nextcloud/lib/private/setup.php

401 lines
12 KiB
PHP
Raw Normal View History

2011-04-17 02:45:05 +04:00
<?php
/**
* Copyright (c) 2014 Lukas Reschke <lukas@owncloud.com>
* This file is licensed under the Affero General Public License version 3 or
* later.
* See the COPYING-README file.
*/
2015-02-21 22:51:50 +03:00
namespace OC;
use bantu\IniGetWrapper\IniGetWrapper;
2015-02-21 22:51:50 +03:00
use Exception;
use OCP\IConfig;
use OCP\IL10N;
2011-04-17 02:45:05 +04:00
2015-02-21 22:51:50 +03:00
class Setup {
/** @var \OCP\IConfig */
protected $config;
/** @var IniGetWrapper */
protected $iniWrapper;
/** @var IL10N */
protected $l10n;
/** @var \OC_Defaults */
protected $defaults;
/**
* @param IConfig $config
* @param IniGetWrapper $iniWrapper
* @param \OC_Defaults $defaults
*/
function __construct(IConfig $config,
IniGetWrapper $iniWrapper,
IL10N $l10n,
\OC_Defaults $defaults) {
$this->config = $config;
$this->iniWrapper = $iniWrapper;
$this->l10n = $l10n;
$this->defaults = $defaults;
}
2013-06-27 22:19:51 +04:00
static $dbSetupClasses = array(
'mysql' => '\OC\Setup\MySQL',
'pgsql' => '\OC\Setup\PostgreSQL',
'oci' => '\OC\Setup\OCI',
'mssql' => '\OC\Setup\MSSQL',
'sqlite' => '\OC\Setup\Sqlite',
'sqlite3' => '\OC\Setup\Sqlite',
);
2013-02-09 22:23:36 +04:00
/**
* Wrapper around the "class_exists" PHP function to be able to mock it
* @param string $name
* @return bool
*/
public function class_exists($name) {
return class_exists($name);
}
/**
* Wrapper around the "is_callable" PHP function to be able to mock it
* @param string $name
* @return bool
*/
public function is_callable($name) {
return is_callable($name);
}
/**
* Get the available and supported databases of this instance
*
2015-03-11 17:47:24 +03:00
* @param bool $allowAllDatabases
* @return array
2015-03-11 17:47:24 +03:00
* @throws Exception
*/
2015-03-11 17:47:24 +03:00
public function getSupportedDatabases($allowAllDatabases = false) {
$availableDatabases = array(
'sqlite' => array(
'type' => 'class',
'call' => 'SQLite3',
'name' => 'SQLite'
),
'mysql' => array(
'type' => 'function',
'call' => 'mysql_connect',
'name' => 'MySQL/MariaDB'
),
'pgsql' => array(
'type' => 'function',
2014-10-30 12:37:59 +03:00
'call' => 'pg_connect',
'name' => 'PostgreSQL'
),
'oci' => array(
'type' => 'function',
'call' => 'oci_connect',
'name' => 'Oracle'
),
'mssql' => array(
'type' => 'function',
'call' => 'sqlsrv_connect',
'name' => 'MS SQL'
)
);
2015-03-11 17:47:24 +03:00
if ($allowAllDatabases) {
$configuredDatabases = array_keys($availableDatabases);
} else {
$configuredDatabases = $this->config->getSystemValue('supportedDatabases',
array('sqlite', 'mysql', 'pgsql'));
}
if(!is_array($configuredDatabases)) {
throw new Exception('Supported databases are not properly configured.');
}
$supportedDatabases = array();
foreach($configuredDatabases as $database) {
if(array_key_exists($database, $availableDatabases)) {
$working = false;
if($availableDatabases[$database]['type'] === 'class') {
$working = $this->class_exists($availableDatabases[$database]['call']);
} elseif ($availableDatabases[$database]['type'] === 'function') {
$working = $this->is_callable($availableDatabases[$database]['call']);
}
if($working) {
$supportedDatabases[$database] = $availableDatabases[$database]['name'];
}
}
}
return $supportedDatabases;
}
/**
* Gathers system information like database type and does
* a few system checks.
*
* @return array of system info, including an "errors" value
* in case of errors/warnings
*/
2015-03-11 17:47:24 +03:00
public function getSystemInfo($allowAllDatabases = false) {
$databases = $this->getSupportedDatabases($allowAllDatabases);
$dataDir = $this->config->getSystemValue('datadirectory', \OC::$SERVERROOT.'/data');
$errors = array();
// Create data directory to test whether the .htaccess works
// Notice that this is not necessarily the same data directory as the one
// that will effectively be used.
@mkdir($dataDir);
$htAccessWorking = true;
if (is_dir($dataDir) && is_writable($dataDir)) {
// Protect data directory here, so we can test if the protection is working
\OC\Setup::protectDataDirectory();
try {
$htAccessWorking = \OC_Util::isHtaccessWorking();
} catch (\OC\HintException $e) {
$errors[] = array(
'error' => $e->getMessage(),
'hint' => $e->getHint()
);
$htAccessWorking = false;
}
}
if (\OC_Util::runningOnMac()) {
$errors[] = array(
'error' => $this->l10n->t(
'Mac OS X is not supported and %s will not work properly on this platform. ' .
'Use it at your own risk! ',
$this->defaults->getName()
),
'hint' => $this->l10n->t('For the best results, please consider using a GNU/Linux server instead.')
);
}
if($this->iniWrapper->getString('open_basedir') !== '' && PHP_INT_SIZE === 4) {
$errors[] = array(
'error' => $this->l10n->t(
'It seems that this %s instance is running on a 32-bit PHP environment and the open_basedir has been configured in php.ini. ' .
'This will lead to problems with files over 4 GB and is highly discouraged.',
$this->defaults->getName()
),
'hint' => $this->l10n->t('Please remove the open_basedir setting within your php.ini or switch to 64-bit PHP.')
);
}
return array(
'hasSQLite' => isset($databases['sqlite']),
'hasMySQL' => isset($databases['mysql']),
'hasPostgreSQL' => isset($databases['pgsql']),
'hasOracle' => isset($databases['oci']),
'hasMSSQL' => isset($databases['mssql']),
'databases' => $databases,
'directory' => $dataDir,
'htaccessWorking' => $htAccessWorking,
'errors' => $errors,
);
}
/**
* @param $options
* @return array
*/
public function install($options) {
$l = $this->l10n;
2013-02-09 22:23:36 +04:00
$error = array();
2014-10-27 21:53:12 +03:00
$dbType = $options['dbtype'];
2012-08-29 10:38:33 +04:00
if(empty($options['adminlogin'])) {
2013-02-09 22:23:36 +04:00
$error[] = $l->t('Set an admin username.');
}
if(empty($options['adminpass'])) {
2013-02-09 22:23:36 +04:00
$error[] = $l->t('Set an admin password.');
}
if(empty($options['directory'])) {
2015-02-21 22:51:50 +03:00
$options['directory'] = \OC::$SERVERROOT."/data";
}
2011-08-07 23:06:53 +04:00
2014-10-27 21:53:12 +03:00
if (!isset(self::$dbSetupClasses[$dbType])) {
$dbType = 'sqlite';
2012-10-27 00:46:12 +04:00
}
$username = htmlspecialchars_decode($options['adminlogin']);
$password = htmlspecialchars_decode($options['adminpass']);
2014-10-27 21:53:12 +03:00
$dataDir = htmlspecialchars_decode($options['directory']);
2014-10-27 21:53:12 +03:00
$class = self::$dbSetupClasses[$dbType];
/** @var \OC\Setup\AbstractDatabase $dbSetup */
$dbSetup = new $class($l, 'db_structure.xml');
2013-06-27 22:19:51 +04:00
$error = array_merge($error, $dbSetup->validate($options));
2012-10-27 00:46:12 +04:00
// validate the data directory
if (
2014-10-27 21:53:12 +03:00
(!is_dir($dataDir) and !mkdir($dataDir)) or
!is_writable($dataDir)
) {
2014-10-27 21:53:12 +03:00
$error[] = $l->t("Can't create or write into the data directory %s", array($dataDir));
}
if(count($error) != 0) {
return $error;
2012-10-27 00:46:12 +04:00
}
$request = \OC::$server->getRequest();
//no errors, good
if(isset($options['trusted_domains'])
&& is_array($options['trusted_domains'])) {
$trustedDomains = $options['trusted_domains'];
} else {
$trustedDomains = [$request->getInsecureServerHost()];
}
2012-10-27 00:46:12 +04:00
2015-02-21 22:51:50 +03:00
if (\OC_Util::runningOnWindows()) {
2014-10-27 21:53:12 +03:00
$dataDir = rtrim(realpath($dataDir), '\\');
2012-10-27 00:46:12 +04:00
}
2014-10-27 21:53:12 +03:00
//use sqlite3 when available, otherwise sqlite2 will be used.
if($dbType=='sqlite' and class_exists('SQLite3')) {
$dbType='sqlite3';
2011-04-17 02:45:05 +04:00
}
//generate a random salt that is used to salt the local user passwords
$salt = \OC::$server->getSecureRandom()->getLowStrengthGenerator()->generate(30);
// generate a secret
$secret = \OC::$server->getSecureRandom()->getMediumStrengthGenerator()->generate(48);
2011-05-07 00:50:18 +04:00
//write the config file
$this->config->setSystemValues([
'passwordsalt' => $salt,
'secret' => $secret,
'trusted_domains' => $trustedDomains,
'datadirectory' => $dataDir,
2015-02-21 22:51:50 +03:00
'overwrite.cli.url' => $request->getServerProtocol() . '://' . $request->getInsecureServerHost() . \OC::$WEBROOT,
'dbtype' => $dbType,
2015-02-21 22:51:50 +03:00
'version' => implode('.', \OC_Util::getVersion()),
]);
try {
2013-06-27 22:19:51 +04:00
$dbSetup->initialize($options);
$dbSetup->setupDatabase($username);
} catch (\OC\DatabaseSetupException $e) {
$error[] = array(
'error' => $e->getMessage(),
'hint' => $e->getHint()
);
return($error);
} catch (Exception $e) {
$error[] = array(
'error' => 'Error while trying to create admin user: ' . $e->getMessage(),
'hint' => ''
);
return($error);
}
2012-10-27 00:46:12 +04:00
//create the user and group
2015-02-21 22:51:50 +03:00
$user = null;
try {
2015-02-21 22:51:50 +03:00
$user = \OC::$server->getUserManager()->createUser($username, $password);
if (!$user) {
$error[] = "User <$username> could not be created.";
}
2014-10-27 21:53:12 +03:00
} catch(Exception $exception) {
$error[] = $exception->getMessage();
2012-10-27 00:46:12 +04:00
}
if(count($error) == 0) {
2015-02-21 22:51:50 +03:00
$config = \OC::$server->getConfig();
$config->setAppValue('core', 'installedat', microtime(true));
$config->setAppValue('core', 'lastupdatedat', microtime(true));
2012-10-27 00:46:12 +04:00
2015-02-21 22:51:50 +03:00
$group =\OC::$server->getGroupManager()->createGroup('admin');
$group->addUser($user);
\OC_User::login($username, $password);
2012-10-27 00:46:12 +04:00
//guess what this does
2015-02-21 22:51:50 +03:00
\OC_Installer::installShippedApps();
2013-02-09 22:23:36 +04:00
// create empty file in data dir, so we can later find
// out that this is indeed an ownCloud data directory
2015-02-21 22:51:50 +03:00
file_put_contents($config->getSystemValue('datadirectory', \OC::$SERVERROOT.'/data').'/.ocdata', '');
// Update htaccess files for apache hosts
if (isset($_SERVER['SERVER_SOFTWARE']) && strstr($_SERVER['SERVER_SOFTWARE'], 'Apache')) {
self::updateHtaccess();
self::protectDataDirectory();
}
//try to write logtimezone
if (date_default_timezone_get()) {
OC_Config::setValue('logtimezone', date_default_timezone_get());
}
//and we are done
2015-02-21 22:51:50 +03:00
$config->setSystemValue('installed', true);
}
2012-10-27 00:46:12 +04:00
return $error;
}
2013-02-12 04:05:47 +04:00
/**
* @return string Absolute path to htaccess
*/
private function pathToHtaccess() {
2015-02-21 22:51:50 +03:00
return \OC::$SERVERROOT.'/.htaccess';
}
/**
* Checks if the .htaccess contains the current version parameter
*
* @return bool
*/
private function isCurrentHtaccess() {
$version = \OC_Util::getVersion();
unset($version[3]);
return !strpos(
file_get_contents($this->pathToHtaccess()),
'Version: '.implode('.', $version)
) === false;
}
/**
* Append the correct ErrorDocument path for Apache hosts
*
* @throws \OC\HintException If .htaccess does not include the current version
*/
public static function updateHtaccess() {
$setupHelper = new \OC\Setup(\OC::$server->getConfig(), \OC::$server->getIniWrapper(), \OC::$server->getL10N('lib'), new \OC_Defaults());
if(!$setupHelper->isCurrentHtaccess()) {
throw new \OC\HintException('.htaccess file has the wrong version. Please upload the correct version. Maybe you forgot to replace it after updating?');
}
2014-02-28 16:32:09 +04:00
$content = "\n";
2015-02-21 22:51:50 +03:00
$content.= "ErrorDocument 403 ".\OC::$WEBROOT."/core/templates/403.php\n";//custom 403 error page
$content.= "ErrorDocument 404 ".\OC::$WEBROOT."/core/templates/404.php";//custom 404 error page
@file_put_contents($setupHelper->pathToHtaccess(), $content, FILE_APPEND); //suppress errors in case we don't have permissions for it
}
public static function protectDataDirectory() {
//Require all denied
$now = date('Y-m-d H:i:s');
$content = "# Generated by ownCloud on $now\n";
$content.= "# line below if for Apache 2.4\n";
$content.= "<ifModule mod_authz_core.c>\n";
$content.= "Require all denied\n";
$content.= "</ifModule>\n\n";
$content.= "# line below if for Apache 2.2\n";
$content.= "<ifModule !mod_authz_core.c>\n";
$content.= "deny from all\n";
$content.= "Satisfy All\n";
$content.= "</ifModule>\n\n";
$content.= "# section for Apache 2.2 and 2.4\n";
$content.= "IndexIgnore *\n";
2015-02-21 22:51:50 +03:00
file_put_contents(\OC_Config::getValue('datadirectory', \OC::$SERVERROOT.'/data').'/.htaccess', $content);
file_put_contents(\OC_Config::getValue('datadirectory', \OC::$SERVERROOT.'/data').'/index.html', '');
}
2011-04-17 02:45:05 +04:00
}