PageRenderTime 64ms CodeModel.GetById 18ms RepoModel.GetById 0ms app.codeStats 2ms

/authman/index.php

https://bitbucket.org/dahlo/roster
PHP | 8054 lines | 5919 code | 1256 blank | 879 comment | 1416 complexity | c525aa1c23a95d0f9d0fae8dfef1e79d MD5 | raw file
Possible License(s): LGPL-2.1

Large files files are truncated, but you can click here to view the full file

    

  1. <?php
    2. 

  2. 

  3. /**
    4. 

  4.  * AuthMan Free
    5. 

  5.  *
    6. 

  6.  * @copyright  Copyright (c) 2008 Authman Inc. (http://www.authman.com)
    7. 

  7.  * @license    http://www.gnu.org/copyleft/gpl.html GNU GPL
    8. 

  8.  * @link       http://www.authman.com
    9. 

  9.  * @version    1.0.0
    10. 

  10.  */
    11. 

  11. 

  12. ini_set('zlib.output_compression','Off');
    13. 

  13. define('AUTHMAN_DIR', dirname(__FILE__));
    14. 

  14. 

  15. 

  16. 

  17. /**
    18. 

  18.  * AuthMan Class (Free Version)
    19. 

  19.  *
    20. 

  20.  * @copyright  Copyright (c) 2008 Authman Inc. (http://www.authman.com)
    21. 

  21.  * @license    http://www.gnu.org/copyleft/gpl.html GNU GPL
    22. 

  22.  * @link       http://www.authman.com
    23. 

  23.  */
    24. 

  24. class Authman
    25. 

  25. {
    26. 

  26. 	/**
    27. 

  27.      * Class version, const
    28. 

  28.      *
    29. 

  29.      * @access private 
    30. 

  30.      */
    31. 

  31. 	var $AUTHMAN_VERSION = '1.1.0';
    32. 

  32. 

  33. 	/**
    34. 

  34.      * Apache ServerRoot
    35. 

  35.      *
    36. 

  36.      * @access private 
    37. 

  37.      * @var string
    38. 

  38.      */
    39. 

  39. 	var $_serverRoot = '/etc/httpd';
    40. 

  40. 

  41. 	/**
    42. 

  42.      * Authman directory
    43. 

  43.      *
    44. 

  44.      * private @var string
    45. 

  45.      */
    46. 

  46. 	var $_basePath;
    47. 

  47. 

  48. 	/**
    49. 

  49.      * Default Ini file
    50. 

  50.      *
    51. 

  51.      * @access private 
    52. 

  52.      * @var string
    53. 

  53.      */
    54. 

  54. 	var $_iniFile = 'config/config.ini';
    55. 

  55. 

  56. 	/**
    57. 

  57.      * Config settings
    58. 

  58.      *
    59. 

  59.      * @access private 
    60. 

  60.      * @var array
    61. 

  61.      */
    62. 

  62. 	var $_configArray = array('language'      => 'english',
    63. 

  63. 								  'login'         => 'admin',
    64. 

  64. 								  'password'      => 'admin',
    65. 

  65. 								  'demo'          => 0,
    66. 

  66. 								  'manual_edit'   => 1,
    67. 

  67. 								  'access_file'   => '.htaccess',
    68. 

  68. 								  'authuser_file' => '.htpasswd',
    69. 

  69. 								  'authname'      => 'Protected by Authman',
    70. 

  70. 								  'allowsignup'   => 0,
    71. 

  71.                                   'autoapprove'   => 0,
    72. 

  72. 								  'encryption'    =>'md5');
    73. 

  73. 

  74. 	/**
    75. 

  75.      * Language array
    76. 

  76.      *
    77. 

  77.      * @access private 
    78. 

  78.      * @var array
    79. 

  79.      */
    80. 

  80. 	var $_langArray = array('messages'=>array(),
    81. 

  81. 								'warnings'=>array(),
    82. 

  82. 								'errors'=>array());
    83. 

  83. 

  84. 	/**
    85. 

  85.      * File Paths
    86. 

  86.      *
    87. 

  87.      * @access private 
    88. 

  88.      * @var array
    89. 

  89.      */
    90. 

  90. 	var $_filePathsArray = array('configfile'=>null,
    91. 

  91. 									 'langfile'=>null,
    92. 

  92. 									 'accessfile'=>null,
    93. 

  93. 									 'authadminfile'=>null,
    94. 

  94. 									 'authuserfile' =>null,
    95. 

  95. 									 'authgroupfile'=>null,
    96. 

  96. 									 'accessfile_dist'=>null,
    97. 

  97. 									 'authuserfile_dist' =>null,
    98. 

  98. 									 'authgroupfile_dist'=>null,
    99. 

  99. 									 'signupfile'=>null);
    100. 

  100. 

  101. 	/**
    102. 

  102.      * Raw File Contents (by url hash)
    103. 

  103.      * 
    104. 

  104.      * @access private 
    105. 

  105.      * @var array
    106. 

  106.      */
    107. 

  107. 	var $_fileContentsArray = array();
    108. 

  108. 

  109. 	/**
    110. 

  110.      * Parsed File Data (by url hash)
    111. 

  111.      * 
    112. 

  112.      * @access private 
    113. 

  113.      * @var array
    114. 

  114.      */
    115. 

  115. 	var $_fileDataArray = array();
    116. 

  116. 

  117. 	/**
    118. 

  118.      * Access Rules Information (by url hash)
    119. 

  119.      * 
    120. 

  120.      * @access private 
    121. 

  121.      * @var array
    122. 

  122.      */
    123. 

  123. 	var $_accessRulesArray = array();
    124. 

  124. 

  125. 	/**
    126. 

  126. 	 * Runtime variables
    127. 

  127. 	 * 
    128. 

  128.      * @access private 
    129. 

  129.      * @var array
    130. 

  130. 	 */
    131. 

  131. 	var $_runtimeArray = null;
    132. 

  132. 

  133. 	/**
    134. 

  134.      * Error message
    135. 

  135.      *
    136. 

  136.      * @access private 
    137. 

  137.      * @var string
    138. 

  138.      */
    139. 

  139. 	var $_error = null;
    140. 

  140. 

  141.     /**
    142. 

  142.      * @access private
    143. 

  143.      * @var array
    144. 

  144.      */
    145. 

  145. 	var $_tplsArray = array();
    146. 

  146. 

  147. 	/**
    148. 

  148.      * Authman Constructor
    149. 

  149.      *
    150. 

  150.      * @access public
    151. 

  151.      * @params array|null $config
    152. 

  152.      * @return void
    153. 

  153.      */
    154. 

  154. 	function Authman( $config=array() )
    155. 

  155. 	{
    156. 

  156. 		// base prefix
    157. 

  157. 		$this->_basePath = dirname(__FILE__);
    158. 

  158. 

  159. 

  160. 		// overwrite ini file name
    161. 

  161. 		if (isset($config['ini'])) {
    162. 

  162. 			$this->_iniFile = $config['ini'];
    163. 

  163. 		}
    164. 

  164. 

  165. 		// loading ini file
    166. 

  166. 		$iniFilePath = $this->makePath( $this->_basePath, $this->_iniFile );
    167. 

  167. 		$this->_filePathsArray[ 'configfile' ] = $iniFilePath;
    168. 

  168. 		if (is_file($iniFilePath) && is_readable($iniFilePath) ) {
    169. 

  169. 			$cfg = @parse_ini_file( $iniFilePath, false );
    170. 

  170. 			if (isset($cfg)) {
    171. 

  171. 				$this->_configArray = array_merge($this->_configArray, $cfg);
    172. 

  172. 			}
    173. 

  173. 		}
    174. 

  174. 

  175. 		// overwrite language
    176. 

  176. 		if (isset($config['language'])) {
    177. 

  177. 			$this->_configArray['language'] = $config['language'];
    178. 

  178. 		}
    179. 

  179. 

  180. 		// loading language file
    181. 

  181. 		$langFilePath = $this->makePath($this->_basePath . DIRECTORY_SEPARATOR . 'languages',
    182. 

  182. 		$this->_configArray['language'] . '.lng' );
    183. 

  183. 		$this->_filePathsArray[ 'langfile' ] = $langFilePath;
    184. 

  184. 

  185. 		if (!is_file($langFilePath) || !is_readable($langFilePath) ) {
    186. 

  186. 			// we will trying load default language file
    187. 

  187. 			$langFilePath = $this->makePath($this->_basePath . DIRECTORY_SEPARATOR . 'languages',
    188. 

  188. 			'english.lng' );
    189. 

  189. 		}
    190. 

  190. 

  191. 		if (is_file($langFilePath) && is_readable($langFilePath) ) {
    192. 

  192. 			$this->_langArray = array_merge($this->_langArray, @parse_ini_file($langFilePath, true));
    193. 

  193. 		}
    194. 

  194. 

  195. 		// set access file path
    196. 

  196. 		$path = $this->makePath( $this->_basePath . DIRECTORY_SEPARATOR . '..',
    197. 

  197. 		$this->_configArray['access_file'] );
    198. 

  198. 		$this->_filePathsArray[ 'accessfile' ] = $path;
    199. 

  199. 		#if (is_file($path) && is_readable($path)) {
    200. 

  200. 		$this->readFileByType( 'accessfile' );
    201. 

  201. 		#}
    202. 

  202. 

  203. 		// set admin htpasswd file path
    204. 

  204. 		$basedir = $this->_basePath . DIRECTORY_SEPARATOR . 'var';
    205. 

  205. 

  206. 		$path = $this->makePath( $basedir, '.htadmin' );
    207. 

  207. 		$this->_filePathsArray[ 'authadminfile' ] = $path;
    208. 

  208. 

  209. 		// set default file paths
    210. 

  210. 		$path = $this->makePath( $basedir, 'htaccess_dist' );
    211. 

  211. 		$this->_filePathsArray[ 'accessfile_dist' ] = $path;
    212. 

  212. 

  213. 		$path = $this->makePath( $basedir, 'htpasswd_dist' );
    214. 

  214. 		$this->_filePathsArray[ 'authuserfile_dist' ] = $path;
    215. 

  215. 

  216. 		$path = $this->makePath( $basedir, 'htgroup_dist' );
    217. 

  217. 		$this->_filePathsArray[ 'authgroupfile_dist' ] = $path;
    218. 

  218. 

  219. 		$path = $this->makePath( $basedir, 'signups' );
    220. 

  220. 		$this->_filePathsArray[ 'signupfile' ] = $path;
    221. 

  221. 		// loading runtime stats
    222. 

  222. 	}
    223. 

  223. 

  224. 	/**
    225. 

  225.      * Return class version
    226. 

  226.      *
    227. 

  227.      * @access public 
    228. 

  228.      * @return string
    229. 

  229.      */
    230. 

  230. 	function getVersion()
    231. 

  231. 	{
    232. 

  232. 		return $this->AUTHMAN_VERSION;
    233. 

  233. 	}
    234. 

  234. 

  235. 	/**
    236. 

  236.      * Return true if demo mode is on
    237. 

  237.      *
    238. 

  238.      * @access public
    239. 

  239.      * @return string
    240. 

  240.      */
    241. 

  241. 	function isDemo()
    242. 

  242. 	{
    243. 

  243. 		return $this->_configArray['demo'] == 1;
    244. 

  244. 	}
    245. 

  245. 

  246. 	/**
    247. 

  247.      * Return true if menual edit is allowed
    248. 

  248.      *
    249. 

  249.      * @access public
    250. 

  250.      * @return string
    251. 

  251.      */
    252. 

  252. 	function isManualEdit()
    253. 

  253. 	{
    254. 

  254. 		return $this->_configArray['manual_edit'] == 1;
    255. 

  255. 	}
    256. 

  256. 

  257.     /**
    258. 

  258.      * Return configuration value by name
    259. 

  259.      *
    260. 

  260.      * @access public
    261. 

  261.      * @param string $name
    262. 

  262.      * @return string
    263. 

  263.      */
    264. 

  264. 	function getConfigValue( $name )
    265. 

  265. 	{
    266. 

  266. 		if (!isset($name) || !isset($this->_configArray[$name])) {
    267. 

  267. 			return false;
    268. 

  268. 		}
    269. 

  269. 

  270. 		return $this->_configArray[$name];
    271. 

  271. 	}
    272. 

  272. 

  273. 	/***************************************************************************
    274. 

  274. 	* Member zone related functions
    275. 

  275. 	**************************************************************************/
    276. 

  276. 

  277.     /**
    278. 

  278.      * Logging as user
    279. 

  279.      *
    280. 

  280.      * @access public
    281. 

  281.      * @param string $username
    282. 

  282.      * @param string encpass
    283. 

  283.      * @return bool
    284. 

  284.      */
    285. 

  285. 	function loginAs( $username, $encpass )
    286. 

  286. 	{
    287. 

  287. 		$_SESSION['am_u'] = base64_encode( $username );
    288. 

  288. 		$_SESSION['am_c'] = md5( $encpass );
    289. 

  289. 	
    290. 

  290. 		$user = $this->fetchRecordByType( 'authuserfile', $username );
    291. 

  291. 		if (false == $user) {
    292. 

  292. 			$user = $this->fetchRecordByType( 'authadminfile', $username, true );
    293. 

  293. 			if (false == $user) {
    294. 

  294. 				return false;
    295. 

  295. 			}
    296. 

  296. 		
    297. 

  297. 			$err = $this->getError();
    298. 

  298. 	        $this->setRuntimeValue('lastloggedin_ts', time());
    299. 

  299. 	        $this->setRuntimeValue('lastloggedin_ip', $_SERVER['REMOTE_ADDR'], true);
    300. 

  300. 			$this->setError($err);
    301. 

  301. 		}
    302. 

  302. 		
    303. 

  303. 		return true;
    304. 

  304. 	}	
    305. 

  305. 	
    306. 

  306. 	/**
    307. 

  307.      * Return authenticated user data 
    308. 

  308.      *
    309. 

  309.      * @access public
    310. 

  310.      * @return array|false 
    311. 

  311.      */
    312. 

  312. 	function getAuthenticatedUser()
    313. 

  313. 	{
    314. 

  314. 		// checking session cookie
    315. 

  315. 		$isadmin = false;
    316. 

  316. 		$user = null;
    317. 

  317. 		$username = $codedpass = $rawpass = null;
    318. 

  318. 		
    319. 

  319. 		if (isset($_SESSION) && isset($_SESSION['am_u']) 
    320. 

  320. 		                     && isset($_SESSION['am_c'])) {
    321. 

  321. 

  322. 			$username = base64_decode($_SESSION['am_u']);
    323. 

  323. 			$codedpass  = $_SESSION['am_c']; // md5
    324. 

  324. 		} else if (isset($_SERVER['PHP_AUTH_USER']) && isset($_SERVER['PHP_AUTH_PW'])) {
    325. 

  325. 			$username = $_SERVER['PHP_AUTH_USER'];
    326. 

  326. 			$rawpass  = $_SERVER['PHP_AUTH_PW'];
    327. 

  327. 		}
    328. 

  328. 		if (!isset($username) || $username=='') {
    329. 

  329. 			return false;
    330. 

  330. 		}
    331. 

  331. 		
    332. 

  332. 		// checking admins first
    333. 

  333. 		$user = $this->fetchRecordByType('authadminfile', $username, true);
    334. 

  334. 		if ($user) {
    335. 

  335. 			$isadmin = true;
    336. 

  336. 		} else {
    337. 

  337. 			$user = $this->fetchRecordByType('authuserfile', $username);
    338. 

  338. 		}
    339. 

  339. 

  340. 		if (false == $user || !isset($user['pass'])) {
    341. 

  341. 			return false;
    342. 

  342. 		}
    343. 

  343. 		
    344. 

  344. 		if (isset($rawpass)) {
    345. 

  345. 			$encpass = $this->htcrypt($rawpass, $user['pass']);
    346. 

  346. 			if ($encpass != $user['pass']) {
    347. 

  347. 				return false;
    348. 

  348. 			}
    349. 

  349. 		} else if (md5($user['pass']) != $codedpass) {
    350. 

  350. 			return false;
    351. 

  351. 		}
    352. 

  352. 		
    353. 

  353. 		$user['isadmin'] = $isadmin;
    354. 

  354. 		return $user;
    355. 

  355. 	}
    356. 

  356. 

  357. 	/**
    358. 

  358.      * Return true if user is authenticated
    359. 

  359.      *
    360. 

  360.      * @access public
    361. 

  361.      * @return bool
    362. 

  362.      */
    363. 

  363. 	function isAuthenticated()
    364. 

  364. 	{
    365. 

  365. 		return false == $this->getAuthenticatedUser() ? false : true;
    366. 

  366. 	}
    367. 

  367. 

  368.     /**
    369. 

  369.     * Return true if user is authenticated by basic auth method
    370. 

  370.     * 
    371. 

  371.     * @access public
    372. 

  372.     * @return bool
    373. 

  373.     */
    374. 

  374.     function isAuthenticatedByBasicAuth()
    375. 

  375.     {
    376. 

  376.         $user = $this->getAuthenticatedUser();
    377. 

  377.         if (false == $user) {
    378. 

  378.             return false;
    379. 

  379.         }
    380. 

  380.         
    381. 

  381.         if (!isset($_SERVER['PHP_AUTH_USER']) || !isset($_SERVER['PHP_AUTH_PW'])) {
    382. 

  382.             return false;
    383. 

  383.         }
    384. 

  384.         
    385. 

  385.         $encpass = $this->htcrypt($_SERVER['PHP_AUTH_PW'], $user['pass']);
    386. 

  386.         if ($encpass != $user['pass']) {
    387. 

  387.                 return false;
    388. 

  388.         }
    389. 

  389.         
    390. 

  390.         return true;
    391. 

  391.     }
    392. 

  392. 

  393. 	/**
    394. 

  394.      * Return true if current authenticated user has administrator priviledges
    395. 

  395.      *
    396. 

  396.      * @access public
    397. 

  397.      * @return bool
    398. 

  398.      */
    399. 

  399. 	function isAdmin()
    400. 

  400. 	{
    401. 

  401. 		$user = $this->getAuthenticatedUser();
    402. 

  402. 		if (false == $user) {
    403. 

  403. 			return false;
    404. 

  404. 		}
    405. 

  405. 		return isset($user['isadmin']) && $user['isadmin'] ? true : false;
    406. 

  406. 	}
    407. 

  407. 

  408. 	/***************************************************************************
    409. 

  409. 	* Crypt Utilties
    410. 

  410. 	**************************************************************************/
    411. 

  411. 

  412. 	/**
    413. 

  413.      * Encrypt text with crypt function
    414. 

  414.      *
    415. 

  415.      * @access public
    416. 

  416.      * @param string $text
    417. 

  417.      * @param string|null $salt
    418. 

  418.      * @param string|null $prefix
    419. 

  419.      * @return string
    420. 

  420.      */
    421. 

  421. 	function encrypt_saltcrypt( $text, $salt='', $prefix='' )
    422. 

  422. 	{
    423. 

  423. 		if ($salt == 'DES') {
    424. 

  424. 			$salt = CRYPT_STD_DES == 1 ? 'r1' : '';
    425. 

  425. 		}
    426. 

  426. 

  427. 		if ($salt == 'EXT_DES') {
    428. 

  428. 			$salt = CRYPT_EXT_DES == 1 ? '_J9..pre' : '';
    429. 

  429. 		}
    430. 

  430. 

  431. 		if ($salt == 'MD5') {
    432. 

  432. 			$salt = CRYPT_MD5 == 1 ? '$1$pre$' : '';
    433. 

  433. 		}
    434. 

  434. 

  435. 		if ($salt == '') {
    436. 

  436. 			mt_srand((double)microtime()*1000000);
    437. 

  437. 

  438. 			for ($i=0; $i<CRYPT_SALT_LENGTH; $i++)
    439. 

  439. 			$salt .= substr("abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789./",
    440. 

  440. 			mt_rand() & 63, 1);
    441. 

  441. 		}
    442. 

  442. 

  443. 		return $prefix . crypt($text, $salt);
    444. 

  444. 	}
    445. 

  445. 

  446. 	/**
    447. 

  447.      * Encrypt text with crypt function
    448. 

  448.      *
    449. 

  449.      * @access public
    450. 

  450.      * @param string $text
    451. 

  451.      * @param string|null $salt
    452. 

  452.      * @return string
    453. 

  453.      */
    454. 

  454. 	function htcrypt( $text, $salt=null ) 
    455. 

  455. 	{
    456. 

  456. 		$method = $this->_configArray['encryption'];
    457. 

  457. 		if (isset($salt) && substr($salt, 0, 6) == '$apr1$') {
    458. 

  458. 			$method = 'md5';
    459. 

  459. 			$salt = substr($salt, 6);
    460. 

  460. 		}
    461. 

  461. 		
    462. 

  462. 		// apr1-md5
    463. 

  463. 		if ($method == 'md5') {
    464. 

  464. 			if (CRYPT_MD5 == 1) {
    465. 

  465. 				return $this->crypt_apr1_md5($text, $salt);
    466. 

  466. 			}
    467. 

  467. 		}
    468. 

  468. 		
    469. 

  469. 		// DES
    470. 

  470. 		if (!isset($salt)) {
    471. 

  471. 			mt_srand((double)microtime()*1000000);
    472. 

  472. 			for ($i=0; $i<CRYPT_SALT_LENGTH; $i++) {
    473. 

  473. 				$salt .= substr("abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789./", mt_rand() & 63, 1);
    474. 

  474. 			}
    475. 

  475. 		}
    476. 

  476. 				
    477. 

  477. 		return crypt($text, $salt);
    478. 

  478. 	}
    479. 

  479. 

  480.     /**
    481. 

  481.      * Encryption function
    482. 

  482.      *
    483. 

  483.      * @access public
    484. 

  484.      * @param string $plainpasswd
    485. 

  485.      * @param string $salt
    486. 

  486.      * @return string
    487. 

  487.      */
    488. 

  488. 	function crypt_apr1_md5($plainpasswd, $salt) {
    489. 

  489. 		if (!isset($salt)) {
    490. 

  490. 		    $salt = substr(str_shuffle("abcdefghijklmnopqrstuvwxyz0123456789"), 0, 8);
    491. 

  491. 		} else {
    492. 

  492. 			$salt = substr($salt, 0, 8);
    493. 

  493. 		}
    494. 

  494. 		    
    495. 

  495. 	    $len = strlen($plainpasswd);
    496. 

  496. 	    $text = $plainpasswd.'$apr1$'.$salt;
    497. 

  497. 	    $bin = pack("H32", md5($plainpasswd.$salt.$plainpasswd));
    498. 

  498. 	    for($i = $len; $i > 0; $i -= 16) { $text .= substr($bin, 0, min(16, $i)); }
    499. 

  499. 	    for($i = $len; $i > 0; $i >>= 1) { $text .= ($i & 1) ? chr(0) : $plainpasswd{0}; }
    500. 

  500. 	    $bin = pack("H32", md5($text));
    501. 

  501. 	    for($i = 0; $i < 1000; $i++) {
    502. 

  502. 	        $new = ($i & 1) ? $plainpasswd : $bin;
    503. 

  503. 	        if ($i % 3) $new .= $salt;
    504. 

  504. 	        if ($i % 7) $new .= $plainpasswd;
    505. 

  505. 	        $new .= ($i & 1) ? $bin : $plainpasswd;
    506. 

  506. 	        $bin = pack("H32", md5($new));
    507. 

  507. 	    }
    508. 

  508. 	    $tmp = '';
    509. 

  509. 	    for ($i = 0; $i < 5; $i++) {
    510. 

  510. 	        $k = $i + 6;
    511. 

  511. 	        $j = $i + 12;
    512. 

  512. 	        if ($j == 16) $j = 5;
    513. 

  513. 	        $tmp = $bin[$i].$bin[$k].$bin[$j].$tmp;
    514. 

  514. 	    }
    515. 

  515. 	    $tmp = chr(0).chr(0).$bin[11].$tmp;
    516. 

  516. 	    $tmp = strtr(strrev(substr(base64_encode($tmp), 2)),
    517. 

  517. 	    "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789+/",
    518. 

  518. 	    "./0123456789ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz");
    519. 

  519. 	    return "$"."apr1"."$".$salt."$".$tmp;
    520. 

  520. 	}
    521. 

  521. 	
    522. 

  522. 	/***************************************************************************
    523. 

  523. 	* File System Utilties
    524. 

  524. 	**************************************************************************/
    525. 

  525. 

  526. 	/**
    527. 

  527.      * Construct path from base path and file name
    528. 

  528.      *
    529. 

  529.      * @access public
    530. 

  530.      * @param string $basePath
    531. 

  531.      * @param string $fileName
    532. 

  532.      * @param string|null $dirsep
    533. 

  533.      * @return string
    534. 

  534.      */
    535. 

  535. 	function makePath($basePath, $fileName, $dirsep=DIRECTORY_SEPARATOR)
    536. 

  536. 	{
    537. 

  537. 		// Windows
    538. 

  538. 		if (preg_match('/^[A-Z]:\\\/i', $fileName)) {
    539. 

  539. 			return $this->getNormalizedPath( $fileName );
    540. 

  540. 		}
    541. 

  541. 		// Unix and other
    542. 

  542. 		if (substr($fileName,0,1)=='/' || substr($fileName,0,1)==$dirsep) {
    543. 

  543. 			return $this->getNormalizedPath( $fileName );
    544. 

  544. 		}
    545. 

  545. 

  546. 		return $this->getNormalizedPath( $basePath . $dirsep . $fileName );
    547. 

  547. 	}
    548. 

  548. 

  549. 	/**
    550. 

  550.      * Normalize given path
    551. 

  551.      *
    552. 

  552.      * @access public
    553. 

  553.      * @param mixed $path
    554. 

  554.      * @param string|null $dirsep
    555. 

  555.      * @return mixed
    556. 

  556.      */
    557. 

  557. 	function getNormalizedPath( $path, $dirsep=DIRECTORY_SEPARATOR )
    558. 

  558. 	{
    559. 

  559.         if (is_array($path)) {
    560. 

  560.             $pathArray = array();
    561. 

  561.             foreach($path as $p) {
    562. 

  562.                 $pathArray[] = $this->getNormalizedPath($p, $dirsep);
    563. 

  563.             }
    564. 

  564.             return $pathArray;
    565. 

  565.         }
    566. 

  566.         
    567. 

  567. 		$prefix = '';
    568. 

  568. 		
    569. 

  569.         // if not Windows
    570. 

  570. 		if (!preg_match('/^[A-Z]:\\\/i', $path)) {
    571. 

  571. 			$prefix = $dirsep;
    572. 

  572. 		}
    573. 

  573. 

  574. 		$path = str_replace('/',  $dirsep, $path);
    575. 

  575. 		$path = str_replace('\\', $dirsep, $path);
    576. 

  576. 

  577. 		$parts = explode($dirsep, $path);
    578. 

  578. 

  579. 		$todown=0;
    580. 

  580. 		for ($i = count($parts)-1; $i >= 0; $i--) {
    581. 

  581. 			if (empty($parts[$i]) || $parts[$i] == '.') {
    582. 

  582. 				array_splice( $parts, $i, 1);
    583. 

  583. 				continue;
    584. 

  584. 			}
    585. 

  585. 			if ($parts[$i] == '..') {
    586. 

  586. 				array_splice( $parts, $i, 1);
    587. 

  587. 				if ($i > 0) {
    588. 

  588. 					$todown++;
    589. 

  589. 				}
    590. 

  590. 				continue;
    591. 

  591. 			}
    592. 

  592. 			if ($todown) {
    593. 

  593. 				# warning: not works for complex paths like /root/path/../path/../../the/end
    594. 

  594. 				array_splice( $parts, $i-($todown-1), $todown);
    595. 

  595. 				$todown = 0;
    596. 

  596. 			}
    597. 

  597. 		}
    598. 

  598. 

  599. 		return $prefix . implode( $dirsep, $parts );
    600. 

  600. 	}
    601. 

  601. 

  602. 	/**
    603. 

  603.      * Return full path to a file specified by type
    604. 

  604.      * 
    605. 

  605.      * @access public
    606. 

  606.      * @param string $filetype
    607. 

  607.      * @param string|null $dir
    608. 

  608.      * @return string
    609. 

  609.      */
    610. 

  610. 	function getPathByType( $filetype, $dir=DIRECTORY_SEPARATOR )
    611. 

  611. 	{
    612. 

  612. 		$ln = strtolower($filetype);
    613. 

  613. 

  614. 		if ($ln == 'protecteddirectory') {
    615. 

  615. 			return $this->getNormalizedPath($this->_basePath . $dir . '..');
    616. 

  616. 		}
    617. 

  617. 

  618. 		if ($ln == 'phpmailer') {
    619. 

  619. 			return implode($dir, array($this->_basePath, 'contrib',
    620. 

  620. 			               'phpmailer', 'class.phpmailer.php'));
    621. 

  621. 		}
    622. 

  622. 		if ($ln == 'tinymcejs') {
    623. 

  623. 			return implode($dir, array($this->_basePath,
    624. 

  624. 			               'contrib', 'tinymce', 'jscripts',
    625. 

  625. 			               'tiny_mce', 'tiny_mce.js'));
    626. 

  626. 		}
    627. 

  627.         if ($ln == 'magpierss') {
    628. 

  628.             return implode($dir, array($this->_basePath, 'contrib',
    629. 

  629.                            'magpierss', 'rss_fetch.inc'));
    630. 

  630.         }
    631. 

  631. 		if (!isset($this->_filePathsArray[$filetype])) {
    632. 

  632. 			return false;
    633. 

  633. 		}
    634. 

  634. 

  635. 		return $this->_filePathsArray[$filetype];
    636. 

  636. 	}
    637. 

  637. 

  638.     /**
    639. 

  639.      * Return default file path by type
    640. 

  640.      *
    641. 

  641.      * @access public
    642. 

  642.      * @param string $filetype
    643. 

  643.      * @return string
    644. 

  644.      */
    645. 

  645. 	function getDefaultFilePathByType( $filetype )
    646. 

  646. 	{
    647. 

  647. 		if ($filetype == 'authuserfile') {
    648. 

  648. 			return dirname($this->getPathByType('accessfile'))
    649. 

  649. 			. DIRECTORY_SEPARATOR
    650. 

  650. 			. $this->getConfigValue('authuser_file');
    651. 

  651. 		}
    652. 

  652. 		return false;
    653. 

  653. 	}
    654. 

  654. 

  655.     /**
    656. 

  656.      * Returns url by type 
    657. 

  657.      *
    658. 

  658.      * @access public
    659. 

  659.      * @param string $filetype
    660. 

  660.      * @param string|null $fulurl
    661. 

  661.      * @return strung
    662. 

  662.      */
    663. 

  663. 	function getUrlByType( $filetype, $fullurl=false )
    664. 

  664. 	{
    665. 

  665. 		// base uri
    666. 

  666. 		$server = isset($_SERVER['HTTP_HOST']) ? $_SERVER['HTTP_HOST'] : $_SERVER['SERVER_NAME'];
    667. 

  667. 		$port   = isset($_SERVER['SERVER_PORT']) ? $_SERVER['SERVER_PORT'] : 80;
    668. 

  668. 

  669. 		$uri_self = $_SERVER['PHP_SELF'];
    670. 

  670. 		$uri = dirname($uri_self);
    671. 

  671. 

  672. 		if ($filetype == 'base') {
    673. 

  673. 			$uri .= '/';
    674. 

  674. 		}
    675. 

  675. 		if ($filetype == 'protected') {
    676. 

  676. 			$uri = $this->getNormalizedPath($uri . '/../', '/');
    677. 

  677. 		}
    678. 

  678. 		if ($filetype == 'errordocument401') {
    679. 

  679. 			$uri = $uri_self .'?page=401';
    680. 

  680. 		}
    681. 

  681. 

  682. 		if ($filetype == 'login') {
    683. 

  683. 			$uri = $uri_self .'?page=login';
    684. 

  684. 		}
    685. 

  685. 

  686. 		if ($filetype == 'tinymcejs') {
    687. 

  687. 			$uri .= '/contrib/tinymce/jscripts/tiny_mce/tiny_mce.js';
    688. 

  688. 		}
    689. 

  689. 

  690. 		if (!$fullurl) {
    691. 

  691. 			return $uri;
    692. 

  692. 		}
    693. 

  693. 

  694. 		return 'http://'.$server . ($port != 80 ? ':'.$port : '') . $uri;
    695. 

  695. 	}
    696. 

  696. 

  697.     /**
    698. 

  698.      * Set file path
    699. 

  699.      *
    700. 

  700.      * @access public
    701. 

  701.      * @param string $filetype
    702. 

  702.      * @param string $filepath
    703. 

  703.      * @return void
    704. 

  704.      */
    705. 

  705. 	function setFilePathByType( $filetype, $filepath )
    706. 

  706. 	{
    707. 

  707. 		if (!isset($filepath)) {
    708. 

  708. 			return false;
    709. 

  709. 		}
    710. 

  710. 		$hash = md5( $filepath );
    711. 

  711. 

  712. 		$this->_fileContentsArray[ $hash ] = null;
    713. 

  713. 		$this->_fileDataArray[ $hash ] = null;
    714. 

  714. 		$this->_filePathsArray[ $filetype ] = $filepath;
    715. 

  715. 	}
    716. 

  716. 

  717. 	/**
    718. 

  718.      * Return temporary file name
    719. 

  719.      *
    720. 

  720.      * @access public
    721. 

  721.      * @return string
    722. 

  722.      */
    723. 

  723. 	function getTempFilePath()
    724. 

  724. 	{
    725. 

  725. 		return $this->_basePath . DIRECTORY_SEPARATOR . 't_' . time() . rand(0, 1000);
    726. 

  726. 	}
    727. 

  727. 

  728. 	/***************************************************************************
    729. 

  729. 	* String functions
    730. 

  730. 	**************************************************************************/
    731. 

  731. 

  732. 

  733. 	/***************************************************************************
    734. 

  734. 	* Disk Level File Operations
    735. 

  735. 	**************************************************************************/
    736. 

  736. 

  737.     /**
    738. 

  738.      * Write default deny file to disk
    739. 

  739.      *
    740. 

  740.      * @access private
    741. 

  741.      * @param string $filePath
    742. 

  742.      * @return bool
    743. 

  743.      */
    744. 

  744. 	function writeDenyFile( $filePath )
    745. 

  745. 	{
    746. 

  746. 		$fh = @fopen($filePath, 'w');
    747. 

  747. 		if (false == $fh) {
    748. 

  748. 			return false;
    749. 

  749. 		}
    750. 

  750. 		@fwrite($fh, "# Automatically Created by Autman Free\n");
    751. 

  751. 		@fwrite($fh, "order deny,allow\n");
    752. 

  752. 		@fwrite($fh, "deny from all\n");
    753. 

  753. 		@fclose($fh);
    754. 

  754. 

  755. 		return true;
    756. 

  756. 	}
    757. 

  757. 

  758. 	/**
    759. 

  759.      * Read and parse file 
    760. 

  760.      *
    761. 

  761.      * @access private
    762. 

  762.      * @param string $filetype
    763. 

  763.      * @return bool 
    764. 

  764.      */
    765. 

  765. 	function readFileByType( $filetype )
    766. 

  766. 	{
    767. 

  767. 		$path = $this->getPathByType( $filetype );
    768. 

  768. 		if (false == $path) {
    769. 

  769. 			return false;
    770. 

  770. 		}
    771. 

  771. 

  772. 		$hash = md5($path);
    773. 

  773. 		$this->_fileContentsArray[$hash] = array();
    774. 

  774. 		$this->_fileDataArray[$hash] = array();
    775. 

  775. 

  776. 		if (!is_file($path)) {
    777. 

  777. 			$this->setError( $this->E('NOSUCHFILE', $path) );
    778. 

  778. 			return false;
    779. 

  779. 		}
    780. 

  780. 

  781. 		if (is_file($path) && !is_readable($path)) {
    782. 

  782. 			$this->setError( $this->E('FILENOTREADBLE', $path) );
    783. 

  783. 			return false;
    784. 

  784. 		}
    785. 

  785. 

  786. 		$fh = @fopen($path, 'r');
    787. 

  787. 		if (false == $fh) {
    788. 

  788. 			$this->setError( $this->E('FILEOPENFAILED', $path) );
    789. 

  789. 			return false;
    790. 

  790. 		}
    791. 

  791. 

  792. 		$contents = $buf = null;
    793. 

  793. 		$maxbytes = 2048000;
    794. 

  794. 		$bytes = 0;
    795. 

  795. 		while (!feof($fh) && $bytes < $maxbytes && ($buf = fread($fh, $maxbytes-$bytes))) {
    796. 

  796. 			$contents .= $buf;
    797. 

  797. 		}
    798. 

  798. 

  799. 		fclose($fh);
    800. 

  800. 

  801. 		return $this->setFileContentsByType( $filetype, $contents );
    802. 

  802. 	}
    803. 

  803. 

  804. 	/**
    805. 

  805.      * Save file 
    806. 

  806.      *
    807. 

  807.      * @access public
    808. 

  808.      * @param string $filetype
    809. 

  809.      * @param bool|null $saveRawData
    810. 

  810.      * @param string|null $contents
    811. 

  811.      * @return bool 
    812. 

  812.      */
    813. 

  813. 	function saveFileByType( $filetype, $saveRawData=false, $contents=null, $parseTemplates=false )
    814. 

  814. 	{
    815. 

  815. 		$path = $this->getPathByType( $filetype );
    816. 

  816. 		if (!$path) {
    817. 

  817. 			return false;
    818. 

  818. 		}
    819. 

  819. 

  820. 		if (!isset($contents)) {
    821. 

  821. 			$contents = $this->getFileContentsByType( $filetype, $saveRawData, $parseTemplates );
    822. 

  822. 		}
    823. 

  823. 

  824. 		// Saving in DEMO mode is disabled
    825. 

  825. 		if ($this->isDemo()) {
    826. 

  826. 			$this->setError( $this->W('DEMOISON') );
    827. 

  827. 			return false;
    828. 

  828. 		}
    829. 

  829. 

  830. 		if (!is_file($path) && !is_writable(dirname($path))) {
    831. 

  831. 			$this->setError( $this->E('DIRNOTWRITABLE', dirname($path)) );
    832. 

  832. 			return false;
    833. 

  833. 		}
    834. 

  834. 

  835. 		if (is_file($path) && !is_writable($path)) {
    836. 

  836. 			$this->setError( $this->E('FILENOTWRITABLE', $path) );
    837. 

  837. 			return false;
    838. 

  838. 		}
    839. 

  839. 

  840. 		$fh = @fopen($path, 'w');
    841. 

  841. 		if (!$fh) {
    842. 

  842. 			$this->setError( $this->E('FILEOPENFAILED', $path) );
    843. 

  843. 			return false;
    844. 

  844. 		}
    845. 

  845. 

  846. 		if ($contents != '') {
    847. 

  847. 			if (!fwrite($fh, $contents)) {
    848. 

  848. 				$this->setError( $this->E('WRITEFAILED', $path) );
    849. 

  849. 				return false;
    850. 

  850. 			}
    851. 

  851. 		}
    852. 

  852. 

  853. 		@fclose($fh);
    854. 

  854. 

  855. 		if (!$this->readFileByType( $filetype )) {
    856. 

  856. 			return false;
    857. 

  857. 		}
    858. 

  858. 

  859. 		return true;
    860. 

  860. 	}
    861. 

  861. 

  862.     /**
    863. 

  863.      * Reset protected directory
    864. 

  864.      *
    865. 

  865.      * @access public
    866. 

  866.      * @retrun bool
    867. 

  867.      */
    868. 

  868. 	function resetProtectedDirectory()
    869. 

  869. 	{
    870. 

  870. 		$src = $this->getPathByType( 'accessfile_dist');
    871. 

  871. 		$dst = $this->getPathByType( 'accessfile' );
    872. 

  872. 

  873. 		if (false == $this->copyFile( $src, $dst )) {
    874. 

  874. 			return false;
    875. 

  875. 		}
    876. 

  876. 		$this->readFileByType( 'accessfile' );
    877. 

  877. 

  878. 		$result = true;
    879. 

  879. 

  880. 		$filesArray = array('authuserfile'); // , 'authgroupfile');
    881. 

  881. 		foreach ($filesArray as $file) {
    882. 

  882. 			$src = $this->getPathByType( $file . '_dist');
    883. 

  883. 			$dst = $this->getPathByType( $file );
    884. 

  884. 

  885. 			if (isset($src) && isset($dst) && is_file($src)) {
    886. 

  886. 				if (false == $this->copyFile( $src, $dst )) {
    887. 

  887. 					$result = false;
    888. 

  888. 				}
    889. 

  889. 			}
    890. 

  890. 		}
    891. 

  891. 

  892. 		return $result;
    893. 

  893. 	}
    894. 

  894. 

  895.     /**
    896. 

  896.      * Copy file 
    897. 

  897.      *
    898. 

  898.      * @access public
    899. 

  899.      * @param string $src
    900. 

  900.      * @param string $dst
    901. 

  901.      * @return bool
    902. 

  902.      */
    903. 

  903. 	function copyFile( $src, $dst )
    904. 

  904. 	{
    905. 

  905. 		if ($src == false) {
    906. 

  906. 			$this->setError( $this->E('INVALIDREQUEST') . ' [source]');
    907. 

  907. 			return false;
    908. 

  908. 		}
    909. 

  909. 		if ($dst == false) {
    910. 

  910. 			$this->setError( $this->E('INVALIDREQUEST') . ' [destination]');
    911. 

  911. 			return false;
    912. 

  912. 		}
    913. 

  913. 

  914. 		// Saving in DEMO mode is disabled
    915. 

  915. 		if ($this->isDemo()) {
    916. 

  916. 			$this->setError( $this->W('DEMOISON') );
    917. 

  917. 			return false;
    918. 

  918. 		}
    919. 

  919. 

  920. 		if (!is_file($dst) && !is_writable(dirname($dst))) {
    921. 

  921. 			$this->setError( $this->E('DIRNOTWRITABLE', dirname($dst)) );
    922. 

  922. 			return false;
    923. 

  923. 		}
    924. 

  924. 

  925. 		if (is_file($dst) && !is_writable($dst)) {
    926. 

  926. 			$this->setError( $this->E('FILENOTWRITABLE', $dst) );
    927. 

  927. 			return false;
    928. 

  928. 		}
    929. 

  929. 

  930. 		if (!is_file($src) || !is_readable($src)) {
    931. 

  931. 			$this->setError( $this->E('FILENOTREADBLE', $src) );
    932. 

  932. 			return false;
    933. 

  933. 		}
    934. 

  934. 

  935. 		if (false == copy( $src, $dst )) {
    936. 

  936. 			$this->setError( $this->E('FILECOPYFAILED', $src) );
    937. 

  937. 			return false;
    938. 

  938. 		}
    939. 

  939. 

  940. 		return true;
    941. 

  941. 	}
    942. 

  942. 

  943. 	/***************************************************************************
    944. 

  944. 	* Contents
    945. 

  945. 	**************************************************************************/
    946. 

  946. 

  947. 	/**
    948. 

  948.      * Return file contents
    949. 

  949.      *
    950. 

  950.      * @access public
    951. 

  951.      * @param string $filetype
    952. 

  952.      * @param bool|null $getRawData
    953. 

  953.      * @return string
    954. 

  954.      */
    955. 

  955. 	function getFileContentsByType( $filetype, $getRawData=false, $parseTemplates=false )
    956. 

  956. 	{
    957. 

  957. 		$path = $this->getPathByType( $filetype );
    958. 

  958. 		if (false == $path) {
    959. 

  959. 			return false;
    960. 

  960. 		}
    961. 

  961. 		$hash = md5( $path );
    962. 

  962. 

  963. 		if (false == $getRawData) {
    964. 

  964. 			$data = $this->getFileDataByType( $filetype );
    965. 

  965. 			$text = '';
    966. 

  966. 

  967. 			// build contents from parsed data
    968. 

  968. 			if ($filetype == 'accessfile') {
    969. 

  969. 

  970. 				if ($parseTemplates) {
    971. 

  971. 					foreach ($data as $k=>$v) {
    972. 

  972. 						$data[$k] = preg_replace('/%PROTECTEDDIRECTORY%/', $am->getPathByType('protecteddirectory'), $v);
    973. 

  973. 					}
    974. 

  974. 				}
    975. 

  975. 				$text = implode("\n", $data);
    976. 

  976. 

  977. 			} else if (($filetype=='authuserfile' || $filetype=='authadminfile' ||
    978. 

  978. 			            $filetype=='signupfile') && is_array($data)) {
    979. 

  979. 

  980. 				foreach ($data as $user) {
    981. 

  981. 					if (isset($user['pass_raw'])) {
    982. 

  982. //						$pass = $this->encrypt_saltcrypt( $user['pass_raw'], 'DES' );
    983. 

  983. 						$pass = $this->htcrypt( $user['pass_raw'] ); // salt automatically generated
    984. 

  984. 					} else {
    985. 

  985. 						$pass = $user['pass'];
    986. 

  986. 					}
    987. 

  987. 

  988. 					$text .= $user['name'] . ':' . $pass;
    989. 

  989. 					if (isset($user['info']) || isset($user['email'])) {
    990. 

  990. 						$text .= ':';
    991. 

  991. 						$text .= isset($user['info']) ? $user['info'] . ':' : '';
    992. 

  992. 						if (isset($user['email'])) {
    993. 

  993. 							$text .= $user['email'];
    994. 

  994. 						}
    995. 

  995. 					}
    996. 

  996. 

  997. 					if ($filetype=='signupfile') {
    998. 

  998. 						$text .= ':' . (isset($user['ts']) ? $user['ts'] : '');
    999. 

  999. 						$text .= ':' . (isset($user['remoteaddr']) ? $user['remoteaddr'] : '');
    1000. 

  1000. 						$text .= ':' . (isset($user['referer']) ? $user['referer'] : '');
    1001. 

  1001. 					}
    1002. 

  1002. 

  1003. 					$text .= "\n";
    1004. 

  1004. 				}
    1005. 

  1005. 			}
    1006. 

  1006. 

  1007. 			return $text;
    1008. 

  1008. 		}
    1009. 

  1009. 

  1010. 		/* fetching raw data */
    1011. 

  1011. 

  1012. 		if (!isset($this->_fileContentsArray[ $hash ])) {
    1013. 

  1013. 			if (false == $this->readFileByType( $filetype )) {
    1014. 

  1014. 				return false;
    1015. 

  1015. 			}
    1016. 

  1016. 		}
    1017. 

  1017. 

  1018. 		if (!isset($this->_fileContentsArray[ $hash ])) {
    1019. 

  1019. 			return '';
    1020. 

  1020. 		}
    1021. 

  1021. 

  1022.         if (!is_array($this->_fileContentsArray[$hash])) {
    1023. 

  1023.             return $this->_fileContentsArray[$hash];
    1024. 

  1024.         }
    1025. 

  1025.         
    1026. 

  1026. 		return implode("\n", $this->_fileContentsArray[$hash]); 
    1027. 

  1027. 	}
    1028. 

  1028. 

  1029. 	/**
    1030. 

  1030.      * Parse files
    1031. 

  1031.      *
    1032. 

  1032.      * @access public
    1033. 

  1033.      * @param string $filetype
    1034. 

  1034.      * @param string $contents
    1035. 

  1035.      * @return bool
    1036. 

  1036.      */
    1037. 

  1037. 	function parseFileContentsByType( $filetype, $contents )
    1038. 

  1038. 	{
    1039. 

  1039. 		$path = $this->getPathByType( $filetype );
    1040. 

  1040. 		if (false == $path) {
    1041. 

  1041. 			$this->setError( $this->W('NOTDEFINED', $filetype) );
    1042. 

  1042. 			return false;
    1043. 

  1043. 		}
    1044. 

  1044. 		$hash = md5( $path );
    1045. 

  1045. 

  1046. 		$this->_fileDataArray[$hash] = array();
    1047. 

  1047.         $this->_accessRulesArray[$hash] = array('order'=>null);
    1048. 

  1048. 

  1049. 		$lArray = split("[\n\r]+", $contents);
    1050. 

  1050. 

  1051. 		// no data
    1052. 

  1052. 		if (count($lArray) < 0) {
    1053. 

  1053. 			return true;
    1054. 

  1054. 		}
    1055. 

  1055. 

  1056. 		if ($filetype == 'accessfile') {
    1057. 

  1057. 			$rows = array();
    1058. 

  1058. 			$hash = md5( $this->getPathByType( $filetype ) );
    1059. 

  1059. 

  1060. 			foreach($lArray as $l) {
    1061. 

  1061. 				if (preg_match('/^\s*Auth(User|Group)File\s+(.+)/i', $l, $matches)) {
    1062. 

  1062. 					$authfiletype = 'auth' . strtolower($matches[1]) . 'file';
    1063. 

  1063. 					$path = $this->makePath( $this->_serverRoot, $matches[2] );
    1064. 

  1064. 					$this->_filePathsArray[ $authfiletype ] = $path;
    1065. 

  1065. 				}
    1066. 

  1066. 

  1067. 				if (preg_match('/^\s*AuthType\s+(.+)/i', $l, $matches)) {
    1068. 

  1068. 					$val = strtolower(trim($matches[1]));
    1069. 

  1069. 					$val = stripslashes($val);
    1070. 

  1070. 					$this->_accessRulesArray[$hash]['authtype'] = $val;
    1071. 

  1071. 				}
    1072. 

  1072. 

  1073. 				if (preg_match('/^\s*AuthName\s+"?(.+?)"?\s*$/i', $l, $matches)) {
    1074. 

  1074. 					$val = trim($matches[1]);
    1075. 

  1075. 					$val = stripslashes( $val );
    1076. 

  1076. 					$this->_accessRulesArray[$hash]['authname'] = $val;
    1077. 

  1077. 				}
    1078. 

  1078.                 
    1079. 

  1079.                 // ip/domain access rules
    1080. 

  1080.                 if (preg_match('/^\s*Order\s+(Allow|Deny),\s*(Allow|Deny)\s*$/i', $l, $matches)) {
    1081. 

  1081.                     $this->_accessRulesArray[$hash]['order'] = strtolower($matches[2]);
    1082. 

  1082.                 }
    1083. 

  1083.                 if (preg_match('/^\s*(allow|deny)\s+from\s+(.+)$/i', $l, $matches)) {
    1084. 

  1084.                     foreach(explode(' ', $matches[2]) as $s) {
    1085. 

  1085.                         $s = trim($s);
    1086. 

  1086.                         if (empty($s)) {
    1087. 

  1087.                             continue;
    1088. 

  1088.                         }
    1089. 

  1089.                         $rule = strtolower($matches[1]);
    1090. 

  1090.                         $this->_accessRulesArray[$hash][$rule][] = $s;
    1091. 

  1091.                     }
    1092. 

  1092.                 }
    1093. 

  1093. 

  1094.                 // error document rules
    1095. 

  1095. 				if (preg_match('/^\s*ErrorDocument\s+401\s+(.+)$/i', $l, $matches)) {
    1096. 

  1096. 					$val = trim($matches[1]);
    1097. 

  1097. 					$this->_accessRulesArray[$hash]['errordocument401'] = $val;
    1098. 

  1098. 				}
    1099. 

  1099. 				$rows[] = $l;
    1100. 

  1100. 			}
    1101. 

  1101. 

  1102. 			$this->_fileDataArray[$hash] = $rows;
    1103. 

  1103. 		}
    1104. 

  1104. 

  1105. 		if ($filetype=='authuserfile' || $filetype=='authadminfile' || $filetype=='signupfile') {
    1106. 

  1106. 			$users = array();
    1107. 

  1107. 			foreach($lArray as $l) {
    1108. 

  1108. 				if (preg_match('/^\s*#/', $l)) {
    1109. 

  1109. 					continue;
    1110. 

  1110. 				}
    1111. 

  1111. 

  1112. 				$ldArray = split(':', $l);
    1113. 

  1113. 				if (count($ldArray) < 2) {
    1114. 

  1114. 					continue;
    1115. 

  1115. 				}
    1116. 

  1116. 

  1117. 				$data = array('name'  => $ldArray[0],
    1118. 

  1118. 				'pass'  => $ldArray[1],
    1119. 

  1119. 				'info'  => isset($ldArray[2]) ? $ldArray[2] : null,
    1120. 

  1120. 				'email' => isset($ldArray[3]) ? $ldArray[3] : null);
    1121. 

  1121. 

  1122. 				if ($filetype == 'signupfile') {
    1123. 

  1123. 					$data['ts']         = isset($ldArray[4]) ? $ldArray[4]: null;
    1124. 

  1124. 					$data['remoteaddr'] = isset($ldArray[5]) ? $ldArray[5] : null;
    1125. 

  1125. 					$data['referer']    = implode(':', array_slice($ldArray, 6));
    1126. 

  1126. 				}
    1127. 

  1127. 

  1128. 				$users[] = $data;
    1129. 

  1129. 			}
    1130. 

  1130. 

  1131. 			$this->_fileDataArray[$hash] = $users;
    1132. 

  1132. 		}
    1133. 

  1133. 

  1134. 		if ($filetype == 'authgroupfile') {
    1135. 

  1135. 		}
    1136. 

  1136. 

  1137. 

  1138. 		return true;
    1139. 

  1139. 	}
    1140. 

  1140. 

  1141. 	/**
    1142. 

  1142.      * Set, Parse given file contents and optionaly Save it 
    1143. 

  1143.      *
    1144. 

  1144.      * @access public
    1145. 

  1145.      * @param string $filetype
    1146. 

  1146.      * @param string $contents
    1147. 

  1147.      * @param bool|null $saveData
    1148. 

  1148.      * @param bool|null $saveRawData
    1149. 

  1149.      * @return bool
    1150. 

  1150.      */
    1151. 

  1151. 	function setFileContentsByType( $filetype, $contents, $saveData=false, $saveRawData=false )
    1152. 

  1152. 	{
    1153. 

  1153. 		$path = $this->getPathByType( $filetype );
    1154. 

  1154. 		if (false == $path) {
    1155. 

  1155. 			$this->setError( $this->W('NOTDEFINED', $filetype) );
    1156. 

  1156. 			return false;
    1157. 

  1157. 		}
    1158. 

  1158. 		$hash = md5( $path );
    1159. 

  1159. 

  1160. 		$this->_fileContentsArray[$hash] = $contents;
    1161. 

  1161. 

  1162. 		// parse contents
    1163. 

  1163. 		if (false == $this->parseFileContentsByType( $filetype, $contents )) {
    1164. 

  1164. 			return false;
    1165. 

  1165. 		}
    1166. 

  1166. 

  1167. 		if ($saveData) {
    1168. 

  1168. 			if (false == $saveRawData) {
    1169. 

  1169. 				// build contents from parsed data
    1170. 

  1170. 			}
    1171. 

  1171. 

  1172. 			if (false == $this->saveFileByType( $filetype, $contents )) {
    1173. 

  1173. 				return false;
    1174. 

  1174. 			}
    1175. 

  1175. 		}
    1176. 

  1176. 

  1177. 		return true;
    1178. 

  1178. 	}
    1179. 

  1179. 

  1180. 	/***************************************************************************
    1181. 

  1181. 	* File Data Routes
    1182. 

  1182. 	**************************************************************************/
    1183. 

  1183. 

  1184. 	/**
    1185. 

  1185.      * Return parsed data
    1186. 

  1186.      *
    1187. 

  1187.      * @access public
    1188. 

  1188.      * @param string $filetype
    1189. 

  1189.      * @return array
    1190. 

  1190.      */
    1191. 

  1191. 	function getFileDataByType( $filetype )
    1192. 

  1192. 	{
    1193. 

  1193. 		$path = $this->getPathByType( $filetype );
    1194. 

  1194. 		if (false == $path) {
    1195. 

  1195. 			$this->setError( $this->W('NOTDEFINED', $filetype) );
    1196. 

  1196. 			return false;
    1197. 

  1197. 		}
    1198. 

  1198. 

  1199. 		$hash = md5( $path );
    1200. 

  1200. 

  1201. 		// not readed yet
    1202. 

  1202. 		if (!isset( $this->_fileDataArray[$hash] )) {
    1203. 

  1203. 			if (false == $this->readFileByType( $filetype )) {
    1204. 

  1204. 				return false;
    1205. 

  1205. 			}
    1206. 

  1206. 		}
    1207. 

  1207. 

  1208. 		return $this->_fileDataArray[$hash];
    1209. 

  1209. 	}
    1210. 

  1210. 

  1211. 	function getDefaultRecordsBytype( $filetype )
    1212. 

  1212. 	{
    1213. 

  1213. 		if ($filetype == 'authadminfile') {
    1214. 

  1214. 			$pass_raw = $this->_configArray['password'];
    1215. 

  1215. 			return array(array('name'=>$this->_configArray['login'],
    1216. 

  1216. 			                   //'pass'=>$this->encrypt_saltcrypt( $pass_raw, 'DES' ),
    1217. 

  1217. 			                   'pass'=>$this->htcrypt($pass_raw, 'adminpass'),
    1218. 

  1218. 			                   'pass_raw'=>$pass_raw,
    1219. 

  1219. 			                   'info'=>'Administration',
    1220. 

  1220. 			                   'email'=>'support'));
    1221. 

  1221. 		}
    1222. 

  1222. 

  1223. 		return array();
    1224. 

  1224. 	}
    1225. 

  1225. 

  1226. 	/**
    1227. 

  1227.      * Update file record
    1228. 

  1228.      *
    1229. 

  1229.      * @access public
    1230. 

  1230.      * @param string $filetype
    1231. 

  1231.      * @param string|null $sortby
    1232. 

  1232.      * @param int|null $limit
    1233. 

  1233.      * @param int|null $offset
    1234. 

  1234.      * @return array
    1235. 

  1235.      */
    1236. 

  1236. 	function getRecordsByType( $filetype, $sortby=null, $limit=99999, $offset=0, $where=false )
    1237. 

  1237. 	{
    1238. 

  1238. 		$recArray = $this->getFileDataByType( $filetype );
    1239. 

  1239. 		if (false == $recArray) {
    1240. 

  1240. 			// return default values
    1241. 

  1241. 			return $this->getDefaultRecordsByType( $filetype );
    1242. 

  1242. 		}
    1243. 

  1243. 

  1244. 		if (false != $where && !is_array($where)) {
    1245. 

  1245. 			$where = array($where);
    1246. 

  1246. 		}
    1247. 

  1247. 

  1248. 		// TODO sortby
    1249. 

  1249. 

  1250. 		// limit, offset
    1251. 

  1251. 		$outArray = array();
    1252. 

  1252. 		for ($i=$offset; $i < count($recArray); ++$i) {
    1253. 

  1253. 			if ($i-$offset >= $limit) {
    1254. 

  1254. 				break;
    1255. 

  1255. 			}
    1256. 

  1256. 			
    1257. 

  1257. 			$rec = $recArray[$i];
    1258. 

  1258. 			
    1259. 

  1259. 			// filtering
    1260. 

  1260. 			if (false != $where) {
    1261. 

  1261. 				$valid = false;
    1262. 

  1262. 				foreach ($where as $field=>$patten) {
    1263. 

  1263. 					foreach($rec as $k=>$v) {
    1264. 

  1264. 						if (!is_int($field) && strcasecmp($field, $k) != 0) {
    1265. 

  1265. 							continue;
    1266. 

  1266. 						}
    1267. 

  1267. 						if (preg_match("/$patten/i", $v)) {
    1268. 

  1268. 							$valid = true;
    1269. 

  1269. 							break;
    1270. 

  1270. 						}
    1271. 

  1271. 					}
    1272. 

  1272. 					if ($valid) {
    1273. 

  1273. 						break;
    1274. 

  1274. 					}
    1275. 

  1275. 				}
    1276. 

  1276. 				if (!$valid) {
    1277. 

  1277. 					continue;
    1278. 

  1278. 				}
    1279. 

  1279. 			}
    1280. 

  1280. 

  1281. 			$outArray[] = $recArray[$i];
    1282. 

  1282. 		}
    1283. 

  1283. 

  1284. 		return $outArray;
    1285. 

  1285. 	}
    1286. 

  1286. 

  1287. 	function getTotalByType( $filetype, $where=false )
    1288. 

  1288. 	{
    1289. 

  1289. 		$recArray = $this->getFileDataByType( $filetype );
    1290. 

  1290. 		if (false == $recArray) {
    1291. 

  1291. 			if ($filetype == 'authadminfile') {
    1292. 

  1292. 				return 1;
    1293. 

  1293. 			}
    1294. 

  1294. 			return 0;
    1295. 

  1295. 		}
    1296. 

  1296. 

  1297. 		if (false == $where) {
    1298. 

  1298. 			return count($recArray);
    1299. 

  1299. 		}
    1300. 

  1300. 		
    1301. 

  1301. 		if (!is_array($where)) {
    1302. 

  1302. 			$where = array($where);
    1303. 

  1303. 		}
    1304. 

  1304. 		
    1305. 

  1305. 		$count = 0;
    1306. 

  1306. 				
    1307. 

  1307. 		foreach($recArray as $rec) {
    1308. 

  1308. 			$valid = false;
    1309. 

  1309. 			foreach ($where as $field=>$patten) {
    1310. 

  1310. 				foreach($rec as $k=>$v) {
    1311. 

  1311. 					if (!is_int($field) && strcasecmp($field, $k) != 0) {
    1312. 

  1312. 						continue;
    1313. 

  1313. 					}
    1314. 

  1314. 					if (preg_match("/$patten/i", $v)) {
    1315. 

  1315. 						$valid = true;
    1316. 

  1316. 						break;
    1317. 

  1317. 					}
    1318. 

  1318. 				}
    1319. 

  1319. 				if ($valid) {
    1320. 

  1320. 					break;
    1321. 

  1321. 				}
    1322. 

  1322. 			}
    1323. 

  1323. 			if (!$valid) {
    1324. 

  1324. 				continue;
    1325. 

  1325. 			}
    1326. 

  1326. 			
    1327. 

  1327. 			$count++;
    1328. 

  1328. 		}
    1329. 

  1329. 

  1330. 		return $count;
    1331. 

  1331. 	}
    1332. 

  1332. 

  1333. 	/**
    1334. 

  1334.      * Fetch record by Id
    1335. 

  1335.      *
    1336. 

  1336.      * @access public
    1337. 

  1337.      * @param string $filetype
    1338. 

  1338.      * @param string $recordId
    1339. 

  1339.      * @param bool $checkDefault
    1340. 

  1340.      * @return string|array|bool
    1341. 

  1341.      */
    1342. 

  1342. 	function fetchRecordByType( $filetype, $recordId, $checkDefault=false )
    1343. 

  1343. 	{
    1344. 

  1344. 		$dataArray = $this->getFileDataByType( $filetype );
    1345. 

  1345. 		if (false == $dataArray || count($dataArray) < 1) {
    1346. 

  1346. 			if (false == $checkDefault) {
    1347. 

  1347. 				return false;
    1348. 

  1348. 			}
    1349. 

  1349. 

  1350. 			$dataArray = $this->getDefaultRecordsByType( $filetype );
    1351. 

  1351. 		}
    1352. 

  1352. 

  1353. 		if (is_null($recordId)) {
    1354. 

  1354. 			// reset first record for authadminfile
    1355. 

  1355. 			if ($filetype == 'authadminfile') {
    1356. 

  1356. 				return $this->getDefaultRecordsByType( $filetype );
    1357. 

  1357. 			}
    1358. 

  1358. 			return false;
    1359. 

  1359. 		}
    1360. 

  1360. 

  1361. 		$found = false;
    1362. 

  1362. 

  1363. 		foreach( $dataArray as $rec ) {
    1364. 

  1364. 			if ($filetype == 'accessfile') {
    1365. 

  1365. 				if ($recordId == 'errordocument401') {
    1366. 

  1366. 					if (preg_match('/^\s*ErrorDocument\s+401\s+/i', $rec)) {
    1367. 

  1367. 						$found = $rec;
    1368. 

  1368. 						break;
    1369. 

  1369. 					}
    1370. 

  1370. 				} else if (preg_match('/^\s*'.$recordId.'(\s+.+)?\s*$/i', $rec)) {
    1371. 

  1371. 					$found = $rec;
    1372. 

  1372. 					break;
    1373. 

  1373. 				}
    1374. 

  1374. 				continue;
    1375. 

  1375. 			}
    1376. 

  1376. 

  1377. 			if (isset($rec['name']) && strcmp($recordId, $rec['name'])==0) {
    1378. 

  1378. 				$found = $rec;
    1379. 

  1379. 				break;
    1380. 

  1380. 			}
    1381. 

  1381. 		}
    1382. 

  1382. 

  1383. 		return $found;
    1384. 

  1384. 	}
    1385. 

  1385. 

  1386. 	/**
    1387. 

  1387.      * Check record by Id
    1388. 

  1388.      *
    1389. 

  1389.      * @access public
    1390. 

  1390.      * @param string $filetype
    1391. 

  1391.      * @param string $recordId
    1392. 

  1392.      * @return bool
    1393. 

  1393.      */
    1394. 

  1394. 	function isRecordByType( $filetype, $recordId )
    1395. 

  1395. 	{
    1396. 

  1396. 		$rec = $this->fetchRecordByType($filetype, $recordId);
    1397. 

  1397. 		return $rec == false ? false : true;
    1398. 

  1398. 	}
    1399. 

  1399. 

  1400. 	/**
    1401. 

  1401.      * Update record in file
    1402. 

  1402.      *
    1403. 

  1403.      * @access public
    1404. 

  1404.      * @param string $filetype
    1405. 

  1405.      * @param string $recordId
    1406. 

  1406.      * @param array data
    1407. 

  1407.      * @return bool
    1408. 

  1408.      */
    1409. 

  1409. 	function updateRecordByType( $filetype, $recordId, $data )
    1410. 

  1410. 	{
    1411. 

  1411. 		$path = $this->getPathByType( $filetype );
    1412. 

  1412. 		if (false == $path) {
    1413. 

  1413. 			$this->setError( $this->W('NOTDEFINED', $filetype) );
    1414. 

  1414. 			return false;
    1415. 

  1415. 		}
    1416. 

  1416. 		$hash = md5( $path );
    1417. 

  1417. 

  1418. 		if (!is_array($this->_fileDataArray[$hash])) {
    1419. 

  1419. 			$this->_fileDataArray[$hash] = null;
    1420. 

  1420. 		}
    1421. 

  1421. 

  1422. 		if ($filetype == 'accessfile') {
    1423. 

  1423. 			$found = false;
    1424. 

  1424. 			$recordId = strtolower($recordId);
    1425. 

  1425. 

  1426. 			foreach ($this->_fileDataArray[$hash] as $id=>$rec) {
    1427. 

  1427. 				$rec = trim($rec);
    1428. 

  1428. 				$args = isset($data[$recordId]) ? $data[$recordId] : '';
    1429. 

  1429. 

  1430. 				if ($recordId == 'errordocument401') {
    1431. 

  1431. 					if (preg_match('/^(\s*ErrorDocument\s+401)\s+/i', $rec, $matches)) {
    1432. 

  1432. 						if (!isset($data)) {
    1433. 

  1433. 							unset( $this->_fileDataArray[$hash][$id] );
    1434. 

  1434. 							continue;
    1435. 

  1435. 						}
    1436. 

  1436. 

  1437. 						$this->_fileDataArray[$hash][$id] = $matches[1] . ' ' . $args;
    1438. 

  1438. 					}
    1439. 

  1439. 

  1440.                 // remove all allow or deny commands
    1441. 

  1441.                 } else if (preg_match('/^\s*'.$recordId.'\s+from\s+.*$/i', $rec)) {
    1442. 

  1442.                     unset( $this->_fileDataArray[$hash][$id] );
    1443. 

  1443. 

  1444.                 } else if (preg_match('/^(\s*'.$recordId.')(.*)$/i', $rec, $matches)) {
    1445. 

  1445. 

  1446. 					if (!isset($data)) {
    1447. 

  1447. 						unset( $this->_fileDataArray[$hash][$id] );
    1448. 

  1448. 						continue;
    1449. 

  1449. 					}
    1450. 

  1450. 

  1451. 					if ($recordId == 'authname') {
    1452. 

  1452. 						$this->_fileDataArray[$hash][$id] = $matches[1] . ' "' . addSlashes($args) . '"';
    1453. 

  1453. 					} else if ($recordId == 'authuserfile') {
    1454. 

  1454. 						$this->_fileDataArray[$hash][$id] = $matches[1] . ' ' . $args;
    1455. 

  1455. 					} else if ($recordId == 'authtype') {
    1456. 

  1456. 						$this->_fileDataArray[$hash][$id] = $matches[1] . ' basic';
    1457. 

  1457.                     } else if ($recordId == 'order') {
    1458. 

  1458.                         $this->_fileDataArray[$hash][$id] = 'Order ' . ($args=='deny' ? 'Allow,Deny' : 'Deny,Allow');
    1459. 

  1459. 					}
    1460. 

  1460. 

  1461. 					$found = true;
    1462. 

  1462. 					break;
    1463. 

  1463.                 }
    1464. 

  1464. 			}
    1465. 

  1465.             
    1466. 

  1466.             // special case: allow or deny commands
    1467. 

  1467.             if ($recordId == 'allow' || $recordId == 'deny') {
    1468. 

  1468.                 foreach($data as $item) {
    1469. 

  1469.                     $this->_fileDataArray[$hash][] = $recordId . ' from ' . $item;
    1470. 

  1470.                 }
    1471. 

  1471.             }
    1472. 

  1472.             
    1473. 

  1473. 			return $found;
    1474. 

  1474. 		}
    1475. 

  1475. 

  1476.         // other types
    1477. 

  1477. 		foreach ($this->_fileDataArray[$hash] as $id=>$rec) {
    1478. 

  1478. 			if (is_null($recordId) || isset($rec['name']) && strcmp($recordId, $rec['name'])==0) {
    1479. 

  1479. 

  1480. 				if (is_null($data)) {
    1481. 

  1481. 					unset( $this->_fileDataArray[$hash][$id] );
    1482. 

  1482. 

  1483. 				} else if (is_array($data)) {
    1484. 

  1484. 					foreach ($data as $k=>$v) {
    1485. 

  1485. 						$this->_fileDataArray[$hash][$id][$k] = $v;
    1486. 

  1486. 					}
    1487. 

  1487. 				}
    1488. 

  1488. 

  1489. 				break;
    1490. 

  1490. 			}
    1491. 

  1491. 		}
    1492. 

  1492. 

  1493. 		return true;
    1494. 

  1494. 	}
    1495. 

  1495. 

  1496. 	/**
    1497. 

  1497.      * Update file record
    1498. 

  1498.      *
    1499. 

  1499.      * @access public
    1500. 

  1500.      * @param string $filetype
    1501. 

  1501.      * @param array $data
    1502. 

  1502.      * @param string $curRecordId
    1503. 

  1503.      * @param bool|null $saveFile
    1504. 

  1504.      * @param bool|null $saveForce
    1505. 

  1505.      * @return bool
    1506. 

  1506.      */
    1507. 

  1507. 	function setRecordByType( $filetype, $curRecordId, $data, $saveFile=false, $saveForce=false )
    1508. 

  1508. 	{
    1509. 

  1509. 		$path = $this->getPathByType( $filetype );
    1510. 

  1510. 		if (false == $path) {
    1511. 

  1511. 			$this->setError( $this->W('NOTDEFINED', $filetype) );
    1512. 

  1512. 			return false;
    1513. 

  1513. 		}
    1514. 

  1514. 		$hash = md5( $path );
    1515. 

  1515. 

  1516. 		if (false != $this->isRecordByType( $filetype, $curRecordId )) {
    1517. 

  1517. 			// replaceing
    1518. 

  1518. 			$this->updateRecordByType( $filetype, $curRecordId, $data );
    1519. 

  1519. 

  1520. 		} else if (is_array($data)) {
    1521. 

  1521. 

  1522. 			// inserting
    1523. 

  1523. 			if ($filetype == 'accessfile') {
    1524. 

  1524. 				$args = isset($data[$curRecordId]) ? $data[$curRecordId] : '';
    1525. 

  1525. 				$hasAddedBy = false;
    1526. 

  1526. 

  1527. 				foreach( $this->_fileDataArray[$hash] as $rec) {
    1528. 

  1528. 					if (preg_match('/^# added by authman/i', $rec)) {
    1529. 

  1529. 						$hasAddedBy = true;
    1530. 

  1530. 					}
    1531. 

  1531. 				}
    1532. 

  1532. 				if (!$hasAddedBy) {
    1533. 

  1533. 					$this->_fileDataArray[$hash][] = "# Added By Authman";
    1534. 

  1534. 				}
    1535. 

  1535. 

  1536. 				if ($curRecordId == 'authname') {
    1537. 

  1537. 					$this->_fileDataArray[$hash][] = 'AuthName "' . $args . '"';
    1538. 

  1538. 				} else if ($curRecordId == 'authtype') {
    1539. 

  1539. 					$this->_fileDataArray[$hash][] = 'AuthType ' . $args;
    1540. 

  1540. 				} else if ($curRecordId == 'require') {
    1541. 

  1541. 					$this->_fileDataArray[$hash][] = 'require ' . $args;
    1542. 

  1542. 				} else if ($curRecordId == 'authuserfile') {
    1543. 

  1543. 					$this->_fileDataArray[$hash][] = 'AuthUserFile ' . $args;
    1544. 

  1544. 				} else if ($curRecordId == 'errordocument401') {
    1545. 

  1545. 					$this->_fileDataArray[$hash][] = 'ErrorDocument 401 ' . $args;
    1546. 

  1546.                 } else if ($curRecordId == 'order') {
    1547. 

  1547.                     $this->_fileDataArray[$hash][] = 'Order ' . ($args=='deny' ? 'Allow,Deny' : 'Deny,Allow');
    1548. 

  1548.                 } else if ($curRecordId == 'allow' || $curRecordId == 'deny') {
    1549. 

  1549.                     foreach($data as $item) {
    1550. 

  1550.                         $this->_fileDataArray[$hash][] = $curRecordId . ' from ' . $item;
    1551. 

  1551.                     }
    1552. 

  1552. 				} else {
    1553. 

  1553. 					$this->_fileDataArray[$hash][] = '# '. $curRecordId . ' "' . $args . '"';
    1554. 

  1554. 				}
    1555. 

  1555. 

  1556. 				// other files types
    1557. 

  1557. 			} else {
    1558. 

  1558. 				$this->_fileDataArray[$hash][] = $data;
    1559. 

  1559. 			}
    1560. 

  1560. 		}
    1561. 

  1561. 

  1562. 		if ($saveFile) {
    1563. 

  1563. 			$strerr = null;
    1564. 

  1564. 

  1565. 			// save parsed data
    1566. 

  1566. 			if (false == $this->saveFileByType( $filetype, false )) {
    1567. 

  1567. 				$strerr = $this->getError();
    1568. 

  1568. 			}
    1569. 

  1569. 

  1570. 			$this->readFileByType( $filetype );
    1571. 

  1571. 

  1572. 			if (isset($strerr)) {
    1573. 

  1573. 				$this->setError($strerr);
    1574. 

  1574. 				return false;
    1575. 

  1575. 			}
    1576. 

  1576. 		}
    1577. 

  1577. 

  1578. 		return true;
    1579. 

  1579. 	}
    1580. 

  1580. 

  1581. 	/**
    1582. 

  1582.      * Clear all records from the file
    1583. 

  1583.      *
    1584. 

  1584.      * @access public
    1585. 

  1585.      * @param string $filetype
    1586. 

  1586.      * @param bool|null $saveFile
    1587. 

  1587.      * @return bool
    1588. 

  1588.      */
    1589. 

  1589. 	function clearAllRecordsByType( $filetype, $saveFile=false )
    1590. 

  1590. 	{
    1591. 

  1591. 		$path = $this->getPathByType( $filetype );
    1592. 

  1592. 		if (false == $path) {
    1593. 

  1593. 			$this->setError( $this->W('NOTDEFINED', $filetype) );
    1594. 

  1594. 			return false;
    1595. 

  1595. 		}
    1596. 

  1596. 		$hash = md5( $path );
    1597. 

  1597. 

  1598. 		$this->_fileDataArray[$hash] = array();
    1599. 

  1599. 

  1600. 		if ($saveFile) {
    1601. 

  1601. 			$strerr = null;
    1602. 

  1602. 

  1603. 			// save _RAW_ data
    1604. 

  1604. 			if (false == $this->saveFileByType( $filetype, true, '' )) {
    1605. 

  1605. 				$strerr = $this->getError();
    1606. 

  1606. 			}
    1607. 

  1607. 

  1608. 			$this->readFileByType( $filetype );
    1609. 

  1609. 

  1610. 			if (isset($strerr)) {
    1611. 

  1611. 				$this->setError($strerr);
    1612. 

  1612. 				return false;
    1613. 

  1613. 			}
    1614. 

  1614. 		}
    1615. 

  1615. 

  1616. 		return true;
    1617. 

  1617. 	}
    1618. 

  1618. 

  1619. 	function getAccessRuleByType( $filetype, $ruleName )
    1620. 

  1620. 	{
    1621. 

  1621. 		$hash = md5( $this->getPathByType( $filetype ) );
    1622. 

  1622. 

  1623. 		if (!isset($this->_accessRulesArray[$hash])) {
    1624. 

  1624. 			return false;
    1625. 

  1625. 		}
    1626. 

  1626. 

  1627. 		$ruleName = strtolower($ruleName);
    1628. 

  1628. 

  1629. 		if (!isset($this->_accessRulesArray[$hash][$ruleName])) {
    1630. 

  1630. 			return false;
    1631. 

  1631. 		}
    1632. 

  1632. 

  1633. 		return $this->_accessRulesArray[$hash][$ruleName];
    1634. 

  1634. 	}
    1635. 

  1635. 

  1636. 	/***************************************************************************
    1637. 

  1637. 	*
    1638. 

  1638. 	**************************************************************************/
    1639. 

  1639. 

  1640.     /**
    1641. 

  1641.      * Get template list
    1642. 

  1642.      *
    1643. 

  1643.      * @access public
    1644. 

  1644.      * @return array
    1645. 

  1645.      */
    1646. 

  1646. 	function getTemplates()
    1647. 

  1647. 	{
    1648. 

  1648. 		$this->_tplsArray = array();
    1649. 

  1649. 

  1650. 		$tplPath = $this->_basePath . DIRECTORY_SEPARATOR . 'templates';
    1651. 

  1651. 		$dh = @opendir( $tplPath );
    1652. 

  1652. 		if (false == $dh) {
    1653. 

  1653. 			return $this->_tplsArray;
    1654. 

  1654. 		}
    1655. 

  1655. 

  1656. 		while ($e = readdir($dh)) {
    1657. 

  1657. 			if ($e == '.' || $e == '..') {
    1658. 

  1658. 				continue;
    1659. 

  1659. 			}
    1660. 

  1660. 

  1661. 			if (!preg_match('/^(.+)\.tpl(\.dist)?$/i', $e, $matches)) {
    1662. 

  1662. 				continue;
    1663. 

  1663. 			}
    1664. 

  1664. 

  1665. 			$tplId = $matches[1];
    1666. 

  1666.             $tplDefault = isset($matches[2]) && $matches[2] == '.dist';
    1667. 

  1667.         
    1668. 

  1668. 			$filePath = $tplPath . DIRECTORY_SEPARATOR . $e;
    1669. 

  1669. 			$fh = @fopen($filePath, 'r');
    1670. 

  1670. 			if (false == $fh) {
    1671. 

  1671. 				continue;
    1672. 

  1672. 			}
    1673. 

  1673. 

  1674. 			$data = array();
    1675. 

  1675. 			while ($l = fgets($fh)) {
    1676. 

  1676. 				$data[] = $l;
    1677. 

  1677. 			}
    1678. 

  1678. 			@fclose($fh);
    1679. 

  1679. 

  1680. 			$role = 'undefinied';
    1681. 

  1681. 			if (preg_match('/^(useradd|useredit|userdel|userfgt|userrcv|memberaa|memberdel|memberreq)$/i', $tplId, $matches)) {
    1682. 

  1682. 				$role = strtolower($matches[1]);
    1683. 

  1683. 			}
    1684. 

  1684. 

  1685. 			$tArray = array('path'=>$filePath,
    1686. 

  1686. 			                'id'=>$tplId,
    1687. 

  1687. 			                'role'=>$role,
    1688. 

  1688. 			                'name'=>trim($data[0]),
    1689. 

  1689. 			                'type'=>( trim($data[1]) == 'html' ? 'html' : 'plaintext' ),
    1690. 

  1690. 			                'subject'=>trim($data[2]),
    1691. 

  1691. 			                'contents'=>join('', array_slice($data, 3)) );
    1692. 

  1692.                             
    1693. 

  1693.             if (!$tplDefault || !array_key_exists($tplId, $this->_tplsArray)) {
    1694. 

  1694. 			    $this->_tplsArray[ $tplId ] = $tArray;
    1695. 

  1695.             }
    1696. 

  1696. 		}
    1697. 

  1697. 

  1698. 		closedir($dh);
    1699. 

  1699. 

  1700. 		return $this->_tplsArray;
    1701. 

  1701. 	}
    1702. 

  1702. 

  1703. 	function getTemplateById( $id )
    1704. 

  1704. 	{
    1705. 

  1705. 		if (!isset($id) || $id=='') {
    1706. 

  1706. 			return false;
    1707. 

  1707. 		}
    1708. 

  1708. 

  1709. 		$templates = $this->getTemplates();
    1710. 

  1710. 

  1711. 		if (false==$templates || !isset($templates[$id])) {
    1712. 

  1712. 			return false;
    1713. 

  1713. 		}
    1714. 

  1714. 		return $templates[$id];
    1715. 

  1715. 	}
    1716. 

  1716. 

  1717. 	function getTemplateByRole( $role )
    1718. 

  1718. 	{
    1719. 

  1719. 		$res = false;
    1720. 

  1720. 

  1721. 		$templates = $this->getTemplates();
    1722. 

  1722. 		foreach($templates as $id=>$tpl) {
    1723. 

  1723. 			if ($tpl['role'] == $role) {
    1724. 

  1724. 				$res = $tpl;
    1725. 

  1725. 			}
    1726. 

  1726. 		}
    1727. 

  1727. 

  1728. 		return $res;
    1729. 

  1729. 	}
    1730. 

  1730. 

  1731. 	function saveTemplateAs( $id, $data, $force=false )
    1732. 

  1732. 	{
    1733. 

  1733. 		if (!isset($id) || $id=='' || !is_array($data)) {
    1734. 

  1734. 			$this->setError( $this->E('INVALIDREQUEST') );
    1735. 

  1735. 			return false;
    1736. 

  1736. 		}
    1737. 

  1737. 

  1738. 		// Saving in DEMO mode is disabled
    1739. 

  1739. 		if ($this->isDemo()) {
    1740. 

  1740. 			$this->setError( $this->W('DEMOISON') );
    1741. 

  1741. 			return false;
    1742. 

  1742. 		}
    1743. 

  1743. 

  1744. 		$path = $this->_basePath . DIRECTORY_SEPARATOR . 'templates';
    1745. 

  1745. 

  1746. 		if (!is_dir($path)) {
    1747. 

  1747. 			if (false == @mkdir($path, 0755)) {
    1748. 

  1748. 				$this->setError( $this->E('MKDIRFAILED', $path) );
    1749. 

  1749. 				return false;
    1750. 

  1750. 			}
    1751. 

  1751. 

  1752. 			$denyPath = $path . DIRECTORY_SEPARATOR
    1753. 

  1753. 			          . $this->_configArray['access_file'];
    1754. 

  1754. 			$this->writeDenyFile( $denyPath );
    1755. 

  1755. 		}
    1756. 

  1756. 

  1757. 		$id = $this->getNormalizedPath( $id );
    1758. 

  1758. 		$filePath = $path . $id . '.tpl';
    1759. 

  1759. 

  1760. 		if (is_file($filePath) && false == $force) {
    1761. 

  1761. 			$this->setError( $this->E('FILEEXISTS', $filePath) );
    1762. 

  1762. 			return false;
    1763. 

  1763. 		}
    1764. 

  1764. 

  1765. 		if (is_file($filePath) && !is_writable($filePath)) {
    1766. 

  1766. 			$this->setError( $this->W('FILEWRITABLE') );
    1767. 

  1767. 			return false;
    1768. 

  1768. 		}
    1769. 

  1769. 

  1770. 		$fh = @fopen($filePath, 'w');
    1771. 

  1771. 		if (false == $fh) {
    1772. 

  1772. 			$this->setError( $this->E('FILEOPENFAILED', $filePath) );
    1773. 

  1773. 			return false;
    1774. 

  1774. 		}
    1775. 

  1775. 

  1776. 		@fwrite($fh, $data['name'] . "\n");
    1777. 

  1777. 		@fwrite($fh, $data['type'] . "\n");
    1778. 

  1778. 		@fwrite($fh, $data['subject'] . "\n");
    1779. 

  1779. 		@fwrite($fh, $data['contents'] . "\n");
    1780. 

  1780. 

  1781. 		@fclose($fh);
    1782. 

  1782. 

  1783. 		return true;
    1784. 

  1784. 	}
    1785. 

  1785. 

  1786.     /**
    1787. 

  1787.     * @desc Delete e-mail template
    1788. 

  1788.     * 
    1789. 

  1789.     * @access public
    1790. 

  1790.     * @param string $id
    1791. 

  1791.     * @param bool $force
    1792. 

  1792.     * @return bool
    1793. 

  1793.     */
    1794. 

  1794. 	function deleteTemplate( $id, $force=false )
    1795. 

  1795. 	{
    1796. 

  1796. 		// Deleting in DEMO mode is disabled
    1797. 

  1797. 		if ($this->isDemo()) {
    1798. 

  1798. 			$this->setError( $this->W('DEMOISON') );
    1799. 

  1799. 			return false;
    1800. 

  1800. 		}
    1801. 

  1801. 

  1802. 		// Check if
    1803. 

  1803. 		$template = $this->getTemplateById( $id );
    1804. 

  1804. 		if (false == $template) {
    1805. 

  1805. 			$this->setError( $this->E('TPLNOTFOUND', $id) );
    1806. 

  1806. 			return false;
    1807. 

  1807. 		}
    1808. 

  1808. 

  1809. 		if ($force == false) {
    1810. 

  1810. 			if ($template['role'] != 'undefinied') {
    1811. 

  1811. 				$this->setError( $this->E('TPLISSYSTEM') );
    1812. 

  1812. 				return false;
    1813. 

  1813. 			}
    1814. 

  1814. 		}
    1815. 

  1815. 

  1816. 		$path = $this->_basePath . DIRECTORY_SEPARATOR . 'templates';
    1817. 

  1817. 		$filePath = $path . DIRECTORY_SEPARATOR . $id . '.tpl';
    1818. 

  1818. 

  1819. 		if (!is_file($filePath)) {
    1820. 

  1820. 			$this->setError( $this->E('NOSUCHFILE', $filePath) );
    1821. 

  1821. 			return false;
    1822. 

  1822. 		}
    1823. 

  1823. 

  1824. 		if (false == @unlink($filePath)) {
    1825. 

  1825. 			$this->setError( $this->E('FILEDELFAILED', $filePath) );
    1826. 

  1826. 			return false;
    1827. 

  1827. 		}
    1828. 

  1828. 

  1829. 		return true;
    1830. 

  1830. 	}
    1831. 

  1831. 

  1832. 	/***************************************************************************
    1833. 

  1833. 	* E-mail routes
    1834. 

  1834. 	**************************************************************************/
    1835. 

  1835. 

  1836. 	/**
    1837. 

  1837. 	 * Send e-mail to the user
    1838. 

  1838. 	 *
    1839. 

  1839.      * @access public
    1840. 

  1840. 	 * @param string|array $templateId
    1841. 

  1841. 	 * @param array $userArray
    1842. 

  1842. 	 * @return bool
    1843. 

  1843. 	 */
    1844. 

  1844. 	function sendMail( $templateId, $userArray )
    1845. 

  1845. 	{
    1846. 

  1846. 		if (false == $this->hasFeature('PHPMailer')) {
    1847. 

  1847. 			$this->setError(  'SendMail: ' . $this->W('SENDMAILFAIL_INSTALLPHPMAILER'));
    1848. 

  1848. 			return false;
    1849. 

  1849. 		}
    1850. 

  1850. 

  1851. 		// no spam here
    1852. 

  1852. 		if ($this->isDemo()) {
    1853. 

  1853. 			$this->setError( 'SendMail: ' . $this->W('DEMOISON') );
    1854. 

  1854. 			return false;
    1855. 

  1855. 		}
    1856. 

  1856. 

  1857. 		if (is_array($templateId)) {
    1858. 

  1858. 			$tplArray = $templateId;
    1859. 

  1859. 			$templateId = 'manual';
    1860. 

  1860. 		} else {
    1861. 

  1861. 			$tplArray = $this->getTemplateById( $templateId );
    1862. 

  1862. 			if (false == $tplArray) {
    1863. 

  1863. 				$this->setError( 'SendMail: ' . $this->E('INCORRECTARGS') . ' [template]' );
    1864. 

  1864. 				return false;
    1865. 

  1865. 			}
    1866. 

  1866. 		}
    1867. 

  1867. 

  1868. 		if (!isset($userArray['email']) || $userArray['email'] == '') {
    1869. 

  1869. 			$this->setError( 'SendMail: ' . $this->E('INCORRECTARGS') . ' [email]' );
    1870. 

  1870. 			return false;
    1871. 

  1871. 		}
    1872. 

  1872. 

  1873. 		$args = array('PROTECTEDURL'=> $this->getUrlByType('protected', true),
    1874. 

  1874. 		              'BASEURL'     => $this->getUrlByType('base', true),
    1875. 

  1875. 	 	              'MEMBERURL'   => $this->getUrlByType('login', true),
    1876. 

  1876. 		              'REMOTEADDR'  => $_SERVER['REMOTE_ADDR'],
    1877. 

  1877. 		              'DATETIME'    => gmdate('D dS \of M Y H:i:s e') );
    1878. 

  1878. 

  1879. 		list($admin) = $this->getRecordsByType( 'authadminfile', null, 1, 0 );
    1880. 

  1880. 

  1881. 		$args['ADMINREALNAME'] = $admin['info'] != '' ? $admin['info'] : "Administrator";
    1882. 

  1882. 		$args['ADMINEMAIL']    = $admin['email'] != '' ? $admin['email'] : "postmaster@localhost";
    1883. 

  1883. 

  1884. 		foreach($userArray as $k=>$v) {
    1885. 

  1885. 			$kk = 'USER' . strtoupper($k);
    1886. 

  1886. 			$args[$kk] = $v;
    1887. 

  1887. 		}
    1888. 

  1888. 		$args['USERREALNAME'] = isset($userArray['info']) && $userArray['info'] != ''
    1889. 

  1889. 		? $userArray['info'] : $userArray['name'];
    1890. 

  1890. 		$args['USERPASSWORD'] = isset($userArray['pass_raw']) && $userArray['pass_raw'] != '' ? $userArray['pass_raw'] : '[ENCRYPTED: '. $userArray['pass'] .']';
    1891. 

  1891. 

  1892. 		$subject = $tplArray['subject'];
    1893. 

  1893. 		$body    = $tplArray['contents'];
    1894. 

  1894. 

  1895. 		foreach(array('subject', 'body') as $vname) {
    1896. 

  1896. 			foreach( $args as $k=>$v ) {
    1897. 

  1897. 				$$vname = str_replace('%'.$k.'%', $v, $$vname);
    1898. 

  1898. 			}
    1899. 

  1899. 		}
    1900. 

  1900. 

  1901. 		// sending
    1902. 

  1902. 		include_once( $this->getPathByType('PHPMailer') );
    1903. 

  1903. 

  1904. 		$mail = new PHPMailer();
    1905. 

  1905. 		$mail->CharSet = "UTF-8";
    1906. 

  1906. 

  1907. 		// from administrator
    1908. 

  1908. 		$mail->FromName   = $args['ADMINREALNAME'];
    1909. 

  1909. 		$mail->From       = $args['ADMINEMAIL'];
    1910. 

  1910. 		$mail->AddReplyTo($args['ADMINEMAIL'], $args['ADMINREALNAME']);
    1911. 

  1911. 

  1912. 		$isHtml = $tplArray['type'] == 'html';
    1913. 

  1913. 		if ($templateId=='memberdel' || $templateId=='memberaa') {
    1914. 

  1914. 			$mail->AddAddress($args['ADMINEMAIL'], $args['ADMINREALNAME']);
    1915. 

  1915. 		} else {
    1916. 

  1916. 			if (!isset($args['USEREMAIL']) || $args['USEREMAIL']=='') {
    1917. 

  1917. 				if ($isHtml) {
    1918. 

  1918. 					$body = '<p><strong>USER ' . $userArray['name'] . ' have not E-mail address</strong></p><br />' . $body;
    1919. 

  1919. 				} else {
    1920. 

  1920. 					$body = 'USER ' . $userArray['name'] . " have not E-mail address\n" . $body;
    1921. 

  1921. 				}
    1922. 

  1922. 				$mail->AddAddress($args['ADMINEMAIL'], $args['ADMINREALNAME']);
    1923. 

  1923. 

  1924. 			} else {
    1925. 

  1925. 				$mail->AddAddress($args['USEREMAIL'], $args['USERREALNAME']);
    1926. 

  1926. 			}
    1927. 

  1927. 		}
    1928. 

  1928. 

  1929. 		$mail->Subject = $subject;
    1930. 

  1930. 		$mail->Body    = $body;
    1931. 

  1931. 

  1932. 		if ($isHtml) {
    1933. 

  1933. 			$mail->IsHTML( true );
    1934. 

  1934. 			$mail->AltBody = "To view the message, please use an HTML compatible email viewer!";
    1935. 

  1935. 		}
    1936. 

  1936. 

  1937. 		if (false == $mail->Send()) {
    1938. 

  1938. 			$this->setError(  'SendMail: ' . $mail->ErrorInfo );
    1939. 

  1939. 			return false;
    1940. 

  1940. 		}
    1941. 

  1941. 

  1942. 		return true;
    1943. 

  1943. 	}
    1944. 

  1944. 

  1945. 	function hasFeature( $feature )
    1946. 

  1946. 	{
    1947. 

  1947. 		$ln = strtolower($feature);
    1948. 

  1948. 

  1949. 		if ($ln == 'phpmailer' || $ln == 'tinymcejs' || $ln = 'magpierss') {
    1950. 

  1950. 			$filePath = $this->getPathByType( $ln );
    1951. 

  1951. 

  1952. 			if (!is_file($filePath) || !is_readable($filePath)) {
    1953. 

  1953. 				return false;
    1954. 

  1954. 			}
    1955. 

  1955. 			return true;
    1956. 

  1956. 		}
    1957. 

  1957. 

  1958. 		return true;
    1959. 

  1959. 	}
    1960. 

  1960. 

  1961. 	/***************************************************************************
    1962. 

  1962. 	* Messages/Warnings/Errors Reporting
    1963. 

  1963. 	**************************************************************************/
    1964. 

  1964. 

  1965. 	/**
    1966. 

  1966.      * Messages wrapper
    1967. 

  1967.      *
    1968. 

  1968.      * @access public
    1969. 

  1969.      * @return string
    1970. 

  1970.      */
    1971. 

  1971. 	function M()
    1972. 

  1972. 	{
    1973. 

  1973. 		$args = func_get_args();
    1974. 

  1974. 		return $this->getMessage( 'messages', $args );
    1975. 

  1975. 	}
    1976. 

  1976. 

  1977. 	/**
    1978. 

  1978.      * Warnings wrapper
    1979. 

  1979.      *
    1980. 

  1980.      * @access public
    1981. 

  1981.      * @return string
    1982. 

  1982.      */
    1983. 

  1983. 	function W()
    1984. 

  1984. 	{
    1985. 

  1985. 		$args = func_get_args();
    1986. 

  1986. 		return $this->getMessage( 'warnings', $args );
    1987. 

  1987. 	}
    1988. 

  1988. 

  1989. 	/**
    1990. 

  1990.      * Errors wrapper
    1991. 

  1991.      *
    1992. 

  1992.      * @access public
    1993. 

  1993.      * @return string
    1994. 

  1994.      */
    1995. 

  1995. 	function E()
    1996. 

  1996. 	{
    1997. 

  1997. 		$args = func_get_args();
    1998. 

  1998. 		return $this->getMessage( 'errors', $args );
    1999. 

  1999. 	}
    2000. 

  2000. 

  2001. 	/**
    2002. 

  2002.      * Return formated message 
    2003. 

  2003.      *
    2004. 

  2004.      * @access private
    2005. 

  2005.      * @param string $type 
    2006. 

  2006.      * @param array $args
    2007. 

  2007.      * @return string
    2008. 

  2008.      */
    2009. 

  2009. 	function getMessage( $type, $args )
    2010. 

  2010. 	{
    2011. 

  2011. 		$fmt = strtoupper(array_shift($args));
    2012. 

  2012. 

  2013. 		if (isset($this->_langArray[$type]) && isset($this->_langArray[$type][$fmt])) {
    2014. 

  2014. 			$s = vsprintf( $this->_langArray[$type][$fmt], $args);
    2015. 

  2015. 		} else {
    2016. 

  2016. 			$s = '[' . $type . ': ' . $fmt;
    2017. 

  2017. 			if (count($args)) {
    2018. 

  2018. 				$s .= ':';
    2019. 

  2019. 				foreach ($args as $t) {
    2020. 

  2020. 					$s .= ' ' . $t;
    2021. 

  2021. 				}
    2022. 

  2022. 			}
    2023. 

  2023. 			$s .= ']';
    2024. 

  2024. 		}
    2025. 

  2025. 

  2026. 		return $s;
    2027. 

  2027. 	}
    2028. 

  2028. 

  2029. 	/**
    2030. 

  2030.      * Set error message
    2031. 

  2031.      *
    2032. 

  2032.      * @access protected
    2033. 

  2033.      * @param string|null
    2034. 

  2034.      */
    2035. 

  2035. 	function setError( $error=null )
    2036. 

  2036. 	{
    2037. 

  2037. 		$this->_error = $error;
    2038. 

  2038. 

  2039. 		if (!isset($error)) {
    2040. 

  2040. 			return;
    2041. 

  2041. 		}
    2042. 

  2042. 

  2043. 		if (isset($php_errormsg))
    2044. 

  2044. 		$this->_error .= ': ' . $php_errormsg;
    2045. 

  2045. 

  2046. 		return;
    2047. 

  2047. 	}
    2048. 

  2048. 

  2049. 	/**
    2050. 

  2050.      * Return true if error string is set
    2051. 

  2051.      *
    2052. 

  2052.      * @access public
    2053. 

  2053.      * @return bool
    2054. 

  2054.      */
    2055. 

  2055. 	function isError()
    2056. 

  2056. 	{
    2057. 

  2057. 		return $this->_error == '' ? false : true;
    2058. 

  2058. 	}
    2059. 

  2059. 

  2060. 	/**
    2061. 

  2061.      * Get error message
    2062. 

  2062.      *
    2063. 

  2063.      * @access public
    2064. 

  2064.      * @return string
    2065. 

  2065.      */
    2066. 

  2066. 	function getError()
    2067. 

  2067. 	{
    2068. 

  2068. 		if (!isset(
    2069.

Large files files are truncated, but you can click here to view the full file