* Fixed SSL problem and many other minor things
[Packages/TYPO3.CMS.git] / typo3 / init.php
1 <?php
2 /***************************************************************
3 * Copyright notice
4 *
5 * (c) 1999-2004 Kasper Skaarhoj (kasper@typo3.com)
6 * All rights reserved
7 *
8 * This script is part of the TYPO3 project. The TYPO3 project is
9 * free software; you can redistribute it and/or modify
10 * it under the terms of the GNU General Public License as published by
11 * the Free Software Foundation; either version 2 of the License, or
12 * (at your option) any later version.
13 *
14 * The GNU General Public License can be found at
15 * http://www.gnu.org/copyleft/gpl.html.
16 * A copy is found in the textfile GPL.txt and important notices to the license
17 * from the author is found in LICENSE.txt distributed with these scripts.
18 *
19 *
20 * This script is distributed in the hope that it will be useful,
21 * but WITHOUT ANY WARRANTY; without even the implied warranty of
22 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
23 * GNU General Public License for more details.
24 *
25 * This copyright notice MUST APPEAR in all copies of the script!
26 ***************************************************************/
27 /**
28 * TYPO3 Backend initialization
29 *
30 * This script is called by every backend script.
31 * The script authenticates the backend user.
32 * In addition this script also initializes the database and other stuff by including the script localconf.php
33 *
34 * IMPORTANT:
35 * This script exits if no user is logged in!
36 * If you want the script to return even if no user is logged in,
37 * you must define the constant TYPO3_PROCEED_IF_NO_USER=1
38 * before you include this script.
39 *
40 *
41 * This script does the following:
42 * - extracts and defines path's
43 * - includes certain libraries
44 * - authenticates the user
45 * - sets the configuration values (localconf.php)
46 * - includes tables.php that sets more values and possibly overrides others
47 * - load the groupdata for the user and set filemounts / webmounts
48 *
49 * For a detailed description of this script, the scope of constants and variables in it,
50 * please refer to the document "Inside TYPO3"
51 *
52 * $Id$
53 * Revised for TYPO3 3.6 2/2003 by Kasper Skaarhoj
54 *
55 * @author Kasper Skaarhoj <kasper@typo3.com>
56 * @package TYPO3
57 * @subpackage core
58 */
59
60
61 // *******************************
62 // Set error reporting
63 // *******************************
64 error_reporting (E_ALL ^ E_NOTICE);
65
66
67 // *******************************
68 // Define constants
69 // *******************************
70 define('TYPO3_OS', stristr(PHP_OS,'win')&&!stristr(PHP_OS,'darwin')?'WIN':'');
71 define('TYPO3_MODE','BE');
72 define('PATH_thisScript',str_replace('//','/', str_replace('\\','/', php_sapi_name()=='cgi'||php_sapi_name()=='isapi'||php_sapi_name()=='cgi-fcgi' ? $HTTP_SERVER_VARS['PATH_TRANSLATED']:$HTTP_SERVER_VARS['SCRIPT_FILENAME'])));
73 define('TYPO3_mainDir', 'typo3/'); // This is the directory of the backend administration for the sites of this TYPO3 installation.
74
75
76 // *******************************
77 // Checking path
78 // *******************************
79 $temp_path = dirname(PATH_thisScript).'/';
80 $temp_modPath='';
81 // If TYPO3_MOD_PATH is defined we must calculate the modPath since init.php must be included by a module
82 if (substr($temp_path,-strlen(TYPO3_mainDir))!=TYPO3_mainDir) {
83 if (defined('TYPO3_MOD_PATH')) {
84 if (substr($temp_path,-strlen(TYPO3_MOD_PATH))==TYPO3_MOD_PATH) {
85 $temp_path=substr($temp_path,0,-strlen(TYPO3_MOD_PATH));
86 $temp_modPath=TYPO3_MOD_PATH;
87 } elseif (substr(TYPO3_MOD_PATH,0,13)=='../typo3conf/' && (substr(TYPO3_MOD_PATH,3)==substr($temp_path,-strlen(substr(TYPO3_MOD_PATH,3))))) {
88 $temp_path = substr($temp_path,0,-strlen(substr(TYPO3_MOD_PATH,3))).TYPO3_mainDir;
89 $temp_modPath=TYPO3_MOD_PATH;
90 }
91 if (!@is_dir($temp_path)) {
92 $temp_path='';
93 }
94 }
95 }
96
97 // OUTPUT error message and exit if there are problems with the path. Otherwise define constants and continue.
98 if (!$temp_path || substr($temp_path,-strlen(TYPO3_mainDir))!=TYPO3_mainDir) { // This must be the case in order to proceed
99 echo ('Error in init.php: Path to TYPO3 main dir could not be resolved correctly. <br /><br />
100 This happens if the last '.strlen(TYPO3_mainDir).' characters of this path, '.$temp_path.', (\$temp_path) is NOT "'.TYPO3_mainDir.'" for some reason. <br />
101 You may have a strange server configuration.
102 Or maybe you didn\'t set constant TYPO3_MOD_PATH in your module?');
103 echo '<br /><strong>If you expect any help from anybody on this issue, you should save this page as an html document and send it along with your request for help!</strong>';
104 if (strstr($temp_path,'typo3_src')) {
105 echo '<br /><font color="red"><strong> It seems you are trying to run the TYPO3 source libraries DIRECTLY! You cannot do that. Please read the installation documents for more information.<br />
106 However here is a little tip for now: Download one of the zip-file "packages", eg the "testsite" or "dummy" package.</strong></font>';
107 }
108 echo '<HR><pre>';
109 print_r(array(
110 'TYPO3_OS'=>TYPO3_OS,
111 'PATH_thisScript'=>PATH_thisScript,
112 'php_sapi_name()'=>php_sapi_name(),
113 'TYPO3_MOD_PATH'=>TYPO3_MOD_PATH,
114 'PATH_TRANSLATED'=>$HTTP_SERVER_VARS['PATH_TRANSLATED'],
115 'SCRIPT_FILENAME'=>$HTTP_SERVER_VARS['SCRIPT_FILENAME']
116 ));
117 echo '</pre><HR>';
118 phpinfo();
119 exit;
120 } else {
121 define('PATH_typo3', $temp_path); // Abs. path of the TYPO3 admin dir (PATH_site + TYPO3_mainDir).
122 define('PATH_typo3_mod', $temp_modPath); // Relative path (from the PATH_typo3) to a properly configured module
123 define('PATH_site', substr(PATH_typo3,0,-strlen(TYPO3_mainDir))); // Abs. path to directory with the frontend (one above the admin-dir)
124 define('PATH_t3lib', PATH_typo3.'t3lib/'); // Abs. path to t3lib/ (general TYPO3 library) within the TYPO3 admin dir
125 define('PATH_typo3conf', PATH_site.'typo3conf/'); // Abs. TYPO3 configuration path (local, not part of source)
126 }
127
128
129 // *************************************************
130 // t3lib_div + extention management class included
131 // *************************************************
132 require_once(PATH_t3lib.'class.t3lib_div.php'); // The standard-library is included
133 require_once(PATH_t3lib.'class.t3lib_extmgm.php'); // Extension API Management library included
134
135 // ****************************************************
136 // Include configuration (localconf + ext_localconf)
137 // ****************************************************
138 require(PATH_t3lib.'config_default.php');
139 if (!defined ('TYPO3_db')) die ('The configuration file was not included.');
140
141 require_once(PATH_t3lib.'class.t3lib_db.php'); // The database library
142 $TYPO3_DB = t3lib_div::makeInstance('t3lib_DB');
143
144 $CLIENT = t3lib_div::clientInfo(); // $CLIENT includes information about the browser/user-agent
145 $PARSETIME_START = t3lib_div::milliseconds(); // Is set to the system time in milliseconds. This could be used to output script parsetime in the end of the script
146
147
148 // *********************
149 // Libraries included
150 // *********************
151 require_once(PATH_t3lib.'class.t3lib_userauth.php');
152 require_once(PATH_t3lib.'class.t3lib_userauthgroup.php');
153 require_once(PATH_t3lib.'class.t3lib_beuserauth.php');
154 require_once(PATH_t3lib.'class.t3lib_iconworks.php');
155 require_once(PATH_t3lib.'class.t3lib_befunc.php');
156 require_once(PATH_t3lib.'class.t3lib_cs.php');
157
158 // **********************
159 // Check Hardcoded lock on BE:
160 // **********************
161 if ($TYPO3_CONF_VARS['BE']['adminOnly'] < 0) {
162 header('Status: 404 Not Found'); // Send Not Found header - if the webserver can make use of it...
163 header('Location: http://'); // Just point us away from here...
164 exit; // ... and exit good!
165 }
166
167 // **********************
168 // Check IP
169 // **********************
170 if (trim($TYPO3_CONF_VARS['BE']['IPmaskList'])) {
171 if (!t3lib_div::cmpIP(t3lib_div::getIndpEnv('REMOTE_ADDR'), $TYPO3_CONF_VARS['BE']['IPmaskList'])) {
172 header('Status: 404 Not Found'); // Send Not Found header - if the webserver can make use of it...
173 header('Location: http://'); // Just point us away from here...
174 exit; // ... and exit good!
175 }
176 }
177
178
179 // **********************
180 // Check SSL (https)
181 // **********************
182 if (intval($TYPO3_CONF_VARS['BE']['lockSSL'])) {
183 if (!t3lib_div::getIndpEnv('TYPO3_SSL')) {
184 if ($TYPO3_CONF_VARS['BE']['lockSSL']==2) {
185 list(,$url) = explode('://',t3lib_div::getIndpEnv('TYPO3_SITE_URL').TYPO3_mainDir,2);
186 header('Location: https://'.$url); // Just point us away from here...
187 } else {
188 header('Status: 404 Not Found'); // Send Not Found header - if the webserver can make use of it...
189 header('Location: http://'); // Just point us away from here...
190 }
191 exit; // ... and exit good!
192 }
193 }
194
195
196 // *******************************
197 // Checking environment
198 // *******************************
199 if (t3lib_div::int_from_ver(phpversion())<4000006) die ('TYPO3 runs with PHP4.0.6+ only');
200 if (isset($HTTP_POST_VARS['GLOBALS']) || isset($HTTP_GET_VARS['GLOBALS'])) die('You cannot set the GLOBALS-array from outside the script.');
201 if (!get_magic_quotes_gpc()) {
202 t3lib_div::addSlashesOnArray($HTTP_GET_VARS);
203 t3lib_div::addSlashesOnArray($HTTP_POST_VARS);
204 $_GET = $HTTP_GET_VARS;
205 $_POST = $HTTP_POST_VARS;
206 }
207
208
209 // ********************************************
210 // Check if the install script should be run:
211 // ********************************************
212 if (defined('TYPO3_enterInstallScript') && TYPO3_enterInstallScript) {
213 require_once (PATH_t3lib.'class.t3lib_install.php');
214 require_once (PATH_t3lib.'class.t3lib_stdgraphic.php');
215 $install_check = t3lib_div::makeInstance('t3lib_install');
216 $install_check->allowUpdateLocalConf=1;
217 $install_check->init();
218 exit;
219 }
220
221
222 // *************************
223 // Connect to the database
224 // *************************
225 if ($GLOBALS['TYPO3_DB']->sql_pconnect(TYPO3_db_host, TYPO3_db_username, TYPO3_db_password)) {
226 if (!TYPO3_db) {
227 t3lib_BEfunc::typo3PrintError ('No database selected','Database Error');
228 exit;
229 } elseif (!$GLOBALS['TYPO3_DB']->sql_select_db(TYPO3_db)) {
230 t3lib_BEfunc::typo3PrintError ('Cannot connect to the current database, "'.TYPO3_db.'"','Database Error');
231 exit;
232 }
233 } else {
234 t3lib_BEfunc::typo3PrintError ('The current username, password or host was not accepted when the connection to the database was attempted to be established!','Database Error');
235 exit;
236 }
237
238
239 // *******************************
240 // Checks for proper browser
241 // *******************************
242 if (!$CLIENT['BROWSER']) {
243 t3lib_BEfunc::typo3PrintError ('Browser error','You must use 4+ browsers with TYPO3!',0);
244 exit;
245 }
246
247
248 // ****************************************************
249 // Include tables customization (tables + ext_tables)
250 // ****************************************************
251 include (TYPO3_tables_script ? PATH_typo3conf.TYPO3_tables_script : PATH_t3lib.'stddb/tables.php');
252 // Extension additions
253 if ($TYPO3_LOADED_EXT['_CACHEFILE']) {
254 include (PATH_typo3conf.$TYPO3_LOADED_EXT['_CACHEFILE'].'_ext_tables.php');
255 } else {
256 include (PATH_t3lib.'stddb/load_ext_tables.php');
257 }
258 // extScript
259 if (TYPO3_extTableDef_script) {
260 include (PATH_typo3conf.TYPO3_extTableDef_script);
261 }
262
263 // *******************************
264 // BackEnd User authentication
265 // *******************************
266 /*
267 NOTICE:
268 if constant TYPO3_PROCEED_IF_NO_USER is defined true (in the mainscript), this script will return even though a user did not log in!
269 */
270 $BE_USER = t3lib_div::makeInstance('t3lib_beUserAuth'); // New backend user object
271 $BE_USER->warningEmail = $TYPO3_CONF_VARS['BE']['warning_email_addr'];
272 $BE_USER->OS = TYPO3_OS;
273 $BE_USER->start(); // Object is initialized
274 $BE_USER->backendCheckLogin(); // Checking if there's a user logged in
275 $BE_USER->trackBeUser($TYPO3_CONF_VARS['BE']['trackBeUser']); // Tracking backend user script hits
276
277 // Setting the web- and filemount global vars:
278 $WEBMOUNTS = $BE_USER->returnWebmounts();
279 $FILEMOUNTS = $BE_USER->returnFilemounts();
280
281 // ****************
282 // compression
283 // ****************
284 if ($TYPO3_CONF_VARS['BE']['compressionLevel']) {
285 ob_start();
286 require_once (PATH_t3lib.'class.gzip_encode.php');
287 }
288 ?>