[platal.git] / modules / core.php

<?php
/***************************************************************************
 *  Copyright (C) 2003-2008 Polytechnique.org                              *
 *  http://opensource.polytechnique.org/                                   *
 *                                                                         *
 *  This program is free software; you can redistribute it and/or modify   *
 *  it under the terms of the GNU General Public License as published by   *
 *  the Free Software Foundation; either version 2 of the License, or      *
 *  (at your option) any later version.                                    *
 *                                                                         *
 *  This program is distributed in the hope that it will be useful,        *
 *  but WITHOUT ANY WARRANTY; without even the implied warranty of         *
 *  MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the          *
 *  GNU General Public License for more details.                           *
 *                                                                         *
 *  You should have received a copy of the GNU General Public License      *
 *  along with this program; if not, write to the Free Software            *
 *  Foundation, Inc.,                                                      *
 *  59 Temple Place, Suite 330, Boston, MA  02111-1307  USA                *
 ***************************************************************************/

class CoreModule extends PLModule
{
    function handlers()
    {
        return array(
            '403'         => $this->make_hook('403', AUTH_PUBLIC),
            '404'         => $this->make_hook('404', AUTH_PUBLIC),
            'login'       => $this->make_hook('login',      AUTH_COOKIE),
            'send_bug'    => $this->make_hook('bug', AUTH_COOKIE),
            'purge_cache' => $this->make_hook('purge_cache', AUTH_COOKIE, 'admin'),
            'kill_sessions' => $this->make_hook('kill_sessions', AUTH_COOKIE, 'admin'),
            'sql_errors'  => $this->make_hook('sqlerror', AUTH_COOKIE, 'admin'),
            'get_rights'  => $this->make_hook('get_rights', AUTH_MDP, 'admin'),

            'wiki_help'    => $this->make_hook('wiki_help', AUTH_PUBLIC),
            'wiki_preview' => $this->make_hook('wiki_preview', AUTH_COOKIE, 'user', NO_AUTH),

            'valid.html'  => $this->make_hook('valid', AUTH_PUBLIC),
            'favicon.ico' => $this->make_hook('favicon', AUTH_PUBLIC),
            'robots.txt'  => $this->make_hook('robotstxt', AUTH_PUBLIC, 'user', NO_HTTPS),
        );
    }

    function handler_valid(&$page)
    {
        readfile($page->compile_dir.'/valid.html');
        exit;
    }

    function handler_403(&$page)
    {
        global $globals;
        header($_SERVER['SERVER_PROTOCOL'] . ' 403 Forbidden');
        $page->trigError('Tu n\'as pas les permissions nécessaires pour accéder à cette page.');
        $page->coreTpl('403.tpl');
    }

    function handler_404(&$page)
    {
        global $globals, $platal;
        header($_SERVER['SERVER_PROTOCOL'] . ' 404 Not Found');
        $page->coreTpl('404.tpl');
        $page->assign('near', $platal->near_hook());
        $page->trigError('Cette page n\'existe pas !!!');
    }

    function handler_login(&$page)
    {
        $allkeys = func_get_args();
        unset($allkeys[0]);
        $url = join('/',$allkeys);
        pl_redirect($url);
    }

    function handler_favicon(&$page)
    {
        global $globals;
        $data = file_get_contents($globals->spoolroot . '/htdocs/images/favicon.ico');
        header('Content-Type: image/x-icon');
        echo $data;
        exit;
    }

    function handler_robotstxt(&$page)
    {
        global $globals;

        $disallowed_uris = array();
        if ($globals->core->restricted_platal) {
            $disallowed_uris[] = '/';
        } else if (!empty($globals->core->robotstxt_disallowed_uris)) {
            $disallowed_uris = preg_split('/[\s,]+/',
                                          $globals->core->robotstxt_disallowed_uris,
                                          -1, PREG_SPLIT_NO_EMPTY);
        }

        if (count($disallowed_uris) > 0) {
            header('Content-Type: text/plain');
            echo "User-agent: *\n";
            foreach ($disallowed_uris as $uri) {
                echo "Disallow: $uri\n";
            }
            exit;
        }
        return PL_NOT_FOUND;
    }

    function handler_purge_cache(&$page)
    {
        S::assert_xsrf_token();

        $page->clear_compiled_tpl();
        PlWikiPage::clearCache();

        http_redirect(empty($_SERVER['HTTP_REFERER']) ? './' : $_SERVER['HTTP_REFERER']);
    }

    function handler_kill_sessions(&$page)
    {
        kill_sessions();
    }

    function handler_get_rights(&$page, $level)
    {
        if (S::has('suid')) {
            $page->kill('Déjà en SUID');
        }

        if (isset($_SESSION['log'])) {
            if (S::user()) {
                S::logger()->log("suid_start", "login by " . S::user()->login());
            } else {
                // TODO(vzanotti): trash that code when support of forlife will be gone.
                S::logger()->log("suid_start", "login by ".S::v('forlife'));
            }
        }
        Platal::session()->startSUID(S::i('uid'));
        Platal::session()->makePerms($level);

        pl_redirect('/');
    }

    function handler_bug(&$page)
    {
        global $globals;

        if (empty($_SERVER['HTTP_REFERER'])) {
            // We don't have a valid referer, we need to use the url
            list($currentPage, $location) = explode('//', $_SERVER['REQUEST_URI'], 2);

            $location = 'http'.(empty($_SERVER['HTTPS']) ? '' : 's').'://'.$_SERVER['SERVER_NAME'].'/'.$location;
        } else {
            $location = $_SERVER['HTTP_REFERER'];
        }

        $page->coreTpl('bug.tpl', SIMPLE);
        $page->assign('location', $location);
        $page->addJsLink('close_on_esc.js');

        if (Env::has('send') && trim(Env::v('detailed_desc'))) {
            S::assert_xsrf_token();

            // TODO(vzanotti): trash the 'forlife' bit when support of forlife will be gone.
            $body = wordwrap(Env::v('detailed_desc'), 78) . "\n\n"
                  . "----------------------------\n"
                  . "Page        : " . Env::v('page') . "\n\n"
                  . "Utilisateur : " . (S::user() ? S::user()->login() : S::v('forlife')) . "\n"
                  . "Navigateur  : " . $_SERVER['HTTP_USER_AGENT'] . "\n"
                  . "Skin        : " . S::v('skin') . "\n";
            $page->assign('bug_sent', 1);
            $page->trigSuccess('Ton message a bien été envoyé au support de ' . $globals->core->sitename
                             . ', tu devrais en recevoir une copie d\'ici quelques minutes. Nous allons '
                             . 'le traiter et y répondre dans les plus brefs délais.');
            $mymail = new PlMailer();
            // TODO(vzanotti): trash the 'bestalias' bits when support of bestalias will be gone.
            if (S::user()) {
                $mymail->setFrom(sprintf('"%s" <%s>', S::user()->fullName(), S::user()->bestEmail()));
                $mymail->addCc(sprintf('"%s" <%s>', S::user()->fullName(), S::user()->bestEmail()));
            } else {
                $mymail->setFrom('"'.S::v('prenom').' '.S::v('nom').'" <'.S::v('bestalias').'@' . $globals->mail->domain . '>');
                $mymail->addCc('"'.S::v('prenom').' '.S::v('nom').'" <'.S::v('bestalias').'@' . $globals->mail->domain . '>');
            }
            $mymail->addTo('support+platal@' . $globals->mail->domain);
            $mymail->setSubject('Plat/al '.Env::v('task_type').' : '.Env::v('item_summary'));
            $mymail->setTxtBody($body);
            $mymail->send();
        } elseif (Env::has('send')) {
            $page->trigError("Merci de remplir une explication du problème rencontré.");
        }
    }

    function handler_wiki_help(&$page, $action = 'title')
    {
        $page->coreTpl('wiki.help.tpl', SIMPLE);
        $page->assign('wiki_help', MiniWiki::help($action == 'title'));
    }

    /// Shared handler for wiki syntax result preview
    function handler_wiki_preview(&$page, $action = 'title')
    {
        header('Content-Type: text/html; charset=utf-8');
        $text = Env::v('text');
        echo MiniWiki::wikiToHtml($text, $action == 'title');
        exit;
    }

    function handler_sqlerror(&$page, $clear = null) {
        global $globals;
        $file = @fopen($globals->spoolroot . '/spool/tmp/query_errors', 'r');
        if ($file !== false) {
            echo '<html><body>';
            fpassthru($file);
            fclose($file);
            echo '</html></body>';
        }
        if ($clear == 'clear') {
            @unlink($globals->spoolroot . '/spool/tmp/query_errors');
        }
        exit;
    }
}

// vim:set et sw=4 sts=4 sws=4 foldmethod=marker enc=utf-8:
?>
Commit	Line	Data
b62f8858	1	<?php
b62f8858	2	/***************************************************************************
179afa7f	3	* Copyright (C) 2003-2008 Polytechnique.org *
b62f8858	4	* http://opensource.polytechnique.org/ *
	5	* *
	6	* This program is free software; you can redistribute it and/or modify *
	7	* it under the terms of the GNU General Public License as published by *
	8	* the Free Software Foundation; either version 2 of the License, or *
	9	* (at your option) any later version. *
	10	* *
	11	* This program is distributed in the hope that it will be useful, *
	12	* but WITHOUT ANY WARRANTY; without even the implied warranty of *
	13	* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the *
	14	* GNU General Public License for more details. *
	15	* *
	16	* You should have received a copy of the GNU General Public License *
	17	* along with this program; if not, write to the Free Software *
	18	* Foundation, Inc., *
	19	* 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA *
	20	***************************************************************************/
	21
	22	class CoreModule extends PLModule
	23	{
b62f8858	24	function handlers()
	25	{
	26	return array(
4c28beb2	27	'403' => $this->make_hook('403', AUTH_PUBLIC),
4c28beb2	28	'404' => $this->make_hook('404', AUTH_PUBLIC),
bb7af3cd	29	'login' => $this->make_hook('login', AUTH_COOKIE),
bb7af3cd	30	'send_bug' => $this->make_hook('bug', AUTH_COOKIE),
7b14a2a0	31	'purge_cache' => $this->make_hook('purge_cache', AUTH_COOKIE, 'admin'),
05d5ce15	32	'kill_sessions' => $this->make_hook('kill_sessions', AUTH_COOKIE, 'admin'),
f8eaef22	33	'sql_errors' => $this->make_hook('sqlerror', AUTH_COOKIE, 'admin'),
e74411f7	34	'get_rights' => $this->make_hook('get_rights', AUTH_MDP, 'admin'),
fdbeba4f	35
	36	'wiki_help' => $this->make_hook('wiki_help', AUTH_PUBLIC),
	37	'wiki_preview' => $this->make_hook('wiki_preview', AUTH_COOKIE, 'user', NO_AUTH),
7b14a2a0	38
7b14a2a0	39	'valid.html' => $this->make_hook('valid', AUTH_PUBLIC),
dc41059a	40	'favicon.ico' => $this->make_hook('favicon', AUTH_PUBLIC),
f8eb84b7	41	'robots.txt' => $this->make_hook('robotstxt', AUTH_PUBLIC, 'user', NO_HTTPS),
b62f8858	42	);
	43	}
	44
7b14a2a0	45	function handler_valid(&$page)
	46	{
	47	readfile($page->compile_dir.'/valid.html');
	48	exit;
	49	}
	50
b62f8858	51	function handler_403(&$page)
b62f8858	52	{
338a5934	53	global $globals;
94c63478	54	header($_SERVER['SERVER_PROTOCOL'] . ' 403 Forbidden');
2aad1481	55	$page->trigError('Tu n\'as pas les permissions nécessaires pour accéder à cette page.');
7cb40d85	56	$page->coreTpl('403.tpl');
b62f8858	57	}
	58
	59	function handler_404(&$page)
	60	{
338a5934	61	global $globals, $platal;
94c63478	62	header($_SERVER['SERVER_PROTOCOL'] . ' 404 Not Found');
7cb40d85	63	$page->coreTpl('404.tpl');
6b8d257b	64	$page->assign('near', $platal->near_hook());
2aad1481	65	$page->trigError('Cette page n\'existe pas !!!');
b62f8858	66	}
0889eb33	67
bb7af3cd	68	function handler_login(&$page)
	69	{
	70	$allkeys = func_get_args();
	71	unset($allkeys[0]);
	72	$url = join('/',$allkeys);
	73	pl_redirect($url);
	74	}
	75
dc41059a	76	function handler_favicon(&$page)
dc41059a	77	{
2b1ac5ab VZ	78	global $globals;
2b1ac5ab VZ	79	$data = file_get_contents($globals->spoolroot . '/htdocs/images/favicon.ico');
ce41a714	80	header('Content-Type: image/x-icon');
dc41059a	81	echo $data;
	82	exit;
	83	}
	84
f8eb84b7 VZ	85	function handler_robotstxt(&$page)
	86	{
	87	global $globals;
a12a0ce3 VZ	88
	89	$disallowed_uris = array();
	90	if ($globals->core->restricted_platal) {
	91	$disallowed_uris[] = '/';
	92	} else if (!empty($globals->core->robotstxt_disallowed_uris)) {
	93	$disallowed_uris = preg_split('/[\s,]+/',
	94	$globals->core->robotstxt_disallowed_uris,
	95	-1, PREG_SPLIT_NO_EMPTY);
f8eb84b7 VZ	96	}
f8eb84b7 VZ	97
a12a0ce3 VZ	98	if (count($disallowed_uris) > 0) {
	99	header('Content-Type: text/plain');
	100	echo "User-agent: *\n";
	101	foreach ($disallowed_uris as $uri) {
	102	echo "Disallow: $uri\n";
	103	}
	104	exit;
	105	}
	106	return PL_NOT_FOUND;
f8eb84b7 VZ	107	}
f8eb84b7 VZ	108
0889eb33	109	function handler_purge_cache(&$page)
0889eb33	110	{
40d428d8	111	S::assert_xsrf_token();
0889eb33	112
40d428d8	113	$page->clear_compiled_tpl();
1f16638f	114	PlWikiPage::clearCache();
0889eb33	115
40d428d8	116	http_redirect(empty($_SERVER['HTTP_REFERER']) ? './' : $_SERVER['HTTP_REFERER']);
0889eb33	117	}
e74411f7	118
05d5ce15 FB	119	function handler_kill_sessions(&$page)
	120	{
	121	kill_sessions();
	122	}
	123
e74411f7	124	function handler_get_rights(&$page, $level)
	125	{
	126	if (S::has('suid')) {
a7de4ef7	127	$page->kill('Déjà en SUID');
e74411f7	128	}
	129
	130	if (isset($_SESSION['log'])) {
99132dee VZ	131	if (S::user()) {
	132	S::logger()->log("suid_start", "login by " . S::user()->login());
	133	} else {
	134	// TODO(vzanotti): trash that code when support of forlife will be gone.
	135	S::logger()->log("suid_start", "login by ".S::v('forlife'));
	136	}
eaf30d86	137	}
732e5855 FB	138	Platal::session()->startSUID(S::i('uid'));
732e5855 FB	139	Platal::session()->makePerms($level);
e74411f7	140
	141	pl_redirect('/');
	142	}
8b1f8e12	143
	144	function handler_bug(&$page)
	145	{
97af9556	146	global $globals;
4d68bcde FB	147
	148	if (empty($_SERVER['HTTP_REFERER'])) {
	149	// We don't have a valid referer, we need to use the url
	150	list($currentPage, $location) = explode('//', $_SERVER['REQUEST_URI'], 2);
	151
	152	$location = 'http'.(empty($_SERVER['HTTPS']) ? '' : 's').'://'.$_SERVER['SERVER_NAME'].'/'.$location;
	153	} else {
	154	$location = $_SERVER['HTTP_REFERER'];
	155	}
	156
7cb40d85	157	$page->coreTpl('bug.tpl', SIMPLE);
4d68bcde	158	$page->assign('location', $location);
8b1f8e12	159	$page->addJsLink('close_on_esc.js');
4d68bcde	160
40d428d8 VZ	161	if (Env::has('send') && trim(Env::v('detailed_desc'))) {
	162	S::assert_xsrf_token();
	163
029135c8	164	// TODO(vzanotti): trash the 'forlife' bit when support of forlife will be gone.
5486a0d3	165	$body = wordwrap(Env::v('detailed_desc'), 78) . "\n\n"
	166	. "----------------------------\n"
	167	. "Page : " . Env::v('page') . "\n\n"
029135c8	168	. "Utilisateur : " . (S::user() ? S::user()->login() : S::v('forlife')) . "\n"
5c50e351	169	. "Navigateur : " . $_SERVER['HTTP_USER_AGENT'] . "\n"
5c50e351	170	. "Skin : " . S::v('skin') . "\n";
2aad1481 SJ	171	$page->assign('bug_sent', 1);
	172	$page->trigSuccess('Ton message a bien été envoyé au support de ' . $globals->core->sitename
	173	. ', tu devrais en recevoir une copie d\'ici quelques minutes. Nous allons '
	174	. 'le traiter et y répondre dans les plus brefs délais.');
8b1f8e12	175	$mymail = new PlMailer();
029135c8 VZ	176	// TODO(vzanotti): trash the 'bestalias' bits when support of bestalias will be gone.
	177	if (S::user()) {
	178	$mymail->setFrom(sprintf('"%s" <%s>', S::user()->fullName(), S::user()->bestEmail()));
	179	$mymail->addCc(sprintf('"%s" <%s>', S::user()->fullName(), S::user()->bestEmail()));
	180	} else {
	181	$mymail->setFrom('"'.S::v('prenom').' '.S::v('nom').'" <'.S::v('bestalias').'@' . $globals->mail->domain . '>');
	182	$mymail->addCc('"'.S::v('prenom').' '.S::v('nom').'" <'.S::v('bestalias').'@' . $globals->mail->domain . '>');
	183	}
1d55fe45	184	$mymail->addTo('support+platal@' . $globals->mail->domain);
8b1f8e12	185	$mymail->setSubject('Plat/al '.Env::v('task_type').' : '.Env::v('item_summary'));
5486a0d3	186	$mymail->setTxtBody($body);
8b1f8e12	187	$mymail->send();
e8dfa21c	188	} elseif (Env::has('send')) {
2aad1481	189	$page->trigError("Merci de remplir une explication du problème rencontré.");
8b1f8e12	190	}
8b1f8e12	191	}
72b2f8bb	192
	193	function handler_wiki_help(&$page, $action = 'title')
	194	{
7cb40d85	195	$page->coreTpl('wiki.help.tpl', SIMPLE);
72b2f8bb	196	$page->assign('wiki_help', MiniWiki::help($action == 'title'));
72b2f8bb	197	}
fdbeba4f	198
	199	/// Shared handler for wiki syntax result preview
	200	function handler_wiki_preview(&$page, $action = 'title')
	201	{
	202	header('Content-Type: text/html; charset=utf-8');
8b6e9f4e	203	$text = Env::v('text');
fdbeba4f	204	echo MiniWiki::wikiToHtml($text, $action == 'title');
	205	exit;
	206	}
f8eaef22 FB	207
	208	function handler_sqlerror(&$page, $clear = null) {
	209	global $globals;
	210	$file = @fopen($globals->spoolroot . '/spool/tmp/query_errors', 'r');
	211	if ($file !== false) {
	212	echo '<html><body>';
	213	fpassthru($file);
	214	fclose($file);
	215	echo '</html></body>';
	216	}
	217	if ($clear == 'clear') {
	218	@unlink($globals->spoolroot . '/spool/tmp/query_errors');
	219	}
	220	exit;
	221	}
b62f8858	222	}
b62f8858	223
a7de4ef7	224	// vim:set et sw=4 sts=4 sws=4 foldmethod=marker enc=utf-8:
b62f8858	225	?>