source: admin/install/wizard.php @ 3639:fe9f4d94f86b

<?php
# -- BEGIN LICENSE BLOCK ---------------------------------------
#
# This file is part of Dotclear 2.
#
# Copyright (c) 2003-2013 Olivier Meunier & Association Dotclear
# Licensed under the GPL version 2.0 license.
# See LICENSE file or
# http://www.gnu.org/licenses/old-licenses/gpl-2.0.html
#
# -- END LICENSE BLOCK -----------------------------------------

if (isset($_SERVER['DC_RC_PATH'])) {
     define('DC_RC_PATH',$_SERVER['DC_RC_PATH']);
} elseif (isset($_SERVER['REDIRECT_DC_RC_PATH'])) {
     define('DC_RC_PATH',$_SERVER['REDIRECT_DC_RC_PATH']);
} else {
     define('DC_RC_PATH',dirname(__FILE__).'/../../inc/config.php');
}

#  ClearBricks and DotClear classes auto-loader
if (@is_dir('/usr/lib/clearbricks')) {
     define('CLEARBRICKS_PATH','/usr/lib/clearbricks');
} elseif (is_dir(dirname(__FILE__).'/../../inc/libs/clearbricks')) {
     define('CLEARBRICKS_PATH',dirname(__FILE__).'/../../inc/libs/clearbricks');
} elseif (isset($_SERVER['CLEARBRICKS_PATH']) && is_dir($_SERVER['CLEARBRICKS_PATH'])) {
     define('CLEARBRICKS_PATH',$_SERVER['CLEARBRICKS_PATH']);
}

if (!defined('CLEARBRICKS_PATH') || !is_dir(CLEARBRICKS_PATH)) {
     exit('No clearbricks path defined');
}

require CLEARBRICKS_PATH.'/_common.php';

# Loading locales for detected language
$dlang = http::getAcceptLanguage();
if ($dlang != 'en')
{
     l10n::init($dlang);
     l10n::set(dirname(__FILE__).'/../../locales/'.$dlang.'/main');
}

if (is_file(DC_RC_PATH)) {
     http::redirect('index.php');
}

if (!is_writable(dirname(DC_RC_PATH))) {
     $err = '<p>'.sprintf(__('Path <strong>%s</strong> is not writable.'),path::real(dirname(DC_RC_PATH))).'</p>'.
     '<p>'.__('Dotclear installation wizard could not create configuration file for you. '.
          'You must change folder right or create the <strong>config.php</strong> '.
          'file manually, please refer to '.
          '<a href="http://dotclear.org/documentation/2.0/admin/install">'.
          'the documentation</a> to learn how to do this.').'</p>';
}

$DBDRIVER = !empty($_POST['DBDRIVER']) ? $_POST['DBDRIVER'] : (function_exists('mysqli_connect') ? 'mysqli' : 'mysql');
$DBHOST = !empty($_POST['DBHOST']) ? $_POST['DBHOST'] : '';
$DBNAME = !empty($_POST['DBNAME']) ? $_POST['DBNAME'] : '';
$DBUSER = !empty($_POST['DBUSER']) ? $_POST['DBUSER'] : '';
$DBPASSWORD = !empty($_POST['DBPASSWORD']) ? $_POST['DBPASSWORD'] : '';
$DBPREFIX = !empty($_POST['DBPREFIX']) ? $_POST['DBPREFIX'] : 'dc_';
$ADMINMAILFROM = !empty($_POST['ADMINMAILFROM']) ? $_POST['ADMINMAILFROM'] : '';

if (!empty($_POST))
{
     try
     {
          if ($DBDRIVER == 'sqlite') {
               if (strpos($DBNAME, '/') === false) {
                    $sqlite_db_directory = dirname(DC_RC_PATH).'/../db/';
                    files::makeDir($sqlite_db_directory,true);

                    # Can we write sqlite_db_directory ?
                    if (!is_writable($sqlite_db_directory)) {
                         throw new Exception(sprintf(__('Cannot write "%s" directory.'),path::real($sqlite_db_directory,false)));
                    }
                    $DBNAME = $sqlite_db_directory.$DBNAME;
               }
          }

          # Tries to connect to database
          try {
               $con = dbLayer::init($DBDRIVER,$DBHOST,$DBNAME,$DBUSER,$DBPASSWORD);
          } catch (Exception $e) {
               throw new Exception('<p>' . __($e->getMessage()) . '</p>');
          }

          # Checks system capabilites
          require dirname(__FILE__).'/check.php';
          if (!dcSystemCheck($con,$_e)) {
               $can_install = false;
               throw new Exception('<p>'.__('Dotclear cannot be installed.').'</p><ul><li>'.implode('</li><li>',$_e).'</li></ul>');
          }

          # Check if dotclear is already installed
          $schema = dbSchema::init($con);
          if (in_array($DBPREFIX.'version',$schema->getTables())) {
               throw new Exception(__('Dotclear is already installed.'));
          }
          # Check master email
          if (!text::isEmail($ADMINMAILFROM)) {
               throw new Exception(__('Master email is not valid.'));
          }

          # Does config.php.in exist?
          $config_in = dirname(__FILE__).'/../../inc/config.php.in';
          if (!is_file($config_in)) {
               throw new Exception(sprintf(__('File %s does not exist.'),$config_in));
          }

          # Can we write config.php
          if (!is_writable(dirname(DC_RC_PATH))) {
               throw new Exception(sprintf(__('Cannot write %s file.'),DC_RC_PATH));
          }

          # Creates config.php file
          $full_conf = file_get_contents($config_in);

          writeConfigValue('DC_DBDRIVER',$DBDRIVER,$full_conf);
          writeConfigValue('DC_DBHOST',$DBHOST,$full_conf);
          writeConfigValue('DC_DBUSER',$DBUSER,$full_conf);
          writeConfigValue('DC_DBPASSWORD',$DBPASSWORD,$full_conf);
          writeConfigValue('DC_DBNAME',$DBNAME,$full_conf);
          writeConfigValue('DC_DBPREFIX',$DBPREFIX,$full_conf);

          $admin_url = preg_replace('%install/wizard.php$%','',$_SERVER['REQUEST_URI']);
          writeConfigValue('DC_ADMIN_URL',http::getHost().$admin_url,$full_conf);
          $admin_email = !empty($ADMINMAILFROM) ? $ADMINMAILFROM : 'dotclear@'.$_SERVER['HTTP_HOST'];
          writeConfigValue('DC_ADMIN_MAILFROM',$admin_email,$full_conf);
          writeConfigValue('DC_MASTER_KEY',md5(uniqid()),$full_conf);

          $fp = @fopen(DC_RC_PATH,'wb');
          if ($fp === false) {
               throw new Exception(sprintf(__('Cannot write %s file.'),DC_RC_PATH));
          }
          fwrite($fp,$full_conf);
          fclose($fp);
          chmod(DC_RC_PATH, 0666);

          $con->close();
          http::redirect('index.php?wiz=1');
     }
     catch (Exception $e)
     {
          $err = $e->getMessage();
     }
}

function writeConfigValue($name,$val,&$str)
{
     $val = str_replace("'","\'",$val);
     $str = preg_replace('/(\''.$name.'\')(.*?)$/ms','$1,\''.$val.'\');',$str);
}

header('Content-Type: text/html; charset=UTF-8');

// Prevents Clickjacking as far as possible
header('X-Frame-Options: SAMEORIGIN'); // FF 3.6.9+ Chrome 4.1+ IE 8+ Safari 4+ Opera 10.5+

?>
<!DOCTYPE html>
<html lang="en">
<head>
  <meta charset="UTF-8" />
  <meta http-equiv="Content-Script-Type" content="text/javascript" />
  <meta http-equiv="Content-Style-Type" content="text/css" />
  <meta http-equiv="Content-Language" content="en" />
  <meta name="ROBOTS" content="NOARCHIVE,NOINDEX,NOFOLLOW" />
  <meta name="GOOGLEBOT" content="NOSNIPPET" />
  <title><?php echo __('Dotclear installation wizard'); ?></title>
     <link rel="stylesheet" href="../style/install.css" type="text/css" media="screen" />
</head>

<body id="dotclear-admin" class="install">
<div id="content">
<?php
echo
'<h1>'.__('Dotclear installation wizard').'</h1>'.
'<div id="main">';

if (!empty($err)) {
     echo '<div class="error" role="alert"><p><strong>'.__('Errors:').'</strong></p>'.$err.'</div>';
} else {
     echo '<h2>'.__('Welcome').'</h2>'.
          '<p>'.__('To complete your Dotclear installation and start writing on your blog, '.
               'we just need to know how to access your database and who you are. '.
               'Just fill this two steps wizard with this information and we will be done.').'</p>'.
          '<p class="message"><strong>'.__('Attention:').'</strong> '.
          __('this wizard may not function on every host. If it does not work for you, '.
               'please refer to <a href="http://dotclear.org/documentation/2.0/admin/install">'.
               'the documentation</a> to learn how to create the <strong>config.php</strong> '.
               'file manually.').'</p>';
}

echo
'<h2>'.__('System information').'</h2>'.

'<p>'.__('Please provide the following information needed to create your configuration file.').'</p>'.

'<form action="wizard.php" method="post">'.
'<p><label class="required" for="DBDRIVER"><abbr title="'.__('Required field').'">*</abbr> '.__('Database type:').'</label> '.
    form::combo('DBDRIVER',array(
     __('MySQL (deprecated)') => 'mysql',
     __('MySQLi')                  => 'mysqli',
     __('MySQLi (full UTF-8)')     => 'mysqlimb4',
     __('PostgreSQL')              => 'pgsql',
     __('SQLite')                  => 'sqlite'),
     $DBDRIVER,'','',false,'required placeholder="'.__('Driver').'"').'</p>'.
'<p><label for="DBHOST">'.__('Database Host Name:').'</label> '.
form::field('DBHOST',30,255,html::escapeHTML($DBHOST)).'</p>'.
'<p><label for="DBNAME">'.__('Database Name:').'</label> '.
form::field('DBNAME',30,255,html::escapeHTML($DBNAME)).'</p>'.
'<p><label for="DBUSER">'.__('Database User Name:').'</label> '.
form::field('DBUSER',30,255,html::escapeHTML($DBUSER)).'</p>'.
'<p><label for="DBPASSWORD">'.__('Database Password:').'</label> '.
form::password('DBPASSWORD',30,255).'</p>'.
'<p><label for="DBPREFIX" class="required"><abbr title="'.__('Required field').'">*</abbr> '.__('Database Tables Prefix:').'</label> '.
form::field('DBPREFIX',30,255,html::escapeHTML($DBPREFIX),'','',false,'required placeholder="'.__('Prefix').'"').'</p>'.
'<p><label for="ADMINMAILFROM">'.__('Master Email: (used as sender for password recovery)').'</label> '.
form::field('ADMINMAILFROM',30,255,html::escapeHTML($ADMINMAILFROM)).'</p>'.

'<p><input type="submit" value="'.__('Continue').'" /></p>'.
'</form>';
?>
</div>
</div>
</body>
</html>