Файл: public_html/install/install/install.php
Строк: 332
<?php
/**
* @package JohnCMS
* @link http://johncms.com
* @copyright Copyright (C) 2008-2011 JohnCMS Community
* @license LICENSE.txt (see attached file)
* @version VERSION.txt (see attached file)
* @author http://johncms.com/about
*/
defined('_IN_JOHNCMS') or die('Error: restricted access');
function show_errors($error)
{
global $lng;
if (!empty($error)) {
// Показываем ошибки
$out = '<div class="red" style="margin-bottom: 4px"><b>' . $lng['error'] . '</b>';
foreach ($error as $val) $out .= '<div>' . $val . '</div>';
$out .= '</div>';
return $out;
} else {
return false;
}
}
switch ($act) {
case 'final':
/*
-----------------------------------------------------------------
Установка завершена
-----------------------------------------------------------------
*/
functions::smileys(0, 2);
echo '<span class="st">' . $lng['check_1'] . '</span><br />' .
'<span class="st">' . $lng['database'] . '</span><br />' .
'<span class="st">' . $lng['site_settings'] . '</span>' .
'<h2 class="green">' . $lng['final'] . '</h2>' .
'<hr />';
echo '<h3 class="blue">' . $lng['congratulations'] . '</h3>' .
$lng['installation_completed'] . '<p><ul>' .
'<li><a href="../panel">' . $lng['admin_panel'] . '</a></li>' .
'<li><a href="../index.php">' . $lng['to_site'] . '</a></li>' .
'</ul></p>' .
$lng['final_warning'];
break;
case 'set':
/*
-----------------------------------------------------------------
Создание базы данных и Администратора системы
-----------------------------------------------------------------
*/
$db_check = false;
$db_error = array();
$site_error = array();
$admin_error = array();
// Принимаем данные формы
$db_host = isset($_POST['dbhost']) ? htmlentities(trim($_POST['dbhost'])) : 'localhost';
$db_name = isset($_POST['dbname']) ? htmlentities(trim($_POST['dbname'])) : 'johncms';
$db_user = isset($_POST['dbuser']) ? htmlentities(trim($_POST['dbuser'])) : 'root';
$db_pass = isset($_POST['dbpass']) ? htmlentities(trim($_POST['dbpass'])) : '';
$site_url = isset($_POST['siteurl']) ? preg_replace("#/$#", '', htmlentities(trim($_POST['siteurl']), ENT_QUOTES, 'UTF-8')) : 'http://' . $_SERVER["SERVER_NAME"];
$site_mail = isset($_POST['sitemail']) ? htmlentities(trim($_POST['sitemail']), ENT_QUOTES, 'UTF-8') : '@';
$admin_user = isset($_POST['admin']) ? trim($_POST['admin']) : 'admin';
$admin_pass = isset($_POST['password']) ? trim($_POST['password']) : '';
$demo = isset($_POST['demo']);
if (isset($_POST['check']) || isset($_POST['install'])) {
// Проверяем заполнение реквизитов базы данных
if (empty($db_host))
$db_error['host'] = $lng['error_db_host_empty'];
if (empty($db_name))
$db_error['name'] = $lng['error_db_name_empty'];
if (empty($db_user))
$db_error['user'] = $lng['error_db_user_empty'];
// Проверяем подключение к серверу базы данных
if (empty($db_error)) {
$con_err = false;
@mysql_connect($db_host, $db_user, $db_pass) or $con_err = mysql_error();
if ($con_err && stristr($con_err, 'no such host'))
$db_error['host'] = $lng['error_db_host'];
elseif ($con_err && stristr($con_err, 'access denied for user'))
$db_error['access'] = $lng['error_db_user'];
elseif ($con_err)
$db_error['unknown'] = $lng['error_db_unknown'];
}
// Проверяем наличие базы данных
if (empty($db_error) && @mysql_select_db($db_name) == false)
$db_error['name'] = $lng['error_db_name'];
if (empty($db_error))
$db_check = true;
@mysql_close();
}
if ($db_check && isset($_POST['install'])) {
// Проверяем URL сайта
if (empty($site_url))
$site_error['url'] = $lng['error_siteurl_empty'];
// Проверяем ник Админа
if (empty($admin_user))
$admin_error['admin'] = $lng['error_admin_empty'];
if (mb_strlen($admin_user) < 2 || mb_strlen($admin_user) > 15)
$admin_error['admin'] = $lng['error_admin_lenght'];
if (preg_match("/[^dA-Za-z-@*()?!~_=[]]+/", $admin_user))
$admin_error['admin'] = $lng['error_nick_symbols'];
// Проверяем пароль Админа
if (empty($admin_pass))
$admin_error['pass'] = $lng['error_password_empty'];
if (mb_strlen($admin_pass) < 5 || mb_strlen($admin_pass) > 10)
$admin_error['pass'] = $lng['error_password_lenght'];
if (preg_match("/[^dA-Za-z]+/", $admin_pass))
$admin_error['pass'] = $lng['error_pass_symbols'];
if ($db_check && empty($site_error) && empty($admin_error)) {
// Создаем системный файл db.php
$dbfile = "<?phprnrn" .
"defined('_IN_JOHNCMS') or die ('Error: restricted access');rnrn" .
'$db_host = ' . "'$db_host';rn" .
'$db_name = ' . "'$db_name';rn" .
'$db_user = ' . "'$db_user';rn" .
'$db_pass = ' . "'$db_pass';";
if (!file_put_contents('../incfiles/db.php', $dbfile)) {
echo 'ERROR: Can not write db.php</body></html>';
exit;
}
// Соединяемся с базой данных
$connect = mysql_connect($db_host, $db_user, $db_pass) or die('ERROR: cannot connect to DB server</body></html>');
mysql_select_db($db_name) or die('ERROR: cannot select DB</body></html>');
mysql_query("SET NAMES 'utf8'", $connect);
// Заливаем базу данных
$sql = install::parse_sql(MODE . '/install.sql');
if (!empty($sql)) {
foreach ($sql as $val) echo $val . '<br />';
echo '</body></html>';
exit;
}
// Записываем системные настройки
mysql_query("UPDATE `cms_settings` SET `val`='$language' WHERE `key`='lng'");
mysql_query("UPDATE `cms_settings` SET `val`='" . mysql_real_escape_string($site_url) . "' WHERE `key`='homeurl'");
mysql_query("UPDATE `cms_settings` SET `val`='" . mysql_real_escape_string($site_mail) . "' WHERE `key`='email'");
// Создаем Администратора
mysql_query("INSERT INTO `users` SET
`name` = '" . mysql_real_escape_string($admin_user) . "',
`name_lat` = '" . mysql_real_escape_string(mb_strtolower($admin_user)) . "',
`password` = '" . md5(md5($admin_pass)) . "',
`sex` = 'm',
`datereg` = '" . time() . "',
`lastdate` = '" . time() . "',
`mail` = '" . mysql_real_escape_string($site_mail) . "',
`www` = '" . mysql_real_escape_string($site_url) . "',
`about` = '',
`set_user` = '',
`set_forum` = '',
`set_mail` = '',
`smileys` = '',
`rights` = '9',
`ip` = '" . ip2long($_SERVER["REMOTE_ADDR"]) . "',
`browser` = '" . mysql_real_escape_string(htmlentities($_SERVER["HTTP_USER_AGENT"])) . "',
`preg` = '1'
") or die('ERROR: Administrator setup<br/>' . mysql_error() . '</body></html>');
$user_id = mysql_insert_id();
// Устанавливаем сессию и COOKIE c данными администратора
$_SESSION['uid'] = $user_id;
$_SESSION['ups'] = md5(md5($admin_pass));
setcookie("cuid", base64_encode($user_id), time() + 3600 * 24 * 365);
setcookie("cups", md5($admin_pass), time() + 3600 * 24 * 365);
// Установка ДЕМО данных
if ($demo) {
$demo_data = install::parse_sql(MODE . '/demo.sql');
}
// Установка завершена
header('Location: index.php?act=final');
}
}
echo '<span class="st">' . $lng['check_1'] . '</span>';
if ($db_check) {
echo '<br /><span class="st">' . $lng['database'] . '</span>' .
'<h2 class="green">' . $lng['site_settings'] . '</h2>';
} else {
echo '<h2 class="green">' . $lng['database'] . '</h2>' .
'<span class="gray">' . $lng['site_settings'] . '</span><br />';
}
echo '<span class="gray">' . $lng['final'] . '</span>' .
'<hr />' .
'<form action="index.php?act=set" method="post">' .
show_errors($db_error) .
'<small class="blue"><b>MySQL Host:</b></small><br />' .
'<input type="text" name="dbhost" value="' . $db_host . '"' . ($db_check ? ' readonly="readonly" style="background-color: #CCFFCC"' : '') . (isset($db_error['host']) ? ' style="background-color: #FFCCCC"' : '') . '><br />' .
'<small class="blue"><b>MySQL Database:</b></small><br />' .
'<input type="text" name="dbname" value="' . $db_name . '"' . ($db_check ? ' readonly="readonly" style="background-color: #CCFFCC"' : '') . (isset($db_error['name']) ? ' style="background-color: #FFCCCC"' : '') . '><br />' .
'<small class="blue"><b>MySQL User:</b></small><br />' .
'<input type="text" name="dbuser" value="' . $db_user . '"' . ($db_check ? ' readonly="readonly" style="background-color: #CCFFCC"' : '') . (isset($db_error['access']) || isset($db_error['user']) ? ' style="background-color: #FFCCCC"' : '') . '><br />' .
'<small class="blue"><b>MySQL Password:</b></small><br />' .
'<input type="text" name="dbpass" value="' . $db_pass . '"' . ($db_check ? ' readonly="readonly" style="background-color: #CCFFCC"' : '') . (isset($db_error['access']) ? ' style="background-color: #FFCCCC"' : '') . '>';
if ($db_check) {
// Настройки Сайта
echo '<p>' . show_errors($site_error) .
'<small class="blue"><b>' . $lng['site_url'] . ':</b></small><br />' .
'<input type="text" name="siteurl" value="' . $site_url . '"' . (isset($site_error['url']) ? ' style="background-color: #FFCCCC"' : '') . '><br />' .
'<small class="gray">' . $lng['site_url_help'] . '</small><br />' .
'<small class="blue"><b>' . $lng['site_email'] . ':</b></small><br />' .
'<input type="text" name="sitemail" value="' . $site_mail . '"><br />' .
'<small class="gray">' . $lng['site_email_help'] . '</small></p>' .
'<p>' . show_errors($admin_error) .
'<small class="blue"><b>' . $lng['admin_login'] . ':</b></small><br />' .
'<input type="text" name="admin" value="' . $admin_user . '"' . (isset($admin_error['admin']) ? ' style="background-color: #FFCCCC"' : '') . '><br />' .
'<small class="gray">' . $lng['admin_login_help'] . '</small><br />' .
'<small class="blue"><b>' . $lng['admin_password'] . ':</b></small><br />' .
'<input type="text" name="password" value="' . $admin_pass . '"' . (isset($admin_error['pass']) ? ' style="background-color: #FFCCCC"' : '') . '><br />' .
'<small class="gray">' . $lng['admin_password_help'] . '</small></p>' .
'<p><input type="checkbox" name="demo" value="1"><small class="blue"> <b>' . $lng['install_demo'] . '</b></small><br />' .
'<small class="gray">' . $lng['install_demo_help'] . '</small></p>' .
'<p><input type="submit" name="install" value="' . $lng['setup'] . '"></p>';
} else {
echo '<p><input type="submit" name="check" value="' . $lng['check'] . '"></p>';
}
echo '</form>';
echo '<p><a href="index.php?act=set">' . $lng['reset_form'] . '</a></p>';
break;
default:
/*
-----------------------------------------------------------------
Проверка настроек PHP и прав доступа
-----------------------------------------------------------------
*/
echo '<p>' . $lng['install_note'] . '</p>';
echo '<p><h3 class="green">' . $lng['check_1'] . '</h3>';
// Проверка критических ошибок PHP
if (($php_errors = install::check_php_errors()) !== false) {
echo '<h3>' . $lng['php_critical_error'] . '</h3><ul>';
foreach ($php_errors as $val) echo '<li>' . $val . '</li>';
echo '</ul>';
}
// Проверка предупреждений PHP
if (($php_warnings = install::check_php_warnings()) !== false) {
echo '<h3>' . $lng['php_warnings'] . '</h3><ul>';
foreach ($php_warnings as $val) echo '<li>' . $val . '</li>';
echo '</ul>';
}
// Проверка прав доступа к папкам
if (($folders = install::check_folders_rights()) !== false) {
echo '<h3>' . $lng['access_rights'] . ' 777</h3><ul>';
foreach ($folders as $val) echo '<li>' . $val . '</li>';
echo '</ul>';
}
// Проверка прав доступа к файлам
if (($files = install::check_files_rights()) !== false) {
echo '<h3>' . $lng['access_rights'] . ' 666</h3><ul>';
foreach ($files as $val) echo '<li>' . $val . '</li>';
echo '</ul>';
}
if (!$php_errors && !$php_warnings && !$folders && !$files) {
echo '<div class="pgl">' . $lng['configuration_successful'] . '</div>';
}
echo '</p>';
if ($php_errors || $folders || $files) {
echo '<h3 class="red">' . $lng['critical_errors'] . '</h3>' .
'<h3><a href="index.php">' . $lng['check_again'] . '</a></h3>';
} elseif ($php_warnings) {
echo '<h3 class="red">' . $lng['are_warnings'] . '</h3>' .
'<h3><a href="index.php">' . $lng['check_again'] . '</a></h3>' .
'<a href="index.php?act=set">' . $lng['ignore_warnings'] . '</a>';
} else {
echo '<form action="index.php?act=set" method="post"><p><input type="submit" value="' . $lng['install'] . '"/></p></form>';
}
}