PageRenderTime 80ms CodeModel.GetById 20ms RepoModel.GetById 0ms app.codeStats 0ms

/install.php

https://code.google.com/p/ezrpg/
PHP | 340 lines | 274 code | 25 blank | 41 comment | 31 complexity | 17201860fd7a784c31f16a4898c1b60e MD5 | raw file
Possible License(s): GPL-3.0 
    

  1. <?php

    2. 

  2. error_reporting(0);

    3. 

  3. define('IN_EZRPG', true);

    4. 

  4. include './lib/func.rand.php';

    5. 

  5. 

    6. 

  6. function displayHeader()

    7. 

  7. {

    8. 

  8.     echo <<<HEAD

    9. 

  9. <html>

    10. 

  10. <head>

    11. 

  11. <title>ezRPG Installation</title>

    12. 

  12. <link rel="stylesheet" href="static/default/style.css" type="text/css" />

    13. 

  13. <style>

    14. 

  14. #content

    15. 

  15. {

    16. 

  16.   width: 50%;

    17. 

  17.   margin: auto;

    18. 

  18.   font: 1.0em Verdana, Arial, Sans-serif;

    19. 

  19.   color: #444;

    20. 

  20.   padding: 10px;

    21. 

  21.   border: 1px solid #3182C0;

    22. 

  22. }

    23. 

  23. </style>

    24. 

  24. </head>

    25. 

  25. 

    26. 

  26. <body>

    27. 

  27. <div id="content">

    28. 

  28. <h1>ezRPG Installation</h1>

    29. 

  29. 

    30. 

  30. HEAD;

    31. 

  31. }

    32. 

  32. 

    33. 

  33. function displayFooter()

    34. 

  34. {

    35. 

  35.     echo <<<FOOT

    36. 

  36. </div>

    37. 

  37. </body>

    38. 

  38. </html>

    39. 

  39. FOOT;

    40. 

  40. }

    41. 

  41. 

    42. 

  42. if (!isset($_GET['act']))

    43. 

  43. {

    44. 

  44.     if (!is_writable('config.php') || !is_writable('smarty/templates_c'))

    45. 

  45.     {

    46. 

  46.         displayHeader();

    47. 

  47.         echo '<h2>Step 1</h2>';

    48. 

  48.         echo '<p>Please make sure the following files and folders are writable:';

    49. 

  49.         echo '<strong>config.php</strong><br />';

    50. 

  50.         echo '<strong>smarty/templates_c</strong><br />';

    51. 

  51.         echo '<\p>';

    52. 

  52.         echo '<p>';

    53. 

  53.         echo 'The below folders are optional to make writable:<br />';

    54. 

  54.         echo '<strong>lib/ext/htmlpurifier/HTMLPurifier/DefinitionCache/Serializer</strong>';

    55. 

  55.         echo '<strong>lib/ext/htmlpurifier/HTMLPurifier/DefinitionCache/Serializer/HTML</strong>';

    56. 

  56.         echo '<strong>lib/ext/htmlpurifier/HTMLPurifier/DefinitionCache/Serializer/URI</strong>';

    57. 

  57.         echo '</p>';

    58. 

  58.         echo '<p>';

    59. 

  59.         echo '<br />Chmod those files and folders to 0755 or 0777.</p>';

    60. 

  60.         echo '<p><a href="install.php">Click here to check again</a></p>';

    61. 

  61.         displayFooter();

    62. 

  62.         exit;

    63. 

  63.     }

    64. 

  64.     else

    65. 

  65.     {

    66. 

  66.         displayHeader();

    67. 

  67.         echo '<h2>Step 1</h2>';

    68. 

  68.         echo '<p>You have given the files/folders the correct file permissions.</p>';

    69. 

  69.         echo '<p><a href="install.php?act=2">Continue to next step</a></p>';

    70. 

  70.         displayFooter();

    71. 

  71.         exit;

    72. 

  72.     }

    73. 

  73. }

    74. 

  74. else if ($_GET['act'] == '2')

    75. 

  75. {

    76. 

  76.     displayHeader();

    77. 

  77.     echo '<h2>Step 2</h2>';

    78. 

  78.     

    79. 

  79.     if (!isset($_POST['submit']))

    80. 

  80.     {

    81. 

  81.         $dbhost = 'localhost';

    82. 

  82.         $dbname = 'ezrpg';

    83. 

  83.         $dbuser = '';

    84. 

  84.         $dbpass = '';

    85. 

  85.         $dbprefix = '';

    86. 

  86.     }

    87. 

  87.     else

    88. 

  88.     {

    89. 

  89.         $errors = 0;

    90. 

  90.         $msg = '';

    91. 

  91.         

    92. 

  92.         if (isset($_POST['dbhost']) && empty($_POST['dbhost']))

    93. 

  93.         {

    94. 

  94.             $errors = 1;

    95. 

  95.             $msg .= 'You need to enter a host name!<br />';

    96. 

  96.         }

    97. 

  97.         if (isset($_POST['dbname']) && empty($_POST['dbname']))

    98. 

  98.         {

    99. 

  99.             $errors = 1;

    100. 

  100.             $msg .= 'You need to enter a database name!<br />';

    101. 

  101.         }

    102. 

  102.         if (isset($_POST['dbuser']) && empty($_POST['dbuser']))

    103. 

  103.         {

    104. 

  104.             $errors = 1;

    105. 

  105.             $msg .= 'You need to enter a database user!<br />';

    106. 

  106.         }

    107. 

  107.         

    108. 

  108.         //so far so good...

    109. 

  109.         if ($errors == 0)

    110. 

  110.         {

    111. 

  111.             //let's test the connection

    112. 

  112.             $db = mysql_connect($_POST['dbhost'], $_POST['dbuser'], $_POST['dbpass']);

    113. 

  113.             if (!$db)

    114. 

  114.             {

    115. 

  115.                 $errors = 1;

    116. 

  116.                 $msg .= 'ezRPG could not connect to the database with the details you entered!<br />';

    117. 

  117.             }

    118. 

  118.             else

    119. 

  119.             {

    120. 

  120.                 $db_selected = mysql_select_db($_POST['dbname']);

    121. 

  121.                 if (!$db_selected)

    122. 

  122.                 {

    123. 

  123.                     $errors = 1;

    124. 

  124.                     $msg .= 'ezRPG could not select the database with the database name you entered!<br />';

    125. 

  125.                 }

    126. 

  126.             }

    127. 

  127.         }

    128. 

  128.         

    129. 

  129.         if ($errors == 0)

    130. 

  130.         {

    131. 

  131.             //No problesm connecting and selecting the database

    132. 

  132.             //Save details to the config file and fill the database

    133. 

  133.             $dbhost = $_POST['dbhost'];

    134. 

  134.             $dbname = $_POST['dbname'];

    135. 

  135.             $dbuser = $_POST['dbuser'];

    136. 

  136.             $dbpass = $_POST['dbpass'];

    137. 

  137.             $dbprefix = $_POST['dbprefix'];

    138. 

  138.             //fill the database first

    139. 

  139.             $query1 = <<<QUERY

    140. 

  140. CREATE TABLE IF NOT EXISTS `{$dbprefix}players` (

    141. 

  141.   `id` int(11) unsigned NOT NULL auto_increment,

    142. 

  142.   `username` varchar(30) default NULL,

    143. 

  143.   `password` varchar(40) default NULL,

    144. 

  144.   `email` varchar(255) default NULL,

    145. 

  145.   `secret_key` text,

    146. 

  146.   `rank` smallint(5) unsigned NOT NULL default '1',

    147. 

  147.   `registered` int(11) unsigned default NULL,

    148. 

  148.   `last_active` int(11) unsigned default '0',

    149. 

  149.   `last_login` int(11) unsigned default '0',

    150. 

  150.   `money` int(11) unsigned default '100',

    151. 

  151.   `level` int(11) unsigned default '1',

    152. 

  152.   `stat_points` int(11) unsigned default '10',

    153. 

  153.   `exp` int(11) unsigned default '0',

    154. 

  154.   `max_exp` int(11) unsigned default '10',

    155. 

  155.   `hp` int(11) unsigned default '20',

    156. 

  156.   `max_hp` int(11) unsigned default '20',

    157. 

  157.   `energy` int(11) unsigned NOT NULL default '10',

    158. 

  158.   `max_energy` int(11) unsigned NOT NULL default '10',

    159. 

  159.   `strength` int(11) unsigned default '5',

    160. 

  160.   `vitality` int(11) unsigned default '5',

    161. 

  161.   `agility` int(11) unsigned default '5',

    162. 

  162.   `dexterity` int(11) unsigned default '5',

    163. 

  163.   `damage` int(11) unsigned default '0',

    164. 

  164.   `kills` int(11) unsigned NOT NULL default '0',

    165. 

  165.   `deaths` int(11) unsigned NOT NULL default '0',

    166. 

  166.   PRIMARY KEY  (`id`),

    167. 

  167.   UNIQUE KEY `username` (`username`),

    168. 

  168.   UNIQUE KEY `email` (`email`)

    169. 

  169. ) ENGINE=InnoDB  DEFAULT CHARSET=latin1;

    170. 

  170. QUERY;

    171. 

  171.             mysql_query($query1) or die('Something went wrong.');

    172. 

  172.             

    173. 

  173.             $query2 = <<<QUERY

    174. 

  174. CREATE TABLE IF NOT EXISTS `{$dbprefix}player_log` (

    175. 

  175.   `id` int(11) unsigned NOT NULL auto_increment,

    176. 

  176.   `player` int(11) unsigned NOT NULL,

    177. 

  177.   `time` int(11) unsigned NOT NULL,

    178. 

  178.   `message` text NOT NULL,

    179. 

  179.   `status` tinyint(1) unsigned NOT NULL default '0',

    180. 

  180.   PRIMARY KEY  (`id`),

    181. 

  181.   KEY `player_log` (`player`,`time`),

    182. 

  182.   KEY `new_logs` (`player`,`status`)

    183. 

  183. ) ENGINE=InnoDB DEFAULT CHARSET=latin1;

    184. 

  184. QUERY;

    185. 

  185.             mysql_query($query2) or die('Something went wrong.');

    186. 

  186.             

    187. 

  187.             echo '<p>Tables installed.</p>';

    188. 

  188.             

    189. 

  189.             //Save data to config file

    190. 

  190.             $secret_key = createKey(24);

    191. 

  191.             $config = <<<CONF

    192. 

  192. <?php

    193. 

  193. //This file cannot be viewed, it must be included

    194. 

  194. defined('IN_EZRPG') or exit;

    195. 

  195. 

    196. 

  196. /*

    197. 

  197.   Title: Config

    198. 

  198.   The most important settings for the game are set here.

    199. 

  199. */

    200. 

  200. 

    201. 

  201. /*

    202. 

  202.   Variables: Database Connection

    203. 

  203.   Connection settings for the database.

    204. 

  204.   

    205. 

  205.   \$config_server - Database server

    206. 

  206.   \$config_dbname - Database name

    207. 

  207.   \$config_username - Username to login to server with

    208. 

  208.   \$config_password - Password to login to server with

    209. 

  209.   \$config_driver - Contains the database driver to use to connect to the database.

    210. 

  210. */

    211. 

  211. \$config_server = '{$dbhost}';

    212. 

  212. \$config_dbname = '{$dbname}';

    213. 

  213. \$config_username = '{$dbuser}';

    214. 

  214. \$config_password = '{$dbpass}';

    215. 

  215. \$config_driver = 'mysql';

    216. 

  216. 

    217. 

  217. /*

    218. 

  218.   Constant:

    219. 

  219.   This secret key is used in the hashing of player passwords and other important data.

    220. 

  220.   Secret keys can be of any length, however longer keys are more effective.

    221. 

  221.   

    222. 

  222.   This should only ever be set ONCE! Any changes to it will cause your game to break!

    223. 

  223.   You should save a copy of the key on your computer, just in case the secret key is lost or accidentally changed,.

    224. 

  224.   

    225. 

  225.   SECRET_KEY - A long string of random characters.

    226. 

  226. */

    227. 

  227. define('SECRET_KEY', '{$secret_key}');

    228. 

  228. 

    229. 

  229. 

    230. 

  230. /*

    231. 

  231.   Constants: Settings

    232. 

  232.   Various settings used in ezRPG.

    233. 

  233.   

    234. 

  234.   DB_PREFIX - Prefix to the table names

    235. 

  235.   VERSION - Version of ezRPG

    236. 

  236.   SHOW_ERRORS - Turn on to show PHP errors.

    237. 

  237.   DEBUG_MODE - Turn on to show database errors and debug information.

    238. 

  238. */

    239. 

  239. define('DB_PREFIX', '{$dbprefix}');

    240. 

  240. define('VERSION', '1.0');

    241. 

  241. define('SHOW_ERRORS', 0);

    242. 

  242. define('DEBUG_MODE', 0);

    243. 

  243. ?>

    244. 

  244. CONF;

    245. 

  245.             file_put_contents('config.php', $config);

    246. 

  246.             echo '<p>Config file written.</p>';

    247. 

  247.             echo '<p><a href="install.php?act=3">Continue to next step</a></p>';

    248. 

  248.             displayFooter();

    249. 

  249.             exit;

    250. 

  250.         }

    251. 

  251.         else

    252. 

  252.         {

    253. 

  253.             echo '<p><strong>Sorry, there were some problems:</strong><br />', $msg, '</p>';

    254. 

  254.             

    255. 

  255.             $dbhost = $_POST['dbhost'];

    256. 

  256.             $dbname = $_POST['dbname'];

    257. 

  257.             $dbuser = $_POST['dbuser'];

    258. 

  258.             $dbpass = $_POST['dbpass'];

    259. 

  259.             $dbprefix = $_POST['dbprefix'];

    260. 

  260.         }

    261. 

  261.     }

    262. 

  262.     

    263. 

  263.     echo '<p>Please fill in the database access details here.</p>';

    264. 

  264.     echo '<form method="post" action="install.php?act=2">';

    265. 

  265.     echo '<label>Host</label>';

    266. 

  266.     echo '<input type="text" name="dbhost" value="', $dbhost, '" />';

    267. 

  267.     echo '<label>Database Name</label>';

    268. 

  268.     echo '<input type="text" name="dbname" value="', $dbname, '" />';

    269. 

  269.     echo '<label>User</label>';

    270. 

  270.     echo '<input type="text" name="dbuser" value="', $dbuser, '" />';

    271. 

  271.     echo '<label>Password</label>';

    272. 

  272.     echo '<input type="password" name="dbpass" value="', $dbpass, '" />';

    273. 

  273.     echo '<label>Table Prefix (Optional)</label>';

    274. 

  274.     echo '<input type="text" name="dbprefix" value="', $dbprefix, '" />';

    275. 

  275.     echo '<p>You can enter a prefix for your table names if you like.<br />This can be useful if you will be sharing the database with other applications, or if you are running more than one ezRPG instance in a single database.</p>';

    276. 

  276.     echo '<input type="submit" name="submit" value="Submit"  class="button" />';

    277. 

  277.     echo '</form>';

    278. 

  278.     displayFooter();

    279. 

  279.     exit;

    280. 

  280. }

    281. 

  281. 

    282. 

  282. else if ($_GET['act'] == '3')

    283. 

  283. {

    284. 

  284.     displayHeader();

    285. 

  285.     echo '<h1>Step 3</h1>';

    286. 

  286.     

    287. 

  287.     if (isset($_POST['submit']))

    288. 

  288.     {

    289. 

  289.         $errors = 0;

    290. 

  290.         $msg = '';

    291. 

  291.         if (empty($_POST['username']) || empty($_POST['email']) || empty($_POST['password']) || empty($_POST['password']))

    292. 

  292.         {

    293. 

  293.             $errors = 1;

    294. 

  294.             $msg .= 'You forgot to fill in something!';

    295. 

  295.         }

    296. 

  296.         if ($_POST['password'] != $_POST['password2'])

    297. 

  297.         {

    298. 

  298.             $errors = 1;

    299. 

  299.             $msg .= 'You didn\'t verify your password correctly.';

    300. 

  300.         }

    301. 

  301.         

    302. 

  302.         if ($errors == 0)

    303. 

  303.         {

    304. 

  304.             include 'config.php';

    305. 

  305.             mysql_connect($config_server, $config_username, $config_password);

    306. 

  306.             mysql_select_db($config_dbname);

    307. 

  307.             

    308. 

  308.             $secret_key = createKey(16);

    309. 

  309.             $query = 'INSERT INTO `' . DB_PREFIX . 'players` (`username`, `password`, `email`, `secret_key`, `registered`, `rank`) VALUES(\'' . mysql_real_escape_string($_POST['username']) . '\', \'' . mysql_real_escape_string(sha1($secret_key . $_POST['password'] . SECRET_KEY)) . '\', \'' . mysql_real_escape_string($_POST['email']) . '\', \'' . mysql_real_escape_string($secret_key) . '\', ' . time() . ', 10)';

    310. 

  310.             mysql_query($query);

    311. 

  311.             

    312. 

  312.             echo '<p>Your admin account has been created! You may now login to the game. You can access the admin panel at <em>/admin</em>.</p>';

    313. 

  313.             echo '<p><strong>Please delete install.php immediately!</strong></p>';

    314. 

  314.             echo '<p><a href="index.php">Visit your ezRPG!</a></p>';

    315. 

  315.             displayFooter();

    316. 

  316.             exit;

    317. 

  317.         }

    318. 

  318.         else

    319. 

  319.         {

    320. 

  320.             echo '<p><strong>Sorry, there were some problems:</strong><br />', $msg, '</p>';

    321. 

  321.         }

    322. 

  322.     }

    323. 

  323.     

    324. 

  324.     echo '<p>Create your admin account for ezRPG.</p>';

    325. 

  325.     echo '<form method="post" action="install.php?act=3">';

    326. 

  326.     echo '<label>Username</label>';

    327. 

  327.     echo '<input type="text" name="username" value="', $_POST['username'], '" />';

    328. 

  328.     echo '<label>Email</label>';

    329. 

  329.     echo '<input type="text" name="email" value="', $_POST['email'], '" />';

    330. 

  330.     echo '<label>Password</label>';

    331. 

  331.     echo '<input type="password" name="password" />';

    332. 

  332.     echo '<label>Verify Password</label>';

    333. 

  333.     echo '<input type="password" name="password2" />';

    334. 

  334.     echo '<br />';

    335. 

  335.     echo '<input type="submit" value="Create" name="submit" class="button" />';

    336. 

  336.     echo '</form>';

    337. 

  337.     displayFooter();

    338. 

  338.     exit;

    339. 

  339. }

    340. 

  340. ?>
    341.