<?php
/**
* @package Dotclear
* @subpackage Install
*
* @copyright Olivier Meunier & Association Dotclear
* @copyright GPL-2.0-only
*/
if (isset($_SERVER['DC_RC_PATH'])) {
define('DC_RC_PATH', $_SERVER['DC_RC_PATH']);
} elseif (isset($_SERVER['REDIRECT_DC_RC_PATH'])) {
define('DC_RC_PATH', $_SERVER['REDIRECT_DC_RC_PATH']);
} else {
define('DC_RC_PATH', __DIR__ . '/../../inc/config.php');
}
# ClearBricks and DotClear classes auto-loader
if (@is_dir('/usr/lib/clearbricks')) {
define('CLEARBRICKS_PATH', '/usr/lib/clearbricks');
} elseif (is_dir(__DIR__ . '/../../inc/libs/clearbricks')) {
define('CLEARBRICKS_PATH', __DIR__ . '/../../inc/libs/clearbricks');
} elseif (isset($_SERVER['CLEARBRICKS_PATH']) && is_dir($_SERVER['CLEARBRICKS_PATH'])) {
define('CLEARBRICKS_PATH', $_SERVER['CLEARBRICKS_PATH']);
}
if (!defined('CLEARBRICKS_PATH') || !is_dir(CLEARBRICKS_PATH)) {
exit('No clearbricks path defined');
}
require CLEARBRICKS_PATH . '/_common.php';
# Loading locales for detected language
$dlang = http::getAcceptLanguage();
if ($dlang != 'en') {
l10n::init($dlang);
l10n::set(__DIR__ . '/../../locales/' . $dlang . '/main');
}
if (is_file(DC_RC_PATH)) {
http::redirect('index.php');
}
if (!is_writable(dirname(DC_RC_PATH))) {
$err = '<p>' . sprintf(__('Path <strong>%s</strong> is not writable.'), path::real(dirname(DC_RC_PATH))) . '</p>' .
'<p>' . __('Dotclear installation wizard could not create configuration file for you. ' .
'You must change folder right or create the <strong>config.php</strong> ' .
'file manually, please refer to ' .
'<a href="https://dotclear.org/documentation/2.0/admin/install">' .
'the documentation</a> to learn how to do this.') . '</p>';
}
$DBDRIVER = !empty($_POST['DBDRIVER']) ? $_POST['DBDRIVER'] : 'mysqli';
$DBHOST = !empty($_POST['DBHOST']) ? $_POST['DBHOST'] : '';
$DBNAME = !empty($_POST['DBNAME']) ? $_POST['DBNAME'] : '';
$DBUSER = !empty($_POST['DBUSER']) ? $_POST['DBUSER'] : '';
$DBPASSWORD = !empty($_POST['DBPASSWORD']) ? $_POST['DBPASSWORD'] : '';
$DBPREFIX = !empty($_POST['DBPREFIX']) ? $_POST['DBPREFIX'] : 'dc_';
$ADMINMAILFROM = !empty($_POST['ADMINMAILFROM']) ? $_POST['ADMINMAILFROM'] : '';
if (!empty($_POST)) {
try {
if ($DBDRIVER == 'sqlite') {
if (strpos($DBNAME, '/') === false) {
$sqlite_db_directory = dirname(DC_RC_PATH) . '/../db/';
files::makeDir($sqlite_db_directory, true);
# Can we write sqlite_db_directory ?
if (!is_writable($sqlite_db_directory)) {
throw new Exception(sprintf(__('Cannot write "%s" directory.'), path::real($sqlite_db_directory, false)));
}
$DBNAME = $sqlite_db_directory . $DBNAME;
}
}
# Tries to connect to database
try {
$con = dbLayer::init($DBDRIVER, $DBHOST, $DBNAME, $DBUSER, $DBPASSWORD);
} catch (Exception $e) {
throw new Exception('<p>' . __($e->getMessage()) . '</p>');
}
# Checks system capabilites
require __DIR__ . '/check.php';
if (!dcSystemCheck($con, $_e)) {
$can_install = false;
throw new Exception('<p>' . __('Dotclear cannot be installed.') . '</p><ul><li>' . implode('</li><li>', $_e) . '</li></ul>');
}
# Check if dotclear is already installed
$schema = dbSchema::init($con);
if (in_array($DBPREFIX . 'version', $schema->getTables())) {
throw new Exception(__('Dotclear is already installed.'));
}
# Check master email
if (!text::isEmail($ADMINMAILFROM)) {
throw new Exception(__('Master email is not valid.'));
}
# Does config.php.in exist?
$config_in = __DIR__ . '/../../inc/config.php.in';
if (!is_file($config_in)) {
throw new Exception(sprintf(__('File %s does not exist.'), $config_in));
}
# Can we write config.php
if (!is_writable(dirname(DC_RC_PATH))) {
throw new Exception(sprintf(__('Cannot write %s file.'), DC_RC_PATH));
}
# Creates config.php file
$full_conf = file_get_contents($config_in);
writeConfigValue('DC_DBDRIVER', $DBDRIVER, $full_conf);
writeConfigValue('DC_DBHOST', $DBHOST, $full_conf);
writeConfigValue('DC_DBUSER', $DBUSER, $full_conf);
writeConfigValue('DC_DBPASSWORD', $DBPASSWORD, $full_conf);
writeConfigValue('DC_DBNAME', $DBNAME, $full_conf);
writeConfigValue('DC_DBPREFIX', $DBPREFIX, $full_conf);
$admin_url = preg_replace('%install/wizard.php$%', '', $_SERVER['REQUEST_URI']);
writeConfigValue('DC_ADMIN_URL', http::getHost() . $admin_url, $full_conf);
$admin_email = !empty($ADMINMAILFROM) ? $ADMINMAILFROM : 'dotclear@' . $_SERVER['HTTP_HOST'];
writeConfigValue('DC_ADMIN_MAILFROM', $admin_email, $full_conf);
writeConfigValue('DC_MASTER_KEY', md5(uniqid()), $full_conf);
$fp = @fopen(DC_RC_PATH, 'wb');
if ($fp === false) {
throw new Exception(sprintf(__('Cannot write %s file.'), DC_RC_PATH));
}
fwrite($fp, $full_conf);
fclose($fp);
chmod(DC_RC_PATH, 0666);
$con->close();
http::redirect('index.php?wiz=1');
} catch (Exception $e) {
$err = $e->getMessage();
}
}
function writeConfigValue($name, $val, &$str)
{
$val = str_replace("'", "\'", $val);
$str = preg_replace('/(\'' . $name . '\')(.*?)$/ms', '$1,\'' . $val . '\');', $str);
}
header('Content-Type: text/html; charset=UTF-8');
// Prevents Clickjacking as far as possible
header('X-Frame-Options: SAMEORIGIN'); // FF 3.6.9+ Chrome 4.1+ IE 8+ Safari 4+ Opera 10.5+
?>
<!DOCTYPE html>
<html lang="en">
<head>
<meta charset="UTF-8" />
<meta http-equiv="Content-Script-Type" content="text/javascript" />
<meta http-equiv="Content-Style-Type" content="text/css" />
<meta http-equiv="Content-Language" content="en" />
<meta name="ROBOTS" content="NOARCHIVE,NOINDEX,NOFOLLOW" />
<meta name="GOOGLEBOT" content="NOSNIPPET" />
<title><?php echo __('Dotclear installation wizard'); ?></title>
<link rel="stylesheet" href="../style/install.css" type="text/css" media="screen" />
</head>
<body id="dotclear-admin" class="install">
<div id="content">
<?php
echo
'<h1>' . __('Dotclear installation wizard') . '</h1>' .
'<div id="main">';
if (!empty($err)) {
echo '<div class="error" role="alert"><p><strong>' . __('Errors:') . '</strong></p>' . $err . '</div>';
} else {
echo '<h2>' . __('Welcome') . '</h2>' .
'<p>' . __('To complete your Dotclear installation and start writing on your blog, ' .
'we just need to know how to access your database and who you are. ' .
'Just fill this two steps wizard with this information and we will be done.') . '</p>' .
'<p class="message"><strong>' . __('Attention:') . '</strong> ' .
__('this wizard may not function on every host. If it does not work for you, ' .
'please refer to <a href="https://dotclear.org/documentation/2.0/admin/install">' .
'the documentation</a> to learn how to create the <strong>config.php</strong> ' .
'file manually.') . '</p>';
}
echo
'<h2>' . __('System information') . '</h2>' .
'<p>' . __('Please provide the following information needed to create your configuration file.') . '</p>' .
'<form action="wizard.php" method="post">' .
'<p><label class="required" for="DBDRIVER"><abbr title="' . __('Required field') . '">*</abbr> ' . __('Database type:') . '</label> ' .
form::combo(
'DBDRIVER',
[
__('MySQLi') => 'mysqli',
__('MySQLi (full UTF-8)') => 'mysqlimb4',
__('PostgreSQL') => 'pgsql',
__('SQLite') => 'sqlite', ],
['default' => $DBDRIVER, 'extra_html' => 'required placeholder="' . __('Driver') . '"']
) . '</p>' .
'<p><label for="DBHOST">' . __('Database Host Name:') . '</label> ' .
form::field('DBHOST', 30, 255, html::escapeHTML($DBHOST)) . '</p>' .
'<p><label for="DBNAME">' . __('Database Name:') . '</label> ' .
form::field('DBNAME', 30, 255, html::escapeHTML($DBNAME)) . '</p>' .
'<p><label for="DBUSER">' . __('Database User Name:') . '</label> ' .
form::field('DBUSER', 30, 255, html::escapeHTML($DBUSER)) . '</p>' .
'<p><label for="DBPASSWORD">' . __('Database Password:') . '</label> ' .
form::password('DBPASSWORD', 30, 255) . '</p>' .
'<p><label for="DBPREFIX" class="required"><abbr title="' . __('Required field') . '">*</abbr> ' . __('Database Tables Prefix:') . '</label> ' .
form::field('DBPREFIX', 30, 255, [
'default' => html::escapeHTML($DBPREFIX),
'extra_html' => 'required placeholder="' . __('Prefix') . '"',
]) .
'</p>' .
'<p><label for="ADMINMAILFROM">' . __('Master Email: (used as sender for password recovery)') . '</label> ' .
form::email('ADMINMAILFROM', [
'size' => 30,
'default' => html::escapeHTML($ADMINMAILFROM),
'autocomplete' => 'email',
]) .
'</p>' .
'<p><input type="submit" value="' . __('Continue') . '" /></p>' .
'</form>';
?>
</div>
</div>
</body>
</html>