Home Explore Help
Sign In
epsylon
/
Elgg-Lorea-Hydra
Watch 1
Star 0
Fork 0
Files Issues 0 Pull Requests 0
Tree: e48014c2e0
Branches Tags
Elgg-Lorea-H...
/
engine
/
classes
/
ElggInstaller.php

ElggInstaller.php 43 KB
History Raw

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768697071727374757677787980818283848586878889909192939495969798991001011021031041051061071081091101111121131141151161171181191201211221231241251261271281291301311321331341351361371381391401411421431441451461471481491501511521531541551561571581591601611621631641651661671681691701711721731741751761771781791801811821831841851861871881891901911921931941951961971981992002012022032042052062072082092102112122132142152162172182192202212222232242252262272282292302312322332342352362372382392402412422432442452462472482492502512522532542552562572582592602612622632642652662672682692702712722732742752762772782792802812822832842852862872882892902912922932942952962972982993003013023033043053063073083093103113123133143153163173183193203213223233243253263273283293303313323333343353363373383393403413423433443453463473483493503513523533543553563573583593603613623633643653663673683693703713723733743753763773783793803813823833843853863873883893903913923933943953963973983994004014024034044054064074084094104114124134144154164174184194204214224234244254264274284294304314324334344354364374384394404414424434444454464474484494504514524534544554564574584594604614624634644654664674684694704714724734744754764774784794804814824834844854864874884894904914924934944954964974984995005015025035045055065075085095105115125135145155165175185195205215225235245255265275285295305315325335345355365375385395405415425435445455465475485495505515525535545555565575585595605615625635645655665675685695705715725735745755765775785795805815825835845855865875885895905915925935945955965975985996006016026036046056066076086096106116126136146156166176186196206216226236246256266276286296306316326336346356366376386396406416426436446456466476486496506516526536546556566576586596606616626636646656666676686696706716726736746756766776786796806816826836846856866876886896906916926936946956966976986997007017027037047057067077087097107117127137147157167177187197207217227237247257267277287297307317327337347357367377387397407417427437447457467477487497507517527537547557567577587597607617627637647657667677687697707717727737747757767777787797807817827837847857867877887897907917927937947957967977987998008018028038048058068078088098108118128138148158168178188198208218228238248258268278288298308318328338348358368378388398408418428438448458468478488498508518528538548558568578588598608618628638648658668678688698708718728738748758768778788798808818828838848858868878888898908918928938948958968978988999009019029039049059069079089099109119129139149159169179189199209219229239249259269279289299309319329339349359369379389399409419429439449459469479489499509519529539549559569579589599609619629639649659669679689699709719729739749759769779789799809819829839849859869879889899909919929939949959969979989991000100110021003100410051006100710081009101010111012101310141015101610171018101910201021102210231024102510261027102810291030103110321033103410351036103710381039104010411042104310441045104610471048104910501051105210531054105510561057105810591060106110621063106410651066106710681069107010711072107310741075107610771078107910801081108210831084108510861087108810891090109110921093109410951096109710981099110011011102110311041105110611071108110911101111111211131114111511161117111811191120112111221123112411251126112711281129113011311132113311341135113611371138113911401141114211431144114511461147114811491150115111521153115411551156115711581159116011611162116311641165116611671168116911701171117211731174117511761177117811791180118111821183118411851186118711881189119011911192119311941195119611971198119912001201120212031204120512061207120812091210121112121213121412151216121712181219122012211222122312241225122612271228122912301231123212331234123512361237123812391240124112421243124412451246124712481249125012511252125312541255125612571258125912601261126212631264126512661267126812691270127112721273127412751276127712781279128012811282128312841285128612871288128912901291129212931294129512961297129812991300130113021303130413051306130713081309131013111312131313141315131613171318131913201321132213231324132513261327132813291330133113321333133413351336133713381339134013411342134313441345134613471348134913501351135213531354135513561357135813591360136113621363136413651366136713681369137013711372137313741375137613771378137913801381138213831384138513861387138813891390139113921393139413951396139713981399140014011402140314041405140614071408140914101411141214131414141514161417141814191420142114221423142414251426142714281429143014311432143314341435143614371438143914401441144214431444144514461447144814491450145114521453145414551456145714581459146014611462146314641465146614671468146914701471147214731474147514761477147814791480148114821483148414851486148714881489149014911492149314941495149614971498149915001501150215031504150515061507150815091510151115121513151415151516151715181519152015211522152315241525152615271528152915301531153215331534153515361537153815391540154115421543154415451546154715481549155015511552155315541555155615571558155915601561156215631564156515661567156815691570157115721573157415751576157715781579158015811582158315841585158615871588158915901591159215931594159515961597159815991600160116021603160416051606160716081609161016111612161316141615161616171618161916201621162216231624162516261627162816291630163116321633163416351636163716381639164016411642164316441645164616471648 
  1. <?php
    2. 

  2. 

  3. /**
    4. 

  4.  * Elgg Installer.
    5. 

  5.  * Controller for installing Elgg. Supports both web-based on CLI installation.
    6. 

  6.  *
    7. 

  7.  * This controller steps the user through the install process. The method for
    8. 

  8.  * each step handles both the GET and POST requests. There is no XSS/CSRF protection
    9. 

  9.  * on the POST processing since the installer is only run once by the administrator.
    10. 

  10.  *
    11. 

  11.  * The installation process can be resumed by hitting the first page. The installer
    12. 

  12.  * will try to figure out where to pick up again.
    13. 

  13.  *
    14. 

  14.  * All the logic for the installation process is in this class, but it depends on
    15. 

  15.  * the core libraries. To do this, we selectively load a subset of the core libraries
    16. 

  16.  * for the first few steps and then load the entire engine once the database and
    17. 

  17.  * site settings are configured. In addition, this controller does its own session
    18. 

  18.  * handling until the database is setup.
    19. 

  19.  *
    20. 

  20.  * There is an aborted attempt in the code at creating the data directory for
    21. 

  21.  * users as a subdirectory of Elgg's root. The idea was to protect this directory
    22. 

  22.  * through a .htaccess file. The problem is that a malicious user can upload a
    23. 

  23.  * .htaccess of his own that overrides the protection for his user directory. The
    24. 

  24.  * best solution is server level configuration that turns off AllowOverride for the
    25. 

  25.  * data directory. See ticket #3453 for discussion on this.
    26. 

  26.  *
    27. 

  27.  * @package    Elgg.Core
    28. 

  28.  * @subpackage Installer
    29. 

  29.  */
    30. 

  30. class ElggInstaller {
    31. 

  31. 	
    32. 

  32. 	protected $steps = array(
    33. 

  33. 		'welcome',
    34. 

  34. 		'requirements',
    35. 

  35. 		'database',
    36. 

  36. 		'settings',
    37. 

  37. 		'admin',
    38. 

  38. 		'complete',
    39. 

  39. 		);
    40. 

  40. 

  41. 	protected $status = array(
    42. 

  42. 		'config' => FALSE,
    43. 

  43. 		'database' => FALSE,
    44. 

  44. 		'settings' => FALSE,
    45. 

  45. 		'admin' => FALSE,
    46. 

  46. 	);
    47. 

  47. 

  48. 	protected $isAction = FALSE;
    49. 

  49. 

  50. 	protected $autoLogin = TRUE;
    51. 

  51. 

  52. 	/**
    53. 

  53. 	 * Global Elgg configuration
    54. 

  54. 	 * 
    55. 

  55. 	 * @var \stdClass
    56. 

  56. 	 */
    57. 

  57. 	private $CONFIG;
    58. 

  58. 

  59. 	/**
    60. 

  60. 	 * Constructor bootstraps the Elgg engine
    61. 

  61. 	 */
    62. 

  62. 	public function __construct() {
    63. 

  63. 		global $CONFIG;
    64. 

  64. 		if (!isset($CONFIG)) {
    65. 

  65. 			$CONFIG = new stdClass;
    66. 

  66. 		}
    67. 

  67. 

  68. 		$this->CONFIG = $CONFIG;
    69. 

  69. 

  70. 		$this->isAction = isset($_SERVER['REQUEST_METHOD']) && $_SERVER['REQUEST_METHOD'] === 'POST';
    71. 

  71. 

  72. 		$this->bootstrapConfig();
    73. 

  73. 

  74. 		$this->bootstrapEngine();
    75. 

  75. 

  76. 		_elgg_services()->setValue('session', \ElggSession::getMock());
    77. 

  77. 

  78. 		elgg_set_viewtype('installation');
    79. 

  79. 

  80. 		set_error_handler('_elgg_php_error_handler');
    81. 

  81. 		set_exception_handler('_elgg_php_exception_handler');
    82. 

  82. 

  83. 		_elgg_services()->translator->registerTranslations("{$this->getElggRoot()}/install/languages/", TRUE);
    84. 

  84. 	}
    85. 

  85. 	
    86. 

  86. 	/**
    87. 

  87. 	 * @return string The absolute path to Elgg's root directory
    88. 

  88. 	 */
    89. 

  89. 	private function getElggRoot() {
    90. 

  90. 		return dirname(dirname(__DIR__));
    91. 

  91. 	}
    92. 

  92. 

  93. 	/**
    94. 

  94. 	 * Dispatches a request to one of the step controllers
    95. 

  95. 	 *
    96. 

  96. 	 * @param string $step The installation step to run
    97. 

  97. 	 *
    98. 

  98. 	 * @return void
    99. 

  99. 	 * @throws InstallationException
    100. 

  100. 	 */
    101. 

  101. 	public function run($step) {
    102. 

  102. 		global $CONFIG;
    103. 

  103. 

  104. 		// language needs to be set before the first call to elgg_echo()
    105. 

  105. 		$CONFIG->language = 'en';
    106. 

  106. 

  107. 		// check if this is a URL rewrite test coming in
    108. 

  108. 		$this->processRewriteTest();
    109. 

  109. 

  110. 		if (!in_array($step, $this->getSteps())) {
    111. 

  111. 			$msg = _elgg_services()->translator->translate('InstallationException:UnknownStep', array($step));
    112. 

  112. 			throw new InstallationException($msg);
    113. 

  113. 		}
    114. 

  114. 

  115. 		$this->setInstallStatus();
    116. 

  116. 

  117. 		$this->checkInstallCompletion($step);
    118. 

  118. 

  119. 		// check if this is an install being resumed
    120. 

  120. 		$this->resumeInstall($step);
    121. 

  121. 

  122. 		$this->finishBootstraping($step);
    123. 

  123. 

  124. 		$params = $this->getPostVariables();
    125. 

  125. 		$this->$step($params);
    126. 

  126. 	}
    127. 

  127. 

  128. 	/**
    129. 

  129. 	 * Set the auto login flag
    130. 

  130. 	 *
    131. 

  131. 	 * @param bool $flag Auto login
    132. 

  132. 	 *
    133. 

  133. 	 * @return void
    134. 

  134. 	 */
    135. 

  135. 	public function setAutoLogin($flag) {
    136. 

  136. 		$this->autoLogin = (bool) $flag;
    137. 

  137. 	}
    138. 

  138. 

  139. 	/**
    140. 

  140. 	 * A batch install of Elgg
    141. 

  141. 	 *
    142. 

  142. 	 * All required parameters must be passed in as an associative array. See
    143. 

  143. 	 * $requiredParams for a list of them. This creates the necessary files,
    144. 

  144. 	 * loads the database, configures the site settings, and creates the admin
    145. 

  145. 	 * account. If it fails, an exception is thrown. It does not check any of
    146. 

  146. 	 * the requirements as the multiple step web installer does.
    147. 

  147. 	 *
    148. 

  148. 	 * If the settings.php file exists, it will use that rather than the parameters
    149. 

  149. 	 * passed to this function.
    150. 

  150. 	 *
    151. 

  151. 	 * @param array $params         Array of key value pairs
    152. 

  152. 	 * @param bool  $createHtaccess Should .htaccess be created
    153. 

  153. 	 *
    154. 

  154. 	 * @return void
    155. 

  155. 	 * @throws InstallationException
    156. 

  156. 	 */
    157. 

  157. 	public function batchInstall(array $params, $createHtaccess = FALSE) {
    158. 

  158. 		
    159. 

  159. 

  160. 		restore_error_handler();
    161. 

  161. 		restore_exception_handler();
    162. 

  162. 

  163. 		$defaults = array(
    164. 

  164. 			'dbhost' => 'localhost',
    165. 

  165. 			'dbprefix' => 'elgg_',
    166. 

  166. 			'language' => 'en',
    167. 

  167. 			'siteaccess' => ACCESS_PUBLIC,
    168. 

  168. 		);
    169. 

  169. 		$params = array_merge($defaults, $params);
    170. 

  170. 

  171. 		$requiredParams = array(
    172. 

  172. 			'dbuser',
    173. 

  173. 			'dbpassword',
    174. 

  174. 			'dbname',
    175. 

  175. 			'sitename',
    176. 

  176. 			'wwwroot',
    177. 

  177. 			'dataroot',
    178. 

  178. 			'displayname',
    179. 

  179. 			'email',
    180. 

  180. 			'username',
    181. 

  181. 			'password',
    182. 

  182. 		);
    183. 

  183. 		foreach ($requiredParams as $key) {
    184. 

  184. 			if (empty($params[$key])) {
    185. 

  185. 				$msg = _elgg_services()->translator->translate('install:error:requiredfield', array($key));
    186. 

  186. 				throw new InstallationException($msg);
    187. 

  187. 			}
    188. 

  188. 		}
    189. 

  189. 

  190. 		// password is passed in once
    191. 

  191. 		$params['password1'] = $params['password2'] = $params['password'];
    192. 

  192. 

  193. 		if ($createHtaccess) {
    194. 

  194. 			$rewriteTester = new ElggRewriteTester();
    195. 

  195. 			if (!$rewriteTester->createHtaccess($params['wwwroot'], $this->CONFIG->path)) {
    196. 

  196. 				throw new InstallationException(_elgg_services()->translator->translate('install:error:htaccess'));
    197. 

  197. 			}
    198. 

  198. 		}
    199. 

  199. 

  200. 		$this->setInstallStatus();
    201. 

  201. 

  202. 		if (!$this->status['config']) {
    203. 

  203. 			if (!$this->createSettingsFile($params)) {
    204. 

  204. 				throw new InstallationException(_elgg_services()->translator->translate('install:error:settings'));
    205. 

  205. 			}
    206. 

  206. 		}
    207. 

  207. 

  208. 		if (!$this->connectToDatabase()) {
    209. 

  209. 			throw new InstallationException(_elgg_services()->translator->translate('install:error:databasesettings'));
    210. 

  210. 		}
    211. 

  211. 

  212. 		if (!$this->status['database']) {
    213. 

  213. 			if (!$this->installDatabase()) {
    214. 

  214. 				throw new InstallationException(_elgg_services()->translator->translate('install:error:cannotloadtables'));
    215. 

  215. 			}
    216. 

  216. 		}
    217. 

  217. 

  218. 		// load remaining core libraries
    219. 

  219. 		$this->finishBootstraping('settings');
    220. 

  220. 

  221. 		if (!$this->saveSiteSettings($params)) {
    222. 

  222. 			throw new InstallationException(_elgg_services()->translator->translate('install:error:savesitesettings'));
    223. 

  223. 		}
    224. 

  224. 

  225. 		if (!$this->createAdminAccount($params)) {
    226. 

  226. 			throw new InstallationException(_elgg_services()->translator->translate('install:admin:cannot_create'));
    227. 

  227. 		}
    228. 

  228. 	}
    229. 

  229. 

  230. 	/**
    231. 

  231. 	 * Renders the data passed by a controller
    232. 

  232. 	 *
    233. 

  233. 	 * @param string $step The current step
    234. 

  234. 	 * @param array  $vars Array of vars to pass to the view
    235. 

  235. 	 *
    236. 

  236. 	 * @return void
    237. 

  237. 	 */
    238. 

  238. 	protected function render($step, $vars = array()) {
    239. 

  239. 

  240. 		$vars['next_step'] = $this->getNextStep($step);
    241. 

  241. 

  242. 		$title = _elgg_services()->translator->translate("install:$step");
    243. 

  243. 		$body = elgg_view("install/pages/$step", $vars);
    244. 

  244. 		echo elgg_view_page(
    245. 

  245. 				$title,
    246. 

  246. 				$body,
    247. 

  247. 				'default',
    248. 

  248. 				array(
    249. 

  249. 					'step' => $step,
    250. 

  250. 					'steps' => $this->getSteps(),
    251. 

  251. 					)
    252. 

  252. 				);
    253. 

  253. 		exit;
    254. 

  254. 	}
    255. 

  255. 

  256. 	/**
    257. 

  257. 	 * Step controllers
    258. 

  258. 	 */
    259. 

  259. 

  260. 	/**
    261. 

  261. 	 * Welcome controller
    262. 

  262. 	 *
    263. 

  263. 	 * @param array $vars Not used
    264. 

  264. 	 *
    265. 

  265. 	 * @return void
    266. 

  266. 	 */
    267. 

  267. 	protected function welcome($vars) {
    268. 

  268. 		$this->render('welcome');
    269. 

  269. 	}
    270. 

  270. 

  271. 	/**
    272. 

  272. 	 * Requirements controller
    273. 

  273. 	 *
    274. 

  274. 	 * Checks version of php, libraries, permissions, and rewrite rules
    275. 

  275. 	 *
    276. 

  276. 	 * @param array $vars Vars
    277. 

  277. 	 *
    278. 

  278. 	 * @return void
    279. 

  279. 	 */
    280. 

  280. 	protected function requirements($vars) {
    281. 

  281. 

  282. 		$report = array();
    283. 

  283. 

  284. 		// check PHP parameters and libraries
    285. 

  285. 		$this->checkPHP($report);
    286. 

  286. 

  287. 		// check URL rewriting
    288. 

  288. 		$this->checkRewriteRules($report);
    289. 

  289. 

  290. 		// check for existence of settings file
    291. 

  291. 		if ($this->checkSettingsFile($report) != TRUE) {
    292. 

  292. 			// no file, so check permissions on engine directory
    293. 

  293. 			$this->checkEngineDir($report);
    294. 

  294. 		}
    295. 

  295. 

  296. 		// check the database later
    297. 

  297. 		$report['database'] = array(array(
    298. 

  298. 			'severity' => 'info',
    299. 

  299. 			'message' => _elgg_services()->translator->translate('install:check:database')
    300. 

  300. 		));
    301. 

  301. 

  302. 		// any failures?
    303. 

  303. 		$numFailures = $this->countNumConditions($report, 'failure');
    304. 

  304. 

  305. 		// any warnings
    306. 

  306. 		$numWarnings = $this->countNumConditions($report, 'warning');
    307. 

  307. 

  308. 

  309. 		$params = array(
    310. 

  310. 			'report' => $report,
    311. 

  311. 			'num_failures' => $numFailures,
    312. 

  312. 			'num_warnings' => $numWarnings,
    313. 

  313. 		);
    314. 

  314. 

  315. 		$this->render('requirements', $params);
    316. 

  316. 	}
    317. 

  317. 

  318. 	/**
    319. 

  319. 	 * Database set up controller
    320. 

  320. 	 *
    321. 

  321. 	 * Creates the settings.php file and creates the database tables
    322. 

  322. 	 *
    323. 

  323. 	 * @param array $submissionVars Submitted form variables
    324. 

  324. 	 *
    325. 

  325. 	 * @return void
    326. 

  326. 	 */
    327. 

  327. 	protected function database($submissionVars) {
    328. 

  328. 

  329. 		$formVars = array(
    330. 

  330. 			'dbuser' => array(
    331. 

  331. 				'type' => 'text',
    332. 

  332. 				'value' => '',
    333. 

  333. 				'required' => TRUE,
    334. 

  334. 				),
    335. 

  335. 			'dbpassword' => array(
    336. 

  336. 				'type' => 'password',
    337. 

  337. 				'value' => '',
    338. 

  338. 				'required' => FALSE,
    339. 

  339. 				),
    340. 

  340. 			'dbname' => array(
    341. 

  341. 				'type' => 'text',
    342. 

  342. 				'value' => '',
    343. 

  343. 				'required' => TRUE,
    344. 

  344. 				),
    345. 

  345. 			'dbhost' => array(
    346. 

  346. 				'type' => 'text',
    347. 

  347. 				'value' => 'localhost',
    348. 

  348. 				'required' => TRUE,
    349. 

  349. 				),
    350. 

  350. 			'dbprefix' => array(
    351. 

  351. 				'type' => 'text',
    352. 

  352. 				'value' => 'elgg_',
    353. 

  353. 				'required' => TRUE,
    354. 

  354. 				),
    355. 

  355. 		);
    356. 

  356. 

  357. 		if ($this->checkSettingsFile()) {
    358. 

  358. 			// user manually created settings file so we fake out action test
    359. 

  359. 			$this->isAction = TRUE;
    360. 

  360. 		}
    361. 

  361. 

  362. 		if ($this->isAction) {
    363. 

  363. 			do {
    364. 

  364. 				// only create settings file if it doesn't exist
    365. 

  365. 				if (!$this->checkSettingsFile()) {
    366. 

  366. 					if (!$this->validateDatabaseVars($submissionVars, $formVars)) {
    367. 

  367. 						// error so we break out of action and serve same page
    368. 

  368. 						break;
    369. 

  369. 					}
    370. 

  370. 

  371. 					if (!$this->createSettingsFile($submissionVars)) {
    372. 

  372. 						break;
    373. 

  373. 					}
    374. 

  374. 				}
    375. 

  375. 

  376. 				// check db version and connect
    377. 

  377. 				if (!$this->connectToDatabase()) {
    378. 

  378. 					break;
    379. 

  379. 				}
    380. 

  380. 

  381. 				if (!$this->installDatabase()) {
    382. 

  382. 					break;
    383. 

  383. 				}
    384. 

  384. 

  385. 				system_message(_elgg_services()->translator->translate('install:success:database'));
    386. 

  386. 

  387. 				$this->continueToNextStep('database');
    388. 

  388. 			} while (FALSE);  // PHP doesn't support breaking out of if statements
    389. 

  389. 		}
    390. 

  390. 

  391. 		$formVars = $this->makeFormSticky($formVars, $submissionVars);
    392. 

  392. 

  393. 		$params = array('variables' => $formVars,);
    394. 

  394. 

  395. 		if ($this->checkSettingsFile()) {
    396. 

  396. 			// settings file exists and we're here so failed to create database
    397. 

  397. 			$params['failure'] = TRUE;
    398. 

  398. 		}
    399. 

  399. 

  400. 		$this->render('database', $params);
    401. 

  401. 	}
    402. 

  402. 

  403. 	/**
    404. 

  404. 	 * Site settings controller
    405. 

  405. 	 *
    406. 

  406. 	 * Sets the site name, URL, data directory, etc.
    407. 

  407. 	 *
    408. 

  408. 	 * @param array $submissionVars Submitted vars
    409. 

  409. 	 *
    410. 

  410. 	 * @return void
    411. 

  411. 	 */
    412. 

  412. 	protected function settings($submissionVars) {
    413. 

  413. 		
    414. 

  414. 

  415. 		$formVars = array(
    416. 

  416. 			'sitename' => array(
    417. 

  417. 				'type' => 'text',
    418. 

  418. 				'value' => 'My New Community',
    419. 

  419. 				'required' => TRUE,
    420. 

  420. 				),
    421. 

  421. 			'siteemail' => array(
    422. 

  422. 				'type' => 'email',
    423. 

  423. 				'value' => '',
    424. 

  424. 				'required' => FALSE,
    425. 

  425. 				),
    426. 

  426. 			'wwwroot' => array(
    427. 

  427. 				'type' => 'url',
    428. 

  428. 				'value' => _elgg_services()->config->getSiteUrl(),
    429. 

  429. 				'required' => TRUE,
    430. 

  430. 				),
    431. 

  431. 			'dataroot' => array(
    432. 

  432. 				'type' => 'text',
    433. 

  433. 				'value' => '',
    434. 

  434. 				'required' => TRUE,
    435. 

  435. 				),
    436. 

  436. 			'siteaccess' => array(
    437. 

  437. 				'type' => 'access',
    438. 

  438. 				'value' => ACCESS_PUBLIC,
    439. 

  439. 				'required' => TRUE,
    440. 

  440. 				),
    441. 

  441. 		);
    442. 

  442. 

  443. 		// if Apache, we give user option of having Elgg create data directory
    444. 

  444. 		//if (ElggRewriteTester::guessWebServer() == 'apache') {
    445. 

  445. 		//	$formVars['dataroot']['type'] = 'combo';
    446. 

  446. 		//	$this->CONFIG->translations['en']['install:settings:help:dataroot'] =
    447. 

  447. 		//			$this->CONFIG->translations['en']['install:settings:help:dataroot:apache'];
    448. 

  448. 		//}
    449. 

  449. 

  450. 		if ($this->isAction) {
    451. 

  451. 			do {
    452. 

  452. 				//if (!$this->createDataDirectory($submissionVars, $formVars)) {
    453. 

  453. 				//	break;
    454. 

  454. 				//}
    455. 

  455. 

  456. 				if (!$this->validateSettingsVars($submissionVars, $formVars)) {
    457. 

  457. 					break;
    458. 

  458. 				}
    459. 

  459. 

  460. 				if (!$this->saveSiteSettings($submissionVars)) {
    461. 

  461. 					break;
    462. 

  462. 				}
    463. 

  463. 

  464. 				system_message(_elgg_services()->translator->translate('install:success:settings'));
    465. 

  465. 

  466. 				$this->continueToNextStep('settings');
    467. 

  467. 

  468. 			} while (FALSE);  // PHP doesn't support breaking out of if statements
    469. 

  469. 		}
    470. 

  470. 

  471. 		$formVars = $this->makeFormSticky($formVars, $submissionVars);
    472. 

  472. 

  473. 		$this->render('settings', array('variables' => $formVars));
    474. 

  474. 	}
    475. 

  475. 

  476. 	/**
    477. 

  477. 	 * Admin account controller
    478. 

  478. 	 *
    479. 

  479. 	 * Creates an admin user account
    480. 

  480. 	 *
    481. 

  481. 	 * @param array $submissionVars Submitted vars
    482. 

  482. 	 *
    483. 

  483. 	 * @return void
    484. 

  484. 	 */
    485. 

  485. 	protected function admin($submissionVars) {
    486. 

  486. 		$formVars = array(
    487. 

  487. 			'displayname' => array(
    488. 

  488. 				'type' => 'text',
    489. 

  489. 				'value' => '',
    490. 

  490. 				'required' => TRUE,
    491. 

  491. 				),
    492. 

  492. 			'email' => array(
    493. 

  493. 				'type' => 'email',
    494. 

  494. 				'value' => '',
    495. 

  495. 				'required' => TRUE,
    496. 

  496. 				),
    497. 

  497. 			'username' => array(
    498. 

  498. 				'type' => 'text',
    499. 

  499. 				'value' => '',
    500. 

  500. 				'required' => TRUE,
    501. 

  501. 				),
    502. 

  502. 			'password1' => array(
    503. 

  503. 				'type' => 'password',
    504. 

  504. 				'value' => '',
    505. 

  505. 				'required' => TRUE,
    506. 

  506. 				'pattern' => '.{6,}',
    507. 

  507. 				),
    508. 

  508. 			'password2' => array(
    509. 

  509. 				'type' => 'password',
    510. 

  510. 				'value' => '',
    511. 

  511. 				'required' => TRUE,
    512. 

  512. 				),
    513. 

  513. 		);
    514. 

  514. 		
    515. 

  515. 		if ($this->isAction) {
    516. 

  516. 			do {
    517. 

  517. 				if (!$this->validateAdminVars($submissionVars, $formVars)) {
    518. 

  518. 					break;
    519. 

  519. 				}
    520. 

  520. 

  521. 				if (!$this->createAdminAccount($submissionVars, $this->autoLogin)) {
    522. 

  522. 					break;
    523. 

  523. 				}
    524. 

  524. 

  525. 				system_message(_elgg_services()->translator->translate('install:success:admin'));
    526. 

  526. 

  527. 				$this->continueToNextStep('admin');
    528. 

  528. 

  529. 			} while (FALSE);  // PHP doesn't support breaking out of if statements
    530. 

  530. 		}
    531. 

  531. 

  532. 		// bit of a hack to get the password help to show right number of characters
    533. 

  533. 		
    534. 

  534. 		$lang = _elgg_services()->translator->getCurrentLanguage();
    535. 

  535. 		$this->CONFIG->translations[$lang]['install:admin:help:password1'] =
    536. 

  536. 				sprintf($this->CONFIG->translations[$lang]['install:admin:help:password1'],
    537. 

  537. 				$this->CONFIG->min_password_length);
    538. 

  538. 

  539. 		$formVars = $this->makeFormSticky($formVars, $submissionVars);
    540. 

  540. 

  541. 		$this->render('admin', array('variables' => $formVars));
    542. 

  542. 	}
    543. 

  543. 

  544. 	/**
    545. 

  545. 	 * Controller for last step
    546. 

  546. 	 *
    547. 

  547. 	 * @return void
    548. 

  548. 	 */
    549. 

  549. 	protected function complete() {
    550. 

  550. 

  551. 		$params = array();
    552. 

  552. 		if ($this->autoLogin) {
    553. 

  553. 			$params['destination'] = 'admin';
    554. 

  554. 		} else {
    555. 

  555. 			$params['destination'] = 'index.php';
    556. 

  556. 		}
    557. 

  557. 

  558. 		$this->render('complete', $params);
    559. 

  559. 	}
    560. 

  560. 

  561. 	/**
    562. 

  562. 	 * Step management
    563. 

  563. 	 */
    564. 

  564. 

  565. 	/**
    566. 

  566. 	 * Get an array of steps
    567. 

  567. 	 *
    568. 

  568. 	 * @return array
    569. 

  569. 	 */
    570. 

  570. 	protected function getSteps() {
    571. 

  571. 		return $this->steps;
    572. 

  572. 	}
    573. 

  573. 

  574. 	/**
    575. 

  575. 	 * Forwards the browser to the next step
    576. 

  576. 	 *
    577. 

  577. 	 * @param string $currentStep Current installation step
    578. 

  578. 	 *
    579. 

  579. 	 * @return void
    580. 

  580. 	 */
    581. 

  581. 	protected function continueToNextStep($currentStep) {
    582. 

  582. 		$this->isAction = FALSE;
    583. 

  583. 		forward($this->getNextStepUrl($currentStep));
    584. 

  584. 	}
    585. 

  585. 

  586. 	/**
    587. 

  587. 	 * Get the next step as a string
    588. 

  588. 	 *
    589. 

  589. 	 * @param string $currentStep Current installation step
    590. 

  590. 	 *
    591. 

  591. 	 * @return string
    592. 

  592. 	 */
    593. 

  593. 	protected function getNextStep($currentStep) {
    594. 

  594. 		$index = 1 + array_search($currentStep, $this->steps);
    595. 

  595. 		if (isset($this->steps[$index])) {
    596. 

  596. 			return $this->steps[$index];
    597. 

  597. 		} else {
    598. 

  598. 			return null;
    599. 

  599. 		}
    600. 

  600. 	}
    601. 

  601. 

  602. 	/**
    603. 

  603. 	 * Get the URL of the next step
    604. 

  604. 	 *
    605. 

  605. 	 * @param string $currentStep Current installation step
    606. 

  606. 	 *
    607. 

  607. 	 * @return string
    608. 

  608. 	 */
    609. 

  609. 	protected function getNextStepUrl($currentStep) {
    610. 

  610. 		$nextStep = $this->getNextStep($currentStep);
    611. 

  611. 		return _elgg_services()->config->getSiteUrl() . "install.php?step=$nextStep";
    612. 

  612. 	}
    613. 

  613. 

  614. 	/**
    615. 

  615. 	 * Check the different install steps for completion
    616. 

  616. 	 *
    617. 

  617. 	 * @return void
    618. 

  618. 	 * @throws InstallationException
    619. 

  619. 	 */
    620. 

  620. 	protected function setInstallStatus() {
    621. 

  621. 		
    622. 

  622. 

  623. 		if (!is_readable("{$this->CONFIG->path}engine/settings.php")) {
    624. 

  624. 			return;
    625. 

  625. 		}
    626. 

  626. 

  627. 		$this->loadSettingsFile();
    628. 

  628. 

  629. 		$this->status['config'] = TRUE;
    630. 

  630. 

  631. 		// must be able to connect to database to jump install steps
    632. 

  632. 		$dbSettingsPass = $this->checkDatabaseSettings(
    633. 

  633. 				$this->CONFIG->dbuser,
    634. 

  634. 				$this->CONFIG->dbpass,
    635. 

  635. 				$this->CONFIG->dbname,
    636. 

  636. 				$this->CONFIG->dbhost
    637. 

  637. 				);
    638. 

  638. 		if ($dbSettingsPass == FALSE) {
    639. 

  639. 			return;
    640. 

  640. 		}
    641. 

  641. 

  642. 		if (!include_once("{$this->CONFIG->path}engine/lib/database.php")) {
    643. 

  643. 			throw new InstallationException(_elgg_services()->translator->translate('InstallationException:MissingLibrary', array('database.php')));
    644. 

  644. 		}
    645. 

  645. 

  646. 		// check that the config table has been created
    647. 

  647. 		$query = "show tables";
    648. 

  648. 		$result = _elgg_services()->db->getData($query);
    649. 

  649. 		if ($result) {
    650. 

  650. 			foreach ($result as $table) {
    651. 

  651. 				$table = (array) $table;
    652. 

  652. 				if (in_array("{$this->CONFIG->dbprefix}config", $table)) {
    653. 

  653. 					$this->status['database'] = TRUE;
    654. 

  654. 				}
    655. 

  655. 			}
    656. 

  656. 			if ($this->status['database'] == FALSE) {
    657. 

  657. 				return;
    658. 

  658. 			}
    659. 

  659. 		} else {
    660. 

  660. 			// no tables
    661. 

  661. 			return;
    662. 

  662. 		}
    663. 

  663. 

  664. 		// check that the config table has entries
    665. 

  665. 		$query = "SELECT COUNT(*) AS total FROM {$this->CONFIG->dbprefix}config";
    666. 

  666. 		$result = _elgg_services()->db->getData($query);
    667. 

  667. 		if ($result && $result[0]->total > 0) {
    668. 

  668. 			$this->status['settings'] = TRUE;
    669. 

  669. 		} else {
    670. 

  670. 			return;
    671. 

  671. 		}
    672. 

  672. 

  673. 		// check that the users entity table has an entry
    674. 

  674. 		$query = "SELECT COUNT(*) AS total FROM {$this->CONFIG->dbprefix}users_entity";
    675. 

  675. 		$result = _elgg_services()->db->getData($query);
    676. 

  676. 		if ($result && $result[0]->total > 0) {
    677. 

  677. 			$this->status['admin'] = TRUE;
    678. 

  678. 		} else {
    679. 

  679. 			return;
    680. 

  680. 		}
    681. 

  681. 	}
    682. 

  682. 

  683. 	/**
    684. 

  684. 	 * Security check to ensure the installer cannot be run after installation
    685. 

  685. 	 * has finished. If this is detected, the viewer is sent to the front page.
    686. 

  686. 	 *
    687. 

  687. 	 * @param string $step Installation step to check against
    688. 

  688. 	 *
    689. 

  689. 	 * @return void
    690. 

  690. 	 */
    691. 

  691. 	protected function checkInstallCompletion($step) {
    692. 

  692. 		if ($step != 'complete') {
    693. 

  693. 			if (!in_array(FALSE, $this->status)) {
    694. 

  694. 				// install complete but someone is trying to view an install page
    695. 

  695. 				forward();
    696. 

  696. 			}
    697. 

  697. 		}
    698. 

  698. 	}
    699. 

  699. 

  700. 	/**
    701. 

  701. 	 * Check if this is a case of a install being resumed and figure
    702. 

  702. 	 * out where to continue from. Returns the best guess on the step.
    703. 

  703. 	 *
    704. 

  704. 	 * @param string $step Installation step to resume from
    705. 

  705. 	 *
    706. 

  706. 	 * @return string
    707. 

  707. 	 */
    708. 

  708. 	protected function resumeInstall($step) {
    709. 

  709. 		// only do a resume from the first step
    710. 

  710. 		if ($step !== 'welcome') {
    711. 

  711. 			return;
    712. 

  712. 		}
    713. 

  713. 

  714. 		if ($this->status['database'] == FALSE) {
    715. 

  715. 			return;
    716. 

  716. 		}
    717. 

  717. 

  718. 		if ($this->status['settings'] == FALSE) {
    719. 

  719. 			forward("install.php?step=settings");
    720. 

  720. 		}
    721. 

  721. 

  722. 		if ($this->status['admin'] == FALSE) {
    723. 

  723. 			forward("install.php?step=admin");
    724. 

  724. 		}
    725. 

  725. 

  726. 		// everything appears to be set up
    727. 

  727. 		forward("install.php?step=complete");
    728. 

  728. 	}
    729. 

  729. 

  730. 	/**
    731. 

  731. 	 * Bootstraping
    732. 

  732. 	 */
    733. 

  733. 

  734. 	/**
    735. 

  735. 	 * Load the essential libraries of the engine
    736. 

  736. 	 *
    737. 

  737. 	 * @return void
    738. 

  738. 	 */
    739. 

  739. 	protected function bootstrapEngine() {
    740. 

  740. 		
    741. 

  741. 

  742. 		require_once $this->CONFIG->path . 'engine/load.php';
    743. 

  743. 	}
    744. 

  744. 

  745. 	/**
    746. 

  746. 	 * Load remaining engine libraries and complete bootstraping (see start.php)
    747. 

  747. 	 *
    748. 

  748. 	 * @param string $step Which step to boot strap for. Required because
    749. 

  749. 	 *                     boot strapping is different until the DB is populated.
    750. 

  750. 	 *
    751. 

  751. 	 * @return void
    752. 

  752. 	 * @throws InstallationException
    753. 

  753. 	 */
    754. 

  754. 	protected function finishBootstraping($step) {
    755. 

  755. 

  756. 		$dbIndex = array_search('database', $this->getSteps());
    757. 

  757. 		$settingsIndex = array_search('settings', $this->getSteps());
    758. 

  758. 		$adminIndex = array_search('admin', $this->getSteps());
    759. 

  759. 		$completeIndex = array_search('complete', $this->getSteps());
    760. 

  760. 		$stepIndex = array_search($step, $this->getSteps());
    761. 

  761. 

  762. 		// To log in the user, we need to use the Elgg core session handling.
    763. 

  763. 		// Otherwise, use default php session handling
    764. 

  764. 		$useElggSession = ($stepIndex == $adminIndex && $this->isAction) ||
    765. 

  765. 				$stepIndex == $completeIndex;
    766. 

  766. 		if (!$useElggSession) {
    767. 

  767. 			session_name('Elgg_install');
    768. 

  768. 			session_start();
    769. 

  769. 			_elgg_services()->events->unregisterHandler('boot', 'system', 'session_init');
    770. 

  770. 		}
    771. 

  771. 

  772. 		if ($stepIndex > $dbIndex) {
    773. 

  773. 			// once the database has been created, load rest of engine
    774. 

  774. 			
    775. 

  775. 			$lib_dir = $this->CONFIG->path . 'engine/lib/';
    776. 

  776. 

  777. 			$this->loadSettingsFile();
    778. 

  778. 

  779. 			$lib_files = array(
    780. 

  780. 				// these want to be loaded first apparently?
    781. 

  781. 				'autoloader.php',
    782. 

  782. 				'database.php',
    783. 

  783. 				'actions.php',
    784. 

  784. 

  785. 				'admin.php',
    786. 

  786. 				'annotations.php',
    787. 

  787. 				'cron.php',
    788. 

  788. 				'entities.php',
    789. 

  789. 				'extender.php',
    790. 

  790. 				'filestore.php',
    791. 

  791. 				'group.php',
    792. 

  792. 				'mb_wrapper.php',
    793. 

  793. 				'memcache.php',
    794. 

  794. 				'metadata.php',
    795. 

  795. 				'metastrings.php',
    796. 

  796. 				'navigation.php',
    797. 

  797. 				'notification.php',
    798. 

  798. 				'objects.php',
    799. 

  799. 				'pagehandler.php',
    800. 

  800. 				'pam.php',
    801. 

  801. 				'plugins.php',
    802. 

  802. 				'private_settings.php',
    803. 

  803. 				'relationships.php',
    804. 

  804. 				'river.php',
    805. 

  805. 				'sites.php',
    806. 

  806. 				'statistics.php',
    807. 

  807. 				'tags.php',
    808. 

  808. 				'user_settings.php',
    809. 

  809. 				'users.php',
    810. 

  810. 				'upgrade.php',
    811. 

  811. 				'widgets.php',
    812. 

  812. 				'deprecated-1.7.php',
    813. 

  813. 				'deprecated-1.8.php',
    814. 

  814. 				'deprecated-1.9.php',
    815. 

  815. 			);
    816. 

  816. 

  817. 			foreach ($lib_files as $file) {
    818. 

  818. 				$path = $lib_dir . $file;
    819. 

  819. 				if (!include_once($path)) {
    820. 

  820. 					throw new InstallationException('InstallationException:MissingLibrary', array($file));
    821. 

  821. 				}
    822. 

  822. 			}
    823. 

  823. 

  824. 			_elgg_services()->db->setupConnections();
    825. 

  825. 			_elgg_services()->translator->registerTranslations("{$this->getElggRoot()}/languages/");
    826. 

  826. 			$this->CONFIG->language = 'en';
    827. 

  827. 

  828. 			if ($stepIndex > $settingsIndex) {
    829. 

  829. 				$this->CONFIG->site_guid = (int) _elgg_services()->datalist->get('default_site');
    830. 

  830. 				$this->CONFIG->site_id = $this->CONFIG->site_guid;
    831. 

  831. 				$this->CONFIG->site = get_entity($this->CONFIG->site_guid);
    832. 

  832. 				$this->CONFIG->dataroot = _elgg_services()->datalist->get('dataroot');
    833. 

  833. 				_elgg_session_boot();
    834. 

  834. 			}
    835. 

  835. 

  836. 			_elgg_services()->events->trigger('init', 'system');
    837. 

  837. 		}
    838. 

  838. 	}
    839. 

  839. 

  840. 	/**
    841. 

  841. 	 * Set up configuration variables
    842. 

  842. 	 *
    843. 

  843. 	 * @return void
    844. 

  844. 	 */
    845. 

  845. 	protected function bootstrapConfig() {
    846. 

  846. 		$this->CONFIG->installer_running = true;
    847. 

  847. 

  848. 		$this->CONFIG->wwwroot = $this->getBaseUrl();
    849. 

  849. 		$this->CONFIG->url = $this->CONFIG->wwwroot;
    850. 

  850. 		$this->CONFIG->path = "{$this->getElggRoot()}/";
    851. 

  851. 		$this->CONFIG->viewpath =	$this->CONFIG->path . 'views/';
    852. 

  852. 		$this->CONFIG->pluginspath = $this->CONFIG->path . 'mod/';
    853. 

  853. 		$this->CONFIG->context = array();
    854. 

  854. 		$this->CONFIG->entity_types = array('group', 'object', 'site', 'user');
    855. 

  855. 

  856. 		// required by elgg_view_page()
    857. 

  857. 		$this->CONFIG->sitename = '';
    858. 

  858. 		$this->CONFIG->sitedescription = '';
    859. 

  859. 

  860. 		// required by Elgg\Config::get
    861. 

  861. 		$this->CONFIG->site_guid = 1;
    862. 

  862. 	}
    863. 

  863. 	
    864. 

  864. 	/**
    865. 

  865. 	 * @return bool Whether the install process is encrypted.
    866. 

  866. 	 */
    867. 

  867. 	private function isHttps() {
    868. 

  868. 		return (!empty($_SERVER["HTTPS"]) && $_SERVER["HTTPS"] == "on") ||
    869. 

  869. 			$_SERVER['SERVER_PORT'] == 443;
    870. 

  870. 	}
    871. 

  871. 

  872. 	/**
    873. 

  873. 	 * Get the best guess at the base URL
    874. 

  874. 	 *
    875. 

  875. 	 * @note Cannot use current_page_url() because it depends on $this->CONFIG->wwwroot
    876. 

  876. 	 * @todo Should this be a core function?
    877. 

  877. 	 *
    878. 

  878. 	 * @return string
    879. 

  879. 	 */
    880. 

  880. 	protected function getBaseUrl() {
    881. 

  881. 		$protocol = $this->isHttps() ? 'https' : 'http';
    882. 

  882. 		
    883. 

  883. 		if (isset($_SERVER["SERVER_PORT"])) {
    884. 

  884. 			$port = ':' . $_SERVER["SERVER_PORT"];
    885. 

  885. 		} else {
    886. 

  886. 			$port = '';
    887. 

  887. 		}
    888. 

  888. 		if ($port == ':80' || $port == ':443') {
    889. 

  889. 			$port = '';
    890. 

  890. 		}
    891. 

  891. 		$uri = isset($_SERVER['REQUEST_URI']) ? $_SERVER['REQUEST_URI'] : '';
    892. 

  892. 		$cutoff = strpos($uri, 'install.php');
    893. 

  893. 		$uri = substr($uri, 0, $cutoff);
    894. 

  894. 		$serverName = isset($_SERVER['SERVER_NAME']) ? $_SERVER['SERVER_NAME'] : '';
    895. 

  895. 

  896. 		return "$protocol://{$serverName}$port{$uri}";
    897. 

  897. 	}
    898. 

  898. 

  899. 	/**
    900. 

  900. 	 * Load settings.php
    901. 

  901. 	 *
    902. 

  902. 	 * @return void
    903. 

  903. 	 * @throws InstallationException
    904. 

  904. 	 */
    905. 

  905. 	protected function loadSettingsFile() {
    906. 

  906. 		
    907. 

  907. 

  908. 		if (!include_once("{$this->CONFIG->path}engine/settings.php")) {
    909. 

  909. 			throw new InstallationException(_elgg_services()->translator->translate('InstallationException:CannotLoadSettings'));
    910. 

  910. 		}
    911. 

  911. 	}
    912. 

  912. 

  913. 	/**
    914. 

  914. 	 * Action handling methods
    915. 

  915. 	 */
    916. 

  916. 

  917. 	/**
    918. 

  918. 	 * Return an associative array of post variables
    919. 

  919. 	 * (could be selective based on expected variables)
    920. 

  920. 	 *
    921. 

  921. 	 * Does not filter as person installing the site should not be attempting
    922. 

  922. 	 * XSS attacks. If filtering is added, it should not be done for passwords.
    923. 

  923. 	 *
    924. 

  924. 	 * @return array
    925. 

  925. 	 */
    926. 

  926. 	protected function getPostVariables() {
    927. 

  927. 		$vars = array();
    928. 

  928. 		foreach ($_POST as $k => $v) {
    929. 

  929. 			$vars[$k] = $v;
    930. 

  930. 		}
    931. 

  931. 		return $vars;
    932. 

  932. 	}
    933. 

  933. 

  934. 	/**
    935. 

  935. 	 * If form is reshown, remember previously submitted variables
    936. 

  936. 	 *
    937. 

  937. 	 * @param array $formVars       Vars int he form
    938. 

  938. 	 * @param array $submissionVars Submitted vars
    939. 

  939. 	 *
    940. 

  940. 	 * @return array
    941. 

  941. 	 */
    942. 

  942. 	protected function makeFormSticky($formVars, $submissionVars) {
    943. 

  943. 		foreach ($submissionVars as $field => $value) {
    944. 

  944. 			$formVars[$field]['value'] = $value;
    945. 

  945. 		}
    946. 

  946. 		return $formVars;
    947. 

  947. 	}
    948. 

  948. 

  949. 	/**
    950. 

  950. 	 * Requirement checks support methods
    951. 

  951. 	 */
    952. 

  952. 

  953. 	/**
    954. 

  954. 	 * Check that the engine dir is writable
    955. 

  955. 	 *
    956. 

  956. 	 * @param array &$report The requirements report object
    957. 

  957. 	 *
    958. 

  958. 	 * @return bool
    959. 

  959. 	 */
    960. 

  960. 	protected function checkEngineDir(&$report) {
    961. 

  961. 		
    962. 

  962. 

  963. 		$writable = is_writable("{$this->CONFIG->path}engine");
    964. 

  964. 		if (!$writable) {
    965. 

  965. 			$report['settings'] = array(
    966. 

  966. 				array(
    967. 

  967. 					'severity' => 'failure',
    968. 

  968. 					'message' => _elgg_services()->translator->translate('install:check:enginedir'),
    969. 

  969. 				)
    970. 

  970. 			);
    971. 

  971. 			return FALSE;
    972. 

  972. 		}
    973. 

  973. 

  974. 		return TRUE;
    975. 

  975. 	}
    976. 

  976. 

  977. 	/**
    978. 

  978. 	 * Check that the settings file exists
    979. 

  979. 	 *
    980. 

  980. 	 * @param array &$report The requirements report array
    981. 

  981. 	 *
    982. 

  982. 	 * @return bool
    983. 

  983. 	 */
    984. 

  984. 	protected function checkSettingsFile(&$report = array()) {
    985. 

  985. 		
    986. 

  986. 

  987. 		if (!file_exists("{$this->CONFIG->path}engine/settings.php")) {
    988. 

  988. 			return FALSE;
    989. 

  989. 		}
    990. 

  990. 

  991. 		if (!is_readable("{$this->CONFIG->path}engine/settings.php")) {
    992. 

  992. 			$report['settings'] = array(
    993. 

  993. 				array(
    994. 

  994. 					'severity' => 'failure',
    995. 

  995. 					'message' => _elgg_services()->translator->translate('install:check:readsettings'),
    996. 

  996. 				)
    997. 

  997. 			);
    998. 

  998. 		}
    999. 

  999. 

  1000. 		return TRUE;
    1001. 

  1001. 	}
    1002. 

  1002. 

  1003. 	/**
    1004. 

  1004. 	 * Check version of PHP, extensions, and variables
    1005. 

  1005. 	 *
    1006. 

  1006. 	 * @param array &$report The requirements report array
    1007. 

  1007. 	 *
    1008. 

  1008. 	 * @return void
    1009. 

  1009. 	 */
    1010. 

  1010. 	protected function checkPHP(&$report) {
    1011. 

  1011. 		$phpReport = array();
    1012. 

  1012. 

  1013. 		$min_php_version = '5.4.0';
    1014. 

  1014. 		if (version_compare(PHP_VERSION, $min_php_version, '<')) {
    1015. 

  1015. 			$phpReport[] = array(
    1016. 

  1016. 				'severity' => 'failure',
    1017. 

  1017. 				'message' => _elgg_services()->translator->translate('install:check:php:version', array($min_php_version, PHP_VERSION))
    1018. 

  1018. 			);
    1019. 

  1019. 		}
    1020. 

  1020. 

  1021. 		$this->checkPhpExtensions($phpReport);
    1022. 

  1022. 

  1023. 		$this->checkPhpDirectives($phpReport);
    1024. 

  1024. 

  1025. 		if (count($phpReport) == 0) {
    1026. 

  1026. 			$phpReport[] = array(
    1027. 

  1027. 				'severity' => 'pass',
    1028. 

  1028. 				'message' => _elgg_services()->translator->translate('install:check:php:success')
    1029. 

  1029. 			);
    1030. 

  1030. 		}
    1031. 

  1031. 

  1032. 		$report['php'] = $phpReport;
    1033. 

  1033. 	}
    1034. 

  1034. 

  1035. 	/**
    1036. 

  1036. 	 * Check the server's PHP extensions
    1037. 

  1037. 	 *
    1038. 

  1038. 	 * @param array &$phpReport The PHP requirements report array
    1039. 

  1039. 	 *
    1040. 

  1040. 	 * @return void
    1041. 

  1041. 	 */
    1042. 

  1042. 	protected function checkPhpExtensions(&$phpReport) {
    1043. 

  1043. 		$extensions = get_loaded_extensions();
    1044. 

  1044. 		$requiredExtensions = array(
    1045. 

  1045. 			'mysql',
    1046. 

  1046. 			'json',
    1047. 

  1047. 			'xml',
    1048. 

  1048. 			'gd',
    1049. 

  1049. 		);
    1050. 

  1050. 		foreach ($requiredExtensions as $extension) {
    1051. 

  1051. 			if (!in_array($extension, $extensions)) {
    1052. 

  1052. 				$phpReport[] = array(
    1053. 

  1053. 					'severity' => 'failure',
    1054. 

  1054. 					'message' => _elgg_services()->translator->translate('install:check:php:extension', array($extension))
    1055. 

  1055. 				);
    1056. 

  1056. 			}
    1057. 

  1057. 		}
    1058. 

  1058. 

  1059. 		$recommendedExtensions = array(
    1060. 

  1060. 			'mbstring',
    1061. 

  1061. 		);
    1062. 

  1062. 		foreach ($recommendedExtensions as $extension) {
    1063. 

  1063. 			if (!in_array($extension, $extensions)) {
    1064. 

  1064. 				$phpReport[] = array(
    1065. 

  1065. 					'severity' => 'warning',
    1066. 

  1066. 					'message' => _elgg_services()->translator->translate('install:check:php:extension:recommend', array($extension))
    1067. 

  1067. 				);
    1068. 

  1068. 			}
    1069. 

  1069. 		}
    1070. 

  1070. 	}
    1071. 

  1071. 

  1072. 	/**
    1073. 

  1073. 	 * Check PHP parameters
    1074. 

  1074. 	 *
    1075. 

  1075. 	 * @param array &$phpReport The PHP requirements report array
    1076. 

  1076. 	 *
    1077. 

  1077. 	 * @return void
    1078. 

  1078. 	 */
    1079. 

  1079. 	protected function checkPhpDirectives(&$phpReport) {
    1080. 

  1080. 		if (ini_get('open_basedir')) {
    1081. 

  1081. 			$phpReport[] = array(
    1082. 

  1082. 				'severity' => 'warning',
    1083. 

  1083. 				'message' => _elgg_services()->translator->translate("install:check:php:open_basedir")
    1084. 

  1084. 			);
    1085. 

  1085. 		}
    1086. 

  1086. 

  1087. 		if (ini_get('safe_mode')) {
    1088. 

  1088. 			$phpReport[] = array(
    1089. 

  1089. 				'severity' => 'warning',
    1090. 

  1090. 				'message' => _elgg_services()->translator->translate("install:check:php:safe_mode")
    1091. 

  1091. 			);
    1092. 

  1092. 		}
    1093. 

  1093. 

  1094. 		if (ini_get('arg_separator.output') !== '&') {
    1095. 

  1095. 			$separator = htmlspecialchars(ini_get('arg_separator.output'));
    1096. 

  1096. 			$msg = _elgg_services()->translator->translate("install:check:php:arg_separator", array($separator));
    1097. 

  1097. 			$phpReport[] = array(
    1098. 

  1098. 				'severity' => 'failure',
    1099. 

  1099. 				'message' => $msg,
    1100. 

  1100. 			);
    1101. 

  1101. 		}
    1102. 

  1102. 

  1103. 		if (ini_get('register_globals')) {
    1104. 

  1104. 			$phpReport[] = array(
    1105. 

  1105. 				'severity' => 'failure',
    1106. 

  1106. 				'message' => _elgg_services()->translator->translate("install:check:php:register_globals")
    1107. 

  1107. 			);
    1108. 

  1108. 		}
    1109. 

  1109. 

  1110. 		if (ini_get('session.auto_start')) {
    1111. 

  1111. 			$phpReport[] = array(
    1112. 

  1112. 				'severity' => 'failure',
    1113. 

  1113. 				'message' => _elgg_services()->translator->translate("install:check:php:session.auto_start")
    1114. 

  1114. 			);
    1115. 

  1115. 		}
    1116. 

  1116. 	}
    1117. 

  1117. 

  1118. 	/**
    1119. 

  1119. 	 * Confirm that the rewrite rules are firing
    1120. 

  1120. 	 *
    1121. 

  1121. 	 * @param array &$report The requirements report array
    1122. 

  1122. 	 *
    1123. 

  1123. 	 * @return void
    1124. 

  1124. 	 */
    1125. 

  1125. 	protected function checkRewriteRules(&$report) {
    1126. 

  1126. 		
    1127. 

  1127. 

  1128. 		$tester = new ElggRewriteTester();
    1129. 

  1129. 		$url = _elgg_services()->config->getSiteUrl() . "rewrite.php";
    1130. 

  1130. 		$report['rewrite'] = array($tester->run($url, $this->CONFIG->path));
    1131. 

  1131. 	}
    1132. 

  1132. 

  1133. 	/**
    1134. 

  1134. 	 * Check if the request is coming from the URL rewrite test on the
    1135. 

  1135. 	 * requirements page.
    1136. 

  1136. 	 *
    1137. 

  1137. 	 * @return void
    1138. 

  1138. 	 */
    1139. 

  1139. 	protected function processRewriteTest() {
    1140. 

  1140. 		if (strpos($_SERVER['REQUEST_URI'], 'rewrite.php') !== FALSE) {
    1141. 

  1141. 			echo 'success';
    1142. 

  1142. 			exit;
    1143. 

  1143. 		}
    1144. 

  1144. 	}
    1145. 

  1145. 

  1146. 	/**
    1147. 

  1147. 	 * Count the number of failures in the requirements report
    1148. 

  1148. 	 *
    1149. 

  1149. 	 * @param array  $report    The requirements report array
    1150. 

  1150. 	 * @param string $condition 'failure' or 'warning'
    1151. 

  1151. 	 *
    1152. 

  1152. 	 * @return int
    1153. 

  1153. 	 */
    1154. 

  1154. 	protected function countNumConditions($report, $condition) {
    1155. 

  1155. 		$count = 0;
    1156. 

  1156. 		foreach ($report as $category => $checks) {
    1157. 

  1157. 			foreach ($checks as $check) {
    1158. 

  1158. 				if ($check['severity'] === $condition) {
    1159. 

  1159. 					$count++;
    1160. 

  1160. 				}
    1161. 

  1161. 			}
    1162. 

  1162. 		}
    1163. 

  1163. 

  1164. 		return $count;
    1165. 

  1165. 	}
    1166. 

  1166. 

  1167. 

  1168. 	/**
    1169. 

  1169. 	 * Database support methods
    1170. 

  1170. 	 */
    1171. 

  1171. 

  1172. 	/**
    1173. 

  1173. 	 * Validate the variables for the database step
    1174. 

  1174. 	 *
    1175. 

  1175. 	 * @param array $submissionVars Submitted vars
    1176. 

  1176. 	 * @param array $formVars       Vars in the form
    1177. 

  1177. 	 *
    1178. 

  1178. 	 * @return bool
    1179. 

  1179. 	 */
    1180. 

  1180. 	protected function validateDatabaseVars($submissionVars, $formVars) {
    1181. 

  1181. 

  1182. 		foreach ($formVars as $field => $info) {
    1183. 

  1183. 			if ($info['required'] == TRUE && !$submissionVars[$field]) {
    1184. 

  1184. 				$name = _elgg_services()->translator->translate("install:database:label:$field");
    1185. 

  1185. 				register_error(_elgg_services()->translator->translate('install:error:requiredfield', array($name)));
    1186. 

  1186. 				return FALSE;
    1187. 

  1187. 			}
    1188. 

  1188. 		}
    1189. 

  1189. 

  1190. 		// according to postgres documentation: SQL identifiers and key words must
    1191. 

  1191. 		// begin with a letter (a-z, but also letters with diacritical marks and
    1192. 

  1192. 		// non-Latin letters) or an underscore (_). Subsequent characters in an
    1193. 

  1193. 		// identifier or key word can be letters, underscores, digits (0-9), or dollar signs ($).
    1194. 

  1194. 		// Refs #4994
    1195. 

  1195. 		if (!preg_match("/^[a-zA-Z_][\w]*$/", $submissionVars['dbprefix'])) {
    1196. 

  1196. 			register_error(_elgg_services()->translator->translate('install:error:database_prefix'));
    1197. 

  1197. 			return FALSE;
    1198. 

  1198. 		}
    1199. 

  1199. 

  1200. 		return $this->checkDatabaseSettings(
    1201. 

  1201. 					$submissionVars['dbuser'],
    1202. 

  1202. 					$submissionVars['dbpassword'],
    1203. 

  1203. 					$submissionVars['dbname'],
    1204. 

  1204. 					$submissionVars['dbhost']
    1205. 

  1205. 				);
    1206. 

  1206. 	}
    1207. 

  1207. 

  1208. 	/**
    1209. 

  1209. 	 * Confirm the settings for the database
    1210. 

  1210. 	 *
    1211. 

  1211. 	 * @param string $user     Username
    1212. 

  1212. 	 * @param string $password Password
    1213. 

  1213. 	 * @param string $dbname   Database name
    1214. 

  1214. 	 * @param string $host     Host
    1215. 

  1215. 	 *
    1216. 

  1216. 	 * @return bool
    1217. 

  1217. 	 */
    1218. 

  1218. 	protected function checkDatabaseSettings($user, $password, $dbname, $host) {
    1219. 

  1219. 		$config = new \Elgg\Database\Config((object)[
    1220. 

  1220. 			'dbhost' => $host,
    1221. 

  1221. 			'dbuser' => $user,
    1222. 

  1222. 			'dbpass' => $password,
    1223. 

  1223. 			'dbname' => $dbname,
    1224. 

  1224. 		]);
    1225. 

  1225. 		$logger = new \Elgg\Logger(new \Elgg\PluginHooksService());
    1226. 

  1226. 		$db = new \Elgg\Database($config, $logger);
    1227. 

  1227. 

  1228. 		try {
    1229. 

  1229. 			$db->getDataRow("SELECT 1");
    1230. 

  1230. 		} catch (DatabaseException $e) {
    1231. 

  1231. 			if (0 === strpos($e->getMessage(), "Elgg couldn't connect")) {
    1232. 

  1232. 				register_error(_elgg_services()->translator->translate('install:error:databasesettings'));
    1233. 

  1233. 			} else {
    1234. 

  1234. 				register_error(_elgg_services()->translator->translate('install:error:nodatabase', array($dbname)));
    1235. 

  1235. 			}
    1236. 

  1236. 			return FALSE;
    1237. 

  1237. 		}
    1238. 

  1238. 

  1239. 		// check MySQL version - must be 5.0 or >
    1240. 

  1240. 		$version = $db->getServerVersion(\Elgg\Database\Config::READ_WRITE);
    1241. 

  1241. 		$required_version = 5.0;
    1242. 

  1242. 		$points = explode('.', $version);
    1243. 

  1243. 		if ($points[0] < $required_version) {
    1244. 

  1244. 			register_error(_elgg_services()->translator->translate('install:error:oldmysql', array($version)));
    1245. 

  1245. 			return FALSE;
    1246. 

  1246. 		}
    1247. 

  1247. 

  1248. 		return TRUE;
    1249. 

  1249. 	}
    1250. 

  1250. 

  1251. 	/**
    1252. 

  1252. 	 * Writes the settings file to the engine directory
    1253. 

  1253. 	 *
    1254. 

  1254. 	 * @param array $params Array of inputted params from the user
    1255. 

  1255. 	 *
    1256. 

  1256. 	 * @return bool
    1257. 

  1257. 	 */
    1258. 

  1258. 	protected function createSettingsFile($params) {
    1259. 

  1259. 		
    1260. 

  1260. 

  1261. 		$templateFile = "{$this->CONFIG->path}engine/settings.example.php";
    1262. 

  1262. 		$template = file_get_contents($templateFile);
    1263. 

  1263. 		if (!$template) {
    1264. 

  1264. 			register_error(_elgg_services()->translator->translate('install:error:readsettingsphp'));
    1265. 

  1265. 			return FALSE;
    1266. 

  1266. 		}
    1267. 

  1267. 

  1268. 		foreach ($params as $k => $v) {
    1269. 

  1269. 			$template = str_replace("{{" . $k . "}}", $v, $template);
    1270. 

  1270. 		}
    1271. 

  1271. 

  1272. 		$settingsFilename = "{$this->CONFIG->path}engine/settings.php";
    1273. 

  1273. 		$result = file_put_contents($settingsFilename, $template);
    1274. 

  1274. 		if (!$result) {
    1275. 

  1275. 			register_error(_elgg_services()->translator->translate('install:error:writesettingphp'));
    1276. 

  1276. 			return FALSE;
    1277. 

  1277. 		}
    1278. 

  1278. 

  1279. 		return TRUE;
    1280. 

  1280. 	}
    1281. 

  1281. 

  1282. 	/**
    1283. 

  1283. 	 * Bootstrap database connection before entire engine is available
    1284. 

  1284. 	 *
    1285. 

  1285. 	 * @return bool
    1286. 

  1286. 	 */
    1287. 

  1287. 	protected function connectToDatabase() {
    1288. 

  1288. 		
    1289. 

  1289. 

  1290. 		if (!include_once("{$this->CONFIG->path}engine/settings.php")) {
    1291. 

  1291. 			register_error('Elgg could not load the settings file. It does not exist or there is a file permissions issue.');
    1292. 

  1292. 			return FALSE;
    1293. 

  1293. 		}
    1294. 

  1294. 

  1295. 		if (!include_once("{$this->CONFIG->path}engine/lib/database.php")) {
    1296. 

  1296. 			register_error('Could not load database.php');
    1297. 

  1297. 			return FALSE;
    1298. 

  1298. 		}
    1299. 

  1299. 

  1300. 		try  {
    1301. 

  1301. 			_elgg_services()->db->setupConnections();
    1302. 

  1302. 		} catch (DatabaseException $e) {
    1303. 

  1303. 			register_error($e->getMessage());
    1304. 

  1304. 			return FALSE;
    1305. 

  1305. 		}
    1306. 

  1306. 

  1307. 		return TRUE;
    1308. 

  1308. 	}
    1309. 

  1309. 

  1310. 	/**
    1311. 

  1311. 	 * Create the database tables
    1312. 

  1312. 	 *
    1313. 

  1313. 	 * @return bool
    1314. 

  1314. 	 */
    1315. 

  1315. 	protected function installDatabase() {
    1316. 

  1316. 		
    1317. 

  1317. 

  1318. 		try {
    1319. 

  1319. 			_elgg_services()->db->runSqlScript("{$this->CONFIG->path}engine/schema/mysql.sql");
    1320. 

  1320. 		} catch (Exception $e) {
    1321. 

  1321. 			$msg = $e->getMessage();
    1322. 

  1322. 			if (strpos($msg, 'already exists')) {
    1323. 

  1323. 				$msg = _elgg_services()->translator->translate('install:error:tables_exist');
    1324. 

  1324. 			}
    1325. 

  1325. 			register_error($msg);
    1326. 

  1326. 			return FALSE;
    1327. 

  1327. 		}
    1328. 

  1328. 

  1329. 		return TRUE;
    1330. 

  1330. 	}
    1331. 

  1331. 

  1332. 	/**
    1333. 

  1333. 	 * Site settings support methods
    1334. 

  1334. 	 */
    1335. 

  1335. 

  1336. 	/**
    1337. 

  1337. 	 * Create the data directory if requested
    1338. 

  1338. 	 *
    1339. 

  1339. 	 * @param array &$submissionVars Submitted vars
    1340. 

  1340. 	 * @param array $formVars        Variables in the form
    1341. 

  1341. 	 * 
    1342. 

  1342. 	 * @return bool
    1343. 

  1343. 	 */
    1344. 

  1344. 	protected function createDataDirectory(&$submissionVars, $formVars) {
    1345. 

  1345. 		// did the user have option of Elgg creating the data directory
    1346. 

  1346. 		if ($formVars['dataroot']['type'] != 'combo') {
    1347. 

  1347. 			return TRUE;
    1348. 

  1348. 		}
    1349. 

  1349. 

  1350. 		// did the user select the option
    1351. 

  1351. 		if ($submissionVars['dataroot'] != 'dataroot-checkbox') {
    1352. 

  1352. 			return TRUE;
    1353. 

  1353. 		}
    1354. 

  1354. 

  1355. 		$dir = sanitise_filepath($submissionVars['path']) . 'data';
    1356. 

  1356. 		if (file_exists($dir) || mkdir($dir, 0700)) {
    1357. 

  1357. 			$submissionVars['dataroot'] = $dir;
    1358. 

  1358. 			if (!file_exists("$dir/.htaccess")) {
    1359. 

  1359. 				$htaccess = "Order Deny,Allow\nDeny from All\n";
    1360. 

  1360. 				if (!file_put_contents("$dir/.htaccess", $htaccess)) {
    1361. 

  1361. 					return FALSE;
    1362. 

  1362. 				}
    1363. 

  1363. 			}
    1364. 

  1364. 			return TRUE;
    1365. 

  1365. 		}
    1366. 

  1366. 

  1367. 		return FALSE;
    1368. 

  1368. 	}
    1369. 

  1369. 

  1370. 	/**
    1371. 

  1371. 	 * Validate the site settings form variables
    1372. 

  1372. 	 *
    1373. 

  1373. 	 * @param array $submissionVars Submitted vars
    1374. 

  1374. 	 * @param array $formVars       Vars in the form
    1375. 

  1375. 	 *
    1376. 

  1376. 	 * @return bool
    1377. 

  1377. 	 */
    1378. 

  1378. 	protected function validateSettingsVars($submissionVars, $formVars) {
    1379. 

  1379. 		
    1380. 

  1380. 

  1381. 		foreach ($formVars as $field => $info) {
    1382. 

  1382. 			$submissionVars[$field] = trim($submissionVars[$field]);
    1383. 

  1383. 			if ($info['required'] == TRUE && $submissionVars[$field] === '') {
    1384. 

  1384. 				$name = _elgg_services()->translator->translate("install:settings:label:$field");
    1385. 

  1385. 				register_error(_elgg_services()->translator->translate('install:error:requiredfield', array($name)));
    1386. 

  1386. 				return FALSE;
    1387. 

  1387. 			}
    1388. 

  1388. 		}
    1389. 

  1389. 

  1390. 		// check that data root is absolute path
    1391. 

  1391. 		if (stripos(PHP_OS, 'win') === 0) {
    1392. 

  1392. 			if (strpos($submissionVars['dataroot'], ':') !== 1) {
    1393. 

  1393. 				$msg = _elgg_services()->translator->translate('install:error:relative_path', array($submissionVars['dataroot']));
    1394. 

  1394. 				register_error($msg);
    1395. 

  1395. 				return FALSE;
    1396. 

  1396. 			}
    1397. 

  1397. 		} else {
    1398. 

  1398. 			if (strpos($submissionVars['dataroot'], '/') !== 0) {
    1399. 

  1399. 				$msg = _elgg_services()->translator->translate('install:error:relative_path', array($submissionVars['dataroot']));
    1400. 

  1400. 				register_error($msg);
    1401. 

  1401. 				return FALSE;
    1402. 

  1402. 			}
    1403. 

  1403. 		}
    1404. 

  1404. 

  1405. 		// check that data root exists
    1406. 

  1406. 		if (!file_exists($submissionVars['dataroot'])) {
    1407. 

  1407. 			$msg = _elgg_services()->translator->translate('install:error:datadirectoryexists', array($submissionVars['dataroot']));
    1408. 

  1408. 			register_error($msg);
    1409. 

  1409. 			return FALSE;
    1410. 

  1410. 		}
    1411. 

  1411. 

  1412. 		// check that data root is writable
    1413. 

  1413. 		if (!is_writable($submissionVars['dataroot'])) {
    1414. 

  1414. 			$msg = _elgg_services()->translator->translate('install:error:writedatadirectory', array($submissionVars['dataroot']));
    1415. 

  1415. 			register_error($msg);
    1416. 

  1416. 			return FALSE;
    1417. 

  1417. 		}
    1418. 

  1418. 

  1419. 		if (!isset($this->CONFIG->data_dir_override) || !$this->CONFIG->data_dir_override) {
    1420. 

  1420. 			// check that data root is not subdirectory of Elgg root
    1421. 

  1421. 			if (stripos($submissionVars['dataroot'], $submissionVars['path']) === 0) {
    1422. 

  1422. 				$msg = _elgg_services()->translator->translate('install:error:locationdatadirectory', array($submissionVars['dataroot']));
    1423. 

  1423. 				register_error($msg);
    1424. 

  1424. 				return FALSE;
    1425. 

  1425. 			}
    1426. 

  1426. 		}
    1427. 

  1427. 

  1428. 		// check that email address is email address
    1429. 

  1429. 		if ($submissionVars['siteemail'] && !is_email_address($submissionVars['siteemail'])) {
    1430. 

  1430. 			$msg = _elgg_services()->translator->translate('install:error:emailaddress', array($submissionVars['siteemail']));
    1431. 

  1431. 			register_error($msg);
    1432. 

  1432. 			return FALSE;
    1433. 

  1433. 		}
    1434. 

  1434. 

  1435. 		// @todo check that url is a url
    1436. 

  1436. 		// @note filter_var cannot be used because it doesn't work on international urls
    1437. 

  1437. 

  1438. 		return TRUE;
    1439. 

  1439. 	}
    1440. 

  1440. 

  1441. 	/**
    1442. 

  1442. 	 * Initialize the site including site entity, plugins, and configuration
    1443. 

  1443. 	 *
    1444. 

  1444. 	 * @param array $submissionVars Submitted vars
    1445. 

  1445. 	 *
    1446. 

  1446. 	 * @return bool
    1447. 

  1447. 	 */
    1448. 

  1448. 	protected function saveSiteSettings($submissionVars) {
    1449. 

  1449. 		
    1450. 

  1450. 

  1451. 		// ensure that file path, data path, and www root end in /
    1452. 

  1452. 		$submissionVars['dataroot'] = sanitise_filepath($submissionVars['dataroot']);
    1453. 

  1453. 		$submissionVars['wwwroot'] = sanitise_filepath($submissionVars['wwwroot']);
    1454. 

  1454. 

  1455. 		$site = new ElggSite();
    1456. 

  1456. 		$site->name = strip_tags($submissionVars['sitename']);
    1457. 

  1457. 		$site->url = $submissionVars['wwwroot'];
    1458. 

  1458. 		$site->access_id = ACCESS_PUBLIC;
    1459. 

  1459. 		$site->email = $submissionVars['siteemail'];
    1460. 

  1460. 		$guid = $site->save();
    1461. 

  1461. 

  1462. 		if (!$guid) {
    1463. 

  1463. 			register_error(_elgg_services()->translator->translate('install:error:createsite'));
    1464. 

  1464. 			return FALSE;
    1465. 

  1465. 		}
    1466. 

  1466. 

  1467. 		// bootstrap site info
    1468. 

  1468. 		$this->CONFIG->site_guid = $guid;
    1469. 

  1469. 		$this->CONFIG->site_id = $guid;
    1470. 

  1470. 		$this->CONFIG->site = $site;
    1471. 

  1471. 

  1472. 		_elgg_services()->datalist->set('installed', time());
    1473. 

  1473. 		_elgg_services()->datalist->set('dataroot', $submissionVars['dataroot']);
    1474. 

  1474. 		_elgg_services()->datalist->set('default_site', $site->getGUID());
    1475. 

  1475. 		_elgg_services()->datalist->set('version', elgg_get_version());
    1476. 

  1476. 		_elgg_services()->datalist->set('simplecache_enabled', 1);
    1477. 

  1477. 		_elgg_services()->datalist->set('system_cache_enabled', 1);
    1478. 

  1478. 		_elgg_services()->datalist->set('simplecache_lastupdate', time());
    1479. 

  1479. 

  1480. 		// @todo plugins might use this, but core doesn't. remove in 2.0
    1481. 

  1481. 		_elgg_services()->datalist->set('path', $this->CONFIG->path);
    1482. 

  1482. 

  1483. 		// new installations have run all the upgrades
    1484. 

  1484. 		$upgrades = elgg_get_upgrade_files("{$this->CONFIG->path}engine/lib/upgrades/");
    1485. 

  1485. 		_elgg_services()->datalist->set('processed_upgrades', serialize($upgrades));
    1486. 

  1486. 

  1487. 		_elgg_services()->configTable->set('view', 'default', $site->getGUID());
    1488. 

  1488. 		_elgg_services()->configTable->set('language', 'en', $site->getGUID());
    1489. 

  1489. 		_elgg_services()->configTable->set('default_access', $submissionVars['siteaccess'], $site->getGUID());
    1490. 

  1490. 		_elgg_services()->configTable->set('allow_registration', TRUE, $site->getGUID());
    1491. 

  1491. 		_elgg_services()->configTable->set('walled_garden', FALSE, $site->getGUID());
    1492. 

  1492. 		_elgg_services()->configTable->set('allow_user_default_access', '', $site->getGUID());
    1493. 

  1493. 		_elgg_services()->configTable->set('default_limit', 10, $site->getGUID());
    1494. 

  1494. 

  1495. 		$this->setSubtypeClasses();
    1496. 

  1496. 

  1497. 		$this->enablePlugins();
    1498. 

  1498. 

  1499. 		return TRUE;
    1500. 

  1500. 	}
    1501. 

  1501. 

  1502. 	/**
    1503. 

  1503. 	 * Register classes for core objects
    1504. 

  1504. 	 *
    1505. 

  1505. 	 * @return void
    1506. 

  1506. 	 */
    1507. 

  1507. 	protected function setSubtypeClasses() {
    1508. 

  1508. 		add_subtype("object", "plugin", "ElggPlugin");
    1509. 

  1509. 		add_subtype("object", "file", "ElggFile");
    1510. 

  1510. 		add_subtype("object", "widget", "ElggWidget");
    1511. 

  1511. 		add_subtype("object", "comment", "ElggComment");
    1512. 

  1512. 		add_subtype("object", "elgg_upgrade", 'ElggUpgrade');
    1513. 

  1513. 	}
    1514. 

  1514. 

  1515. 	/**
    1516. 

  1516. 	 * Enable a set of default plugins
    1517. 

  1517. 	 *
    1518. 

  1518. 	 * @return void
    1519. 

  1519. 	 */
    1520. 

  1520. 	protected function enablePlugins() {
    1521. 

  1521. 		_elgg_generate_plugin_entities();
    1522. 

  1522. 		$plugins = elgg_get_plugins('any');
    1523. 

  1523. 		foreach ($plugins as $plugin) {
    1524. 

  1524. 			if ($plugin->getManifest()) {
    1525. 

  1525. 				if ($plugin->getManifest()->getActivateOnInstall()) {
    1526. 

  1526. 					$plugin->activate();
    1527. 

  1527. 				}
    1528. 

  1528. 				if (in_array('theme', $plugin->getManifest()->getCategories())) {
    1529. 

  1529. 					$plugin->setPriority('last');
    1530. 

  1530. 				}
    1531. 

  1531. 			}
    1532. 

  1532. 		}
    1533. 

  1533. 	}
    1534. 

  1534. 

  1535. 	/**
    1536. 

  1536. 	 * Admin account support methods
    1537. 

  1537. 	 */
    1538. 

  1538. 

  1539. 	/**
    1540. 

  1540. 	 * Validate account form variables
    1541. 

  1541. 	 *
    1542. 

  1542. 	 * @param array $submissionVars Submitted vars
    1543. 

  1543. 	 * @param array $formVars       Form vars
    1544. 

  1544. 	 *
    1545. 

  1545. 	 * @return bool
    1546. 

  1546. 	 */
    1547. 

  1547. 	protected function validateAdminVars($submissionVars, $formVars) {
    1548. 

  1548. 

  1549. 		foreach ($formVars as $field => $info) {
    1550. 

  1550. 			if ($info['required'] == TRUE && !$submissionVars[$field]) {
    1551. 

  1551. 				$name = _elgg_services()->translator->translate("install:admin:label:$field");
    1552. 

  1552. 				register_error(_elgg_services()->translator->translate('install:error:requiredfield', array($name)));
    1553. 

  1553. 				return FALSE;
    1554. 

  1554. 			}
    1555. 

  1555. 		}
    1556. 

  1556. 

  1557. 		if ($submissionVars['password1'] !== $submissionVars['password2']) {
    1558. 

  1558. 			register_error(_elgg_services()->translator->translate('install:admin:password:mismatch'));
    1559. 

  1559. 			return FALSE;
    1560. 

  1560. 		}
    1561. 

  1561. 

  1562. 		if (trim($submissionVars['password1']) == "") {
    1563. 

  1563. 			register_error(_elgg_services()->translator->translate('install:admin:password:empty'));
    1564. 

  1564. 			return FALSE;
    1565. 

  1565. 		}
    1566. 

  1566. 

  1567. 		$minLength = _elgg_services()->configTable->get('min_password_length');
    1568. 

  1568. 		if (strlen($submissionVars['password1']) < $minLength) {
    1569. 

  1569. 			register_error(_elgg_services()->translator->translate('install:admin:password:tooshort'));
    1570. 

  1570. 			return FALSE;
    1571. 

  1571. 		}
    1572. 

  1572. 

  1573. 		// check that email address is email address
    1574. 

  1574. 		if ($submissionVars['email'] && !is_email_address($submissionVars['email'])) {
    1575. 

  1575. 			$msg = _elgg_services()->translator->translate('install:error:emailaddress', array($submissionVars['email']));
    1576. 

  1576. 			register_error($msg);
    1577. 

  1577. 			return FALSE;
    1578. 

  1578. 		}
    1579. 

  1579. 

  1580. 		return TRUE;
    1581. 

  1581. 	}
    1582. 

  1582. 

  1583. 	/**
    1584. 

  1584. 	 * Create a user account for the admin
    1585. 

  1585. 	 *
    1586. 

  1586. 	 * @param array $submissionVars Submitted vars
    1587. 

  1587. 	 * @param bool  $login          Login in the admin user?
    1588. 

  1588. 	 *
    1589. 

  1589. 	 * @return bool
    1590. 

  1590. 	 */
    1591. 

  1591. 	protected function createAdminAccount($submissionVars, $login = FALSE) {
    1592. 

  1592. 		try {
    1593. 

  1593. 			$guid = register_user(
    1594. 

  1594. 					$submissionVars['username'],
    1595. 

  1595. 					$submissionVars['password1'],
    1596. 

  1596. 					$submissionVars['displayname'],
    1597. 

  1597. 					$submissionVars['email']
    1598. 

  1598. 					);
    1599. 

  1599. 		} catch (Exception $e) {
    1600. 

  1600. 			register_error($e->getMessage());
    1601. 

  1601. 			return false;
    1602. 

  1602. 		}
    1603. 

  1603. 

  1604. 		if (!$guid) {
    1605. 

  1605. 			register_error(_elgg_services()->translator->translate('install:admin:cannot_create'));
    1606. 

  1606. 			return false;
    1607. 

  1607. 		}
    1608. 

  1608. 

  1609. 		$user = get_entity($guid);
    1610. 

  1610. 		if (!$user instanceof ElggUser) {
    1611. 

  1611. 			register_error(_elgg_services()->translator->translate('install:error:loadadmin'));
    1612. 

  1612. 			return false;
    1613. 

  1613. 		}
    1614. 

  1614. 

  1615. 		elgg_set_ignore_access(TRUE);
    1616. 

  1616. 		if ($user->makeAdmin() == FALSE) {
    1617. 

  1617. 			register_error(_elgg_services()->translator->translate('install:error:adminaccess'));
    1618. 

  1618. 		} else {
    1619. 

  1619. 			_elgg_services()->datalist->set('admin_registered', 1);
    1620. 

  1620. 		}
    1621. 

  1621. 		elgg_set_ignore_access(false);
    1622. 

  1622. 

  1623. 		// add validation data to satisfy user validation plugins
    1624. 

  1624. 		create_metadata($guid, 'validated', TRUE, '', 0, ACCESS_PUBLIC);
    1625. 

  1625. 		create_metadata($guid, 'validated_method', 'admin_user', '', 0, ACCESS_PUBLIC);
    1626. 

  1626. 

  1627. 		if ($login) {
    1628. 

  1628. 			$handler = new Elgg\Http\DatabaseSessionHandler(_elgg_services()->db);
    1629. 

  1629. 

  1630. 			// session.cache_limiter is unfortunately set to "" by the NativeSessionStorage constructor,
    1631. 

  1631. 			// so we must capture and inject it directly.
    1632. 

  1632. 			$options = [
    1633. 

  1633. 				'cache_limiter' => session_cache_limiter(),
    1634. 

  1634. 			];
    1635. 

  1635. 			$storage = new Symfony\Component\HttpFoundation\Session\Storage\NativeSessionStorage($options, $handler);
    1636. 

  1636. 

  1637. 			$session = new ElggSession(new Symfony\Component\HttpFoundation\Session\Session($storage));
    1638. 

  1638. 			$session->setName('Elgg');
    1639. 

  1639. 			_elgg_services()->setValue('session', $session);
    1640. 

  1640. 			if (login($user) == FALSE) {
    1641. 

  1641. 				register_error(_elgg_services()->translator->translate('install:error:adminlogin'));
    1642. 

  1642. 			}
    1643. 

  1643. 		}
    1644. 

  1644. 

  1645. 		return TRUE;
    1646. 

  1646. 	}
    1647. 

  1647. }
    1648. 

  1648.