index.php 10.1 KB
Newer Older
Evan Prodromou's avatar
Evan Prodromou committed
1
<?php
2
/**
3
 * StatusNet - the distributed open-source microblogging tool
4
 * Copyright (C) 2008, 2009, StatusNet, Inc.
Evan Prodromou's avatar
Evan Prodromou committed
5
 *
6 7 8 9
 * This program is free software: you can redistribute it and/or modify
 * it under the terms of the GNU Affero General Public License as published by
 * the Free Software Foundation, either version 3 of the License, or
 * (at your option) any later version.
Evan Prodromou's avatar
Evan Prodromou committed
10
 *
11 12 13 14
 * This program is distributed in the hope that it will be useful,
 * but WITHOUT ANY WARRANTY; without even the implied warranty of
 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
 * GNU Affero General Public License for more details.
Evan Prodromou's avatar
Evan Prodromou committed
15
 *
16 17
 * You should have received a copy of the GNU Affero General Public License
 * along with this program.  If not, see <http://www.gnu.org/licenses/>.
Evan Prodromou's avatar
Evan Prodromou committed
18
 *
19 20
 * @category StatusNet
 * @package  StatusNet
21
 * @author   Brenda Wallace <shiny@cpan.org>
22
 * @author   Brion Vibber <brion@pobox.com>
23
 * @author   Christopher Vollick <psycotica0@gmail.com>
24
 * @author   CiaranG <ciaran@ciarang.com>
25
 * @author   Craig Andrews <candrews@integralblue.com>
26
 * @author   Evan Prodromou <evan@controlezvous.ca>
27
 * @author   Gina Haeussge <osd@foosel.net>
28
 * @author   James Walker <walkah@walkah.net>
29 30 31
 * @author   Jeffery To <jeffery.to@gmail.com>
 * @author   Mike Cochrane <mikec@mikenz.geek.nz>
 * @author   Robin Millette <millette@controlyourself.ca>
32
 * @author   Sarven Capadisli <csarven@controlyourself.ca>
33
 * @author   Tom Adams <tom@holizz.com>
34
 * @author   Zach Copley <zach@status.net>
35
 * @copyright 2009 Free Software Foundation, Inc http://www.fsf.org
36
 *
37
 * @license  GNU Affero General Public License http://www.gnu.org/licenses/
38
 */
Evan Prodromou's avatar
Evan Prodromou committed
39

40
$_startTime = microtime(true);
41
$_perfCounters = array();
42

mmn's avatar
mmn committed
43 44 45 46 47 48
// We provide all our dependencies through our own autoload.
// This will probably be configurable for distributing with
// system packages (like with Debian apt etc. where included
// libraries are maintained through repositories)
set_include_path('.');  // mainly fixes an issue where /usr/share/{pear,php*}/DB/DataObject.php is _old_ on various systems...

Evan Prodromou's avatar
Evan Prodromou committed
49
define('INSTALLDIR', dirname(__FILE__));
50 51
define('GNUSOCIAL', true);
define('STATUSNET', true);  // compatibility
Evan Prodromou's avatar
Evan Prodromou committed
52

53 54 55
$user = null;
$action = null;

56 57
function getPath($req)
{
58 59
    $p = null;

60
    if ((common_config('site', 'fancy') || !array_key_exists('PATH_INFO', $_SERVER))
61
        && array_key_exists('p', $req)
62
    ) {
63
        $p = $req['p'];
64
    } else if (array_key_exists('PATH_INFO', $_SERVER)) {
65 66 67
        $path = $_SERVER['PATH_INFO'];
        $script = $_SERVER['SCRIPT_NAME'];
        if (substr($path, 0, mb_strlen($script)) == $script) {
68
            $p = substr($path, mb_strlen($script) + 1);
69
        } else {
70
            $p = $path;
71
        }
72
    } else {
73 74 75 76 77
        $p = null;
    }

    // Trim all initial '/'

78
    $p = ltrim($p, '/');
79 80

    return $p;
81
}
82

Brenda Wallace's avatar
Brenda Wallace committed
83 84
/**
 * logs and then displays error messages
Brenda Wallace's avatar
Brenda Wallace committed
85 86
 *
 * @return void
Brenda Wallace's avatar
Brenda Wallace committed
87
 */
88 89
function handleError($error)
{
90
    try {
91

92 93
        if ($error->getCode() == DB_DATAOBJECT_ERROR_NODATA) {
            return;
94
        }
95

96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115
        $logmsg = "PEAR error: " . $error->getMessage();
        if ($error instanceof PEAR_Exception && common_config('site', 'logdebug')) {
            $logmsg .= " : ". $error->toText();
        }
        // DB queries often end up with a lot of newlines; merge to a single line
        // for easier grepability...
        $logmsg = str_replace("\n", " ", $logmsg);
        common_log(LOG_ERR, $logmsg);

        // @fixme backtrace output should be consistent with exception handling
        if (common_config('site', 'logdebug')) {
            $bt = $error->getTrace();
            foreach ($bt as $n => $line) {
                common_log(LOG_ERR, formatBacktraceLine($n, $line));
            }
        }
        if ($error instanceof DB_DataObject_Error
            || $error instanceof DB_Error
            || ($error instanceof PEAR_Exception && $error->getCode() == -24)
        ) {
116 117 118 119 120 121
            //If we run into a DB error, assume we can't connect to the DB at all
            //so set the current user to null, so we don't try to access the DB
            //while rendering the error page.
            global $_cur;
            $_cur = null;

122
            $msg = sprintf(
123
                // TRANS: Database error message.
124 125 126 127 128
                _('The database for %1$s is not responding correctly, '.
                  'so the site will not work properly. '.
                  'The site admins probably know about the problem, '.
                  'but you can contact them at %2$s to make sure. '.
                  'Otherwise, wait a few minutes and try again.'
129 130 131 132
                ),
                common_config('site', 'name'),
                common_config('site', 'email')
            );
133

134 135 136 137 138
            $erraction = new DBErrorAction($msg, 500);
        } elseif ($error instanceof ClientException) {
            $erraction = new ClientErrorAction($error->getMessage(), $error->getCode());
        } elseif ($error instanceof ServerException) {
            $erraction = new ServerErrorAction($error->getMessage(), $error->getCode(), $error);
139
        } else {
140 141
            // If it wasn't specified more closely which kind of exception it was
            $erraction = new ServerErrorAction($error->getMessage(), 500, $error);
142
        }
143
        $erraction->showPage();
144 145

    } catch (Exception $e) {
146
        // TRANS: Error message.
147
        echo _('An error occurred.');
148
        exit(-1);
149
    }
150 151
    exit(-1);
}
152

153 154
set_exception_handler('handleError');

155 156 157 158 159
// quick check for fancy URL auto-detection support in installer.
if (preg_replace("/\?.+$/", "", $_SERVER['REQUEST_URI']) === preg_replace("/^\/$/", "", (dirname($_SERVER['REQUEST_URI']))) . '/check-fancy') {
    die("Fancy URL support detection succeeded. We suggest you enable this to get fancy (pretty) URLs.");
}

160 161
require_once INSTALLDIR . '/lib/common.php';

162 163 164 165 166 167 168 169 170 171 172 173 174 175 176 177 178 179 180 181 182 183 184 185 186 187 188 189 190 191 192 193
/**
 * Format a backtrace line for debug output roughly like debug_print_backtrace() does.
 * Exceptions already have this built in, but PEAR error objects just give us the array.
 *
 * @param int $n line number
 * @param array $line per-frame array item from debug_backtrace()
 * @return string
 */
function formatBacktraceLine($n, $line)
{
    $out = "#$n ";
    if (isset($line['class'])) $out .= $line['class'];
    if (isset($line['type'])) $out .= $line['type'];
    if (isset($line['function'])) $out .= $line['function'];
    $out .= '(';
    if (isset($line['args'])) {
        $args = array();
        foreach ($line['args'] as $arg) {
            // debug_print_backtrace seems to use var_export
            // but this gets *very* verbose!
            $args[] = gettype($arg);
        }
        $out .= implode(',', $args);
    }
    $out .= ')';
    $out .= ' called at [';
    if (isset($line['file'])) $out .= $line['file'];
    if (isset($line['line'])) $out .= ':' . $line['line'];
    $out .= ']';
    return $out;
}

194
function setupRW()
195 196 197
{
    global $config;

198
    static $alwaysRW = array('session', 'remember_me');
199

200
    $rwdb = $config['db']['database'];
201

202
    if (Event::handle('StartReadWriteTables', array(&$alwaysRW, &$rwdb))) {
203

204 205 206 207 208 209 210 211 212 213 214
        // We ensure that these tables always are used
        // on the master DB

        $config['db']['database_rw'] = $rwdb;
        $config['db']['ini_rw'] = INSTALLDIR.'/classes/statusnet.ini';

        foreach ($alwaysRW as $table) {
            $config['db']['table_'.$table] = 'rw';
        }

        Event::handle('EndReadWriteTables', array($alwaysRW, $rwdb));
215
    }
216 217

    return;
218
}
219

220 221
function isLoginAction($action)
{
222
    static $loginActions =  array('login', 'recoverpassword', 'api', 'doc', 'register', 'publicxrds', 'otp', 'opensearch', 'rsd');
223 224 225 226 227 228 229 230 231 232

    $login = null;

    if (Event::handle('LoginAction', array($action, &$login))) {
        $login = in_array($action, $loginActions);
    }

    return $login;
}

233 234
function main()
{
235
    global $user, $action;
236

237
    if (!_have_config()) {
238
        $msg = sprintf(
239
            // TRANS: Error message displayed when there is no StatusNet configuration file.
240 241
            _("No configuration file found. Try running ".
              "the installation program first."
242 243
            )
        );
244 245 246 247 248
        $sac = new ServerErrorAction($msg);
        $sac->showPage();
        return;
    }

249 250 251 252
    // Make sure RW database is setup

    setupRW();

253
    // XXX: we need a little more structure in this script
254

255
    // get and cache current user (may hit RW!)
256

257
    $user = common_current_user();
Evan Prodromou's avatar
Evan Prodromou committed
258

259
    // initialize language env
Evan Prodromou's avatar
Evan Prodromou committed
260

261
    common_init_language();
262

263 264
    $path = getPath($_REQUEST);

Evan Prodromou's avatar
Evan Prodromou committed
265
    $r = Router::get();
266

267
    $args = $r->map($path);
Evan Prodromou's avatar
Evan Prodromou committed
268

269
    // If the request is HTTP and it should be HTTPS...
270
    if (GNUsocial::useHTTPS() && !GNUsocial::isHTTPS()) {
271 272 273
        common_redirect(common_local_url($args['action'], $args));
    }

274
    $args = array_merge($args, $_REQUEST);
275 276

    Event::handle('ArgsInitialize', array(&$args));
277

278
    $action = basename($args['action']);
279

280 281
    if (!$action || !preg_match('/^[a-zA-Z0-9_-]*$/', $action)) {
        common_redirect(common_local_url('public'));
282
    }
283

284 285 286
    // If the site is private, and they're not on one of the "public"
    // parts of the site, redirect to login

Evan Prodromou's avatar
Evan Prodromou committed
287 288
    if (!$user && common_config('site', 'private')
        && !isLoginAction($action)
289
        && !preg_match('/rss$/', $action)
290 291 292
        && $action != 'robotstxt'
        && !preg_match('/^Api/', $action)) {

293 294 295 296 297 298 299 300 301 302 303 304 305 306
        // set returnto
        $rargs =& common_copy_args($args);
        unset($rargs['action']);
        if (common_config('site', 'fancy')) {
            unset($rargs['p']);
        }
        if (array_key_exists('submit', $rargs)) {
            unset($rargs['submit']);
        }
        foreach (array_keys($_COOKIE) as $cookie) {
            unset($rargs[$cookie]);
        }
        common_set_returnto(common_local_url($action, $rargs));

307 308 309 310 311 312
        common_redirect(common_local_url('login'));
    }

    $action_class = ucfirst($action).'Action';

    if (!class_exists($action_class)) {
313
        // TRANS: Error message displayed when trying to perform an undefined action.
314
        throw new ClientException(_('Unknown action'), 404);
315
    }
316 317

    call_user_func("$action_class::run", $args);
318
}
319

320 321
main();

322 323 324 325
// XXX: cleanup exit() calls or add an exit handler so
// this always gets called

Event::handle('CleanupPlugin');