/**
* simple function for creating prg pattern.
* (Keep state when reloading browser and resends forms etc.)
* @param int $last
*/
public static function prg($max_time = 0)
{
if (!html::csrfValidate()) {
http::locationHeader('/error/accessdenied', 'Bad request');
return;
}
// genrate a session var holding the _POST
if ($_SERVER['REQUEST_METHOD'] == 'POST') {
$uniqid = uniqid();
$_SESSION['post'][$uniqid] = $_POST;
$_SESSION['post'][$uniqid]['prg_time'] = time();
$_SESSION['REQUEST_URI'] = $_SERVER['REQUEST_URI'];
header("HTTP/1.1 303 See Other");
$location = self::getRedirect() . 'prg=1&uniqid=' . $uniqid;
self::locationHeader($location);
}
if (!isset($_SESSION['REQUEST_URI'])) {
$_SESSION['post'] = null;
} else {
if (isset($_GET['prg'])) {
$uniqid = $_GET['uniqid'];
if (isset($_SESSION['post'][$uniqid])) {
if ($max_time && $_SESSION['post'][$uniqid]['prg_time'] + $max_time < time()) {
unset($_SESSION['post'][$uniqid]);
} else {
$_POST = $_SESSION['post'][$uniqid];
}
}
} else {
@($_SESSION['REQUEST_URI'] = null);
}
}
}
/**
* Simple pattern for creating PRG.
* (Keep state when reloading browser and resends forms etc.)
* @param int $last
*/
public static function prg($max_time = 0)
{
if (!html::csrfValidate()) {
http::locationHeader('/error/accessdenied', 'Bad request');
return;
}
prg::prg($max_time);
}
public function indexAction()
{
if (session::isAdmin()) {
http::locationHeader('/event/admin/index?all=1');
}
if (session::isUser()) {
http::locationHeader('/event/user/index');
}
}
$str = file_get_contents('tmp/.database.sql');
file_put_contents('.database.sql', $str);
chmod('.database.sql', 0777);
// And mount again
Phar::mount('config/config.ini', '.config.ini');
Phar::mount('sqlite/database.sql', '.database.sql');
}
if (php_sapi_name() == 'cli-server') {
$info = parse_url($_SERVER['REQUEST_URI']);
$file = $info['path'];
if (file_exists("./{$info['path']}") && $info['path'] != '/') {
$full = __DIR__ . "{$file}";
if (!file_exists($full) or is_dir($full)) {
echo "Is dir. Or does not exists";
return false;
}
$mime = file::getMime($full);
if ($mime) {
if ($mime == 'text/x-php') {
return false;
}
http::cacheHeaders();
header("Content-Type: {$mime}");
readfile($full);
}
} else {
include "index.php";
}
}
__halt_compiler();
/**
* Run the system
*/
public function run()
{
// Register an autoloader for loading modules from mopdules dir
$m = new modules();
$m->autoloadRegister();
// define HTML constants
common::defineConstants();
// define global constants - based on base path
conf::defineCommon();
// set include paths
conf::setIncludePath();
// load config file
conf::load();
if (conf::getMainIni('debug')) {
log::enableDebug();
}
// set public file folder in file class
file::$basePath = conf::getFullFilesPath();
// utf-8
ini_set('default_charset', 'UTF-8');
// load config/config.ini
// check if there exists a shared ini file
// shared ini is used if we want to enable settings between hosts
// which share same code base.
// e.g. when updating all sites, it is a good idea to set the following flag
// site_update = 1
// this flag will send correct 503 headers, when we are updating our site.
// if site is being updaing we send temporarily headers
// and display an error message
if (conf::getMainIni('site_update')) {
http::temporarilyUnavailable();
}
// set a unified server_name if not set in config file.
$server_name = conf::getMainIni('server_name');
if (!$server_name) {
conf::setMainIni('server_name', $_SERVER['SERVER_NAME']);
}
// redirect to uniform server name is set in config.ini
// e.g. www.testsite.com => testsite.com
$server_redirect = conf::getMainIni('server_redirect');
if (isset($server_redirect)) {
http::redirectHeaders($server_redirect);
}
// redirect to https is set in config.ini
// force anything into ssl mode
$server_force_ssl = conf::getMainIni('server_force_ssl');
if (isset($server_force_ssl)) {
http::sslHeaders();
}
// catch all output
ob_start();
// Create a db connection
$db_conn = array('url' => conf::getMainIni('url'), 'username' => conf::getMainIni('username'), 'password' => conf::getMainIni('password'), 'db_init' => conf::getMainIni('db_init'));
// Other options
// db_dont_persist = 0
// dont_die = 0 // Set to one and the connection don't die because of
// e.g. no database etc. This will return NO_DB_CONN as string
//$url = conf::getMainIni('url');
connect::connect($db_conn);
// init module loader.
$ml = new moduleloader();
// initiate uri
uri::getInstance();
// runlevel 1: merge db config
$ml->runLevel(1);
// select all db settings and merge them with ini file settings
$db_Settings = [];
if (moduleloader::moduleExists('settings')) {
$db_settings = q::select('settings')->filter('id =', 1)->fetchSingle();
}
// merge db settings with config/config.ini settings
// db settings override ini file settings
conf::$vars['coscms_main'] = array_merge(conf::$vars['coscms_main'], $db_settings);
// run level 2: set locales
$ml->runLevel(2);
// set locales
intl::setLocale();
// set default timezone
intl::setTimezone();
// runlevel 3 - init session
$ml->runLevel(3);
// start session
session::initSession();
// Se if user is logged in with SESSION
if (!session::isUser()) {
// If not logged in check system cookie
// This will start the session, if an appropiate cookie exists
session::checkSystemCookie();
}
// Check account
$res = session::checkAccount();
if (!$res) {
// Redirect to main page if user is not allowed
// With current SESSION or COOKIE
http::locationHeader('/');
}
// set account timezone if enabled - can only be done after session
// as user needs to be logged in
intl::setAccountTimezone();
// run level 4 - load language
$ml->runLevel(4);
// load all language files
$l = new lang();
$base = conf::pathBase();
$htdocs = conf::pathHtdocs();
$l->setDirsInsideDir("{$base}/modules/");
$l->setDirsInsideDir("{$htdocs}/templates/");
$l->setSingleDir("{$base}/vendor/diversen/simple-php-classes");
$l->setSingleDir("{$base}/vendor/diversen/simple-pager");
$l->loadLanguage(conf::getMainIni('lang'));
// runlevel 5
$ml->runLevel(5);
// load routes if any
dispatch::setDbRoutes();
// check db routes or load defaults
$db_route = dispatch::getMatchRoutes();
if (!$db_route) {
$ml->setModuleInfo();
$ml->initModule();
} else {
dispatch::includeModule($db_route['method']);
}
// After module has been loaded.
// You can e.g. override module ini settings
$ml->runLevel(6);
// Init layout. Sets template name
// load correct CSS. St menus if any. Etc.
$layout = new layout();
// we first load menus here so we can se what happened when we
// init our module. In case of a 404 not found error we don't want
// to load module menus
$layout->loadMenus();
// init blocks
$layout->initBlocks();
// if any matching route was found we check for a method or function
if ($db_route) {
$str = dispatch::call($db_route['method']);
} else {
// or we use default module parsing
$str = $ml->getParsedModule();
}
// set view vars
$vars['content'] = $str;
// run level 7
$ml->runLevel(7);
// echo module content
echo $str = \mainTemplate::view($vars);
conf::$vars['final_output'] = ob_get_contents();
ob_end_clean();
// Last divine intervention
// e.g. Dom or Tidy
$ml->runLevel(8);
echo conf::$vars['final_output'];
}
/**
* method for relocate user to login, and after correct login
* redirect to the page where he was. You can set message to
* be shown on login screen.
*
* @param string $message
*/
public static function loginThenRedirect($message)
{
unset($_SESSION['return_to']);
if (!session::isUser()) {
$_SESSION['return_to'] = $_SERVER['REQUEST_URI'];
session::setActionMessage($message);
http::locationHeader('/account/login/index');
die;
}
}
/**
* /event/user/halv
*/
public function helAction()
{
$this->checkAccess();
$eDb = new eDb();
$halv = $eDb->getUserHalvFromUserId(session::getUserId());
if (empty($halv)) {
http::locationHeader('/event/user/index', 'Du skal være del af en halv kvadrille for at oprette en hel');
}
http::prg();
if (isset($_POST['send'])) {
$this->validateHel();
if (empty($this->errors)) {
// Prepare
$ary = db::prepareToPostArray(array('halv'), true);
R::begin();
// Delete other hele
$eDb->deleteHelFromUserId(session::getUserId());
// Create
$id = $eDb->createHel($ary);
// Set a better name
$name = $eDb->getUsersStrFromHel($id);
$bean = rb::getBean('hel', 'id', $id);
$bean->name = $name;
R::store($bean);
$res = R::commit();
if (!$res) {
R::rollback();
}
http::locationHeader('/event/user/index');
} else {
echo html::getErrors($this->errors);
}
}
echo $this->formCreateHel();
}
/**
* Validates a csrf enabled form
*/
public static function csrfValidate()
{
if (class_exists('\\Riimu\\Kit\\CSRF\\CSRFHandler')) {
$csrf = new \Riimu\Kit\CSRF\CSRFHandler(false);
try {
$csrf->validateRequest(true);
} catch (\Riimu\Kit\CSRF\InvalidCSRFTokenException $ex) {
log::error($ex->getMessage());
http::locationHeader('/error/accessdenied', 'Bad request');
return false;
}
}
return true;
}
public function run()
{
// Register an autoloader for loading modules from mopdules dir
$m = new modules();
$m->autoloadRegister();
// define HTML constants
common::defineConstants();
// define global constants - based on base path
conf::defineCommon();
// set include paths
conf::setIncludePath();
// load config file
conf::load();
// set log level - based on config.ini
log::setLogLevel();
// utf-8
ini_set('default_charset', 'UTF-8');
// load config/config.ini
// check if there exists a shared ini file
// shared ini is used if we want to enable settings between hosts
// which share same code base.
// e.g. when updating all sites, it is a good idea to set the following flag
// site_update = 1
// this flag will send correct 503 headers, when we are updating our site.
// if site is being updaing we send temporarily headers
// and display an error message
if (conf::getMainIni('site_update')) {
http::temporarilyUnavailable();
}
// set a unified server_name if not set in config file.
$server_name = conf::getMainIni('server_name');
if (!$server_name) {
conf::setMainIni('server_name', $_SERVER['SERVER_NAME']);
}
// redirect to uniform server name is set in config.ini
// e.g. www.testsite.com => testsite.com
$server_redirect = conf::getMainIni('server_redirect');
if (isset($server_redirect)) {
http::redirectHeaders($server_redirect);
}
// redirect to https is set in config.ini
// force anything into ssl mode
$server_force_ssl = conf::getMainIni('server_force_ssl');
if (isset($server_force_ssl)) {
http::sslHeaders();
}
// catch all output
ob_start();
// Create a db connection
$db = new db();
// init module loader.
$ml = new moduleloader();
// initiate uri
uri::getInstance();
// runlevel 1: merge db config
$ml->runLevel(1);
// select all db settings and merge them with ini file settings
$db_settings = $db->selectOne('settings', 'id', 1);
// merge db settings with config/config.ini settings
// db settings override ini file settings
conf::$vars['coscms_main'] = array_merge(conf::$vars['coscms_main'], $db_settings);
// run level 2: set locales
$ml->runLevel(2);
// set locales
intl::setLocale();
// set default timezone
intl::setTimezone();
// runlevel 3 - init session
$ml->runLevel(3);
// start session
session::initSession();
$res = session::checkAccount();
if (!$res) {
// To prevent
http::locationHeader('/');
}
// set account timezone if enabled - can only be done after session
// as user needs to be logged in
intl::setAccountTimezone();
// run level 4 - load language
$ml->runLevel(4);
// load all language files
$l = new lang();
$base = conf::pathBase();
$htdocs = conf::pathHtdocs();
$l->setDirsInsideDir("{$base}/modules/");
$l->setDirsInsideDir("{$htdocs}/templates/");
$l->setSingleDir("{$base}/vendor/diversen/simple-php-classes");
$l->setSingleDir("{$base}/vendor/diversen/simple-pager");
$l->loadLanguage(conf::getMainIni('language'));
// runlevel 5
$ml->runLevel(5);
// load routes if any
dispatch::setDbRoutes();
// runlevel 6
$ml->runLevel(6);
// check db routes or load by defaults
$db_route = dispatch::getMatchRoutes();
if (!$db_route) {
$ml->setModuleInfo();
$ml->initModule();
}
// Init layout. Sets template name
// load correct CSS. St menus if any. Etc.
$layout = new layout();
// we first load menus here so we can se what happened when we
// init our module. In case of a 404 not found error we don't want
// to load module menus
$layout->loadMenus();
// init blocks
$layout->initBlocks();
// if any matching route was found we check for a method or function
if ($db_route) {
$str = dispatch::call($db_route['method']);
} else {
// or we use default module parsing
$str = $ml->getParsedModule();
}
// set view vars
$vars['content'] = $str;
// run level 7
$ml->runLevel(7);
// echo module content
echo $str = \mainTemplate::view($vars);
conf::$vars['final_output'] = ob_get_contents();
ob_end_clean();
// Last divine intervention
// e.g. Dom or Tidy
$ml->runLevel(8);
echo conf::$vars['final_output'];
}
