PageRenderTime 42ms CodeModel.GetById 19ms RepoModel.GetById 0ms app.codeStats 0ms

/instal/functions.php

https://bitbucket.org/nexea/x00n
PHP | 157 lines | 122 code | 30 blank | 5 comment | 22 complexity | 012101d5356b8990c38492e0d63d79d1 MD5 | raw file
Possible License(s): GPL-2.0 
    

  1. <?php

    2. 

  2. error_reporting(E_ALL ^ E_NOTICE); 

    3. 

  3. 

    4. 

  4. function update_config()

    5. 

  5. {

    6. 

  6. 	

    7. 

  7. 	$config_data = '<?php'."\n\n";

    8. 

  8. 	$config_data .= '$mysql_host = \'' . $_POST['server'] . '\';' . "\n";

    9. 

  9. 	$config_data .= '$mysql_db = \'' . $_POST['dbname'] . '\';' . "\n";

    10. 

  10. 	$config_data .= '$mysql_user = \'' . $_POST['dbuser'] . '\';' . "\n";

    11. 

  11. 	$config_data .= '$mysql_pass = \'' . $_POST['dbpass'] . '\';' . "\n\n";

    12. 

  12. 	$config_data .= 'define(\'x00n_INSTALLED\', true);'."\n\n";	

    13. 

  13. 	$config_data .= '?' . '>'; // Done this to prevent highlighting editors getting confused!

    14. 

  14. 	if(!($fp = fopen('../config.inc.php', 'w')))

    15. 

  15. 	{

    16. 

  16. 		die('Make config.inc.php writable -> 666');

    17. 

  17. 	}

    18. 

  18. 	else

    19. 

  19. 	{

    20. 

  20. 			$result = @fputs($fp, $config_data, strlen($config_data));

    21. 

  21. 

    22. 

  22. 			@fclose($fp);

    23. 

  23. 	}

    24. 

  24. 	

    25. 

  25. 	if( !mysql_connect($_POST['server'],$_POST['dbuser'],$_POST['dbpass']) )

    26. 

  26. 	{

    27. 

  27. 		die('Cant connect to databaseserver');

    28. 

  28. 	}

    29. 

  29. 	if( !mysql_select_db($_POST['dbname']) )

    30. 

  30. 	{

    31. 

  31. 		die('Cant select database');

    32. 

  32. 	}

    33. 

  33. }

    34. 

  34.  

    35. 

  35. 	

    36. 

  36. function basic_query()

    37. 

  37. {

    38. 

  38. 	

    39. 

  39. 	$sql_lines = implode(' ', file(dirname(__FILE__) . '/install.sql'));

    40. 

  40. 	$sql_lines = explode("\n", $sql_lines);

    41. 

  41. 	

    42. 

  42. 	include('../config.inc.php');

    43. 

  43. 	

    44. 

  44. 	if( !mysql_connect($mysql_host,$mysql_user,$mysql_pass) )

    45. 

  45. 	{

    46. 

  46. 		die('Cant connect to databaseserver');

    47. 

  47. 	}

    48. 

  48. 	if( !mysql_select_db($mysql_db) )

    49. 

  49. 	{

    50. 

  50. 		die('Cant select database');

    51. 

  51. 	}

    52. 

  52. 

    53. 

  53. 	// Execute the SQL.

    54. 

  54. 	$current_statement = '';

    55. 

  55. 	$failures = array();

    56. 

  56. 	$exists = array();

    57. 

  57. 	foreach ($sql_lines as $count => $line)

    58. 

  58. 	{

    59. 

  59. 		// No comments allowed!

    60. 

  60. 		if (substr($line, 0, 1) != '#')

    61. 

  61. 			$current_statement .= "\n" . rtrim($line);

    62. 

  62. 

    63. 

  63. 		// Is this the end of the query string?

    64. 

  64. 		if (empty($current_statement) || (preg_match('~;[\s]*$~s', $line) == 0 && $count != count($sql_lines)))

    65. 

  65. 			continue;

    66. 

  66. 

    67. 

  67. 		// Does this table already exist?  If so, don't insert more data into it!

    68. 

  68. 		if (preg_match('~^\s*INSERT INTO ([^\s\n\r]+?)~', $current_statement, $match) != 0 && in_array($match[1], $exists))

    69. 

  69. 		{

    70. 

  70. 			$current_statement = '';

    71. 

  71. 			continue;

    72. 

  72. 		}

    73. 

  73. 

    74. 

  74. 		if (!mysql_query($current_statement))

    75. 

  75. 		{

    76. 

  76. 			$error_message = sqlerr($db_connection);

    77. 

  77. 

    78. 

  78. 			// Error 1050: Table already exists!

    79. 

  79. 			if (strpos($error_message, 'already exists') === false)

    80. 

  80. 				$failures[$count] = $error_message;

    81. 

  81. 			elseif (preg_match('~^\s*CREATE TABLE ([^\s\n\r]+?)~', $current_statement, $match) != 0)

    82. 

  82. 				$exists[] = $match[1];

    83. 

  83. 		}

    84. 

  84. 

    85. 

  85. 		$current_statement = '';

    86. 

  86. 	}

    87. 

  87. }

    88. 

  88. 	

    89. 

  89. function insert_administrator()

    90. 

  90. {

    91. 

  91. 	if( $_POST['adminpass'] != $_POST['adminpassconfirm'] )

    92. 

  92. 	{

    93. 

  93. 		die('error:  The Admin passwords do not match!');

    94. 

  94. 	}

    95. 

  95. 	

    96. 

  96. 	$username = $_POST['administratorName'];

    97. 

  97. 	$usermail = $_POST['adminemail'];

    98. 

  98. 	

    99. 

  99. 

    100. 

  100. 	

    101. 

  101. 	$secret = mksecret();

    102. 

  102. 	$wantpasshash = md5($secret . $_POST['adminpass'] . $secret);

    103. 

  103. 	$editsecret = mksecret();

    104. 

  104. 

    105. 

  105. 	$ret = mysql_query("INSERT INTO users (username, class, passhash, secret, editsecret, email, status, added) VALUES (" .

    106. 

  106. 		implode(",", array_map("sqlesc", array($username, 6, $wantpasshash, $secret, $editsecret, $usermail, 'confirmed'))) .

    107. 

  107. 		",'" . get_date_time() . "')");

    108. 

  108. 	

    109. 

  109. 	

    110. 

  110. }

    111. 

  111. 

    112. 

  112. function config()

    113. 

  113. {

    114. 

  114. 	$online = gmdate("Y-m-d");

    115. 

  115. 	$added = sqlesc(get_date_time());

    116. 

  116. 	mysql_query("INSERT INTO config (name,value) VALUES ('siteonline','true')");

    117. 

  117. 	mysql_query("INSERT INTO config (name,value) VALUES ('onlinesince','$online')");

    118. 

  118. 	mysql_query("INSERT INTO config (name,value) VALUES ('sitename','".$_POST['sitename']."')");

    119. 

  119. 	mysql_query("INSERT INTO config (name,value) VALUES ('domain','".$_POST['domain']."')");

    120. 

  120. 	mysql_query("INSERT INTO config (name,value) VALUES ('announce_url','".$_POST['announce']."')");

    121. 

  121. 	mysql_query("INSERT INTO config (name,value) VALUES ('sitemail','".$_POST['sitemail']."')");

    122. 

  122. 	mysql_query("INSERT INTO config (name,value) VALUES ('funds',0 )");	

    123. 

  123. 	mysql_query("INSERT INTO config (name,value) VALUES ('peerlimit',1000 )");

    124. 

  124. 	mysql_query("INSERT INTO news (userid,body,added) VALUES (1,'Welcome to your new TrakR installation. <br> If you ever have a problem please feel free to ask us at <a href=\"http://x00n.com\">x00n Dev Team</a>',$added)");

    125. 

  125. }

    126. 

  126. 	

    127. 

  127. function finale()

    128. 

  128. {

    129. 

  129. 	echo'Install Finished <BR>

    130. 

  130. 	Please remove the install directory or use chmod to make it non-accessible<BR>

    131. 

  131.     

    132. 

  132. 	You may login <BR>

    133. 

  133. 	<a href="../index.php">HERE</a>

    134. 

  134. 	';

    135. 

  135. }

    136. 

  136.   

    137. 

  137. function mksecret($len = 20) {

    138. 

  138.  $ret = "";

    139. 

  139.  for ($i = 0; $i < $len; $i++)

    140. 

  140.      $ret .= chr(mt_rand(0, 255));

    141. 

  141.  return $ret;

    142. 

  142. }

    143. 

  143. 

    144. 

  144. function get_date_time($timestamp = 0)

    145. 

  145. {

    146. 

  146.   if ($timestamp)

    147. 

  147.     return date("Y-m-d H:i:s", $timestamp);

    148. 

  148.   else

    149. 

  149.     return gmdate("Y-m-d H:i:s");

    150. 

  150. }

    151. 

  151. 

    152. 

  152. function sqlesc($x) {

    153. 

  153.  return "'".mysql_real_escape_string($x)."'";

    154. 

  154. }

    155. 

  155. 

    156. 

  156.   

    157. 

  157. ?>
    158.