Home Explore Help
Sign In
Banana
/
insipid
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Branch: develop
Branches Tags
insipid
/
webroot
/
index.php

index.php 3.6 KB
Permalink History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124 
  1. <?php
    2. 

  2. /**
    3. 

  3.  * Insipid
    4. 

  4.  * Personal web-bookmark-system
    5. 

  5.  *
    6. 

  6.  * Copyright 2016-2023 Johannes Keßler
    7. 

  7.  *
    8. 

  8.  * Development starting from 2011: Johannes Keßler
    9. 

  9.  * https://www.bananas-playground.net/projekt/insipid/
    10. 

  10.  *
    11. 

  11.  * creator:
    12. 

  12.  * Luke Reeves <luke@neuro-tech.net>
    13. 

  13.  *
    14. 

  14.  * This program is free software: you can redistribute it and/or modify
    15. 

  15.  * it under the terms of the GNU General Public License as published by
    16. 

  16.  * the Free Software Foundation, either version 3 of the License, or
    17. 

  17.  * (at your option) any later version.
    18. 

  18.  *
    19. 

  19.  * This program is distributed in the hope that it will be useful,
    20. 

  20.  * but WITHOUT ANY WARRANTY; without even the implied warranty of
    21. 

  21.  * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
    22. 

  22.  * GNU General Public License for more details.
    23. 

  23.  *
    24. 

  24.  * You should have received a copy of the GNU General Public License
    25. 

  25.  * along with this program.  If not, see http://www.gnu.org/licenses/gpl-3.0.
    26. 

  26.  *
    27. 

  27.  */
    28. 

  28. 

  29. mb_http_output('UTF-8');
    30. 

  30. mb_internal_encoding('UTF-8');
    31. 

  31. error_reporting(-1); // E_ALL & E_STRICT
    32. 

  32. require('config.php');
    33. 

  33. date_default_timezone_set(TIMEZONE);
    34. 

  34. 

  35. ## check request
    36. 

  36. $_urlToParse = filter_var($_SERVER['QUERY_STRING'],FILTER_UNSAFE_RAW, FILTER_FLAG_STRIP_LOW);
    37. 

  37. if(!empty($_urlToParse)) {
    38. 

  38.     # see http://de2.php.net/manual/en/regexp.reference.unicode.php
    39. 

  39.     if(preg_match('/[\p{C}\p{M}\p{Sc}\p{Sk}\p{So}\p{Zl}\p{Zp}]/u',$_urlToParse) === 1) {
    40. 

  40.         die('Malformed request. Make sure you know what you are doing.');
    41. 

  41.     }
    42. 

  42. }
    43. 

  43. 

  44. ## set the error reporting
    45. 

  45. ini_set('log_errors',true);
    46. 

  46. if(DEBUG === true) {
    47. 

  47.     ini_set('display_errors',true);
    48. 

  48. }
    49. 

  49. else {
    50. 

  50.     ini_set('display_errors',false);
    51. 

  51. }
    52. 

  52. 

  53. require('lib/summoner.class.php');
    54. 

  54. require('lib/management.class.php');
    55. 

  55. require('lib/tag.class.php');
    56. 

  56. require('lib/category.class.php');
    57. 

  57. require('lib/link.class.php');
    58. 

  58. require('lib/translation.class.php');
    59. 

  59. 

  60. ## main vars
    61. 

  61. $Summoner = new Summoner();
    62. 

  62. # the template data as an array
    63. 

  63. $TemplateData = array();
    64. 

  64. # translation
    65. 

  65. $T = new Translation();
    66. 

  66. # the default view
    67. 

  67. $View = 'home.php';
    68. 

  68. # the default script
    69. 

  69. $ViewScript = 'home.inc.php';
    70. 

  70. 

  71. # if the USE_PAGE_AUTH option is set
    72. 

  72. if(defined("USE_PAGE_AUTH") && USE_PAGE_AUTH === true) {
    73. 

  73.     # very simple security check.
    74. 

  74.     # can/should be extended in the future.
    75. 

  75.     Summoner::simpleAuth();
    76. 

  76. }
    77. 

  77. 

  78. ## DB connection
    79. 

  79. $DB = new mysqli(DB_HOST, DB_USERNAME,DB_PASSWORD, DB_NAME);
    80. 

  80. if ($DB->connect_errno) exit('Can not connect to MySQL Server');
    81. 

  81. $DB->set_charset("utf8mb4");
    82. 

  82. $DB->query("SET collation_connection = 'utf8mb4_bin'");
    83. 

  83. $driver = new mysqli_driver();
    84. 

  84. $driver->report_mode = MYSQLI_REPORT_ERROR | MYSQLI_REPORT_STRICT;;
    85. 

  85. 

  86. # management needs the DB object
    87. 

  87. $Management = new Management($DB);
    88. 

  88. if($Summoner::simpleAuthCheck() === true) {
    89. 

  89. 	$Management->setShowPrivate(true);
    90. 

  90. }
    91. 

  91. 

  92. if(isset($_GET['p']) && !empty($_GET['p'])) {
    93. 

  93.     $_requestPage = trim($_GET['p']);
    94. 

  94.     $_requestPage = Summoner::validate($_requestPage,'nospace') ? $_requestPage : "home";
    95. 

  95. 

  96.     $ViewScript = $_requestPage.'.inc.php';
    97. 

  97.     $View = $_requestPage.'.php';
    98. 

  98. }
    99. 

  99. 

  100. # now include the script
    101. 

  101. # this sets information into $Data and can overwrite $View
    102. 

  102. if(file_exists('view/'.$ViewScript)) {
    103. 

  103.     require 'view/'.$ViewScript;
    104. 

  104. }
    105. 

  105. 

  106. if(!empty($TemplateData['refresh'])) {
    107. 

  107.     header("Location: ".$TemplateData['refresh']);
    108. 

  108. 	exit();
    109. 

  109. }
    110. 

  110. 

  111. # header information
    112. 

  112. header('Content-type: text/html; charset=UTF-8');
    113. 

  113. if($Summoner::simpleAuthCheck() === true || !empty($TemplateData['nocacheHeader'])) {
    114. 

  114. 	header("Cache-Control: no-store, no-cache, must-revalidate, max-age=0");
    115. 

  115. 	header("Cache-Control: post-check=0, pre-check=0", false);
    116. 

  116. 	header("Pragma: no-cache");
    117. 

  117. }
    118. 

  118. 

  119. require 'view/_head.php';
    120. 

  120. require 'view/'.$View;
    121. 

  121. require 'view/_foot.php';
    122. 

  122. 

  123. $DB->close();
    124. 

  124. # END
    125.