Fixed bug #12092 (Follow-up to bug #9355): The errorhandling can make TYPO3 Backend...
[Packages/TYPO3.CMS.git] / typo3 / init.php
1 <?php
2 /***************************************************************
3 * Copyright notice
4 *
5 * (c) 1999-2009 Kasper Skaarhoj (kasperYYYY@typo3.com)
6 * All rights reserved
7 *
8 * This script is part of the TYPO3 project. The TYPO3 project is
9 * free software; you can redistribute it and/or modify
10 * it under the terms of the GNU General Public License as published by
11 * the Free Software Foundation; either version 2 of the License, or
12 * (at your option) any later version.
13 *
14 * The GNU General Public License can be found at
15 * http://www.gnu.org/copyleft/gpl.html.
16 * A copy is found in the textfile GPL.txt and important notices to the license
17 * from the author is found in LICENSE.txt distributed with these scripts.
18 *
19 *
20 * This script is distributed in the hope that it will be useful,
21 * but WITHOUT ANY WARRANTY; without even the implied warranty of
22 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
23 * GNU General Public License for more details.
24 *
25 * This copyright notice MUST APPEAR in all copies of the script!
26 ***************************************************************/
27 /**
28 * TYPO3 Backend initialization
29 *
30 * This script is called by every backend script.
31 * The script authenticates the backend user.
32 * In addition this script also initializes the database and other stuff by including the script localconf.php
33 *
34 * IMPORTANT:
35 * This script exits if no user is logged in!
36 * If you want the script to return even if no user is logged in,
37 * you must define the constant TYPO3_PROCEED_IF_NO_USER=1
38 * before you include this script.
39 *
40 *
41 * This script does the following:
42 * - extracts and defines path's
43 * - includes certain libraries
44 * - authenticates the user
45 * - sets the configuration values (localconf.php)
46 * - includes tables.php that sets more values and possibly overrides others
47 * - load the groupdata for the user and set filemounts / webmounts
48 *
49 * For a detailed description of this script, the scope of constants and variables in it,
50 * please refer to the document "Inside TYPO3"
51 *
52 * $Id$
53 * Revised for TYPO3 3.6 2/2003 by Kasper Skaarhoj
54 *
55 * @author Kasper Skaarhoj <kasperYYYY@typo3.com>
56 * @package TYPO3
57 * @subpackage core
58 */
59
60 // *******************************
61 // Checking PHP version
62 // *******************************
63 if (version_compare(phpversion(), '5.2', '<')) die ('TYPO3 requires PHP 5.2.0 or higher.');
64
65
66 // *******************************
67 // Set error reporting
68 // *******************************
69 error_reporting (E_ALL ^ E_NOTICE);
70
71 // *******************************
72 // Prevent any unwanted output that may corrupt AJAX/compression. Note: this does
73 // not interfeer with "die()" or "echo"+"exit()" messages!
74 // *******************************
75 ob_start();
76
77 // *******************************
78 // Define constants
79 // *******************************
80 define('TYPO3_OS', stristr(PHP_OS,'win')&&!stristr(PHP_OS,'darwin')?'WIN':'');
81 define('TYPO3_MODE','BE');
82 define('PATH_thisScript',str_replace('//','/', str_replace('\\','/', (PHP_SAPI=='cgi'||PHP_SAPI=='isapi' ||PHP_SAPI=='cgi-fcgi')&&($_SERVER['ORIG_PATH_TRANSLATED']?$_SERVER['ORIG_PATH_TRANSLATED']:$_SERVER['PATH_TRANSLATED'])? ($_SERVER['ORIG_PATH_TRANSLATED']?$_SERVER['ORIG_PATH_TRANSLATED']:$_SERVER['PATH_TRANSLATED']):($_SERVER['ORIG_SCRIPT_FILENAME']?$_SERVER['ORIG_SCRIPT_FILENAME']:$_SERVER['SCRIPT_FILENAME']))));
83 define('TYPO3_mainDir', 'typo3/'); // This is the directory of the backend administration for the sites of this TYPO3 installation.
84
85
86 // *******************************
87 // Checking path
88 // *******************************
89 $temp_path = str_replace('\\','/',dirname(PATH_thisScript).'/');
90 $temp_modPath='';
91 // If TYPO3_MOD_PATH is defined we must calculate the modPath since init.php must be included by a module
92 if (substr($temp_path,-strlen(TYPO3_mainDir))!=TYPO3_mainDir) {
93 if (defined('TYPO3_MOD_PATH')) {
94 if (substr($temp_path,-strlen(TYPO3_MOD_PATH))==TYPO3_MOD_PATH) {
95 $temp_path=substr($temp_path,0,-strlen(TYPO3_MOD_PATH));
96 $temp_modPath=TYPO3_MOD_PATH;
97 } elseif (substr(TYPO3_MOD_PATH,0,13)=='../typo3conf/' && (substr(TYPO3_MOD_PATH,3)==substr($temp_path,-strlen(substr(TYPO3_MOD_PATH,3))))) {
98 $temp_path = substr($temp_path,0,-strlen(substr(TYPO3_MOD_PATH,3))).TYPO3_mainDir;
99 $temp_modPath=TYPO3_MOD_PATH;
100 }
101 if (!@is_dir($temp_path)) {
102 $temp_path='';
103 }
104 }
105 }
106
107 // OUTPUT error message and exit if there are problems with the path. Otherwise define constants and continue.
108 if (!$temp_path || substr($temp_path,-strlen(TYPO3_mainDir))!=TYPO3_mainDir) { // This must be the case in order to proceed
109 if (TYPO3_OS=='WIN') {
110 $thisPath_base = basename(substr($temp_path,-strlen(TYPO3_mainDir)));
111 $mainPath_base = basename(TYPO3_mainDir);
112 if (!strcasecmp($thisPath, $mainPath)) { // Seems like the requested URL is not case-specific. This may happen on Windows only. -case. Otherwise, redirect to the correct URL. TYPO3_mainDir must be lower-case!!
113 $script_name = (PHP_SAPI=='cgi'||PHP_SAPI=='cgi-fcgi')&&($_SERVER['ORIG_PATH_INFO']?$_SERVER['ORIG_PATH_INFO']:$_SERVER['PATH_INFO']) ? ($_SERVER['ORIG_PATH_INFO']?$_SERVER['ORIG_PATH_INFO']:$_SERVER['PATH_INFO']) : ($_SERVER['ORIG_SCRIPT_NAME']?$_SERVER['ORIG_SCRIPT_NAME']:$_SERVER['SCRIPT_NAME']); // Copied from t3lib_div::getIndpEnv()
114 header('Location: '.str_replace($thisPath_base, $mainPath_base, $script_name));
115 exit;
116 }
117 }
118
119 echo 'Error in init.php: Path to TYPO3 main dir could not be resolved correctly. <br /><br />';
120
121 echo '<font color="red"><strong>';
122 if (strstr($temp_path,'typo3_src')) {
123 echo 'It seems you are trying to run the TYPO3 source libraries DIRECTLY! You cannot do that.<br />
124 Please read the installation documents for more information.';
125 } else {
126 echo 'This happens if the last '.strlen(TYPO3_mainDir).' characters of this path, '.$temp_path.' ($temp_path), is NOT "'.TYPO3_mainDir.'" for some reason.<br />
127 You may have a strange server configuration.
128 Or maybe you didn\'t set constant TYPO3_MOD_PATH in your module?';
129 }
130 echo '</strong></font>';
131
132 echo '<br /><br />If you want to debug this issue, please edit typo3/init.php of your TYPO3 source and search for the die() call right after this line (search for this text to find)...';
133
134 // Remove this line if you want to debug this problem a little more...
135 die();
136 echo '<br /><br /><strong>If you expect any help from anybody on this issue, you should save this page as an html document and send it along with your request for help!</strong>';
137 echo '<hr /><pre>';
138 print_r(array(
139 'TYPO3_OS'=>TYPO3_OS,
140 'PATH_thisScript'=>PATH_thisScript,
141 'php_sapi_name()'=>PHP_SAPI,
142 'TYPO3_MOD_PATH'=>TYPO3_MOD_PATH,
143 'PATH_TRANSLATED'=>$_SERVER['PATH_TRANSLATED'],
144 'SCRIPT_FILENAME'=>$_SERVER['SCRIPT_FILENAME']
145 ));
146 echo '</pre><hr />';
147 phpinfo();
148 exit;
149 } else {
150 define('PATH_typo3', $temp_path); // Abs. path of the TYPO3 admin dir (PATH_site + TYPO3_mainDir).
151 define('PATH_typo3_mod', $temp_modPath); // Relative path (from the PATH_typo3) to a properly configured module
152 define('PATH_site', substr(PATH_typo3,0,-strlen(TYPO3_mainDir))); // Abs. path to directory with the frontend (one above the admin-dir)
153 $temp_path_t3lib = @is_dir(PATH_site.'t3lib/') ? PATH_site.'t3lib/' : PATH_typo3.'t3lib/';
154 define('PATH_t3lib', $temp_path_t3lib); // Abs. path to t3lib/ (general TYPO3 library) within the TYPO3 admin dir
155 define('PATH_typo3conf', PATH_site.'typo3conf/'); // Abs. TYPO3 configuration path (local, not part of source)
156
157 if (!defined('PATH_tslib')) {
158 if (@is_dir(PATH_site . TYPO3_mainDir . 'sysext/cms/tslib/')) {
159 define('PATH_tslib', PATH_site . TYPO3_mainDir . 'sysext/cms/tslib/');
160 } elseif (@is_dir(PATH_site . 'tslib/')) {
161 define('PATH_tslib', PATH_site . 'tslib/');
162 }
163 }
164 }
165
166
167 // *************************************************
168 // t3lib_div + extention management class included
169 // *************************************************
170 require_once(PATH_t3lib.'class.t3lib_div.php'); // The standard-library is included
171 require_once(PATH_t3lib.'class.t3lib_extmgm.php'); // Extension API Management library included
172
173 // ****************************************************
174 // Include configuration (localconf + ext_localconf)
175 // ****************************************************
176 require(PATH_t3lib.'config_default.php');
177 if (!defined ('TYPO3_db')) die ('The configuration file was not included.');
178
179
180 // *********************
181 // Autoloader
182 // *********************
183 require_once(PATH_t3lib . 'class.t3lib_autoloader.php');
184 t3lib_autoloader::registerAutoloader();
185
186
187 // *********************
188 // Error & Exception handling
189 // *********************
190 if ($TYPO3_CONF_VARS['SC_OPTIONS']['errors']['exceptionHandler'] !== '') {
191 if ($TYPO3_CONF_VARS['SYS']['errorHandler'] !== '') {
192 $errorHandler = t3lib_div::makeInstance($TYPO3_CONF_VARS['SYS']['errorHandler']);
193 // register an error handler for the given exceptionalErrors
194 $errorHandler->setErrorHandlerForExceptionalErrors($TYPO3_CONF_VARS['SC_OPTIONS']['errors']['exceptionalErrors']);
195 }
196 $exceptionHandler = t3lib_div::makeInstance($TYPO3_CONF_VARS['SC_OPTIONS']['errors']['exceptionHandler']);
197 }
198
199 /** @var TYPO3_DB t3lib_db */
200 $TYPO3_DB = t3lib_div::makeInstance('t3lib_DB');
201 $TYPO3_DB->debugOutput = $TYPO3_CONF_VARS['SYS']['sqlDebug'];
202
203 $CLIENT = t3lib_div::clientInfo(); // $CLIENT includes information about the browser/user-agent
204 $PARSETIME_START = t3lib_div::milliseconds(); // Is set to the system time in milliseconds. This could be used to output script parsetime in the end of the script
205
206 // ***********************************
207 // Initializing the Caching System
208 // ***********************************
209
210 if (TYPO3_UseCachingFramework) {
211 $typo3CacheManager = t3lib_div::makeInstance('t3lib_cache_Manager');
212 $typo3CacheFactory = t3lib_div::makeInstance('t3lib_cache_Factory');
213 $typo3CacheFactory->setCacheManager($typo3CacheManager);
214
215 t3lib_cache::initPageCache();
216 t3lib_cache::initPageSectionCache();
217 t3lib_cache::initContentHashCache();
218 unset($cacheFactoryClass);
219 }
220 // *************************
221 // CLI dispatch processing
222 // *************************
223 if (defined('TYPO3_cliMode') && TYPO3_cliMode && basename(PATH_thisScript)=='cli_dispatch.phpsh') {
224 // First, take out the first argument (cli-key)
225 $temp_cliScriptPath = array_shift($_SERVER['argv']);
226 $temp_cliKey = array_shift($_SERVER['argv']);
227 array_unshift($_SERVER['argv'],$temp_cliScriptPath);
228
229 // If cli_key was found in configuration, then set up the cliInclude path and module name:
230 if ($temp_cliKey) {
231 if (is_array($TYPO3_CONF_VARS['SC_OPTIONS']['GLOBAL']['cliKeys'][$temp_cliKey])) {
232 define('TYPO3_cliInclude', t3lib_div::getFileAbsFileName($TYPO3_CONF_VARS['SC_OPTIONS']['GLOBAL']['cliKeys'][$temp_cliKey][0]));
233 $MCONF['name'] = $TYPO3_CONF_VARS['SC_OPTIONS']['GLOBAL']['cliKeys'][$temp_cliKey][1];
234 } else {
235 echo "The supplied 'cliKey' was not valid. Please use one of the available from this list:\n\n";
236 print_r(array_keys($TYPO3_CONF_VARS['SC_OPTIONS']['GLOBAL']['cliKeys']));
237 echo "\n";
238 exit;
239 }
240 } else {
241 echo "Please supply a 'cliKey' as first argument. The following are available:\n\n";
242 print_r($TYPO3_CONF_VARS['SC_OPTIONS']['GLOBAL']['cliKeys']);
243 echo "\n";
244 exit;
245 }
246 }
247
248
249 // **********************
250 // Check Hardcoded lock on BE:
251 // **********************
252 if ($TYPO3_CONF_VARS['BE']['adminOnly'] < 0) {
253 header('Status: 404 Not Found'); // Send Not Found header - if the webserver can make use of it...
254 header('Location: http://'); // Just point us away from here...
255 exit; // ... and exit good!
256 }
257 if (!(defined('TYPO3_cliMode') && TYPO3_cliMode) && @is_file(PATH_typo3conf.'LOCK_BACKEND')) {
258 if (TYPO3_PROCEED_IF_NO_USER == 2) {
259 // ajax poll for login, let him pass
260 } else {
261 $fContent = t3lib_div::getUrl(PATH_typo3conf.'LOCK_BACKEND');
262 if ($fContent) {
263 header('Location: '.$fContent); // Redirect
264 } else {
265 t3lib_BEfunc::typo3printError('Backend locked', 'Browser backend is locked for maintenance. Remove lock by removing the file "typo3conf/LOCK_BACKEND" or use CLI-scripts.');
266 }
267 exit;
268 }
269
270 }
271
272 // **********************
273 // Check IP
274 // **********************
275 if (trim($TYPO3_CONF_VARS['BE']['IPmaskList']) && !(defined('TYPO3_cliMode') && TYPO3_cliMode)) {
276 if (!t3lib_div::cmpIP(t3lib_div::getIndpEnv('REMOTE_ADDR'), $TYPO3_CONF_VARS['BE']['IPmaskList'])) {
277 header('Status: 404 Not Found'); // Send Not Found header - if the webserver can make use of it...
278 header('Location: http://'); // Just point us away from here...
279 exit; // ... and exit good!
280 }
281 }
282
283
284 // **********************
285 // Check SSL (https)
286 // **********************
287 if (intval($TYPO3_CONF_VARS['BE']['lockSSL']) && !(defined('TYPO3_cliMode') && TYPO3_cliMode)) {
288 if(intval($TYPO3_CONF_VARS['BE']['lockSSLPort'])) {
289 $sslPortSuffix = ':'.intval($TYPO3_CONF_VARS['BE']['lockSSLPort']);
290 } else {
291 $sslPortSuffix = '';
292 }
293 if ($TYPO3_CONF_VARS['BE']['lockSSL'] == 3) {
294 $requestStr = substr(t3lib_div::getIndpEnv('TYPO3_REQUEST_SCRIPT'), strlen(t3lib_div::getIndpEnv('TYPO3_SITE_URL').TYPO3_mainDir));
295 if($requestStr == 'index.php' && !t3lib_div::getIndpEnv('TYPO3_SSL')) {
296 list(,$url) = explode('://',t3lib_div::getIndpEnv('TYPO3_REQUEST_URL'),2);
297 list($server,$address) = explode('/',$url,2);
298 header('Location: https://'.$server.$sslPortSuffix.'/'.$address);
299 exit;
300 }
301 } elseif (!t3lib_div::getIndpEnv('TYPO3_SSL') ) {
302 if ($TYPO3_CONF_VARS['BE']['lockSSL'] == 2) {
303 list(,$url) = explode('://',t3lib_div::getIndpEnv('TYPO3_SITE_URL').TYPO3_mainDir,2);
304 list($server,$address) = explode('/',$url,2);
305 header('Location: https://'.$server.$sslPortSuffix.'/'.$address);
306 } else {
307 header('Status: 404 Not Found'); // Send Not Found header - if the webserver can make use of it...
308 header('Location: http://'); // Just point us away from here...
309 }
310 exit; // ... and exit good!
311 }
312 }
313
314
315 // *******************************
316 // Checking environment
317 // *******************************
318 if (isset($_POST['GLOBALS']) || isset($_GET['GLOBALS'])) die('You cannot set the GLOBALS-array from outside the script.');
319 if (!get_magic_quotes_gpc()) {
320 t3lib_div::addSlashesOnArray($_GET);
321 t3lib_div::addSlashesOnArray($_POST);
322 $HTTP_GET_VARS = $_GET;
323 $HTTP_POST_VARS = $_POST;
324 }
325
326
327 // ********************************************
328 // Check if the install script should be run:
329 // ********************************************
330 if (defined('TYPO3_enterInstallScript') && TYPO3_enterInstallScript) {
331 if(!t3lib_extMgm::isLoaded('install')) {
332 die('Install Tool is not loaded as an extension.<br />You must add the key "install" to the list of installed extensions in typo3conf/localconf.php, $TYPO3_CONF_VARS[\'EXT\'][\'extList\'].');
333 }
334
335 require_once(t3lib_extMgm::extPath('install').'mod/class.tx_install.php');
336 $install_check = t3lib_div::makeInstance('tx_install');
337 $install_check->allowUpdateLocalConf = 1;
338 $install_check->init();
339 exit;
340 }
341
342
343 // *************************
344 // Connect to the database
345 // *************************
346 if ($TYPO3_DB->sql_pconnect(TYPO3_db_host, TYPO3_db_username, TYPO3_db_password)) {
347 if (!TYPO3_db) {
348 t3lib_BEfunc::typo3PrintError('Database Error', 'No database selected');
349 exit;
350 } elseif (!$TYPO3_DB->sql_select_db(TYPO3_db)) {
351 t3lib_BEfunc::typo3PrintError('Database Error', 'Cannot connect to the current database, "' . TYPO3_db . '"');
352 exit;
353 }
354 } else {
355 t3lib_BEfunc::typo3PrintError('Database Error', 'The current username, password or host was not accepted when the connection to the database was attempted to be established!');
356 exit;
357 }
358
359
360 // *******************************
361 // Checks for proper browser
362 // *******************************
363 if (!$CLIENT['BROWSER'] && !(defined('TYPO3_cliMode') && TYPO3_cliMode)) {
364 t3lib_BEfunc::typo3PrintError ('Browser error','Your browser version looks incompatible with this TYPO3 version!',0);
365 exit;
366 }
367
368
369 // ****************************************************
370 // Include tables customization (tables + ext_tables)
371 // ****************************************************
372 include (TYPO3_tables_script ? PATH_typo3conf.TYPO3_tables_script : PATH_t3lib.'stddb/tables.php');
373 // Extension additions
374 if ($TYPO3_LOADED_EXT['_CACHEFILE']) {
375 include (PATH_typo3conf.$TYPO3_LOADED_EXT['_CACHEFILE'].'_ext_tables.php');
376 } else {
377 include (PATH_t3lib.'stddb/load_ext_tables.php');
378 }
379 // extScript
380 if (TYPO3_extTableDef_script) {
381 include (PATH_typo3conf.TYPO3_extTableDef_script);
382 }
383
384
385
386 // *******************************
387 // BackEnd User authentication
388 // *******************************
389 /*
390 NOTICE:
391 if constant TYPO3_PROCEED_IF_NO_USER is defined true (in the mainscript), this script will return even though a user did not log in!
392 */
393 $BE_USER = t3lib_div::makeInstance('t3lib_beUserAuth'); // New backend user object
394 $BE_USER->warningEmail = $TYPO3_CONF_VARS['BE']['warning_email_addr'];
395 $BE_USER->lockIP = $TYPO3_CONF_VARS['BE']['lockIP'];
396 $BE_USER->auth_timeout_field = intval($TYPO3_CONF_VARS['BE']['sessionTimeout']);
397 $BE_USER->OS = TYPO3_OS;
398 $BE_USER->start(); // Object is initialized
399 $BE_USER->checkCLIuser();
400 $BE_USER->backendCheckLogin(); // Checking if there's a user logged in
401 $BE_USER->trackBeUser($TYPO3_CONF_VARS['BE']['trackBeUser']); // Tracking backend user script hits
402
403 // Setting the web- and filemount global vars:
404 $WEBMOUNTS = $BE_USER->returnWebmounts(); // ! WILL INCLUDE deleted mount pages as well!
405 $FILEMOUNTS = $BE_USER->returnFilemounts();
406
407 // *******************************
408 // $GLOBALS['LANG'] initialisation
409 // *******************************
410 $GLOBALS['LANG'] = t3lib_div::makeInstance('language');
411 $GLOBALS['LANG']->init($BE_USER->uc['lang']);
412
413
414 // ****************
415 // CLI processing
416 // ****************
417 if (defined('TYPO3_cliMode') && TYPO3_cliMode) {
418 // Status output:
419 if (!strcmp($_SERVER['argv'][1],'status')) {
420 echo "Status of TYPO3 CLI script:\n\n";
421 echo "Username [uid]: ".$BE_USER->user['username']." [".$BE_USER->user['uid']."]\n";
422 echo "Database: ".TYPO3_db."\n";
423 echo "PATH_site: ".PATH_site."\n";
424 echo "\n";
425 exit;
426 }
427 }
428
429 // ****************
430 // compression
431 // ****************
432 ob_clean();
433 if (extension_loaded('zlib') && $TYPO3_CONF_VARS['BE']['compressionLevel']) {
434 if (t3lib_div::testInt($TYPO3_CONF_VARS['BE']['compressionLevel'])) {
435 @ini_set('zlib.output_compression_level', $TYPO3_CONF_VARS['BE']['compressionLevel']);
436 }
437 ob_start('ob_gzhandler');
438 }
439
440 ?>