nextcloud/inc/lib_config.php

<?php
class OC_CONFIG{
   /**
   * show the configform
   *
   */
  public static function showconfigform(){
    global $CONFIG_ADMINLOGIN;
    global $CONFIG_ADMINPASSWORD;
    global $CONFIG_DATADIRECTORY;
    global $CONFIG_HTTPFORCESSL;
    global $CONFIG_DATEFORMAT;
    global $CONFIG_DBHOST;
    global $CONFIG_DBNAME;
    global $CONFIG_DBUSER;
    global $CONFIG_DBPASSWORD;
    require('templates/configform.php');
  }

  /**
   * lisen for configuration changes and write it to the file
   *
   */
  public static function writeconfiglisener(){
    global $DOCUMENTROOT;
    global $WEBROOT;
    global $CONFIG_DBHOST;
    global $CONFIG_DBNAME;
    global $CONFIG_DBUSER;
    global $CONFIG_DBPASSWORD;
    global $CONFIG_ADMINLOGIN;
    global $CONFIG_ADMINPASSWORD;
    if(isset($_POST['set_config'])){

      //checkdata
      $error='';
      $FIRSTRUN=empty($CONFIG_ADMINLOGIN);
      if(!$FIRSTRUN){
         if($_POST['currentpassword']!=$CONFIG_ADMINPASSWORD){
            $error.='wrong password';
         }
      }
      
      if(!isset($_POST['adminlogin'])        or empty($_POST['adminlogin']))        $error.='admin login not set<br />';
      if(!isset($_POST['adminpassword'])     or empty($_POST['adminpassword']) and $FIRSTRUN)     $error.='admin password not set<br />';
      if(!isset($_POST['adminpassword2'])    or empty($_POST['adminpassword2']) and $FIRSTRUN)    $error.='retype admin password not set<br />';
      if(!isset($_POST['datadirectory'])     or empty($_POST['datadirectory']))     $error.='data directory not set<br />';
      if(!isset($_POST['dateformat'])        or empty($_POST['dateformat']))        $error.='dteformat not set<br />';
      if(!isset($_POST['dbhost'])            or empty($_POST['dbhost']))            $error.='database host not set<br />';
      if(!isset($_POST['dbname'])            or empty($_POST['dbname']))            $error.='databasename not set<br />';
      if(!isset($_POST['dbuser'])            or empty($_POST['dbuser']))            $error.='database user not set<br />';
      if(!isset($_POST['dbpassword'])        or empty($_POST['dbpassword']))        $error.='database password not set<br />';
      if(!isset($_POST['dbpassword2'])       or empty($_POST['dbpassword2']))       $error.='retype database password not set<br />';
      if($_POST['dbpassword']<>$_POST['dbpassword2'] )                              $error.='database passwords are not the same<br />';
      if($_POST['adminpassword']<>$_POST['adminpassword2'] )                        $error.='admin passwords are not the same<br />';
      
       if(!isset($_POST['adminpassword']) or empty($_POST['adminpassword']) and !$FIRSTRUN){
          $_POST['adminpassword']=$CONFIG_ADMINPASSWORD;
       }

      if(empty($error)) {
        //create/fill database
        $CONFIG_DBHOST=$_POST['dbhost'];
        $CONFIG_DBNAME=$_POST['dbname'];
        $CONFIG_DBUSER=$_POST['dbuser'];
        $CONFIG_DBPASSWORD=$_POST['dbpassword'];
        if(isset($_POST['createdatabase'])){
           self::createdatabase($_POST['dbadminuser'],$_POST['dbadminpwd']);
        }
        if(isset($_POST['filldb'])){
           self::filldatabase();
        }
      
        //storedata
        $config='<?php '."\n";
        $config.='$CONFIG_ADMINLOGIN=\''.$_POST['adminlogin']."';\n";
        $config.='$CONFIG_ADMINPASSWORD=\''.$_POST['adminpassword']."';\n";
        $config.='$CONFIG_DATADIRECTORY=\''.$_POST['datadirectory']."';\n";
        if(isset($_POST['forcessl'])) $config.='$CONFIG_HTTPFORCESSL=true'.";\n"; else $config.='$CONFIG_HTTPFORCESSL=false'.";\n";
        $config.='$CONFIG_DATEFORMAT=\''.$_POST['dateformat']."';\n";
        $config.='$CONFIG_DBHOST=\''.$_POST['dbhost']."';\n";
        $config.='$CONFIG_DBNAME=\''.$_POST['dbname']."';\n";
        $config.='$CONFIG_DBUSER=\''.$_POST['dbuser']."';\n";
        $config.='$CONFIG_DBPASSWORD=\''.$_POST['dbpassword']."';\n";
        $config.='?> ';

        $filename=$DOCUMENTROOT.'/config/config.php';
        file_put_contents($filename,$config);

        header("Location: ".$WEBROOT."/"); 

      }
      return($error);

    }

  }
  
  /**
   * Create the database and user
   * @param string adminUser
   * @param string adminPwd
   *
   */
  private static function createdatabase($adminUser,$adminPwd){
      global $CONFIG_DBHOST;
      global $CONFIG_DBNAME;
      global $CONFIG_DBUSER;
      global $CONFIG_DBPWD;
      //we cant user OC_BD functions here because we need to connect as the administrative user.
      $connection = @new mysqli($CONFIG_DBHOST, $adminUser, $adminPwd);
      if (mysqli_connect_errno()) {
         @ob_end_clean();
         echo('<html><head></head><body bgcolor="#F0F0F0"><br /><br /><center><b>can not connect to database as administrative user.</center></body></html>');
         exit();
      }
      $query="CREATE USER '{$_POST['dbuser']}' IDENTIFIED BY  '{$_POST['dbpassword']}';

CREATE DATABASE IF NOT EXISTS  `{$_POST['dbname']}` ;

GRANT ALL PRIVILEGES ON  `{$_POST['dbname']}` . * TO  '{$_POST['dbuser']}';";
      $result = @$connection->multi_query($query);
      if (!$result) {
         $entry='DB Error: "'.$connection->error.'"<br />';
         $entry.='Offending command was: '.$query.'<br />';
         echo($entry);
      }
      $connection->close();
   }
   
   /**
   * Fills the database with the initial tables
   *
   */
   private static function filldatabase(){
      $query="SET SQL_MODE=\"NO_AUTO_VALUE_ON_ZERO\";

CREATE TABLE IF NOT EXISTS `locks` (
  `token` varchar(255) NOT NULL DEFAULT '',
  `path` varchar(200) NOT NULL DEFAULT '',
  `expires` int(11) NOT NULL DEFAULT '0',
  `owner` varchar(200) DEFAULT NULL,
  `recursive` int(11) DEFAULT '0',
  `writelock` int(11) DEFAULT '0',
  `exclusivelock` int(11) NOT NULL DEFAULT '0',
  PRIMARY KEY (`token`),
  UNIQUE KEY `token` (`token`),
  KEY `path` (`path`),
  KEY `path_2` (`path`),
  KEY `path_3` (`path`,`token`),
  KEY `expires` (`expires`)
) ENGINE=MyISAM DEFAULT CHARSET=latin1;

CREATE TABLE IF NOT EXISTS `log` (
  `id` int(11) NOT NULL AUTO_INCREMENT,
  `timestamp` int(11) NOT NULL,
  `user` varchar(250) NOT NULL,
  `type` int(11) NOT NULL,
  `message` varchar(250) NOT NULL,
  PRIMARY KEY (`id`)
) ENGINE=MyISAM  DEFAULT CHARSET=latin1 AUTO_INCREMENT=15 ;


CREATE TABLE IF NOT EXISTS `properties` (
  `path` varchar(255) NOT NULL DEFAULT '',
  `name` varchar(120) NOT NULL DEFAULT '',
  `ns` varchar(120) NOT NULL DEFAULT 'DAV:',
  `value` text,
  PRIMARY KEY (`path`,`name`,`ns`),
  KEY `path` (`path`)
) ENGINE=MyISAM DEFAULT CHARSET=latin1;
";
      OC_DB::multiquery($query);
   }
}
?>
moved the config functions to /inc/lib_config.php 2010-03-16 22:25:05 +03:00			`<?php`
			`class OC_CONFIG{`
			`/**`
			`* show the configform`
			`*`
			`*/`
			`public static function showconfigform(){`
			`global $CONFIG_ADMINLOGIN;`
			`global $CONFIG_ADMINPASSWORD;`
			`global $CONFIG_DATADIRECTORY;`
			`global $CONFIG_HTTPFORCESSL;`
			`global $CONFIG_DATEFORMAT;`
			`global $CONFIG_DBHOST;`
			`global $CONFIG_DBNAME;`
			`global $CONFIG_DBUSER;`
			`global $CONFIG_DBPASSWORD;`
			`require('templates/configform.php');`
			`}`

			`/**`
			`* lisen for configuration changes and write it to the file`
			`*`
			`*/`
			`public static function writeconfiglisener(){`
			`global $DOCUMENTROOT;`
			`global $WEBROOT;`
			`global $CONFIG_DBHOST;`
			`global $CONFIG_DBNAME;`
			`global $CONFIG_DBUSER;`
			`global $CONFIG_DBPASSWORD;`
ask for current password when editing the settings 2010-03-18 23:37:25 +03:00			`global $CONFIG_ADMINLOGIN;`
			`global $CONFIG_ADMINPASSWORD;`
moved the config functions to /inc/lib_config.php 2010-03-16 22:25:05 +03:00			`if(isset($_POST['set_config'])){`

			`//checkdata`
			`$error='';`
ask for current password when editing the settings 2010-03-18 23:37:25 +03:00			`$FIRSTRUN=empty($CONFIG_ADMINLOGIN);`
			`if(!$FIRSTRUN){`
			`if($_POST['currentpassword']!=$CONFIG_ADMINPASSWORD){`
			`$error.='wrong password';`
			`}`
			`}`

moved the config functions to /inc/lib_config.php 2010-03-16 22:25:05 +03:00			`if(!isset($_POST['adminlogin']) or empty($_POST['adminlogin'])) $error.='admin login not set<br />';`
ask for current password when editing the settings 2010-03-18 23:37:25 +03:00			`if(!isset($_POST['adminpassword']) or empty($_POST['adminpassword']) and $FIRSTRUN) $error.='admin password not set<br />';`
			`if(!isset($_POST['adminpassword2']) or empty($_POST['adminpassword2']) and $FIRSTRUN) $error.='retype admin password not set<br />';`
moved the config functions to /inc/lib_config.php 2010-03-16 22:25:05 +03:00			`if(!isset($_POST['datadirectory']) or empty($_POST['datadirectory'])) $error.='data directory not set<br />';`
			`if(!isset($_POST['dateformat']) or empty($_POST['dateformat'])) $error.='dteformat not set<br />';`
			`if(!isset($_POST['dbhost']) or empty($_POST['dbhost'])) $error.='database host not set<br />';`
			`if(!isset($_POST['dbname']) or empty($_POST['dbname'])) $error.='databasename not set<br />';`
			`if(!isset($_POST['dbuser']) or empty($_POST['dbuser'])) $error.='database user not set<br />';`
			`if(!isset($_POST['dbpassword']) or empty($_POST['dbpassword'])) $error.='database password not set<br />';`
			`if(!isset($_POST['dbpassword2']) or empty($_POST['dbpassword2'])) $error.='retype database password not set<br />';`
			`if($_POST['dbpassword']<>$_POST['dbpassword2'] ) $error.='database passwords are not the same<br />';`
			`if($_POST['adminpassword']<>$_POST['adminpassword2'] ) $error.='admin passwords are not the same<br />';`
ask for current password when editing the settings 2010-03-18 23:37:25 +03:00
			`if(!isset($_POST['adminpassword']) or empty($_POST['adminpassword']) and !$FIRSTRUN){`
			`$_POST['adminpassword']=$CONFIG_ADMINPASSWORD;`
			`}`
moved the config functions to /inc/lib_config.php 2010-03-16 22:25:05 +03:00
			`if(empty($error)) {`
			`//create/fill database`
			`$CONFIG_DBHOST=$_POST['dbhost'];`
			`$CONFIG_DBNAME=$_POST['dbname'];`
			`$CONFIG_DBUSER=$_POST['dbuser'];`
			`$CONFIG_DBPASSWORD=$_POST['dbpassword'];`
			`if(isset($_POST['createdatabase'])){`
			`self::createdatabase($_POST['dbadminuser'],$_POST['dbadminpwd']);`
			`}`
			`if(isset($_POST['filldb'])){`
			`self::filldatabase();`
			`}`

			`//storedata`
			`$config='<?php '."\n";`
			`$config.='$CONFIG_ADMINLOGIN=\''.$_POST['adminlogin']."';\n";`
			`$config.='$CONFIG_ADMINPASSWORD=\''.$_POST['adminpassword']."';\n";`
			`$config.='$CONFIG_DATADIRECTORY=\''.$_POST['datadirectory']."';\n";`
			`if(isset($_POST['forcessl'])) $config.='$CONFIG_HTTPFORCESSL=true'.";\n"; else $config.='$CONFIG_HTTPFORCESSL=false'.";\n";`
			`$config.='$CONFIG_DATEFORMAT=\''.$_POST['dateformat']."';\n";`
			`$config.='$CONFIG_DBHOST=\''.$_POST['dbhost']."';\n";`
			`$config.='$CONFIG_DBNAME=\''.$_POST['dbname']."';\n";`
			`$config.='$CONFIG_DBUSER=\''.$_POST['dbuser']."';\n";`
			`$config.='$CONFIG_DBPASSWORD=\''.$_POST['dbpassword']."';\n";`
			`$config.='?> ';`

			`$filename=$DOCUMENTROOT.'/config/config.php';`
			`file_put_contents($filename,$config);`

			`header("Location: ".$WEBROOT."/");`

			`}`
			`return($error);`

			`}`

			`}`

			`/**`
			`* Create the database and user`
			`* @param string adminUser`
			`* @param string adminPwd`
			`*`
			`*/`
			`private static function createdatabase($adminUser,$adminPwd){`
			`global $CONFIG_DBHOST;`
			`global $CONFIG_DBNAME;`
			`global $CONFIG_DBUSER;`
			`global $CONFIG_DBPWD;`
			`//we cant user OC_BD functions here because we need to connect as the administrative user.`
			`$connection = @new mysqli($CONFIG_DBHOST, $adminUser, $adminPwd);`
			`if (mysqli_connect_errno()) {`
			`@ob_end_clean();`
			`echo('<html><head></head><body bgcolor="#F0F0F0"><br /><br /><center><b>can not connect to database as administrative user.</center></body></html>');`
			`exit();`
			`}`
			`$query="CREATE USER '{$_POST['dbuser']}' IDENTIFIED BY '{$_POST['dbpassword']}';`

			CREATE DATABASE IF NOT EXISTS `{$_POST['dbname']}` ;

			GRANT ALL PRIVILEGES ON `{$_POST['dbname']}` . * TO '{$_POST['dbuser']}';";
			`$result = @$connection->multi_query($query);`
			`if (!$result) {`
			`$entry='DB Error: "'.$connection->error.'"<br />';`
			`$entry.='Offending command was: '.$query.'<br />';`
			`echo($entry);`
			`}`
			`$connection->close();`
			`}`

			`/**`
			`* Fills the database with the initial tables`
			`*`
			`*/`
			`private static function filldatabase(){`
			`$query="SET SQL_MODE=\"NO_AUTO_VALUE_ON_ZERO\";`

			CREATE TABLE IF NOT EXISTS `locks` (
			`token` varchar(255) NOT NULL DEFAULT '',
			`path` varchar(200) NOT NULL DEFAULT '',
			`expires` int(11) NOT NULL DEFAULT '0',
			`owner` varchar(200) DEFAULT NULL,
			`recursive` int(11) DEFAULT '0',
			`writelock` int(11) DEFAULT '0',
			`exclusivelock` int(11) NOT NULL DEFAULT '0',
			PRIMARY KEY (`token`),
			UNIQUE KEY `token` (`token`),
			KEY `path` (`path`),
			KEY `path_2` (`path`),
			KEY `path_3` (`path`,`token`),
			KEY `expires` (`expires`)
			`) ENGINE=MyISAM DEFAULT CHARSET=latin1;`

			CREATE TABLE IF NOT EXISTS `log` (
			`id` int(11) NOT NULL AUTO_INCREMENT,
			`timestamp` int(11) NOT NULL,
			`user` varchar(250) NOT NULL,
			`type` int(11) NOT NULL,
			`message` varchar(250) NOT NULL,
			PRIMARY KEY (`id`)
			`) ENGINE=MyISAM DEFAULT CHARSET=latin1 AUTO_INCREMENT=15 ;`


			CREATE TABLE IF NOT EXISTS `properties` (
			`path` varchar(255) NOT NULL DEFAULT '',
			`name` varchar(120) NOT NULL DEFAULT '',
			`ns` varchar(120) NOT NULL DEFAULT 'DAV:',
			`value` text,
			PRIMARY KEY (`path`,`name`,`ns`),
			KEY `path` (`path`)
			`) ENGINE=MyISAM DEFAULT CHARSET=latin1;`
			`";`
			`OC_DB::multiquery($query);`
			`}`
			`}`
			`?>`