|
';
// Have we got a language drop down - if so do it on the first step only.
if (!empty($incontext['detected_languages']) && count($incontext['detected_languages']) > 1 && $incontext['current_step'] == 0)
{
echo '
', $incontext['page_title'], '';
}
function template_install_below()
{
global $incontext, $txt;
if (!empty($incontext['continue']) || !empty($incontext['skip']))
{
echo '
';
if (!empty($incontext['continue']))
echo '
';
if (!empty($incontext['skip']))
echo '
';
echo '
';
}
// Show the closing form tag and other data only if not in the last step
if (count($incontext['steps']) - 1 !== (int) $incontext['current_step'])
echo '
';
echo '
|
A critical error has occurred.
This installer was unable to find the installer\'s language file or files. They should be found under:
', dirname($_SERVER['PHP_SELF']) != '/' ? dirname($_SERVER['PHP_SELF']) : '', '/Themes/default/languages
In some cases, FTP clients do not properly upload files with this many folders. Please double check to make sure you have uploaded all the files in the distribution.
If that doesn\'t help, please make sure this install.php file is in the same place as the Themes folder.
If you continue to get this error message, feel free to look to us for support.
' . $txt['error_message_click'] . ' ' . $txt['error_message_bad_try_again']; return false; } function CheckFilesWritable() { global $txt, $incontext; $incontext['page_title'] = $txt['ftp_checking_writable']; $incontext['sub_template'] = 'chmod_files'; $writable_files = array( 'attachments', 'avatars', 'cache', 'Packages', 'Packages/installed.list', 'Smileys', 'Themes', 'agreement.txt', 'Settings.php', 'Settings_bak.php' ); $extra_files = array( 'Themes/classic/index.template.php', 'Themes/classic/style.css' ); foreach ($incontext['detected_languages'] as $lang => $temp) $extra_files[] = 'Themes/default/languages/' . $lang; $failure = false; // With mod_security installed, we could attempt to fix it with .htaccess. if (function_exists('apache_get_modules') && in_array('mod_security', apache_get_modules())) $writable_files[] = file_exists(dirname(__FILE__) . '/.htaccess') ? '.htaccess' : '.'; // On linux, it's easy - just use is_writable! if (substr(__FILE__, 1, 2) != ':\\') { foreach ($writable_files as $file) { if (!is_writable(dirname(__FILE__) . '/' . $file)) { @chmod(dirname(__FILE__) . '/' . $file, 0755); // Well, 755 hopefully worked... if not, try 777. $failure |= !is_writable(dirname(__FILE__) . '/' . $file) && !@chmod(dirname(__FILE__) . '/' . $file, 0777); } } foreach ($extra_files as $file) @chmod(dirname(__FILE__) . (empty($file) ? '' : '/' . $file), 0777); } // Windows is trickier. Let's try opening for r+... else { foreach ($writable_files as $file) { // Folders can't be opened for write... but the index.php in them can ;). if (is_dir(dirname(__FILE__) . '/' . $file)) $file .= '/index.php'; // Funny enough, chmod actually does do something on windows - it removes the read only attribute. @chmod(dirname(__FILE__) . '/' . $file, 0777); $fp = @fopen(dirname(__FILE__) . '/' . $file, 'r+'); // Hmm, okay, try just for write in that case... if (!$fp) $fp = @fopen(dirname(__FILE__) . '/' . $file, 'w'); $failure |= !$fp; @fclose($fp); } foreach ($extra_files as $file) @chmod(dirname(__FILE__) . (empty($file) ? '' : '/' . $file), 0777); } if (!isset($_SERVER)) return !$failure; // Put the list into context. $incontext['writable_files'] = $writable_files; // It's not going to be possible to use FTP on windows to solve the problem... if ($failure && substr(__FILE__, 1, 2) == ':\\') { $incontext['error'] = $txt['error_windows_chmod'] . '
- ' . implode('
- ', $writable_files) . '
' . $db_error . '
';
return false;
}
// Do they meet the install requirements?
// !!! Old client, new server?
if (version_compare($databases[$db_type]['version'], preg_replace('~^\D*|\-.+?$~', '', eval($databases[$db_type]['version_check']))) > 0)
{
$incontext['error'] = $txt['error_db_too_low'];
return false;
}
// Let's try that database on for size... assuming we haven't already lost the opportunity.
if ($db_name != '' && !$needsDB)
{
$smcFunc['db_query']('', "
CREATE DATABASE IF NOT EXISTS `$db_name`",
array(
'security_override' => true,
'db_error_skip' => true,
),
$db_connection
);
// Okay, let's try the prefix if it didn't work...
if (!$smcFunc['db_select_db']($db_name, $db_connection) && $db_name != '')
{
$smcFunc['db_query']('', "
CREATE DATABASE IF NOT EXISTS `$_POST[db_prefix]$db_name`",
array(
'security_override' => true,
'db_error_skip' => true,
),
$db_connection
);
if ($smcFunc['db_select_db']($_POST['db_prefix'] . $db_name, $db_connection))
{
$db_name = $_POST['db_prefix'] . $db_name;
updateSettingsFile(array('db_name' => $db_name));
}
}
// Okay, now let's try to connect...
if (!$smcFunc['db_select_db']($db_name, $db_connection))
{
$incontext['error'] = sprintf($txt['error_db_database'], $db_name);
return false;
}
}
return true;
}
return false;
}
// Let's start with basic forum type settings.
function ForumSettings()
{
global $txt, $incontext, $databases, $smcFunc, $db_connection, $db_type;
$incontext['sub_template'] = 'forum_settings';
$incontext['page_title'] = $txt['install_settings'];
// Let's see if we got the database type correct.
if (isset($_POST['db_type'], $databases[$_POST['db_type']]))
$db_type = $_POST['db_type'];
// Else we'd better be able to get the connection.
else
load_database();
$db_type = isset($_POST['db_type']) ? $_POST['db_type'] : $db_type;
// What host and port are we on?
$host = empty($_SERVER['HTTP_HOST']) ? $_SERVER['SERVER_NAME'] . (empty($_SERVER['SERVER_PORT']) || $_SERVER['SERVER_PORT'] == '80' ? '' : ':' . $_SERVER['SERVER_PORT']) : $_SERVER['HTTP_HOST'];
// Now, to put what we've learned together... and add a path.
$incontext['detected_url'] = 'http' . (!empty($_SERVER['HTTPS']) && strtolower($_SERVER['HTTPS']) == 'on' ? 's' : '') . '://' . $host . substr($_SERVER['PHP_SELF'], 0, strrpos($_SERVER['PHP_SELF'], '/'));
// Check if the database sessions will even work.
$incontext['test_dbsession'] = @ini_get('session.auto_start') != 1 && @version_compare(PHP_VERSION, '4.2.0') != -1;
$incontext['utf8_should_work'] = strpos(strtolower(PHP_OS), 'win') === false || @version_compare(PHP_VERSION, '4.2.3') != -1;
$incontext['utf8_default'] = $databases[$db_type]['utf8_default'];
$incontext['continue'] = 1;
// Submitting?
if (isset($_POST['boardurl']))
{
if (substr($_POST['boardurl'], -10) == '/index.php')
$_POST['boardurl'] = substr($_POST['boardurl'], 0, -10);
elseif (substr($_POST['boardurl'], -1) == '/')
$_POST['boardurl'] = substr($_POST['boardurl'], 0, -1);
if (substr($_POST['boardurl'], 0, 7) != 'http://' && substr($_POST['boardurl'], 0, 7) != 'file://' && substr($_POST['boardurl'], 0, 8) != 'https://')
$_POST['boardurl'] = 'http://' . $_POST['boardurl'];
// Save these variables.
$vars = array(
'boardurl' => $_POST['boardurl'],
'boarddir' => addslashes(dirname(__FILE__)),
'sourcedir' => addslashes(dirname(__FILE__)) . '/Sources',
'cachedir' => addslashes(dirname(__FILE__)) . '/cache',
'mbname' => $_POST['mbname'],
'language' => substr($_SESSION['installer_temp_lang'], 8, -4),
);
// Must save!
if (!updateSettingsFile($vars) && substr(__FILE__, 1, 2) == ':\\')
{
$incontext['error'] = $txt['error_windows_chmod'];
return false;
}
// Make sure it works.
require(dirname(__FILE__) . '/Settings.php');
// UTF-8 requires a setting to override the language charset.
if (isset($_POST['utf8']) && !empty($databases[$db_type]['utf8_support']))
{
if (version_compare($databases[$db_type]['utf8_version'], preg_replace('~\-.+?$~', '', eval($databases[$db_type]['utf8_version_check']))) > 0)
{
$incontext['error'] = sprintf($txt['error_utf8_version'], $databases[$db_type]['utf8_version']);
return false;
}
else
// Set the character set here.
updateSettingsFile(array('db_character_set' => 'utf8'));
}
// Good, skip on.
return true;
}
return false;
}
// Step one: Do the SQL thang.
function DatabasePopulation()
{
global $txt, $db_connection, $smcFunc, $databases, $modSettings, $db_type, $sourcedir, $db_prefix, $incontext, $db_name, $boardurl;
$incontext['sub_template'] = 'populate_database';
$incontext['page_title'] = $txt['db_populate'];
$incontext['continue'] = 1;
// Already done?
if (isset($_POST['pop_done']))
return true;
// Reload settings.
require(dirname(__FILE__) . '/Settings.php');
load_database();
// Before running any of the queries, let's make sure another version isn't already installed.
$result = $smcFunc['db_query']('', '
SELECT variable, value
FROM {db_prefix}settings',
array(
'db_error_skip' => true,
)
);
$modSettings = array();
if ($result !== false)
{
while ($row = $smcFunc['db_fetch_assoc']($result))
$modSettings[$row['variable']] = $row['value'];
$smcFunc['db_free_result']($result);
// Do they match? If so, this is just a refresh so charge on!
if (!isset($modSettings['smfVersion']) || $modSettings['smfVersion'] != $GLOBALS['current_smf_version'])
{
$incontext['error'] = $txt['error_versions_do_not_match'];
return false;
}
}
// If doing UTF8, select it.
if (!empty($db_character_set) && $db_character_set == 'utf8' && !empty($databases[$db_type]['utf8_support']))
$smcFunc['db_query']('', '
SET NAMES utf8',
array(
'db_error_skip' => true,
)
);
$replaces = array(
'{$db_prefix}' => $db_prefix,
'{$boarddir}' => $smcFunc['db_escape_string'](dirname(__FILE__)),
'{$boardurl}' => $boardurl,
'{$enableCompressedOutput}' => isset($_POST['compress']) ? '1' : '0',
'{$databaseSession_enable}' => isset($_POST['dbsession']) ? '1' : '0',
'{$smf_version}' => $GLOBALS['current_smf_version'],
'{$current_time}' => time(),
'{$sched_task_offset}' => 82800 + mt_rand(0, 86399),
);
foreach ($txt as $key => $value)
{
if (substr($key, 0, 8) == 'default_')
$replaces['{$' . $key . '}'] = $smcFunc['db_escape_string']($value);
}
$replaces['{$default_reserved_names}'] = strtr($replaces['{$default_reserved_names}'], array('\\\\n' => '\\n'));
// MySQL users below v4 can't use engine.
if ($db_type == 'mysql' && version_compare('4', preg_replace('~\-.+?$~', '', eval($databases[$db_type]['version_check']))) > 0)
$replaces[') ENGINE='] = ') TYPE=';
// If the UTF-8 setting was enabled, add it to the table definitions.
//!!! Very MySQL specific still
if (isset($_POST['utf8']) && !empty($databases[$db_type]['utf8_support']))
$replaces[') ENGINE=MyISAM;'] = ') ENGINE=MyISAM DEFAULT CHARSET=utf8 COLLATE=utf8_general_ci;';
// Read in the SQL. Turn this on and that off... internationalize... etc.
$sql_lines = explode("\n", strtr(implode(' ', file(dirname(__FILE__) . '/install_' . $GLOBALS['db_script_version'] . '_' . $db_type . '.sql')), $replaces));
// Execute the SQL.
$current_statement = '';
$exists = array();
$incontext['failures'] = array();
$incontext['sql_results'] = array(
'tables' => 0,
'inserts' => 0,
'table_dups' => 0,
'insert_dups' => 0,
);
foreach ($sql_lines as $count => $line)
{
// No comments allowed!
if (substr(trim($line), 0, 1) != '#')
$current_statement .= "\n" . rtrim($line);
// Is this the end of the query string?
if (empty($current_statement) || (preg_match('~;[\s]*$~s', $line) == 0 && $count != count($sql_lines)))
continue;
// Does this table already exist? If so, don't insert more data into it!
if (preg_match('~^\s*INSERT INTO ([^\s\n\r]+?)~', $current_statement, $match) != 0 && in_array($match[1], $exists))
{
$incontext['sql_results']['insert_dups']++;
$current_statement = '';
continue;
}
if ($smcFunc['db_query']('', $current_statement, array('security_override' => true, 'db_error_skip' => true), $db_connection) === false)
{
// Error 1050: Table already exists!
//!!! Needs to be made better!
if (($db_type != 'mysql' || mysql_errno($db_connection) === 1050) && preg_match('~^\s*CREATE TABLE ([^\s\n\r]+?)~', $current_statement, $match) == 1)
{
$exists[] = $match[1];
$incontext['sql_results']['table_dups']++;
}
// Don't error on duplicate indexes.
elseif (!preg_match('~^\s*CREATE INDEX ([^\n\r]+?)~', $current_statement, $match))
{
$incontext['failures'][$count] = $smcFunc['db_error']();
}
}
else
{
if (preg_match('~^\s*CREATE TABLE ([^\s\n\r]+?)~', $current_statement, $match) == 1)
$incontext['sql_results']['tables']++;
else
{
preg_match_all('~\)[,;]~', $current_statement, $matches);
if (!empty($matches[0]))
$incontext['sql_results']['inserts'] += count($matches[0]);
else
$incontext['sql_results']['inserts']++;
}
}
$current_statement = '';
}
// Sort out the context for the SQL.
foreach ($incontext['sql_results'] as $key => $number)
{
if ($number == 0)
unset($incontext['sql_results'][$key]);
else
$incontext['sql_results'][$key] = sprintf($txt['db_populate_' . $key], $number);
}
// Make sure UTF will be used globally.
if (isset($_POST['utf8']) && !empty($databases[$db_type]['utf8_support']))
$smcFunc['db_insert']('replace',
$db_prefix . 'settings',
array(
'variable' => 'string-255', 'value' => 'string-65534',
),
array(
'global_character_set', 'UTF-8',
),
array('variable')
);
// Maybe we can auto-detect better cookie settings?
preg_match('~^http[s]?://([^\.]+?)([^/]*?)(/.*)?$~', $boardurl, $matches);
if (!empty($matches))
{
// Default = both off.
$localCookies = false;
$globalCookies = false;
// Okay... let's see. Using a subdomain other than www.? (not a perfect check.)
if ($matches[2] != '' && (strpos(substr($matches[2], 1), '.') === false || in_array($matches[1], array('forum', 'board', 'community', 'forums', 'support', 'chat', 'help', 'talk', 'boards', 'www'))))
$globalCookies = true;
// If there's a / in the middle of the path, or it starts with ~... we want local.
if (isset($matches[3]) && strlen($matches[3]) > 3 && (substr($matches[3], 0, 2) == '/~' || strpos(substr($matches[3], 1), '/') !== false))
$localCookies = true;
$rows = array();
if ($globalCookies)
$rows[] = array('globalCookies', '1');
if ($localCookies)
$rows[] = array('localCookies', '1');
if (!empty($rows))
{
$smcFunc['db_insert']('replace',
$db_prefix . 'settings',
array('variable' => 'string-255', 'value' => 'string-65534'),
$rows,
array('variable')
);
}
}
// Are we allowing stat collection?
if (isset($_POST['stats']) && substr($_POST['boardurl'], 0, 16) != 'http://localhost')
{
// Attempt to register the site etc.
$fp = @fsockopen("www.simplemachines.org", 80, $errno, $errstr);
if ($fp)
{
$out = "GET /smf/stats/register_stats.php?site=" . base64_encode($_POST['boardurl']) . " HTTP/1.1\r\n";
$out .= "Host: www.simplemachines.org\r\n";
$out .= "Connection: Close\r\n\r\n";
fwrite($fp, $out);
$return_data = '';
while (!feof($fp))
$return_data .= fgets($fp, 128);
fclose($fp);
// Get the unique site ID.
preg_match('~SITE-ID:\s(\w{10})~', $return_data, $ID);
if (!empty($ID[1]))
$smcFunc['db_insert']('',
$db_prefix . 'settings',
array(
'variable' => 'string-255', 'value' => 'string-65534',
),
array(
'allow_sm_stats', $ID[1],
),
array('variable')
);
}
}
// As of PHP 5.1, setting a timezone is required.
if (!isset($modSettings['default_timezone']) && function_exists('date_default_timezone_set'))
{
$server_offset = mktime(0, 0, 0, 1, 1, 1970);
$timezone_id = 'Etc/GMT' . ($server_offset > 0 ? '+' : '') . ($server_offset / 3600);
if (date_default_timezone_set($timezone_id))
$smcFunc['db_insert']('',
$db_prefix . 'settings',
array(
'variable' => 'string-255', 'value' => 'string-65534',
),
array(
'default_timezone', $timezone_id,
),
array('variable')
);
}
// Let's optimize those new tables.
db_extend();
$tables = $smcFunc['db_list_tables']($db_name, $db_prefix . '%');
foreach ($tables as $table)
{
$smcFunc['db_optimize_table']($table) != -1 or $db_messed = true;
if (!empty($db_messed))
{
$incontext['failures'][-1] = $smcFunc['db_error']();
break;
}
}
// Check for the ALTER privilege.
if (!empty($databases[$db_type]['alter_support']) && $smcFunc['db_query']('', "ALTER TABLE {$db_prefix}boards ORDER BY id_board", array('security_override' => true, 'db_error_skip' => true)) === false)
{
$incontext['error'] = $txt['error_db_alter_priv'];
return false;
}
if (!empty($exists))
{
$incontext['page_title'] = $txt['user_refresh_install'];
$incontext['was_refresh'] = true;
}
return false;
}
// Ask for the administrator login information.
function AdminAccount()
{
global $txt, $db_type, $db_connection, $databases, $smcFunc, $incontext, $db_prefix, $db_passwd, $sourcedir;
$incontext['sub_template'] = 'admin_account';
$incontext['page_title'] = $txt['user_settings'];
$incontext['continue'] = 1;
// Skipping?
if (!empty($_POST['skip']))
return true;
// Need this to check whether we need the database password.
require(dirname(__FILE__) . '/Settings.php');
load_database();
// Define the sha1 function, if it doesn't exist.
if (!function_exists('sha1') || @version_compare(PHP_VERSION, '5') == -1)
require_once($sourcedir . '/Subs-Compat.php');
if (!isset($_POST['username']))
$_POST['username'] = '';
if (!isset($_POST['email']))
$_POST['email'] = '';
$incontext['username'] = htmlspecialchars(stripslashes($_POST['username']));
$incontext['email'] = htmlspecialchars(stripslashes($_POST['email']));
$incontext['require_db_confirm'] = empty($db_type) || $db_type != 'sqlite';
// Only allow skipping if we think they already have an account setup.
$request = $smcFunc['db_query']('', '
SELECT id_member
FROM {db_prefix}members
WHERE id_group = {int:admin_group} OR FIND_IN_SET({int:admin_group}, additional_groups)
LIMIT 1',
array(
'db_error_skip' => true,
'admin_group' => 1,
)
);
if ($smcFunc['db_num_rows']($request) != 0)
$incontext['skip'] = 1;
$smcFunc['db_free_result']($request);
// Trying to create an account?
if (isset($_POST['password1']) && !empty($_POST['contbutt']))
{
// Wrong password?
if ($incontext['require_db_confirm'] && $_POST['password3'] != $db_passwd)
{
$incontext['error'] = $txt['error_db_connect'];
return false;
}
// Not matching passwords?
if ($_POST['password1'] != $_POST['password2'])
{
$incontext['error'] = $txt['error_user_settings_again_match'];
return false;
}
// No password?
if (strlen($_POST['password1']) < 4)
{
$incontext['error'] = $txt['error_user_settings_no_password'];
return false;
}
if (!file_exists($sourcedir . '/Subs.php'))
{
$incontext['error'] = $txt['error_subs_missing'];
return false;
}
// Update the main contact email?
if (!empty($_POST['email']) && (empty($webmaster_email) || $webmaster_email == 'noreply@myserver.com'))
updateSettingsFile(array('webmaster_email' => $_POST['email']));
// Work out whether we're going to have dodgy characters and remove them.
$invalid_characters = preg_match('~[<>&"\'=\\\]~', $_POST['username']) != 0;
$_POST['username'] = preg_replace('~[<>&"\'=\\\]~', '', $_POST['username']);
$result = $smcFunc['db_query']('', '
SELECT id_member, password_salt
FROM {db_prefix}members
WHERE member_name = {string:username} OR email_address = {string:email}
LIMIT 1',
array(
'username' => stripslashes($_POST['username']),
'email' => stripslashes($_POST['email']),
'db_error_skip' => true,
)
);
if ($smcFunc['db_num_rows']($result) != 0)
{
list ($incontext['member_id'], $incontext['member_salt']) = $smcFunc['db_fetch_row']($result);
$smcFunc['db_free_result']($result);
$incontext['account_existed'] = $txt['error_user_settings_taken'];
}
elseif ($_POST['username'] == '' || strlen($_POST['username']) > 25)
{
// Try the previous step again.
$incontext['error'] = $_POST['username'] == '' ? $txt['error_username_left_empty'] : $txt['error_username_too_long'];
return false;
}
elseif ($invalid_characters || $_POST['username'] == '_' || $_POST['username'] == '|' || strpos($_POST['username'], '[code') !== false || strpos($_POST['username'], '[/code') !== false)
{
// Try the previous step again.
$incontext['error'] = $txt['error_invalid_characters_username'];
return false;
}
elseif (empty($_POST['email']) || preg_match('~^[0-9A-Za-z=_+\-/][0-9A-Za-z=_\'+\-/\.]*@[\w\-]+(\.[\w\-]+)*(\.[\w]{2,6})$~', stripslashes($_POST['email'])) === 0 || strlen(stripslashes($_POST['email'])) > 255)
{
// One step back, this time fill out a proper email address.
$incontext['error'] = sprintf($txt['error_valid_email_needed'], $_POST['username']);
return false;
}
elseif ($_POST['username'] != '')
{
$incontext['member_salt'] = substr(md5(mt_rand()), 0, 4);
// Format the username properly.
$_POST['username'] = preg_replace('~[\t\n\r\x0B\0\xA0]+~', ' ', $_POST['username']);
$ip = isset($_SERVER['REMOTE_ADDR']) ? substr($_SERVER['REMOTE_ADDR'], 0, 255) : '';
$request = $smcFunc['db_insert']('',
$db_prefix . 'members',
array(
'member_name' => 'string-25', 'real_name' => 'string-25', 'passwd' => 'string', 'email_address' => 'string',
'id_group' => 'int', 'posts' => 'int', 'date_registered' => 'int', 'hide_email' => 'int',
'password_salt' => 'string', 'lngfile' => 'string', 'personal_text' => 'string', 'avatar' => 'string',
'member_ip' => 'string', 'member_ip2' => 'string', 'buddy_list' => 'string', 'pm_ignore_list' => 'string',
'message_labels' => 'string', 'website_title' => 'string', 'website_url' => 'string', 'location' => 'string',
'icq' => 'string', 'msn' => 'string', 'signature' => 'string', 'usertitle' => 'string', 'secret_question' => 'string',
'additional_groups' => 'string', 'ignore_boards' => 'string', 'openid_uri' => 'string',
),
array(
stripslashes($_POST['username']), stripslashes($_POST['username']), sha1(strtolower(stripslashes($_POST['username'])) . stripslashes($_POST['password1'])), stripslashes($_POST['email']),
1, 0, time(), 0,
$incontext['member_salt'], '', '', '',
$ip, $ip, '', '',
'', '', '', '',
'', '', '', '', '',
'', '', '',
),
array('id_member')
);
// Awww, crud!
if ($request === false)
{
$incontext['error'] = $txt['error_user_settings_query'] . '' . nl2br(htmlspecialchars($smcFunc['db_error']($db_connection))) . '
';
return false;
}
$incontext['member_id'] = $smcFunc['db_insert_id']("{$db_prefix}members", 'id_member');
}
// If we're here we're good.
return true;
}
return false;
}
// Final step, clean up and a complete message!
function DeleteInstall()
{
global $txt, $db_prefix, $db_connection, $HTTP_SESSION_VARS, $cookiename, $incontext;
global $smcFunc, $db_character_set, $mbname, $context, $scripturl, $boardurl;
global $current_smf_version, $databases, $sourcedir, $forum_version, $modSettings, $user_info, $language, $db_type;
$incontext['page_title'] = $txt['congratulations'];
$incontext['sub_template'] = 'delete_install';
$incontext['continue'] = 0;
require(dirname(__FILE__) . '/Settings.php');
load_database();
chdir(dirname(__FILE__));
require_once($sourcedir . '/Errors.php');
require_once($sourcedir . '/Subs.php');
require_once($sourcedir . '/Load.php');
require_once($sourcedir . '/Security.php');
require_once($sourcedir . '/Subs-Auth.php');
// Bring a warning over.
if (!empty($incontext['account_existed']))
$incontext['warning'] = $incontext['account_existed'];
if (!empty($db_character_set) && !empty($databases[$db_type]['utf8_support']))
$smcFunc['db_query']('', '
SET NAMES {raw:db_character_set}',
array(
'db_character_set' => $db_character_set,
'db_error_skip' => true,
)
);
// As track stats is by default enabled let's add some activity.
$smcFunc['db_insert']('ignore',
'{db_prefix}log_activity',
array('date' => 'date', 'topics' => 'int', 'posts' => 'int', 'registers' => 'int'),
array(strftime('%Y-%m-%d', time()), 1, 1, (!empty($incontext['member_id']) ? 1 : 0)),
array('date')
);
// Automatically log them in ;).
if (isset($incontext['member_id']) && isset($incontext['member_salt']))
setLoginCookie(3153600 * 60, $incontext['member_id'], sha1(sha1(strtolower($_POST['username']) . $_POST['password1']) . $incontext['member_salt']));
$result = $smcFunc['db_query']('', '
SELECT value
FROM {db_prefix}settings
WHERE variable = {string:db_sessions}',
array(
'db_sessions' => 'databaseSession_enable',
'db_error_skip' => true,
)
);
if ($smcFunc['db_num_rows']($result) != 0)
list ($db_sessions) = $smcFunc['db_fetch_row']($result);
$smcFunc['db_free_result']($result);
if (empty($db_sessions))
{
if (@version_compare(PHP_VERSION, '4.2.0') == -1)
$HTTP_SESSION_VARS['php_412_bugfix'] = true;
$_SESSION['admin_time'] = time();
}
else
{
$_SERVER['HTTP_USER_AGENT'] = substr($_SERVER['HTTP_USER_AGENT'], 0, 211);
$smcFunc['db_insert']('replace',
'{db_prefix}sessions',
array(
'session_id' => 'string', 'last_update' => 'int', 'data' => 'string',
),
array(
session_id(), time(), 'USER_AGENT|s:' . strlen($_SERVER['HTTP_USER_AGENT']) . ':"' . $_SERVER['HTTP_USER_AGENT'] . '";admin_time|i:' . time() . ';',
),
array('session_id')
);
}
// We're going to want our lovely $modSettings now.
$request = $smcFunc['db_query']('', '
SELECT variable, value
FROM {db_prefix}settings',
array(
'db_error_skip' => true,
)
);
// Only proceed if we can load the data.
if ($request)
{
while ($row = $smcFunc['db_fetch_row']($request))
$modSettings[$row[0]] = $row[1];
$smcFunc['db_free_result']($request);
}
updateStats('member');
updateStats('message');
updateStats('topic');
// This function is needed to do the updateStats('subject') call.
$smcFunc['strtolower'] = $db_character_set === 'utf8' || $txt['lang_character_set'] === 'UTF-8' ? create_function('$string', '
return $string;') : 'strtolower';
$request = $smcFunc['db_query']('', '
SELECT id_msg
FROM {db_prefix}messages
WHERE id_msg = 1
AND modified_time = 0
LIMIT 1',
array(
'db_error_skip' => true,
)
);
if ($smcFunc['db_num_rows']($request) > 0)
updateStats('subject', 1, htmlspecialchars($txt['default_topic_subject']));
$smcFunc['db_free_result']($request);
// Now is the perfect time to fetch the SM files.
require_once($sourcedir . '/ScheduledTasks.php');
// Sanity check that they loaded earlier!
if (isset($modSettings['recycle_board']))
{
$forum_version = $current_smf_version; // The variable is usually defined in index.php so lets just use our variable to do it for us.
scheduled_fetchSMfiles(); // Now go get those files!
// We've just installed!
$user_info['ip'] = $_SERVER['REMOTE_ADDR'];
$user_info['id'] = isset($incontext['member_id']) ? $incontext['member_id'] : 0;
logAction('install', array('version' => $forum_version), 'admin');
}
// Check if we need some stupid MySQL fix.
$server_version = $smcFunc['db_server_info']();
if ($db_type == 'mysql' && in_array(substr($server_version, 0, 6), array('5.0.50', '5.0.51')))
updateSettings(array('db_mysql_group_by_fix' => '1'));
// Some final context for the template.
$incontext['dir_still_writable'] = is_writable(dirname(__FILE__)) && substr(__FILE__, 1, 2) != ':\\';
$incontext['probably_delete_install'] = isset($_SESSION['installer_temp_ftp']) || is_writable(dirname(__FILE__)) || is_writable(__FILE__);
return false;
}
// http://www.faqs.org/rfcs/rfc959.html
class ftp_connection
{
var $connection = 'no_connection', $error = false, $last_message, $pasv = array();
// Create a new FTP connection...
function ftp_connection($ftp_server, $ftp_port = 21, $ftp_user = 'anonymous', $ftp_pass = 'ftpclient@simplemachines.org')
{
if ($ftp_server !== null)
$this->connect($ftp_server, $ftp_port, $ftp_user, $ftp_pass);
}
function connect($ftp_server, $ftp_port = 21, $ftp_user = 'anonymous', $ftp_pass = 'ftpclient@simplemachines.org')
{
if (substr($ftp_server, 0, 6) == 'ftp://')
$ftp_server = substr($ftp_server, 6);
elseif (substr($ftp_server, 0, 7) == 'ftps://')
$ftp_server = 'ssl://' . substr($ftp_server, 7);
if (substr($ftp_server, 0, 7) == 'http://')
$ftp_server = substr($ftp_server, 7);
$ftp_server = strtr($ftp_server, array('/' => '', ':' => '', '@' => ''));
// Connect to the FTP server.
$this->connection = @fsockopen($ftp_server, $ftp_port, $err, $err, 5);
if (!$this->connection)
{
$this->error = 'bad_server';
return;
}
// Get the welcome message...
if (!$this->check_response(220))
{
$this->error = 'bad_response';
return;
}
// Send the username, it should ask for a password.
fwrite($this->connection, 'USER ' . $ftp_user . "\r\n");
if (!$this->check_response(331))
{
$this->error = 'bad_username';
return;
}
// Now send the password... and hope it goes okay.
fwrite($this->connection, 'PASS ' . $ftp_pass . "\r\n");
if (!$this->check_response(230))
{
$this->error = 'bad_password';
return;
}
}
function chdir($ftp_path)
{
if (!is_resource($this->connection))
return false;
// No slash on the end, please...
if (substr($ftp_path, -1) == '/')
$ftp_path = substr($ftp_path, 0, -1);
fwrite($this->connection, 'CWD ' . $ftp_path . "\r\n");
if (!$this->check_response(250))
{
$this->error = 'bad_path';
return false;
}
return true;
}
function chmod($ftp_file, $chmod)
{
if (!is_resource($this->connection))
return false;
// Convert the chmod value from octal (0777) to text ("777").
fwrite($this->connection, 'SITE CHMOD ' . decoct($chmod) . ' ' . $ftp_file . "\r\n");
if (!$this->check_response(200))
{
$this->error = 'bad_file';
return false;
}
return true;
}
function unlink($ftp_file)
{
// We are actually connected, right?
if (!is_resource($this->connection))
return false;
// Delete file X.
fwrite($this->connection, 'DELE ' . $ftp_file . "\r\n");
if (!$this->check_response(250))
{
fwrite($this->connection, 'RMD ' . $ftp_file . "\r\n");
// Still no love?
if (!$this->check_response(250))
{
$this->error = 'bad_file';
return false;
}
}
return true;
}
function check_response($desired)
{
// Wait for a response that isn't continued with -, but don't wait too long.
$time = time();
do
$this->last_message = fgets($this->connection, 1024);
while (substr($this->last_message, 3, 1) != ' ' && time() - $time < 5);
// Was the desired response returned?
return is_array($desired) ? in_array(substr($this->last_message, 0, 3), $desired) : substr($this->last_message, 0, 3) == $desired;
}
function passive()
{
// We can't create a passive data connection without a primary one first being there.
if (!is_resource($this->connection))
return false;
// Request a passive connection - this means, we'll talk to you, you don't talk to us.
@fwrite($this->connection, "PASV\r\n");
$time = time();
do
$response = fgets($this->connection, 1024);
while (substr($response, 3, 1) != ' ' && time() - $time < 5);
// If it's not 227, we weren't given an IP and port, which means it failed.
if (substr($response, 0, 4) != '227 ')
{
$this->error = 'bad_response';
return false;
}
// Snatch the IP and port information, or die horribly trying...
if (preg_match('~\((\d+),\s*(\d+),\s*(\d+),\s*(\d+),\s*(\d+)(?:,\s*(\d+))\)~', $response, $match) == 0)
{
$this->error = 'bad_response';
return false;
}
// This is pretty simple - store it for later use ;).
$this->pasv = array('ip' => $match[1] . '.' . $match[2] . '.' . $match[3] . '.' . $match[4], 'port' => $match[5] * 256 + $match[6]);
return true;
}
function create_file($ftp_file)
{
// First, we have to be connected... very important.
if (!is_resource($this->connection))
return false;
// I'd like one passive mode, please!
if (!$this->passive())
return false;
// Seems logical enough, so far...
fwrite($this->connection, 'STOR ' . $ftp_file . "\r\n");
// Okay, now we connect to the data port. If it doesn't work out, it's probably "file already exists", etc.
$fp = @fsockopen($this->pasv['ip'], $this->pasv['port'], $err, $err, 5);
if (!$fp || !$this->check_response(150))
{
$this->error = 'bad_file';
@fclose($fp);
return false;
}
// This may look strange, but we're just closing it to indicate a zero-byte upload.
fclose($fp);
if (!$this->check_response(226))
{
$this->error = 'bad_response';
return false;
}
return true;
}
function list_dir($ftp_path = '', $search = false)
{
// Are we even connected...?
if (!is_resource($this->connection))
return false;
// Passive... non-agressive...
if (!$this->passive())
return false;
// Get the listing!
fwrite($this->connection, 'LIST -1' . ($search ? 'R' : '') . ($ftp_path == '' ? '' : ' ' . $ftp_path) . "\r\n");
// Connect, assuming we've got a connection.
$fp = @fsockopen($this->pasv['ip'], $this->pasv['port'], $err, $err, 5);
if (!$fp || !$this->check_response(array(150, 125)))
{
$this->error = 'bad_response';
@fclose($fp);
return false;
}
// Read in the file listing.
$data = '';
while (!feof($fp))
$data .= fread($fp, 4096);;
fclose($fp);
// Everything go okay?
if (!$this->check_response(226))
{
$this->error = 'bad_response';
return false;
}
return $data;
}
function locate($file, $listing = null)
{
if ($listing === null)
$listing = $this->list_dir('', true);
$listing = explode("\n", $listing);
@fwrite($this->connection, "PWD\r\n");
$time = time();
do
$response = fgets($this->connection, 1024);
while (substr($response, 3, 1) != ' ' && time() - $time < 5);
// Check for 257!
if (preg_match('~^257 "(.+?)" ~', $response, $match) != 0)
$current_dir = strtr($match[1], array('""' => '"'));
else
$current_dir = '';
for ($i = 0, $n = count($listing); $i < $n; $i++)
{
if (trim($listing[$i]) == '' && isset($listing[$i + 1]))
{
$current_dir = substr(trim($listing[++$i]), 0, -1);
$i++;
}
// Okay, this file's name is:
$listing[$i] = $current_dir . '/' . trim(strlen($listing[$i]) > 30 ? strrchr($listing[$i], ' ') : $listing[$i]);
if (substr($file, 0, 1) == '*' && substr($listing[$i], -(strlen($file) - 1)) == substr($file, 1))
return $listing[$i];
if (substr($file, -1) == '*' && substr($listing[$i], 0, strlen($file) - 1) == substr($file, 0, -1))
return $listing[$i];
if (basename($listing[$i]) == $file || $listing[$i] == $file)
return $listing[$i];
}
return false;
}
function create_dir($ftp_dir)
{
// We must be connected to the server to do something.
if (!is_resource($this->connection))
return false;
// Make this new beautiful directory!
fwrite($this->connection, 'MKD ' . $ftp_dir . "\r\n");
if (!$this->check_response(257))
{
$this->error = 'bad_file';
return false;
}
return true;
}
function detect_path($filesystem_path, $lookup_file = null)
{
$username = '';
if (isset($_SERVER['DOCUMENT_ROOT']))
{
if (preg_match('~^/home[2]?/([^/]+?)/public_html~', $_SERVER['DOCUMENT_ROOT'], $match))
{
$username = $match[1];
$path = strtr($_SERVER['DOCUMENT_ROOT'], array('/home/' . $match[1] . '/' => '', '/home2/' . $match[1] . '/' => ''));
if (substr($path, -1) == '/')
$path = substr($path, 0, -1);
if (strlen(dirname($_SERVER['PHP_SELF'])) > 1)
$path .= dirname($_SERVER['PHP_SELF']);
}
elseif (substr($filesystem_path, 0, 9) == '/var/www/')
$path = substr($filesystem_path, 8);
else
$path = strtr(strtr($filesystem_path, array('\\' => '/')), array($_SERVER['DOCUMENT_ROOT'] => ''));
}
else
$path = '';
if (is_resource($this->connection) && $this->list_dir($path) == '')
{
$data = $this->list_dir('', true);
if ($lookup_file === null)
$lookup_file = $_SERVER['PHP_SELF'];
$found_path = dirname($this->locate('*' . basename(dirname($lookup_file)) . '/' . basename($lookup_file), $data));
if ($found_path == false)
$found_path = dirname($this->locate(basename($lookup_file)));
if ($found_path != false)
$path = $found_path;
}
elseif (is_resource($this->connection))
$found_path = true;
return array($username, $path, isset($found_path));
}
function close()
{
// Goodbye!
fwrite($this->connection, "QUIT\r\n");
fclose($this->connection);
return true;
}
}
function updateSettingsFile($vars)
{
// Modify Settings.php.
$settingsArray = file(dirname(__FILE__) . '/Settings.php');
// !!! Do we just want to read the file in clean, and split it this way always?
if (count($settingsArray) == 1)
$settingsArray = preg_split('~[\r\n]~', $settingsArray[0]);
for ($i = 0, $n = count($settingsArray); $i < $n; $i++)
{
// Remove the redirect...
if (trim($settingsArray[$i]) == 'if (file_exists(dirname(__FILE__) . \'/install.php\'))' && trim($settingsArray[$i + 1]) == '{' && trim($settingsArray[$i + 3]) == '}')
{
// Get the four lines to nothing.
$settingsArray[$i] = '';
$settingsArray[++$i] = '';
$settingsArray[++$i] = '';
$settingsArray[++$i] = '';
continue;
}
if (trim($settingsArray[$i]) == '?' . '>')
$settingsArray[$i] = '';
// Don't trim or bother with it if it's not a variable.
if (substr($settingsArray[$i], 0, 1) != '$')
continue;
$settingsArray[$i] = rtrim($settingsArray[$i]) . "\n";
foreach ($vars as $var => $val)
if (strncasecmp($settingsArray[$i], '$' . $var, 1 + strlen($var)) == 0)
{
$comment = strstr($settingsArray[$i], '#');
$settingsArray[$i] = '$' . $var . ' = \'' . $val . '\';' . ($comment != '' ? "\t\t" . $comment : "\n");
unset($vars[$var]);
}
}
// Uh oh... the file wasn't empty... was it?
if (!empty($vars))
{
$settingsArray[$i++] = '';
foreach ($vars as $var => $val)
$settingsArray[$i++] = '$' . $var . ' = \'' . $val . '\';' . "\n";
}
// Blank out the file - done to fix a oddity with some servers.
$fp = @fopen(dirname(__FILE__) . '/Settings.php', 'w');
if (!$fp)
return false;
fclose($fp);
$fp = fopen(dirname(__FILE__) . '/Settings.php', 'r+');
// Gotta have one of these ;).
if (trim($settingsArray[0]) != '');
fclose($fp);
return true;
}
// Create an .htaccess file to prevent mod_security. SMF has filtering built-in.
function fixModSecurity()
{
$htaccess_addition = '
', $txt['smf_installer'], '