-
Notifications
You must be signed in to change notification settings - Fork 170
/
index.php
executable file
·129 lines (114 loc) · 5.36 KB
/
index.php
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
<?php
/* ----------------------------------------------------------------------
* index.php : primary application controller for cataloguing module
* ----------------------------------------------------------------------
* CollectiveAccess
* Open-source collections management software
* ----------------------------------------------------------------------
*
* Software by Whirl-i-Gig (http://www.whirl-i-gig.com)
* Copyright 2008-2018 Whirl-i-Gig
*
* For more information visit http://www.CollectiveAccess.org
*
* This program is free software; you may redistribute it and/or modify it under
* the terms of the provided license as published by Whirl-i-Gig
*
* CollectiveAccess is distributed in the hope that it will be useful, but
* WITHOUT ANY WARRANTIES whatsoever, including any implied warranty of
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.
*
* This source code is free and modifiable under the terms of
* GNU General Public License. (http://www.gnu.org/copyleft/gpl.html). See
* the "license.txt" file for details, or visit the CollectiveAccess web site at
* http://www.CollectiveAccess.org
*
* ----------------------------------------------------------------------
*/
define("__CA_APP_TYPE__", "PROVIDENCE");
define("__CA_MICROTIME_START_OF_REQUEST__", microtime());
define("__CA_BASE_MEMORY_USAGE__", memory_get_usage(true));
require("./app/helpers/errorHelpers.php");
if (!file_exists('./setup.php')) {
caDisplayException(new ApplicationException("No setup.php found"));
exit;
}
require('./setup.php');
require_once('./app/helpers/post-setup.php');
try {
// connect to database
$o_db = new Db(null, null, false);
if (!$o_db->connected()) {
$opa_error_messages = array("Could not connect to database. Check your database configuration in <em>setup.php</em>.");
require_once(__CA_BASE_DIR__."/themes/default/views/system/configuration_error_html.php");
exit();
}
//
// do a sanity check on application and server configuration before servicing a request
//
require_once(__CA_APP_DIR__.'/lib/ConfigurationCheck.php');
ConfigurationCheck::performQuick();
if(ConfigurationCheck::foundErrors()){
if (defined('__CA_ALLOW_AUTOMATIC_UPDATE_OF_DATABASE__') && __CA_ALLOW_AUTOMATIC_UPDATE_OF_DATABASE__ && $_REQUEST['updateSchema']) {
ConfigurationCheck::updateDatabaseSchema();
} else {
ConfigurationCheck::renderErrorsAsHTMLOutput();
}
exit();
}
if(isset($_REQUEST['processIndexingQueue']) && $_REQUEST['processIndexingQueue']) {
require_once(__CA_MODELS_DIR__.'/ca_search_indexing_queue.php');
ca_search_indexing_queue::process();
exit();
}
// run garbage collector
GarbageCollection::gc();
$app = AppController::getInstance();
$g_request = $req = $app->getRequest();
$g_response = $resp = $app->getResponse();
// Prevent caching
$resp->addHeader("Cache-Control", "no-cache, no-store, must-revalidate");
$resp->addHeader("Expires", "Mon, 26 Jul 1997 05:00:00 GMT");
// Security headers
$resp->addHeader("X-XSS-Protection", "1; mode=block");
$resp->addHeader("X-Frame-Options", "SAMEORIGIN");
$resp->addHeader("Content-Security-Policy", "script-src 'self' maps.googleapis.com cdn.knightlab.com nominatim.openstreetmap.org ajax.googleapis.com tagmanager.google.com www.googletagmanager.com www.google-analytics.com www.google.com/recaptcha/ www.gstatic.com 'unsafe-inline' 'unsafe-eval';");
$resp->addHeader("X-Content-Security-Policy", "script-src 'self' maps.googleapis.com cdn.knightlab.com nominatim.openstreetmap.org ajax.googleapis.com tagmanager.google.com www.googletagmanager.com www.google-analytics.com www.google.com/recaptcha/ www.gstatic.com 'unsafe-inline' 'unsafe-eval';");
//
// Don't try to authenticate when doing a login attempt or trying to access the 'forgot password' feature
//
if ((AuthenticationManager::supports(__CA_AUTH_ADAPTER_FEATURE_USE_ADAPTER_LOGIN_FORM__) && !preg_match("/^[\/]{0,1}system\/auth\/callback/", strtolower($req->getPathInfo()))) || !preg_match("/^[\/]{0,1}system\/auth\/(dologin|login|forgot|requestpassword|initreset|doreset|callback)/", strtolower($req->getPathInfo()))) {
$vb_auth_success = $req->doAuthentication(array('noPublicUsers' => true));
if(!$vb_auth_success) {
$resp->sendResponse();
$req->close();
exit;
}
}
// TODO: move this into a library so $_, $g_ui_locale_id and $g_ui_locale gets set up automatically
$g_ui_locale_id = $req->user->getPreferredUILocaleID(); // get current UI locale as locale_id (available as global)
$g_ui_locale = $req->user->getPreferredUILocale(); // get current UI locale as locale string (available as global)
$g_ui_units_pref = $req->user->getPreference('units'); // user's selected display units for measurements (available as global)
if((!isset($_locale)) || ($g_ui_locale != $_COOKIE['CA_'.__CA_APP_NAME__.'_ui_locale'])) {
if(!initializeLocale($g_ui_locale)) die("Error loading locale ".$g_ui_locale);
$req->reloadAppConfig();
}
//
// PageFormat plug-in generates header/footer shell around page content
//
require_once(__CA_APP_DIR__.'/lib/PageFormat.php');
if (!$req->isAjax() && !$req->isDownload()) {
$app->registerPlugin(new PageFormat());
}
//
// Dispatch the request
//
$app->dispatch(true);
//
// Send output to client
//
$resp->sendResponse();
$req->close();
} catch (Exception $e) {
caDisplayException($e);
}