ManageServer.php 29 KB

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441442443444445446447448449450451452453454455456457458459460461462463464465466467468469470471472473474475476477478479480481482483484485486487488489490491492493494495496497498499500501502503504505506507508509510511512513514515516517518519520521522523524525526527528529530531532533534535536537538539540541542543544545546547548549550551552553554555556557558559560561562563564565566567568569570571572573574575576577578579580581582583584585586587588589590591592593594595596597598599600601602603604605606607608609610611612613614615616617618619620621622623624625626627628629630631632633634635636637638639640641642643644645646647648649650651652653654655656657658659660661662663664665666667668669670671672673674675676677678679680681682683684685686687688689690691692693694695696697698699700701702703704705706707708709710711712713714715716717718719720721722723724725726727728729730731732733734735736737738739740741742743744745746747748749750751752753754755756757758759760761762763764765766767768769770771772773774775776777778779780781782783784785786787788789790791792793794795796797798799800801802803804805806807808809810811812813814815816817818819820821822823824825826827828829830831832833834835836837838839840841842843844845846847848
  1. <?php
  2. /**
  3. * Contains all the functionality required to be able to edit the
  4. * core server settings. This includes anything from which an error may
  5. * result in the forum destroying itself in a firey fury.
  6. *
  7. * Adding options to one of the setting screens isn't hard. Call prepareDBSettingsContext;
  8. * The basic format for a checkbox is:
  9. * array('check', 'nameInModSettingsAndSQL'),
  10. * And for a text box:
  11. * array('text', 'nameInModSettingsAndSQL')
  12. * (NOTE: You have to add an entry for this at the bottom!)
  13. *
  14. * In these cases, it will look for $txt['nameInModSettingsAndSQL'] as the description,
  15. * and $helptxt['nameInModSettingsAndSQL'] as the help popup description.
  16. *
  17. * Here's a quick explanation of how to add a new item:
  18. *
  19. * * A text input box. For textual values.
  20. * ie. array('text', 'nameInModSettingsAndSQL', 'OptionalInputBoxWidth'),
  21. *
  22. * * A text input box. For numerical values.
  23. * ie. array('int', 'nameInModSettingsAndSQL', 'OptionalInputBoxWidth'),
  24. *
  25. * * A text input box. For floating point values.
  26. * ie. array('float', 'nameInModSettingsAndSQL', 'OptionalInputBoxWidth'),
  27. *
  28. * * A large text input box. Used for textual values spanning multiple lines.
  29. * ie. array('large_text', 'nameInModSettingsAndSQL', 'OptionalNumberOfRows'),
  30. *
  31. * * A check box. Either one or zero. (boolean)
  32. * ie. array('check', 'nameInModSettingsAndSQL'),
  33. *
  34. * * A selection box. Used for the selection of something from a list.
  35. * ie. array('select', 'nameInModSettingsAndSQL', array('valueForSQL' => $txt['displayedValue'])),
  36. * Note that just saying array('first', 'second') will put 0 in the SQL for 'first'.
  37. *
  38. * * A password input box. Used for passwords, no less!
  39. * ie. array('password', 'nameInModSettingsAndSQL', 'OptionalInputBoxWidth'),
  40. *
  41. * * A permission - for picking groups who have a permission.
  42. * ie. array('permissions', 'manage_groups'),
  43. *
  44. * * A BBC selection box.
  45. * ie. array('bbc', 'sig_bbc'),
  46. *
  47. * For each option:
  48. * type (see above), variable name, size/possible values.
  49. * OR make type '' for an empty string for a horizontal rule.
  50. * SET preinput - to put some HTML prior to the input box.
  51. * SET postinput - to put some HTML following the input box.
  52. * SET invalid - to mark the data as invalid.
  53. * PLUS you can override label and help parameters by forcing their keys in the array, for example:
  54. * array('text', 'invalidlabel', 3, 'label' => 'Actual Label')
  55. *
  56. * Simple Machines Forum (SMF)
  57. *
  58. * @package SMF
  59. * @author Simple Machines http://www.simplemachines.org
  60. * @copyright 2011 Simple Machines
  61. * @license http://www.simplemachines.org/about/smf/license.php BSD
  62. *
  63. * @version 2.1 Alpha 1
  64. */
  65. if (!defined('SMF'))
  66. die('Hacking attempt...');
  67. /**
  68. * This is the main dispatcher. Sets up all the available sub-actions, all the tabs and selects
  69. * the appropriate one based on the sub-action.
  70. * Requires the admin_forum permission.
  71. * Redirects to the appropriate function based on the sub-action.
  72. *
  73. * @uses edit_settings adminIndex.
  74. */
  75. function ModifySettings()
  76. {
  77. global $context, $txt, $scripturl, $boarddir;
  78. // This is just to keep the database password more secure.
  79. isAllowedTo('admin_forum');
  80. // Load up all the tabs...
  81. $context[$context['admin_menu_name']]['tab_data'] = array(
  82. 'title' => $txt['admin_server_settings'],
  83. 'help' => 'serversettings',
  84. 'description' => $txt['admin_basic_settings'],
  85. );
  86. checkSession('request');
  87. // The settings are in here, I swear!
  88. loadLanguage('ManageSettings');
  89. $context['page_title'] = $txt['admin_server_settings'];
  90. $context['sub_template'] = 'show_settings';
  91. $subActions = array(
  92. 'general' => 'ModifyGeneralSettings',
  93. 'database' => 'ModifyDatabaseSettings',
  94. 'cookie' => 'ModifyCookieSettings',
  95. 'cache' => 'ModifyCacheSettings',
  96. 'loads' => 'ModifyLoadBalancingSettings',
  97. );
  98. call_integration_hook('integrate_server_settings', array(&$subActions));
  99. // By default we're editing the core settings
  100. $_REQUEST['sa'] = isset($_REQUEST['sa']) && isset($subActions[$_REQUEST['sa']]) ? $_REQUEST['sa'] : 'general';
  101. $context['sub_action'] = $_REQUEST['sa'];
  102. // Warn the user if there's any relevant information regarding Settings.php.
  103. if ($_REQUEST['sa'] != 'cache')
  104. {
  105. // Warn the user if the backup of Settings.php failed.
  106. $settings_not_writable = !is_writable($boarddir . '/Settings.php');
  107. $settings_backup_fail = !@is_writable($boarddir . '/Settings_bak.php') || !@copy($boarddir . '/Settings.php', $boarddir . '/Settings_bak.php');
  108. if ($settings_not_writable)
  109. $context['settings_message'] = '<div class="centertext"><strong>' . $txt['settings_not_writable'] . '</strong></div><br />';
  110. elseif ($settings_backup_fail)
  111. $context['settings_message'] = '<div class="centertext"><strong>' . $txt['admin_backup_fail'] . '</strong></div><br />';
  112. $context['settings_not_writable'] = $settings_not_writable;
  113. }
  114. // Call the right function for this sub-action.
  115. $subActions[$_REQUEST['sa']]();
  116. }
  117. /**
  118. * General forum settings - forum name, maintenance mode, etc.
  119. * Practically, this shows an interface for the settings in Settings.php
  120. * to be changed.
  121. * It uses the rawdata sub template (not theme-able.)
  122. * Requires the admin_forum permission.
  123. * Uses the edit_settings administration area.
  124. * Contains the actual array of settings to show from Settings.php.
  125. * Accessed from ?action=admin;area=serversettings;sa=general.
  126. *
  127. * @param $return_config
  128. */
  129. function ModifyGeneralSettings($return_config = false)
  130. {
  131. global $scripturl, $context, $txt;
  132. /* If you're writing a mod, it's a bad idea to add things here....
  133. For each option:
  134. variable name, description, type (constant), size/possible values, helptext.
  135. OR an empty string for a horizontal rule.
  136. OR a string for a titled section. */
  137. $config_vars = array(
  138. array('mbname', $txt['admin_title'], 'file', 'text', 30),
  139. '',
  140. array('maintenance', $txt['admin_maintain'], 'file', 'check'),
  141. array('mtitle', $txt['maintenance_subject'], 'file', 'text', 36),
  142. array('mmessage', $txt['maintenance_message'], 'file', 'text', 36),
  143. '',
  144. array('webmaster_email', $txt['admin_webmaster_email'], 'file', 'text', 30),
  145. '',
  146. array('enableCompressedOutput', $txt['enableCompressedOutput'], 'db', 'check', null, 'enableCompressedOutput'),
  147. array('disableTemplateEval', $txt['disableTemplateEval'], 'db', 'check', null, 'disableTemplateEval'),
  148. array('disableHostnameLookup', $txt['disableHostnameLookup'], 'db', 'check', null, 'disableHostnameLookup'),
  149. );
  150. call_integration_hook('integrate_general_settings', array(&$config_vars));
  151. if ($return_config)
  152. return $config_vars;
  153. // Setup the template stuff.
  154. $context['post_url'] = $scripturl . '?action=admin;area=serversettings;sa=general;save';
  155. $context['settings_title'] = $txt['general_settings'];
  156. // Saving settings?
  157. if (isset($_REQUEST['save']))
  158. {
  159. call_integration_hook('integrate_save_general_settings');
  160. saveSettings($config_vars);
  161. redirectexit('action=admin;area=serversettings;sa=general;' . $context['session_var'] . '=' . $context['session_id']);
  162. }
  163. // Fill the config array.
  164. prepareServerSettingsContext($config_vars);
  165. }
  166. /**
  167. * Basic database and paths settings - database name, host, etc.
  168. * It shows an interface for the settings in Settings.php to be changed.
  169. * It contains the actual array of settings to show from Settings.php.
  170. * It uses the rawdata sub template (not theme-able.)
  171. * Requires the admin_forum permission.
  172. * Uses the edit_settings administration area.
  173. * Accessed from ?action=admin;area=serversettings;sa=database.
  174. *
  175. * @param $return_config
  176. */
  177. function ModifyDatabaseSettings($return_config = false)
  178. {
  179. global $scripturl, $context, $settings, $txt, $boarddir;
  180. /* If you're writing a mod, it's a bad idea to add things here....
  181. For each option:
  182. variable name, description, type (constant), size/possible values, helptext.
  183. OR an empty string for a horizontal rule.
  184. OR a string for a titled section. */
  185. $config_vars = array(
  186. array('db_server', $txt['database_server'], 'file', 'text'),
  187. array('db_user', $txt['database_user'], 'file', 'text'),
  188. array('db_passwd', $txt['database_password'], 'file', 'password'),
  189. array('db_name', $txt['database_name'], 'file', 'text'),
  190. array('db_prefix', $txt['database_prefix'], 'file', 'text'),
  191. array('db_persist', $txt['db_persist'], 'file', 'check', null, 'db_persist'),
  192. array('db_error_send', $txt['db_error_send'], 'file', 'check'),
  193. array('ssi_db_user', $txt['ssi_db_user'], 'file', 'text', null, 'ssi_db_user'),
  194. array('ssi_db_passwd', $txt['ssi_db_passwd'], 'file', 'password'),
  195. '',
  196. array('autoFixDatabase', $txt['autoFixDatabase'], 'db', 'check', false, 'autoFixDatabase'),
  197. array('autoOptMaxOnline', $txt['autoOptMaxOnline'], 'db', 'int'),
  198. '',
  199. array('boardurl', $txt['admin_url'], 'file', 'text', 36),
  200. array('boarddir', $txt['boarddir'], 'file', 'text', 36),
  201. array('sourcedir', $txt['sourcesdir'], 'file', 'text', 36),
  202. array('cachedir', $txt['cachedir'], 'file', 'text', 36),
  203. );
  204. call_integration_hook('integrate_database_settings', array(&$config_vars));
  205. if ($return_config)
  206. return $config_vars;
  207. // Setup the template stuff.
  208. $context['post_url'] = $scripturl . '?action=admin;area=serversettings;sa=database;save';
  209. $context['settings_title'] = $txt['database_paths_settings'];
  210. $context['save_disabled'] = $context['settings_not_writable'];
  211. // Saving settings?
  212. if (isset($_REQUEST['save']))
  213. {
  214. call_integration_hook('integrate_save_database_settings');
  215. saveSettings($config_vars);
  216. redirectexit('action=admin;area=serversettings;sa=database;' . $context['session_var'] . '=' . $context['session_id']);
  217. }
  218. // Fill the config array.
  219. prepareServerSettingsContext($config_vars);
  220. }
  221. /**
  222. * This function handles cookies settings modifications.
  223. *
  224. * @param bool $return_config = false
  225. */
  226. function ModifyCookieSettings($return_config = false)
  227. {
  228. global $context, $scripturl, $txt, $sourcedir, $modSettings, $cookiename, $user_settings;
  229. // Define the variables we want to edit.
  230. $config_vars = array(
  231. // Cookies...
  232. array('cookieTime', $txt['cookieTime'], 'db', 'int'),
  233. array('localCookies', $txt['localCookies'], 'db', 'check', false, 'localCookies'),
  234. array('globalCookies', $txt['globalCookies'], 'db', 'check', false, 'globalCookies'),
  235. array('secureCookies', $txt['secureCookies'], 'db', 'check', false, 'secureCookies', 'disabled' => !isset($_SERVER['HTTPS']) || !(strtolower($_SERVER['HTTPS']) == 'on' || strtolower($_SERVER['HTTPS']) == '1')),
  236. array('httponlyCookies', $txt['httponlyCookies'], 'db', 'check', false, 'httponlyCookies'),
  237. '',
  238. // Sessions
  239. array('databaseSession_enable', $txt['databaseSession_enable'], 'db', 'check', false, 'databaseSession_enable'),
  240. array('databaseSession_loose', $txt['databaseSession_loose'], 'db', 'check', false, 'databaseSession_loose'),
  241. array('databaseSession_lifetime', $txt['databaseSession_lifetime'], 'db', 'int', false, 'databaseSession_lifetime'),
  242. );
  243. call_integration_hook('integrate_cookie_settings', array(&$config_vars));
  244. if ($return_config)
  245. return $config_vars;
  246. $context['post_url'] = $scripturl . '?action=admin;area=serversettings;sa=cookie;save';
  247. $context['settings_title'] = $txt['cookies_sessions_settings'];
  248. // Saving settings?
  249. if (isset($_REQUEST['save']))
  250. {
  251. call_integration_hook('integrate_save_cookie_settings');
  252. saveSettings($config_vars);
  253. // If the cookie name was changed, reset the cookie.
  254. if ($cookiename != $_POST['cookiename'])
  255. {
  256. $original_session_id = $context['session_id'];
  257. include_once($sourcedir . '/Subs-Auth.php');
  258. // Remove the old cookie.
  259. setLoginCookie(-3600, 0);
  260. // Set the new one.
  261. $cookiename = $_POST['cookiename'];
  262. setLoginCookie(60 * $modSettings['cookieTime'], $user_settings['id_member'], sha1($user_settings['passwd'] . $user_settings['password_salt']));
  263. redirectexit('action=admin;area=serversettings;sa=cookie;' . $context['session_var'] . '=' . $original_session_id, $context['server']['needs_login_fix']);
  264. }
  265. redirectexit('action=admin;area=serversettings;sa=cookie;' . $context['session_var'] . '=' . $context['session_id']);
  266. }
  267. // Fill the config array.
  268. prepareServerSettingsContext($config_vars);
  269. }
  270. /**
  271. * Simply modifying cache functions
  272. *
  273. * @param bool $return_config = false
  274. */
  275. function ModifyCacheSettings($return_config = false)
  276. {
  277. global $context, $scripturl, $txt, $helptxt, $modSettings;
  278. // Define the variables we want to edit.
  279. $config_vars = array(
  280. // Only a couple of settings, but they are important
  281. array('select', 'cache_enable', array($txt['cache_off'], $txt['cache_level1'], $txt['cache_level2'], $txt['cache_level3'])),
  282. array('text', 'cache_memcached'),
  283. );
  284. call_integration_hook('integrate_modify_cache_settings', array(&$config_vars));
  285. if ($return_config)
  286. return $config_vars;
  287. // Saving again?
  288. if (isset($_GET['save']))
  289. {
  290. call_integration_hook('integrate_save_cache_settings');
  291. saveDBSettings($config_vars);
  292. // We have to manually force the clearing of the cache otherwise the changed settings might not get noticed.
  293. $modSettings['cache_enable'] = 1;
  294. cache_put_data('modSettings', null, 90);
  295. redirectexit('action=admin;area=serversettings;sa=cache;' . $context['session_var'] . '=' . $context['session_id']);
  296. }
  297. $context['post_url'] = $scripturl . '?action=admin;area=serversettings;sa=cache;save';
  298. $context['settings_title'] = $txt['caching_settings'];
  299. $context['settings_message'] = $txt['caching_information'];
  300. // Detect an optimizer?
  301. if (function_exists('eaccelerator_put'))
  302. $detected = 'eAccelerator';
  303. elseif (function_exists('mmcache_put'))
  304. $detected = 'MMCache';
  305. elseif (function_exists('apc_store'))
  306. $detected = 'APC';
  307. elseif (function_exists('output_cache_put'))
  308. $detected = 'Zend';
  309. elseif (function_exists('memcache_set'))
  310. $detected = 'Memcached';
  311. elseif (function_exists('xcache_set'))
  312. $detected = 'XCache';
  313. else
  314. $detected = 'no_caching';
  315. $context['settings_message'] = sprintf($context['settings_message'], $txt['detected_' . $detected]);
  316. // Prepare the template.
  317. prepareDBSettingContext($config_vars);
  318. }
  319. /**
  320. * Allows to edit load balancing settings.
  321. *
  322. * @param bool $return_config = false
  323. */
  324. function ModifyLoadBalancingSettings($return_config = false)
  325. {
  326. global $txt, $scripturl, $context, $settings, $modSettings;
  327. // Setup a warning message, but disabled by default.
  328. $disabled = true;
  329. $context['settings_message'] = $txt['loadavg_disabled_conf'];
  330. if (strpos(strtolower(PHP_OS), 'win') === 0)
  331. $context['settings_message'] = $txt['loadavg_disabled_windows'];
  332. else
  333. {
  334. $modSettings['load_average'] = @file_get_contents('/proc/loadavg');
  335. if (!empty($modSettings['load_average']) && preg_match('~^([^ ]+?) ([^ ]+?) ([^ ]+)~', $modSettings['load_average'], $matches) !== 0)
  336. $modSettings['load_average'] = (float) $matches[1];
  337. elseif (($modSettings['load_average'] = @`uptime`) !== null && preg_match('~load averages?: (\d+\.\d+), (\d+\.\d+), (\d+\.\d+)~i', $modSettings['load_average'], $matches) !== 0)
  338. $modSettings['load_average'] = (float) $matches[1];
  339. else
  340. unset($modSettings['load_average']);
  341. if (!empty($modSettings['load_average']))
  342. {
  343. $context['settings_message'] = sprintf($txt['loadavg_warning'], $modSettings['load_average']);
  344. $disabled = false;
  345. }
  346. }
  347. // Start with a simple checkbox.
  348. $config_vars = array(
  349. array('check', 'loadavg_enable'),
  350. );
  351. // Set the default values for each option.
  352. $default_values = array(
  353. 'loadavg_auto_opt' => '1.0',
  354. 'loadavg_search' => '2.5',
  355. 'loadavg_allunread' => '2.0',
  356. 'loadavg_unreadreplies' => '3.5',
  357. 'loadavg_show_posts' => '2.0',
  358. 'loadavg_bbc' => '25.0',
  359. 'loadavg_forum' => '40.0',
  360. );
  361. // Loop through the settings.
  362. foreach ($default_values as $name => $value)
  363. {
  364. // Use the default value if the setting isn't set yet.
  365. $value = !isset($modSettings[$name]) ? $value : $modSettings[$name];
  366. $config_vars[] = array('text', $name, 'value' => $value, 'disabled' => $disabled);
  367. }
  368. call_integration_hook('integrate_loadavg_settings', array(&$config_vars));
  369. if ($return_config)
  370. return $config_vars;
  371. $context['post_url'] = $scripturl . '?action=admin;area=serversettings;sa=loads;save';
  372. $context['settings_title'] = $txt['load_balancing_settings'];
  373. // Saving?
  374. if (isset($_GET['save']))
  375. {
  376. // Stupidity is not allowed.
  377. foreach ($_POST as $key => $value)
  378. {
  379. if (strpos($key, 'loadavg') === 0 || $key === 'loadavg_enable')
  380. continue;
  381. elseif ($key == 'loadavg_auto_opt' && $value <= 1)
  382. $_POST['loadavg_auto_opt'] = '1.0';
  383. elseif ($key == 'loadavg_forum' && $value < 10)
  384. $_POST['loadavg_forum'] = '10.0';
  385. elseif ($value < 2)
  386. $_POST[$key] = '2.0';
  387. }
  388. call_integration_hook('integrate_save_loadavg_settings');
  389. saveDBSettings($config_vars);
  390. redirectexit('action=admin;area=serversettings;sa=loads;' . $context['session_var'] . '=' . $context['session_id']);
  391. }
  392. prepareDBSettingContext($config_vars);
  393. }
  394. /**
  395. * Helper function, it sets up the context for the manage server settings.
  396. *
  397. * @param array $config_vars
  398. */
  399. function prepareServerSettingsContext(&$config_vars)
  400. {
  401. global $context, $modSettings;
  402. $context['config_vars'] = array();
  403. foreach ($config_vars as $identifier => $config_var)
  404. {
  405. if (!is_array($config_var) || !isset($config_var[1]))
  406. $context['config_vars'][] = $config_var;
  407. else
  408. {
  409. $varname = $config_var[0];
  410. global $$varname;
  411. $context['config_vars'][] = array(
  412. 'label' => $config_var[1],
  413. 'help' => isset($config_var[5]) ? $config_var[5] : '',
  414. 'type' => $config_var[3],
  415. 'size' => empty($config_var[4]) ? 0 : $config_var[4],
  416. 'data' => isset($config_var[4]) && is_array($config_var[4]) ? $config_var[4] : array(),
  417. 'name' => $config_var[0],
  418. 'value' => $config_var[2] == 'file' ? htmlspecialchars($$varname) : (isset($modSettings[$config_var[0]]) ? htmlspecialchars($modSettings[$config_var[0]]) : (in_array($config_var[3], array('int', 'float')) ? 0 : '')),
  419. 'disabled' => !empty($context['settings_not_writable']) || !empty($config_var['disabled']),
  420. 'invalid' => false,
  421. 'javascript' => '',
  422. 'preinput' => '',
  423. 'postinput' => '',
  424. );
  425. }
  426. }
  427. createToken('admin-ssc');
  428. createToken('admin-dbsc');
  429. }
  430. /**
  431. * Helper function, it sets up the context for database settings.
  432. * @todo see rev. 10406 from 2.1-requests
  433. *
  434. * @param array $config_vars
  435. */
  436. function prepareDBSettingContext(&$config_vars)
  437. {
  438. global $txt, $helptxt, $context, $modSettings, $sourcedir;
  439. loadLanguage('Help');
  440. $context['config_vars'] = array();
  441. $inlinePermissions = array();
  442. $bbcChoice = array();
  443. foreach ($config_vars as $config_var)
  444. {
  445. // HR?
  446. if (!is_array($config_var))
  447. $context['config_vars'][] = $config_var;
  448. else
  449. {
  450. // If it has no name it doesn't have any purpose!
  451. if (empty($config_var[1]))
  452. continue;
  453. // Special case for inline permissions
  454. if ($config_var[0] == 'permissions' && allowedTo('manage_permissions'))
  455. $inlinePermissions[] = $config_var[1];
  456. elseif ($config_var[0] == 'permissions')
  457. continue;
  458. // Are we showing the BBC selection box?
  459. if ($config_var[0] == 'bbc')
  460. $bbcChoice[] = $config_var[1];
  461. $context['config_vars'][$config_var[1]] = array(
  462. 'label' => isset($config_var['text_label']) ? $config_var['text_label'] : (isset($txt[$config_var[1]]) ? $txt[$config_var[1]] : (isset($config_var[3]) && !is_array($config_var[3]) ? $config_var[3] : '')),
  463. 'help' => isset($helptxt[$config_var[1]]) ? $config_var[1] : '',
  464. 'type' => $config_var[0],
  465. 'size' => !empty($config_var[2]) && !is_array($config_var[2]) ? $config_var[2] : (in_array($config_var[0], array('int', 'float')) ? 6 : 0),
  466. 'data' => array(),
  467. 'name' => $config_var[1],
  468. 'value' => isset($modSettings[$config_var[1]]) ? ($config_var[0] == 'select' ? $modSettings[$config_var[1]] : htmlspecialchars($modSettings[$config_var[1]])) : (in_array($config_var[0], array('int', 'float')) ? 0 : ''),
  469. 'disabled' => false,
  470. 'invalid' => !empty($config_var['invalid']),
  471. 'javascript' => '',
  472. 'var_message' => !empty($config_var['message']) && isset($txt[$config_var['message']]) ? $txt[$config_var['message']] : '',
  473. 'preinput' => isset($config_var['preinput']) ? $config_var['preinput'] : '',
  474. 'postinput' => isset($config_var['postinput']) ? $config_var['postinput'] : '',
  475. );
  476. // If this is a select box handle any data.
  477. if (!empty($config_var[2]) && is_array($config_var[2]))
  478. {
  479. // If we allow multiple selections, we need to adjust a few things.
  480. if ($config_var[0] == 'select' && !empty($config_var['multiple']))
  481. {
  482. $context['config_vars'][$config_var[1]]['name'] .= '[]';
  483. $context['config_vars'][$config_var[1]]['value'] = unserialize($context['config_vars'][$config_var[1]]['value']);
  484. }
  485. // If it's associative
  486. if (isset($config_var[2][0]) && is_array($config_var[2][0]))
  487. $context['config_vars'][$config_var[1]]['data'] = $config_var[2];
  488. else
  489. {
  490. foreach ($config_var[2] as $key => $item)
  491. $context['config_vars'][$config_var[1]]['data'][] = array($key, $item);
  492. }
  493. }
  494. // Finally allow overrides - and some final cleanups.
  495. foreach ($config_var as $k => $v)
  496. {
  497. if (!is_numeric($k))
  498. {
  499. if (substr($k, 0, 2) == 'on')
  500. $context['config_vars'][$config_var[1]]['javascript'] .= ' ' . $k . '="' . $v . '"';
  501. else
  502. $context['config_vars'][$config_var[1]][$k] = $v;
  503. }
  504. // See if there are any other labels that might fit?
  505. if (isset($txt['setting_' . $config_var[1]]))
  506. $context['config_vars'][$config_var[1]]['label'] = $txt['setting_' . $config_var[1]];
  507. elseif (isset($txt['groups_' . $config_var[1]]))
  508. $context['config_vars'][$config_var[1]]['label'] = $txt['groups_' . $config_var[1]];
  509. }
  510. // Set the subtext in case it's part of the label.
  511. /**
  512. * @todo Temporary. Preventing divs inside label tags.
  513. */
  514. $divPos = strpos($context['config_vars'][$config_var[1]]['label'], '<div');
  515. if ($divPos !== false)
  516. {
  517. $context['config_vars'][$config_var[1]]['subtext'] = preg_replace('~</?div[^>]*>~', '', substr($context['config_vars'][$config_var[1]]['label'], $divPos));
  518. $context['config_vars'][$config_var[1]]['label'] = substr($context['config_vars'][$config_var[1]]['label'], 0, $divPos);
  519. }
  520. }
  521. }
  522. // If we have inline permissions we need to prep them.
  523. if (!empty($inlinePermissions) && allowedTo('manage_permissions'))
  524. {
  525. require_once($sourcedir . '/ManagePermissions.php');
  526. init_inline_permissions($inlinePermissions, isset($context['permissions_excluded']) ? $context['permissions_excluded'] : array());
  527. }
  528. // What about any BBC selection boxes?
  529. if (!empty($bbcChoice))
  530. {
  531. // What are the options, eh?
  532. $temp = parse_bbc(false);
  533. $bbcTags = array();
  534. foreach ($temp as $tag)
  535. $bbcTags[] = $tag['tag'];
  536. $bbcTags = array_unique($bbcTags);
  537. $totalTags = count($bbcTags);
  538. // The number of columns we want to show the BBC tags in.
  539. $numColumns = isset($context['num_bbc_columns']) ? $context['num_bbc_columns'] : 3;
  540. // Start working out the context stuff.
  541. $context['bbc_columns'] = array();
  542. $tagsPerColumn = ceil($totalTags / $numColumns);
  543. $col = 0; $i = 0;
  544. foreach ($bbcTags as $tag)
  545. {
  546. if ($i % $tagsPerColumn == 0 && $i != 0)
  547. $col++;
  548. $context['bbc_columns'][$col][] = array(
  549. 'tag' => $tag,
  550. /**
  551. * @todo 'tag_' . ?
  552. */
  553. 'show_help' => isset($helptxt[$tag]),
  554. );
  555. $i++;
  556. }
  557. // Now put whatever BBC options we may have into context too!
  558. $context['bbc_sections'] = array();
  559. foreach ($bbcChoice as $bbc)
  560. {
  561. $context['bbc_sections'][$bbc] = array(
  562. 'title' => isset($txt['bbc_title_' . $bbc]) ? $txt['bbc_title_' . $bbc] : $txt['bbcTagsToUse_select'],
  563. 'disabled' => empty($modSettings['bbc_disabled_' . $bbc]) ? array() : $modSettings['bbc_disabled_' . $bbc],
  564. 'all_selected' => empty($modSettings['bbc_disabled_' . $bbc]),
  565. );
  566. }
  567. }
  568. call_integration_hook('integrate_prepare_server_settings', array(&$config_vars));
  569. createToken('admin-dbsc');
  570. }
  571. /**
  572. * Helper function. Saves settings by putting them in Settings.php or saving them in the settings table.
  573. * Saves those settings set from ?action=admin;area=serversettings.
  574. * Requires the admin_forum permission.
  575. * Contains arrays of the types of data to save into Settings.php.
  576. * @param $config_vars
  577. */
  578. function saveSettings(&$config_vars)
  579. {
  580. global $boarddir, $sc, $cookiename, $modSettings, $user_settings;
  581. global $sourcedir, $context, $cachedir;
  582. validateToken('admin-ssc');
  583. // Fix the darn stupid cookiename! (more may not be allowed, but these for sure!)
  584. if (isset($_POST['cookiename']))
  585. $_POST['cookiename'] = preg_replace('~[,;\s\.$]+~' . ($context['utf8'] ? 'u' : ''), '', $_POST['cookiename']);
  586. // Fix the forum's URL if necessary.
  587. if (isset($_POST['boardurl']))
  588. {
  589. if (substr($_POST['boardurl'], -10) == '/index.php')
  590. $_POST['boardurl'] = substr($_POST['boardurl'], 0, -10);
  591. elseif (substr($_POST['boardurl'], -1) == '/')
  592. $_POST['boardurl'] = substr($_POST['boardurl'], 0, -1);
  593. if (substr($_POST['boardurl'], 0, 7) != 'http://' && substr($_POST['boardurl'], 0, 7) != 'file://' && substr($_POST['boardurl'], 0, 8) != 'https://')
  594. $_POST['boardurl'] = 'http://' . $_POST['boardurl'];
  595. }
  596. // Any passwords?
  597. $config_passwords = array(
  598. 'db_passwd',
  599. 'ssi_db_passwd',
  600. );
  601. // All the strings to write.
  602. $config_strs = array(
  603. 'mtitle', 'mmessage',
  604. 'language', 'mbname', 'boardurl',
  605. 'cookiename',
  606. 'webmaster_email',
  607. 'db_name', 'db_user', 'db_server', 'db_prefix', 'ssi_db_user',
  608. 'boarddir', 'sourcedir', 'cachedir',
  609. );
  610. // All the numeric variables.
  611. $config_ints = array(
  612. );
  613. // All the checkboxes.
  614. $config_bools = array(
  615. 'db_persist', 'db_error_send',
  616. 'maintenance',
  617. );
  618. // Now sort everything into a big array, and figure out arrays and etc.
  619. $new_settings = array();
  620. foreach ($config_passwords as $config_var)
  621. {
  622. if (isset($_POST[$config_var][1]) && $_POST[$config_var][0] == $_POST[$config_var][1])
  623. $new_settings[$config_var] = '\'' . addcslashes($_POST[$config_var][0], '\'\\') . '\'';
  624. }
  625. foreach ($config_strs as $config_var)
  626. {
  627. if (isset($_POST[$config_var]))
  628. $new_settings[$config_var] = '\'' . addcslashes($_POST[$config_var], '\'\\') . '\'';
  629. }
  630. foreach ($config_ints as $config_var)
  631. {
  632. if (isset($_POST[$config_var]))
  633. $new_settings[$config_var] = (int) $_POST[$config_var];
  634. }
  635. foreach ($config_bools as $key)
  636. {
  637. if (!empty($_POST[$key]))
  638. $new_settings[$key] = '1';
  639. else
  640. $new_settings[$key] = '0';
  641. }
  642. // Save the relevant settings in the Settings.php file.
  643. require_once($sourcedir . '/Subs-Admin.php');
  644. updateSettingsFile($new_settings);
  645. // Now loopt through the remaining (database-based) settings.
  646. $new_settings = array();
  647. foreach ($config_vars as $config_var)
  648. {
  649. // We just saved the file-based settings, so skip their definitions.
  650. if (!is_array($config_var) || $config_var[2] == 'file')
  651. continue;
  652. // Rewrite the definition a bit.
  653. $new_settings[] = array($config_var[3], $config_var[0]);
  654. }
  655. // Save the new database-based settings, if any.
  656. if (!empty($new_settings))
  657. saveDBSettings($new_settings);
  658. }
  659. /**
  660. * Helper function for saving database settings.
  661. * @todo see rev. 10406 from 2.1-requests
  662. *
  663. * @param array $config_vars
  664. */
  665. function saveDBSettings(&$config_vars)
  666. {
  667. global $sourcedir, $context;
  668. validateToken('admin-dbsc');
  669. $inlinePermissions = array();
  670. foreach ($config_vars as $var)
  671. {
  672. if (!isset($var[1]) || (!isset($_POST[$var[1]]) && $var[0] != 'check' && $var[0] != 'permissions' && ($var[0] != 'bbc' || !isset($_POST[$var[1] . '_enabledTags']))))
  673. continue;
  674. // Checkboxes!
  675. elseif ($var[0] == 'check')
  676. $setArray[$var[1]] = !empty($_POST[$var[1]]) ? '1' : '0';
  677. // Select boxes!
  678. elseif ($var[0] == 'select' && in_array($_POST[$var[1]], array_keys($var[2])))
  679. $setArray[$var[1]] = $_POST[$var[1]];
  680. elseif ($var[0] == 'select' && !empty($var['multiple']) && array_intersect($_POST[$var[1]], array_keys($var[2])) != array())
  681. {
  682. // For security purposes we validate this line by line.
  683. $options = array();
  684. foreach ($_POST[$var[1]] as $invar)
  685. if (in_array($invar, array_keys($var[2])))
  686. $options[] = $invar;
  687. $setArray[$var[1]] = serialize($options);
  688. }
  689. // Integers!
  690. elseif ($var[0] == 'int')
  691. $setArray[$var[1]] = (int) $_POST[$var[1]];
  692. // Floating point!
  693. elseif ($var[0] == 'float')
  694. $setArray[$var[1]] = (float) $_POST[$var[1]];
  695. // Text!
  696. elseif ($var[0] == 'text' || $var[0] == 'large_text')
  697. $setArray[$var[1]] = $_POST[$var[1]];
  698. // Passwords!
  699. elseif ($var[0] == 'password')
  700. {
  701. if (isset($_POST[$var[1]][1]) && $_POST[$var[1]][0] == $_POST[$var[1]][1])
  702. $setArray[$var[1]] = $_POST[$var[1]][0];
  703. }
  704. // BBC.
  705. elseif ($var[0] == 'bbc')
  706. {
  707. $bbcTags = array();
  708. foreach (parse_bbc(false) as $tag)
  709. $bbcTags[] = $tag['tag'];
  710. if (!isset($_POST[$var[1] . '_enabledTags']))
  711. $_POST[$var[1] . '_enabledTags'] = array();
  712. elseif (!is_array($_POST[$var[1] . '_enabledTags']))
  713. $_POST[$var[1] . '_enabledTags'] = array($_POST[$var[1] . '_enabledTags']);
  714. $setArray[$var[1]] = implode(',', array_diff($bbcTags, $_POST[$var[1] . '_enabledTags']));
  715. }
  716. // Permissions?
  717. elseif ($var[0] == 'permissions')
  718. $inlinePermissions[] = $var[1];
  719. }
  720. if (!empty($setArray))
  721. updateSettings($setArray);
  722. // If we have inline permissions we need to save them.
  723. if (!empty($inlinePermissions) && allowedTo('manage_permissions'))
  724. {
  725. require_once($sourcedir . '/ManagePermissions.php');
  726. save_inline_permissions($inlinePermissions);
  727. }
  728. }
  729. ?>