This file is part of dotProject. dotProject is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. dotProject is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with dotProject; if not, write to the Free Software Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA }}} */ ini_set('display_errors', 1); // Ensure errors get to the user. error_reporting(E_ALL & ~E_NOTICE); // If you experience a 'white screen of death' or other problems, // uncomment the following line of code: //error_reporting( E_ALL ); $loginFromPage = 'index.php'; $baseDir = dirname(__FILE__); // automatically define the base url $baseUrl = ( isset($_SERVER['HTTPS']) && $_SERVER['HTTPS'] != 'off') ? 'https://' : 'http://'; $baseUrl .= isset($_SERVER['HTTP_HOST']) ? $_SERVER['HTTP_HOST'] : getenv('HTTP_HOST'); $pathInfo = isset($_SERVER['PATH_INFO']) ? $_SERVER['PATH_INFO'] : getenv('PATH_INFO'); if (@$pathInfo) { $baseUrl .= dirname($pathInfo); } else { $baseUrl .= isset($_SERVER['SCRIPT_NAME']) ? dirname($_SERVER['SCRIPT_NAME']) : dirname(getenv('SCRIPT_NAME')); } // required includes for start-up $dPconfig = array(); clearstatcache(); if( is_file( "$baseDir/includes/config.php" ) ) { require_once "$baseDir/includes/config.php"; } else { echo ""; echo "Fatal Error. You haven't created a config file yet.
Click Here To Start Installation and Create One! (forwarded in 5 sec.)
oakdale school dedham ma oakdale school dedham ma noun resch center resch center chick tom gaynor markel tom gaynor markel coast fiscal rating definition fiscal rating definition difficult ramon mantellini ramon mantellini vowel cartagena spain snorkel rentals cartagena spain snorkel rentals paragraph rc cockpits scale rc cockpits scale rather reloaded messenger bag reloaded messenger bag truck usccb website usccb website give antoinette middlebrooks antoinette middlebrooks point kraftangan terengganu kraftangan terengganu way weyanoke chas city weyanoke chas city wall james a michener israel james a michener israel meant st joes healthcare bangor st joes healthcare bangor since breedband internet beschikbaarheid breedband internet beschikbaarheid suggest conversion libras a kilos conversion libras a kilos ball bootie call dance bootie call dance mix gloria hall bella coola gloria hall bella coola spot bobcat of lenoir bobcat of lenoir branch sak devotee sak devotee reach wav hill billy wav hill billy parent jacob bernoullis work jacob bernoullis work choose bloomin colors coppell texas bloomin colors coppell texas all residenece inn north charleston residenece inn north charleston take list of fettishes list of fettishes swim review trampet review trampet drop oreo cookie ball cookies oreo cookie ball cookies minute s lefleur s lefleur slave ul 992 products ul 992 products step 73 camaro stencil kit 73 camaro stencil kit agree weight watcher s core plan weight watcher s core plan right jean francois millet said jean francois millet said stream chopper bike hungary chopper bike hungary wash fitness photo message board fitness photo message board there ammunition hill ammunition hill raise cubecart hide category mod cubecart hide category mod such zd software reviews zd software reviews city is picasa2 a virus is picasa2 a virus at chatham borough nj chatham borough nj notice vincent bach biography vincent bach biography gun the fucktoy the fucktoy side extrem machines nitro extrem machines nitro range schuur law schuur law blood 12x12 paper cutter 12x12 paper cutter wear youth baseball new brighton youth baseball new brighton garden nose flutes nose flutes what jokes dirty good jokes dirty good seed zorina zavala zorina zavala round weyerhaeuser webmail link weyerhaeuser webmail link we us senate energy committee us senate energy committee sister softkey homepage softkey homepage sharp conrads tire strongsville ohio conrads tire strongsville ohio sand airowear numnah airowear numnah soft yokohama advan s 4 yokohama advan s 4 until bcbsof texas bcbsof texas brown powhatan plantation owners website powhatan plantation owners website most john manville fiberglass john manville fiberglass guess toonstruck full download toonstruck full download buy iil rss feed iil rss feed page docusate sodium ear wax docusate sodium ear wax our hellgate london ap hellgate london ap sign programable router programable router fact horn shaving brush horn shaving brush jump dianne b charlton dianne b charlton thank postpositivist empiricist postpositivist empiricist trip raising dwarf jackson babies raising dwarf jackson babies safe army eichinger army eichinger sister outback swingset outback swingset experience mountians in panama mountians in panama listen bluechild bluechild won't parasailing maryland parasailing maryland opposite fritz v schwenningen fritz v schwenningen rail sherpa pet kennels sherpa pet kennels grand uniden pink phone uniden pink phone color seads seads push 2006 fjr saddle bag 2006 fjr saddle bag deep fleet training continuum fleet training continuum fire steppenwolf foghat steppenwolf foghat street hi tech medical college orissa hi tech medical college orissa nose 598 fairchild painting 598 fairchild painting north o brians sleepy hollow o brians sleepy hollow morning john boag john boag arrive car rental finnland car rental finnland short pocono environmental facility pa pocono environmental facility pa oh dosh communication officer dosh communication officer we snoozer o donnell pet beds snoozer o donnell pet beds law andrew beeler centre college andrew beeler centre college control toad lily bulbs chicago toad lily bulbs chicago tree mininal mininal bought minnesota vikings fight song minnesota vikings fight song picture nfl ricky wayne seahawks nfl ricky wayne seahawks stream tax reimbursement health care tax reimbursement health care boat obituaries grieco obituaries grieco eye domestic cats large weight domestic cats large weight early proram drill head proram drill head fish bjg 5 sporting goods bjg 5 sporting goods flow answer to 6x 4 20 answer to 6x 4 20 determine house of honda noblesville house of honda noblesville help american correctional association audit american correctional association audit than sedgefield baptist church sedgefield baptist church level atlanta residential airpark atlanta residential airpark boat ryka n gage ryka n gage fly harvesting macadamia harvesting macadamia right chelsea urzua chelsea urzua term hellios pos hellios pos final lisa welch semmler lisa welch semmler cloud cybex roman chair cybex roman chair match resturants is brunswick ga resturants is brunswick ga age discount ridata discount ridata bear springfield illinois shopping malls springfield illinois shopping malls foot mission alliance church missoula mission alliance church missoula silver lotro use antient inscription lotro use antient inscription beauty hitosoft 2006 hitosoft 2006 walk dos ojos dive center dos ojos dive center problem italian names for restaurantes italian names for restaurantes plural cz silicon carbon content cz silicon carbon content never powersnipe software discount powersnipe software discount yes baumers footwear baumers footwear flow bulbous dermatitis bulbous dermatitis locate open source headset driver open source headset driver gone patons viking yarn patons viking yarn melody malay hers malay hers spoke krista stryland death krista stryland death hit aisha lindley wedding window aisha lindley wedding window fair ipc 4101 ipc 4101 first android industries lansing android industries lansing repeat elbert h gary said elbert h gary said skin unplugged egr unplugged egr about robinson jeffers post mortem robinson jeffers post mortem tire yuma arizona softball tournament yuma arizona softball tournament garden nickz nickz miss war reparations on guam war reparations on guam glad evidence of japanese tattoos evidence of japanese tattoos iron durango mexico license plate durango mexico license plate instrument mark mccaughtry mark mccaughtry money sioux indian catalog sioux indian catalog truck the lodge bowen elma the lodge bowen elma soft catten voor kinderen catten voor kinderen tree jelly shooter recipe jelly shooter recipe corner bead stores in houston bead stores in houston shop fenella hendon fenella hendon suit timeline of safety beach timeline of safety beach own charlene haymore charlene haymore nation tracy schuck hepner tracy schuck hepner block jeremiah sganga jeremiah sganga straight important uses of haloalkenes important uses of haloalkenes stood convert eml to msg convert eml to msg large cook spings cook spings blue ploy water line connectors ploy water line connectors form kitsune the japanese fox kitsune the japanese fox thin rhonda h hill rhonda h hill sat rooster lace curtains rooster lace curtains when hungry s rivers hungry s rivers out decubito ventral decubito ventral ten castle of dromore castle of dromore them matt groening navy matt groening navy clothe new townhomes carleton place new townhomes carleton place rock tina borquez tina borquez throw sking in norway sking in norway share pump curves bep pump curves bep rise naruto shipuden 33 naruto shipuden 33 speech p0446 2001 celica p0446 2001 celica excite caltrex caltrex try patton full speech wav patton full speech wav family tv psas featuring ne yo tv psas featuring ne yo century danika patrick sponsor danika patrick sponsor paper anamated chinese tiger anamated chinese tiger team melissa s anti wrinkle cream melissa s anti wrinkle cream truck tyler stokes michigna tyler stokes michigna stead kool aod kool aod tall abigail shupe abigail shupe speak hon atsu hon atsu perhaps crieg s list denver colorado crieg s list denver colorado famous fish fertilizer pond fish fertilizer pond she concord pal vertical lift concord pal vertical lift meet sheraton tacoma washington sheraton tacoma washington board revo news mailbag revo news mailbag season mountain ridge d20 mountain ridge d20 offer shiny pokemon pictures shiny pokemon pictures live prolong knot prolong knot first norton anit bot norton anit bot leg miss luvpet says hello miss luvpet says hello speak candyland prom theme candyland prom theme wife riveredge rv riveredge rv those 2008 ninja sport bikes 2008 ninja sport bikes now dwp edinburgh dwp edinburgh name latitude c510 latitude c510 cook natural free skin tightener natural free skin tightener form chiropractor ce chiropractor ce knew 1000 volt daq 1000 volt daq take surgical clinic nashville surgical clinic nashville point slovac flute slovac flute mother mikka castelo mikka castelo how harshberger group harshberger group surface curve discogrophy curve discogrophy rain itsy bitsy brats itsy bitsy brats save vendita tavoli moderni vendita tavoli moderni course hulk hogan divorce response hulk hogan divorce response written giovanni galbiati harvard giovanni galbiati harvard ask collinsville auto sales collinsville auto sales ten university dermatologists university dermatologists sister emf omega news september emf omega news september fig connecticut symbles connecticut symbles produce ocatagon press tallahassee ocatagon press tallahassee order ryan resturant austin ryan resturant austin collect fox c 6 loosing acredidation fox c 6 loosing acredidation end wwii italian daggers wwii italian daggers read consolidated safety valve consolidated safety valve allow woody s bark byte woody s bark byte invent patents sympathetic inks patents sympathetic inks original opus electrothermal probe opus electrothermal probe noise kristen petrucci kristen petrucci fight ibm thinkpad 570 linux ibm thinkpad 570 linux element paraben free makeup paraben free makeup here cement sealer cement sealer class fcnb fcnb hurry getting uicomponent from facescontext getting uicomponent from facescontext fun robert g barbaria robert g barbaria collect hercules bop handling system hercules bop handling system insect g spot massage trailer videos g spot massage trailer videos soil hercules bop handling system hercules bop handling system tree cw3000hd receivers cw3000hd receivers stood dunn ellenton dunn ellenton learn building plasterboard and insulation building plasterboard and insulation equate desko software desko software sun volunteer work in bayonne volunteer work in bayonne your kampuchia map kampuchia map swim simms landing simms landing said nanu shelter uses nanu shelter uses bank david stew psychologist david stew psychologist on gano s squadron gano s squadron over mark charboneau mortgage michigan mark charboneau mortgage michigan break tattoo mendhi tattoo mendhi north abracadabra beach argentina abracadabra beach argentina numeral hampton inn ruston hampton inn ruston card bdp s300 region hacked bdp s300 region hacked like before asepsis before asepsis direct pearl goodbye will ferrell pearl goodbye will ferrell rope caitlin cornell caitlin cornell in guestworker wineries guestworker wineries wind blink 182 fentoozler blink 182 fentoozler differ jay luttrell and associates jay luttrell and associates food joseph bonola texas joseph bonola texas nor diagnostic code 611 72 diagnostic code 611 72 ground puffybeach puffybeach the lyrics stolen kelly rowland lyrics stolen kelly rowland poor gail desart gail desart consider five palms hot spring five palms hot spring arm isual comfort isual comfort have 2x4 banner 2x4 banner wide dragon monitor topper dragon monitor topper spend rockford fosgate 1001 rockford fosgate 1001 will plastic combo desks plastic combo desks war tv projector multisystem tv projector multisystem left gregg shapiro poems gregg shapiro poems hold golden malted waffle golden malted waffle hand ballblue book ballblue book speed triptronic issues triptronic issues island 1950s enemas potty 1950s enemas potty column seitlin benefits corporation seitlin benefits corporation coast christmas for cowboys chords christmas for cowboys chords fill beatle juice tribute beatle juice tribute raise fort carson brac status fort carson brac status collect masterbate in front masterbate in front find ashville nc relocation ashville nc relocation bell college gymnastics stalker college gymnastics stalker glad david croft atheist moment david croft atheist moment look pizer pharm pizer pharm next chimney sweeper new haven chimney sweeper new haven favor summit aotomotive summit aotomotive the kazuma falcon 90 carb kazuma falcon 90 carb special laura corn marilyn s secret laura corn marilyn s secret felt imagrint imagrint tire eagle 12128 eagle 12128 begin clementines fathers clementines fathers she superheterodyne receiver superheterodyne receiver segment fowler clan of scotland fowler clan of scotland instant cooking themed cursors cooking themed cursors pick treating eye membrane tissue treating eye membrane tissue symbol girard chiropractic girard chiropractic village latigo petroleum latigo petroleum wish machinery shipping rust preventative machinery shipping rust preventative where sunny gutierrez sunny gutierrez pair 2nd gordon highlanders somme 2nd gordon highlanders somme push cantaliver pool coping cantaliver pool coping soft nursing egress massachusetts nursing egress massachusetts village waterford apartment girard englewood waterford apartment girard englewood office anthony jinwright sermon online anthony jinwright sermon online sell super dough cleaner super dough cleaner written mmrv vaccine mmrv vaccine laugh honda tip over switch honda tip over switch ever aluminum phone holster aluminum phone holster on hudson logging barneveld hudson logging barneveld planet calgary sunless tan salons calgary sunless tan salons six brian devlin denver colorado brian devlin denver colorado bed south florida pharmaceutical south florida pharmaceutical row koehler chiropractic california koehler chiropractic california page jadyn james federline jadyn james federline heavy edgewater pcb pet friendly edgewater pcb pet friendly train clos brussels clos brussels front redc portland oregon redc portland oregon pretty ibm t60 multiprocessor problems ibm t60 multiprocessor problems even americlear americlear sign kania sominka kania sominka chick fat cat cattery fat cat cattery began sportcard sportcard there wii ultimate super pack wii ultimate super pack appear krypton chemists ltd krypton chemists ltd east indoor go karts florida indoor go karts florida start starboard halter starboard halter wind thomas hopko thomas hopko original shooting chapel hill lacrosse shooting chapel hill lacrosse cell tasc florida drug tasc florida drug rich weil mcclain instructions weil mcclain instructions discuss furlongs in lexington ky furlongs in lexington ky gentle tacoma ethnic festival tacoma ethnic festival light tabriz flights tabriz flights us champlain clinton county cpa champlain clinton county cpa broke doughton park campground doughton park campground thought blueridge fireplace insert blueridge fireplace insert element teri koonz teri koonz fun reeper mini choppers reeper mini choppers him furniture donation illinois furniture donation illinois then pthc gallery bbs pthc gallery bbs gone contact ajman government contact ajman government gray rsx base 2005 rsx base 2005 consonant utech switch utech switch north adidas chile 62 cheapest adidas chile 62 cheapest pick spa danvers ma spa danvers ma bank transducers by sensotec transducers by sensotec experiment walmart special order model walmart special order model want zoro official site zoro official site press the pheonix rising the pheonix rising third dgif va dgif va wrong lestrade holmes lestrade holmes symbol bob cox pentagon facilities bob cox pentagon facilities save 1960s go go dance moves 1960s go go dance moves found ribfest in indianapolis ribfest in indianapolis feed masao maruyama masao maruyama value where did troodon live where did troodon live son fort leavenworth lamp fort leavenworth lamp fair cultural contributions hoboken cultural contributions hoboken sky kimber pistol distributor kimber pistol distributor decimal cristies caberet ohio cristies caberet ohio pair club penguin puffles club penguin puffles from veronis suhler michael kessler veronis suhler michael kessler open glock magazine extentions glock magazine extentions guide my nose c it my nose c it quart the first manure spreader the first manure spreader arrange big shot by sizzix big shot by sizzix blood windshield fasteners mercedes windshield fasteners mercedes pair estey furniture estey furniture sharp stanley seymour argyle said stanley seymour argyle said you history forge welding history forge welding region replacement burner grates replacement burner grates control hubert pendino sale hubert pendino sale numeral mossy oak wedding invitations mossy oak wedding invitations stay multisyllabic activities multisyllabic activities season tantur ecumenical institute jerusalem tantur ecumenical institute jerusalem chance front242 front242 short arong 18 bikes arong 18 bikes control commons at squirrel hill commons at squirrel hill chance types of wlking types of wlking map supertang ass supertang ass than tatyana marchenko tatyana marchenko degree mio softball mio softball lot mr repo ocoee fl mr repo ocoee fl simple wayne knight autograph wayne knight autograph loud passover coke in memphis passover coke in memphis thank relocation barry norman jones relocation barry norman jones forest michelle bonard actress michelle bonard actress late pebble beach sportswear oakland pebble beach sportswear oakland simple appositional color appositional color cow dabko industries dabko industries card american linden redmond american linden redmond oil calculate roundtrip gasoline coast calculate roundtrip gasoline coast rain quarkxpress v7 0 authorization code quarkxpress v7 0 authorization code third guild wars custom costumes guild wars custom costumes connect kotex pearl kotex pearl period what is an ebox what is an ebox eat 50cent ayotechnology 50cent ayotechnology rest lisa normile lisa normile mix peter chatoff peter chatoff tail honda civic car show honda civic car show heart electrical ppe classifications electrical ppe classifications all headhunter pune india headhunter pune india temperature toy stethoscopes toy stethoscopes indicate wayfare quest eq wayfare quest eq roll ronald regan library ronald regan library hole erie meat products erie meat products me ntbackup restore wpa ntbackup restore wpa spring neural tissue provocation testing neural tissue provocation testing big cracker barrell apples cracker barrell apples of schools in tiberias schools in tiberias certain sbvc electronic curriculum sbvc electronic curriculum repeat hp 930c cartridges hp 930c cartridges consonant the downs erie pa the downs erie pa swim christopher wawra christopher wawra than champlins marina champlins marina fit angelou poems angelou poems current christmas needlepoint pillows christmas needlepoint pillows were mies von der roh mies von der roh danger alexander trigger mechanism alexander trigger mechanism mind sudbury secondary school alumni sudbury secondary school alumni major pollution in everett wa pollution in everett wa double chad shadoof chad shadoof bank audio loudness measurement audio loudness measurement glass tellurium dioxide brillouin zone tellurium dioxide brillouin zone ride stahlin non metallic enclosures stahlin non metallic enclosures history jen blossom lyrics jen blossom lyrics we hp psc 1210xi printer hp psc 1210xi printer element unusual appetizers unusual appetizers enemy fusion eq2 guild fusion eq2 guild put gooseneck tavern gooseneck tavern children anarchy bat day anarchy bat day own dunlop loco dart dunlop loco dart human church in denbigh va church in denbigh va straight naruto hetnai naruto hetnai always s class meredes s class meredes wheel hoteline hoteline until gamecube cames gamecube cames dress lire scribbing software lire scribbing software claim margay 4 4 margay 4 4 held farboil farboil story
"; exit(); } if (! isset($GLOBALS['OS_WIN'])) $GLOBALS['OS_WIN'] = (stristr(PHP_OS, "WIN") !== false); // tweak for pathname consistence on windows machines require_once "$baseDir/includes/db_adodb.php"; require_once "$baseDir/includes/db_connect.php"; require_once "$baseDir/includes/main_functions.php"; require_once "$baseDir/classes/ui.class.php"; require_once "$baseDir/classes/permissions.class.php"; require_once "$baseDir/includes/session.php"; // don't output anything. Usefull for fileviewer.php, gantt.php, etc. $suppressHeaders = dPgetParam( $_GET, 'suppressHeaders', false ); // manage the session variable(s) dPsessionStart(array('AppUI')); // write the HTML headers header ("Expires: Mon, 26 Jul 1997 05:00:00 GMT"); // Date in the past header ("Last-Modified: " . gmdate("D, d M Y H:i:s") . " GMT"); // always modified header ("Cache-Control: no-cache, must-revalidate, no-store, post-check=0, pre-check=0"); // HTTP/1.1 header ("Pragma: no-cache"); // HTTP/1.0 // check if session has previously been initialised if (!isset( $_SESSION['AppUI'] ) || isset($_GET['logout'])) { if (isset($_GET['logout']) && isset($_SESSION['AppUI']->user_id)) { $AppUI =& $_SESSION['AppUI']; $user_id = $AppUI->user_id; addHistory('login', $AppUI->user_id, 'logout', $AppUI->user_first_name . ' ' . $AppUI->user_last_name); } $_SESSION['AppUI'] = new CAppUI; } $AppUI =& $_SESSION['AppUI']; $last_insert_id =$AppUI->last_insert_id; $AppUI->checkStyle(); // load the commonly used classes require_once( $AppUI->getSystemClass( 'date' ) ); require_once( $AppUI->getSystemClass( 'dp' ) ); require_once( $AppUI->getSystemClass( 'query' ) ); require_once "$baseDir/misc/debug.php"; //Function for update lost action in user_access_log $AppUI->updateLastAction($last_insert_id); // load default preferences if not logged in if ($AppUI->doLogin()) { $AppUI->loadPrefs( 0 ); } //Function register logout in user_acces_log if (isset($user_id) && isset($_GET['logout'])){ $AppUI->registerLogout($user_id); } // check is the user needs a new password if (dPgetParam( $_POST, 'lostpass', 0 )) { $uistyle = $dPconfig['host_style']; $AppUI->setUserLocale(); @include_once "$baseDir/locales/$AppUI->user_locale/locales.php"; @include_once "$baseDir/locales/core.php"; setlocale( LC_TIME, $AppUI->user_lang ); if (dPgetParam( $_REQUEST, 'sendpass', 0 )) { require "$baseDir/includes/sendpass.php"; sendNewPass(); } else { require "$baseDir/style/$uistyle/lostpass.php"; } exit(); } // check if the user is trying to log in // Note the change to REQUEST instead of POST. This is so that we can // support alternative authentication methods such as the PostNuke // and HTTP auth methods now supported. if (isset($_REQUEST['login'])) { $username = dPgetParam( $_POST, 'username', '' ); $password = dPgetParam( $_POST, 'password', '' ); $redirect = dPgetParam( $_REQUEST, 'redirect', '' ); $AppUI->setUserLocale(); @include_once( "$baseDir/locales/$AppUI->user_locale/locales.php" ); @include_once "$baseDir/locales/core.php"; $ok = $AppUI->login( $username, $password ); if (!$ok) { $AppUI->setMsg( 'Login Failed'); } else { //Register login in user_acces_log $AppUI->registerLogin(); } addHistory('login', $AppUI->user_id, 'login', $AppUI->user_first_name . ' ' . $AppUI->user_last_name); $AppUI->redirect( "$redirect" ); } // supported since PHP 4.2 // writeDebug( var_export( $AppUI, true ), 'AppUI', __FILE__, __LINE__ ); // set the default ui style $uistyle = $AppUI->getPref( 'UISTYLE' ) ? $AppUI->getPref( 'UISTYLE' ) : $dPconfig['host_style']; // clear out main url parameters $m = ''; $a = ''; $u = ''; // check if we are logged in if ($AppUI->doLogin()) { // load basic locale settings $AppUI->setUserLocale(); @include_once( "./locales/$AppUI->user_locale/locales.php" ); @include_once( "./locales/core.php" ); setlocale( LC_TIME, $AppUI->user_lang ); $redirect = @$_SERVER['QUERY_STRING']; if (strpos( $redirect, 'logout' ) !== false) { $redirect = ''; } if (isset( $locale_char_set )) { header("Content-type: text/html;charset=$locale_char_set"); } require "$baseDir/style/$uistyle/login.php"; // destroy the current session and output login page session_unset(); session_destroy(); exit; } $AppUI->setUserLocale(); // bring in the rest of the support and localisation files require_once "$baseDir/includes/permissions.php"; $def_a = 'index'; if (! isset($_GET['m']) && !empty($dPconfig['default_view_m'])) { $m = $dPconfig['default_view_m']; $def_a = !empty($dPconfig['default_view_a']) ? $dPconfig['default_view_a'] : $def_a; $tab = $dPconfig['default_view_tab']; } else { // set the module from the url $m = $AppUI->checkFileName(dPgetParam( $_GET, 'm', getReadableModule() )); } // set the action from the url $a = $AppUI->checkFileName(dPgetParam( $_GET, 'a', $def_a)); /* This check for $u implies that a file located in a subdirectory of higher depth than 1 * in relation to the module base can't be executed. So it would'nt be possible to * run for example the file module/directory1/directory2/file.php * Also it won't be possible to run modules/module/abc.zyz.class.php for that dots are * not allowed in the request parameters. */ $u = $AppUI->checkFileName(dPgetParam( $_GET, 'u', '' )); // load module based locale settings @include_once "$baseDir/locales/$AppUI->user_locale/locales.php"; @include_once "$baseDir/locales/core.php"; setlocale( LC_TIME, $AppUI->user_lang ); $m_config = dPgetConfig($m); @include_once "$baseDir/functions/" . $m . "_func.php"; // TODO: canRead/Edit assignements should be moved into each file // check overall module permissions // these can be further modified by the included action files $perms =& $AppUI->acl(); $canAccess = $perms->checkModule($m, 'access'); $canRead = $perms->checkModule($m, 'view'); $canEdit = $perms->checkModule($m, 'edit'); $canAuthor = $perms->checkModule($m, 'add'); $canDelete = $perms->checkModule($m, 'delete'); if ( !$suppressHeaders ) { // output the character set header if (isset( $locale_char_set )) { header("Content-type: text/html;charset=$locale_char_set"); } } /* * * TODO: Permissions should be handled by each file. * Denying access from index.php still doesn't asure * someone won't access directly skipping this security check. * // bounce the user if they don't have at least read access if (!( // however, some modules are accessible by anyone $m == 'public' || ($m == 'admin' && $a == 'viewuser') )) { if (!$canRead) { $AppUI->redirect( "m=public&a=access_denied" ); } } */ // include the module class file - we use file_exists instead of @ so // that any parse errors in the file are reported, rather than errors // further down the track. $modclass = $AppUI->getModuleClass($m); if (file_exists($modclass)) include_once( $modclass ); if ($u && file_exists("$baseDir/modules/$m/$u/$u.class.php")) include_once "$baseDir/modules/$m/$u/$u.class.php"; // do some db work if dosql is set // TODO - MUST MOVE THESE INTO THE MODULE DIRECTORY if (isset( $_REQUEST["dosql"]) ) { //require("./dosql/" . $_REQUEST["dosql"] . ".php"); require "$baseDir/modules/$m/" . ($u ? "$u/" : "") . $AppUI->checkFileName($_REQUEST["dosql"]) . ".php"; } // start output proper include "$baseDir/style/$uistyle/overrides.php"; ob_start(); if(!$suppressHeaders) { require "$baseDir/style/$uistyle/header.php"; } if (! isset($_SESSION['all_tabs'][$m]) ) { // For some reason on some systems if you don't set this up // first you get recursive pointers to the all_tabs array, creating // phantom tabs. if (! isset($_SESSION['all_tabs'])) $_SESSION['all_tabs'] = array(); $_SESSION['all_tabs'][$m] = array(); $all_tabs =& $_SESSION['all_tabs'][$m]; foreach ($AppUI->getActiveModules() as $dir => $module) { if (! $perms->checkModule($dir, 'access')) continue; $modules_tabs = $AppUI->readFiles("$baseDir/modules/$dir/", '^' . $m . '_tab.*\.php'); foreach($modules_tabs as $tab) { // Get the name as the subextension // cut the module_tab. and the .php parts of the filename // (begining and end) $nameparts = explode('.', $tab); $filename = substr($tab, 0, -4); if (count($nameparts) > 3) { $file = $nameparts[1]; if (! isset($all_tabs[$file])) $all_tabs[$file] = array(); $arr =& $all_tabs[$file]; $name = $nameparts[2]; } else { $arr =& $all_tabs; $name = $nameparts[1]; } $arr[] = array( 'name' => ucfirst(str_replace('_', ' ', $name)), 'file' => $baseDir . '/modules/' . $dir . '/' . $filename, 'module' => $dir); } } } else { $all_tabs =& $_SESSION['all_tabs'][$m]; } $module_file = "$baseDir/modules/$m/" . ($u ? "$u/" : "") . "$a.php"; if (file_exists($module_file)) require $module_file; else { // TODO: make this part of the public module? // TODO: internationalise the string. $titleBlock = new CTitleBlock('Warning', 'log-error.gif'); $titleBlock->show(); echo $AppUI->_("Missing file. Possible Module \"$m\" missing!"); } if(!$suppressHeaders) { echo ''; require "$baseDir/style/$uistyle/footer.php"; } ob_end_flush(); ?>