PageRenderTime 25ms CodeModel.GetById 16ms RepoModel.GetById 0ms app.codeStats 0ms

/index.php

http://kv-webme.googlecode.com/
PHP | 429 lines | 346 code | 11 blank | 72 comment | 78 complexity | 612948c66490912ef823c52fa88ccbc0 MD5 | raw file
Possible License(s): LGPL-3.0, GPL-2.0, BSD-3-Clause, BSD-2-Clause, Apache-2.0, MIT, LGPL-2.1 
    

  1. <?php
    2. 

  2. /**
    3. 

  3. 	* front controller for WebME files
    4. 

  4. 	*
    5. 

  5. 	* PHP version 5.2
    6. 

  6. 	*
    7. 

  7. 	* @category None
    8. 

  8. 	* @package  None
    9. 

  9. 	* @author   Kae Verens <kae@kvsites.ie>
    10. 

  10. 	* @license  GPL 2.0
    11. 

  11. 	* @link     http://kvsites.ie/
    12. 

  12. 	*/
    13. 

  13. 

  14. // { common variables and functions
    15. 

  15. 

  16. // { WW_getCSS
    17. 

  17. 

  18. /**
    19. 

  19. 	* retrieve a URL linking all added CSS sheets
    20. 

  20. 	*
    21. 

  21. 	* @return string HTML element with generated URL
    22. 

  22. 	*/
    23. 

  23. function WW_getCSS() {
    24. 

  24. 	return '<style>@import "/css/'.join('|', $GLOBALS['css_urls']).'";</style>';
    25. 

  25. }
    26. 

  26. 

  27. // }
    28. 

  28. // { WW_getInlineScripts
    29. 

  29. 

  30. /**
    31. 

  31. 	* retrieve all inline JS scripts in a HTML element
    32. 

  32. 	*
    33. 

  33. 	* @return string HTML <script> element with inline JS scripts
    34. 

  34. 	*/
    35. 

  35. function WW_getInlineScripts() {
    36. 

  36. 	if (count($GLOBALS['scripts_inline'])) {
    37. 

  37. 		return '<script>'.join('', $GLOBALS['scripts_inline']).'</script>';
    38. 

  38. 	}
    39. 

  39. }
    40. 

  40. 

  41. // }
    42. 

  42. // { WW_getScripts
    43. 

  43. 

  44. /**
    45. 

  45. 	* retrieve a URL linking all added external JS scripts
    46. 

  46. 	*
    47. 

  47. 	* @return string generated URL
    48. 

  48. 	*/
    49. 

  49. function WW_getScripts() {
    50. 

  50. 	global $scripts;
    51. 

  51. 	$latest=filemtime(SCRIPTBASE.'j/js.js');
    52. 

  52. 	foreach ($scripts as $script) {
    53. 

  53. 		if (strpos($script, '/')===0) {
    54. 

  54. 			$t=filemtime(SCRIPTBASE.$script);
    55. 

  55. 		}
    56. 

  56. 		else {
    57. 

  57. 			$t=filemtime(SCRIPTBASE.'/ww.plugins/'.$script);
    58. 

  58. 		}
    59. 

  59. 		if ($t>$latest) {
    60. 

  60. 			$latest=$t;
    61. 

  61. 		}
    62. 

  62. 	}
    63. 

  63. 	return '/js/'.$latest.'*'
    64. 

  64. 		.join('*', $scripts);
    65. 

  65. }
    66. 

  66. 

  67. // }
    68. 

  68. 

  69. require_once 'ww.incs/common.php';
    70. 

  70. if (isset($https_required) && $https_required && !$_SERVER['HTTPS']) {
    71. 

  71. 	redirect('https://www.'.str_replace('www.', '', $_SERVER['HTTP_HOST']).'/');
    72. 

  72. }
    73. 

  73. if (isset($DBVARS['canonical_name'])
    74. 

  74. 	&& $_SERVER['HTTP_HOST']!=$DBVARS['canonical_name']
    75. 

  75. ) {
    76. 

  76. 	redirect(
    77. 

  77. 		(@$_SERVER['HTTPS']=='on'?'https':'http')
    78. 

  78. 		.'://'.$DBVARS['canonical_name'].$_SERVER['REQUEST_URI']
    79. 

  79. 	);
    80. 

  80. }
    81. 

  81. if (!isset($DBVARS['version']) || $DBVARS['version']<56) {
    82. 

  82. 	redirect('/ww.incs/upgrade.php');
    83. 

  83. }
    84. 

  84. $id=(int)@$_REQUEST['pageid'];
    85. 

  85. $page=preg_replace('#&.*|/$#', '', @$_REQUEST['page']);
    86. 

  86. // }
    87. 

  87. // { is this a search?
    88. 

  88. if ($page=='' && isset($_GET['search']) || isset($_GET['s'])) {
    89. 

  89. 	require_once 'ww.incs/search.php';
    90. 

  90. 	$id=Search_getPage();
    91. 

  91. }
    92. 

  92. // }
    93. 

  93. // { check for Cron events
    94. 

  94. if (!isset($DBVARS['cron-next']) || $DBVARS['cron-next']<date('Y-m-d H:i:s')) {
    95. 

  95. 	require_once dirname(__FILE__).'/ww.incs/cron.php';
    96. 

  96. }
    97. 

  97. // }
    98. 

  98. // { is maintenance mode enabled?
    99. 

  99. if (isset($DBVARS['maintenance-mode']) && $DBVARS['maintenance-mode']=='yes') {
    100. 

  100. 	if (!Core_isAdmin()) {
    101. 

  101. 		die($DBVARS['maintenance-mode-message']);
    102. 

  102. 	}
    103. 

  103. }
    104. 

  104. // }
    105. 

  105. // { get current page id
    106. 

  106. if (!$id) {
    107. 

  107. 	if ($page) {         // find using the page name
    108. 

  108. 		$r=Page::getInstanceByName($page);
    109. 

  109. 		if ($r && isset($r->id)) {
    110. 

  110. 			$id=$r->id;
    111. 

  111. 			$PAGEDATA=Page::getInstance($id)->initValues();
    112. 

  112. 			if (isset($PAGEDATA->vars['_short_url'])
    113. 

  113. 				&& $PAGEDATA->vars['_short_url']
    114. 

  114. 			) {
    115. 

  115. 				$s=dbOne(
    116. 

  116. 					'select short_url from short_urls where page_id='.$id, 'short_url'
    117. 

  117. 				);
    118. 

  118. 				if ($s!=$page) {
    119. 

  119. 					redirect('/'.$s);
    120. 

  120. 				}
    121. 

  121. 			}
    122. 

  122. 		}
    123. 

  123. 		if (!$id) {
    124. 

  124. 			$id=(int)dbOne(
    125. 

  125. 				'select page_id from short_urls where short_url="'
    126. 

  126. 				.addslashes($page).'"',
    127. 

  127. 				'page_id'
    128. 

  128. 			);
    129. 

  129. 		}
    130. 

  130. 	}
    131. 

  131. 	if (!$id) {          // or maybe it's a "special" or the home page
    132. 

  132. 		$special=1;
    133. 

  133. 		if (isset($_GET['special']) && $_GET['special']) {
    134. 

  134. 			$special=$_GET['special'];
    135. 

  135. 		}
    136. 

  136. 		if (!$page) {
    137. 

  137. 			$r=Page::getInstanceBySpecial($special);
    138. 

  138. 			if ($r && isset($r->id)) {
    139. 

  139. 				if ($special==1) {
    140. 

  140. 					redirect($r->getRelativeUrl());
    141. 

  141. 				}
    142. 

  142. 				$id=$r->id;
    143. 

  143. 			}
    144. 

  144. 		}
    145. 

  145. 	}
    146. 

  146. 	if (!$id && $page) { // ok - find the nearest existing page then
    147. 

  147. 		$unused_uri='';
    148. 

  148. 		while (!$id && strpos($page, '/')!==false) {
    149. 

  149. 			$l=strrpos($page, '/');
    150. 

  150. 			$unused_uri=substr($page, $l+1).'/'.$unused_uri;
    151. 

  151. 			$page=substr($page, 0, $l);
    152. 

  152. 			$r=Page::getInstanceByName($page);
    153. 

  153. 			if ($r && isset($r->id)) {
    154. 

  154. 				$id=$r->id;
    155. 

  155. 				$PAGE_UNUSED_URI=substr($unused_uri, 0, strlen($unused_uri)-1);
    156. 

  156. 			}
    157. 

  157. 		}
    158. 

  158. 	}
    159. 

  159. }
    160. 

  160. // }
    161. 

  161. // { load page data
    162. 

  162. if ($id) {
    163. 

  163. 	$PAGEDATA=Page::getInstance($id)->initValues();
    164. 

  164. }
    165. 

  165. else {
    166. 

  166. 	if ($page!='') {
    167. 

  167. 		redirect('/');
    168. 

  168. 	}
    169. 

  169. 	Core_quit(
    170. 

  170. 		__(
    171. 

  171. 			'no page loaded. If this is a new site, then please'
    172. 

  172. 			.' <a href="/ww.admin/">log into the admin area</a> and create your'
    173. 

  173. 			.' first page.',
    174. 

  174. 			'core'
    175. 

  175. 		)
    176. 

  176. 	);
    177. 

  177. }
    178. 

  178. $c=Core_trigger('page-object-loaded');
    179. 

  179. // }
    180. 

  180. // { if URL includes a plugin override, run that instead of displaying the page
    181. 

  181. if (isset($_REQUEST['_p'])
    182. 

  182. 	&& isset($PLUGINS[$_REQUEST['_p']]['page-override'])
    183. 

  183. ) {
    184. 

  184. 	Core_quit($PLUGINS[$_REQUEST['_p']]['page-override']($PAGEDATA));
    185. 

  185. }
    186. 

  186. // }
    187. 

  187. // { main content
    188. 

  188. // { check if page is protected
    189. 

  189. $access_allowed=1;
    190. 

  190. foreach ($PLUGINS as $p) {
    191. 

  191. 	if ($access_allowed && isset($p['frontend']['page_display_test'])) {
    192. 

  192. 		$access_allowed=$p['frontend']['page_display_test']($PAGEDATA);
    193. 

  193. 	}
    194. 

  194. }
    195. 

  195. // }
    196. 

  196. if (!$access_allowed) {
    197. 

  197. 	$c.='<h2>'.__('Permission Denied', 'core').'</h2>'
    198. 

  198. 		.'<p>'.__('This is a protected document.', 'core').'</p><p>'
    199. 

  199. 		.isset($_SESSION['userdata'])
    200. 

  200. 			?__(
    201. 

  201. 				'You are not in a user-group which has access to this page. If you'
    202. 

  202. 				.' think you should be, please contact the site administrator.',
    203. 

  203. 				'core'
    204. 

  204. 			)
    205. 

  205. 			:'<p><strong>'.__(
    206. 

  206. 				'If you have a user account, please <a href="/_r?type=loginpage">'
    207. 

  207. 				.'click here</a> to log in.',
    208. 

  208. 				'core'
    209. 

  209. 			);
    210. 

  210. 	$c.='</p><p>'
    211. 

  211. 		.__(
    212. 

  212. 			'If you do not have a user account, but have been supplied with a'
    213. 

  213. 			.' password for the page, please enter it here and submit the form:',
    214. 

  214. 			'core'
    215. 

  215. 		)
    216. 

  216. 		.'</p>'
    217. 

  217. 		.'<form method="post"><input type="password" name="privacy_password" />'
    218. 

  218. 		.'<input type="submit" /></form>';
    219. 

  219. }
    220. 

  220. elseif (@$_REQUEST['cmsspecial']=='sitemap') {
    221. 

  221. 	require_once 'ww.incs/sitemap-funcs.php';
    222. 

  222. 	$c.=Sitemap_get();
    223. 

  223. }
    224. 

  224. else {
    225. 

  225. 	switch($PAGEDATA->type) {
    226. 

  226. 		case '0': // { normal page
    227. 

  227. 			$c.=$PAGEDATA->render();
    228. 

  228. 		break;
    229. 

  229. 		// }
    230. 

  230. 		case '1': // { redirect
    231. 

  231. 			if (isset($PAGEDATA->vars['redirect_to'])
    232. 

  232. 				&& $PAGEDATA->vars['redirect_to']
    233. 

  233. 			) {
    234. 

  234. 				redirect($PAGEDATA->vars['redirect_to']);
    235. 

  235. 			}
    236. 

  236. 		break; // }
    237. 

  237. 		case '4': // { sub-page summaries
    238. 

  238. 			require_once 'ww.incs/page.summaries.php';
    239. 

  239. 			$c.=PageSummaries_getHtml($PAGEDATA->id);
    240. 

  240. 		break; // }
    241. 

  241. 		case '5': // { search results
    242. 

  242. 			require_once 'ww.incs/search.php';
    243. 

  243. 			$c.=$PAGEDATA->render().Search_showResults();
    244. 

  244. 		break; // }
    245. 

  245. 		case '9': // { table of contents
    246. 

  246. 			require 'ww.incs/tableofcontents.php';
    247. 

  247. 			$c.=TableOfContents_getContent($PAGEDATA);
    248. 

  248. 		break; // }
    249. 

  249. 		default: // { plugins, and unknown
    250. 

  250. 			$not_found=true;
    251. 

  251. 			if (isset($PLUGINS[$PAGEDATA->type])) {
    252. 

  252. 				$p=$PLUGINS[$PAGEDATA->type];
    253. 

  253. 				if (isset($p['frontend']['page_type'])
    254. 

  254. 					&& function_exists($p['frontend']['page_type'])
    255. 

  255. 				) {
    256. 

  256. 					$c.=$p['frontend']['page_type']($PAGEDATA);
    257. 

  257. 					$not_found=false;
    258. 

  258. 				}
    259. 

  259. 			}
    260. 

  260. 			else {
    261. 

  261. 				foreach ( $PLUGINS as $p ) {
    262. 

  262. 					if (is_array(@$p[ 'frontend' ][ 'page_type' ])) {
    263. 

  263. 						foreach ($p[ 'frontend' ][ 'page_type' ] as $name => $function) {
    264. 

  264. 							if ($name == $PAGEDATA->type && function_exists($function)) {
    265. 

  265. 								$c .= $function($PAGEDATA);
    266. 

  266. 								$not_found = false;
    267. 

  267. 								break;
    268. 

  268. 							}
    269. 

  269. 						}
    270. 

  270. 					}
    271. 

  271. 				}
    272. 

  272. 			}
    273. 

  273. 			if ($not_found) {
    274. 

  274. 				$c.='<em><span>'
    275. 

  275. 					.__('No plugin found to handle page type:', 'core')
    276. 

  276. 					.'</span> <strong>'.htmlspecialchars($PAGEDATA->type)
    277. 

  277. 					.'</strong>. '
    278. 

  278. 					.__('Is the plugin installed and enabled?', 'core')
    279. 

  279. 					.'</em>';
    280. 

  280. 			}
    281. 

  281. 			// }
    282. 

  282. 	}
    283. 

  283. }
    284. 

  284. $pagecontent=$c
    285. 

  285. 	.Core_trigger('page-content-created')
    286. 

  286. 	.'<span class="end-of-page-content"></span>';
    287. 

  287. // }
    288. 

  288. // { load page template
    289. 

  289. if (isset($_REQUEST['__t']) && !preg_match('/[\.\/]/', $_REQUEST['__t'])) {
    290. 

  290. 	$PAGEDATA->template=$_REQUEST['__t'];
    291. 

  291. }
    292. 

  292. if (file_exists(THEME_DIR.'/'.THEME.'/h/'.$PAGEDATA->template.'.html')) {
    293. 

  293. 	$template=THEME_DIR.'/'.THEME.'/h/'.$PAGEDATA->template.'.html';
    294. 

  294. }
    295. 

  295. elseif (file_exists(THEME_DIR.'/'.THEME.'/h/_default.html')) {
    296. 

  296. 	$template=THEME_DIR.'/'.THEME.'/h/_default.html';
    297. 

  297. }
    298. 

  298. else {
    299. 

  299. 	require_once dirname(__FILE__).'/ww.incs/template-find.php';
    300. 

  300. }
    301. 

  301. // }
    302. 

  302. // { set up smarty
    303. 

  303. $smarty=Core_smartySetup(USERBASE.'/ww.cache/pages');
    304. 

  304. $smarty->template_dir=THEME_DIR.'/'.THEME.'/h/';
    305. 

  305. $smarty->assign(
    306. 

  306. 	'PAGECONTENT', '<div id="ww-pagecontent">'.$pagecontent.'</div>'
    307. 

  307. );
    308. 

  308. $smarty->assign('PAGEDATA', $PAGEDATA);
    309. 

  309. $smarty->assign('THEMEDIR', '/ww.skins/'.THEME);
    310. 

  310. // }
    311. 

  311. // { build metadata
    312. 

  312. // { page title
    313. 

  313. $c='<title>'
    314. 

  314. 	.htmlspecialchars(
    315. 

  315. 		$PAGEDATA->title
    316. 

  316. 		?$PAGEDATA->title
    317. 

  317. 		:str_replace(
    318. 

  318. 			'www.', '',
    319. 

  319. 			$_SERVER['HTTP_HOST']
    320. 

  320. 		)
    321. 

  321. 		.' > '.__FromJson($PAGEDATA->name)
    322. 

  322. 	)
    323. 

  323. 	.'</title>';
    324. 

  324. // }
    325. 

  325. // { show stylesheet and javascript links
    326. 

  326. $c.='WW_CSS_GOES_HERE'.Core_getJQueryScripts()
    327. 

  327. 	.'<script src="WW_SCRIPTS_GO_HERE"></script>';
    328. 

  328. // { generate inline javascript
    329. 

  329. $tmp='var pagedata={id:'.$PAGEDATA->id
    330. 

  330. 	.Core_trigger('displaying-pagedata')
    331. 

  331. 	.',ptop:'.$PAGEDATA->getTopParentId()
    332. 

  332. 	.(isset($DBVARS['cdn']) && $DBVARS['cdn']?', cdn:"'.$DBVARS['cdn'].'"':'')
    333. 

  333. 	.',sessid:"'.session_id().'"'
    334. 

  334. 	.',lang:"'.@$_SESSION['language'].'"'
    335. 

  335. 	.'},'
    336. 

  336. 	.(
    337. 

  337. 		isset($_SESSION['userdata']['id'])
    338. 

  338. 			?User::getAsScript()
    339. 

  339. 			:'userdata={isAdmin:0'.(isset($_SESSION['wasAdmin'])?',wasAdmin:1':'').'};'
    340. 

  340. 	);
    341. 

  341. array_unshift($scripts_inline, $tmp);
    342. 

  342. // }
    343. 

  343. if (Core_isAdmin()) {
    344. 

  344. 	foreach ($GLOBALS['PLUGINS'] as $p) {
    345. 

  345. 		if (isset($p['frontend']['admin-script'])) {
    346. 

  346. 			WW_addScript($p['frontend']['admin-script']);
    347. 

  347. 		}
    348. 

  348. 	}
    349. 

  349. }
    350. 

  350. // }
    351. 

  351. // { meta tags
    352. 

  352. $c.='<meta http-equiv="Content-Type" content="text/html; charset=UTF-8" />';
    353. 

  353. if ($PAGEDATA->keywords) {
    354. 

  354. 	$c.='<meta http-equiv="keywords" content="'
    355. 

  355. 		.htmlspecialchars($PAGEDATA->keywords).'" />';
    356. 

  356. }
    357. 

  357. if ($PAGEDATA->description) {
    358. 

  358. 	$c.='<meta http-equiv="description" content="'
    359. 

  359. 		.htmlspecialchars($PAGEDATA->description).'"/>';
    360. 

  360. }
    361. 

  361. if (isset($PAGEDATA->vars['google-site-verification'])) {
    362. 

  362. 	$c.='<meta name="google-site-verification" content="'
    363. 

  363. 		.htmlspecialchars($PAGEDATA->vars['google-site-verification']).'" />';
    364. 

  364. }
    365. 

  365. if (isset($PAGEDATA->vars['header_html'])) {
    366. 

  366. 	$c.=$PAGEDATA->vars['header_html'];
    367. 

  367. }
    368. 

  368. $smarty->assign(
    369. 

  369. 	'pagename',
    370. 

  370. 	@$PAGEDATA->alias?$PAGEDATA->alias:$PAGEDATA->name
    371. 

  371. );
    372. 

  372. if (isset($DBVARS['theme_variant']) && $DBVARS['theme_variant']) {
    373. 

  373. 	if (!file_exists(THEME_DIR.'/'.THEME.'/cs/'.$DBVARS['theme_variant'].'.css')) {
    374. 

  374. 		unset($DBVARS['theme_variant']);
    375. 

  375. 		Core_configRewrite();
    376. 

  376. 	}
    377. 

  377. 	else {
    378. 

  378. 		$c.='<link rel="stylesheet" href="/ww.skins/'.THEME.'/cs/'
    379. 

  379. 			.$DBVARS['theme_variant'].'.css" />';
    380. 

  380. 	}
    381. 

  381. }
    382. 

  382. // }
    383. 

  383. // { favicon
    384. 

  384. if (file_exists(USERBASE.'/f/skin_files/favicon.png')) {
    385. 

  385. 	$c.='<link rel="shortcut icon" href="/f/skin_files/favicon.png" />';
    386. 

  386. }
    387. 

  387. // }
    388. 

  388. $smarty->assign('METADATA', $c.Core_trigger('building-metadata'));
    389. 

  389. // }
    390. 

  390. // { send timing header
    391. 

  391. global $starttimeCount, $starttime;
    392. 

  392. header(
    393. 

  393. 	'X-RenderTime-'.($starttimeCount++).'-totalSetup: '.((microtime(true)-$starttime)*1000)
    394. 

  394. );
    395. 

  395. $starttime=microtime(true);
    396. 

  396. // }
    397. 

  397. // { display the document
    398. 

  398. ob_start();
    399. 

  399. if (strpos($template, '/')===false) {
    400. 

  400. 	$template=THEME_DIR.'/'.THEME.'/h/'.$template.'.html';
    401. 

  401. }
    402. 

  402. $t=$smarty->fetch($template);
    403. 

  403. $t=str_replace(
    404. 

  404. 	array('WW_SCRIPTS_GO_HERE', 'WW_CSS_GOES_HERE', '</body>'),
    405. 

  405. 	array(WW_getScripts(), WW_getCSS(), WW_getInlineScripts().'</body>'),
    406. 

  406. 	$t
    407. 

  407. );
    408. 

  408. if (isset($DBVARS['cdn'])) {
    409. 

  409. 	$t=str_replace(
    410. 

  410. 		array(
    411. 

  411. 			'href="/f/', 'src="/f/', 'src="/js/', 'href="/ww.skins/',
    412. 

  412. 			'url(/f/', 'src="/a/f=getImg/'
    413. 

  413. 		),
    414. 

  414. 		array(
    415. 

  415. 			'href="//'.$DBVARS['cdn'].'/f/',
    416. 

  416. 			'src="//'.$DBVARS['cdn'].'/f/',
    417. 

  417. 			'src="//'.$DBVARS['cdn'].'/js/',
    418. 

  418. 			'href="//'.$DBVARS['cdn'].'/ww.skins/',
    419. 

  419. 			'url(//'.$DBVARS['cdn'].'/f/',
    420. 

  420. 			'src="//'.$DBVARS['cdn'].'/a/f=getImg/'
    421. 

  421. 		),
    422. 

  422. 		$t
    423. 

  423. 	);
    424. 

  424. }
    425. 

  425. 

  426. echo $t;
    427. 

  427. 

  428. Core_flushBuffer('page', 'Content-type: text/html; Charset=utf-8');
    429. 

  429. // }
    430. 

  430.