public static function Run()
{
//--
global $configs;
//--
//==
//--
if (self::$MiddlewareCompleted !== false) {
// avoid to execute more than 1 this middleware !
self::Raise500Error('Middleware App Execution already completed ...');
return;
}
//end if
self::$MiddlewareCompleted = true;
//--
$the_midmark = '[A]';
//--
if (SMART_FRAMEWORK_ADMIN_AREA !== true) {
Smart::raise_error('Admin Middleware ERROR: SMART_FRAMEWORK_ADMIN_AREA is not set to TRUE', 'Invalid Area / This middleware is designed for Admin area and requires to turn ON the Administration flag ...');
return;
}
//end if
//--
if (!defined('SMART_APP_TEMPLATES_DIR')) {
self::Raise500Error('The SMART_APP_TEMPLATES_DIR not defined ...');
return;
}
//end if
//--
if (defined('SMART_APP_MODULE_AREA')) {
self::Raise500Error('Smart App Area must NOT be Defined outside controllers ...');
return;
}
//end if
if (defined('SMART_APP_MODULE_AUTH')) {
self::Raise500Error('Smart App Module Auth must NOT be Defined outside controllers ...');
return;
}
//end if
if (defined('SMART_APP_MODULE_REALM_AUTH')) {
self::Raise500Error('Smart App Module Realm Auth must NOT be Defined outside controllers ...');
return;
}
//end if
if (defined('SMART_APP_MODULE_DIRECT_OUTPUT')) {
self::Raise500Error('Smart App Module Direct Output must NOT be Defined outside controllers ...');
return;
}
//end if
//--
//==
//--
$smartframeworkservice = '';
// special operation
if (SmartFrameworkRegistry::issetRequestVar('smartframeworkservice') === true) {
$smartframeworkservice = (string) strtolower((string) SmartUnicode::utf8_to_iso((string) SmartFrameworkRegistry::getRequestVar('smartframeworkservice')));
switch ((string) $smartframeworkservice) {
case 'status':
case 'debug':
break;
default:
// invalid value
$smartframeworkservice = '';
}
//end switch
}
//end if
//--
//==
//-- switch language by cookie (this needs to be before loading the app core)
if (strlen(trim((string) $_COOKIE['SmartApp_ADM_LANGUAGE_SET'])) > 0) {
SmartTextTranslations::setLanguage(trim((string) $_COOKIE['SmartApp_ADM_LANGUAGE_SET']));
}
//end if
//-- switch language by print cookie (this needs to be before loading the app core and after language by cookie)
if (SmartFrameworkRegistry::issetRequestVar((string) SMART_FRAMEWORK_URL_PARAM_PRINTABLE) === true) {
if (strtolower((string) SmartFrameworkRegistry::getRequestVar((string) SMART_FRAMEWORK_URL_PARAM_PRINTABLE)) == strtolower((string) SMART_FRAMEWORK_URL_VALUE_ENABLED)) {
if (strlen(trim((string) $_COOKIE['SmartApp_ADM_PRINT_LANGUAGE_SET'])) > 0) {
SmartTextTranslations::setLanguage(trim((string) $_COOKIE['SmartApp_ADM_PRINT_LANGUAGE_SET']));
}
//end if
}
//end if
}
//end if
//--
//== RAW OUTPUT FOR STATUS
//--
if ((string) $smartframeworkservice == 'status') {
//--
if (SMART_SOFTWARE_DISABLE_STATUS_POWERED === true) {
$status_powered_info = '';
} else {
$status_powered_info = (string) SmartComponents::draw_powered_info('no');
}
//end if else
//--
self::HeadersNoCache();
// headers: cache control, force no-cache
echo SmartComponents::http_status_message('Smart.Framework :: Status :: [OK]', '<script type="text/javascript">setTimeout(function(){ self.location = self.location; }, 60000);</script><img src="lib/core/img/busy_bar.gif"><div><h1>' . date('Y-m-d H:i:s O') . ' // Service Ready :: ' . $the_midmark . '</h1></div>' . $status_powered_info . '<br>');
//--
return;
// break stop
//--
}
//end if
//--
//== OVERALL AUTHENTICATION BREAKPOINT
//--
SmartAppBootstrap::Authenticate('admin');
// if the auth uses session it may start now
//--
//== RAW OUTPUT FOR DEBUG
//--
if ((string) $smartframeworkservice == 'debug') {
//--
if ((string) SMART_FRAMEWORK_DEBUG_MODE == 'yes') {
self::HeadersNoCache();
// headers: cache control, force no-cache
$the_debug_cookie = trim((string) $_COOKIE['SmartFramework__DebugAdmID']);
echo SmartDebugProfiler::print_debug_info('adm', $the_debug_cookie);
} else {
http_response_code(404);
echo SmartComponents::http_message_404_notfound('No Debug service has been activated on this server ...');
}
//end if
//--
return;
// break stop
//--
}
//end if else
//--
//== LOAD THE MODULE (OR DEFAULT MODULE)
//--
$reserved_controller_names = ['php', 'html', 'stml', 'css', 'js', 'json', 'xml', 'rss', 'txt', 'csv', 'sql', 'png', 'gif', 'jpg', 'pdf', 'svg', 'zip', '7z', 'netarch'];
// these are reserved extensions and cannot be used as controller names because they need to be used also with friendly URLs as the 2nd param if module is missing from URL page param
//--
$err404 = '';
$arr = array();
//--
$page = (string) SmartUnicode::utf8_to_iso((string) SmartFrameworkRegistry::getRequestVar('page'));
$page = trim(str_replace(array('/', '\\', ':', '?', '&', '=', '%'), array('', '', '', '', '', '', ''), $page));
// fix for get as it automatically replaces . with _ (so, reverse), but also fix some invalid characters ...
if ((string) $page == '') {
$page = (string) $configs['app']['admin-home'];
}
//end if
//--
if (strpos($page, '.') !== false) {
// page can be as module.controller / module.controller(.php|html|stml|css|js|json|xml|rss|txt|csv|sql|png|gif|jpg|pdf|svg|zip|7z|netarch)
//--
$arr = (array) explode('.', (string) $page, 3);
// separe 1st and 2nd from the rest
//--
//#
//#
$arr[0] = trim(strtolower((string) $arr[0]));
// module
$arr[1] = trim(strtolower((string) $arr[1]));
// controller
//#
//# Admin will NOT integrate with friendly URLs SMART_FRAMEWORK_SEMANTIC_URL_SKIP_MODULE
//# that feature is just for Index
//#
//--
} elseif ((string) $configs['app']['admin-default-module'] != '') {
//--
$arr[0] = trim(strtolower((string) $configs['app']['admin-default-module']));
// get default module
$arr[1] = trim(strtolower((string) $page));
// controller
//--
} else {
//--
if ((string) $err404 == '') {
$err404 = 'Invalid Page (Invalid URL Page Segments Syntax): ' . $page;
}
//end if
//--
}
//end if else
//--
if ((string) $arr[0] == '' or (string) $arr[1] == '') {
if ((string) $err404 == '') {
$err404 = 'Invalid Page (Empty or Missing URL Page Segments): ' . $page;
}
//end if
}
//end if
if (!preg_match('/^[a-z0-9_\\-]+$/', (string) $arr[0]) or !preg_match('/^[a-z0-9_\\-]+$/', (string) $arr[1])) {
if ((string) $err404 == '') {
$err404 = 'Invalid Page (Invalid Characters in the URL Page Segments): ' . $page;
}
//end if
}
//end if
if (in_array((string) $arr[1], (array) $reserved_controller_names)) {
if ((string) $err404 == '') {
$err404 = 'Invalid Page (Reserved Page Controller Name): [' . $arr[1] . '] in: ' . $page;
}
//end if
}
//end if
//--
$the_controller_name = (string) $arr[0] . '.' . $arr[1];
$the_path_to_module = Smart::safe_pathname(SmartFileSysUtils::add_dir_last_slash('modules/mod-' . Smart::safe_filename($arr[0])));
$the_module = Smart::safe_pathname($the_path_to_module . Smart::safe_filename($arr[1]) . '.php');
if (!is_file($the_module)) {
if ((string) $err404 == '') {
$err404 = 'Page does not exist: ' . $page;
}
//end if
}
//end if
//--
if ((string) $err404 != '') {
self::Raise404Error((string) $err404);
return;
}
//end if
//--
if (!SmartFileSysUtils::check_file_or_dir_name($the_path_to_module) or !SmartFileSysUtils::check_file_or_dir_name($the_module)) {
self::Raise400Error('Insecure Module Access for Page: ' . $page);
return;
}
//end if
//--
if (class_exists('SmartAppIndexController') or class_exists('SmartAppAdminController')) {
self::Raise500Error('Module Class Runtimes must be defined only in modules ...');
return;
}
//end if
//--
require (string) $the_module;
//--
if ((string) SMART_APP_MODULE_AREA !== 'ADMIN' and (string) SMART_APP_MODULE_AREA !== 'SHARED') {
self::Raise403Error('Page Access Denied for Admin Area: ' . $page);
return;
}
//end if
if (defined('SMART_APP_MODULE_AUTH')) {
if (SmartAuth::check_login() !== true) {
self::Raise403Error('Page Access Denied ! No Authentication: ' . $page);
return;
}
//end if
if (defined('SMART_APP_MODULE_REALM_AUTH')) {
if ((string) SmartAuth::get_login_realm() !== (string) SMART_APP_MODULE_REALM_AUTH) {
self::Raise403Error('Page Access Denied ! Invalid Login Realm: ' . $page);
return;
}
//end if
}
//end if
}
//end if
//--
if (!class_exists('SmartAppAdminController')) {
self::Raise500Error('Invalid Module Class Runtime for Page: ' . $page);
return;
}
//end if
if (!is_subclass_of('SmartAppAdminController', 'SmartAbstractAppController')) {
self::Raise500Error('Invalid Module Class Inheritance for Controller Page: ' . $page);
return;
}
//end if
//--
//== PATHS
//--
$base_script = SmartUtils::get_server_current_script();
$base_full_path = SmartUtils::get_server_current_path();
$base_full_url = SmartUtils::get_server_current_url();
//--
//== RUN THE MODULE
//--
$appModule = new SmartAppAdminController($the_path_to_module, $base_script, $base_full_path, $base_full_url, $page, $the_controller_name);
//--
if (SMART_APP_MODULE_DIRECT_OUTPUT !== true) {
ob_start();
}
//end if
$appStatusCode = (int) $appModule->Run();
$appModule->ShutDown();
if (SMART_APP_MODULE_DIRECT_OUTPUT !== true) {
$ctrl_output = ob_get_contents();
ob_end_clean();
if ((string) $ctrl_output != '') {
Smart::log_warning('The middleware service ' . $the_midmark . ' detected an illegal output in the controller: ' . $page . "\n" . 'The result of this output is: ' . $ctrl_output);
}
//end if
$ctrl_output = '';
} else {
return;
// break stop after the controller has terminated the direct output
}
//end if else
//--
$appSettings = (array) $appModule->PageViewGetCfgs();
//--
//== CACHE CONTROL
//--
if ((int) $appSettings['expires'] > 0 and (string) SMART_FRAMEWORK_DEBUG_MODE != 'yes') {
self::HeadersCacheExpire((int) $appSettings['expires'], (int) $appSettings['modified']);
// headers: cache expiration control
} else {
self::HeadersNoCache();
// headers: cache control, force no-cache
}
//end if else
//--
//== STATUS CODE
//--
switch ((int) $appStatusCode) {
//-- client errors
case 400:
self::Raise400Error((string) $appSettings['error']);
return;
break;
case 401:
self::Raise401Error((string) $appSettings['error']);
return;
break;
case 403:
self::Raise403Error((string) $appSettings['error']);
return;
break;
case 404:
self::Raise404Error((string) $appSettings['error']);
return;
break;
case 429:
self::Raise429Error((string) $appSettings['error']);
return;
break;
//-- server errors
//-- server errors
case 500:
self::Raise500Error((string) $appSettings['error']);
return;
break;
case 502:
self::Raise502Error((string) $appSettings['error']);
return;
break;
case 503:
self::Raise503Error((string) $appSettings['error']);
return;
break;
case 504:
self::Raise504Error((string) $appSettings['error']);
return;
break;
//-- extended 2xx statuses: NOTICE / WARNING / ERROR that can be used for REST / API
//-- extended 2xx statuses: NOTICE / WARNING / ERROR that can be used for REST / API
case 202:
// NOTICE
if (!headers_sent()) {
http_response_code(202);
// Accepted (this should be used only as an alternate SUCCESS code instead of 200 for NOTICES)
} else {
Smart::log_warning('Headers Already Sent before 202 ...');
}
//end if else
break;
case 203:
// WARNING
if (!headers_sent()) {
http_response_code(203);
// Non-Authoritative Information (this should be used only as an alternate SUCCESS code instead of 200 for WARNINGS)
} else {
Smart::log_warning('Headers Already Sent before 203 ...');
}
//end if else
break;
case 208:
// ERROR
if (!headers_sent()) {
http_response_code(208);
// Already Reported (this should be used only as an alternate SUCCESS code instead of 200 for ERRORS)
} else {
Smart::log_warning('Headers Already Sent before 208 ...');
}
//end if else
break;
//-- DEFAULT: OK
//-- DEFAULT: OK
case 200:
default:
// any other codes not listed above are not supported and will be interpreted as 200
// nothing to do here ...
}
//end switch
//--
//== PREPARE THE OUTPUT
//--
if (stripos((string) $configs['js']['popup-override-mobiles'], '<' . SmartUtils::get_os_browser_ip('os') . '>') !== false) {
$configs['js']['popup-mode'] = 'popup';
// particular os settings for mobiles
}
//end if
//--
$rawpage = '';
if (isset($appSettings['rawpage'])) {
$rawpage = strtolower((string) $appSettings['rawpage']);
if ((string) $rawpage == 'yes') {
$rawpage = 'yes';
// standardize the value
}
//end if
}
//end if
if ((string) $rawpage != 'yes') {
$rawpage = '';
}
//end if
//--
$rawmime = '';
if (isset($appSettings['rawmime'])) {
$rawmime = (string) $appSettings['rawmime'];
if ((string) $rawmime != '') {
$rawmime = SmartValidator::validate_mime_type($rawmime);
}
//end if
}
//end if else
//--
$rawdisp = '';
if (isset($appSettings['rawdisp'])) {
$rawdisp = (string) $appSettings['rawdisp'];
if ((string) $rawdisp != '') {
$rawdisp = SmartValidator::validate_mime_disposition($rawdisp);
}
//end if
}
//end if else
//--
$appData = (array) $appModule->PageViewGetVars();
//--
$appData['base-path'] = (string) $base_full_path;
$appData['base-url'] = (string) $base_full_url;
//--
//== REDIRECTION HANDLER (this can be set only explicit from Controllers)
//--
if ((string) $appSettings['redirect-url'] != '') {
// expects a valid URL
//--
$the_redirect_link = '<a href="' . Smart::escape_html((string) $appSettings['redirect-url']) . '">' . Smart::escape_html((string) $appSettings['redirect-url']) . '</a>';
//--
if (headers_sent()) {
Smart::log_warning('Headers Already Sent before Redirection: [' . $appStatusCode . '] ; URL: ' . $appSettings['redirect-url']);
self::Raise500Error('The app failed to Redirect to: ' . $the_redirect_link);
return;
}
//end if
switch ((int) $appStatusCode) {
case 301:
http_response_code(301);
$the_redirect_text = 'Moved Permanently';
// permanent redirect for HTTP 1.0 / HTTP 1.1
break;
case 302:
default:
// any other code will be interpreted as 302 (the default redirection in PHP)
http_response_code(302);
$the_redirect_text = 'Found';
// temporary redirect for HTTP 1.0 / HTTP 1.1
break;
}
//end switch
header('Location: ' . SmartFrameworkSecurity::FilterUnsafeString((string) $appSettings['redirect-url']));
echo '<h1>' . Smart::escape_html($the_redirect_text) . '</h1>' . '<br>' . 'If the page redirection fails, click on the below link:' . '<br>' . $the_redirect_link;
return;
// break stop
}
//end if
//--
//== DOWNLOADS HANDLER (downloads can be set only explicit from Controllers)
//--
if ((string) $appSettings['download-packet'] != '' and (string) $appSettings['download-key'] != '') {
// expects an encrypted data packet and a key
$dwl_result = self::DownloadsHandler((string) $appSettings['download-packet'], (string) $appSettings['download-key']);
if ((string) $dwl_result != '') {
Smart::log_info('File Download - Client: ' . SmartUtils::get_visitor_signature(), (string) $dwl_result);
// log result and mark it as finalized
}
//end if
return;
// break stop
}
//end if
//--
//== RAW OUTPUT FOR PAGES
//--
if ((string) $rawpage == 'yes') {
//-- {{{SYNC-RESOURCES}}}
if (function_exists('memory_get_peak_usage')) {
$res_memory = @memory_get_peak_usage(false);
} else {
$res_memory = 'unknown';
}
//end if else
$res_time = (double) (microtime(true) - (double) SMART_FRAMEWORK_RUNTIME_READY);
//-- #END-SYNC
if ((string) SMART_FRAMEWORK_DEBUG_MODE == 'yes') {
//-- {{{SYNC-DEBUG-META-INFO}}}
SmartFrameworkRegistry::setDebugMsg('stats', 'memory', $res_memory);
// bytes
SmartFrameworkRegistry::setDebugMsg('stats', 'time', $res_time);
// seconds
//-- #END-SYNC
$the_debug_cookie = trim((string) $_COOKIE['SmartFramework__DebugAdmID']);
SmartDebugProfiler::save_debug_info('adm', $the_debug_cookie, false);
} else {
$the_debug_cookie = '';
}
//end if
//--
if (headers_sent()) {
Smart::raise_error('Middleware ERROR: Headers already sent', 'ERROR: Headers already sent !');
return;
// avoid serve raw pages with errors injections before headers
}
//end if
//--
if ((string) $rawmime != '') {
header('Content-Type: ' . $rawmime);
}
//end if
if ((string) $rawdisp != '') {
header('Content-Disposition: ' . $rawdisp);
}
//end if
header('Content-Length: ' . (0 + strlen((string) $appData['main'])));
// must be strlen NOT SmartUnicode::str_len as it must get number of bytes not characters
echo (string) $appData['main'];
return;
// break stop
//--
}
//end if else
//--
//== DEFAULT OUTPUT
//--
if (isset($appSettings['template-path'])) {
if ((string) $appSettings['template-path'] == '@') {
// if template path is set to self (module)
$the_template_path = '@';
// this is a special setting
} else {
$the_template_path = Smart::safe_pathname(SmartFileSysUtils::add_dir_last_slash(trim((string) $appSettings['template-path'])));
}
//end if else
} else {
$the_template_path = Smart::safe_pathname(SmartFileSysUtils::add_dir_last_slash(trim((string) $configs['app']['admin-template-path'])));
// use default template path
}
//end if else
//--
if (isset($appSettings['template-file'])) {
$the_template_file = Smart::safe_filename(trim((string) $appSettings['template-file']));
} else {
$the_template_file = Smart::safe_filename(trim((string) $configs['app']['admin-template-file']));
// use default template
}
//end if else
//--
if ((string) $the_template_path == '@') {
$the_template_path = (string) $the_path_to_module . 'templates/';
// must have the dir last slash as above
} else {
$the_template_path = (string) SMART_APP_TEMPLATES_DIR . $the_template_path;
// finally normalize and set the complete template path
}
//end if else
$the_template_file = (string) $the_template_file;
// finally normalize
//--
if (!SmartFileSysUtils::check_file_or_dir_name($the_template_path)) {
Smart::log_warning('Invalid Page Template Path: ' . $the_template_path);
self::Raise500Error('Invalid Page Template Path. See the error log !');
return;
}
//end if
if (!is_dir($the_template_path)) {
Smart::log_warning('Page Template Path does not Exists: ' . $the_template_path);
self::Raise500Error('Page Template Path does not Exists. See the error log !');
return;
}
//end if
if (!SmartFileSysUtils::check_file_or_dir_name($the_template_path . $the_template_file)) {
Smart::log_warning('Invalid Page Template File: ' . $the_template_path . $the_template_file);
self::Raise500Error('Invalid Page Template File. See the error log !');
return;
}
//end if
if (!is_file($the_template_path . $the_template_file)) {
Smart::log_warning('Page Template File does not Exists: ' . $the_template_path . $the_template_file);
self::Raise500Error('Page Template File does not Exists. See the error log !');
return;
}
//end if
//--
$the_template_content = trim(SmartMarkersTemplating::read_template_file($the_template_path . $the_template_file));
if ((string) $the_template_content == '') {
Smart::log_warning('Page Template File is Empty or cannot be read: ' . $the_template_path . $the_template_file);
self::Raise500Error('Page Template File is Empty or cannot be read. See the error log !');
return;
}
//end if
//--
if ((string) SMART_FRAMEWORK_DEBUG_MODE == 'yes') {
$the_template_content = str_ireplace('</head>', "\n" . SmartDebugProfiler::js_headers_debug('admin.php?smartframeworkservice=debug') . "\n" . '</head>', $the_template_content);
$the_template_content = str_ireplace('</body>', "\n" . SmartDebugProfiler::div_main_debug() . "\n" . '</body>', $the_template_content);
}
//end if
//--
$appData['app-domain'] = (string) $configs['app']['admin-domain'];
$appData['template-file'] = $the_template_path . $the_template_file;
$appData['template-path'] = $the_template_path;
$appData['js.settings'] = SmartComponents::js_inc_settings((string) $configs['js']['popup-mode'], true, (bool) SMART_APP_VISITOR_COOKIE);
$appData['head-meta'] = (string) $appData['head-meta'];
if ((string) $appData['head-meta'] == '') {
$appData['head-meta'] = '<!-- Head Meta -->';
}
//end if
$appData['title'] = (string) $appData['title'];
$appData['main'] = (string) $appData['main'];
$appData['lang'] = SmartTextTranslations::getLanguage();
//--
if ((string) SMART_FRAMEWORK_DEBUG_MODE == 'yes') {
//--
$the_debug_cookie = 'adm-' . Smart::uuid_10_seq() . '-' . Smart::uuid_10_num() . '-' . Smart::uuid_10_str();
@setcookie('SmartFramework__DebugAdmID', (string) $the_debug_cookie, 0, '/');
// debug token cookie is set just on main request
//--
}
//end if
//--
echo SmartMarkersTemplating::render_mixed_template((string) $the_template_content, (array) $appData, (string) $appData['template-path'], 'no', 'no');
//-- {{{SYNC-RESOURCES}}}
if (function_exists('memory_get_peak_usage')) {
$res_memory = @memory_get_peak_usage(false);
} else {
$res_memory = 'unknown';
}
//end if else
$res_time = (double) (microtime(true) - (double) SMART_FRAMEWORK_RUNTIME_READY);
//-- #END-SYNC
if ((string) SMART_FRAMEWORK_DEBUG_MODE == 'yes') {
//-- {{{SYNC-DEBUG-META-INFO}}}
SmartFrameworkRegistry::setDebugMsg('stats', 'memory', $res_memory);
// bytes
SmartFrameworkRegistry::setDebugMsg('stats', 'time', $res_time);
// seconds
//-- #END-SYNC
SmartDebugProfiler::save_debug_info('adm', $the_debug_cookie, true);
//--
}
//end if else
//--
if (SMART_SOFTWARE_DISABLE_STATUS_POWERED !== true) {
echo "\n" . '<!-- Smart.Framework スマート.フレームワーク :: ' . SMART_FRAMEWORK_RELEASE_TAGVERSION . ' / ' . SMART_FRAMEWORK_RELEASE_VERSION . ' @ ' . $the_midmark . ' :: ' . SMART_FRAMEWORK_RELEASE_URL . ' -->';
}
//end if
echo "\n" . '<!-- Resources: [' . Smart::format_number_dec($res_time, 13, '.', '') . ' sec.] / [' . Smart::format_number_dec($res_memory, 0, '.', ' ') . ' by.]' . ' -->' . "\n";
//--
}
public static function save_debug_info($y_area, $y_debug_token, $is_main)
{
//-- {{{SYNC-DEBUG-DATA}}}
if ((string) SMART_FRAMEWORK_DEBUG_MODE != 'yes') {
return false;
}
//end if
//--
if ((string) $y_area != 'idx' and (string) $y_area != 'adm') {
return false;
}
//end if
//--
$y_debug_token = trim((string) $y_debug_token);
if ((string) $y_debug_token == '') {
return false;
}
//end if
//--
$the_dir = 'tmp/logs/' . Smart::safe_filename($y_area) . '/' . date('Y-m-d@H') . '-debug-data/' . Smart::safe_filename($y_debug_token) . '/';
//-- #END# SYNC
//--
if ($is_main) {
$the_file = $the_dir . 'debug-main.log';
} else {
$the_file = $the_dir . 'debug-sub-req-' . time() . '-' . SmartHashCrypto::sha1($_SERVER['REQUEST_URI']) . '.log';
}
//end if else
//--
//--
if (!is_dir($the_dir)) {
SmartFileSystem::dir_recursive_create($the_dir);
}
//end if
//--
if (is_dir($the_dir)) {
if (is_writable($the_dir)) {
//--
$arr = array();
//-- generate debug info if set to show optimizations
SmartMarkersTemplating::registerOptimizationHintsToDebugLog();
//-- generate debug info if set to show internals
if (defined('SMART_FRAMEWORK_INTERNAL_DEBUG')) {
Smart::registerInternalCacheToDebugLog();
SmartFrameworkRegistry::registerInternalCacheToDebugLog();
SmartAuth::registerInternalCacheToDebugLog();
SmartHashCrypto::registerInternalCacheToDebugLog();
SmartUtils::registerInternalCacheToDebugLog();
SmartMarkersTemplating::registerInternalCacheToDebugLog();
}
//end if
//--
$dbg_stats = (array) SmartFrameworkRegistry::getDebugMsgs('stats');
//--
$arr['date-time'] = date('Y-m-d H:i:s O');
$arr['debug-token'] = (string) $y_debug_token;
$arr['is-request-main'] = $is_main;
$arr['request-hash'] = SmartHashCrypto::sha1($_SERVER['REQUEST_URI']);
$arr['request-uri'] = (string) $_SERVER['REQUEST_URI'];
$arr['resources-time'] = $dbg_stats['time'];
$arr['resources-memory'] = $dbg_stats['memory'];
$arr['response-code'] = (int) http_response_code();
$arr['response-headers'] = base64_encode(Smart::seryalize((array) headers_list()));
if (function_exists('getallheaders')) {
$arr['request-headers'] = base64_encode(Smart::seryalize((array) getallheaders()));
} else {
$arr['request-headers'] = base64_encode(Smart::seryalize(''));
}
//end if else
$arr['env-req-filtered'] = base64_encode(Smart::seryalize((array) SmartFrameworkRegistry::getRequestVars()));
$arr['env-get'] = base64_encode(Smart::seryalize((array) $_GET));
$arr['env-post'] = base64_encode(Smart::seryalize((array) $_POST));
$arr['env-cookies'] = base64_encode(Smart::seryalize((array) $_COOKIE));
$arr['env-server'] = base64_encode(Smart::seryalize((array) $_SERVER));
if (@session_status() === PHP_SESSION_ACTIVE) {
$arr['php-session'] = base64_encode(Smart::seryalize((array) $_SESSION));
} else {
$arr['php-session'] = base64_encode(Smart::seryalize(''));
}
//end if else
if (SmartAuth::check_login() === true) {
$arr['auth-data'] = array('is_auth' => true, 'login_data' => (array) SmartAuth::get_login_data(), '#login-pass#', SmartAuth::get_login_password());
} else {
$arr['auth-data'] = array('is_auth' => false, 'login_data' => array());
}
//end if else
foreach ((array) SmartFrameworkRegistry::getDebugMsgs('optimizations') as $key => $val) {
$arr['log-optimizations'][(string) $key] = base64_encode(Smart::seryalize((array) $val));
}
//end foreach
foreach ((array) SmartFrameworkRegistry::getDebugMsgs('extra') as $key => $val) {
$arr['log-extra'][(string) $key] = base64_encode(Smart::seryalize((array) $val));
}
//end foreach
foreach ((array) SmartFrameworkRegistry::getDebugMsgs('db') as $key => $val) {
$arr['log-db'][(string) $key] = base64_encode(Smart::seryalize((array) $val));
}
//end foreach
$arr['log-mail'] = base64_encode(Smart::seryalize((array) SmartFrameworkRegistry::getDebugMsgs('mail')));
foreach ((array) SmartFrameworkRegistry::getDebugMsgs('modules') as $key => $val) {
$arr['log-modules'][(string) $key] = base64_encode(Smart::seryalize((array) $val));
}
//end foreach
//--
SmartFileSystem::write($the_file, Smart::seryalize($arr));
//--
}
//end if
}
//end if
//--
//--
return true;
//--
}
/**
* Set the (in-memory) Auth Login Data
* It can be used just once per execution (session) as it stores the data using constants,
* and the data cannot be changed after a successful or failed authentication has set.
*
* @param STRING $y_user_id :: The user (login) ID used to authenticate the user ; Mandatory ; it can be the UserID from DB or if not using a DB must supply a unique ID to identify the user like username
* @param STRING $y_user_alias :: The user (login) Alias, used to display the logged in user ; Mandatory ; can be the same as the login ID or different (Ex: login ID can be 'myUserName' and this 'myUserName' ; or: login ID can be 5017 and this 'myUserName')
* @param STRING $y_user_email :: *OPTIONAL* The user Email ; if email is used as login ID this may be redundant !
* @param STRING $y_user_fullname :: *OPTIONAL* The user Full Name (First Name + Last Name)
* @param ARRAY $y_user_privileges_list :: *OPTIONAL* The user Privileges List as array that list all the current user privileges
* @param STRING $y_user_quota :: *OPTIONAL* The user (storage) Quota
* @param ARRAY $y_user_metadata :: *OPTIONAL* The user metainfo, associative array key => value
* @param STRING $y_realm :: *OPTIONAL* The user Authentication Realm(s)
* @param ENUM $y_method :: *OPTIONAL* The authentication method used: HTTP-BASIC / HTTP-DIGEST / OTHER
* @param STRING $y_pass :: *OPTIONAL* The user login password (will be stored in memory as Blowfish encrypted to avoid exposure)
*
* @return BOOLEAN :: TRUE if all data is OK, FALSE if not or try to reauthenticate under the same execution (which is not allowed ; must be just once per execution)
*/
public static function set_login_data($y_user_id, $y_user_alias, $y_user_email = '', $y_user_fullname = '', $y_user_privileges_list = array('none', 'no-privilege'), $y_user_quota = -1, $y_user_metadata = array(), $y_realm = 'DEFAULT', $y_method = '', $y_pass = '')
{
//--
if (self::$AuthCompleted !== false) {
// avoid to re-auth
Smart::log_warning('Re-Authentication is not allowed ...');
return;
}
//end if
self::$AuthCompleted = true;
//--
self::$AuthData = array();
// reset the auth data
//--
$y_user_id = trim((string) $y_user_id);
// user ID
$y_user_alias = trim((string) $y_user_alias);
// username (user alias ; can be the same as userID or different)
$y_user_email = trim((string) $y_user_email);
$y_user_fullname = trim((string) $y_user_fullname);
//--
if (is_array($y_user_privileges_list)) {
$y_user_privileges_list = (string) strtolower((string) Smart::array_to_list((array) $y_user_privileges_list));
} else {
$y_user_privileges_list = (string) strtolower((string) trim((string) $y_user_privileges_list));
// in this case can be provided a raw list of privileges (Example: '<none>, <no-privilege>')
}
//end if else
//--
$y_user_quota = Smart::format_number_int($y_user_quota);
// can be also negative
//--
switch (strtoupper((string) $y_method)) {
case 'HTTP-BASIC':
$y_method = 'HTTP-BASIC';
break;
case 'HTTP-DIGEST':
$y_method = 'HTTP-DIGEST';
break;
case 'OTHER':
default:
$y_method = 'OTHER';
}
//end switch
//--
$the_key = '#' . Smart::random_number(10000, 99999) . '#';
$the_pass = '';
if ((string) $y_pass != '') {
$the_pass = SmartCipherCrypto::encrypt('hash/sha1', (string) $the_key, (string) $y_pass);
}
//end if
//--
if ((string) $y_user_id != '') {
//--
self::$AuthData['USER_ID'] = (string) $y_user_id;
self::$AuthData['USER_EMAIL'] = (string) $y_user_email;
self::$AuthData['USER_ALIAS'] = (string) $y_user_alias;
self::$AuthData['USER_FULLNAME'] = (string) $y_user_fullname;
self::$AuthData['USER_PRIVILEGES'] = (string) $y_user_privileges_list;
self::$AuthData['USER_QUOTA'] = (int) $y_user_quota;
self::$AuthData['USER_METADATA'] = (array) $y_user_metadata;
self::$AuthData['USER_LOGIN_REALM'] = (string) $y_realm;
self::$AuthData['USER_LOGIN_METHOD'] = (string) $y_method;
self::$AuthData['USER_LOGIN_PASS'] = (string) $the_pass;
self::$AuthData['KEY'] = (string) $the_key;
//--
return true;
//--
} else {
//--
return false;
//--
}
//end if
//--
}
// * ask for authentication and set if successful
// * if not authenticated, display the login form
//======================================================
// This code will be loaded into the App Boostrap automatically, to provide the Authentication for the admin.php ...
// By default this code does not contain any classes or functions.
// If you include classes or functions here they must be called to run here as the app boostrap just include this file at runtime
//======================================================
//-------------------------------------------
// This file can be customized as you need.
//-------------------------------------------
// NOTICE: As this is just a sample will use a fixed authentication with:
// username = admin
// password = pass
// This sample can be extended to read the authentication from a database or to use session in combination with SmartAuth.
// The best way to integrate with framework's authentication is using the SmartAuth:: object.
//-------------------------------------------
// v.160219 / Sample Auth based on Basic HTTP Authentication (for Admin Area, overall)
if ((string) $_SERVER['PHP_AUTH_USER'] == 'admin' and (string) $_SERVER['PHP_AUTH_PW'] == 'pass') {
//-- OK, loggen in
SmartAuth::set_login_data((string) $_SERVER['PHP_AUTH_USER'], (string) $_SERVER['PHP_AUTH_USER'], '*****@*****.**', 'Test Admin', array('admin', 'superadmin'), 0, array('title' => 'Mr.', 'name_f' => 'Test', 'name_l' => 'Admin'), 'SMART-FRAMEWORK.TEST', 'HTTP-BASIC', (string) $_SERVER['PHP_AUTH_PW']);
//--
} else {
//-- NOT OK, display the Login Form and Exit
header('WWW-Authenticate: Basic realm="Administration Area"');
http_response_code(401);
die(SmartComponents::http_message_401_unauthorized('Authorization Required<br>Login Failed. Either you supplied the wrong credentials or your browser doesn\'t understand how to supply the credentials required.'));
//--
}
//end if
//-------------------------------------------
// end of php code
/**
* Load a File or an URL
* it may use 3 methods: FileRead, CURL or HTTP-Browser class
*
* @param STRING $y_url_or_path :: /path/to/file | http(s)://some.url:port/path (port is optional)
* @param NUMBER $y_timeout :: timeout in seconds
* @param ENUM $y_method :: used only for URLs, the browsing method: GET | POST
* @param ENUM $y_ssl_method :: SSL Mode: tls | sslv3 | sslv2 | ssl
* @param STRING $y_auth_name :: used only for URLs, the auth user name
* @param STRING $y_auth_pass :: used only for URLs, the auth password
* @param YES/NO y_allow_set_credentials :: DEFAULT MUST BE set to NO ; if YES must be set just for internal URLs ; if the $y_url_or_path to get is detected to be under current URL will send also the Unique / session IDs ; more if detected that is from admin.php and if this is set to YES will send the HTTP-BASIC Auth credentials if detected (using YES with other URLs than SmartFramework's current URL can be a serious SECURITY ISSUE, so don't !)
*/
public static function load_url_or_file($y_url_or_path, $y_timeout = 30, $y_method = 'GET', $y_ssl_method = '', $y_auth_name = '', $y_auth_pass = '', $y_allow_set_credentials = 'no')
{
//-- v.2016-01-15
// fixed sessionID with new Dynamic generated
// TODO: use the CURL to browse also FTP and SSH ...
//--
$y_url_or_path = (string) $y_url_or_path;
//--
if ((string) $y_url_or_path == '') {
//--
return array('log' => 'ERROR: FILE Name is Empty ...', 'mode' => 'file', 'result' => '0', 'code' => '400', 'headers' => '', 'content' => '', 'debuglog' => '');
//--
}
//end if
//-- detect if file or url
if (substr($y_url_or_path, 0, 7) == 'http://' or substr($y_url_or_path, 0, 8) == 'https://') {
$is_file = 0;
// it is a url
} else {
$is_file = 1;
// it is a file
}
//end if
//--
if ($is_file == 1) {
//--
$y_url_or_path = trim($y_url_or_path);
//-- try to detect if data:image/ :: {{{SYNC-DATA-IMAGE}}}
if (strtolower(substr($y_url_or_path, 0, 11)) == 'data:image/' and stripos($y_url_or_path, ';base64,') !== false) {
//--
$eimg = explode(';base64,', $y_url_or_path);
//--
return array('log' => 'OK ? Not sure, decoded from embedded b64 image: ', 'mode' => 'embedded', 'result' => '1', 'code' => '200', 'headers' => SmartUnicode::sub_str($y_url_or_path, 0, 50) . '...', 'content' => @base64_decode(trim($eimg[1])), 'debuglog' => '');
//--
} elseif (is_file($y_url_or_path)) {
//--
return array('log' => 'OK: FILE Exists', 'mode' => 'file', 'result' => '1', 'code' => '200', 'headers' => 'Content-Disposition: inline; filename="' . basename($y_url_or_path) . '"' . "\n", 'content' => SmartFileSystem::read($y_url_or_path), 'debuglog' => '');
//--
} else {
//--
return array('log' => 'ERROR: FILE Not Found or Invalid Data ...', 'mode' => 'file', 'result' => '0', 'code' => '404', 'headers' => '', 'content' => '', 'debuglog' => '');
//--
}
//end if else
//--
} else {
//--
if ((string) $y_ssl_method == '') {
if (defined('SMART_FRAMEWORK_SSL_MODE')) {
$y_ssl_method = (string) SMART_FRAMEWORK_SSL_MODE;
} else {
Smart::log_notice('NOTICE: LibUtils/Load-URL-or-File // The SSL Method not defined and SMART_FRAMEWORK_SSL_MODE was not defined. Using the `tls` as default ...');
$y_ssl_method = 'tls';
}
//end if else
}
//end if
//--
$browser = new SmartHttpClient();
//--
$y_timeout = Smart::format_number_int($y_timeout, '+');
if ($y_timeout <= 0) {
$y_timeout = 30;
// default value
}
//end if
$browser->connect_timeout = (int) $y_timeout;
//--
if ((string) SMART_FRAMEWORK_DEBUG_MODE == 'yes') {
$browser->debug = 1;
}
//end if
//--
if ((string) self::get_server_current_protocol() == 'https://') {
$tmp_current_protocol = 'https://';
} else {
$tmp_current_protocol = 'http://';
}
//end if else
//--
$tmp_current_server = self::get_server_current_domain_name();
$tmp_current_port = self::get_server_current_port();
//--
$tmp_current_path = self::get_server_current_request_uri();
$tmp_current_script = self::get_server_current_full_script();
//--
$tmp_test_url_arr = Smart::separe_url_parts($y_url_or_path);
$tmp_test_browser_id = self::get_os_browser_ip();
//--
$tmp_extra_log = '';
if ((string) SMART_FRAMEWORK_DEBUG_MODE == 'yes') {
$tmp_extra_log .= "\n" . '===== # =====' . "\n";
}
//end if
//--
$cookies = array();
$auth_name = (string) $y_auth_name;
$auth_pass = (string) $y_auth_pass;
//--
if ((string) $y_allow_set_credentials == 'yes') {
//--
if ((string) SMART_FRAMEWORK_DEBUG_MODE == 'yes') {
$tmp_extra_log .= '[EXTRA]: I will try to detect if this is my current Domain and I will check if it is safe to send my sessionID COOKIE and my Auth CREDENTIALS ...' . "\n";
}
//end if
//--
if ((string) $tmp_current_protocol == (string) $tmp_test_url_arr['protocol'] and (string) $tmp_current_server == (string) $tmp_test_url_arr['server'] and (string) $tmp_current_port == (string) $tmp_test_url_arr['port']) {
//--
if ((string) SMART_FRAMEWORK_DEBUG_MODE == 'yes') {
$tmp_extra_log .= '[EXTRA]: OK, Seems that the browsed Domain is identical with my current Domain which is: ' . $tmp_current_protocol . $tmp_current_server . ':' . $tmp_current_port . ' and the browsed one is: ' . $tmp_test_url_arr['protocol'] . $tmp_test_url_arr['server'] . ':' . $tmp_test_url_arr['port'] . "\n";
$tmp_extra_log .= '[EXTRA]: I will also check if my current script and path are identical with the browsed ones ...' . "\n";
}
//end if
//--
if ((string) $tmp_current_script == (string) $tmp_test_url_arr['scriptname'] and substr($tmp_current_path, 0, strlen($tmp_current_script)) == (string) $tmp_test_url_arr['scriptname']) {
//--
if ((string) SMART_FRAMEWORK_DEBUG_MODE == 'yes') {
$tmp_extra_log .= '[EXTRA]: OK, Seems that the current script is identical with the browsed one :: ' . 'Current Path is: \'' . $tmp_current_script . '\' / Browsed Path is: \'' . $tmp_test_url_arr['scriptname'] . '\' !' . "\n";
$tmp_extra_log .= '[EXTRA]: I will check if I have to send my SessionID so I will check the browserID ...' . "\n";
}
//end if
//--
$browser->useragent = (string) self::get_selfrobot_useragent_name();
// this must be set just when detected the same path and script ; it is a requirement to detect it as the self-robot [ @s# ] in order to send the credentials or the current
//-- {{{SYNC-SMART-UNIQUE-COOKIE}}}
if (defined('SMART_FRAMEWORK_UNIQUE_ID_COOKIE_NAME') and !defined('SMART_FRAMEWORK_UNIQUE_ID_COOKIE_SKIP')) {
if ((string) SMART_FRAMEWORK_UNIQUE_ID_COOKIE_NAME != '') {
if (SmartFrameworkSecurity::ValidateVariableName(strtolower((string) SMART_FRAMEWORK_UNIQUE_ID_COOKIE_NAME))) {
//--
if ((string) SMART_APP_VISITOR_COOKIE != '') {
// if set, then forward
if ((string) SMART_FRAMEWORK_DEBUG_MODE == 'yes') {
$tmp_extra_log .= '[EXTRA]: OK, I will send my current Visitor Unique Cookie ID as it is set and not empty ...' . "\n";
}
//end if
$cookies[(string) SMART_FRAMEWORK_UNIQUE_ID_COOKIE_NAME] = (string) SMART_APP_VISITOR_COOKIE;
// this is a requirement
}
//end if
//--
}
//end if
}
//end if
}
//end if
//-- #end# sync
if ((string) SmartAuth::get_login_method() == 'HTTP-BASIC' and (string) $auth_name == '' and (string) $auth_pass == '' and strpos($tmp_current_script, '/admin.php') !== false and strpos($tmp_test_url_arr['scriptname'], '/admin.php') !== false) {
//--
if ((string) SMART_FRAMEWORK_DEBUG_MODE == 'yes') {
$tmp_extra_log .= '[EXTRA]: HTTP-BASIC Auth method detected / Allowed to pass the Credentials - as the browsed URL belongs to this ADMIN Server as I run, the Auth credentials are set but passed as empty - everything seems to be safe I will send my credentials: USERNAME = \'' . SmartAuth::get_login_id() . '\' ; PASS = *****' . "\n";
}
//end if
//--
$auth_name = (string) SmartAuth::get_login_id();
$auth_pass = (string) SmartAuth::get_login_password();
//--
}
//end if
//--
} else {
//--
if ((string) SMART_FRAMEWORK_DEBUG_MODE == 'yes') {
$tmp_extra_log .= '[EXTRA]: Seems that the scripts are NOT identical :: ' . 'Current Script is: \'' . $tmp_current_script . '\' / Browsed Script is: \'' . $tmp_test_url_arr['scriptname'] . '\' !' . "\n";
$tmp_extra_log .= '[EXTRA]: This is the diff for having a comparation: ' . substr($tmp_current_path, 0, strlen($tmp_current_script)) . "\n";
}
//end if
//--
}
//end if
//--
}
//end if
//--
}
//end if
//--
$browser->cookies = (array) $cookies;
//--
$data = (array) $browser->browse_url($y_url_or_path, $y_method, $y_ssl_method, $auth_name, $auth_pass);
// do browse
//--
return array('log' => (string) $data['log'] . $tmp_extra_log, 'mode' => (string) $data['mode'], 'result' => (string) $data['result'], 'code' => (string) $data['code'], 'headers' => (string) $data['headers'], 'content' => (string) $data['content'], 'debuglog' => (string) $data['debuglog']);
//--
}
//end if else
//--
}
public static function decode_mime_fileurl($y_enc_msg_file, $y_ctrl_key)
{
//--
$y_enc_msg_file = (string) trim((string) $y_enc_msg_file);
if ((string) $y_enc_msg_file == '') {
Smart::log_warning('Mail-Utils / Decode Mime File URL: Empty Message File Path has been provided. This means the URL link will be unavaliable (empty) to assure security protection.');
return '';
}
//end if
if (!SmartFileSysUtils::check_file_or_dir_name($y_enc_msg_file)) {
Smart::log_warning('Mail-Utils / Decode Mime File URL: Invalid Message File Path has been provided. This means the URL link will be unavaliable (empty) to assure security protection. Message File: ' . $y_enc_msg_file);
return '';
}
//end if
//--
$y_ctrl_key = (string) trim((string) $y_ctrl_key);
if ((string) $y_ctrl_key == '') {
Smart::log_warning('Mail-Utils / Decode Mime File URL: Empty Controller Key has been provided. This means the URL link will be unavaliable (empty) to assure security protection.');
return '';
}
//end if
if (SMART_FRAMEWORK_ADMIN_AREA === true) {
// {{{SYNC-ENCMIMEURL-CTRL-PREFIX}}}
$y_ctrl_key = (string) 'AdminMailUtilArea/' . $y_ctrl_key;
} else {
$y_ctrl_key = (string) 'IndexMailUtilArea/' . $y_ctrl_key;
}
//end if
//--
$the_sep_arr = (array) self::mime_separe_part_link($y_enc_msg_file);
$y_enc_msg_file = (string) $the_sep_arr['msg'];
$the_msg_part = (string) $the_sep_arr['part'];
unset($the_sep_arr);
//--
$arr = array();
// {{{SYNC-MIME-ENCRYPT-ARR}}}
$arr['error'] = '';
// by default, no error
//--
if ((string) SMART_APP_VISITOR_COOKIE == '') {
$arr['error'] = 'WARNING: Access Forbidden ... No Visitor ID set ...!';
return (array) $arr;
}
//end if
//--
if ((string) $the_msg_part != '') {
$the_msg_part = strtolower(trim((string) SmartUtils::url_hex_decode((string) $the_msg_part)));
}
//end if
//--
$decoded_link = trim((string) SmartUtils::crypto_decrypt((string) $y_enc_msg_file, 'SmartFramework//MimeLink' . SMART_FRAMEWORK_SECURITY_KEY));
$dec_arr = (array) explode("\n", trim((string) $decoded_link));
//print_r($dec_arr);
//--
$arr['creation-time'] = trim((string) $dec_arr[0]);
$arr['message-file'] = trim((string) $dec_arr[1]);
$arr['message-part'] = trim((string) $the_msg_part);
$arr['access-key'] = trim((string) $dec_arr[2]);
$arr['bw-unique-key'] = trim((string) $dec_arr[3]);
$arr['sf-robot-key'] = trim((string) $dec_arr[4]);
//-- check if file path is valid
if ((string) $arr['message-file'] == '') {
$arr = array();
$arr['error'] = 'ERROR: Empty Message Path ...';
return (array) $arr;
}
//end if
if (!SmartFileSysUtils::check_file_or_dir_name($arr['message-file'])) {
$arr = array();
$arr['error'] = 'ERROR: Unsafe Message Path Access ...';
return (array) $arr;
}
//end if
//--
$browser_os_ip_identification = SmartUtils::get_os_browser_ip();
// get browser and os identification
//-- re-compose the access key
$crrtime = (int) $arr['creation-time'];
$access_key = sha1('MimeLink:' . SMART_SOFTWARE_NAMESPACE . '-' . SMART_FRAMEWORK_SECURITY_KEY . '-' . SMART_APP_VISITOR_COOKIE . ':' . $arr['message-file'] . '>' . $y_ctrl_key);
$uniq_key = sha1('Time=' . $crrtime . '#' . SMART_SOFTWARE_NAMESPACE . '-' . SMART_FRAMEWORK_SECURITY_KEY . '-' . $access_key . '-' . SmartUtils::unique_auth_client_private_key() . ':' . $arr['message-file'] . '>' . $y_ctrl_key);
$self_robot_key = sha1('Time=' . $crrtime . '#' . SmartAuth::get_login_id() . '*' . SMART_SOFTWARE_NAMESPACE . '-' . SMART_FRAMEWORK_SECURITY_KEY . '-' . trim($browser_os_ip_identification['signature']) . '$' . $access_key . ':' . $arr['message-file'] . '>' . $y_ctrl_key);
//-- check access key
if ((string) $arr['error'] == '') {
if ((string) $access_key != (string) $arr['access-key']) {
$arr = array();
$arr['error'] = 'ERROR: Access Forbidden ... Invalid ACCESS KEY ...';
}
//end if
}
//end if
//-- check the client key
if ((string) $arr['error'] == '') {
//--
$ok_client_key = false;
//--
if ((string) $the_msg_part == '' and (string) $arr['bw-unique-key'] == (string) $uniq_key) {
// no message part, allow only client browser
$ok_client_key = true;
} elseif ((string) $the_msg_part != '' and ((string) $arr['bw-unique-key'] == (string) $uniq_key or (string) $browser_os_ip_identification['bw'] == '@s#' and (string) $arr['sf-robot-key'] == (string) $self_robot_key)) {
$ok_client_key = true;
} else {
$ok_client_key = false;
}
//end if else
//--
if ($ok_client_key != true) {
$arr = array();
$arr['error'] = 'ERROR: Access Forbidden ... Invalid CLIENT KEY ...';
}
//end if
//--
}
//end if
//--
return (array) $arr;
//--
}
