+<<<<<<< HEAD
<?php\r
/*\r
* Nucleus: PHP/MySQL Weblog CMS (http://nucleuscms.org/)\r
/**\r
* @license http://nucleuscms.org/license.txt GNU General Public License\r
* @copyright Copyright (C) 2002-2012 The Nucleus Group\r
- * @version $Id$\r
+ * @version $Id: index.php 1745 2012-04-12 23:45:47Z sakamocchi $\r
*/\r
\r
/* global values initialize */\r
/* reporting all errors for support */\r
error_reporting(E_ALL);\r
\r
-$minimum_php_version = '5.0.6';\r
-$minimum_mysql_version = '3.23';\r
+$minimum_php_version = '5.0.6';\r
+$minimum_mysql_version = '3.23';\r
\r
-$page_footer_copyright = '© 2001-2012 The Nucleus Groupe . Running Nucleus CMS v4.00';\r
+$page_footer_copyright = '© 2001-2012 The Nucleus Groupe . Running Nucleus CMS v4.00';\r
\r
// begin if: server's PHP version is below the minimum; halt installation\r
if ( version_compare(PHP_VERSION, $minimum_php_version, '<') )\r
{\r
- exit('<div style="font-size: xx-large;"> Nucleus requires at least PHP version '. $minimum_php_version .'</div>');\r
+ exit('<div style="font-size: xx-large;"> Nucleus requires at least PHP version ' . $minimum_php_version . '</div>');\r
}\r
\r
// make sure there's no unnecessary escaping: # set_magic_quotes_runtime(0);\r
}\r
\r
/* default installed plugins and skins */\r
-$aConfPlugsToInstall = array('NP_SecurityEnforcer', 'NP_SkinFiles', 'NP_Text');\r
-$aConfSkinsToImport = array('atom', 'rss2.0', 'rsd', 'default');\r
+$aConfPlugsToInstall = array('NP_SecurityEnforcer', 'NP_SkinFiles');\r
+$aConfSkinsToImport = array('atom', 'rss2.0', 'rsd', 'default');\r
\r
// Check if some important files\r
do_check_files();\r
\r
/* i18n class is needed for internationalization */\r
include_once('../nucleus/libs/i18n.php');\r
-if ( !i18n::init('UTF-8', './locales') )\r
+if ( !i18n::init('UTF-8', '../nucleus/locales') )\r
{\r
exit('<div style="font-size: xx-large;"> Failed to initialize iconv or mbstring extension. Would you please contact the administrator of your PHP server? </div>');\r
}\r
\r
-// check if mysql support is installed; this check may not make sense, as is, in a version past 3.5x\r
-if ( !function_exists('mysql_query') && !function_exists('mysqli_query') )\r
-{\r
- exit('<div style="font-size: xx-large;"> Your PHP version does not have support for MySQL :( </div>');\r
-}\r
-\r
// include core classes that are needed for login & plugin handling\r
-include_once('../nucleus/libs/mysql.php');\r
\r
// added for 3.5 sql_* wrapper\r
global $MYSQL_HANDLER;\r
if ( !isset($MYSQL_HANDLER) )\r
{\r
$MYSQL_HANDLER = array('mysql', '');\r
+ \r
+ // check if mysql support is installed; this check may not make sense, as is, in a version past 3.5x\r
+ if ( !function_exists('mysql_query') && !function_exists('mysqli_query') )\r
+ {\r
+ exit('<div style="font-size: xx-large;"> Your PHP version does not have support for MySQL :( </div>');\r
+ }\r
}\r
-include_once('../nucleus/libs/sql/' . $MYSQL_HANDLER[0] . '.php');\r
+include_once('../nucleus/libs/sql/sql.php');\r
\r
session_start();\r
if ( count($_GET) == 0 && count($_POST) == 0 )\r
}\r
exit;\r
\r
-\r
/**\r
* installer action\r
*/\r
header("Cache-Control: no-cache, must-revalidate");\r
header("Expires: Sat, 26 Jul 1997 05:00:00 GMT");\r
header('Content-Type: text/html; charset=' . i18n::get_current_charset());\r
-\r
?>\r
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">\r
<html xmlns="http://www.w3.org/1999/xhtml">\r
<div id="navigation">\r
<h1><img src="./styles/nucleus_rogo.png" alt="NucleusCMS" /></h1>\r
<ul>\r
- <?php\r
- if ( in_array($param->state, array('mysql', 'weblog', 'install')) )\r
- {\r
- echo '<li>', _STEP1, '</li><li';\r
- if ( $param->state == 'mysql' )\r
- {\r
- echo ' class="gry"';\r
- }\r
- echo '> > ', _STEP2, '</li><li';\r
- if ( in_array($param->state, array('mysql', 'weblog')) )\r
- {\r
- echo ' class="gry"';\r
- }\r
- echo '> > ', _STEP3, "</li>\n";\r
- }\r
- if ( in_array($param->state, array('mysql', 'weblog', 'detail')) )\r
- {\r
- echo '<li class="rightbox">';\r
- if ( in_array($param->state, array('mysql', 'weblog')) )\r
- {\r
- echo '<a href="./?mode=detail">', _MODE2, '</a>';\r
- }\r
- else\r
- {\r
- echo '<a href="./?mode=simple">', _MODE1, '</a>';\r
- }\r
- echo '</li>';\r
- }\r
- ?>\r
+<?php\r
+ if ( in_array($param->state, array('mysql', 'weblog', 'install')) )\r
+ {\r
+ echo '<li>', _STEP1, '</li><li';\r
+ if ( $param->state == 'mysql' )\r
+ {\r
+ echo ' class="gry"';\r
+ }\r
+ echo '> > ', _STEP2, '</li><li';\r
+ if ( in_array($param->state, array('mysql', 'weblog')) )\r
+ {\r
+ echo ' class="gry"';\r
+ }\r
+ echo '> > ', _STEP3, "</li>\n";\r
+ }\r
+ if ( in_array($param->state, array('mysql', 'weblog', 'detail')) )\r
+ {\r
+ echo '<li class="rightbox">';\r
+ if ( in_array($param->state, array('mysql', 'weblog')) )\r
+ {\r
+ echo '<a href="./?mode=detail">', _MODE2, '</a>';\r
+ }\r
+ else\r
+ {\r
+ echo '<a href="./?mode=simple">', _MODE1, '</a>';\r
+ }\r
+ echo '</li>';\r
+ }\r
+?>\r
</ul>\r
</div>\r
</div>\r
*/\r
function show_select_locale_form()\r
{\r
- // Get the browser language that can be displayed\r
- // TODO: default locale select simple implementation\r
- $languages = explode(',', $_SERVER['HTTP_ACCEPT_LANGUAGE']);\r
- foreach ($languages as $language)\r
- {\r
- $language = preg_replace('#([\w]+).*#', '$1', $language);\r
- break;\r
+ // get locale list\r
+ $localelist = i18n::get_available_locale_list();\r
+ $locales = array();\r
+ foreach ( $localelist as $locale ) {\r
+ $checkfile = './locales/' . $locale . '.' . i18n::get_current_charset() . '.php';\r
+ $locales[] = array( $locale, (!file_exists($checkfile) ? '* ' : '') . $locale );\r
}\r
-\r
- $locales = array(\r
- array('en_Latn_US', 'English - United States'),\r
- array('ja_Jpan_JP', 'Japanese - Japan')\r
- );\r
?>\r
<div id="container">\r
<p style="font-size:152%;font-weight:bold;">\r
<div class="prt">\r
<select name="locale">\r
<?php\r
+ // Get the browser language that can be displayed\r
+ // TODO: default locale select simple implementation\r
+ $languages = explode(',', $_SERVER['HTTP_ACCEPT_LANGUAGE']);\r
+ $language = (is_array($languages) && count($languages) > 0) ? preg_replace('#^([\w]+).*$#', '$1', $languages[0]) : '';\r
+\r
foreach ( $locales as $locale )\r
{\r
echo "<option value=\"$locale[0]\"";\r
}\r
?>\r
</select>\r
+ <p>Nucleus is installed in the selected locale, the locale of the Asterisk prefixed will be displayed in English because there is no translation of the installer file.</p>\r
+ <p>We will wait for the translator by volunteers!</p>\r
+ </p>\r
<p class="sbt">\r
<button type="submit" name="action" value="locale" class="sbt_arw">START</button>\r
</p>\r
\r
$config_writable = canConfigFileWritable();\r
$mysql_version = getMySqlVersion();\r
- ?>\r
+?>\r
<div id="container">\r
<p class="msg">\r
<?php\r
}\r
elseif ( version_compare($mysql_version, $minimum_mysql_version, '<') )\r
{\r
- echo '<span class="err">', sprintf(_DBVERSION_TOOLOW , $minimum_mysql_version), '</span>';\r
+ echo '<span class="err">', sprintf(_DBVERSION_TOOLOW, $minimum_mysql_version), '</span>';\r
}\r
?>\r
</p>\r
function show_blog_setting_form($isPostback)\r
{\r
global $param;\r
-\r
?>\r
<div id="container">\r
<p class="msg">\r
echo ($mysql_version == '0.0.0') ? _DBVERSION_UNKOWN : $mysql_version;\r
if ( version_compare($mysql_version, $minimum_mysql_version, '<') )\r
{\r
- echo '<span class="err">', sprintf(_DBVERSION_TOOLOW , $minimum_mysql_version), '</span>';\r
+ echo '<span class="err">', sprintf(_DBVERSION_TOOLOW, $minimum_mysql_version), '</span>';\r
}\r
?></li>\r
</ul>\r
{\r
echo '<span class="err">', _INST_TEXT4, '</span>';\r
?>\r
-<textarea id="config_text" readonly="readonly" onfocus="SelectText(this);"><?php echo htmlentities($_SESSION['config_data'], null, i18n::get_current_charset() ) ?></textarea>\r
+<textarea id="config_text" readonly="readonly" onfocus="SelectText(this);"><?php echo htmlentities($_SESSION['config_data'], null, i18n::get_current_charset()) ?></textarea>\r
<?php\r
}\r
else\r
function do_install()\r
{\r
global $param;\r
- global $MYSQL_HOST, $MYSQL_USER, $MYSQL_PASSWORD, $MYSQL_DATABASE, $MYSQL_PREFIX, $MYSQL_CONN;\r
+ global $MYSQL_HANDLER, $MYSQL_HOST, $MYSQL_USER, $MYSQL_PASSWORD, $MYSQL_DATABASE, $MYSQL_PREFIX, $MYSQL_CONN;\r
global $DIR_NUCLEUS, $DIR_MEDIA, $DIR_SKINS, $DIR_PLUGINS, $DIR_LANG, $DIR_LIBS;\r
$errors = array();\r
\r
/*\r
* 1. put all param-vars into vars\r
*/\r
- $MYSQL_HOST = $param->mysql_host;\r
- $MYSQL_USER = $param->mysql_user;\r
- $MYSQL_PASSWORD = $param->mysql_password;\r
- $MYSQL_DATABASE = $param->mysql_database;\r
- $MYSQL_PREFIX = $param->mysql_tablePrefix;\r
-\r
- $DIR_NUCLEUS = $param->AdminPath;\r
- $DIR_MEDIA = $param->MediaPath;\r
- $DIR_SKINS = $param->SkinsPath;\r
- $DIR_PLUGINS = $DIR_NUCLEUS . 'plugins/';\r
- $DIR_LOCALES = $DIR_NUCLEUS . 'locales/';\r
- $DIR_LIBS = $DIR_NUCLEUS . 'libs/';\r
+ $MYSQL_HOST = $param->mysql_host;\r
+ $MYSQL_USER = $param->mysql_user;\r
+ $MYSQL_PASSWORD = $param->mysql_password;\r
+ $MYSQL_DATABASE = $param->mysql_database;\r
+ $MYSQL_PREFIX = $param->mysql_tablePrefix;\r
+\r
+ $DIR_NUCLEUS = $param->AdminPath;\r
+ $DIR_MEDIA = $param->MediaPath;\r
+ $DIR_SKINS = $param->SkinsPath;\r
+ $DIR_PLUGINS = $DIR_NUCLEUS . 'plugins/';\r
+ $DIR_LOCALES = $DIR_NUCLEUS . 'locales/';\r
+ $DIR_LIBS = $DIR_NUCLEUS . 'libs/';\r
\r
/*\r
* 2.open mySQL connection\r
*/\r
- $MYSQL_CONN = @sql_connect_args($MYSQL_HOST, $MYSQL_USER, $MYSQL_PASSWORD);\r
- if ( $MYSQL_CONN == false )\r
+ $MYSQL_CONN = @DB::setConnectionInfo($MYSQL_HANDLER[1], $MYSQL_HOST, $MYSQL_USER, $MYSQL_PASSWORD);\r
+ if ( $MYSQL_CONN == FALSE )\r
{\r
$errors[] = _DBCONNECT_ERROR;\r
return $errors;\r
/*\r
* 3. try to create database if needed\r
*/\r
- if ( !sql_query("CREATE DATABASE IF NOT EXISTS {$MYSQL_DATABASE}") )\r
+ if ( DB::execute("CREATE DATABASE IF NOT EXISTS {$MYSQL_DATABASE}") === FALSE )\r
{\r
- $errors[] = _INST_ERROR1 . ': ' . sql_error();\r
+ $errinfo = DB::getError();\r
+ $errors[] = _INST_ERROR1 . ': ' . $errinfo[2];\r
}\r
\r
/*\r
* 4. try to select database\r
*/\r
- if ( !sql_select_db($MYSQL_DATABASE) )\r
+ $MYSQL_CONN = @DB::setConnectionInfo($MYSQL_HANDLER[1], $MYSQL_HOST, $MYSQL_USER, $MYSQL_PASSWORD, $MYSQL_DATABASE);\r
+ if ( !$MYSQL_CONN )\r
{\r
$errors[] = _INST_ERROR2;\r
}\r
- sql_set_charset('utf8');\r
\r
if ( count($errors) > 0 )\r
{\r
}\r
\r
// table exists check\r
- $result = sql_query('SHOW TABLES');\r
- while ($row = mysql_fetch_array($result, MYSQL_NUM))\r
+ $result = DB::getResult('SHOW TABLES');\r
+ foreach ( $result as $row )\r
{\r
if ( in_array($row[0], $prefixed_table_names) )\r
{\r
\r
$filename = 'install.sql';\r
$fd = fopen($filename, 'r');\r
- $queries = fread($fd, filesize($filename) );\r
+ $queries = fread($fd, filesize($filename));\r
fclose($fd);\r
\r
$queries = preg_split('#(;\n|;\r)#', $queries);\r
$query = str_replace($table_names, $prefixed_table_names, $query);\r
}\r
\r
- if ( !sql_query($query) )\r
+ if ( DB::execute($query) === FALSE )\r
{\r
- $errors[] = _INST_ERROR4 . ' (<small>' . $query . '</small>): ' . sql_error();\r
+ $errinfo = DB::getError();\r
+ $errors[] = _INST_ERROR4 . ' (<small>' . $query . '</small>): ' . $errinfo[2];\r
}\r
}\r
}\r
* 6. put needed records\r
*/\r
/* push first post */\r
- $query = "INSERT INTO %s VALUES (1, '%s', '%s', '%s', 1, 1, '%s', 0, 0, 0, 1, 0, 1)";\r
- $query = sprintf($query, tableName('nucleus_item'), _1ST_POST_TITLE, _1ST_POST, _1ST_POST2, i18n::formatted_datetime('mysql', time()));\r
- if ( !sql_query($query) )\r
+ $query = "INSERT INTO %s VALUES (1, %s, %s, %s, 1, 1, %s, 0, 0, 0, 1, 0, 1)";\r
+ $query = sprintf($query,\r
+ tableName('nucleus_item'),\r
+ DB::quoteValue(_1ST_POST_TITLE),\r
+ DB::quoteValue(_1ST_POST),\r
+ DB::quoteValue(_1ST_POST2),\r
+ DB::formatDateTime()\r
+ );\r
+ if ( DB::execute($query) === FALSE )\r
{\r
- $errors[] = _INST_ERROR4 . ' (<small>' . $newpost . '</small>): ' . sql_error();\r
+ $errinfo = DB::getError();\r
+ $errors[] = _INST_ERROR4 . ' (<small>' . $query . '</small>): ' . $errinfo[2];\r
}\r
\r
/* push configurations */\r
array_merge($errors, updateConfig('SiteName', $param->blog_name));\r
array_merge($errors, updateConfig('Locale', i18n::get_current_locale()));\r
\r
- /* escape strings for SQL */\r
- $user_name = sql_real_escape_string($param->user_name);\r
- $user_realname = sql_real_escape_string($param->user_realname);\r
- $user_password = sql_real_escape_string(md5($param->user_password));\r
- $user_email = sql_real_escape_string($param->user_email);\r
- $blog_name = sql_real_escape_string($param->blog_name);\r
- $blog_shortname = sql_real_escape_string($param->blog_shortname);\r
- $config_indexurl = sql_real_escape_string($param->IndexURL);\r
-\r
/* push super admin */\r
- $query = "UPDATE %s SET mname = '%s', mrealname = '%s', mpassword = '%s', memail = '%s', murl = '%s', madmin = 1, mcanlogin = 1 WHERE mnumber = 1";\r
- $query = sprintf($query, tableName('nucleus_member'), $user_name, $user_realname, $user_password, $user_email, $config_indexurl);\r
- if ( !sql_query($query) )\r
+ $query = "UPDATE %s SET mname = %s, mrealname = %s, mpassword = %s, memail = %s, murl = %s, madmin = 1, mcanlogin = 1 WHERE mnumber = 1";\r
+ $query = sprintf($query,\r
+ tableName('nucleus_member'),\r
+ DB::quoteValue($param->user_name),\r
+ DB::quoteValue($param->user_realname),\r
+ DB::quoteValue(md5($param->user_password)),\r
+ DB::quoteValue($param->user_email),\r
+ DB::quoteValue($param->IndexURL)\r
+ );\r
+ if ( DB::execute($query) === FALSE )\r
{\r
- $errors[] = _INST_ERROR5 . ': ' . sql_error();\r
+ $errinfo = DB::getError();\r
+ $errors[] = _INST_ERROR5 . ': ' . $errinfo[2];\r
}\r
\r
/* push new weblog */\r
- $query = "UPDATE %s SET bname = '%s', bshortname = '%s', burl = '%s' WHERE bnumber = 1";\r
- $query = sprintf($query, tableName('nucleus_blog'), $blog_name, $blog_shortname, $config_indexurl);\r
- if ( !sql_query($query) )\r
+ $query = "UPDATE %s SET bname = %s, bshortname = %s, burl = %s WHERE bnumber = 1";\r
+ $query = sprintf($query,\r
+ tableName('nucleus_blog'),\r
+ DB::quoteValue($param->blog_name),\r
+ DB::quoteValue($param->blog_shortname),\r
+ DB::quoteValue($param->IndexURL)\r
+ );\r
+ if ( DB::execute($query) === FALSE )\r
{\r
- $errors[] = _INST_ERROR6 . ': ' . sql_error();\r
+ $errinfo = DB::getError();\r
+ $errors[] = _INST_ERROR6 . ': ' . $errinfo[2];\r
}\r
\r
/* push default category */\r
- $query = "UPDATE %s SET cname = '%s', cdesc = '%s' WHERE catid = 1";\r
- $query = sprintf($query, tableName('nucleus_category'), _GENERALCAT_NAME, _GENERALCAT_DESC);\r
- if ( !sql_query($query) )\r
+ $query = "UPDATE %s SET cname = %s, cdesc = %s WHERE catid = 1";\r
+ $query = sprintf($query,\r
+ tableName('nucleus_category'),\r
+ DB::quoteValue(_GENERALCAT_NAME),\r
+ DB::quoteValue(_GENERALCAT_DESC)\r
+ );\r
+ if ( DB::execute($query) === FALSE )\r
{\r
- $errors[] = _INST_ERROR6 . ': ' . sql_error();\r
+ $errinfo = DB::getError();\r
+ $errors[] = _INST_ERROR6 . ': ' . $errinfo[2];\r
}\r
\r
- sql_close();\r
-\r
/*\r
* 7. install default plugins and skins\r
*/\r
array_merge($errors, $aSkinErrors);\r
}\r
\r
- $query = "SELECT sdnumber FROM %s WHERE sdname='default'";\r
- $query = sprintf($query, tableName('nucleus_skin_desc'));\r
- $res = sql_query($query);\r
- $obj = sql_fetch_assoc($res);\r
- $defSkinID = (integer) $obj['sdnumber'];\r
+ $query = "SELECT sdnumber FROM %s WHERE sdname='default'";\r
+ $query = sprintf($query, tableName('nucleus_skin_desc'));\r
+ $defSkinID = intval(DB::getValue($query));\r
\r
$query = "UPDATE %s SET bdefskin=%d WHERE bnumber=1";\r
$query = sprintf($query, tableName('nucleus_blog'), $defSkinID);\r
- sql_query($query);\r
+ DB::execute($query);\r
+ \r
$query = "UPDATE %s SET value=%d WHERE name='BaseSkin'";\r
$query = sprintf($query, tableName('nucleus_config'), $defSkinID);\r
- sql_query($query);\r
+ DB::execute($query);\r
\r
$aPlugErrors = installCustomPlugs();\r
if ( count($aPlugErrors) > 0 )\r
$config_data .= "// default is \$MYSQL_HANDLER = array('mysql','mysql');\n";\r
$config_data .= "//\$MYSQL_HANDLER = array('mysql','mysql');\n";\r
$config_data .= "//\$MYSQL_HANDLER = array('pdo','mysql');\n";\r
- $config_data .= "\$MYSQL_HANDLER = array('".$MYSQL_HANDLER[0]."','".$MYSQL_HANDLER[1]."');\n";\r
+ $config_data .= "\$MYSQL_HANDLER = array('" . $MYSQL_HANDLER[0] . "','" . $MYSQL_HANDLER[1] . "');\n";\r
$config_data .= "\n";\r
$config_data .= "// main nucleus directory\n";\r
$config_data .= "\$DIR_NUCLEUS = '" . $DIR_NUCLEUS . "';\n";\r
{\r
if ( $fp = @fopen('../config.php', 'w') )\r
{\r
- $result = @fwrite($fp, $config_data, i18n::strlen($config_data) );\r
+ $result = @fwrite($fp, $config_data, i18n::strlen($config_data));\r
fclose($fp);\r
}\r
}\r
if ( $result )\r
{\r
// try to change the read-only permission.\r
- if (strtoupper(substr(PHP_OS, 0, 3)) !== 'WIN' )\r
+ if ( strtoupper(substr(PHP_OS, 0, 3)) !== 'WIN' )\r
{\r
@chmod('../config.php', 0444);\r
}\r
if ( @file_exists('../config.php') && @!is_writable('../config.php') )\r
{\r
// try to change the read-write permission.\r
- if (strtoupper(substr(PHP_OS, 0, 3)) !== 'WIN' )\r
+ if ( strtoupper(substr(PHP_OS, 0, 3)) !== 'WIN' )\r
{\r
@chmod('../config.php', 0666);\r
}\r
*/\r
function getMySqlVersion()\r
{\r
- global $minimum_mysql_version, $errors;\r
+ global $MYSQL_HANDLER, $minimum_mysql_version, $errors;\r
// Turn on output buffer\r
// Needed to repress the output of the sql function that are\r
// not part of php (in this case the @ operator doesn't work)\r
ob_start();\r
\r
// note: this piece of code is taken from phpMyAdmin\r
- $conn = sql_connect_args('localhost', '', '');\r
- $result = @sql_query('SELECT VERSION() AS version', $conn);\r
+ $conn = @DB::setConnectionInfo($MYSQL_HANDLER[1], 'localhost', '', '');\r
\r
- if ( $result != FALSE && sql_num_rows($result) > 0 )\r
+ if ( $conn )\r
{\r
- $row = sql_fetch_array($result);\r
- $match = i18n::explode('.', $row['version']);\r
+ $row = DB::getAttribute(PDO::ATTR_SERVER_VERSION);\r
+ $match = preg_split('#\.#', $row);\r
}\r
else\r
{\r
- $result = @sql_query('SHOW VARIABLES LIKE \'version\'', $conn);\r
+ $row = @DB::getRow('SHOW VARIABLES LIKE \'version\'');\r
\r
- if ( $result != FALSE && @sql_num_rows($result) > 0 )\r
+ if ( $row )\r
{\r
- $row = sql_fetch_row($result);\r
- $match = i18n::explode('.', $row[1]);\r
+ $match = preg_split('#\.#', $row[1]);\r
}\r
else\r
{\r
- //$output = shell_exec('mysql -V');\r
- $output = ( function_exists('shell_exec') ) ? @shell_exec('mysql -V') : '0.0.0';\r
+ $output = (function_exists('shell_exec')) ? @shell_exec('mysql -V') : '0.0.0';\r
preg_match('@[0-9]+\.[0-9]+\.[0-9]+@', $output, $version);\r
- $match = i18n::explode('.', $version[0]);\r
+ $match = preg_split('#\.#', $version[0]);\r
\r
if ( $match[0] == '' )\r
{\r
}\r
}\r
\r
- @sql_disconnect($conn);\r
+ @DB::disConnect();\r
\r
//End and clean output buffer\r
ob_end_clean();\r
return $aErrors;\r
}\r
\r
- $res = sql_query('SELECT * FROM ' . tableName('nucleus_plugin') );\r
- $numCurrent = sql_num_rows($res);\r
+ $query = sprintf('SELECT * FROM %s', tableName('nucleus_plugin'));\r
+ $res = DB::getResult($query);\r
+ $numCurrent = $res->rowCount();\r
\r
foreach ( $aConfPlugsToInstall as $plugName )\r
{\r
- $query = 'INSERT INTO ' . tableName('nucleus_plugin') . ' (porder, pfile) VALUES (' . (++$numCurrent) . ", '" . sql_real_escape_string($plugName) . "')";\r
- sql_query($query);\r
+ $query = sprintf('INSERT INTO %s (porder, pfile) VALUES (%d, %s)',\r
+ tableName('nucleus_plugin'),\r
+ (++$numCurrent),\r
+ DB::quoteValue($plugName));\r
+ DB::execute($query);\r
\r
$manager->clearCachedInfo('installedPlugins');\r
$plugin =& $manager->getPlugin($plugName);\r
\r
if ( !$plugin )\r
{\r
- sql_query('DELETE FROM ' . tableName('nucleus_plugin') . " WHERE pfile = '" . sql_real_escape_string($plugName) . "'");\r
+ $query = sprintf('DELETE FROM %s WHERE pfile = %s',\r
+ tableName('nucleus_plugin'),\r
+ DB::quoteValue($plugName));\r
+ DB::execute($query);\r
$numCurrent--;\r
- array_push($aErrors, sprintf(_INST_ERROR9 ,$plugName));\r
+ array_push($aErrors, sprintf(_INST_ERROR9, $plugName));\r
continue;\r
}\r
$plugin->install();\r
}\r
\r
- sql_query('DELETE FROM ' . tableName('nucleus_plugin_event') );\r
- $res = sql_query('SELECT pid, pfile FROM ' . tableName('nucleus_plugin') );\r
+ $query = sprintf('DELETE FROM %s', tableName('nucleus_plugin_event'));\r
+ DB::execute($query);\r
+ $query = sprintf('SELECT pid, pfile FROM %s', tableName('nucleus_plugin'));\r
+ $res = DB::getResult($query);\r
\r
- while ( $o = sql_fetch_object($res) )\r
+ foreach ( $res as $row )\r
{\r
- $pid = $o->pid;\r
- $plug =& $manager->getPlugin($o->pfile);\r
+ $plug =& $manager->getPlugin($row['pfile']);\r
\r
if ( $plug )\r
{\r
$eventList = $plug->getEventList();\r
foreach ( $eventList as $eventName )\r
{\r
- sql_query('INSERT INTO ' . tableName('nucleus_plugin_event') . ' (pid, event) VALUES (' . $pid . ", '" . $eventName . "')");\r
+ $query = sprintf('INSERT INTO %s (pid, event) VALUES (%d, %s)',\r
+ tableName('nucleus_plugin_event'),\r
+ intval($row['pid']),\r
+ DB::quoteValue($eventName));\r
+ DB::execute($query);\r
}\r
}\r
}\r
return $aErrors;\r
}\r
\r
-\r
/**\r
* Check if some important files of the Nucleus CMS installation are available\r
* Give an error if one or more files are not accessible\r
'../nucleus/libs/MANAGER.php',\r
'../nucleus/libs/MEDIA.php',\r
'../nucleus/libs/MEMBER.php',\r
- '../nucleus/libs/mysql.php',\r
'../nucleus/libs/NOTIFICATION.php',\r
'../nucleus/libs/PAGEFACTORY.php',\r
'../nucleus/libs/PARSER.php',\r
'../nucleus/libs/vars4.1.0.php',\r
'../nucleus/libs/xmlrpc.inc.php',\r
'../nucleus/libs/xmlrpcs.inc.php',\r
- '../nucleus/libs/sql/mysql.php'\r
+ '../nucleus/libs/sql/DB.php',\r
+ '../nucleus/libs/sql/MYSQLPDO.php'\r
);\r
\r
$count = count($files);\r
{\r
if ( !is_readable($files[$i]) )\r
{\r
- array_push( $missingfiles, 'File <b>' . $files[$i] . '</b> is missing or not readable.<br />');\r
+ array_push($missingfiles, 'File <b>' . $files[$i] . '</b> is missing or not readable.<br />');\r
}\r
}\r
\r
if ( count($missingfiles) > 0 )\r
{\r
- exit(implode( "\n", $missingfiles));\r
+ exit(implode("\n", $missingfiles));\r
}\r
}\r
\r
-\r
/**\r
* Updates the configuration in the database\r
*\r
function updateConfig($name, $value)\r
{\r
$errors = array();\r
- $name = sql_real_escape_string($name);\r
- $value = trim(sql_real_escape_string($value) );\r
\r
- $query = "UPDATE %s SET value = '%s' WHERE name = '%s'";\r
- $query = sprintf($query, tableName('nucleus_config'), $value, $name);\r
+ $query = "UPDATE %s SET value = %s WHERE name = %s";\r
+ $query = sprintf($query, tableName('nucleus_config'), DB::quoteValue(trim($value)), DB::quoteValue($name));\r
\r
- if ( !sql_query($query) )\r
+ if ( DB::execute($query) === FALSE )\r
{\r
- $errors[] = _INST_ERROR4 . ': ' . sql_error();\r
+ $errinfo = DB::getError();\r
+ $errors[] = _INST_ERROR4 . ': ' . $errinfo[2];\r
}\r
return $errors;\r
}\r
\r
-\r
class ParamManager\r
{\r
/* process parameter */\r
$this->blog_shortname = 'mynucleuscms';\r
\r
/* root path */\r
-// $this->root_path = realpath(dirname(__FILE__) . '/..');\r
- $this->root_path = implode('/', i18n::explode(DIRECTORY_SEPARATOR, realpath(dirname(__FILE__) . '/..')));\r
+ $directory_separator = preg_quote(DIRECTORY_SEPARATOR, '|');\r
+ $this->root_path = implode('/', preg_split("|$directory_separator|", realpath(dirname(__FILE__) . '/..')));\r
if ( substr($this->root_path, -1, 1) !== '/' )\r
{\r
$this->root_path .= '/';\r
$base_path_pcre = preg_quote($this->root_path, '|');\r
\r
/* current directry name */\r
- $directory_name = preg_replace("|$base_path_pcre|", '', implode('/', i18n::explode(DIRECTORY_SEPARATOR, realpath(dirname(__FILE__)))));\r
+ $directory_name = preg_replace("#{$base_path_pcre}#", '', implode('/', preg_split("#{$directory_separator}#", realpath(dirname(__FILE__)))));\r
$directory_name_pcre = preg_quote($directory_name, '|');\r
\r
/* root uri */\r
\r
public function check_mysql_parameters()\r
{\r
+ global $MYSQL_HANDLER;\r
+ \r
$parameters = array('mysql_host', 'mysql_user', 'mysql_password', 'mysql_database', 'mysql_tablePrefix');\r
$this->read_parameter($parameters);\r
\r
$errors[] = sprintf(_VALID_ERROR2, _DB_FIELD2);\r
}\r
\r
-// if ( $this->mysql_password == '' )\r
-// {\r
-// $errors[] = sprintf(_VALID_ERROR1, _DB_FIELD3);\r
-// }\r
-\r
if ( $this->mysql_database == '' )\r
{\r
$errors[] = sprintf(_VALID_ERROR1, _DB_FIELD4);\r
\r
if ( count($errors) == 0 )\r
{\r
- $mysql_conn = @sql_connect_args($this->mysql_host, $this->mysql_user, $this->mysql_password);\r
+ $mysql_conn = @DB::setConnectionInfo($MYSQL_HANDLER[1], $this->mysql_host, $this->mysql_user, $this->mysql_password);\r
if ( $mysql_conn == false )\r
{\r
$errors[] = _DBCONNECT_ERROR;\r
}\r
else\r
{\r
- @sql_close($mysql_conn);\r
+ @DB::disConnect();\r
}\r
}\r
\r
return $isValid;\r
}\r
}\r
+=======
+<?php
+/*
+ * Nucleus: PHP/MySQL Weblog CMS (http://nucleuscms.org/)
+ * Copyright (C) 2002-2012 The Nucleus Group
+ *
+ * This program is free software; you can redistribute it and/or
+ * modify it under the terms of the GNU General Public License
+ * as published by the Free Software Foundation; either version 2
+ * of the License, or (at your option) any later version.
+ * (see nucleus/documentation/index.html#license for more info)
+ *
+ * This script will install the Nucleus tables in your SQL-database,
+ * and initialize the data in those tables.
+ */
+
+/**
+ * @license http://nucleuscms.org/license.txt GNU General Public License
+ * @copyright Copyright (C) 2002-2012 The Nucleus Group
+ * @version $Id: index.php 1889 2012-06-17 08:46:45Z sakamocchi $
+ */
+
+/* global values initialize */
+$CONF = array();
+
+/* reporting all errors for support */
+error_reporting(E_ALL);
+
+$minimum_php_version = '5.0.6';
+$minimum_mysql_version = '3.23';
+
+$page_footer_copyright = '© 2001-2012 The Nucleus Groupe . Running Nucleus CMS v4.00';
+
+// begin if: server's PHP version is below the minimum; halt installation
+if ( version_compare(PHP_VERSION, $minimum_php_version, '<') )
+{
+ exit('<div style="font-size: xx-large;"> Nucleus requires at least PHP version ' . $minimum_php_version . '</div>');
+}
+
+// make sure there's no unnecessary escaping: # set_magic_quotes_runtime(0);
+if ( version_compare(PHP_VERSION, '5.3.0', '<') )
+{
+ ini_set('magic_quotes_runtime', '0');
+}
+
+/* default installed plugins and skins */
+$aConfPlugsToInstall = array('NP_SecurityEnforcer', 'NP_SkinFiles', 'NP_Medium');
+$aConfSkinsToImport = array('atom', 'rss2.0', 'rsd', 'default', 'admin/default', 'admin/bookmarklet');
+
+// Check if some important files
+do_check_files();
+
+/* i18n class is needed for internationalization */
+include_once('../nucleus/libs/i18n.php');
+if ( !i18n::init('UTF-8', '../nucleus/locales') )
+{
+ exit('<div style="font-size: xx-large;"> Failed to initialize iconv or mbstring extension. Would you please contact the administrator of your PHP server? </div>');
+}
+
+// include core classes that are needed for login & plugin handling
+
+// added for 3.5 sql_* wrapper
+global $MYSQL_HANDLER;
+
+if ( !isset($MYSQL_HANDLER) )
+{
+ $MYSQL_HANDLER = array('mysql', '');
+
+ // check if mysql support is installed; this check may not make sense, as is, in a version past 3.5x
+ if ( !function_exists('mysql_query') && !function_exists('mysqli_query') )
+ {
+ exit('<div style="font-size: xx-large;"> Your PHP version does not have support for MySQL :( </div>');
+}
+}
+include_once('../nucleus/libs/sql/sql.php');
+
+session_start();
+if ( count($_GET) == 0 && count($_POST) == 0 )
+{
+ unset($_SESSION['param_manager']);
+}
+
+// restore the $param from the session
+if ( array_key_exists('param_manager', $_SESSION) )
+{
+ $param = $_SESSION['param_manager'];
+}
+else
+{
+ $param = new ParamManager();
+}
+
+// include translation file
+$param->set_locale();
+
+do_action();
+
+// $param is saved to the session
+if ( isset($param) )
+{
+ $_SESSION['param_manager'] = $param;
+}
+else
+{
+ unset($_SESSION['param_manager']);
+}
+exit;
+
+/**
+ * installer action
+ */
+function do_action()
+{
+ global $param;
+
+ if ( array_key_exists('action', $_POST) )
+ {
+ $isPostback = true;
+ }
+ else
+ {
+ $isPostback = false;
+ }
+
+ // mode change
+ if ( array_key_exists('mode', $_REQUEST) )
+ {
+ if ( $_REQUEST['mode'] == 'detail' )
+ {
+ $param->set_state('detail');
+ }
+ elseif ( $_REQUEST['mode'] == 'simple' )
+ {
+ $param->set_state('mysql');
+ }
+ }
+
+ // input parameter check
+ if ( $isPostback )
+ {
+ switch ( $param->state )
+ {
+ case 'locale':
+ $param->set_state('mysql');
+ $isPostback = false;
+ break;
+ case 'mysql':
+ if ( count($param->check_mysql_parameters()) == 0 )
+ {
+ $param->set_state('weblog');
+ $isPostback = false;
+ }
+ break;
+ case 'weblog':
+ if ( count($param->check_user_parameters()) == 0
+ && count($param->check_weblog_parameters()) == 0 )
+ {
+ $param->set_state('install');
+ $isPostback = false;
+ }
+ break;
+ case 'detail':
+ if ( $param->check_all_parameters() )
+ {
+ $param->set_state('install');
+ $isPostback = false;
+ }
+ break;
+ }
+ }
+
+ // page render
+ show_header();
+ switch ( $param->state )
+ {
+ case 'locale':
+ show_select_locale_form();
+ break;
+ case 'mysql':
+ show_database_setting_form($isPostback);
+ break;
+ case 'weblog':
+ show_blog_setting_form($isPostback);
+ break;
+ case 'detail':
+ show_detail_setting_form($isPostback);
+ break;
+ case 'install':
+ show_install_complete_form();
+ break;
+ }
+ show_footer();
+}
+
+/**
+ * header tag of the installation screens
+ **/
+function show_header()
+{
+ global $param;
+
+ /* HTTP 1.1 application for no caching */
+ header("Cache-Control: no-cache, must-revalidate");
+ header("Expires: Sat, 26 Jul 1997 05:00:00 GMT");
+ header('Content-Type: text/html; charset=' . i18n::get_current_charset());
+?>
+<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
+<html xmlns="http://www.w3.org/1999/xhtml">
+ <head>
+ <title><?php echo _TITLE; ?></title>
+ <link rel="stylesheet" type="text/css" href="./styles/inst.css" />
+ <style type="text/css">
+ <!--
+ <?php echo _BODYFONTSTYLE; ?>
+ -->
+ </style>
+ <script type="text/javascript">
+ function SelectText( element ) {
+ window.setTimeout( function() { element.select() }, 0 );
+ }
+ var isSubmit = false;
+ function OnceSubmit() {
+ if (!isSubmit) {
+ isSubmit = true;
+ window.setTimeout( function() { isSubmit = false; }, 10000 );
+ return true;
+ }
+ return false;
+ }
+ </script>
+ </head>
+ <body>
+ <div id="header">
+ <div id="navigation">
+ <h1><img src="./styles/nucleus_rogo.png" alt="NucleusCMS" /></h1>
+ <ul>
+<?php
+ echo '<li>';
+ $label = '_LOCALE_' . strtoupper($param->locale);
+ if ( !defined($label) )
+ {
+ echo $param->locale;
+ }
+ else
+ {
+ echo constant($label);
+ }
+ echo "</li>\n";
+
+ if ( in_array($param->state, array('mysql', 'weblog', 'install')) )
+ {
+ echo '<li> > ' . _STEP1, '</li><li';
+ if ( $param->state == 'mysql' )
+ {
+ echo ' class="gry"';
+ }
+ echo '> > ', _STEP2, '</li><li';
+ if ( in_array($param->state, array('mysql', 'weblog')) )
+ {
+ echo ' class="gry"';
+ }
+ echo '> > ', _STEP3, "</li>\n";
+ }
+ if ( in_array($param->state, array('mysql', 'weblog', 'detail')) )
+ {
+ echo '<li class="rightbox">';
+ if ( in_array($param->state, array('mysql', 'weblog')) )
+ {
+ echo '<a href="./?mode=detail">', _MODE2, '</a>';
+ }
+ else
+ {
+ echo '<a href="./?mode=simple">', _MODE1, '</a>';
+ }
+ echo '</li>';
+ }
+?>
+ </ul>
+ </div>
+ </div>
+<?php
+}
+
+/**
+ * footer tag of the installation screens
+ **/
+function show_footer()
+{
+ global $page_footer_copyright;
+?>
+ <div id="footer">
+ <?php echo $page_footer_copyright; ?>
+ </div>
+ </body>
+</html>
+<?php
+}
+
+/**
+ * Display the form for language select
+ */
+function show_select_locale_form()
+{
+ global $param;
+
+?>
+ <div id="container">
+ <p style="font-size:152%;font-weight:bold;">
+ <?php echo _LOCALE_HEADER; ?>
+ </p>
+ <form method="post" action="./index.php">
+
+ <div class="prt">
+ <select name="locale">
+<?php
+ $locales = i18n::get_available_locale_list();
+ foreach ( $locales as $locale )
+ {
+ if ( $param->locale != $locale )
+ {
+ echo "<option value=\"{$locale}\">";
+ }
+ else
+ {
+ echo "<option value=\"{$locale}\" selected=\"selected\">";
+ }
+
+ $checkfile = "./locales/{$locale}." . i18n::get_current_charset() . '.php';
+ if ( !file_exists($checkfile) )
+ {
+ echo '* ';
+ }
+
+ $label = '_LOCALE_' . strtoupper($locale);
+ if ( !defined($label) )
+ {
+ echo $locale;
+ }
+ else
+ {
+ echo constant($label);
+ }
+ echo "</option>\n";
+ }
+?>
+ </select>
+ <p><?php echo _LOCALE_DESC1; ?></p>
+ <p><?php echo _LOCALE_DESC2; ?></p>
+ <p><?php echo _LOCALE_NEED_HELP;?></p>
+ <p class="sbt">
+ <button type="submit" name="action" value="locale" class="sbt_arw">START</button>
+ </p>
+ </div>
+ </form>
+ </div>
+<?php
+}
+
+/**
+ * Display the form to set up a database
+ * @param bool $isPostback
+ */
+function show_database_setting_form($isPostback)
+{
+ global $param, $minimum_mysql_version;
+
+ $config_writable = canConfigFileWritable();
+ $mysql_version = getMySqlVersion();
+?>
+ <div id="container">
+ <p class="msg">
+<?php
+ echo _SIMPLE_NAVI1;
+ if ( $config_writable != '' )
+ {
+ echo '<span class="err">', $config_writable, '</span>';
+ }
+ if ( $mysql_version == '0.0.0' )
+ {
+ echo '<span class="err">', _DBVERSION_UNKOWN, '</span>';
+ }
+ elseif ( version_compare($mysql_version, $minimum_mysql_version, '<') )
+ {
+ echo '<span class="err">', sprintf(_DBVERSION_TOOLOW, $minimum_mysql_version), '</span>';
+ }
+?>
+ </p>
+ <form method="post" action="./index.php">
+ <div class="prt">
+ <h2><?php echo _DB_HEADER; ?></h2>
+ <p class="msg">
+<?php
+ if ( $isPostback )
+ {
+ $errors = $param->check_mysql_parameters();
+ if ( is_array($errors) )
+ {
+ foreach ( $errors as $error )
+ {
+ echo '<span class="err">', $error, "</span>\n";
+ }
+ }
+ }
+?>
+ </p>
+ <table>
+ <tr>
+ <th><span class="nam"><?php echo _DB_FIELD1; ?></span><span class="sub"><?php echo _DB_FIELD1_DESC; ?></span></th>
+ <td><input type="text" name="mysql_host" value="<?php echo $param->mysql_host; ?>" /></td>
+ </tr>
+ <tr>
+ <th><span class="nam"><?php echo _DB_FIELD2; ?></span><span class="sub"><?php echo _DB_FIELD2_DESC; ?></span></th>
+ <td><input type="text" name="mysql_user" value="<?php echo $param->mysql_user; ?>" /></td>
+ </tr>
+ <tr>
+ <th><span class="nam"><?php echo _DB_FIELD3; ?></span></th>
+ <td><input type="text" name="mysql_password" value="<?php echo $param->mysql_password; ?>" /></td>
+ </tr>
+ <tr>
+ <th><span class="nam"><?php echo _DB_FIELD4; ?></span><span class="sub"><?php echo _DB_FIELD4_DESC; ?></span></th>
+ <td><input type="text" name="mysql_database" value="<?php echo $param->mysql_database; ?>" /></td>
+ </tr>
+ </table>
+ <p class="sbt">
+ <button type="submit" name="mode" value="detail" class="sbt_sqr"><?php echo _MODE2; ?></button>
+ <button type="submit" name="action" value="mysql" class="sbt_arw"><?php echo _NEXT; ?></button>
+ </p>
+ <p class="msg">
+ <?php echo _DB_TEXT1; ?>
+ </p>
+ </div>
+ </form>
+ </div>
+<?php
+}
+
+/**
+ * Displays a form to the blog settings
+ * @param bool $isPostback
+ */
+function show_blog_setting_form($isPostback)
+{
+ global $param;
+?>
+ <div id="container">
+ <p class="msg">
+ <?php echo _SIMPLE_NAVI2; ?>
+ </p>
+ <form method="post" action="./index.php">
+ <div class="prt">
+ <h2><?php echo _BLOG_HEADER; ?></h2>
+ <p class="msg">
+<?php
+ if ( $isPostback )
+ {
+ $errors = $param->check_weblog_parameters();
+ if ( is_array($errors) )
+ {
+ foreach ( $errors as $error )
+ {
+ echo '<span class="err">', $error, "</span>\n";
+ }
+ }
+ }
+?>
+ </p>
+ <table>
+ <tr>
+ <th><span class="nam"><?php echo _BLOG_FIELD1; ?></span></th>
+ <td><input type="text" name="blog_name" value="<?php echo $param->blog_name; ?>" /></td>
+ </tr>
+ <tr>
+ <th><span class="nam"><?php echo _BLOG_FIELD2; ?></span><span class="sub"><?php echo _BLOG_FIELD2_DESC; ?></span></th>
+ <td><input type="text" name="blog_shortname" value="<?php echo $param->blog_shortname; ?>" /></td>
+ </tr>
+ </table>
+ </div>
+
+ <div class="prt">
+ <h2><?php echo _ADMIN_HEADER; ?></h2>
+ <p class="msg">
+<?php
+ if ( $isPostback )
+ {
+ $errors = $param->check_user_parameters();
+ if ( is_array($errors) )
+ {
+ foreach ( $errors as $error )
+ {
+ echo '<span class="err">', $error, "</span>\n";
+ }
+ }
+ }
+?>
+ </p>
+ <table>
+ <tr>
+ <th><span class="nam"><?php echo _ADMIN_FIELD1; ?></span></th>
+ <td><input type="text" name="user_realname" value="<?php echo $param->user_realname; ?>" /></td>
+ </tr>
+ <tr>
+ <th><span class="nam"><?php echo _ADMIN_FIELD2; ?></span><span class="sub"><?php echo _ADMIN_FIELD2_DESC; ?></span></th>
+ <td><input type="text" name="user_name" value="<?php echo $param->user_name; ?>" /></td>
+ </tr>
+ <tr>
+ <th><span class="nam"><?php echo _ADMIN_FIELD3; ?></span></th>
+ <td><input type="password" name="user_password" /></td>
+ </tr>
+ <tr>
+ <th><span class="nam"><?php echo _ADMIN_FIELD4; ?></span></th>
+ <td><input type="password" name="user_password2" /></td>
+ </tr>
+ <tr>
+ <th><span class="nam"><?php echo _ADMIN_FIELD5; ?></span></th>
+ <td><input type="text" name="user_email" value="<?php echo $param->user_email; ?>" /></td>
+ </tr>
+ </table>
+ <p class="sbt">
+ <button type="submit" name="action" value="weblog" class="sbt_arw" onclick="OnceSubmit()"><?php echo _INSTALL; ?></button>
+ </p>
+ </div>
+ </form>
+ </div>
+<?php
+}
+
+/**
+ * Displays a form to the detail settings
+ * @param bool $isPostback
+ */
+function show_detail_setting_form($isPostback)
+{
+ global $param, $minimum_mysql_version;
+
+ $mysql_version = getMySqlVersion();
+?>
+ <div id="container_detailed">
+ <p class="msg">
+ <?php echo _DETAIL_NAVI1; ?>
+<?php
+ if ( $isPostback && !$param->check_all_parameters() )
+ {
+ echo '<span class="err">', _VALID_ERROR, "</span>\n";
+ }
+?>
+ </p>
+ <ul class="msg">
+ <li>PHP: <?php echo phpversion(); ?></li>
+ <li>MySQL:
+<?php
+ echo ($mysql_version == '0.0.0') ? _DBVERSION_UNKOWN : $mysql_version;
+ if ( version_compare($mysql_version, $minimum_mysql_version, '<') )
+ {
+ echo '<span class="err">', sprintf(_DBVERSION_TOOLOW, $minimum_mysql_version), '</span>';
+ }
+?></li>
+ </ul>
+ <form method="post" action="">
+
+ <div class="prt">
+ <h2><?php echo _DETAIL_HEADER1; ?></h2>
+ <p class="msg">
+<?php
+ if ( $isPostback )
+ {
+ $errors = $param->check_mysql_parameters();
+ if ( is_array($errors) )
+ {
+ foreach ( $errors as $error )
+ {
+ echo '<span class="err">', $error, "</span>\n";
+ }
+ }
+ }
+?>
+ </p>
+ <table>
+ <tr>
+ <th><span class="nam"><?php echo _DB_FIELD1; ?></span><span class="sub"><?php echo _DB_FIELD1_DESC; ?></span></th>
+ <td><input type="text" name="mysql_host" value="<?php echo $param->mysql_host; ?>" /></td>
+ </tr>
+ <tr>
+ <th><span class="nam"><?php echo _DB_FIELD2; ?></span><span class="sub"><?php echo _DB_FIELD2_DESC; ?></span></th>
+ <td><input type="text" name="mysql_user" value="<?php echo $param->mysql_user; ?>" /></td>
+ </tr>
+ <tr>
+ <th><span class="nam"><?php echo _DB_FIELD3; ?></span></th>
+ <td><input type="text" name="mysql_password" value="<?php echo $param->mysql_password; ?>" /></td>
+ </tr>
+ <tr>
+ <th><span class="nam"><?php echo _DB_FIELD4; ?></span><span class="sub"><?php echo _DB_FIELD4_DESC; ?></span></th>
+ <td><input type="text" name="mysql_database" value="<?php echo $param->mysql_database; ?>" /></td>
+ </tr>
+ <tr>
+ <th><span class="nam"><?php echo _DB_FIELD5; ?></span><span class="sub"><?php echo _DB_FIELD5_DESC; ?></span></th>
+ <td><input type="text" name="mysql_tablePrefix" value="<?php echo $param->mysql_tablePrefix; ?>" /></td>
+ </tr>
+ </table>
+
+ <h2><?php echo _DETAIL_HEADER2; ?></h2>
+ <p class="msg">
+<?php
+ if ( $isPostback )
+ {
+ $errors = $param->check_uri_parameters();
+ if ( is_array($errors) )
+ {
+ foreach ( $errors as $error )
+ {
+ echo '<span class="err">', $error, "</span>\n";
+ }
+ }
+ $errors = $param->check_path_parameters();
+ if ( is_array($errors) )
+ {
+ foreach ( $errors as $error )
+ {
+ echo '<span class="err">', $error, "</span>\n";
+ }
+ }
+ }
+?>
+ </p>
+ <table>
+ <tr>
+ <th><span class="nam"><?php echo _PATH_FIELD1; ?></span></th>
+ <td><input type="text" name="IndexURL" value="<?php echo $param->IndexURL; ?>" /></td>
+ </tr>
+ <tr>
+ <th><span class="nam"><?php echo _PATH_FIELD2; ?></span></th>
+ <td><input type="text" name="AdminURL" value="<?php echo $param->AdminURL; ?>" /></td>
+ </tr>
+ <tr>
+ <th><span class="nam"><?php echo _PATH_FIELD3; ?></span></th>
+ <td><input type="text" name="AdminPath" value="<?php echo $param->AdminPath; ?>" /></td>
+ </tr>
+ <tr>
+ <th><span class="nam"><?php echo _PATH_FIELD4; ?></span></th>
+ <td><input type="text" name="MediaURL" value="<?php echo $param->MediaURL; ?>" /></td>
+ </tr>
+ <tr>
+ <th><span class="nam"><?php echo _PATH_FIELD5; ?></span></th>
+ <td><input type="text" name="MediaPath" value="<?php echo $param->MediaPath; ?>" /></td>
+ </tr>
+ <tr>
+ <th><span class="nam"><?php echo _PATH_FIELD6; ?></span></th>
+ <td><input type="text" name="SkinsURL" value="<?php echo $param->SkinsURL; ?>" /></td>
+ </tr>
+ <tr>
+ <th><span class="nam"><?php echo _PATH_FIELD7; ?></span></th>
+ <td><input type="text" name="SkinsPath" value="<?php echo $param->SkinsPath; ?>" /></td>
+ </tr>
+ <tr>
+ <th><span class="nam"><?php echo _PATH_FIELD8; ?></span></th>
+ <td><input type="text" name="PluginURL" value="<?php echo $param->PluginURL; ?>" /></td>
+ </tr>
+ <tr>
+ <th><span class="nam"><?php echo _PATH_FIELD9; ?></span></th>
+ <td><input type="text" name="ActionURL" value="<?php echo $param->ActionURL; ?>" /></td>
+ </tr>
+ </table>
+ <p class="msg">
+ <?php echo _DETAIL_TEXT3; ?>
+ </p>
+
+ <h2><?php echo _DETAIL_HEADER3; ?></h2>
+ <p class="msg">
+<?php
+ echo _DETAIL_TEXT4;
+ if ( $isPostback )
+ {
+ $errors = $param->check_user_parameters();
+ if ( is_array($errors) )
+ {
+ foreach ( $errors as $error )
+ {
+ echo '<span class="err">', $error, "</span>\n";
+ }
+ }
+ }
+?>
+ </p>
+ <table>
+ <tr>
+ <th><span class="nam"><?php echo _ADMIN_FIELD1; ?></span></th>
+ <td><input type="text" name="user_realname" value="<?php echo $param->user_realname; ?>" /></td>
+ </tr>
+ <tr>
+ <th><span class="nam"><?php echo _ADMIN_FIELD2; ?></span><span class="sub"><?php echo _ADMIN_FIELD2_DESC; ?></span></th>
+ <td><input type="text" name="user_name" value="<?php echo $param->user_name; ?>" /></td>
+ </tr>
+ <tr>
+ <th><span class="nam"><?php echo _ADMIN_FIELD3; ?></span></th>
+ <td><input type="password" name="user_password" /></td>
+ </tr>
+ <tr>
+ <th><span class="nam"><?php echo _ADMIN_FIELD4; ?></span></th>
+ <td><input type="password" name="user_password2" /></td>
+ </tr>
+ <tr>
+ <th><span class="nam"><?php echo _ADMIN_FIELD5; ?></span></th>
+ <td><input type="text" name="user_email" value="<?php echo $param->user_email; ?>" /></td>
+ </tr>
+ </table>
+
+ <h2><?php echo _DETAIL_HEADER4; ?></h2>
+ <p class="msg">
+<?php
+ echo _DETAIL_TEXT5;
+ if ( $isPostback )
+ {
+ $errors = $param->check_weblog_parameters();
+ if ( is_array($errors) )
+ {
+ foreach ( $errors as $error )
+ {
+ echo '<span class="err">', $error, "</span>\n";
+ }
+ }
+ }
+?>
+ </p>
+ <table>
+ <tr>
+ <th><span class="nam"><?php echo _BLOG_FIELD1; ?></span></th>
+ <td><input type="text" name="blog_name" value="<?php echo $param->blog_name; ?>" /></td>
+ </tr>
+ <tr>
+ <th><span class="nam"><?php echo _BLOG_FIELD2; ?></span><span class="sub"><?php echo _BLOG_FIELD2_DESC; ?></span></th>
+ <td><input type="text" name="blog_shortname" value="<?php echo $param->blog_shortname; ?>" /></td>
+ </tr>
+ </table>
+
+ <p class="msg">
+ <?php echo _DETAIL_TEXT6; ?>
+ </p>
+
+ <p class="sbt">
+ <button type="submit" name="action" value="detail" class="sbt_arw" onclick="OnceSubmit()"><?php echo _INSTALL; ?></button>
+ </p>
+ </div>
+ </form>
+ </div>
+<?php
+}
+
+/**
+ * Displays a screen to signal the completion of the installation
+ */
+function show_install_complete_form()
+{
+ global $MYSQL_HANDLER, $param;
+ $errors = do_install();
+?>
+ <div id="container">
+ <p class="msg">
+<?php
+ if ( is_array($errors) && count($errors) > 0 )
+ {
+ echo _INST_ERROR;
+ foreach ( $errors as $error )
+ {
+ echo '<span class="err">', $error, "</span>\n";
+ }
+ }
+ else
+ {
+ echo _INST_TEXT;
+ if ( array_key_exists('config_data', $_SESSION) )
+ {
+ echo '<span class="err">', _INST_TEXT4, '</span>';
+?>
+<textarea id="config_text" readonly="readonly" onfocus="SelectText(this);"><?php echo htmlentities($_SESSION['config_data'], null, i18n::get_current_charset()) ?></textarea>
+<?php
+ }
+ else
+ {
+ echo '<span class="err">', _INST_TEXT5, '</span>';
+ }
+?>
+ </p>
+ <form method="post" action="./index.php">
+ <div class="prt">
+ <h2><?php echo _INST_HEADER1; ?></h2>
+ <p class="msg">
+ <?php echo sprintf(_INST_TEXT1, $param->blog_name); ?>
+ </p>
+ <p class="sbt">
+ <button type="button" name="toBlog" onclick="location.href='<?php echo $param->IndexURL; ?>';" class="sbt_arw"><?php echo _INST_BUTTON1; ?></button>
+ </p>
+ </div>
+
+ <div class="prt">
+ <h2><?php echo _INST_HEADER2; ?></h2>
+ <p class="msg">
+ <?php echo _INST_TEXT2; ?>
+ </p>
+ <p class="sbt">
+ <button type="button" name="toMng" onclick="location.href='<?php echo $param->AdminURL; ?>';" class="sbt_arw"><?php echo _INST_BUTTON2; ?></button>
+ </p>
+ </div>
+
+ <div class="prt">
+ <h2><?php echo _INST_HEADER3; ?></h2>
+ <p class="msg">
+ <?php echo _INST_TEXT3; ?>
+ </p>
+ <p class="sbt">
+ <button type="button" name="toAddBlog" onclick="location.href='<?php echo $param->AdminURL; ?>index.php?action=createnewlog';" class="sbt_arw"><?php echo _INST_BUTTON3; ?></button>
+ </p>
+ </div>
+ </form>
+<?php
+ }
+?>
+ </div>
+<?php
+ unset($param);
+}
+
+/**
+ * The installation process itself
+ * @return array error messages
+ */
+function do_install()
+{
+ global $param;
+ global $MYSQL_HANDLER, $MYSQL_HOST, $MYSQL_USER, $MYSQL_PASSWORD, $MYSQL_DATABASE, $MYSQL_PREFIX, $MYSQL_CONN;
+ global $DIR_NUCLEUS, $DIR_MEDIA, $DIR_SKINS, $DIR_PLUGINS, $DIR_LANG, $DIR_LIBS;
+ $errors = array();
+
+ /*
+ * 1. put all param-vars into vars
+ */
+ $MYSQL_HOST = $param->mysql_host;
+ $MYSQL_USER = $param->mysql_user;
+ $MYSQL_PASSWORD = $param->mysql_password;
+ $MYSQL_DATABASE = $param->mysql_database;
+ $MYSQL_PREFIX = $param->mysql_tablePrefix;
+
+ $DIR_NUCLEUS = $param->AdminPath;
+ $DIR_MEDIA = $param->MediaPath;
+ $DIR_SKINS = $param->SkinsPath;
+ $DIR_PLUGINS = $DIR_NUCLEUS . 'plugins/';
+ $DIR_LOCALES = $DIR_NUCLEUS . 'locales/';
+ $DIR_LIBS = $DIR_NUCLEUS . 'libs/';
+
+ /*
+ * 2.open mySQL connection
+ */
+ $MYSQL_CONN = @DB::setConnectionInfo($MYSQL_HANDLER[1], $MYSQL_HOST, $MYSQL_USER, $MYSQL_PASSWORD);
+ if ( $MYSQL_CONN == FALSE )
+ {
+ $errors[] = _DBCONNECT_ERROR;
+ return $errors;
+ }
+
+ /*
+ * 3. try to create database if needed
+ */
+ if ( DB::execute("CREATE DATABASE IF NOT EXISTS {$MYSQL_DATABASE}") === FALSE )
+ {
+ $errinfo = DB::getError();
+ $errors[] = _INST_ERROR1 . ': ' . $errinfo[2];
+ }
+
+ /*
+ * 4. try to select database
+ */
+ $MYSQL_CONN = @DB::setConnectionInfo($MYSQL_HANDLER[1], $MYSQL_HOST, $MYSQL_USER, $MYSQL_PASSWORD, $MYSQL_DATABASE);
+ if ( !$MYSQL_CONN )
+ {
+ $errors[] = _INST_ERROR2;
+ }
+
+ if ( count($errors) > 0 )
+ {
+ return $errors;
+ }
+
+ /*
+ * 5. execute queries
+ */
+ $table_names = array(
+ 'nucleus_actionlog',
+ 'nucleus_ban',
+ 'nucleus_blog',
+ 'nucleus_category',
+ 'nucleus_comment',
+ 'nucleus_config',
+ 'nucleus_item',
+ 'nucleus_karma',
+ 'nucleus_member',
+ 'nucleus_plugin',
+ 'nucleus_skin',
+ 'nucleus_template',
+ 'nucleus_team',
+ 'nucleus_activation',
+ 'nucleus_tickets'
+ );
+
+ $prefixed_table_names = array();
+ foreach ( $table_names as $table_name )
+ {
+ $prefixed_table_names[] = $MYSQL_PREFIX . $table_name;
+ }
+
+ // table exists check
+ $result = DB::getResult('SHOW TABLES');
+ foreach ( $result as $row )
+ {
+ if ( in_array($row[0], $prefixed_table_names) )
+ {
+ $errors[] = _INST_ERROR3;
+ break;
+ }
+ }
+ if ( count($errors) > 0 )
+ {
+ return $errors;
+ }
+
+ $filename = 'install.sql';
+ $fd = fopen($filename, 'r');
+ $queries = fread($fd, filesize($filename));
+ fclose($fd);
+
+ $queries = preg_split('#(;\n|;\r)#', $queries);
+
+ foreach ( $queries as $query )
+ {
+ if ( preg_match('/\w+/', $query) )
+ {
+ if ( $MYSQL_PREFIX )
+ {
+ $query = str_replace($table_names, $prefixed_table_names, $query);
+ }
+
+ if ( DB::execute($query) === FALSE )
+ {
+ $errinfo = DB::getError();
+ $errors[] = _INST_ERROR4 . ' (<small>' . $query . '</small>): ' . $errinfo[2];
+ }
+ }
+ }
+
+ /*
+ * 6. put needed records
+ */
+ /* push first post */
+ $query = "INSERT INTO %s VALUES (1, %s, %s, %s, 1, 1, %s, 0, 0, 0, 1, 0, 1)";
+ $query = sprintf($query,
+ tableName('nucleus_item'),
+ DB::quoteValue(_1ST_POST_TITLE),
+ DB::quoteValue(_1ST_POST),
+ DB::quoteValue(_1ST_POST2),
+ DB::formatDateTime()
+ );
+ if ( DB::execute($query) === FALSE )
+ {
+ $errinfo = DB::getError();
+ $errors[] = _INST_ERROR4 . ' (<small>' . $query . '</small>): ' . $errinfo[2];
+ }
+
+ /* push configurations */
+ array_merge($errors, updateConfig('IndexURL', $param->IndexURL));
+ array_merge($errors, updateConfig('AdminURL', $param->AdminURL));
+ array_merge($errors, updateConfig('MediaURL', $param->MediaURL));
+ array_merge($errors, updateConfig('SkinsURL', $param->SkinsURL));
+ array_merge($errors, updateConfig('PluginURL', $param->PluginURL));
+ array_merge($errors, updateConfig('ActionURL', $param->ActionURL));
+ array_merge($errors, updateConfig('AdminEmail', $param->user_email));
+ array_merge($errors, updateConfig('SiteName', $param->blog_name));
+ array_merge($errors, updateConfig('Locale', i18n::get_current_locale()));
+
+ /* push super admin */
+ $query = "UPDATE %s SET mname = %s, mrealname = %s, mpassword = %s, memail = %s, murl = %s, madmin = 1, mcanlogin = 1 WHERE mnumber = 1";
+ $query = sprintf($query,
+ tableName('nucleus_member'),
+ DB::quoteValue($param->user_name),
+ DB::quoteValue($param->user_realname),
+ DB::quoteValue(md5($param->user_password)),
+ DB::quoteValue($param->user_email),
+ DB::quoteValue($param->IndexURL)
+ );
+ if ( DB::execute($query) === FALSE )
+ {
+ $errinfo = DB::getError();
+ $errors[] = _INST_ERROR5 . ': ' . $errinfo[2];
+ }
+
+ /* push new weblog */
+ $query = "UPDATE %s SET bname = %s, bshortname = %s, burl = %s WHERE bnumber = 1";
+ $query = sprintf($query,
+ tableName('nucleus_blog'),
+ DB::quoteValue($param->blog_name),
+ DB::quoteValue($param->blog_shortname),
+ DB::quoteValue($param->IndexURL)
+ );
+ if ( DB::execute($query) === FALSE )
+ {
+ $errinfo = DB::getError();
+ $errors[] = _INST_ERROR6 . ': ' . $errinfo[2];
+ }
+
+ /* push default category */
+ $query = "UPDATE %s SET cname = %s, cdesc = %s WHERE catid = 1";
+ $query = sprintf($query,
+ tableName('nucleus_category'),
+ DB::quoteValue(_GENERALCAT_NAME),
+ DB::quoteValue(_GENERALCAT_DESC)
+ );
+ if ( DB::execute($query) === FALSE )
+ {
+ $errinfo = DB::getError();
+ $errors[] = _INST_ERROR6 . ': ' . $errinfo[2];
+ }
+
+ /*
+ * 7. install default plugins and skins
+ */
+ global $aConfPlugsToInstall, $aConfSkinsToImport;
+ $aSkinErrors = array();
+ $aPlugErrors = array();
+
+ if ( (count($aConfPlugsToInstall) > 0) || (count($aConfSkinsToImport) > 0) )
+ {
+ include_once($DIR_LIBS . 'globalfunctions.php');
+ global $manager;
+ if ( !isset($manager) )
+ {
+ $manager = new Manager();
+ }
+
+ include_once($DIR_LIBS . 'skinie.php');
+
+ $aSkinErrors = installCustomSkins();
+ if ( count($aSkinErrors) > 0 )
+ {
+ array_merge($errors, $aSkinErrors);
+ }
+
+ $query = "SELECT sdnumber FROM %s WHERE sdname='admin/default'";
+ $query = sprintf($query, tableName('nucleus_skin_desc'));
+ $res = intval(DB::getValue($query));
+ array_merge($errors, updateConfig('AdminSkin', $res));
+
+ $query = "SELECT sdnumber FROM %s WHERE sdname='admin/bookmarklet'";
+ $query = sprintf($query, tableName('nucleus_skin_desc'));
+ $res = intval(DB::getValue($query));
+ array_merge($errors, updateConfig('BookmarkletSkin', $res));
+
+ $query = "SELECT sdnumber FROM %s WHERE sdname='default'";
+ $query = sprintf($query, tableName('nucleus_skin_desc'));
+ $defSkinID = intval(DB::getValue($query));
+
+ $query = "UPDATE %s SET bdefskin=%d WHERE bnumber=1";
+ $query = sprintf($query, tableName('nucleus_blog'), $defSkinID);
+ DB::execute($query);
+ $query = "UPDATE %s SET value=%d WHERE name='BaseSkin'";
+ $query = sprintf($query, tableName('nucleus_config'), $defSkinID);
+ DB::execute($query);
+
+ $aPlugErrors = installCustomPlugs();
+ if ( count($aPlugErrors) > 0 )
+ {
+ array_merge($errors, $aPlugErrors);
+ }
+ }
+
+ /*
+ * 8. Write config file ourselves (if possible)
+ */
+ $config_data = '<' . '?php' . "\n";
+ $config_data .= "// mySQL connection information\n";
+ $config_data .= "\$MYSQL_HOST = '" . $MYSQL_HOST . "';\n";
+ $config_data .= "\$MYSQL_USER = '" . $MYSQL_USER . "';\n";
+ $config_data .= "\$MYSQL_PASSWORD = '" . $MYSQL_PASSWORD . "';\n";
+ $config_data .= "\$MYSQL_DATABASE = '" . $MYSQL_DATABASE . "';\n";
+ $config_data .= "\$MYSQL_PREFIX = '" . $MYSQL_PREFIX . "';\n";
+ $config_data .= "// new in 3.50. first element is db handler, the second is the db driver used by the handler\n";
+ $config_data .= "// default is \$MYSQL_HANDLER = array('mysql','mysql');\n";
+ $config_data .= "//\$MYSQL_HANDLER = array('mysql','mysql');\n";
+ $config_data .= "//\$MYSQL_HANDLER = array('pdo','mysql');\n";
+ $config_data .= "\$MYSQL_HANDLER = array('" . $MYSQL_HANDLER[0] . "','" . $MYSQL_HANDLER[1] . "');\n";
+ $config_data .= "\n";
+ $config_data .= "// main nucleus directory\n";
+ $config_data .= "\$DIR_NUCLEUS = '" . $DIR_NUCLEUS . "';\n";
+ $config_data .= "\n";
+ $config_data .= "// path to media dir\n";
+ $config_data .= "\$DIR_MEDIA = '" . $DIR_MEDIA . "';\n";
+ $config_data .= "\n";
+ $config_data .= "// extra skin files for imported skins\n";
+ $config_data .= "\$DIR_SKINS = '" . $DIR_SKINS . "';\n";
+ $config_data .= "\n";
+ $config_data .= "// these dirs are normally sub dirs of the nucleus dir, but \n";
+ $config_data .= "// you can redefine them if you wish\n";
+ $config_data .= "\$DIR_PLUGINS = \$DIR_NUCLEUS . 'plugins/';\n";
+ $config_data .= "\$DIR_LOCALES = \$DIR_NUCLEUS . 'locales/';\n";
+ $config_data .= "\$DIR_LIBS = \$DIR_NUCLEUS . 'libs/';\n";
+ $config_data .= "\n";
+ $config_data .= "// include libs\n";
+ $config_data .= "include(\$DIR_LIBS.'globalfunctions.php');\n";
+ $config_data .= "?" . ">";
+
+ $result = false;
+ if ( @!file_exists('../config.php') || is_writable('../config.php') )
+ {
+ if ( $fp = @fopen('../config.php', 'w') )
+ {
+ $result = @fwrite($fp, $config_data, i18n::strlen($config_data));
+ fclose($fp);
+ }
+ }
+
+ if ( $result )
+ {
+ // try to change the read-only permission.
+ if ( strtoupper(substr(PHP_OS, 0, 3)) !== 'WIN' )
+ {
+ @chmod('../config.php', 0444);
+ }
+ }
+ else
+ {
+ $_SESSION['config_data'] = $config_data;
+ }
+
+ return $errors;
+}
+
+/**
+ * Confirm that you can write to the configuration file
+ * @return string error message
+ */
+function canConfigFileWritable()
+{
+ if ( @file_exists('../config.php') && @!is_writable('../config.php') )
+ {
+ // try to change the read-write permission.
+ if ( strtoupper(substr(PHP_OS, 0, 3)) !== 'WIN' )
+ {
+ @chmod('../config.php', 0666);
+ }
+
+ if ( @!is_writable('../config.php') )
+ {
+ return _INST_ERROR8;
+ }
+ }
+ return '';
+}
+
+/**
+ * To obtain the version of MySQL
+ * @return string
+ */
+function getMySqlVersion()
+{
+ global $MYSQL_HANDLER, $minimum_mysql_version, $errors;
+ // Turn on output buffer
+ // Needed to repress the output of the sql function that are
+ // not part of php (in this case the @ operator doesn't work)
+ ob_start();
+
+ // note: this piece of code is taken from phpMyAdmin
+ $conn = @DB::setConnectionInfo($MYSQL_HANDLER[1], 'localhost', '', '');
+
+ if ( $conn )
+ {
+ $row = DB::getAttribute(PDO::ATTR_SERVER_VERSION);
+ $match = preg_split('#\.#', $row);
+ }
+ else
+ {
+ $row = @DB::getRow('SHOW VARIABLES LIKE \'version\'');
+
+ if ( $row )
+ {
+ $match = preg_split('#\.#', $row[1]);
+ }
+ else
+ {
+ $output = (function_exists('shell_exec')) ? @shell_exec('mysql -V') : '0.0.0';
+ preg_match('@[0-9]+\.[0-9]+\.[0-9]+@', $output, $version);
+ $match = preg_split('#\.#', $version[0]);
+
+ if ( $match[0] == '' )
+ {
+ $match = array('0', '0', '0');
+ }
+ }
+ }
+
+ @DB::disConnect();
+
+ //End and clean output buffer
+ ob_end_clean();
+
+ return implode($match, '.');
+}
+
+/**
+ * Add a table prefix if it is used
+ *
+ * @param string $input table name with prefix
+ * @return string
+ */
+function tableName($input)
+{
+ global $MYSQL_PREFIX;
+ if ( $MYSQL_PREFIX )
+ {
+ return $MYSQL_PREFIX . $input;
+ }
+ else
+ {
+ return $input;
+ }
+}
+
+/**
+ * Install custom plugins
+ */
+function installCustomPlugs()
+{
+ global $aConfPlugsToInstall, $DIR_LIBS, $manager;
+
+ $aErrors = array();
+ if ( count($aConfPlugsToInstall) == 0 )
+ {
+ return $aErrors;
+ }
+
+ $query = sprintf('SELECT * FROM %s', tableName('nucleus_plugin'));
+ $res = DB::getResult($query);
+ $numCurrent = $res->rowCount();
+
+ foreach ( $aConfPlugsToInstall as $plugName )
+ {
+ $query = sprintf('INSERT INTO %s (porder, pfile) VALUES (%d, %s)',
+ tableName('nucleus_plugin'),
+ (++$numCurrent),
+ DB::quoteValue($plugName));
+ DB::execute($query);
+
+ $manager->clearCachedInfo('installedPlugins');
+ $plugin =& $manager->getPlugin($plugName);
+ $plugin->setID($numCurrent);
+
+ if ( !$plugin )
+ {
+ $query = sprintf('DELETE FROM %s WHERE pfile = %s',
+ tableName('nucleus_plugin'),
+ DB::quoteValue($plugName));
+ DB::execute($query);
+ $numCurrent--;
+ array_push($aErrors, sprintf(_INST_ERROR9, $plugName));
+ continue;
+ }
+ $plugin->install();
+ }
+
+ $query = sprintf('DELETE FROM %s', tableName('nucleus_plugin_event'));
+ DB::execute($query);
+ $query = sprintf('SELECT pid, pfile FROM %s', tableName('nucleus_plugin'));
+ $res = DB::getResult($query);
+
+ foreach ( $res as $row )
+ {
+ $plug =& $manager->getPlugin($row['pfile']);
+
+ if ( $plug )
+ {
+ $eventList = $plug->getEventList();
+ foreach ( $eventList as $eventName )
+ {
+ $query = sprintf('INSERT INTO %s (pid, event) VALUES (%d, %s)',
+ tableName('nucleus_plugin_event'),
+ intval($row['pid']),
+ DB::quoteValue($eventName));
+ DB::execute($query);
+ }
+ }
+ }
+ return $aErrors;
+}
+
+/**
+ * Install custom skins
+ * Prepares the installation of custom skins
+ */
+function installCustomSkins()
+{
+ global $aConfSkinsToImport, $DIR_LIBS, $DIR_SKINS;
+
+ $aErrors = array();
+ if ( count($aConfSkinsToImport) == 0 )
+ {
+ return $aErrors;
+ }
+
+ $importer = new SkinImport();
+
+ foreach ( $aConfSkinsToImport as $skinName )
+ {
+ $importer->reset();
+ $skinFile = $DIR_SKINS . $skinName . '/skinbackup.xml';
+
+ if ( !@file_exists($skinFile) )
+ {
+ array_push($aErrors, sprintf(_INST_ERROR10, $skinFile));
+ continue;
+ }
+
+ $error = $importer->readFile($skinFile);
+
+ if ( $error )
+ {
+ array_push($aErrors, sprintf(_INST_ERROR11, $skinName) . ' : ' . $error);
+ continue;
+ }
+
+ $error = $importer->writeToDatabase(1);
+
+ if ( $error )
+ {
+ array_push($aErrors, sprintf(_INST_ERROR12, $skinName) . ' : ' . $error);
+ continue;
+ }
+ }
+ return $aErrors;
+}
+
+/**
+ * Check if some important files of the Nucleus CMS installation are available
+ * Give an error if one or more files are not accessible
+ */
+function do_check_files()
+{
+ $missingfiles = array();
+ $files = array(
+ './install.sql',
+ '../index.php',
+ '../action.php',
+ '../nucleus/index.php',
+ '../nucleus/libs/ACTION.php',
+ '../nucleus/libs/ACTIONLOG.php',
+ '../nucleus/libs/ACTIONS.php',
+ '../nucleus/libs/ADMIN.php',
+ '../nucleus/libs/BaseActions.php',
+ '../nucleus/libs/BLOG.php',
+ '../nucleus/libs/BODYACTIONS.php',
+ '../nucleus/libs/COMMENT.php',
+ '../nucleus/libs/COMMENTACTIONS.php',
+ '../nucleus/libs/COMMENTS.php',
+ '../nucleus/libs/ENTITY.php',
+ '../nucleus/libs/globalfunctions.php',
+ '../nucleus/libs/i18n.php',
+ '../nucleus/libs/ITEM.php',
+ '../nucleus/libs/ITEMACTIONS.php',
+ '../nucleus/libs/LINK.php',
+ '../nucleus/libs/MANAGER.php',
+ '../nucleus/libs/MEDIA.php',
+ '../nucleus/libs/MEMBER.php',
+ '../nucleus/libs/NOTIFICATION.php',
+ '../nucleus/libs/PARSER.php',
+ '../nucleus/libs/PLUGIN.php',
+ '../nucleus/libs/PLUGINADMIN.php',
+ '../nucleus/libs/SEARCH.php',
+ '../nucleus/libs/showlist.php',
+ '../nucleus/libs/SKIN.php',
+ '../nucleus/libs/TEMPLATE.php',
+ '../nucleus/libs/vars4.1.0.php',
+ '../nucleus/libs/xmlrpc.inc.php',
+ '../nucleus/libs/xmlrpcs.inc.php',
+ '../nucleus/libs/sql/DB.php',
+ '../nucleus/libs/sql/MYSQLPDO.php'
+ );
+
+ $count = count($files);
+ for ( $i = 0; $i < $count; $i++ )
+ {
+ if ( !is_readable($files[$i]) )
+ {
+ array_push($missingfiles, 'File <b>' . $files[$i] . '</b> is missing or not readable.<br />');
+ }
+ }
+
+ if ( count($missingfiles) > 0 )
+ {
+ exit(implode("\n", $missingfiles));
+ }
+}
+
+/**
+ * Updates the configuration in the database
+ *
+ * @param string $name name of the config var
+ * @param string $value new value of the config var
+ * @return array
+ */
+function updateConfig($name, $value)
+{
+ $errors = array();
+
+ $query = "UPDATE %s SET value = %s WHERE name = %s";
+ $query = sprintf($query, tableName('nucleus_config'), DB::quoteValue(trim($value)), DB::quoteValue($name));
+
+ if ( DB::execute($query) === FALSE )
+ {
+ $errinfo = DB::getError();
+ $errors[] = _INST_ERROR4 . ': ' . $errinfo[2];
+ }
+ return $errors;
+}
+
+class ParamManager
+{
+ /* process parameter */
+ public $state;
+ public $locale;
+
+ /* mysql connection parameters */
+ public $mysql_host;
+ public $mysql_user;
+ public $mysql_password;
+ public $mysql_database;
+ public $mysql_tablePrefix;
+
+ /* weblog configuration parameters */
+ public $blog_name;
+ public $blog_shortname;
+
+ /* member configuration parameters */
+ public $user_name;
+ public $user_realname;
+ public $user_password;
+ private $user_password2;
+ public $user_email;
+
+ /* URI parameters */
+ private $root_url;
+ public $IndexURL;
+ public $AdminURL;
+ public $MediaURL;
+ public $SkinsURL;
+ public $PluginURL;
+ public $ActionURL;
+
+ /* path parameters */
+ private $root_path;
+ public $AdminPath;
+ public $MediaPath;
+ public $SkinsPath;
+
+ /**
+ * constructor
+ */
+ public function __construct()
+ {
+ $this->init();
+ }
+
+ public function init()
+ {
+ // set default values
+ $this->state = 'locale';
+ $this->install_mode = 'simple';
+ $this->locale = '';
+ $this->mysql_host = @ini_get('mysql.default_host');
+ $this->blog_name = 'My Nucleus CMS';
+ $this->blog_shortname = 'mynucleuscms';
+
+ /* root path */
+ $directory_separator = preg_quote(DIRECTORY_SEPARATOR, '|');
+ $this->root_path = implode('/', preg_split("|$directory_separator|", realpath(dirname(__FILE__) . '/..')));
+ if ( substr($this->root_path, -1, 1) !== '/' )
+ {
+ $this->root_path .= '/';
+ }
+ $base_path_pcre = preg_quote($this->root_path, '|');
+
+ /* current directry name */
+ $directory_name = preg_replace("#{$base_path_pcre}#", '', implode('/', preg_split("#{$directory_separator}#", realpath(dirname(__FILE__)))));
+ $directory_name_pcre = preg_quote($directory_name, '|');
+
+ /* root uri */
+ $root_url = 'http://' . $_SERVER['HTTP_HOST'] . $_SERVER['PHP_SELF'];
+ $this->root_url = preg_replace("|$directory_name_pcre(.*)$|", '', $root_url);
+
+ $this->AdminPath = $this->root_path . 'nucleus/';
+ $this->MediaPath = $this->root_path . 'media/';
+ $this->SkinsPath = $this->root_path . 'skins/';
+
+ $this->IndexURL = $this->root_url;
+ $this->AdminURL = $this->root_url . 'nucleus/';
+ $this->MediaURL = $this->root_url . 'media/';
+ $this->SkinsURL = $this->root_url . 'skins/';
+ $this->PluginURL = $this->root_url . 'nucleus/plugins/';
+ $this->ActionURL = $this->root_url . 'action.php';
+ }
+
+ private function read_parameter($parameter)
+ {
+ foreach ( $parameter as $element )
+ {
+ if ( array_key_exists($element, $_POST) )
+ {
+ $this->$element = $_POST[$element];
+ }
+ }
+ }
+
+ public function set_state($state)
+ {
+ $states = array('locale', 'mysql', 'weblog', 'detail', 'install');
+ if ( in_array($state, $states) )
+ {
+ $this->state = $state;
+ }
+ }
+
+ public function set_locale()
+ {
+ $this->read_parameter(array('locale'));
+
+ if ( !$this->locale )
+ {
+ /**
+ * default locale select simple implementation
+ *
+ * NOTE:
+ * RFC2616: Hypertext Transfer Protocol -- HTTP/1.1
+ * http://www.ietf.org/rfc/rfc2616.txt
+ *
+ * 14.4 Accept-Language
+ *
+ * The Accept-Language request-header field is similar to Accept, but
+ * restricts the set of natural languages that are preferred as a
+ * response to the request. Language tags are defined in section 3.10.
+ *
+ * Accept-Language = "Accept-Language" ":"
+ * 1#( language-range [ ";" "q" "=" qvalue ] )
+ * language-range = ( ( 1*8ALPHA *( "-" 1*8ALPHA ) ) | "*" )
+ *
+ * Each language-range MAY be given an associated quality value which
+ * represents an estimate of the user's preference for the languages
+ * specified by that range. The quality value defaults to "q=1". For
+ * example,
+ *
+ * Accept-Language: da, en-gb;q=0.8, en;q=0.7
+ *
+ * would mean: "I prefer Danish, but will accept British English and
+ * other types of English." A language-range matches a language-tag if
+ * it exactly equals the tag, or if it exactly equals a prefix of the
+ * tag such that the first tag character following the prefix is "-".
+ * The special range "*", if present in the Accept-Language field,
+ * matches every tag not matched by any other range present in the
+ * Accept-Language field.
+ *
+ * TODO: this is appropriate implement or not
+ */
+ $languages = explode(',', $_SERVER['HTTP_ACCEPT_LANGUAGE']);
+
+ /* retrieve language token of language tag from first token */
+ $language = '';
+ if ( is_array($languages) && count($languages) > 0 )
+ {
+ $language = preg_replace('#^([\w]+).*$#', '$1', $languages[0]);
+ }
+
+ $locales = i18n::get_available_locale_list();
+ foreach ( $locales as $locale )
+ {
+ if ( i18n::strpos($locale, $language) === 0 )
+ {
+ $this->locale = $locale;
+ break;
+ }
+ }
+ }
+
+ /* include installer translation messages */
+ $translation_file = "./locales/{$this->locale}." . i18n::get_current_charset() . '.php';
+ if ( !file_exists($translation_file) )
+ {
+ $translation_file = './locales/en_Latn_US.UTF-8.php';
+ }
+ include($translation_file);
+
+ /* include global translation messages */
+ $translation_file = "../nucleus/locales/{$this->locale}." . i18n::get_current_charset() . '.php';
+ if ( !file_exists($translation_file) )
+ {
+ $translation_file = './locales/en_Latn_US.UTF-8.php';
+ }
+ include($translation_file);
+
+ i18n::set_current_locale($this->locale);
+
+ return;
+ }
+
+ public function check_mysql_parameters()
+ {
+ global $MYSQL_HANDLER;
+
+ $parameters = array('mysql_host', 'mysql_user', 'mysql_password', 'mysql_database', 'mysql_tablePrefix');
+ $this->read_parameter($parameters);
+
+ $errors = array();
+ if ( $this->mysql_host == '' )
+ {
+ $errors[] = sprintf(_VALID_ERROR1, _DB_FIELD1);
+ }
+
+ if ( $this->mysql_user == '' )
+ {
+ $errors[] = sprintf(_VALID_ERROR1, _DB_FIELD2);
+ }
+
+ if ( $this->mysql_user != ''
+ && !preg_match('/^[a-z0-9_\-]+$/i', $this->mysql_user) )
+ {
+ $errors[] = sprintf(_VALID_ERROR2, _DB_FIELD2);
+ }
+
+ if ( $this->mysql_database == '' )
+ {
+ $errors[] = sprintf(_VALID_ERROR1, _DB_FIELD4);
+ }
+
+ if ( $this->mysql_database != ''
+ && !preg_match('/^[a-z0-9_\-]+$/i', $this->mysql_database) )
+ {
+ $errors[] = sprintf(_VALID_ERROR2, _DB_FIELD4);
+ }
+
+ if ( $this->mysql_tablePrefix != ''
+ && !preg_match('/^[a-z0-9_]+$/i', $this->mysql_tablePrefix) )
+ {
+ $errors[] = sprintf(_VALID_ERROR3, _DB_FIELD5);
+ }
+
+ if ( count($errors) == 0 )
+ {
+ $mysql_conn = @DB::setConnectionInfo($MYSQL_HANDLER[1], $this->mysql_host, $this->mysql_user, $this->mysql_password);
+ if ( $mysql_conn == false )
+ {
+ $errors[] = _DBCONNECT_ERROR;
+ }
+ else
+ {
+ @DB::disConnect();
+ }
+ }
+
+ return $errors;
+ }
+
+ public function check_user_parameters()
+ {
+ $parameters = array('user_name', 'user_realname', 'user_password', 'user_password2', 'user_email');
+ $this->read_parameter($parameters);
+
+ $errors = array();
+ if ( $this->user_realname == '' )
+ {
+ $errors[] = sprintf(_VALID_ERROR1, _ADMIN_FIELD1);
+ }
+
+ if ( $this->user_name == '' )
+ {
+ $errors[] = sprintf(_VALID_ERROR1, _ADMIN_FIELD2);
+ }
+ elseif ( !preg_match("/^[a-z0-9]+([ a-z0-9]*[a-z0-9]+)?$/i", $this->user_name) )
+ {
+ $errors[] = _VALID_ERROR5;
+ }
+
+ if ( $this->user_password == '' || $this->user_password2 == '' )
+ {
+ $errors[] = sprintf(_VALID_ERROR1, _ADMIN_FIELD3);
+ $this->user_password = '';
+ }
+ elseif ( $this->user_password != $this->user_password2 )
+ {
+ $errors[] = _VALID_ERROR6;
+ $this->user_password = '';
+ }
+
+ if ( !preg_match("/^[a-z0-9\._+\-]+@[a-z0-9\._\-]+\.[a-z]{2,6}$/i", $this->user_email) )
+ {
+ $errors[] = _VALID_ERROR7;
+ }
+
+ return $errors;
+ }
+
+ public function check_weblog_parameters()
+ {
+ $parameters = array('blog_name', 'blog_shortname');
+ $this->read_parameter($parameters);
+
+ $errors = array();
+ if ( $this->blog_name == '' )
+ {
+ $errors[] = sprintf(_VALID_ERROR1, _BLOG_FIELD1);
+ }
+
+ if ( $this->blog_shortname == '' )
+ {
+ $errors[] = sprintf(_VALID_ERROR1, _BLOG_FIELD2);
+ }
+
+ if ( !preg_match("/^[a-z0-9]+$/i", $this->blog_shortname) )
+ {
+ $errors[] = _VALID_ERROR4;
+ }
+
+ return $errors;
+ }
+
+ public function check_uri_parameters()
+ {
+ $parameters = array('IndexURL', 'AdminURL', 'MediaURL', 'SkinsURL', 'PluginURL', 'ActionURL');
+ $this->read_parameter($parameters);
+
+ $errors = array();
+ if ( substr($this->IndexURL, -1, 1) !== '/' )
+ {
+ $errors[] = sprintf(_VALID_ERROR8, _PATH_FIELD1);
+ }
+
+ if ( substr($this->AdminURL, -1, 1) !== '/' )
+ {
+ $errors[] = sprintf(_VALID_ERROR8, _PATH_FIELD2);
+ }
+
+ if ( substr($this->MediaURL, -1, 1) !== '/' )
+ {
+ $errors[] = sprintf(_VALID_ERROR8, _PATH_FIELD4);
+ }
+
+ if ( substr($this->SkinsURL, -1, 1) !== '/' )
+ {
+ $errors[] = sprintf(_VALID_ERROR8, _PATH_FIELD6);
+ }
+
+ if ( substr($this->PluginURL, -1, 1) !== '/' )
+ {
+ $errors[] = sprintf(_VALID_ERROR8, _PATH_FIELD8);
+ }
+
+ if ( strrchr($this->ActionURL, '/') != '/action.php' )
+ {
+ $errors[] = sprintf(_VALID_ERROR9, _PATH_FIELD9);
+ }
+
+ return $errors;
+ }
+
+ public function check_path_parameters()
+ {
+ $parameters = array('AdminPath', 'MediaPath', 'SkinsPath');
+ $this->read_parameter($parameters);
+
+ $separators = array('/', DIRECTORY_SEPARATOR);
+ $errors = array();
+ if ( !in_array(substr($this->AdminPath, -1, 1), $separators) )
+ {
+ $errors[] = sprintf(_VALID_ERROR10, _PATH_FIELD3);
+ }
+ elseif ( !file_exists($this->AdminPath) )
+ {
+ $errors[] = sprintf(_VALID_ERROR11, _PATH_FIELD3);
+ }
+
+ if ( !in_array(substr($this->MediaPath, -1, 1), $separators) )
+ {
+ $errors[] = sprintf(_VALID_ERROR10, _PATH_FIELD5);
+ }
+ elseif ( !file_exists($this->MediaPath) )
+ {
+ $errors[] = sprintf(_VALID_ERROR11, _PATH_FIELD5);
+ }
+
+ if ( !in_array(substr($this->SkinsPath, -1, 1), $separators) )
+ {
+ $errors[] = sprintf(_VALID_ERROR10, _PATH_FIELD7);
+ }
+ elseif ( !file_exists($this->SkinsPath) )
+ {
+ $errors[] = sprintf(_VALID_ERROR11, _PATH_FIELD7);
+ }
+
+ return $errors;
+ }
+
+ /**
+ * check all parameters
+ * @return bool
+ */
+ public function check_all_parameters()
+ {
+ $this->set_locale();
+
+ $isValid = true;
+ $isValid &= (count($this->check_mysql_parameters()) == 0);
+ $isValid &= (count($this->check_user_parameters()) == 0);
+ $isValid &= (count($this->check_weblog_parameters()) == 0);
+ $isValid &= (count($this->check_uri_parameters()) == 0);
+ $isValid &= (count($this->check_path_parameters()) == 0);
+
+ return $isValid;
+ }
+}
+>>>>>>> skinnable-master