index.php 10.7 KB
Newer Older
Evan Prodromou's avatar
Evan Prodromou committed
1
<?php
2
/**
3
 * StatusNet - the distributed open-source microblogging tool
4
 * Copyright (C) 2008, 2009, StatusNet, Inc.
Evan Prodromou's avatar
Evan Prodromou committed
5
 *
Evan Prodromou's avatar
Evan Prodromou committed
6 7 8 9
 * This program is free software: you can redistribute it and/or modify
 * it under the terms of the GNU Affero General Public License as published by
 * the Free Software Foundation, either version 3 of the License, or
 * (at your option) any later version.
Evan Prodromou's avatar
Evan Prodromou committed
10
 *
Evan Prodromou's avatar
Evan Prodromou committed
11 12 13 14
 * This program is distributed in the hope that it will be useful,
 * but WITHOUT ANY WARRANTY; without even the implied warranty of
 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
 * GNU Affero General Public License for more details.
Evan Prodromou's avatar
Evan Prodromou committed
15
 *
Evan Prodromou's avatar
Evan Prodromou committed
16 17
 * You should have received a copy of the GNU Affero General Public License
 * along with this program.  If not, see <http://www.gnu.org/licenses/>.
Evan Prodromou's avatar
Evan Prodromou committed
18
 *
19 20
 * @category StatusNet
 * @package  StatusNet
21
 * @author   Brenda Wallace <shiny@cpan.org>
22
 * @author   Brion Vibber <brion@pobox.com>
23
 * @author   Christopher Vollick <psycotica0@gmail.com>
24
 * @author   CiaranG <ciaran@ciarang.com>
25
 * @author   Craig Andrews <candrews@integralblue.com>
26
 * @author   Evan Prodromou <evan@controlezvous.ca>
27
 * @author   Gina Haeussge <osd@foosel.net>
28
 * @author   James Walker <walkah@walkah.net>
29 30 31
 * @author   Jeffery To <jeffery.to@gmail.com>
 * @author   Mike Cochrane <mikec@mikenz.geek.nz>
 * @author   Robin Millette <millette@controlyourself.ca>
32
 * @author   Sarven Capadisli <csarven@controlyourself.ca>
33
 * @author   Tom Adams <tom@holizz.com>
34
 * @author   Zach Copley <zach@status.net>
35
 * @copyright 2009 Free Software Foundation, Inc http://www.fsf.org
36
 *
37
 * @license  GNU Affero General Public License http://www.gnu.org/licenses/
Evan Prodromou's avatar
Evan Prodromou committed
38
 */
Evan Prodromou's avatar
Evan Prodromou committed
39 40

define('INSTALLDIR', dirname(__FILE__));
Evan Prodromou's avatar
Evan Prodromou committed
41
define('STATUSNET', true);
42
define('LACONICA', true); // compatibility
Evan Prodromou's avatar
Evan Prodromou committed
43

44 45
require_once INSTALLDIR . '/lib/common.php';

46 47 48
$user = null;
$action = null;

49 50
function getPath($req)
{
51
    if ((common_config('site', 'fancy') || !array_key_exists('PATH_INFO', $_SERVER))
52
        && array_key_exists('p', $req)
53
    ) {
54
        return $req['p'];
55
    } else if (array_key_exists('PATH_INFO', $_SERVER)) {
56 57 58 59 60 61 62
        $path = $_SERVER['PATH_INFO'];
        $script = $_SERVER['SCRIPT_NAME'];
        if (substr($path, 0, mb_strlen($script)) == $script) {
            return substr($path, mb_strlen($script));
        } else {
            return $path;
        }
63
    } else {
64
        return null;
65 66
    }
}
67

Brenda Wallace's avatar
Brenda Wallace committed
68 69
/**
 * logs and then displays error messages
Brenda Wallace's avatar
Brenda Wallace committed
70 71
 *
 * @return void
Brenda Wallace's avatar
Brenda Wallace committed
72
 */
73 74
function handleError($error)
{
75 76 77
    if ($error->getCode() == DB_DATAOBJECT_ERROR_NODATA) {
        return;
    }
78

79 80 81 82 83 84 85 86 87 88 89 90 91 92
    $logmsg = "PEAR error: " . $error->getMessage();
    if (common_config('site', 'logdebug')) {
        $logmsg .= " : ". $error->getDebugInfo();
    }
    // DB queries often end up with a lot of newlines; merge to a single line
    // for easier grepability...
    $logmsg = str_replace("\n", " ", $logmsg);
    common_log(LOG_ERR, $logmsg);

    // @fixme backtrace output should be consistent with exception handling
    if (common_config('site', 'logdebug')) {
        $bt = $error->getBacktrace();
        foreach ($bt as $n => $line) {
            common_log(LOG_ERR, formatBacktraceLine($n, $line));
93 94
        }
    }
95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117
    if ($error instanceof DB_DataObject_Error
        || $error instanceof DB_Error
    ) {
        $msg = sprintf(
            _(
                'The database for %s isn\'t responding correctly, '.
                'so the site won\'t work properly. '.
                'The site admins probably know about the problem, '.
                'but you can contact them at %s to make sure. '.
                'Otherwise, wait a few minutes and try again.'
            ),
            common_config('site', 'name'),
            common_config('site', 'email')
        );
    } else {
        $msg = _(
            'An important error occured, probably related to email setup. '.
            'Check logfiles for more info..'
        );
    }

    $dac = new DBErrorAction($msg, 500);
    $dac->showPage();
118 119
    exit(-1);
}
120

121 122 123 124 125 126 127 128 129 130 131 132 133 134 135 136 137 138 139 140 141 142 143 144 145 146 147 148 149 150 151 152
/**
 * Format a backtrace line for debug output roughly like debug_print_backtrace() does.
 * Exceptions already have this built in, but PEAR error objects just give us the array.
 *
 * @param int $n line number
 * @param array $line per-frame array item from debug_backtrace()
 * @return string
 */
function formatBacktraceLine($n, $line)
{
    $out = "#$n ";
    if (isset($line['class'])) $out .= $line['class'];
    if (isset($line['type'])) $out .= $line['type'];
    if (isset($line['function'])) $out .= $line['function'];
    $out .= '(';
    if (isset($line['args'])) {
        $args = array();
        foreach ($line['args'] as $arg) {
            // debug_print_backtrace seems to use var_export
            // but this gets *very* verbose!
            $args[] = gettype($arg);
        }
        $out .= implode(',', $args);
    }
    $out .= ')';
    $out .= ' called at [';
    if (isset($line['file'])) $out .= $line['file'];
    if (isset($line['line'])) $out .= ':' . $line['line'];
    $out .= ']';
    return $out;
}

153
function setupRW()
154 155 156
{
    global $config;

157
    static $alwaysRW = array('session', 'remember_me');
158

159 160 161 162 163 164 165 166 167
    // We ensure that these tables always are used
    // on the master DB

    $config['db']['database_rw'] = $config['db']['database'];
    $config['db']['ini_rw'] = INSTALLDIR.'/classes/statusnet.ini';

    foreach ($alwaysRW as $table) {
        $config['db']['table_'.$table] = 'rw';
    }
168
}
169

170 171
function checkMirror($action_obj, $args)
{
172 173
    global $config;

174 175 176 177 178 179 180 181 182 183 184 185 186 187 188 189
    if (common_config('db', 'mirror') && $action_obj->isReadOnly($args)) {
        if (is_array(common_config('db', 'mirror'))) {
            // "load balancing", ha ha
            $arr = common_config('db', 'mirror');
            $k = array_rand($arr);
            $mirror = $arr[$k];
        } else {
            $mirror = common_config('db', 'mirror');
        }

        // everyone else uses the mirror

        $config['db']['database'] = $mirror;
    }
}

190 191
function isLoginAction($action)
{
192
    static $loginActions =  array('login', 'recoverpassword', 'api', 'doc', 'register', 'publicxrds', 'otp', 'opensearch', 'rsd');
193 194 195 196 197 198 199 200 201 202

    $login = null;

    if (Event::handle('LoginAction', array($action, &$login))) {
        $login = in_array($action, $loginActions);
    }

    return $login;
}

203 204
function main()
{
205 206 207 208 209 210
    // fake HTTP redirects using lighttpd's 404 redirects
    if (strpos($_SERVER['SERVER_SOFTWARE'], 'lighttpd') !== false) {
        $_lighty_url = $base_url.$_SERVER['REQUEST_URI'];
        $_lighty_url = @parse_url($_lighty_url);

        if ($_lighty_url['path'] != '/index.php' && $_lighty_url['path'] != '/') {
211
            $_lighty_path = preg_replace('/^'.preg_quote(common_config('site', 'path')).'\//', '', substr($_lighty_url['path'], 1));
212
            $_SERVER['QUERY_STRING'] = 'p='.$_lighty_path;
213
            if (isset($_lighty_url['query']) && $_lighty_url['query'] != '') {
214
                $_SERVER['QUERY_STRING'] .= '&'.$_lighty_url['query'];
215 216 217 218
                parse_str($_lighty_url['query'], $_lighty_query);
                foreach ($_lighty_query as $key => $val) {
                    $_GET[$key] = $_REQUEST[$key] = $val;
                }
219
            }
220
            $_GET['p'] = $_REQUEST['p'] = $_lighty_path;
221 222 223 224
        }
    }
    $_SERVER['REDIRECT_URL'] = preg_replace("/\?.+$/", "", $_SERVER['REQUEST_URI']);

225
    // quick check for fancy URL auto-detection support in installer.
226
    if (isset($_SERVER['REDIRECT_URL']) && (preg_replace("/^\/$/", "", (dirname($_SERVER['REQUEST_URI']))) . '/check-fancy') === $_SERVER['REDIRECT_URL']) {
227 228
        die("Fancy URL support detection succeeded. We suggest you enable this to get fancy (pretty) URLs.");
    }
229
    global $user, $action;
230

231
    Snapshot::check();
232

233
    if (!_have_config()) {
234 235 236 237 238 239
        $msg = sprintf(
            _(
                "No configuration file found. Try running ".
                "the installation program first."
            )
        );
240 241 242 243 244
        $sac = new ServerErrorAction($msg);
        $sac->showPage();
        return;
    }

245 246 247 248
    // For database errors

    PEAR::setErrorHandling(PEAR_ERROR_CALLBACK, 'handleError');

249 250 251 252
    // Make sure RW database is setup

    setupRW();

253
    // XXX: we need a little more structure in this script
254

255
    // get and cache current user (may hit RW!)
256

257
    $user = common_current_user();
Evan Prodromou's avatar
Evan Prodromou committed
258

259
    // initialize language env
Evan Prodromou's avatar
Evan Prodromou committed
260

261
    common_init_language();
Evan Prodromou's avatar
Evan Prodromou committed
262

263 264
    $path = getPath($_REQUEST);

Evan Prodromou's avatar
Evan Prodromou committed
265
    $r = Router::get();
266

267
    $args = $r->map($path);
Evan Prodromou's avatar
Evan Prodromou committed
268

269 270 271 272 273
    if (!$args) {
        $cac = new ClientErrorAction(_('Unknown page'), 404);
        $cac->showPage();
        return;
    }
274

275 276 277 278 279
    // Note the order here: arguments from the URL mapper will
    // override request params that have been sent. This ensures
    // that for instance an action parameter can't be overridden
    // with an arbitrary action class.
    $args = array_merge($_REQUEST, $args);
280 281

    Event::handle('ArgsInitialize', array(&$args));
282

283
    $action = $args['action'];
284

285 286 287
    if (!$action || !preg_match('/^[a-zA-Z0-9_-]*$/', $action)) {
        common_redirect(common_local_url('public'));
        return;
288
    }
289

290 291 292
    // If the site is private, and they're not on one of the "public"
    // parts of the site, redirect to login

Evan Prodromou's avatar
Evan Prodromou committed
293 294
    if (!$user && common_config('site', 'private')
        && !isLoginAction($action)
295
        && !preg_match('/rss$/', $action)
296 297 298
        && $action != 'robotstxt'
        && !preg_match('/^Api/', $action)) {

299 300 301 302 303 304 305 306 307 308 309 310 311 312
        // set returnto
        $rargs =& common_copy_args($args);
        unset($rargs['action']);
        if (common_config('site', 'fancy')) {
            unset($rargs['p']);
        }
        if (array_key_exists('submit', $rargs)) {
            unset($rargs['submit']);
        }
        foreach (array_keys($_COOKIE) as $cookie) {
            unset($rargs[$cookie]);
        }
        common_set_returnto(common_local_url($action, $rargs));

313 314 315 316 317 318 319 320
        common_redirect(common_local_url('login'));
        return;
    }

    $action_class = ucfirst($action).'Action';

    if (!class_exists($action_class)) {
        $cac = new ClientErrorAction(_('Unknown action'), 404);
321
        $cac->showPage();
322 323 324
    } else {
        $action_obj = new $action_class();

325
        checkMirror($action_obj, $args);
326 327 328 329 330 331 332 333 334

        try {
            if ($action_obj->prepare($args)) {
                $action_obj->handle($args);
            }
        } catch (ClientException $cex) {
            $cac = new ClientErrorAction($cex->getMessage(), $cex->getCode());
            $cac->showPage();
        } catch (ServerException $sex) { // snort snort guffaw
335
            $sac = new ServerErrorAction($sex->getMessage(), $sex->getCode(), $sex);
336 337
            $sac->showPage();
        } catch (Exception $ex) {
338
            $sac = new ServerErrorAction($ex->getMessage(), 500, $ex);
339 340
            $sac->showPage();
        }
341
    }
342
}
343

344 345
main();

346 347 348 349
// XXX: cleanup exit() calls or add an exit handler so
// this always gets called

Event::handle('CleanupPlugin');