/**
* 初始化环境
*/
public function init_env()
{
if (PHP_VERSION < '5.3.0') {
set_magic_quotes_runtime(0);
}
define('MAGIC_QUOTES_GPC', function_exists('get_magic_quotes_gpc') && get_magic_quotes_gpc());
define('ICONV_ENABLE', function_exists('iconv'));
define('MB_ENABLE', function_exists('mb_convert_encoding'));
define('EXT_OBGZIP', function_exists('ob_gzhandler'));
define('TIMESTAMP', time());
$this->_timezone_set();
define('SITE_URL', site_url());
define('BASE_URL', base_url());
define('CURRENT_URL', current_url());
define('PAGESIZE', 10);
//页码大小
define('DATETIMEFROMAT', 'Y/m/d H:i:s');
// 常用的日期格式
// authkey
$authkey = trim(config_item('auth_key'));
define('AUTHKEY', $authkey ? $authkey : 'vxcfhwqpordhfadvs');
$site_name = trim(strip_tags(config_item('site_name')));
define('SITENAME', $site_name ? $site_name : '老虎游戏');
if (!defined('CHARSET')) {
$charset = strtoupper(config_item('charset'));
define('CHARSET', $charset);
}
define('IMGDIR', 'http://img.laohu.com/ls/images/');
}
public function index()
{
//note 普通的 http 通知方式
if (!defined('IN_UC')) {
error_reporting(0);
set_magic_quotes_runtime(0);
defined('MAGIC_QUOTES_GPC') || define('MAGIC_QUOTES_GPC', get_magic_quotes_gpc());
service("Passport");
$_DCACHE = $get = $post = array();
$code = @$_GET['code'];
parse_str(_authcode($code, 'DECODE', UC_KEY), $get);
if (MAGIC_QUOTES_GPC) {
$get = _stripslashes($get);
}
$timestamp = time();
if ($timestamp - $get['time'] > 3600) {
exit('Authracation has expiried');
}
if (empty($get)) {
exit('Invalid Request');
}
$action = $get['action'];
require_once DISCUZ_ROOT . './uc_client/lib/xml.class.php';
$post = xml_unserialize(file_get_contents('php://input'));
if (in_array($get['action'], array('test', 'deleteuser', 'renameuser', 'gettag', 'synlogin', 'synlogout', 'updatepw', 'updatebadwords', 'updatehosts', 'updateapps', 'updateclient', 'updatecredit', 'getcreditsettings', 'updatecreditsettings'))) {
exit($this->{$get}['action']($get, $post));
} else {
exit(API_RETURN_FAILED);
}
}
}
function session($configfile)
{
if (get_magic_quotes_runtime()) {
set_magic_quotes_runtime(0);
}
$ini = readINIfile("" . $configfile . "", ";");
// dabei ist ; das zeichen für einen kommentar. kann geändert werden.
for ($i = 0; $i <= 7; $i++) {
$_SESSION["color_ch" . $i] = $ini['plotter']['color_ch' . $i];
$_SESSION["temp_min" . $i] = $ini['temp_min']['temp_min' . $i];
$_SESSION["temp_max" . $i] = $ini['temp_max']['temp_max' . $i];
$_SESSION["ch_name" . $i] = $ini['ch_name']['ch_name' . $i];
$_SESSION["alert" . $i] = $ini['web_alert']['ch' . $i];
$_SESSION["ch_show" . $i] = $ini['ch_show']['ch' . $i];
}
$_SESSION["plot_start"] = $ini['ToDo']['plot_start'];
$_SESSION["plotname"] = $ini['plotter']['plotname'];
$_SESSION["plotsize"] = $ini['plotter']['plotsize'];
$_SESSION["plotbereich_min"] = $ini['plotter']['plotbereich_min'];
$_SESSION["plotbereich_max"] = $ini['plotter']['plotbereich_max'];
$_SESSION["keybox"] = $ini['plotter']['keybox'];
$_SESSION["keyboxframe"] = $ini['plotter']['keyboxframe'];
$_SESSION["pit_on"] = $ini['ToDo']['pit_on'];
$_SESSION["pit_ch"] = $ini['Pitmaster']['pit_ch'];
$_SESSION["webcam_start"] = $ini['webcam']['webcam_start'];
$_SESSION["current_temp"] = $ini['filepath']['current_temp'];
$_SESSION["pitmaster"] = $ini['filepath']['pitmaster'];
if (!isset($_SESSION["websoundalert"])) {
$_SESSION["websoundalert"] = "True";
}
}
function _init_env()
{
error_reporting(E_ERROR);
if (phpversion() < '5.3.0') {
set_magic_quotes_runtime(0);
}
define('DISCUZ_ROOT', substr(dirname(__FILE__), 0, -12));
define('MAGIC_QUOTES_GPC', function_exists('get_magic_quotes_gpc') && get_magic_quotes_gpc());
define('ICONV_ENABLE', function_exists('iconv'));
define('MB_ENABLE', function_exists('mb_convert_encoding'));
define('EXT_OBGZIP', function_exists('ob_gzhandler'));
define('TIMESTAMP', time());
discuz_core::timezone_set();
if (!defined('DISCUZ_CORE_FUNCTION') && !@(include DISCUZ_ROOT . './source/function/function_core.php')) {
$this->error('function_core.php is missing');
}
define('IS_ROBOT', checkrobot());
foreach ($GLOBALS as $key => $value) {
if (!isset($this->superglobal[$key])) {
$GLOBALS[$key] = null;
unset($GLOBALS[$key]);
}
}
global $_G;
$_G = array('uid' => 0, 'username' => '', 'adminid' => 0, 'groupid' => 1, 'sid' => '', 'formhash' => '', 'timestamp' => TIMESTAMP, 'starttime' => dmicrotime(), 'clientip' => $this->_get_client_ip(), 'referer' => '', 'charset' => '', 'gzipcompress' => '', 'authkey' => '', 'timenow' => array(), 'PHP_SELF' => '', 'siteurl' => '', 'siteroot' => '', 'config' => array(), 'setting' => array(), 'member' => array(), 'group' => array(), 'cookie' => array(), 'style' => array(), 'cache' => array(), 'session' => array(), 'lang' => array(), 'my_app' => array(), 'my_userapp' => array(), 'fid' => 0, 'tid' => 0, 'forum' => array(), 'rssauth' => '', 'home' => array(), 'space' => array(), 'block' => array(), 'article' => array(), 'action' => array('action' => APPTYPEID, 'fid' => 0, 'tid' => 0));
$_G['PHP_SELF'] = htmlspecialchars($_SERVER['SCRIPT_NAME'] ? $_SERVER['SCRIPT_NAME'] : $_SERVER['PHP_SELF']);
$_G['basescript'] = CURSCRIPT;
$_G['siteurl'] = htmlspecialchars('http://' . $_SERVER['HTTP_HOST'] . preg_replace("/\\/+(api)?\\/*\$/i", '', substr($_G['PHP_SELF'], 0, strrpos($_G['PHP_SELF'], '/'))) . '/');
$uri = $_SERVER['REQUEST_URI'] ? $_SERVER['REQUEST_URI'] : ($_SERVER['PHP_SELF'] ? $_SERVER['PHP_SELF'] : $_SERVER['SCRIPT_NAME']);
$_G['siteroot'] = substr($_G['PHP_SELF'], 0, -strlen(basename($_G['PHP_SELF'])));
$this->var =& $_G;
}
private function __construct()
{
//-----------需要页面显示调试信息, 注释掉下面两行即可---
//-------------------------------------------------------
set_error_handler(array("Core", 'appError'));
set_exception_handler(array("Core", 'appException'));
date_default_timezone_set("Asia/Shanghai");
if (version_compare(PHP_VERSION, '5.4.0', '<')) {
@set_magic_quotes_runtime(0);
define('MAGIC_QUOTES_GPC', get_magic_quotes_gpc() ? True : False);
}
if (!defined('WEB_PATH')) {
//define("WEB_PATH","D:/wamp/www/pc2.valsun.cn/");
define("WEB_PATH", "/data/web/erpNew/pc.valsun.cn/");
}
include WEB_PATH . "lib/common.php";
//加载全局配置信息
C(include WEB_PATH . 'conf/common.php');
include WEB_PATH . "lib/auth.php";
//鉴权
include WEB_PATH . "lib/authuser.class.php";
//新鉴权
//Auth::setAccess(include WEB_PATH.'conf/access.php');
include WEB_PATH . "lib/log.php";
//加载数据接口层及所需支撑
include WEB_PATH . "lib/service/http.php";
//网络接口
include WEB_PATH . "lib/functions.php";
include WEB_PATH . "lib/page.php";
include WEB_PATH . "lib/template.php";
//PHPLIB 的模板类
include WEB_PATH . "lib/cache/cache.php";
//memcache
include WEB_PATH . "lib/PHPExcel.php";
//PHPExcel
//include WEB_PATH."lib/rabbitmq/rabbitmq.class.php";
//加载语言包
//$lang = WEB_PATH."lang/".C("LANG").".php"; //memcache
if (file_exists($lang)) {
//echo $lang;
//C(include $lang);
}
if (C("DATAGATE") == "db") {
$db = C("DB_TYPE");
include WEB_PATH . "lib/db/" . $db . ".php";
//db直连
if ($db == "mysql") {
global $dbConn;
$db_config = C("DB_CONFIG");
$dbConn = new mysql();
$dbConn->connect($db_config["master1"][0], $db_config["master1"][1], $db_config["master1"][2]);
$dbConn->select_db($db_config["master1"][4]);
}
if (DB_TYPE == "mongodb") {
//.......
}
}
//自动加载类
spl_autoload_register(array('Core', 'autoload'));
}
public function __construct()
{
if (get_magic_quotes_runtime()) {
@set_magic_quotes_runtime(0);
}
if (get_magic_quotes_gpc()) {
$_POST = $this->strip_slashes($_POST);
$_GET = $this->strip_slashes($_GET);
$_SESSION = $this->strip_slashes($_SESSION);
$_COOKIE = $this->strip_slashes($_COOKIE);
}
if (defined('XIAOCMS_ADMIN') || defined('XIAOCMS_MEMBER')) {
define('SITE_PATH', self::get_a_url());
} else {
define('SITE_PATH', self::get_base_url());
}
if (!is_file(XIAOCMS_PATH . 'data/install.lock')) {
self::redirect(url('install/index'));
}
if (is_file(XIAOCMS_PATH . 'member' . DIRECTORY_SEPARATOR . 'index.php')) {
define('XIAOCMS_MEMBER', XIAOCMS_PATH . 'member' . DIRECTORY_SEPARATOR);
}
$this->db = xiaocms::load_class('Model');
$this->view = xiaocms::load_class('view');
$this->cookie = xiaocms::load_class('cookie');
$this->session = xiaocms::load_class('session');
$this->site_config = xiaocms::load_config('config');
$this->category_cache = get_cache('category');
$this->content_model = get_cache('content_model');
$this->member_info = self::get_member_info();
$this->view->assign(array('cats' => $this->category_cache, 'member' => $this->member_info, 'site_url' => self::get_http_host() . SITE_PATH, 'site_name' => $this->site_config['site_name'], 'page' => (int) self::get('page') ? (int) self::get('page') : 1, 'site_template' => SITE_PATH . basename(TEMPLATE_DIR) . '/' . basename(SYS_THEME_DIR) . '/'));
}
function MagicQuotesRuntimeSetting()
{
@ini_set("magic_quotes_runtime", 0);
if (version_compare('5.4', PHP_VERSION, '>') && function_exists('set_magic_quotes_runtime') && get_magic_quotes_runtime()) {
@set_magic_quotes_runtime(false);
}
}
function Pommo_Db($username = NULL, $password = NULL, $database = NULL, $hostname = NULL, $tablePrefix = NULL)
{
// turn off magic quotes runtime
if (get_magic_quotes_runtime()) {
if (!set_magic_quotes_runtime(0)) {
Pommo::kill('Could not turn off PHP\'s magic_quotes_runtime');
}
}
$this->_prefix = $tablePrefix;
$this->_database = $database;
$this->table = array('config' => '`' . $tablePrefix . 'config`', 'fields' => '`' . $tablePrefix . 'fields`', 'group_rules' => '`' . $tablePrefix . 'group_rules`', 'groups' => '`' . $tablePrefix . 'groups`', 'mailing_notices' => '`' . $tablePrefix . 'mailing_notices`', 'mailing_current' => '`' . $tablePrefix . 'mailing_current`', 'mailings' => '`' . $tablePrefix . 'mailings`', 'scratch' => '`' . $tablePrefix . 'scratch`', 'subscriber_data' => '`' . $tablePrefix . 'subscriber_data`', 'subscriber_pending' => '`' . $tablePrefix . 'subscriber_pending`', 'subscriber_update' => '`' . $tablePrefix . 'subscriber_update`', 'subscribers' => '`' . $tablePrefix . 'subscribers`', 'templates' => '`' . $tablePrefix . 'templates`', 'queue' => '`' . $tablePrefix . 'queue`', 'updates' => '`' . $tablePrefix . 'updates`');
$this->_dieOnQuery = TRUE;
$this->_debug = FALSE;
$this->_results = array();
// connect to mysql database using config variables from poMMo class (set in setup/config.php).
// supress errors to hide login information...
$this->_link = mysql_connect($hostname, $username, $password);
if (!$this->_link) {
Pommo::kill(Pommo::_T('Could not establish database connection.') . ' ' . Pommo::_T('Verify your settings in config.php'));
}
if (!@mysql_select_db($database, $this->_link)) {
Pommo::kill(sprintf(Pommo::_T('Connected to database server but could not select database (%s). Does it exist?'), $database) . ' ' . Pommo::_T('Verify your settings in config.php'));
}
// Make sure any results we retrieve or commands we send use the same charset and collation as the database:
// code taken from Juliette Reinders Folmer; http://www.adviesenzo.nl/examples/php_mysql_charset_fix/
// TODO: Cache the charset?
$db_charset = mysql_query("SHOW VARIABLES LIKE 'character_set_database'", $this->_link);
$charset_row = mysql_fetch_assoc($db_charset);
mysql_query("SET NAMES '" . $charset_row['Value'] . "'", $this->_link);
unset($db_charset, $charset_row);
// setup safeSQL class
$this->_safeSQL = new SafeSQL_MySQL($this->_link);
}
function get_entries($process_comment_func = NULL)
{
if (function_exists('set_magic_quotes_runtime')) {
set_magic_quotes_runtime(0);
}
$xml = simplexml_load_file('compress.zlib://' . $this->file);
// simple "are we a disqus export?" check
if (!$xml || $xml->getName() !== 'disqus') {
return false;
}
foreach ($xml->thread as $thread) {
$attributes = $thread->attributes('dsq', true);
$threadid = (int) $attributes['id'];
$link = (string) $thread->link;
if (empty($this->thread_to_post_id[$threadid])) {
if (trailingslashit($link) == trailingslashit(get_option('siteurl'))) {
$this->thread_to_post_id[$threadid] = (int) get_option('page_on_front');
} else {
$this->thread_to_post_id[$threadid] = url_to_postid($link);
// echo "<li>URL to postid: <code>", $link, "</code> - <code>", $this->thread_to_post_id[$threadid], "</code></li>";
}
}
}
if ($process_comment_func) {
foreach ($xml->post as $comment) {
call_user_func($process_comment_func, $comment);
}
}
return true;
}
/** startInit() initiates the environment
* @return void
*/
public static function startInit()
{
@set_time_limit(0);
@error_reporting(E_ALL & ~E_DEPRECATED & ~E_NOTICE);
@ini_set('session.save_handler', 'mm');
@ini_set('session.cookie_httponly', true);
@ob_start('sanitize_output');
@session_start();
@session_cache_limiter('no-cache');
@session_set_cookie_params(0, null, null, true, true);
@set_magic_quotes_runtime(0);
self::verCheck();
self::extCheck();
foreach ($_REQUEST as $key => $val) {
$_REQUEST[$key] = is_array($val) ? filter_var_array($val, FILTER_SANITIZE_STRING) : filter_var($val, FILTER_SANITIZE_STRING);
}
foreach ($_GET as $key => $val) {
$_GET[$key] = is_array($val) ? filter_var_array($val, FILTER_SANITIZE_STRING) : filter_var($val, FILTER_SANITIZE_STRING);
}
foreach ($_POST as $key => $val) {
$_POST[$key] = is_array($val) ? filter_var_array($val, FILTER_SANITIZE_STRING) : filter_var($val, FILTER_SANITIZE_STRING);
}
foreach (array('node', 'sub', 'printertype', 'id', 'sub', 'crit', 'sort', 'confirm', 'tab') as $x) {
global ${$x};
${$x} = isset($_REQUEST[$x]) ? filter_var($_REQUEST[$x], FILTER_SANITIZE_STRING) : '';
}
unset($x);
new System();
new Config();
}
/**
* Initialization step. Called at each request.
* It either sets up variables for other steps, or handle a few requests on its own.
*/
function initialize_inputs()
{
// Turn off magic quotes runtime and enable error reporting.
if (function_exists('set_magic_quotes_runtime')) {
@set_magic_quotes_runtime(0);
}
error_reporting(E_ALL);
// This is the test for support of compression
if (isset($_GET['obgz'])) {
ob_start('ob_gzhandler');
if (ini_get('session.save_handler') == 'user') {
@ini_set('session.save_handler', 'files');
}
session_start();
if (!headers_sent()) {
echo '<!DOCTYPE html>
<html>
<head>
<title>', htmlspecialchars($_GET['pass_string'], ENT_COMPAT, 'UTF-8'), '</title>
</head>
<body style="background: #d4d4d4; margin-top: 16%; font-size: 16pt;">
<strong>', htmlspecialchars($_GET['pass_string'], ENT_COMPAT, 'UTF-8'), '</strong>
</body>
</html>';
}
exit;
} else {
ob_start();
if (ini_get('session.save_handler') == 'user') {
@ini_set('session.save_handler', 'files');
}
if (function_exists('session_start')) {
@session_start();
}
}
// Reject magic_quotes_sybase='on'.
if (ini_get('magic_quotes_sybase') || strtolower(ini_get('magic_quotes_sybase')) == 'on') {
die('magic_quotes_sybase=on was detected: your host is using an unsecure PHP configuration, deprecated and removed in current versions. Please upgrade PHP.');
}
if (function_exists('get_magic_quotes_gpc') && get_magic_quotes_gpc() != 0) {
die('magic_quotes_gpc=on was detected: your host is using an unsecure PHP configuration, deprecated and removed in current versions. Please upgrade PHP.');
}
// Add slashes, as long as they aren't already being added.
foreach ($_POST as $k => $v) {
if (strpos($k, 'password') === false && strpos($k, 'passwd') === false) {
$_POST[$k] = addslashes($v);
} else {
$_POST[$k] = addcslashes($v, '\'');
}
}
// This is really quite simple; if ?delete is on the URL, delete the installer...
if (isset($_GET['delete'])) {
action_deleteInstaller();
}
// PHP 5 might cry if we don't do this now.
$server_offset = @mktime(0, 0, 0, 1, 1, 1970);
date_default_timezone_set('Etc/GMT' . ($server_offset > 0 ? '+' : '') . $server_offset / 3600);
// Force an integer step, defaulting to 0.
$_GET['step'] = isset($_GET['step']) ? (int) $_GET['step'] : 0;
}
/**
* Send a download.
*
* @since 0.1.0
*
* @param string $file An absolute file path.
*/
function satispress_send_file($file)
{
@session_write_close();
if (function_exists('apache_setenv')) {
@apache_setenv('no-gzip', 1);
}
if (get_magic_quotes_runtime()) {
@set_magic_quotes_runtime(0);
}
@ini_set('zlib.output_compression', 'Off');
@set_time_limit(0);
@ob_end_clean();
if (ob_get_level()) {
@ob_end_clean();
// Zip corruption fix.
}
nocache_headers();
header('Robots: none');
header('Content-Type: application/force-download');
header('Content-Description: File Transfer');
header('Content-Disposition: attachment; filename="' . basename($file) . '";');
header('Content-Transfer-Encoding: binary');
if ($size = @filesize($file)) {
header('Content-Length: ' . $size);
}
@readfile_chunked($file) or wp_die(__('File not found', 'satispress'));
exit;
}
public static function init()
{
// Get rid of magic_quotes
if (function_exists('get_magic_quotes_gpc') && get_magic_quotes_gpc() || ini_get('magic_quotes_sybase')) {
$_POST = Bootstrap::multidimensionalArrayMap('stripslashes', $_POST);
$_REQUEST = Bootstrap::multidimensionalArrayMap('stripslashes', $_REQUEST);
$_GET = Bootstrap::multidimensionalArrayMap('stripslashes', $_GET);
$_COOKIE = Bootstrap::multidimensionalArrayMap('stripslashes', $_COOKIE);
}
if (ini_get('magic_quotes_runtime') && function_exists('set_magic_quotes_runtime')) {
@set_magic_quotes_runtime(0);
}
// This is needed to encode json correctly, because of the floating point
setlocale(LC_ALL, 'en_US.utf8');
// Each MMap plugin should decide waht type of response needs.
//ob_start('mb_output_handler');
// The environment is safe now, start the system
Bootstrap::load(EYE_ROOT . '/' . SYSTEM_DIR . '/' . KERNEL_DIR . '/Kernel.php');
//get the priority
$priorities = Bootstrap::loadPriorities();
// Load all libraries
Bootstrap::loadLibraries($priorities);
// Initialize self::$Logger for next steps
self::$Logger = Logger::getLogger('bootstrap.Bootstrap');
// Load all services
Bootstrap::loadServices($priorities);
// Load all frameworks
Bootstrap::loadFrameworks($priorities);
}
function _init_env()
{
error_reporting(E_ERROR);
if (phpversion() < '5.3.0') {
set_magic_quotes_runtime(0);
}
define('MAGIC_QUOTES_GPC', function_exists('get_magic_quotes_gpc') && get_magic_quotes_gpc());
define('ICONV_ENABLE', function_exists('iconv'));
define('MB_ENABLE', function_exists('mb_convert_encoding'));
define('FORMHASH', formhash());
define('TIMESTAMP', time());
$_SERVER['HTTP_USER_AGENT'] = empty($_SERVER['HTTP_USER_AGENT']) ? '' : $_SERVER['HTTP_USER_AGENT'];
foreach ($GLOBALS as $key => $value) {
if (!isset($this->superglobal[$key])) {
$GLOBALS[$key] = null;
unset($GLOBALS[$key]);
}
}
global $_G;
$_G = array('uid' => 0, 'username' => 'Guest', 'formhash' => '', 'timestamp' => TIMESTAMP, 'starttime' => array_sum(explode(' ', microtime())), 'clientip' => $this->_get_client_ip(), 'referer' => '', 'charset' => '', 'timenow' => array(), 'cookiepre' => '', 'PHP_SELF' => '', 'siteurl' => '', 'siteroot' => '', 'authkey' => '', 'config' => array(), 'setting' => array('sitetheme' => 'default'), 'member' => array(), 'cookie' => array(), 'style' => array(), 'cache' => array());
$_G['PHP_SELF'] = htmlspecialchars($_SERVER['SCRIPT_NAME'] ? $_SERVER['SCRIPT_NAME'] : $_SERVER['PHP_SELF']);
$_G['basescript'] = CURSCRIPT;
$_G['basefilename'] = basename($_G['PHP_SELF']);
$_G['siteurl'] = htmlspecialchars('http://' . $_SERVER['HTTP_HOST'] . preg_replace("/\\/+(api)?\\/*\$/i", '', substr($_G['PHP_SELF'], 0, strrpos($_G['PHP_SELF'], '/'))) . '/');
$_G['siteroot'] = substr($_G['PHP_SELF'], 0, -strlen($_G['basefilename']));
}
function _init_env()
{
error_reporting(E_ERROR);
if (PHP_VERSION < '5.3.0') {
set_magic_quotes_runtime(0);
}
/*vot*/
if (!defined('DISCUZ_ROOT')) {
/*vot*/
define('DISCUZ_ROOT', preg_replace("/^\\w\\:/i", '', str_replace("\\", '/', substr(dirname(__FILE__), 0, -12))));
/*vot*/
}
define('MAGIC_QUOTES_GPC', function_exists('get_magic_quotes_gpc') && get_magic_quotes_gpc());
define('ICONV_ENABLE', function_exists('iconv'));
define('MB_ENABLE', function_exists('mb_convert_encoding'));
define('EXT_OBGZIP', function_exists('ob_gzhandler'));
define('TIMESTAMP', time());
$this->timezone_set();
/*vot*/
if (!defined('DISCUZ_CORE_FUNCTION') && !@(include_once DISCUZ_ROOT . './source/function/function_core.php')) {
exit('function_core.php is missing');
}
if (function_exists('ini_get')) {
$memorylimit = @ini_get('memory_limit');
if ($memorylimit && return_bytes($memorylimit) < 33554432 && function_exists('ini_set')) {
ini_set('memory_limit', '128m');
}
}
define('IS_ROBOT', checkrobot());
foreach ($GLOBALS as $key => $value) {
if (!isset($this->superglobal[$key])) {
$GLOBALS[$key] = null;
unset($GLOBALS[$key]);
}
}
global $_G;
$_G = array('uid' => 0, 'username' => '', 'adminid' => 0, 'groupid' => 1, 'sid' => '', 'formhash' => '', 'timestamp' => TIMESTAMP, 'starttime' => dmicrotime(), 'clientip' => $this->_get_client_ip(), 'referer' => '', 'charset' => '', 'gzipcompress' => '', 'authkey' => '', 'timenow' => array(), 'PHP_SELF' => '', 'siteurl' => '', 'siteroot' => '', 'siteport' => '', 'config' => array(), 'setting' => array(), 'member' => array(), 'group' => array(), 'cookie' => array(), 'style' => array(), 'cache' => array(), 'session' => array(), 'lang' => array(), 'my_app' => array(), 'my_userapp' => array(), 'fid' => 0, 'tid' => 0, 'forum' => array(), 'thread' => array(), 'rssauth' => '', 'home' => array(), 'space' => array(), 'block' => array(), 'article' => array(), 'action' => array('action' => APPTYPEID, 'fid' => 0, 'tid' => 0), 'mobile' => '');
$_G['PHP_SELF'] = htmlspecialchars($this->_get_script_url());
$_G['basescript'] = CURSCRIPT;
$_G['basefilename'] = basename($_G['PHP_SELF']);
$sitepath = substr($_G['PHP_SELF'], 0, strrpos($_G['PHP_SELF'], '/'));
if (defined('IN_API')) {
$sitepath = preg_replace("/\\/api\\/?.*?\$/i", '', $sitepath);
} elseif (defined('IN_ARCHIVER')) {
$sitepath = preg_replace("/\\/archiver/i", '', $sitepath);
}
$_G['siteurl'] = htmlspecialchars('http://' . $_SERVER['HTTP_HOST'] . $sitepath . '/');
$url = parse_url($_G['siteurl']);
$_G['siteroot'] = isset($url['path']) ? $url['path'] : '';
$_G['siteport'] = empty($_SERVER['SERVER_PORT']) || $_SERVER['SERVER_PORT'] == '80' ? '' : ':' . $_SERVER['SERVER_PORT'];
if (defined('SUB_DIR')) {
$_G['siteurl'] = str_replace(SUB_DIR, '/', $_G['siteurl']);
$_G['siteroot'] = str_replace(SUB_DIR, '/', $_G['siteroot']);
}
/*vot*/
$_G['siteurl'] = str_replace("\\", '/', $_G['siteurl']);
/*vot*/
$_G['siteroot'] = str_replace("\\", '/', $_G['siteroot']);
$this->var =& $_G;
}
/**
* Initialization variables and constant
*
*/
public static function init()
{
if (function_exists('get_magic_quotes_gpc') and get_magic_quotes_gpc()) {
self::stripslashes_deep($_REQUEST);
// needed for some reason (at least on php5 - not tested on php4)
self::stripslashes_deep($_GET);
self::stripslashes_deep($_POST);
self::stripslashes_deep($_COOKIE);
if (is_array($_FILES)) {
foreach ($_FILES as $key => $val) {
$_FILES["{$key}"]['tmp_name'] = str_replace('\\', '\\\\', $val['tmp_name']);
}
self::stripslashes_deep($_FILES);
}
}
set_magic_quotes_runtime(0);
@ini_set('magic_quotes_sybase', 0);
if (!empty($_SERVER['HTTP_X_REQUESTED_WITH']) && $_SERVER['HTTP_X_REQUESTED_WITH'] == 'XMLHttpRequest' || !empty($_REQUEST['rndval'])) {
self::$AJAX = true;
// объ¤вим константу дл¤ старый версий модулей
define('AJAX', true);
} else {
// объ¤вим константу дл¤ старый версий модулей
define('AJAX', false);
}
foreach ($_COOKIE as $key => $val) {
unset($_REQUEST[$key]);
}
self::$IP = $_SERVER['REMOTE_ADDR'];
}
function index()
{
/* 只提供普通的http通知方式 */
error_reporting(0);
set_magic_quotes_runtime(0);
$_DCACHE = $get = $post = array();
$code = @$_GET['code'];
parse_str(_authcode($code, 'DECODE', UC_KEY), $get);
$get = _stripslashes($get);
$timestamp = time();
if ($timestamp - $get['time'] > 3600) {
exit('Authracation has expiried');
}
if (empty($get)) {
exit('Invalid Request');
}
$action = $get['action'];
include ROOT_PATH . '/uc_client/lib/xml.class.php';
$post = xml_unserialize(file_get_contents('php://input'));
if (in_array($get['action'], array('test', 'deleteuser', 'renameuser', 'gettag', 'synlogin', 'synlogout', 'updatepw', 'updatebadwords', 'updatehosts', 'updateapps', 'updateclient', 'updatecredit', 'getcreditsettings', 'updatecreditsettings'))) {
exit($this->{$get}['action']($get, $post));
} else {
exit(API_RETURN_FAILED);
}
}
/**
* Constructor function
* Sets the class properties that will be used later on in the class.
*
* @return object
*/
public function __construct()
{
if (function_exists('set_magic_quotes_runtime')) {
// Yes yes I know it is deprecated, that is why we shut it up.
@set_magic_quotes_runtime(false);
}
}
function prepare_vars()
{
if (isset($_REQUEST) && is_array($_REQUEST)) {
$_REQUEST = $this->strpsl($_REQUEST);
}
if (isset($_POST) && is_array($_POST)) {
$_POST = $this->strpsl($_POST);
}
if (isset($_GET) && is_array($_GET)) {
$_GET = $this->strpsl($_GET);
}
if (isset($_COOKIE) && is_array($_COOKIE)) {
$_COOKIE = $this->strpsl($_COOKIE);
}
if (isset($_SESSION) && is_array($_SESSION)) {
$_SESSION = $this->strpsl($_SESSION);
}
@set_magic_quotes_runtime(0);
//Fehlendes REQUEST_URI auf IIS-Server fixen
if (!isset($_SERVER['REQUEST_URI'])) {
$_SERVER['REQUEST_URI'] = $_SERVER['PHP_SELF'];
if ($_SERVER['QUERY_STRING']) {
$_SERVER['REQUEST_URI'] .= '?' . $_SERVER['QUERY_STRING'];
} elseif ($_SERVER['argv'][0] != '') {
$_SERVER['REQUEST_URI'] .= '?' . $_SERVER['argv'][0];
}
}
}
private function __construct()
{
//-----------需要页面显示调试信息, 注释掉下面两行即可---
//-------------------------------------------------------
//set_error_handler(array("Core",'appError'));
//set_exception_handler(array("Core",'appException'));
date_default_timezone_set("Asia/Shanghai");
if (version_compare(PHP_VERSION, '5.4.0', '<')) {
@set_magic_quotes_runtime(0);
define('MAGIC_QUOTES_GPC', get_magic_quotes_gpc() ? True : False);
}
if (!defined('WEB_PATH')) {
define("WEB_PATH", "/data/web/purchase.valsun.cn/");
}
include WEB_PATH . "lib/common.php";
//加载全局配置信息
C(include WEB_PATH . 'conf/common.php');
include WEB_PATH . "lib/authuser.class.php";
//新鉴权
include WEB_PATH . "lib/log.php";
include WEB_PATH . "lib/page.php";
//分页类
include WEB_PATH . "lib/rabbitmq/rabbitmq.class.php";
//消息队列
//加载数据接口层及所需支撑
include WEB_PATH . "lib/service/http.php";
//网络接口
include WEB_PATH . "lib/functions.php";
//公共方法
include WEB_PATH . "lib/opensys_functions.php";
//开放系统方法
include WEB_PATH . "lib/cache/cache.php";
//memcache
include WEB_PATH . "lib/memcachemodel.class.php";
//memcache
include WEB_PATH . "lib/class.curl.php";
//memcache
if (C("DATAGATE") == "db") {
$db = C("DB_TYPE");
include WEB_PATH . "lib/db/" . $db . ".php";
//db直连
if ($db == "mysql") {
global $dbConn, $dbconn, $rmqObj;
$db_config = C("DB_CONFIG");
$rmq_config = C("RMQ_CONFIG");
$dbConn = new mysql();
$dbConn->connect($db_config["master1"][0], $db_config["master1"][1], $db_config["master1"][2]);
$dbConn->select_db($db_config["master1"][4]);
$dbconn = $dbConn;
$rmqObj = new RabbitMQClass($rmq_config['user'], $rmq_config['passwd'], $rmq_config['vhost'], $rmq_config['ip']);
//队列对象
}
if ($db == "mongodb") {
//.......
}
}
//自动加载类
spl_autoload_register(array('Core', 'autoload'));
}
/**
* Start things up
*
* - It sets up variables for other steps
* - It makes the initial connection to the db
*/
function initialize_inputs()
{
global $db_connection, $sourcedir, $boarddir, $languagedir, $extdir, $cachedir;
global $db_server, $db_name, $db_user, $db_passwd, $db_prefix, $db_type;
// Turn off magic quotes runtime and enable error reporting.
if (function_exists('set_magic_quotes_runtime')) {
@set_magic_quotes_runtime(0);
}
error_reporting(E_ALL);
ob_start();
if (ini_get('session.save_handler') == 'user') {
@ini_set('session.save_handler', 'files');
}
if (function_exists('session_start')) {
@session_start();
}
// Reject magic_quotes_sybase='on'.
if (ini_get('magic_quotes_sybase') || strtolower(ini_get('magic_quotes_sybase')) == 'on') {
die('magic_quotes_sybase=on was detected: your host is using an unsecure PHP configuration, deprecated and removed in current versions. Please upgrade PHP.');
}
if (function_exists('get_magic_quotes_gpc') && get_magic_quotes_gpc() != 0) {
die('magic_quotes_gpc=on was detected: your host is using an unsecure PHP configuration, deprecated and removed in current versions. Please upgrade PHP.');
}
// Add slashes, as long as they aren't already being added.
foreach ($_POST as $k => $v) {
if (is_array($v)) {
foreach ($v as $k2 => $v2) {
$_POST[$k][$k2] = addcslashes($v2, '\\\'');
}
} else {
$_POST[$k] = addcslashes($v, '\\\'');
}
}
// PHP 5 might complain if we don't do this now.
$server_offset = @mktime(0, 0, 0, 1, 1, 1970);
date_default_timezone_set('Etc/GMT' . ($server_offset > 0 ? '+' : '') . $server_offset / 3600);
$db_connection = false;
if (isset($sourcedir) && file_exists($sourcedir)) {
define('ELK', 1);
// Time to set some constants
DEFINE('BOARDDIR', $boarddir);
DEFINE('CACHEDIR', $cachedir);
DEFINE('EXTDIR', $extdir);
DEFINE('LANGUAGEDIR', $languagedir);
DEFINE('SOURCEDIR', $sourcedir);
DEFINE('ADMINDIR', $sourcedir . '/admin');
DEFINE('CONTROLLERDIR', $sourcedir . '/controllers');
DEFINE('SUBSDIR', $sourcedir . '/subs');
unset($boarddir, $cachedir, $sourcedir, $languagedir, $extdir);
// Default the database type to MySQL if its not set in settings
if (empty($db_type) || !file_exists(SOURCEDIR . '/database/Db-' . $db_type . '.subs.php')) {
$db_type = 'mysql';
}
// Lets make a connection to the db
require_once SOURCEDIR . '/Load.php';
require_once SOURCEDIR . '/database/Database.subs.php';
$db_connection = elk_db_initiate($db_server, $db_name, $db_user, $db_passwd, $db_prefix, array('non_fatal' => true));
}
}
/**
* Check magic quote and disable it
*/
private function checkMagicQuoteRuntime()
{
// Check for magic quotes
if (get_magic_quotes_runtime()) {
// Oh god! Danger. Magic quote deprecated. Sort it out.
@set_magic_quotes_runtime(0);
}
}
function socket_read($byte_count)
{
$mqr = get_magic_quotes_runtime();
set_magic_quotes_runtime(0);
$buffer = fread($this->socket, $byte_count);
set_magic_quotes_runtime($mqr);
return $buffer;
}
/**
* constructor initializes data structures
*/
function SKINIMPORT()
{
// disable magic_quotes_runtime if it's turned on
set_magic_quotes_runtime(0);
// debugging mode?
$this->debug = 0;
$this->reset();
}
function get_entries() {
set_magic_quotes_runtime(0);
$importdata = file($this->file); // Read the file into an array
$importdata = implode('', $importdata); // squish it
$importdata = preg_replace("/(\r\n|\n|\r)/", "\n", $importdata);
$importdata = preg_replace("/\n--------\n/", "--MT-ENTRY--\n", $importdata);
$this->posts = explode("--MT-ENTRY--", $importdata);
}
/**
* Constructor. Sanitizes global data GET, POST and COOKIE data.
* Also makes sure those pesty magic quotes and register globals
* don't bother us. This is protected because it really only needs
* to be run once.
*
* @return void
*/
protected function __construct()
{
if (self::$instance === NULL) {
// Check for magic quotes
if (get_magic_quotes_runtime()) {
// Dear lord!! This is bad and deprected. Sort it out ;)
set_magic_quotes_runtime(0);
}
if (get_magic_quotes_gpc()) {
// This is also bad and deprected. See http://php.net/magic_quotes for more information.
$this->magic_quotes_gpc = TRUE;
}
// Check for register globals and prevent security issues from arising.
if (ini_get('register_globals')) {
if (isset($_REQUEST['GLOBALS'])) {
// No no no.. just kill the script here and now
exit('Illegal attack on global variable.');
}
// Get rid of REQUEST
$_REQUEST = array();
// The following globals are standard and shouldn't really be removed
$preserve = array('GLOBALS', '_REQUEST', '_GET', '_POST', '_FILES', '_COOKIE', '_SERVER', '_ENV', '_SESSION');
// Same effect as disabling register_globals
foreach ($GLOBALS as $key => $value) {
if (!in_array($key, $preserve)) {
global ${$key};
${$key} = NULL;
unset($GLOBALS[$key], ${$key});
}
}
}
// Sanitize global data
if (is_array($_POST)) {
foreach ($_POST as $key => $value) {
$_POST[$this->clean_input_keys($key)] = $this->clean_input_data($value);
}
} else {
$_POST = array();
}
if (is_array($_GET)) {
foreach ($_GET as $key => $value) {
$_GET[$this->clean_input_keys($key)] = $this->clean_input_data($value);
}
} else {
$_GET = array();
}
if (is_array($_COOKIE)) {
foreach ($_COOKIE as $key => $value) {
$_COOKIE[$this->clean_input_keys($key)] = $this->clean_input_data($value);
}
} else {
$_COOKIE = array();
}
// Just make REQUEST a merge of POST and GET. Who really wants cookies in it anyway?
$_REQUEST = array_merge($_GET, $_POST);
self::$instance = $this;
}
}
/**
* Set the file headers and force the download of a given file
*
* @return void
*/
public function download()
{
if (isset($_GET['download']) && isset($_GET['payment_id'])) {
$transaction_id = urldecode($_GET['download']);
$payment_id = urldecode($_GET['payment_id']);
$product_id = urldecode($_GET['product_id']);
// Old download links might not have attachment_id set.
// This means they were purchased before we added support
// for multiple attachments. So, we just grab the first
// attachment_id saved in post meta.
$attachment_id = !empty($_GET['attachment_id']) ? urldecode($_GET['attachment_id']) : sell_media_get_attachment_id($product_id);
$size_id = !empty($_GET['size_id']) ? urldecode($_GET['size_id']) : null;
$verified = apply_filters('sell_media_verify_download', $this->verify($transaction_id, $payment_id), $product_id);
if ($verified) {
$file = Sell_Media()->products->get_protected_file($product_id, $attachment_id);
if (!file_exists($file)) {
wp_die(__('The original high resolution file doesn\'t exist here: %1$s', 'sell_media'), $file);
exit;
}
$file_type = wp_check_filetype($file);
if (!ini_get('safe_mode')) {
set_time_limit(0);
}
if (function_exists('get_magic_quotes_runtime') && get_magic_quotes_runtime()) {
set_magic_quotes_runtime(0);
}
if (function_exists('apache_setenv')) {
@apache_setenv('no-gzip', 1);
}
@ini_set('zlib.output_compression', 'Off');
nocache_headers();
header("Robots: none");
header("Content-Type: " . $file_type['type'] . "");
header("Content-Description: File Transfer");
header("Content-Disposition: attachment; filename=\"" . basename($file) . "\"");
header("Content-Transfer-Encoding: binary");
// If image, generate the image sizes purchased and create a download
if (wp_attachment_is_image($attachment_id)) {
$this->download_image($product_id, $attachment_id, $size_id);
} else {
$this->download_file($file);
}
do_action('sell_media_after_successful_download', $product_id);
exit;
} else {
do_action('sell_media_before_failed_download', $product_id, $attachment_id);
wp_die(__('You do not have permission to download this file', 'sell_media'), __('Purchase Verification Failed', 'sell_media'));
}
exit;
}
// Rend purchase receipt?
if (isset($_GET['resend_email']) && isset($_GET['payment_id'])) {
$payment_id = $_GET['payment_id'];
$payment_email = get_meta_key($payment_id, 'email');
Sell_Media()->payments->email_receipt($payment_id, $payment_email);
}
}
public static function DisableMagicQuotesRuntime()
{
if (function_exists('set_magic_quotes_runtime')) {
try {
set_magic_quotes_runtime(false);
} catch (Exception $e) {
}
}
}
/**
* Sanitizes global GET, POST and COOKIE data. Also takes care of
* magic_quotes and register_globals, if they have been enabled.
*
* @return void
*/
public function __construct()
{
// Convert all global variables to Kohana charset
$_GET = Input::clean($_GET);
$_POST = Input::clean($_POST);
$_COOKIE = Input::clean($_COOKIE);
$_SERVER = Input::clean($_SERVER);
if (Kohana::$server_api === 'cli') {
// Convert command line arguments
$_SERVER['argv'] = Input::clean($_SERVER['argv']);
}
// Use XSS clean?
$this->use_xss_clean = (bool) Kohana::config('core.global_xss_filtering');
if (Input::$instance === NULL) {
// magic_quotes_runtime is enabled
if (get_magic_quotes_runtime()) {
@set_magic_quotes_runtime(0);
Kohana_Log::add('debug', 'Disable magic_quotes_runtime! It is evil and deprecated: http://php.net/magic_quotes');
}
// magic_quotes_gpc is enabled
if (get_magic_quotes_gpc()) {
$this->magic_quotes_gpc = TRUE;
Kohana_Log::add('debug', 'Disable magic_quotes_gpc! It is evil and deprecated: http://php.net/magic_quotes');
}
if (is_array($_GET)) {
foreach ($_GET as $key => $val) {
// Sanitize $_GET
$_GET[$this->clean_input_keys($key)] = $this->clean_input_data($val);
}
} else {
$_GET = array();
}
if (is_array($_POST)) {
foreach ($_POST as $key => $val) {
// Sanitize $_POST
$_POST[$this->clean_input_keys($key)] = $this->clean_input_data($val);
}
} else {
$_POST = array();
}
if (is_array($_COOKIE)) {
foreach ($_COOKIE as $key => $val) {
// Ignore special attributes in RFC2109 compliant cookies
if ($key == '$Version' or $key == '$Path' or $key == '$Domain') {
continue;
}
// Sanitize $_COOKIE
$_COOKIE[$this->clean_input_keys($key)] = $this->clean_input_data($val);
}
} else {
$_COOKIE = array();
}
// Create a singleton
Input::$instance = $this;
Kohana_Log::add('debug', 'Global GET, POST and COOKIE data sanitized');
}
}
function init_env()
{
global $_G;
$_G = array('starttime' => microtime(true), 'setting' => array('dateformat' => 'Y-m-d', 'timeformat' => 'H:i', 'timeoffset' => 8, 'dateconvert' => true), 'member' => array('timeoffset' => 8));
if (PHP_VERSION < '5.3.0') {
set_magic_quotes_runtime(0);
}
define('MAGIC_QUOTES_GPC', function_exists('get_magic_quotes_gpc') && get_magic_quotes_gpc());
init_utf_tools();
}
