Просмотр файла setup/index.php

Конкурс дизайнеров на 15000 рублей
Сервис интернет рекламы
Размер файла: 10.26Kb 
  1. <?php
  2. /**********************************
  3. *	@package: PerfCMS			  *
  4. *	@year: 2012					  *
  5. *	@author: Artas				  *
  6. *	@link: http://perfcms.ru	  *
  7. **********************************/
  8. session_name('PSID');
  9. session_start();
  10. // error_reporting(0);
  11. define('SYS', realpath(dirname(__FILE__)).'/system');
  12. ?>
  13. <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
  14.     "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
  15. <html xmlns="http://www.w3.org/1999/xhtml" xml:lang="uk" lang="uk">
  16. <head>
  17. <title>Installing PerfCMS 1.5.1</title>
  18. <link href="/template/themes/wap/default/style.css" rel="stylesheet" type="text/css" />
  19. </head>
  20. <body>
  21. <div class="main">
  22. <div class="panel">Installing PerfCMS 1.5.1</div>
  23. <?
  24. if(file_exists('../system/ini/db.ini') && !file_exists('../system/ini/install.txt')) {
  25. 	echo '<div class="post">
  26. 			PerfCMS already installed!
  27. 		</div>
  28. 		<div class="block">
  29. 			<a href="/">Home Page</a>
  30. 		</div>';
  31. 	} else {
  32. if(!isset($_GET['lang'])) {
  33. echo '<div class="post">
  34. 	Choose Installing language:<br/>
  35. 	<a href="/setup/?lang=uk">Українська</a><br/>
  36. 	<a href="/setup/?lang=ru">Русский</a><br/>
  37. 	<a href="/setup/?lang=en">English</a><br/>
  38. 	</div>';
  39. 	} 
  40. else
  41. 	{
  42. 	if(file_exists('lang/'. trim($_GET['lang']).'.ini')) {
  43. 		$lang = parse_ini_file('lang/'. trim($_GET['lang']).'.ini');
  44. 		$lng = trim($_GET['lang']);
  45. 	} else {
  46. 		$lang = parse_ini_file('lang/en.ini');
  47. 		$lng = 'en';
  48. 	}
  49. if(isset($_GET['lang']) && !isset($_GET['act'])) {
  50. echo '<div class="post">'. $lang['welcome'] .'<br/>
  51. 		[ <a href="/setup/?act=start&amp;lang='. $lng .'">'. $lang['agree'] .'</a> | <a href="/setup/">'. $lang['nagree'] .'</a> ]</div>';
  52. 	} 
  53. elseif(isset($_GET['lang']) && $_GET['act'] == 'start')
  54. 	{
  55. 		$chmods =  array('../files/', '../files/share/', '../files/avatars/', '../files/forum/', '../system/ini/', '../system/lang/', '../system/lang/uk/', '../system/lang/en/', '../system/lang/ru/', '../tmp/');
  56. 		echo '<div class="post">
  57. 		<table>
  58. 		<tr>
  59. 		<td><b>'. $lang['fdir'] .'</b></td>
  60. 		<td><b>'. $lang['chmods'] .'</b></td>
  61. 		</tr>
  62. 		<tr>';
  63. 		 foreach ($chmods as $chmod) {
  64.         echo '<tr>
  65.         <td>'. str_replace('../', '', $chmod) .'</td>';
  66.         
  67.         if (is_writable(trim($chmod))) {
  68.           echo '<td><span style="color: green"><b>OK (777)</b></span></td>';
  69. 		  $err = false;
  70.         } else {
  71.           echo '<td><span style="color: red">'.$lang['must_chmods'].' 777</span></td>';
  72.                     
  73.           $err = TRUE;
  74.         }
  75.         echo '</tr>';
  76.       }
  77.       echo '</tr>
  78.       </table>
  79.       '. ($err == TRUE?'<a href="?act=start&amp;lang='. $lng .'">'.$lang['refresh'].'</a>':'<a href="?act=db&amp;lang='. $lng .'">'.$lang['next'].'</a>') .'    
  80.       </div>
  81.       <div class="block">
  82.       <a href="?lang='. $lng .'">'.$lang['back'].'</a>
  83.       </div>';
  84. 	} 
  85. elseif(isset($_GET['lang']) && $_GET['act'] == 'db')
  86. 	{
  87. 	if (isset($_POST['go'])) {
  88.         $host = htmlspecialchars(trim($_POST['host']));
  89.         $user = htmlspecialchars(trim($_POST['user']));
  90.         $pass = htmlspecialchars(trim($_POST['pass']));
  91.         $base = htmlspecialchars(trim($_POST['base']));
  92.         
  93.         if (empty($host)) $err .= $lang['empty_host'].'<br />';
  94.         if (empty($user)) $err .= $lang['empty_user'].'<br />';
  95.         if (empty($base)) $err .= $lang['empty_base'].'<br />';
  96.         if(!isset($err)) {
  97.         try {
  98. 				$db = new PDO('mysql:dbname='.$_POST['base'].';host='. $_POST['host'], $_POST['user'], $_POST['pass']);
  99. 			} catch (PDOException $e) {
  100. 					echo 'Connection failed: ' . $e->getMessage();
  101. 			}
  102.         }
  103.         if (!isset($err)) {
  104.           $db->query("SET NAMES utf8");
  105.           $cini =    "host = \"$host\";\n"	
  106. 					."user = \"$user\";\n"
  107. 					."pass = \"$pass\";\n"
  108. 					."base = \"$base\";\n";
  109. 			file_put_contents('../system/ini/db.ini', $cini);
  110. 			$dump = file_get_contents('./setup.sql');
  111. 			$queryes = explode('-- --------------------------------------------------------', $dump);
  112. 			foreach($queryes as $query) {
  113.                 	$db->query(trim($query));
  114.                	}
  115.           
  116.           echo '<div class="title">'.$lang['c_create'].'</div>
  117.           <div class="menu">
  118.           '.$lang['after_t'].'<br />
  119.           <a href="?act=admin&amp;lang='. $lng .'">'.$lang['next'].'</a>
  120.           </div>
  121.           
  122.           <div class="block">
  123.           <a href="?act=db&amp;lang='. $lng .'">'.$lang['back'].'</a>
  124.           </div>
  125.           <div class="footer">PerfCMS 1.5.1, 2012</div>
  126. </div>
  127. </body>
  128. </html>';
  129.     
  130.           exit();
  131.         }
  132.       }
  133.       
  134.       if (isset($err)) echo '<div class="error">'. $err .'</div>';
  135.     
  136.       echo '<form method="post" action="?act=db&amp;lang='. $lng .'">
  137.       <div class="title">'.$lang['connection'].'</div>
  138.       <div class="menu">
  139.       '.$lang['host'].':<br />
  140.       <input type="text" name="host" value="localhost" /><br />
  141.       '.$lang['user'].':<br />
  142.       <input type="text" name="user" /><br />
  143.       '.$lang['pass'].':<br />
  144.       <input type="password" name="pass" /><br />
  145.       '.$lang['base'].':<br />
  146.       <input type="text" name="base" /><br />
  147.       <input type="submit" name="go" value="'.$lang['send'].'" />
  148.       </div>
  149.       </form>
  150.       
  151.       <div class="block">
  152.       <a href="?act=start&amp;lang='. $lng .'">'.$lang['back'].'</a>
  153.       </div>';
  154. 	}
  155. elseif(isset($_GET['lang']) && $_GET['act'] == 'admin')
  156. 	{
  157. 	if (isset($_POST['reg_admin'])) {
  158.         $nick = htmlspecialchars(trim($_POST['nick']));
  159.         $name = htmlspecialchars(trim($_POST['name']));
  160.         $email = htmlspecialchars(trim($_POST['email']));
  161.         $password = htmlspecialchars(trim($_POST['password']));
  162.         $password2 = htmlspecialchars(trim($_POST['password2']));
  163.         
  164.         if (empty($nick)) $err .= $lang['no_nick'].'<br />';
  165.         if (empty($name)) $err .= $lang['no_name'].'<br />';
  166.         if (empty($email)) $err .= $lang['no_email'].'<br />';
  167.         if (empty($password)) $err .= $lang['no_pass'].'<br />';
  168.         if (empty($password2)) $err .= $lang['no_pass2'].'<br />';
  169.         
  170.         if (!empty($nick) && (mb_strlen($nick, 'UTF-8') < 3 || mb_strlen($nick, 'UTF-8') > 32)) $err .= $lang['e_nick'].'<br />';        
  171.         if (!empty($nick) && !preg_match("#^([A-zА-я0-9\-\_\ ])+$#ui", $nick)) $err .= $lang['b_nick'].'<br />';        
  172.         if (!empty($name) && (mb_strlen($name, 'UTF-8') > 32)) $err .= $lang['e_name'].'<br />';        
  173.         if (!empty($email) && (mb_strlen($email, 'UTF-8') < 3 || mb_strlen($email, 'UTF-8') > 72)) $err .= $lang['b_mail'].'<br />';
  174.         if (!empty($email) && !preg_match('|^([a-z0-9_\.\-]{1,20})@([a-z0-9\.\-]{1,20})\.([a-z]{2,4})$|ius', $email)) $err .= $lang['e_email'].'<br />';        
  175.         if (!empty($password) && (mb_strlen($password, 'UTF-8') < 5 || mb_strlen($password, 'UTF-8') > 64)) $err .= $lang['e_pass'].'<br />';        
  176.         if (!empty($password) && !empty($password2) && $password != $password2) $err .= $lang['e_pass2'].'<br />';        
  177.         if (!isset($err)) {
  178.  
  179.           function crypto($var) {
  180.             return md5(base64_encode($var) .'_PerfCMS_');
  181.           }
  182.         
  183.           # Кодуємо пароль
  184.           $password = crypto($password);
  185.           
  186.           $mysql = parse_ini_file('../system/ini/db.ini');
  187. 			try {
  188. 				$db = new PDO('mysql:dbname='.$mysql['base'].';host='. $mysql['host'], $mysql['user'], $mysql['pass']);
  189. 			} catch (PDOException $e) {
  190. 					echo 'Connection failed: ' . $e->getMessage();
  191. 			}
  192.           $db->query("SET NAMES utf8");
  193.         
  194. 		function escape($inp)
  195. 	{ 
  196.      if(is_array($inp)) 
  197.          return array_map(__METHOD__, $inp); 
  198.  
  199.      if(!empty($inp) && is_string($inp)) { 
  200.          return str_replace(array('\\', "\0", "\n", "\r", "'", '"', "\x1a"), array('\\', '\0', '\n', '\r', "\'", '\"', '\Z'), $inp); 
  201.      } 
  202.  
  203.      return $inp; 
  204. 	}
  205. 		
  206.           # Запит на реєстрацію
  207.           $db->query("INSERT INTO `users` SET `name` = '". escape(trim($name)) ."', `nick` = '". escape(trim($nick)) ."', `password` = '". escape(trim($password)) ."', `reg_time` = '". time() ."', `time` = '". time() ."', `email` = '". escape(trim($email)) ."', `level` = '7', `gender`='0'");
  208. 		  $language = $lng;
  209. 		  $db->query("INSERT INTO `settings` SET `user_id` = '". $db->lastInsertId() ."', `lang` = '". $language ."', `ames` = '10', `theme` = 'default', `web_theme` = 'default', `fast_mess` = 'no', `view_profile` = 'all', `show_email` = 'no', `timezone` = 'Europe/Kiev'");
  210. 		  $db->query("UPDATE `system` SET `lang` = '$language'");
  211. 		  // print_r($db->errorInfo());
  212.           unlink('../system/ini/install.txt');
  213.           session_destroy();
  214.           
  215.           echo '<div class="title">'.$lang['end_i'].'</div>
  216.           <div class="menu">
  217.           '.$lang['end_i_t'].' <b>/setup/</b>.<br />
  218.           <a href="/sign_in/?nick='. $nick .'&amp;password='. $password2 .'">'.$lang['go_site'].'</a>
  219.           </div>
  220.           
  221.           <div class="block">
  222.           <a href="?act=admin&amp;lang='. $lng .'">'.$lang['back'].'</a>
  223.           </div>          
  224.           </div>
  225. 		  <div class="footer">PerfCMS 1.5.1, 2012</div>
  226. </div>
  227. </body>
  228. </html>';
  229.     
  230.           exit();
  231.         }         
  232.       }
  233.     
  234.       if (isset($err)) echo '<div class="err">'. $err .'</div>';
  235.       
  236.       echo '<form method="post" action="?act=admin&amp;lang='. $lng .'">
  237.       <div class="title">Administration Registration</div>
  238.       <div class="menu">
  239.       '.$lang['nick'].':<br />
  240.       <input type="text" name="nick" value="'. htmlspecialchars($_POST['nick']) .'" /><br />
  241.       '.$lang['name'].':<br />
  242.       <input type="text" name="name" value="'. htmlspecialchars($_POST['name']) .'" /><br />
  243.       E-Mail:<br />
  244.       <input type="text" name="email" value="'. htmlspecialchars($_POST['email']) .'" /><br />
  245.       '.$lang['password'].':<br />
  246.       <input type="password" name="password" /><br />
  247.       '.$lang['password2'].':<br />
  248.       <input type="password" name="password2" /><br />
  249.       <input type="submit" name="reg_admin" value="'.$lang['sign_up'].'" />
  250.       </div>
  251.       </form>
  252.       
  253.       <div class="block">
  254.       <a href="?act=db&amp;lang='. $lng .'">'.$lang['back'].'</a>
  255.       </div>';
  256.  
  257.   }
  258. }
  259. }
  260. ?>
  261. <div class="footer">PerfCMS 1.5.1, 2012</div>
  262. </div>
  263. </body>
  264. </html>