinsURL" value="<?php echo $param->SkinsURL; ?>" /></td>\r
                                                </tr>\r
                                                <tr>\r
                                                        <th><span class="nam"><?php echo _PATH_FIELD7; ?></span></th>\r
                                                                <td><input type="text" name="SkinsPath" value="<?php echo $param->SkinsPath; ?>" /></td>\r
                                                </tr>\r
                                                <tr>\r
                                                        <th><span class="nam"><?php echo _PATH_FIELD8; ?></span></th>\r
                                                                <td><input type="text" name="PluginURL" value="<?php echo $param->PluginURL; ?>" /></td>\r
                                                </tr>\r
                                                <tr>\r
                                                        <th><span class="nam"><?php echo _PATH_FIELD9; ?></span></th>\r
                                                                <td><input type="text" name="ActionURL" value="<?php echo $param->ActionURL; ?>" /></td>\r
                                                </tr>\r
                                        </table>\r
                                        <p class="msg">\r
                                                <?php echo _DETAIL_TEXT3; ?>\r
                                        </p>\r
\r
                                        <h2><?php echo _DETAIL_HEADER3; ?></h2>\r
                                        <p class="msg">\r
<?php\r
        echo _DETAIL_TEXT4;\r
        if ( $isPostback )\r
        {\r
                $errors = $param->check_user_parameters();\r
                if ( is_array($errors) )\r
                {\r
                        foreach ( $errors as $error )\r
                        {\r
                                echo '<span class="err">', $error, "</span>¥n";\r
                        }\r
                }\r
        }\r
?>\r
                                        </p>\r
                                        <table>\r
                                                <tr>\r
                                                        <th><span class="nam"><?php echo _ADMIN_FIELD1; ?></span></th>\r
                                                                <td><input type="text" name="user_realname" value="<?php echo $param->user_realname; ?>" /></td>\r
                                                </tr>\r
                                                <tr>\r
                                                        <th><span class="nam"><?php echo _ADMIN_FIELD2; ?></span><span class="sub"><?php echo _ADMIN_FIELD2_DESC; ?></span></th>\r
                                                                <td><input type="text" name="user_name" value="<?php echo $param->user_name; ?>" /></td>\r
                                                </tr>\r
                                                <tr>\r
                                                        <th><span class="nam"><?php echo _ADMIN_FIELD3; ?></span><span class="sub"><?php echo _ADMIN_FIELD3_DESC; ?></span></th>\r
                                                                <td><input type="password" name="user_password" /></td>\r
                                                </tr>\r
                                                <tr>\r
                                                        <th><span class="nam"><?php echo _ADMIN_FIELD4; ?></span><span class="sub"><?php echo _ADMIN_FIELD4_DESC; ?></span></th>\r
                                                                <td><input type="password" name="user_password2" /></td>\r
                                                </tr>\r
                                                <tr>\r
                                                        <th><span class="nam"><?php echo _ADMIN_FIELD5; ?></span></th>\r
                                                                <td><input type="text" name="user_email" value="<?php echo $param->user_email; ?>" /></td>\r
                                                </tr>\r
                                        </table>\r
\r
                                        <h2><?php echo _DETAIL_HEADER4; ?></h2>\r
                                        <p class="msg">\r
<?php\r
        echo _DETAIL_TEXT5;\r
        if ( $isPostback )\r
        {\r
                $errors = $param->check_weblog_parameters();\r
                if ( is_array($errors) )\r
                {\r
                        foreach ( $errors as $error )\r
                        {\r
                                echo '<span class="err">', $error, "</span>¥n";\r
                        }\r
                }\r
        }\r
?>\r
                                        </p>\r
                                        <table>\r
                                                <tr>\r
                                                        <th><span class="nam"><?php echo _BLOG_FIELD1; ?></span></th>\r
                                                                <td><input type="text" name="blog_name" value="<?php echo $param->blog_name; ?>" /></td>\r
                                                </tr>\r
                                                <tr>\r
                                                        <th><span class="nam"><?php echo _BLOG_FIELD2; ?></span><span class="sub"><?php echo _BLOG_FIELD2_DESC; ?></span></th>\r
                                                                <td><input type="text" name="blog_shortname" value="<?php echo $param->blog_shortname; ?>" /></td>\r
                                                </tr>\r
                                        </table>\r
\r
                                        <p class="msg">\r
                                                <?php echo _DETAIL_TEXT6; ?>\r
                                        </p>\r
\r
                                        <p class="sbt">\r
                                                <button type="submit" name="action" value="detail" class="sbt_arw"><?php echo _INSTALL; ?></button>\r
                                        </p>\r
                                </div>\r
                        </form>\r
                </div>\r
<?php\r
}\r
\r
/**\r
 * Displays a screen to signal the completion of the installation\r
 */\r
function show_install_complete_form()\r
{\r
        global $MYSQL_HANDLER, $param;\r
        $errors = do_install();\r
?>\r
                <div id="container">\r
                        <p class="msg">\r
<?php\r
        if ( is_array($errors) && count($errors) > 0 )\r
        {\r
                echo _ERROR27;\r
                foreach ( $errors as $error )\r
                {\r
                        echo '<span class="err">', $error, "</span>¥n";\r
                }\r
        }\r
        else\r
        {\r
                echo _INST_TEXT;\r
                if ( array_key_exists('config_data', $_SESSION) )\r
                {\r
                        echo '<span class="err">', _INST_TEXT4, '</span>';\r
?>\r
<textarea id="config_text" readonly="readonly" onfocus="SelectText(this);"><?php echo htmlentities($_SESSION['config_data'], null, i18n::get_current_charset() ) ?></textarea>\r
<script type="text/javascript">\r
  function SelectText( element ) {window.setTimeout( function() { element.select(); }, 0 );}\r
</script>\r
<?php\r
                }\r
                else\r
                {\r
                        echo '<span class="err">', _INST_TEXT5, '</span>';\r
                }\r
?>\r
                        </p>\r
                        <form method="post" action="./index.php">\r
                                <div class="prt">\r
                                        <h2><?php echo _INST_HEADER1; ?></h2>\r
                                        <p class="msg">\r
                                                <?php echo sprintf(_INST_TEXT1, $param->blog_name); ?>\r
                                        </p>\r
                                        <p class="sbt">\r
                                                <button type="button" name="toBlog" onclick="location.href='<?php echo $param->IndexURL; ?>';" class="sbt_arw"><?php echo _INST_BUTTON1; ?></button>\r
                                        </p>\r
                                </div>\r
\r
                                <div class="prt">\r
                                        <h2><?php echo _INST_HEADER2; ?></h2>\r
                                        <p class="msg">\r
                                                <?php echo _INST_TEXT2; ?>\r
                                        </p>\r
                                        <p class="sbt">\r
                                                <button type="button" name="toMng" onclick="location.href='<?php echo $param->AdminURL; ?>';" class="sbt_arw"><?php echo _INST_BUTTON2; ?></button>\r
                                        </p>\r
                                </div>\r
\r
                                <div class="prt">\r
                                        <h2><?php echo _INST_HEADER3; ?></h2>\r
                                        <p class="msg">\r
                                                <?php echo _INST_TEXT3; ?>\r
                                        </p>\r
                                        <p class="sbt">\r
                                                <button type="button" name="toAddBlog" onclick="location.href='<?php echo $param->AdminURL; ?>index.php?action=createnewlog';" class="sbt_arw"><?php echo _INST_BUTTON3; ?></button>\r
                                        </p>\r
                                </div>\r
                        </form>\r
<?php\r
        }\r
?>\r
                </div>\r
<?php\r
        unset($param);\r
}\r
\r
/**\r
 * The installation process itself\r
 * @return array error messages\r
 */\r
function do_install()\r
{\r
        global $param;\r
        global $MYSQL_HOST, $MYSQL_USER, $MYSQL_PASSWORD, $MYSQL_DATABASE, $MYSQL_PREFIX, $MYSQL_CONN;\r
        global $DIR_NUCLEUS, $DIR_MEDIA, $DIR_SKINS, $DIR_PLUGINS, $DIR_LANG, $DIR_LIBS;\r
        $errors = array();\r
\r
        /*\r
         * 1. put all param-vars into vars\r
         */\r
        $MYSQL_HOST = $param->mysql_host;\r
        $MYSQL_USER = $param->mysql_user;\r
        $MYSQL_PASSWORD = $param->mysql_password;\r
        $MYSQL_DATABASE = $param->mysql_database;\r
        $MYSQL_PREFIX = $param->mysql_tablePrefix;\r
\r
        $DIR_NUCLEUS = $param->AdminPath;\r
        $DIR_MEDIA = $param->MediaPath;\r
        $DIR_SKINS = $param->SkinsPath;\r
        $DIR_PLUGINS = $DIR_NUCLEUS . 'plugins/';\r
        $DIR_LOCALES = $DIR_NUCLEUS . 'locales/';\r
        $DIR_LIBS = $DIR_NUCLEUS . 'libs/';\r
\r
        /*\r
         * 2.open mySQL connection\r
         */\r
        $MYSQL_CONN = @sql_connect_args($MYSQL_HOST, $MYSQL_USER, $MYSQL_PASSWORD);\r
        if ( $MYSQL_CONN == false )\r
        {\r
                $errors[] = _ERROR3;\r
                return $errors;\r
        }\r
\r
        /*\r
         * 3. try to create database if needed\r
         */\r
        if ( !sql_query('CREATE DATABASE IF NOT EXISTS `' . $MYSQL_DATABASE . '`') )\r
        {\r
                $errors[] = _ERROR12 . ': ' . sql_error();\r
        }\r
\r
        /*\r
         * 4. try to select database\r
         */\r
        if ( !sql_select_db($MYSQL_DATABASE) )\r
        {\r
                $errors[] = _ERROR13;\r
        }\r
        sql_set_charset('utf8');\r
\r
        if ( count($errors) > 0 )\r
        {\r
                return $errors;\r
        }\r
\r
        /*\r
         * 5. execute queries\r
         */\r
        $table_names = array(\r
                'nucleus_actionlog',\r
                'nucleus_ban',\r
                'nucleus_blog',\r
                'nucleus_category',\r
                'nucleus_comment',\r
                'nucleus_config',\r
                'nucleus_item',\r
                'nucleus_karma',\r
                'nucleus_member',\r
                'nucleus_plugin',\r
                'nucleus_skin',\r
                'nucleus_template',\r
                'nucleus_team',\r
                'nucleus_activation',\r
                'nucleus_tickets'\r
        );\r
\r
        $prefixed_table_names = array();\r
        foreach ( $table_names as $table_name )\r
        {\r
                $prefixed_table_names[] = $MYSQL_PREFIX . $table_name;\r
        }\r
\r
        // table exists check\r
        $result = sql_query('SHOW TABLES');\r
        while ($row = mysql_fetch_array($result, MYSQL_NUM))\r
        {\r
                if ( in_array($row[0], $prefixed_table_names) )\r
                {\r
                        $errors[] = _ERROR14;\r
                        break;\r
                }\r
        }\r
        if ( count($errors) > 0 )\r
        {\r
                return $errors;\r
        }\r
\r
        $filename = 'install.sql';\r
        $fd = fopen($filename, 'r');\r
        $queries = fread($fd, filesize($filename) );\r
        fclose($fd);\r
\r
        $queries = preg_split('#(;¥n|;¥r)#', $queries);\r
\r
        foreach ( $queries as $query )\r
        {\r
                if ( preg_match('/¥w+/', $query) )\r
                {\r
                        if ( $MYSQL_PREFIX )\r
                        {\r
                                $query = str_replace($table_names, $prefixed_table_names, $query);\r
                        }\r
\r
                        if ( !sql_query($query) )\r
                        {\r
                                $errors[] = _ERROR15 . ' (<small>' . $query . '</small>): ' . sql_error();\r
                        }\r
                }\r
        }\r
\r
        /*\r
         * 6. put needed records\r
         */\r
        /* push first post */\r
        $query = "INSERT INTO %s VALUES (1, '%s', '%s', '%s', 1, 1, '%s', 0, 0, 0, 1, 0, 1)";\r
        $query = sprintf($query, tableName('nucleus_item'), _1ST_POST_TITLE, _1ST_POST, _1ST_POST2, i18n::formatted_datetime('mysql', time()));\r
        if ( !sql_query($query) )\r
        {\r
                $errors[] = _ERROR15 . ' (<small>' . $newpost . '</small>): ' . sql_error();\r
        }\r
\r
        /* push configurations */\r
        array_merge($errors, updateConfig('IndexURL', $param->IndexURL));\r
        array_merge($errors, updateConfig('AdminURL', $param->AdminURL));\r
        array_merge($errors, updateConfig('MediaURL', $param->MediaURL));\r
        array_merge($errors, updateConfig('SkinsURL', $param->SkinsURL));\r
        array_merge($errors, updateConfig('PluginURL', $param->PluginURL));\r
        array_merge($errors, updateConfig('ActionURL', $param->ActionURL));\r
        array_merge($errors, updateConfig('AdminEmail', $param->user_email));\r
        array_merge($errors, updateConfig('SiteName', $param->blog_name));\r
        array_merge($errors, updateConfig('Locale', i18n::get_current_locale()));\r
\r
        /* escape strings for SQL */\r
        $user_name                      = sql_real_escape_string($param->user_name);\r
        $user_realname          = sql_real_escape_string($param->user_realname);\r
        $user_password          = sql_real_escape_string(md5($param->user_password));\r
        $user_email                     = sql_real_escape_string($param->user_email);\r
        $blog_name                      = sql_real_escape_string($param->blog_name);\r
        $blog_shortname         = sql_real_escape_string($param->blog_shortname);\r
        $config_indexurl        = sql_real_escape_string($param->IndexURL);\r
\r
        /* push super admin */\r
        $query = "UPDATE %s SET mname = '%s', mrealname = '%s', mpassword = '%s', memail = '%s', murl = '%s', madmin = 1, mcanlogin = 1 WHERE mnumber = 1";\r
        $query = sprintf($query, tableName('nucleus_member'), $user_name, $user_realname, $user_password, $user_email, $config_indexurl);\r
        if ( !sql_query($query) )\r
        {\r
                $errors[] = _ERROR16 . ': ' . sql_error();\r
        }\r
\r
        /* push new weblog */\r
        $query = "UPDATE %s SET bname = '%s', bshortname = '%s', burl = '%s' WHERE bnumber = 1";\r
        $query = sprintf($query, tableName('nucleus_blog'), $blog_name, $blog_shortname, $config_indexurl);\r
        if ( !sql_query($query) )\r
        {\r
                $errors[] = _ERROR17 . ': ' . sql_error();\r
        }\r
\r
        /* push default category */\r
        $query = "UPDATE %s SET cname = '%s', cdesc = '%s' WHERE catid = 1";\r
        $query = sprintf($query, tableName('nucleus_category'), _GENERALCAT_NAME, _GENERALCAT_DESC);\r
        if ( !sql_query($query) )\r
        {\r
                $errors[] = _ERROR17 . ': ' . sql_error();\r
        }\r
\r
        sql_close();\r
\r
        /*\r
         * 7. install default plugins and skins\r
         */\r
        global $aConfPlugsToInstall, $aConfSkinsToImport;\r
        $aSkinErrors = array();\r
        $aPlugErrors = array();\r
\r
        if ( (count($aConfPlugsToInstall) > 0) || (count($aConfSkinsToImport) > 0) )\r
        {\r
                include_once($DIR_LIBS . 'globalfunctions.php');\r
                global $manager;\r
                if ( !isset($manager) )\r
                {\r
                        $manager = new MANAGER;\r
                }\r
\r
                $aSkinErrors = installCustomSkins();\r
                if ( count($aSkinErrors) > 0 )\r
                {\r
                        array_merge($errors, $aSkinErrors);\r
                }\r
\r
                $query  = "SELECT sdnumber FROM %s WHERE sdname='default'";\r
                $query = sprintf($query, tableName('nucleus_skin_desc'));\r
                $res = sql_query($query);\r
                $obj = sql_fetch_assoc($res);\r
                $defSkinID = (integer) $obj['sdnumber'];\r
\r
                $query = "UPDATE %s SET bdefskin=%d WHERE bnumber=1";\r
                $query = sprintf($query, tableName('nucleus_blog'), $defSkinID);\r
                sql_query($query);\r
                $query = "UPDATE %s SET value=%d WHERE name='BaseSkin'";\r
                $query = sprintf($query, tableName('nucleus_config'), $defSkinID);\r
                sql_query($query);\r
\r
                $aPlugErrors = installCustomPlugs($manager);\r
                if ( count($aPlugErrors) > 0 )\r
                {\r
                        array_merge($errors, $aPlugErrors);\r
                }\r
        }\r
\r
        /*\r
         * 8. Write config file ourselves (if possible)\r
         */\r
        $config_data = '<' . '?php' . "¥n";\r
        $config_data .= "// mySQL connection information¥n";\r
        $config_data .= "¥$MYSQL_HOST = '" . $MYSQL_HOST . "';¥n";\r
        $config_data .= "¥$MYSQL_USER = '" . $MYSQL_USER . "';¥n";\r
        $config_data .= "¥$MYSQL_PASSWORD = '" . $MYSQL_PASSWORD . "';¥n";\r
        $config_data .= "¥$MYSQL_DATABASE = '" . $MYSQL_DATABASE . "';¥n";\r
        $config_data .= "¥$MYSQL_PREFIX = '" . $MYSQL_PREFIX . "';¥n";\r
        $config_data .= "// new in 3.50. first element is db handler, the second is the db driver used by the handler¥n";\r
        $config_data .= "// default is ¥$MYSQL_HANDLER = array('mysql','mysql');¥n";\r
        $config_data .= "//¥$MYSQL_HANDLER = array('mysql','mysql');¥n";\r
        $config_data .= "//¥$MYSQL_HANDLER = array('pdo','mysql');¥n";\r
        $config_data .= "¥$MYSQL_HANDLER = array('".$MYSQL_HANDLER[0]."','".$MYSQL_HANDLER[1]."');¥n";\r
        $config_data .= "¥n";\r
        $config_data .= "// main nucleus directory¥n";\r
        $config_data .= "¥$DIR_NUCLEUS = '" . $DIR_NUCLEUS . "';¥n";\r
        $config_data .= "¥n";\r
        $config_data .= "// path to media dir¥n";\r
        $config_data .= "¥$DIR_MEDIA = '" . $DIR_MEDIA . "';¥n";\r
        $config_data .= "¥n";\r
        $config_data .= "// extra skin files for imported skins¥n";\r
        $config_data .= "¥$DIR_SKINS = '" . $DIR_SKINS . "';¥n";\r
        $config_data .= "¥n";\r
        $config_data .= "// these dirs are normally sub dirs of the nucleus dir, but ¥n";\r
        $config_data .= "// you can redefine them if you wish¥n";\r
        $config_data .= "¥$DIR_PLUGINS = ¥$DIR_NUCLEUS . 'plugins/';¥n";\r
        $config_data .= "¥$DIR_LOCALES = ¥$DIR_NUCLEUS . 'locales/';¥n";\r
        $config_data .= "¥$DIR_LIBS = ¥$DIR_NUCLEUS . 'libs/';¥n";\r
        $config_data .= "¥n";\r
        $config_data .= "// include libs¥n";\r
        $config_data .= "include(¥$DIR_LIBS.'globalfunctions.php');¥n";\r
        $config_data .= "?" . ">";\r
\r
        $result = false;\r
        if ( @!file_exists('../config.php') || is_writable('../config.php') )\r
        {\r
                if ( $fp = @fopen('../config.php', 'w') )\r
                {\r
                        $result = @fwrite($fp, $config_data, i18n::strlen($config_data) );\r
                        fclose($fp);\r
                }\r
        }\r
\r
        if ( $result )\r
        {\r
                // try to change the read-only permission.\r
                if (strtoupper(substr(PHP_OS, 0, 3)) !== 'WIN' )\r
                {\r
                        @chmod('../config.php', 0444);\r
                }\r
        }\r
        else\r
        {\r
                $_SESSION['config_data'] = $config_data;\r
        }\r
\r
        return $errors;\r
}\r
\r
/**\r
 * Confirm that you can write to the configuration file\r
 * @return string error message\r
 */\r
function canConfigFileWritable()\r
{\r
        if ( @file_exists('../config.php') && @!is_writable('../config.php') )\r
        {\r
                // try to change the read-write permission.\r
                if (strtoupper(substr(PHP_OS, 0, 3)) !== 'WIN' )\r
                {\r
                        @chmod('../config.php', 0666);\r
                }\r
\r
                if ( @!is_writable('../config.php') )\r
                {\r
                        return _ERROR19;\r
                }\r
        }\r
        return '';\r
}\r
\r
/**\r
 * To obtain the version of MySQL\r
 * @return string\r
 */\r
function getMySqlVersion()\r
{\r
        global $minimum_mysql_version, $errors;\r
        // Turn on output buffer\r
        // Needed to repress the output of the sql function that are\r
        // not part of php (in this case the @ operator doesn't work)\r
        ob_start();\r
\r
        // note: this piece of code is taken from phpMyAdmin\r
        $conn = sql_connect_args('localhost', '', '');\r
        $result = @sql_query('SELECT VERSION() AS version', $conn);\r
\r
        if ( $result != FALSE && sql_num_rows($result) > 0 )\r
        {\r
                $row = sql_fetch_array($result);\r
                $match = i18n::explode('.', $row['version']);\r
        }\r
        else\r
        {\r
                $result = @sql_query('SHOW VARIABLES LIKE ¥'version¥'', $conn);\r
\r
                if ( $result != FALSE && @sql_num_rows($result) > 0 )\r
                {\r
                        $row = sql_fetch_row($result);\r
                        $match = i18n::explode('.', $row[1]);\r
                }\r
                else\r
                {\r
                        //$output = shell_exec('mysql -V');\r
                        $output = ( function_exists('shell_exec') ) ? @shell_exec('mysql -V') : '0.0.0';\r
                        preg_match('@[0-9]+¥.[0-9]+¥.[0-9]+@', $output, $version);\r
                        $match = i18n::explode('.', $version[0]);\r
\r
                        if ( $match[0] == '' )\r
                        {\r
                                $match = array('0', '0', '0');\r
                        }\r
                }\r
        }\r
\r
        @sql_disconnect($conn);\r
\r
        //End and clean output buffer\r
        ob_end_clean();\r
\r
        return implode($match, '.');\r
}\r
\r
/**\r
 * Add a table prefix if it is used\r
 *\r
 * @param string $input table name with prefix\r
 * @return string\r
 */\r
function tableName($input)\r
{\r
        global $MYSQL_PREFIX;\r
        if ( $MYSQL_PREFIX )\r
        {\r
                return $MYSQL_PREFIX . $input;\r
        }\r
        else\r
        {\r
                return $input;\r
        }\r
}\r
\r
/**\r
 * Install custom plugins\r
 *\r
 * @param object $manager MANAGER class instance\r
 */\r
function installCustomPlugs($manager)\r
{\r
        global $aConfPlugsToInstall, $DIR_LIBS;\r
\r
        $aErrors = array();\r
        if ( count($aConfPlugsToInstall) == 0 )\r
        {\r
                return $aErrors;\r
        }\r
\r
        $res = sql_query('SELECT * FROM ' . tableName('nucleus_plugin') );\r
        $numCurrent = sql_num_rows($res);\r
\r
        foreach ( $aConfPlugsToInstall as $plugName )\r
        {\r
                $query = 'INSERT INTO ' . tableName('nucleus_plugin') . ' (porder, pfile) VALUES (' . (++$numCurrent) . ", '" . sql_real_escape_string($plugName) . "')";\r
                sql_query($query);\r
\r
                $manager->clearCachedInfo('installedPlugins');\r
                $plugin =& $manager->getPlugin($plugName);\r
                $plugin->setID($numCurrent);\r
\r
                if ( !$plugin )\r
                {\r
                        sql_query('DELETE FROM ' . tableName('nucleus_plugin') . " WHERE pfile = '" . sql_real_escape_string($plugName) . "'");\r
                        $numCurrent--;\r
                        array_push($aErrors, sprintf(_ERROR22 ,$plugName));\r
                        continue;\r
                }\r
                $plugin->install();\r
        }\r
\r
        sql_query('DELETE FROM ' . tableName('nucleus_plugin_event') );\r
        $res = sql_query('SELECT pid, pfile FROM ' . tableName('nucleus_plugin') );\r
\r
        while ( $o = sql_fetch_object($res) )\r
        {\r
                $pid = $o->pid;\r
                $plug =& $manager->getPlugin($o->pfile);\r
\r
                if ( $plug )\r
                {\r
                        $eventList = $plug->getEventList();\r
                        foreach ( $eventList as $eventName )\r
                        {\r
                                sql_query('INSERT INTO ' . tableName('nucleus_plugin_event') . ' (pid, event) VALUES (' . $pid . ", '" . $eventName . "')");\r
                        }\r
                }\r
        }\r
        return $aErrors;\r
}\r
\r
/**\r
 * Install custom skins\r
 * Prepares the installation of custom skins\r
 */\r
function installCustomSkins()\r
{\r
        global $aConfSkinsToImport, $DIR_LIBS, $DIR_SKINS;\r
\r
        $aErrors = array();\r
        if ( count($aConfSkinsToImport) == 0 )\r
        {\r
                return $aErrors;\r
        }\r
\r
        include_once($DIR_LIBS . 'skinie.php');\r
        $importer = new SKINIMPORT();\r
\r
        foreach ( $aConfSkinsToImport as $skinName )\r
        {\r
                $importer->reset();\r
                $skinFile = $DIR_SKINS . $skinName . '/skinbackup.xml';\r
\r
                if ( !@file_exists($skinFile) )\r
                {\r
                        array_push($aErrors, sprintf(_ERROR23, $skinFile));\r
                        continue;\r
                }\r
\r
                $error = $importer->readFile($skinFile);\r
\r
                if ( $error )\r
                {\r
                        array_push($aErrors, sprintf(_ERROR24, $skinName) . ' : ' . $error);\r
                        continue;\r
                }\r
\r
                $error = $importer->writeToDatabase(1);\r
\r
                if ( $error )\r
                {\r
                        array_push($aErrors, sprintf(_ERROR25, $skinName) . ' : ' . $error);\r
                        continue;\r
                }\r
        }\r
        return $aErrors;\r
}\r
\r
\r
/**\r
 * Check if some important files of the Nucleus CMS installation are available\r
 * Give an error if one or more files are not accessible\r
 */\r
function do_check_files()\r
{\r
        $missingfiles = array();\r
        $files = array(\r
                './install.sql',\r
                '../index.php',\r
                '../action.php',\r
                '../nucleus/index.php',\r
                '../nucleus/media.php',\r
                '../nucleus/libs/ACTION.php',\r
                '../nucleus/libs/ACTIONLOG.php',\r
                '../nucleus/libs/ACTIONS.php',\r
                '../nucleus/libs/ADMIN.php',\r
                '../nucleus/libs/BaseActions.php',\r
                '../nucleus/libs/BLOG.php',\r
                '../nucleus/libs/BODYACTIONS.php',\r
                '../nucleus/libs/COMMENT.php',\r
                '../nucleus/libs/COMMENTACTIONS.php',\r
                '../nucleus/libs/COMMENTS.php',\r
                '../nucleus/libs/ENCAPSULATE.php',\r
                '../nucleus/libs/ENTITY.php',\r
                '../nucleus/libs/globalfunctions.php',\r
                '../nucleus/libs/i18n.php',\r
                '../nucleus/libs/ITEM.php',\r
                '../nucleus/libs/ITEMACTIONS.php',\r
                '../nucleus/libs/LINK.php',\r
                '../nucleus/libs/MANAGER.php',\r
                '../nucleus/libs/MEDIA.php',\r
                '../nucleus/libs/MEMBER.php',\r
                '../nucleus/libs/mysql.php',\r
                '../nucleus/libs/NOTIFICATION.php',\r
                '../nucleus/libs/PAGEFACTORY.php',\r
                '../nucleus/libs/PARSER.php',\r
                '../nucleus/libs/PLUGIN.php',\r
                '../nucleus/libs/PLUGINADMIN.php',\r
                '../nucleus/libs/SEARCH.php',\r
                '../nucleus/libs/showlist.php',\r
                '../nucleus/libs/SKIN.php',\r
                '../nucleus/libs/TEMPLATE.php',\r
                '../nucleus/libs/vars4.1.0.php',\r
                '../nucleus/libs/xmlrpc.inc.php',\r
                '../nucleus/libs/xmlrpcs.inc.php',\r
                '../nucleus/libs/sql/mysql.php'\r
        );\r
\r
        $count = count($files);\r
        for ( $i = 0; $i < $count; $i++ )\r
        {\r
                if ( !is_readable($files[$i]) )\r
                {\r
                        array_push( $missingfiles, 'File <b>' . $files[$i] . '</b> is missing or not readable.<br />');\r
                }\r
        }\r
\r
        if ( count($missingfiles) > 0 )\r
        {\r
                exit(implode( "¥n", $missingfiles));\r
        }\r
}\r
\r
\r
/**\r
 * Updates the configuration in the database\r
 *\r
 * @param string $name name of the config var\r
 * @param string $value new value of the config var\r
 * @return array\r
 */\r
function updateConfig($name, $value)\r
{\r
        $errors = array();\r
        $name = sql_real_escape_string($name);\r
        $value = trim(sql_real_escape_string($value) );\r
\r
        $query = "UPDATE %s SET value = '%s' WHERE name = '%s'";\r
        $query = sprintf($query, tableName('nucleus_config'), $value, $name);\r
\r
        if ( !sql_query($query) )\r
        {\r
                $errors[] = _ERROR15 . ': ' . sql_error();\r
        }\r
        return $errors;\r
}\r
\r
\r
class PARAM_MANAGER\r
{\r
        /* process parameter */\r
        public $state;\r
        public $locale;\r
\r
        /* mysql connection parameters */\r
        public $mysql_host;\r
        public $mysql_user;\r
        public $mysql_password;\r
        public $mysql_database;\r
        public $mysql_tablePrefix;\r
\r
        /* weblog configuration parameters */\r
        public $blog_name;\r
        public $blog_shortname;\r
\r
        /* member configuration parameters */\r
        public $user_name;\r
        public $user_realname;\r
        public $user_password;\r
        private $user_password2;\r
        public $user_email;\r
\r
        /* URI parameters  */\r
        private $root_url;\r
        public $IndexURL;\r
        public $AdminURL;\r
        public $MediaURL;\r
        public $SkinsURL;\r
        public $PluginURL;\r
        public $ActionURL;\r
\r
        /* path parameters */\r
        private $root_path;\r
        public $AdminPath;\r
        public $MediaPath;\r
        public $SkinsPath;\r
\r
        /**\r
         * constructor\r
         */\r
        public function __construct()\r
        {\r
                $this->init();\r
        }\r
\r
        public function init()\r
        {\r
                // set default values\r
                $this->state = 'locale';\r
                $this->install_mode = 'simple';\r
                $this->locale = 'en_Latn_US';\r
                $this->mysql_host = @ini_get('mysql.default_host');\r
                $this->blog_name = 'My Nucleus CMS';\r
                $this->blog_shortname = 'mynucleuscms';\r
\r
                /* root path */\r
                $this->root_path = realpath(dirname(__FILE__) . '/..');\r
                if ( substr($this->root_path, -1, 1) !== '/' )\r
                {\r
                        $this->root_path .= '/';\r
                }\r
                $base_path_pcre = preg_quote($this->root_path, '#');\r
\r
                /* current directry name */\r
                $directory_name = preg_replace("#$base_path_pcre#", '', dirname(__FILE__));\r
                $directory_name_pcre = preg_quote($directory_name, '#');\r
\r
                /* root uri */\r
                $root_url = 'http://' . $_SERVER['HTTP_HOST'] . $_SERVER['PHP_SELF'];\r
                $this->root_url = preg_replace("#$directory_name_pcre(.*)$#", '', $root_url);\r
\r
                $this->AdminPath = $this->root_path . 'nucleus' . DIRECTORY_SEPARATOR;\r
                $this->MediaPath = $this->root_path . 'media' . DIRECTORY_SEPARATOR;\r
                $this->SkinsPath = $this->root_path . 'skins' . DIRECTORY_SEPARATOR;\r
\r
                $this->IndexURL  = $this->root_url;\r
                $this->AdminURL  = $this->root_url . 'nucleus/';\r
                $this->MediaURL  = $this->root_url . 'media/';\r
                $this->SkinsURL  = $this->root_url . 'skins/';\r
                $this->PluginURL = $this->root_url . 'nucleus/plugins/';\r
                $this->ActionURL = $this->root_url . 'action.php';\r
        }\r
\r
        private function read_parameter($parameter)\r
        {\r
                foreach ( $parameter as $element )\r
                {\r
                        if ( array_key_exists($element, $_POST) )\r
                        {\r
                                $this->$element = $_POST[$element];\r
                        }\r
                }\r
        }\r
\r
        public function set_state($state)\r
        {\r
                $states = array('locale', 'mysql', 'weblog', 'detail', 'install');\r
                if ( in_array($state, $states) )\r
                {\r
                        $this->state = $state;\r
                }\r
        }\r
\r
        public function set_locale()\r
        {\r
                $this->read_parameter(array('locale'));\r
\r
                if ( !in_array($this->locale, i18n::get_available_locale_list()) )\r
                {\r
                        $this->locale = 'en_Latn_US';\r
                }\r
        }\r
\r
        public function check_mysql_parameters()\r
        {\r
                $parameters = array('mysql_host', 'mysql_user', 'mysql_password', 'mysql_database', 'mysql_tablePrefix');\r
                $this->read_parameter($parameters);\r
\r
                $errors = array();\r
                if ( $this->mysql_host == '' )\r
                {\r
                        $errors[] = sprintf(_ERROR1, _DB_FIELD1);\r
                }\r
\r
                if ( $this->mysql_user == '' )\r
                {\r
                        $errors[] = sprintf(_ERROR1, _DB_FIELD2);\r
                }\r
                \r
                if ( $this->mysql_user != ''\r
                        && !preg_match('/^[a-z0-9_¥-]+$/i', $this->mysql_user) )\r
                {\r
                        $errors[] = sprintf(_ERROR2, _DB_FIELD2);\r
                }\r
                \r
                if ( $this->mysql_password == '' )\r
                {\r
                        $errors[] = sprintf(_ERROR1, _DB_FIELD3);\r
                }\r
\r
                if ( $this->mysql_database == '' )\r
                {\r
                        $errors[] = sprintf(_ERROR1, _DB_FIELD4);\r
                }\r
\r
                if ( $this->mysql_database != ''\r
                        && !preg_match('/^[a-z0-9_¥-]+$/i', $this->mysql_database) )\r
                {\r
                        $errors[] = sprintf(_ERROR2, _DB_FIELD4);\r
                }\r
\r
                if ( $this->mysql_tablePrefix != ''\r
                        && !preg_match('/^[a-z0-9_-]+$/i', $this->mysql_tablePrefix) )\r
                {\r
                        $errors[] = sprintf(_ERROR2, _DB_FIELD5);\r
                }\r
                \r
                if ( count($errors) == 0 )\r
                {\r
                        $mysql_conn = @sql_connect_args($this->mysql_host, $this->mysql_user, $this->mysql_password);\r
                        if ( $mysql_conn == false )\r
                        {\r
                                $errors[] = _ERROR3;\r
                        }\r
                        else\r
                        {\r
                                @sql_close($mysql_conn);\r
                        }\r
                }\r
\r
                return $errors;\r
        }\r
\r
        public function check_user_parameters()\r
        {\r
                $parameters = array('user_name', 'user_realname', 'user_password', 'user_password2', 'user_email');\r
                $this->read_parameter($parameters);\r
\r
                $errors = array();\r
                if ( $this->user_name == '' )\r
                {\r
                        $errors[] = sprintf(_ERROR1, _ADMIN_FIELD2);\r
                }\r
                elseif ( !preg_match("/^[a-z0-9]+([ a-z0-9]*[a-z0-9]+)?$/i", $this->user_name) )\r
                {\r
                        $errors[] = _ERROR5;\r
                }\r
\r
                if ( $this->user_realname == '' )\r
                {\r
                        $errors[] = sprintf(_ERROR1, _ADMIN_FIELD1);\r
                }\r
\r
                if ( $this->user_password == '' || $this->user_password2 == '' )\r
                {\r
                        $errors[] = sprintf(_ERROR1, _ADMIN_FIELD3);\r
                        $this->user_password = '';\r
                }\r
                elseif ( $this->user_password != $this->user_password2 )\r
                {\r
                        $errors[] = _ERROR6;\r
                        $this->user_password = '';\r
                }\r
\r
                if ( !preg_match("/^[a-z0-9¥._+¥-]+@[a-z0-9¥._¥-]+¥.[a-z]{2,6}$/i", $this->user_email) )\r
                {\r
                        $errors[] = _ERROR7;\r
                }\r
\r
                return $errors;\r
        }\r
\r
        public function check_weblog_parameters()\r
        {\r
                $parameters = array('blog_name', 'blog_shortname');\r
                $this->read_parameter($parameters);\r
\r
                $errors = array();\r
                if ( $this->blog_name == '' )\r
                {\r
                        $errors[] = sprintf(_ERROR1, _BLOG_FIELD1);\r
                }\r
\r
                if ( $this->blog_shortname == '' )\r
                {\r
                        $errors[] = sprintf(_ERROR1, _BLOG_FIELD2);\r
                }\r
\r
                if ( !preg_match("/^[a-z0-9]+$/i", $this->blog_shortname) )\r
                {\r
                        $errors[] = _ERROR4;\r
                }\r
\r
                return $errors;\r
        }\r
\r
        public function check_uri_parameters()\r
        {\r
                $parameters = array('IndexURL', 'AdminURL', 'MediaURL', 'SkinsURL', 'PluginURL', 'ActionURL');\r
                $this->read_parameter($parameters);\r
\r
                $errors = array();\r
                if ( substr($this->IndexURL, -1, 1) !== '/' )\r
                {\r
                        $errors[] = sprintf(_ERROR8, _PATH_FIELD1);\r
                }\r
\r
                if ( substr($this->AdminURL, -1, 1) !== '/' )\r
                {\r
                        $errors[] = sprintf(_ERROR8, _PATH_FIELD2);\r
                }\r
\r
                if ( substr($this->MediaURL, -1, 1) !== '/' )\r
                {\r
                        $errors[] = sprintf(_ERROR8, _PATH_FIELD4);\r
                }\r
\r
                if ( substr($this->SkinsURL, -1, 1) !== '/' )\r
                {\r
                        $errors[] = sprintf(_ERROR8, _PATH_FIELD6);\r
                }\r
\r
                if ( substr($this->PluginURL, -1, 1) !== '/' )\r
                {\r
                        $errors[] = sprintf(_ERROR8, _PATH_FIELD8);\r
                }\r
\r
                if ( strrchr($this->ActionURL, '/') != '/action.php' )\r
                {\r
                        $errors[] = sprintf(_ERROR9, _PATH_FIELD9);\r
                }\r
\r
                return $errors;\r
        }\r
\r
        public function check_path_parameters()\r
        {\r
                $parameters = array('AdminPath', 'MediaPath', 'SkinsPath');\r
                $this->read_parameter($parameters);\r
\r
                $separators = array('/', DIRECTORY_SEPARATOR);\r
                $errors = array();\r
                if ( !in_array(substr($this->AdminPath, -1, 1), $separators) || !file_exists($this->AdminPath) )\r
                {\r
                        $errors[] = sprintf(_ERROR10, _PATH_FIELD3);\r
                }\r
\r
                if ( !in_array(substr($this->MediaPath, -1, 1), $separators) || !file_exists($this->MediaPath) )\r
                {\r
                        $errors[] = sprintf(_ERROR10, _PATH_FIELD5);\r
                }\r
\r
                if ( !in_array(substr($this->SkinsPath, -1, 1), $separators) || !file_exists($this->SkinsPath) )\r
                {\r
                        $errors[] = sprintf(_ERROR10, _PATH_FIELD7);\r
                }\r
\r
                return $errors;\r
        }\r
\r
        /**\r
         * check all parameters\r
         * @return bool\r
         */\r
        public function check_all_parameters()\r
        {\r
                $this->set_locale();\r
\r
                $isValid = true;\r
                $isValid &= (count($this->check_mysql_parameters()) == 0);\r
                $isValid &= (count($this->check_user_parameters()) == 0);\r
                $isValid &= (count($this->check_weblog_parameters()) == 0);\r
                $isValid &= (count($this->check_uri_parameters()) == 0);\r
                $isValid &= (count($this->check_path_parameters()) == 0);\r
\r
                return $isValid;\r
        }\r
}\r