Mercurial > hg > vamp-website

diff forum/Sources/Subs-Admin.php @ 76:e3e11437ecea website

Find changesets by keywords (author, files, the commit message), revision number or hash, or revset expression.
Add forum code
author Chris Cannam
date Sun, 07 Jul 2013 11:25:48 +0200
parents
children
line wrap: on
line diff
--- /dev/null	Thu Jan 01 00:00:00 1970 +0000
+++ b/forum/Sources/Subs-Admin.php	Sun Jul 07 11:25:48 2013 +0200
@@ -0,0 +1,550 @@
+<?php
+
+/**
+ * Simple Machines Forum (SMF)
+ *
+ * @package SMF
+ * @author Simple Machines http://www.simplemachines.org
+ * @copyright 2011 Simple Machines
+ * @license http://www.simplemachines.org/about/smf/license.php BSD
+ *
+ * @version 2.0
+ */
+
+if (!defined('SMF'))
+	die('Hacking attempt...');
+
+/*	This file contains functions that are specifically done by administrators.
+	The most important function in this file for mod makers happens to be the
+	updateSettingsFile() function, but it shouldn't be used often anyway.
+
+	void getServerVersions(array checkFor)
+		- get a list of versions that are currently installed on the server.
+
+	void getFileVersions(array versionOptions)
+		- get detailed version information about the physical SMF files on the
+		  server.
+		- the input parameter allows to set whether to include SSI.php and
+		  whether the results should be sorted.
+		- returns an array containing information on source files, templates
+		  and language files found in the default theme directory (grouped by
+		  language).
+
+	void updateSettingsFile(array config_vars)
+		- updates the Settings.php file with the changes in config_vars.
+		- expects config_vars to be an associative array, with the keys as the
+		  variable names in Settings.php, and the values the varaible values.
+		- does not escape or quote values.
+		- preserves case, formatting, and additional options in file.
+		- writes nothing if the resulting file would be less than 10 lines
+		  in length (sanity check for read lock.)
+
+	void updateAdminPreferences()
+		- saves the admins current preferences to the database.
+
+	void emailAdmins(string $template, array $replacements = array(), additional_recipients = array())
+		- loads all users who are admins or have the admin forum permission.
+		- uses the email template and replacements passed in the parameters.
+		- sends them an email.
+
+	bool updateLastDatabaseError()
+		- attempts to use the backup file first, to store the last database error
+		- and only update Settings.php if the first was successful.
+
+*/
+
+function getServerVersions($checkFor)
+{
+	global $txt, $db_connection, $_PHPA, $smcFunc, $memcached, $modSettings;
+
+	loadLanguage('Admin');
+
+	$versions = array();
+
+	// Is GD available?  If it is, we should show version information for it too.
+	if (in_array('gd', $checkFor) && function_exists('gd_info'))
+	{
+		$temp = gd_info();
+		$versions['gd'] = array('title' => $txt['support_versions_gd'], 'version' => $temp['GD Version']);
+	}
+
+	// Now lets check for the Database.
+	if (in_array('db_server', $checkFor))
+	{
+		db_extend();
+		if (!isset($db_connection) || $db_connection === false)
+			trigger_error('getServerVersions(): you need to be connected to the database in order to get its server version', E_USER_NOTICE);
+		else
+		{
+			$versions['db_server'] = array('title' => sprintf($txt['support_versions_db'], $smcFunc['db_title']), 'version' => '');
+			$versions['db_server']['version'] = $smcFunc['db_get_version']();
+		}
+	}
+
+	// If we're using memcache we need the server info.
+	if (empty($memcached) && function_exists('memcache_get') && isset($modSettings['cache_memcached']) && trim($modSettings['cache_memcached']) != '')
+		get_memcached_server();
+
+	// Check to see if we have any accelerators installed...
+	if (in_array('mmcache', $checkFor) && defined('MMCACHE_VERSION'))
+		$versions['mmcache'] = array('title' => 'Turck MMCache', 'version' => MMCACHE_VERSION);
+	if (in_array('eaccelerator', $checkFor) && defined('EACCELERATOR_VERSION'))
+		$versions['eaccelerator'] = array('title' => 'eAccelerator', 'version' => EACCELERATOR_VERSION);
+	if (in_array('phpa', $checkFor) && isset($_PHPA))
+		$versions['phpa'] = array('title' => 'ionCube PHP-Accelerator', 'version' => $_PHPA['VERSION']);
+	if (in_array('apc', $checkFor) && extension_loaded('apc'))
+		$versions['apc'] = array('title' => 'Alternative PHP Cache', 'version' => phpversion('apc'));
+	if (in_array('memcache', $checkFor) && function_exists('memcache_set'))
+		$versions['memcache'] = array('title' => 'Memcached', 'version' => empty($memcached) ? '???' : memcache_get_version($memcached));
+	if (in_array('xcache', $checkFor) && function_exists('xcache_set'))
+		$versions['xcache'] = array('title' => 'XCache', 'version' => XCACHE_VERSION);
+	if (in_array('php', $checkFor))
+		$versions['php'] = array('title' => 'PHP', 'version' => PHP_VERSION);
+
+	if (in_array('server', $checkFor))
+		$versions['server'] = array('title' => $txt['support_versions_server'], 'version' => $_SERVER['SERVER_SOFTWARE']);
+
+	return $versions;
+}
+
+// Search through source, theme and language files to determine their version.
+function getFileVersions(&$versionOptions)
+{
+	global $boarddir, $sourcedir, $settings;
+
+	// Default place to find the languages would be the default theme dir.
+	$lang_dir = $settings['default_theme_dir'] . '/languages';
+
+	$version_info = array(
+		'file_versions' => array(),
+		'default_template_versions' => array(),
+		'template_versions' => array(),
+		'default_language_versions' => array(),
+	);
+
+	// Find the version in SSI.php's file header.
+	if (!empty($versionOptions['include_ssi']) && file_exists($boarddir . '/SSI.php'))
+	{
+		$fp = fopen($boarddir . '/SSI.php', 'rb');
+		$header = fread($fp, 4096);
+		fclose($fp);
+
+		// The comment looks rougly like... that.
+		if (preg_match('~\*\s@version\s+(.+)[\s]{2}~i', $header, $match) == 1)
+			$version_info['file_versions']['SSI.php'] = $match[1];
+		// Not found!  This is bad.
+		else
+			$version_info['file_versions']['SSI.php'] = '??';
+	}
+
+	// Do the paid subscriptions handler?
+	if (!empty($versionOptions['include_subscriptions']) && file_exists($boarddir . '/subscriptions.php'))
+	{
+		$fp = fopen($boarddir . '/subscriptions.php', 'rb');
+		$header = fread($fp, 4096);
+		fclose($fp);
+
+		// Found it?
+		if (preg_match('~\*\s@version\s+(.+)[\s]{2}~i', $header, $match) == 1)
+			$version_info['file_versions']['subscriptions.php'] = $match[1];
+		// If we haven't how do we all get paid?
+		else
+			$version_info['file_versions']['subscriptions.php'] = '??';
+	}
+
+	// Load all the files in the Sources directory, except this file and the redirect.
+	$sources_dir = dir($sourcedir);
+	while ($entry = $sources_dir->read())
+	{
+		if (substr($entry, -4) === '.php' && !is_dir($sourcedir . '/' . $entry) && $entry !== 'index.php')
+		{
+			// Read the first 4k from the file.... enough for the header.
+			$fp = fopen($sourcedir . '/' . $entry, 'rb');
+			$header = fread($fp, 4096);
+			fclose($fp);
+
+			// Look for the version comment in the file header.
+			if (preg_match('~\*\s@version\s+(.+)[\s]{2}~i', $header, $match) == 1)
+				$version_info['file_versions'][$entry] = $match[1];
+			// It wasn't found, but the file was... show a '??'.
+			else
+				$version_info['file_versions'][$entry] = '??';
+		}
+	}
+	$sources_dir->close();
+
+	// Load all the files in the default template directory - and the current theme if applicable.
+	$directories = array('default_template_versions' => $settings['default_theme_dir']);
+	if ($settings['theme_id'] != 1)
+		$directories += array('template_versions' => $settings['theme_dir']);
+
+	foreach ($directories as $type => $dirname)
+	{
+		$this_dir = dir($dirname);
+		while ($entry = $this_dir->read())
+		{
+			if (substr($entry, -12) == 'template.php' && !is_dir($dirname . '/' . $entry))
+			{
+				// Read the first 768 bytes from the file.... enough for the header.
+				$fp = fopen($dirname . '/' . $entry, 'rb');
+				$header = fread($fp, 768);
+				fclose($fp);
+
+				// Look for the version comment in the file header.
+				if (preg_match('~\*\s@version\s+(.+)[\s]{2}~i', $header, $match) == 1)
+					$version_info[$type][$entry] = $match[1];
+				// It wasn't found, but the file was... show a '??'.
+				else
+					$version_info[$type][$entry] = '??';
+			}
+		}
+		$this_dir->close();
+	}
+
+	// Load up all the files in the default language directory and sort by language.
+	$this_dir = dir($lang_dir);
+	while ($entry = $this_dir->read())
+	{
+		if (substr($entry, -4) == '.php' && $entry != 'index.php' && !is_dir($lang_dir . '/' . $entry))
+		{
+			// Read the first 768 bytes from the file.... enough for the header.
+			$fp = fopen($lang_dir . '/' . $entry, 'rb');
+			$header = fread($fp, 768);
+			fclose($fp);
+
+			// Split the file name off into useful bits.
+			list ($name, $language) = explode('.', $entry);
+
+			// Look for the version comment in the file header.
+			if (preg_match('~(?://|/\*)\s*Version:\s+(.+?);\s*' . preg_quote($name, '~') . '(?:[\s]{2}|\*/)~i', $header, $match) == 1)
+				$version_info['default_language_versions'][$language][$name] = $match[1];
+			// It wasn't found, but the file was... show a '??'.
+			else
+				$version_info['default_language_versions'][$language][$name] = '??';
+		}
+	}
+	$this_dir->close();
+
+	// Sort the file versions by filename.
+	if (!empty($versionOptions['sort_results']))
+	{
+		ksort($version_info['file_versions']);
+		ksort($version_info['default_template_versions']);
+		ksort($version_info['template_versions']);
+		ksort($version_info['default_language_versions']);
+
+		// For languages sort each language too.
+		foreach ($version_info['default_language_versions'] as $language => $dummy)
+			ksort($version_info['default_language_versions'][$language]);
+	}
+	return $version_info;
+}
+
+// Update the Settings.php file.
+function updateSettingsFile($config_vars)
+{
+	global $boarddir, $cachedir;
+
+	// When is Settings.php last changed?
+	$last_settings_change = filemtime($boarddir . '/Settings.php');
+
+	// Load the file.  Break it up based on \r or \n, and then clean out extra characters.
+	$settingsArray = trim(file_get_contents($boarddir . '/Settings.php'));
+	if (strpos($settingsArray, "\n") !== false)
+		$settingsArray = explode("\n", $settingsArray);
+	elseif (strpos($settingsArray, "\r") !== false)
+		$settingsArray = explode("\r", $settingsArray);
+	else
+		return;
+
+	// Make sure we got a good file.
+	if (count($config_vars) == 1 && isset($config_vars['db_last_error']))
+	{
+		$temp = trim(implode("\n", $settingsArray));
+		if (substr($temp, 0, 5) != '<?php' || substr($temp, -2) != '?' . '>')
+			return;
+		if (strpos($temp, 'sourcedir') === false || strpos($temp, 'boarddir') === false || strpos($temp, 'cookiename') === false)
+			return;
+	}
+
+	// Presumably, the file has to have stuff in it for this function to be called :P.
+	if (count($settingsArray) < 10)
+		return;
+
+	foreach ($settingsArray as $k => $dummy)
+		$settingsArray[$k] = strtr($dummy, array("\r" => '')) . "\n";
+
+	for ($i = 0, $n = count($settingsArray); $i < $n; $i++)
+	{
+		// Don't trim or bother with it if it's not a variable.
+		if (substr($settingsArray[$i], 0, 1) != '$')
+			continue;
+
+		$settingsArray[$i] = trim($settingsArray[$i]) . "\n";
+
+		// Look through the variables to set....
+		foreach ($config_vars as $var => $val)
+		{
+			if (strncasecmp($settingsArray[$i], '$' . $var, 1 + strlen($var)) == 0)
+			{
+				$comment = strstr(substr($settingsArray[$i], strpos($settingsArray[$i], ';')), '#');
+				$settingsArray[$i] = '$' . $var . ' = ' . $val . ';' . ($comment == '' ? '' : "\t\t" . rtrim($comment)) . "\n";
+
+				// This one's been 'used', so to speak.
+				unset($config_vars[$var]);
+			}
+		}
+
+		if (substr(trim($settingsArray[$i]), 0, 2) == '?' . '>')
+			$end = $i;
+	}
+
+	// This should never happen, but apparently it is happening.
+	if (empty($end) || $end < 10)
+		$end = count($settingsArray) - 1;
+
+	// Still more?  Add them at the end.
+	if (!empty($config_vars))
+	{
+		if (trim($settingsArray[$end]) == '?' . '>')
+			$settingsArray[$end++] = '';
+		else
+			$end++;
+
+		foreach ($config_vars as $var => $val)
+			$settingsArray[$end++] = '$' . $var . ' = ' . $val . ';' . "\n";
+		$settingsArray[$end] = '?' . '>';
+	}
+	else
+		$settingsArray[$end] = trim($settingsArray[$end]);
+
+	// Sanity error checking: the file needs to be at least 12 lines.
+	if (count($settingsArray) < 12)
+		return;
+
+	// Try to avoid a few pitfalls:
+	// like a possible race condition,
+	// or a failure to write at low diskspace
+
+	// Check before you act: if cache is enabled, we can do a simple test
+	// Can we even write things on this filesystem?
+	if ((empty($cachedir) || !file_exists($cachedir)) && file_exists($boarddir . '/cache'))
+		$cachedir = $boarddir . '/cache';
+	$test_fp = @fopen($cachedir . '/settings_update.tmp', "w+");
+	if ($test_fp)
+	{
+		fclose($test_fp);
+
+		$test_fp = @fopen($cachedir . '/settings_update.tmp', 'r+');
+		$written_bytes = fwrite($test_fp, "test");
+		fclose($test_fp);
+		@unlink($cachedir . '/settings_update.tmp');
+
+		if ($written_bytes !== strlen("test"))
+		{
+			// Oops. Low disk space, perhaps. Don't mess with Settings.php then.
+			// No means no. :P
+			return;
+		}
+	}
+
+	// Protect me from what I want! :P
+	clearstatcache();
+	if (filemtime($boarddir . '/Settings.php') === $last_settings_change)
+	{
+		// You asked for it...
+		// Blank out the file - done to fix a oddity with some servers.
+		$fp = @fopen($boarddir . '/Settings.php', 'w');
+
+		// Is it even writable, though?
+		if ($fp)
+		{
+			fclose($fp);
+
+			$fp = fopen($boarddir . '/Settings.php', 'r+');
+			foreach ($settingsArray as $line)
+				fwrite($fp, strtr($line, "\r", ''));
+			fclose($fp);
+		}
+	}
+}
+
+function updateAdminPreferences()
+{
+	global $options, $context, $smcFunc, $settings, $user_info;
+
+	// This must exist!
+	if (!isset($context['admin_preferences']))
+		return false;
+
+	// This is what we'll be saving.
+	$options['admin_preferences'] = serialize($context['admin_preferences']);
+
+	// Just check we haven't ended up with something theme exclusive somehow.
+	$smcFunc['db_query']('', '
+		DELETE FROM {db_prefix}themes
+		WHERE id_theme != {int:default_theme}
+		AND variable = {string:admin_preferences}',
+		array(
+			'default_theme' => 1,
+			'admin_preferences' => 'admin_preferences',
+		)
+	);
+
+	// Update the themes table.
+	$smcFunc['db_insert']('replace',
+		'{db_prefix}themes',
+		array('id_member' => 'int', 'id_theme' => 'int', 'variable' => 'string-255', 'value' => 'string-65534'),
+		array($user_info['id'], 1, 'admin_preferences', $options['admin_preferences']),
+		array('id_member', 'id_theme', 'variable')
+	);
+
+	// Make sure we invalidate any cache.
+	cache_put_data('theme_settings-' . $settings['theme_id'] . ':' . $user_info['id'], null, 0);
+}
+
+// Send all the administrators a lovely email.
+function emailAdmins($template, $replacements = array(), $additional_recipients = array())
+{
+	global $smcFunc, $sourcedir, $language, $modSettings;
+
+	// We certainly want this.
+	require_once($sourcedir . '/Subs-Post.php');
+
+	// Load all groups which are effectively admins.
+	$request = $smcFunc['db_query']('', '
+		SELECT id_group
+		FROM {db_prefix}permissions
+		WHERE permission = {string:admin_forum}
+			AND add_deny = {int:add_deny}
+			AND id_group != {int:id_group}',
+		array(
+			'add_deny' => 1,
+			'id_group' => 0,
+			'admin_forum' => 'admin_forum',
+		)
+	);
+	$groups = array(1);
+	while ($row = $smcFunc['db_fetch_assoc']($request))
+		$groups[] = $row['id_group'];
+	$smcFunc['db_free_result']($request);
+
+	$request = $smcFunc['db_query']('', '
+		SELECT id_member, member_name, real_name, lngfile, email_address
+		FROM {db_prefix}members
+		WHERE (id_group IN ({array_int:group_list}) OR FIND_IN_SET({raw:group_array_implode}, additional_groups) != 0)
+			AND notify_types != {int:notify_types}
+		ORDER BY lngfile',
+		array(
+			'group_list' => $groups,
+			'notify_types' => 4,
+			'group_array_implode' => implode(', additional_groups) != 0 OR FIND_IN_SET(', $groups),
+		)
+	);
+	$emails_sent = array();
+	while ($row = $smcFunc['db_fetch_assoc']($request))
+	{
+		// Stick their particulars in the replacement data.
+		$replacements['IDMEMBER'] = $row['id_member'];
+		$replacements['REALNAME'] = $row['member_name'];
+		$replacements['USERNAME'] = $row['real_name'];
+
+		// Load the data from the template.
+		$emaildata = loadEmailTemplate($template, $replacements, empty($row['lngfile']) || empty($modSettings['userLanguage']) ? $language : $row['lngfile']);
+
+		// Then send the actual email.
+		sendmail($row['email_address'], $emaildata['subject'], $emaildata['body'], null, null, false, 1);
+
+		// Track who we emailed so we don't do it twice.
+		$emails_sent[] = $row['email_address'];
+	}
+	$smcFunc['db_free_result']($request);
+
+	// Any additional users we must email this to?
+	if (!empty($additional_recipients))
+		foreach ($additional_recipients as $recipient)
+		{
+			if (in_array($recipient['email'], $emails_sent))
+				continue;
+
+			$replacements['IDMEMBER'] = $recipient['id'];
+			$replacements['REALNAME'] = $recipient['name'];
+			$replacements['USERNAME'] = $recipient['name'];
+
+			// Load the template again.
+			$emaildata = loadEmailTemplate($template, $replacements, empty($recipient['lang']) || empty($modSettings['userLanguage']) ? $language : $recipient['lang']);
+
+			// Send off the email.
+			sendmail($recipient['email'], $emaildata['subject'], $emaildata['body'], null, null, false, 1);
+		}
+}
+
+function updateLastDatabaseError()
+{
+	global $boarddir;
+
+	// Find out this way if we can even write things on this filesystem.
+	// In addition, store things first in the backup file
+
+	$last_settings_change = @filemtime($boarddir . '/Settings.php');
+
+	// Make sure the backup file is there...
+	$file = $boarddir . '/Settings_bak.php';
+	if ((!file_exists($file) || filesize($file) == 0) && !copy($boarddir . '/Settings.php', $file))
+			return false;
+
+	// ...and writable!
+	if (!is_writable($file))
+	{
+		chmod($file, 0755);
+		if (!is_writable($file))
+		{
+			chmod($file, 0775);
+			if (!is_writable($file))
+			{
+				chmod($file, 0777);
+				if (!is_writable($file))
+						return false;
+			}
+		}
+	}
+
+	// Put the new timestamp.
+	$data = file_get_contents($file);
+	$data = preg_replace('~\$db_last_error = \d+;~', '$db_last_error = ' . time() . ';', $data);
+
+	// Open the backup file for writing
+	if ($fp = @fopen($file, 'w'))
+	{
+		// Reset the file buffer.
+		set_file_buffer($fp, 0);
+
+		// Update the file.
+		$t = flock($fp, LOCK_EX);
+		$bytes = fwrite($fp, $data);
+		flock($fp, LOCK_UN);
+		fclose($fp);
+
+		// Was it a success?
+		// ...only relevant if we're still dealing with the same good ole' settings file.
+		clearstatcache();
+		if (($bytes == strlen($data)) && (filemtime($boarddir . '/Settings.php') === $last_settings_change))
+		{
+			// This is our new Settings file...
+			// At least this one is an atomic operation
+			@copy($file, $boarddir . '/Settings.php');
+			return true;
+		}
+		else
+		{
+			// Oops. Someone might have been faster
+			// or we have no more disk space left, troubles, troubles...
+			// Copy the file back and run for your life!
+			@copy($boarddir . '/Settings.php', $file);
+		}
+	}
+
+	return false;
+}
+
+?>
\ No newline at end of file