f434faecd251d3fb02e7b24ce3c0070256b0309f
[racktables] / inc / init.php
1 <?php
2 /*
3 *
4 * This file performs RackTables initialisation. After you include it
5 * from 1st-level page, don't forget to call fixContext(). This is done
6 * to allow reloading of pageno and tabno variables. pageno and tabno
7 * together participate in forming security context by generating
8 * related autotags.
9 *
10 */
11
12 $root = (empty($_SERVER['HTTPS'])?'http':'https').
13 '://'.
14 (isset($_SERVER['HTTP_HOST'])?$_SERVER['HTTP_HOST']:($_SERVER['SERVER_NAME'].($_SERVER['SERVER_PORT']=='80'?'':$_SERVER['SERVER_PORT']))).
15 dirname($_SERVER['PHP_SELF']);
16 if (substr ($root, -1) != '/')
17 $root .= '/';
18
19 // This is the first thing we need to do.
20 require_once 'inc/config.php';
21
22 // What we need first is database and interface functions.
23 require_once 'inc/interface.php';
24 require_once 'inc/functions.php';
25 require_once 'inc/database.php';
26 if (file_exists ('inc/secret.php'))
27 require_once 'inc/secret.php';
28 else
29 {
30 showError
31 (
32 "Database connection parameters are read from inc/secret.php file, " .
33 "which cannot be found.\nYou probably need to complete the installation " .
34 "procedure by following <a href='${root}install.php'>this link</a>.",
35 __FILE__
36 );
37 die;
38 }
39
40 // Now try to connect...
41 try
42 {
43 $dbxlink = new PDO ($pdo_dsn, $db_username, $db_password);
44 }
45 catch (PDOException $e)
46 {
47 showError ("Database connection failed:\n\n" . $e->getMessage(), __FILE__);
48 die();
49 }
50
51 $dbxlink->exec ("set names 'utf8'");
52
53 if (get_magic_quotes_gpc())
54 foreach ($_REQUEST as $key => $value)
55 if (gettype ($value) == 'string')
56 $_REQUEST[$key] = stripslashes ($value);
57
58 if (!set_magic_quotes_runtime (0))
59 {
60 showError ('Failed to turn magic quotes off', __FILE__);
61 die;
62 }
63
64 // Escape any globals before we ever try to use them.
65 foreach ($_REQUEST as $key => $value)
66 if (gettype ($value) == 'string')
67 $_REQUEST[$key] = escapeString ($value);
68
69 if (isset ($_SERVER['PHP_AUTH_USER']))
70 $_SERVER['PHP_AUTH_USER'] = escapeString ($_SERVER['PHP_AUTH_USER']);
71 if (isset ($_SERVER['PHP_AUTH_PW']))
72 $_SERVER['PHP_AUTH_PW'] = escapeString ($_SERVER['PHP_AUTH_PW']);
73
74 $dbver = getDatabaseVersion();
75 if ($dbver != CODE_VERSION)
76 {
77 echo '<p align=justify>This Racktables installation seems to be ' .
78 'just upgraded to version ' . CODE_VERSION . ', while the '.
79 'database version is ' . $dbver . '. No user will be ' .
80 'either authenticated or shown any page until the upgrade is ' .
81 "finished. Follow <a href='${root}upgrade.php'>this link</a> and " .
82 'authenticate as administrator to finish the upgrade.</p>';
83 die;
84 }
85
86 if (!mb_internal_encoding ('UTF-8') or !mb_regex_encoding ('UTF-8'))
87 {
88 showError ('Failed setting multibyte string encoding to UTF-8', __FILE__);
89 die;
90 }
91 $configCache = loadConfigCache();
92 if (!count ($configCache))
93 {
94 showError ('Failed to load configuration from the database.', __FILE__);
95 die();
96 }
97
98 require_once 'inc/code.php';
99 $rackCodeCache = loadScript ('RackCodeCache');
100 if ($rackCodeCache == NULL or empty ($rackCodeCache))
101 {
102 // $t1 = microtime (TRUE);
103 $rackCode = getRackCode (loadScript ('RackCode'));
104 // $t2 = microtime (TRUE);
105 // echo 'DEBUG: parsed RackCode tree from scratch in ' . ($t2 - $t1) . ' second(s)<br>';
106 saveScript ('RackCodeCache', base64_encode (serialize ($rackCode)));
107 }
108 else
109 {
110 // $t1 = microtime (TRUE);
111 $rackCode = unserialize (base64_decode ($rackCodeCache));
112 // $t2 = microtime (TRUE);
113 // echo 'DEBUG: loaded RackCode cache in ' . ($t2 - $t1) . ' second(s)<br>';
114 if ($rackCode === FALSE) // invalid cache
115 {
116 saveScript ('RackCodeCache', '');
117 // $t1 = microtime (TRUE);
118 $rackCode = getRackCode (loadScript ('RackCode'));
119 // $t2 = microtime (TRUE);
120 // echo 'DEBUG: discarded RackCode cache and parsed tree from scratch in ' . ($t2 - $t1) . ' second(s)<br>';
121 }
122 }
123
124 // Depending on the 'result' value the 'load' carries either the
125 // parse tree or error message.
126 if ($rackCode['result'] != 'ACK')
127 {
128 // FIXME: display a message with an option to reset RackCode text
129 showError ('Could not load the RackCode due to error: ' . $rackCode['load'], __FILE__);
130 die;
131 }
132 $rackCode = $rackCode['load'];
133
134 // Now init authentication.
135
136 require_once 'inc/auth.php';
137 // Load access database once.
138 $accounts = getUserAccounts();
139 if ($accounts === NULL)
140 {
141 showError ('Failed to initialize access database.', __FILE__);
142 die();
143 }
144
145 authenticate();
146
147 // Authentication passed.
148 // Note that we don't perform autorization here, so each 1st level page
149 // has to do it in its way, e.g. to call authorize().
150
151 $remote_username = $_SERVER['PHP_AUTH_USER'];
152 $pageno = (isset ($_REQUEST['page'])) ? $_REQUEST['page'] : 'index';
153 // Special handling of tab number to substitute the "last" index where applicable.
154 // Always show explicitly requested tab, substitute the last used name in case
155 // it is awailable, fall back to the default one.
156 if (isset ($_REQUEST['tab']))
157 $tabno = $_REQUEST['tab'];
158 elseif (getConfigVar ('SHOW_LAST_TAB') == 'yes' and isset ($_COOKIE['RTLT-' . $pageno]))
159 $tabno = $_COOKIE['RTLT-' . $pageno];
160 else
161 $tabno = 'default';
162 $op = (isset ($_REQUEST['op'])) ? $_REQUEST['op'] : '';
163
164 // Order matters here.
165 $taglist = getTagList();
166 $tagtree = getTagTree();
167
168 require_once 'inc/navigation.php';
169 require_once 'inc/pagetitles.php';
170 require_once 'inc/ophandlers.php';
171 require_once 'inc/triggers.php';
172 require_once 'inc/gateways.php';
173 require_once 'inc/snmp.php';
174 if (file_exists ('inc/local.php'))
175 require_once 'inc/local.php';
176
177 // These will be filled in by fixContext()
178 $auto_tags = array();
179 $expl_tags = array();
180 $impl_tags = array();
181 // and this will remain constant
182 $user_tags = loadUserTags ($accounts[$remote_username]['user_id']);
183 $user_tags = array_merge ($user_tags, getImplicitTags ($user_tags), getUserAutoTags());
184
185 ?>