Fixed bug #16050: htmlArea RTE: Backspacing in empty editing area may raise js error
[Packages/TYPO3.CMS.git] / typo3 / init.php
1 <?php
2 /***************************************************************
3 * Copyright notice
4 *
5 * (c) 1999-2010 Kasper Skårhøj (kasperYYYY@typo3.com)
6 * All rights reserved
7 *
8 * This script is part of the TYPO3 project. The TYPO3 project is
9 * free software; you can redistribute it and/or modify
10 * it under the terms of the GNU General Public License as published by
11 * the Free Software Foundation; either version 2 of the License, or
12 * (at your option) any later version.
13 *
14 * The GNU General Public License can be found at
15 * http://www.gnu.org/copyleft/gpl.html.
16 * A copy is found in the textfile GPL.txt and important notices to the license
17 * from the author is found in LICENSE.txt distributed with these scripts.
18 *
19 *
20 * This script is distributed in the hope that it will be useful,
21 * but WITHOUT ANY WARRANTY; without even the implied warranty of
22 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
23 * GNU General Public License for more details.
24 *
25 * This copyright notice MUST APPEAR in all copies of the script!
26 ***************************************************************/
27 /**
28 * TYPO3 Backend initialization
29 *
30 * This script is called by every backend script.
31 * The script authenticates the backend user.
32 * In addition this script also initializes the database and other stuff by including the script localconf.php
33 *
34 * IMPORTANT:
35 * This script exits if no user is logged in!
36 * If you want the script to return even if no user is logged in,
37 * you must define the constant TYPO3_PROCEED_IF_NO_USER=1
38 * before you include this script.
39 *
40 *
41 * This script does the following:
42 * - extracts and defines path's
43 * - includes certain libraries
44 * - authenticates the user
45 * - sets the configuration values (localconf.php)
46 * - includes tables.php that sets more values and possibly overrides others
47 * - load the groupdata for the user and set filemounts / webmounts
48 *
49 * For a detailed description of this script, the scope of constants and variables in it,
50 * please refer to the document "Inside TYPO3"
51 *
52 * $Id$
53 * Revised for TYPO3 3.6 2/2003 by Kasper Skårhøj
54 *
55 * @author Kasper Skårhøj <kasperYYYY@typo3.com>
56 * @package TYPO3
57 * @subpackage core
58 */
59
60 // *******************************
61 // Checking PHP version
62 // *******************************
63 if (version_compare(phpversion(), '5.2', '<')) die ('TYPO3 requires PHP 5.2.0 or higher.');
64
65
66 // *******************************
67 // Set error reporting
68 // *******************************
69 if (defined('E_DEPRECATED')) {
70 error_reporting(E_ALL ^ E_NOTICE ^ E_DEPRECATED);
71 } else {
72 error_reporting(E_ALL ^ E_NOTICE);
73 }
74
75 // *******************************
76 // Prevent any unwanted output that may corrupt AJAX/compression. Note: this does
77 // not interfeer with "die()" or "echo"+"exit()" messages!
78 // *******************************
79 ob_start();
80
81 // *******************************
82 // Define constants
83 // *******************************
84 define('TYPO3_OS', stristr(PHP_OS,'win')&&!stristr(PHP_OS,'darwin')?'WIN':'');
85 define('TYPO3_MODE','BE');
86 define('PATH_thisScript', str_replace('//', '/', str_replace('\\', '/',
87 (PHP_SAPI == 'fpm-fcgi' || PHP_SAPI == 'cgi' || PHP_SAPI == 'isapi' || PHP_SAPI == 'cgi-fcgi') &&
88 ($_SERVER['ORIG_PATH_TRANSLATED'] ? $_SERVER['ORIG_PATH_TRANSLATED'] : $_SERVER['PATH_TRANSLATED']) ?
89 ($_SERVER['ORIG_PATH_TRANSLATED'] ? $_SERVER['ORIG_PATH_TRANSLATED'] : $_SERVER['PATH_TRANSLATED']) :
90 ($_SERVER['ORIG_SCRIPT_FILENAME'] ? $_SERVER['ORIG_SCRIPT_FILENAME'] : $_SERVER['SCRIPT_FILENAME']))));
91
92 define('TYPO3_mainDir', 'typo3/'); // This is the directory of the backend administration for the sites of this TYPO3 installation.
93
94
95 // *******************************
96 // Fix BACK_PATH, if the TYPO3_mainDir is set to something else than
97 // typo3/, this is a workaround because the conf.php of the old modules
98 // still have "typo3/" hardcoded. Can be removed once we don't have to worry about
99 // legacy modules (with conf.php and $BACK_PATH) anymore. See RFC / Bug #13262 for more details.
100 // *******************************
101 if (isset($BACK_PATH) && strlen($BACK_PATH) > 0 && TYPO3_mainDir != 'typo3/' && substr($BACK_PATH, -7) == '/typo3/') {
102 $BACK_PATH = substr($BACK_PATH, 0, -6) . TYPO3_mainDir;
103 }
104
105 // *******************************
106 // Checking path
107 // *******************************
108 $temp_path = str_replace('\\','/',dirname(PATH_thisScript).'/');
109 $temp_modPath='';
110 // If TYPO3_MOD_PATH is defined we must calculate the modPath since init.php must be included by a module
111 if (substr($temp_path,-strlen(TYPO3_mainDir))!=TYPO3_mainDir) {
112 if (defined('TYPO3_MOD_PATH')) {
113 if (substr($temp_path,-strlen(TYPO3_MOD_PATH))==TYPO3_MOD_PATH) {
114 $temp_path=substr($temp_path,0,-strlen(TYPO3_MOD_PATH));
115 $temp_modPath=TYPO3_MOD_PATH;
116 } elseif (substr(TYPO3_MOD_PATH,0,13)=='../typo3conf/' && (substr(TYPO3_MOD_PATH,3)==substr($temp_path,-strlen(substr(TYPO3_MOD_PATH,3))))) {
117 $temp_path = substr($temp_path,0,-strlen(substr(TYPO3_MOD_PATH,3))).TYPO3_mainDir;
118 $temp_modPath=TYPO3_MOD_PATH;
119 }
120 if (!@is_dir($temp_path)) {
121 $temp_path='';
122 }
123 }
124 }
125
126 // OUTPUT error message and exit if there are problems with the path. Otherwise define constants and continue.
127 if (!$temp_path || substr($temp_path,-strlen(TYPO3_mainDir))!=TYPO3_mainDir) { // This must be the case in order to proceed
128 if (TYPO3_OS=='WIN') {
129 $thisPath_base = basename(substr($temp_path,-strlen(TYPO3_mainDir)));
130 $mainPath_base = basename(TYPO3_mainDir);
131 if (!strcasecmp($thisPath, $mainPath)) { // Seems like the requested URL is not case-specific. This may happen on Windows only. -case. Otherwise, redirect to the correct URL. TYPO3_mainDir must be lower-case!!
132 $script_name = (PHP_SAPI=='fpm-fcgi' || PHP_SAPI=='cgi' || PHP_SAPI=='cgi-fcgi') &&
133 ($_SERVER['ORIG_PATH_INFO'] ? $_SERVER['ORIG_PATH_INFO'] : $_SERVER['PATH_INFO']) ?
134 ($_SERVER['ORIG_PATH_INFO'] ? $_SERVER['ORIG_PATH_INFO'] : $_SERVER['PATH_INFO']) :
135 ($_SERVER['ORIG_SCRIPT_NAME']?$_SERVER['ORIG_SCRIPT_NAME']:$_SERVER['SCRIPT_NAME']); // Copied from t3lib_div::getIndpEnv()
136
137 header('Location: '.str_replace($thisPath_base, $mainPath_base, $script_name));
138 exit;
139 }
140 }
141
142 echo 'Error in init.php: Path to TYPO3 main dir could not be resolved correctly. <br /><br />';
143
144 echo '<font color="red"><strong>';
145 if (strstr($temp_path,'typo3_src')) {
146 echo 'It seems you are trying to run the TYPO3 source libraries DIRECTLY! You cannot do that.<br />
147 Please read the installation documents for more information.';
148 } else {
149 $temp_path_parts = explode('/', $temp_path);
150 $temp_path_parts = array_slice($temp_path_parts, count($temp_path_parts) - 3);
151 $temp_path = '..../' . implode('/', $temp_path_parts);
152 echo 'This happens if the last ' . strlen(TYPO3_mainDir) . ' characters of this path, ' . $temp_path . ' (end of $temp_path), is NOT "' . TYPO3_mainDir . '" for some reason.<br />
153 You may have a strange server configuration.
154 Or maybe you didn\'t set constant TYPO3_MOD_PATH in your module?';
155 }
156 echo '</strong></font>';
157
158 echo '<br /><br />If you want to debug this issue, please edit typo3/init.php of your TYPO3 source and search for the die() call right after this line (search for this text to find)...';
159
160 // Remove this line if you want to debug this problem a little more...
161 die();
162 echo '<br /><br /><strong>If you expect any help from anybody on this issue, you should save this page as an html document and send it along with your request for help!</strong>';
163 echo '<hr /><pre>';
164 print_r(array(
165 'TYPO3_OS'=>TYPO3_OS,
166 'PATH_thisScript'=>PATH_thisScript,
167 'php_sapi_name()'=>PHP_SAPI,
168 'TYPO3_MOD_PATH'=>TYPO3_MOD_PATH,
169 'PATH_TRANSLATED'=>$_SERVER['PATH_TRANSLATED'],
170 'SCRIPT_FILENAME'=>$_SERVER['SCRIPT_FILENAME']
171 ));
172 echo '</pre><hr />';
173 phpinfo();
174 exit;
175 } else {
176 define('PATH_typo3', $temp_path); // Abs. path of the TYPO3 admin dir (PATH_site + TYPO3_mainDir).
177 define('PATH_typo3_mod', $temp_modPath); // Relative path (from the PATH_typo3) to a properly configured module
178 define('PATH_site', substr(PATH_typo3,0,-strlen(TYPO3_mainDir))); // Abs. path to directory with the frontend (one above the admin-dir)
179 $temp_path_t3lib = @is_dir(PATH_site.'t3lib/') ? PATH_site.'t3lib/' : PATH_typo3.'t3lib/';
180 define('PATH_t3lib', $temp_path_t3lib); // Abs. path to t3lib/ (general TYPO3 library) within the TYPO3 admin dir
181 define('PATH_typo3conf', PATH_site.'typo3conf/'); // Abs. TYPO3 configuration path (local, not part of source)
182
183 if (!defined('PATH_tslib')) {
184 if (@is_dir(PATH_site . TYPO3_mainDir . 'sysext/cms/tslib/')) {
185 define('PATH_tslib', PATH_site . TYPO3_mainDir . 'sysext/cms/tslib/');
186 } elseif (@is_dir(PATH_site . 'tslib/')) {
187 define('PATH_tslib', PATH_site . 'tslib/');
188 }
189 }
190 }
191
192 // *********************
193 // Unset variable(s) in global scope (fixes #13959)
194 // *********************
195 unset($error);
196
197 // *************************************************
198 // t3lib_div + extention management class included
199 // *************************************************
200 require_once(PATH_t3lib.'class.t3lib_div.php'); // The standard-library is included
201 require_once(PATH_t3lib.'class.t3lib_extmgm.php'); // Extension API Management library included
202
203 // ****************************************************
204 // Include configuration (localconf + ext_localconf)
205 // ****************************************************
206 require(PATH_t3lib.'config_default.php');
207 if (!defined ('TYPO3_db')) die ('The configuration file was not included.');
208
209
210
211
212 // *********************
213 // Error & Exception handling
214 // *********************
215 if ($TYPO3_CONF_VARS['SC_OPTIONS']['errors']['exceptionHandler'] !== '') {
216 if ($TYPO3_CONF_VARS['SYS']['errorHandler'] !== '') {
217 // register an error handler for the given errorHandlerErrors
218 $errorHandler = t3lib_div::makeInstance($TYPO3_CONF_VARS['SYS']['errorHandler'], $TYPO3_CONF_VARS['SYS']['errorHandlerErrors']);
219 // set errors which will be converted in an exception
220 $errorHandler->setExceptionalErrors($TYPO3_CONF_VARS['SC_OPTIONS']['errors']['exceptionalErrors']);
221 }
222 $exceptionHandler = t3lib_div::makeInstance($TYPO3_CONF_VARS['SC_OPTIONS']['errors']['exceptionHandler']);
223 }
224
225 /** @var TYPO3_DB t3lib_db */
226 $TYPO3_DB = t3lib_div::makeInstance('t3lib_DB');
227 $TYPO3_DB->debugOutput = $TYPO3_CONF_VARS['SYS']['sqlDebug'];
228
229 $CLIENT = t3lib_div::clientInfo(); // $CLIENT includes information about the browser/user-agent
230 $PARSETIME_START = t3lib_div::milliseconds(); // Is set to the system time in milliseconds. This could be used to output script parsetime in the end of the script
231
232 // ***********************************
233 // Initializing the Caching System
234 // ***********************************
235
236 if (TYPO3_UseCachingFramework) {
237 $typo3CacheManager = t3lib_div::makeInstance('t3lib_cache_Manager');
238 $typo3CacheFactory = t3lib_div::makeInstance('t3lib_cache_Factory');
239 $typo3CacheFactory->setCacheManager($typo3CacheManager);
240
241 t3lib_cache::initPageCache();
242 t3lib_cache::initPageSectionCache();
243 t3lib_cache::initContentHashCache();
244 }
245 // *************************
246 // CLI dispatch processing
247 // *************************
248 if ((TYPO3_REQUESTTYPE & TYPO3_REQUESTTYPE_CLI) && basename(PATH_thisScript) == 'cli_dispatch.phpsh') {
249 // First, take out the first argument (cli-key)
250 $temp_cliScriptPath = array_shift($_SERVER['argv']);
251 $temp_cliKey = array_shift($_SERVER['argv']);
252 array_unshift($_SERVER['argv'],$temp_cliScriptPath);
253
254 // If cli_key was found in configuration, then set up the cliInclude path and module name:
255 if ($temp_cliKey) {
256 if (is_array($TYPO3_CONF_VARS['SC_OPTIONS']['GLOBAL']['cliKeys'][$temp_cliKey])) {
257 define('TYPO3_cliInclude', t3lib_div::getFileAbsFileName($TYPO3_CONF_VARS['SC_OPTIONS']['GLOBAL']['cliKeys'][$temp_cliKey][0]));
258 $MCONF['name'] = $TYPO3_CONF_VARS['SC_OPTIONS']['GLOBAL']['cliKeys'][$temp_cliKey][1];
259 } else {
260 echo "The supplied 'cliKey' was not valid. Please use one of the available from this list:\n\n";
261 print_r(array_keys($TYPO3_CONF_VARS['SC_OPTIONS']['GLOBAL']['cliKeys']));
262 echo LF;
263 exit;
264 }
265 } else {
266 echo "Please supply a 'cliKey' as first argument. The following are available:\n\n";
267 print_r($TYPO3_CONF_VARS['SC_OPTIONS']['GLOBAL']['cliKeys']);
268 echo LF;
269 exit;
270 }
271 }
272
273
274 // **********************
275 // Check Hardcoded lock on BE:
276 // **********************
277 if ($TYPO3_CONF_VARS['BE']['adminOnly'] < 0) {
278 throw new RuntimeException('TYPO3 Backend locked: Backend and Install Tool are locked for maintenance. [BE][adminOnly] is set to "' . intval($TYPO3_CONF_VARS['BE']['adminOnly']) . '".');
279 }
280 if (!(TYPO3_REQUESTTYPE & TYPO3_REQUESTTYPE_CLI) && @is_file(PATH_typo3conf . 'LOCK_BACKEND')) {
281 if (TYPO3_PROCEED_IF_NO_USER == 2) {
282 // ajax poll for login, let him pass
283 } else {
284 $fContent = t3lib_div::getUrl(PATH_typo3conf.'LOCK_BACKEND');
285 if ($fContent) {
286 header('Location: '.$fContent); // Redirect
287 } else {
288 throw new RuntimeException('TYPO3 Backend locked: Browser backend is locked for maintenance. Remove lock by removing the file "typo3conf/LOCK_BACKEND" or use CLI-scripts.');
289 }
290 exit;
291 }
292
293 }
294
295 // **********************
296 // Check IP
297 // **********************
298 if (trim($TYPO3_CONF_VARS['BE']['IPmaskList']) && !(TYPO3_REQUESTTYPE & TYPO3_REQUESTTYPE_CLI)) {
299 if (!t3lib_div::cmpIP(t3lib_div::getIndpEnv('REMOTE_ADDR'), $TYPO3_CONF_VARS['BE']['IPmaskList'])) {
300 header('Status: 404 Not Found'); // Send Not Found header - if the webserver can make use of it...
301 header('Location: http://'); // Just point us away from here...
302 exit; // ... and exit good!
303 }
304 }
305
306
307 // **********************
308 // Check SSL (https)
309 // **********************
310 if (intval($TYPO3_CONF_VARS['BE']['lockSSL']) && !(TYPO3_REQUESTTYPE & TYPO3_REQUESTTYPE_CLI)) {
311 if(intval($TYPO3_CONF_VARS['BE']['lockSSLPort'])) {
312 $sslPortSuffix = ':'.intval($TYPO3_CONF_VARS['BE']['lockSSLPort']);
313 } else {
314 $sslPortSuffix = '';
315 }
316 if ($TYPO3_CONF_VARS['BE']['lockSSL'] == 3) {
317 $requestStr = substr(t3lib_div::getIndpEnv('TYPO3_REQUEST_SCRIPT'), strlen(t3lib_div::getIndpEnv('TYPO3_SITE_URL').TYPO3_mainDir));
318 if($requestStr == 'index.php' && !t3lib_div::getIndpEnv('TYPO3_SSL')) {
319 list(,$url) = explode('://',t3lib_div::getIndpEnv('TYPO3_REQUEST_URL'),2);
320 list($server,$address) = explode('/',$url,2);
321 header('Location: https://'.$server.$sslPortSuffix.'/'.$address);
322 exit;
323 }
324 } elseif (!t3lib_div::getIndpEnv('TYPO3_SSL') ) {
325 if ($TYPO3_CONF_VARS['BE']['lockSSL'] == 2) {
326 list(,$url) = explode('://',t3lib_div::getIndpEnv('TYPO3_SITE_URL').TYPO3_mainDir,2);
327 list($server,$address) = explode('/',$url,2);
328 header('Location: https://'.$server.$sslPortSuffix.'/'.$address);
329 } else {
330 header('Status: 404 Not Found'); // Send Not Found header - if the webserver can make use of it...
331 header('Location: http://'); // Just point us away from here...
332 }
333 exit; // ... and exit good!
334 }
335 }
336
337
338 // *******************************
339 // Checking environment
340 // *******************************
341 if (isset($_POST['GLOBALS']) || isset($_GET['GLOBALS'])) die('You cannot set the GLOBALS-array from outside the script.');
342 if (!get_magic_quotes_gpc()) {
343 t3lib_div::addSlashesOnArray($_GET);
344 t3lib_div::addSlashesOnArray($_POST);
345 $HTTP_GET_VARS = $_GET;
346 $HTTP_POST_VARS = $_POST;
347 }
348
349
350 // ********************************************
351 // Check if the install script should be run:
352 // ********************************************
353 if (TYPO3_REQUESTTYPE & TYPO3_REQUESTTYPE_INSTALL) {
354 if(!t3lib_extMgm::isLoaded('install')) {
355 die('Install Tool is not loaded as an extension.<br />You must add the key "install" to the list of installed extensions in typo3conf/localconf.php, $TYPO3_CONF_VARS[\'EXT\'][\'extList\'].');
356 }
357
358 require_once(t3lib_extMgm::extPath('install').'mod/class.tx_install.php');
359 $install_check = t3lib_div::makeInstance('tx_install');
360 $install_check->allowUpdateLocalConf = 1;
361 $install_check->init();
362 exit;
363 }
364
365
366 // *************************
367 // Connect to the database
368 // *************************
369 if ($TYPO3_DB->sql_pconnect(TYPO3_db_host, TYPO3_db_username, TYPO3_db_password)) {
370 if (!TYPO3_db) {
371 throw new RuntimeException('Database Error: No database selected', time());
372 } elseif (!$TYPO3_DB->sql_select_db(TYPO3_db)) {
373 throw new RuntimeException('Database Error: Cannot connect to the current database, "' . TYPO3_db . '"', time());
374 }
375 } else {
376 throw new RuntimeException('Database Error: The current username, password or host was not accepted when the connection to the database was attempted to be established!', time());
377 }
378
379
380 // *******************************
381 // Checks for proper browser
382 // *******************************
383 if (!$CLIENT['BROWSER'] && !(TYPO3_REQUESTTYPE & TYPO3_REQUESTTYPE_CLI)) {
384 throw new RuntimeException('Browser Error: Your browser version looks incompatible with this TYPO3 version!', time());
385 }
386
387
388 // ****************************************************
389 // Include tables customization (tables + ext_tables)
390 // ****************************************************
391 include (TYPO3_tables_script ? PATH_typo3conf.TYPO3_tables_script : PATH_t3lib.'stddb/tables.php');
392 // Extension additions
393 if ($TYPO3_LOADED_EXT['_CACHEFILE']) {
394 include (PATH_typo3conf.$TYPO3_LOADED_EXT['_CACHEFILE'].'_ext_tables.php');
395 } else {
396 include (PATH_t3lib.'stddb/load_ext_tables.php');
397 }
398 // extScript
399 if (TYPO3_extTableDef_script) {
400 include (PATH_typo3conf.TYPO3_extTableDef_script);
401 }
402
403 // load TYPO3 SpriteGenerating API
404 $spriteManager = t3lib_div::makeInstance('t3lib_SpriteManager', TRUE);
405 $spriteManager->loadCacheFile();
406
407
408 // *******************************
409 // BackEnd User authentication
410 // *******************************
411 /*
412 NOTICE:
413 if constant TYPO3_PROCEED_IF_NO_USER is defined true (in the mainscript), this script will return even though a user did not log in!
414 */
415 $BE_USER = t3lib_div::makeInstance('t3lib_beUserAuth'); // New backend user object
416 $BE_USER->warningEmail = $TYPO3_CONF_VARS['BE']['warning_email_addr'];
417 $BE_USER->lockIP = $TYPO3_CONF_VARS['BE']['lockIP'];
418 $BE_USER->auth_timeout_field = intval($TYPO3_CONF_VARS['BE']['sessionTimeout']);
419 $BE_USER->OS = TYPO3_OS;
420 $BE_USER->start(); // Object is initialized
421 $BE_USER->checkCLIuser();
422 $BE_USER->backendCheckLogin(); // Checking if there's a user logged in
423
424 // Setting the web- and filemount global vars:
425 $WEBMOUNTS = $BE_USER->returnWebmounts(); // ! WILL INCLUDE deleted mount pages as well!
426 $FILEMOUNTS = $BE_USER->returnFilemounts();
427
428 // *******************************
429 // $GLOBALS['LANG'] initialisation
430 // *******************************
431 $GLOBALS['LANG'] = t3lib_div::makeInstance('language');
432 $GLOBALS['LANG']->init($BE_USER->uc['lang']);
433
434
435 // ****************
436 // CLI processing
437 // ****************
438 if (TYPO3_REQUESTTYPE & TYPO3_REQUESTTYPE_CLI) {
439 // Status output:
440 if (!strcmp($_SERVER['argv'][1],'status')) {
441 echo "Status of TYPO3 CLI script:\n\n";
442 echo "Username [uid]: ".$BE_USER->user['username']." [".$BE_USER->user['uid']."]\n";
443 echo "Database: ".TYPO3_db.LF;
444 echo "PATH_site: ".PATH_site.LF;
445 echo LF;
446 exit;
447 }
448 }
449
450 // ****************
451 // compression
452 // ****************
453 ob_clean();
454 if (extension_loaded('zlib') && $TYPO3_CONF_VARS['BE']['compressionLevel']) {
455 if (t3lib_div::testInt($TYPO3_CONF_VARS['BE']['compressionLevel'])) {
456 @ini_set('zlib.output_compression_level', $TYPO3_CONF_VARS['BE']['compressionLevel']);
457 }
458 ob_start('ob_gzhandler');
459 }
460
461 ?>