From f4a81236543f8cc8c3777d453360a19ba9305117 Mon Sep 17 00:00:00 2001 From: Ralf Becker Date: Mon, 13 Oct 2003 16:48:12 +0000 Subject: [PATCH] added a first version of a pre-installation check: - php.ini values - php extensions - filesystem permissions --- setup/check_install.php | 349 +++++++++++++++++++++++++++++++ setup/index.php | 3 +- setup/templates/default/head.tpl | 20 +- 3 files changed, 364 insertions(+), 8 deletions(-) create mode 100644 setup/check_install.php diff --git a/setup/check_install.php b/setup/check_install.php new file mode 100644 index 0000000000..ba42e403a0 --- /dev/null +++ b/setup/check_install.php @@ -0,0 +1,349 @@ + True, + 'nonavbar' => True, + 'currentapp' => 'home', + 'noapi' => True + ); + include ('./inc/functions.inc.php'); + + $GLOBALS['phpgw_info']['setup']['stage']['header'] = $GLOBALS['phpgw_setup']->detection->check_header(); + if ($GLOBALS['phpgw_info']['setup']['stage']['header'] == '10') + { + // Check header and authentication + if (!$GLOBALS['phpgw_setup']->auth('Config')) + { + Header('Location: index.php'); + exit; + } + } +} + +$checks = array( + 'safe_mode' => array( + 'func' => 'php_ini_check', + 'value' => 0, + 'verbose_value' => 'Off', + 'warning' => 'safe_mode is turned on, which is generaly a good thing as it makes your install more secure. +If safe_mode is turned on, eGW is not able to change certain settings on runtime, nor can we load any not yet loaded module. +*** You have to do the changes manualy in your php.ini (usualy in /etc on linux) in order to get eGW fully working !!! +*** Do NOT update your database via setup, as the update might be interrupted by the max_execution_time, which leaves your DB in an unrecoverable state (your data is lost) !!!' + ), + 'error_reporting' => array( + 'func' => 'php_ini_check', + 'value' => E_NOTICE, + 'verbose_value' => 'E_NOTICE', + 'check' => 'not set', + 'safe_mode' => 'error_reporting = E_ALL & ~E_NOTICE' + ), + 'magic_quotes_runtime' => array( + 'func' => 'php_ini_check', + 'value' => 0, + 'verbose_value' => 'Off', + 'safe_mode' => 'magic_qoutes_runtime = Off' + ), + 'register_globals' => array( + 'func' => 'php_ini_check', + 'value' => 0, + 'verbose_value' => 'Off', + 'warning' => "register_globals is turned on, eGroupWare does NOT require it and it's generaly more secure to have it turned Off" + ), + 'memory_limit' => array( + 'func' => 'php_ini_check', + 'value' => '16M', + 'check' => '>=', + 'warning' => 'memory_limit is set to less then 16M: some applications of eGroupWare need more then the recommend 8M, expect ocasional failures', + 'safe_mode' => 'memory_limit = 16M' + ), + 'max_execution_time' => array( + 'func' => 'php_ini_check', + 'value' => 30, + 'check' => '>=', + 'warning' => 'max_execution_time is set to less then 30 (seconds): eGroupWare sometimes need a higher execution_time, expect ocasional failures', + 'safe_mode' => 'max_execution_time = 30' + ), + 'mysql' => array( + 'func' => 'extension_check', + 'warning' => 'The mysql extension is needed, if you plan to use a MySQL database.' + ), + 'pgsql' => array( + 'func' => 'extension_check', + 'warning' => 'The pgsql extension is needed, if you plan to use a pgSQL database.' + ), + 'mssql' => array( + 'func' => 'extension_check', + 'warning' => 'The mssql extension is needed, if you plan to use a MsSQL database.', + 'win_only' => True + ), + 'mbstring' => array( + 'func' => 'extension_check', + 'warning' => 'The mbstring extension is needed to fully support unicode (utf-8) or other multibyte-charsets.' + ), + '.' => array( + 'func' => 'permission_check', + 'is_world_writable' => False, + 'recursiv' => True + ), + 'header.inc.php' => array( + 'func' => 'permission_check', + 'is_world_readable' => False, + 'only_if_exists' => $GLOBALS['phpgw_info']['setup']['stage']['header'] != 10 + ), + 'phpgwapi/images' => array( + 'func' => 'permission_check', + 'is_writable' => True + ), +); + +// some constanst for pre php4.3 +if (!defined('PHP_SHLIB_SUFFIX')) +{ + define('PHP_SHLIB_SUFFIX',strtoupper(substr(PHP_OS, 0,3)) == 'WIN' ? 'dll' : 'so'); +} +if (!defined('PHP_SHLIB_PREFIX')) +{ + define('PHP_SHLIB_PREFIX',PHP_SHLIB_SUFFIX == 'dll' ? 'php_' : ''); +} + +function extension_check($name,$args) +{ + $is_win = strtoupper(substr(PHP_OS,0,3)) == 'WIN'; + + if (isset($args['win_only']) && $args['win_only'] && !$is_win) + { + return True; // check only under windows + } + $availible = extension_loaded($name) || dl(PHP_SHLIB_PREFIX.$name.'.'.PHP_SHLIB_SUFFIX); + + echo "Checking extension $name is loaded or loadable: ".($availible ? 'True' : 'False')."\n"; + + if (!$availible) + { + echo $args['warning']."\n"; + } + return $availible; +} + +function verbosePerms( $in_Perms ) +{ + $sP; + + if($in_Perms & 0x1000) // FIFO pipe + $sP = 'p'; + elseif($in_Perms & 0x2000) // Character special + $sP = 'c'; + elseif($in_Perms & 0x4000) // Directory + $sP = 'd'; + elseif($in_Perms & 0x6000) // Block special + $sP = 'b'; + elseif($in_Perms & 0x8000) // Regular + $sP = '-'; + elseif($in_Perms & 0xA000) // Symbolic Link + $sP = 'l'; + elseif($in_Perms & 0xC000) // Socket + $sP = 's'; + else // UNKNOWN + $sP = 'u'; + + // owner + $sP .= (($in_Perms & 0x0100) ? 'r' : '-') . + (($in_Perms & 0x0080) ? 'w' : '-') . + (($in_Perms & 0x0040) ? (($in_Perms & 0x0800) ? 's' : 'x' ) : + (($in_Perms & 0x0800) ? 'S' : '-')); + + // group + $sP .= (($in_Perms & 0x0020) ? 'r' : '-') . + (($in_Perms & 0x0010) ? 'w' : '-') . + (($in_Perms & 0x0008) ? (($in_Perms & 0x0400) ? 's' : 'x' ) : + (($in_Perms & 0x0400) ? 'S' : '-')); + + // world + $sP .= (($in_Perms & 0x0004) ? 'r' : '-') . + (($in_Perms & 0x0002) ? 'w' : '-') . + (($in_Perms & 0x0001) ? (($in_Perms & 0x0200) ? 't' : 'x' ) : + (($in_Perms & 0x0200) ? 'T' : '-')); + return $sP; +} + +function permission_check($name,$args,$verbose=True) +{ + //echo "

permision_check('$name',".print_r($args,True).",'$verbose')

\n"; + + if (substr($name,0,3) != '../') + { + $name = '../'.$name; + } + $rel_name = substr($name,3); + + // dont know how much of this is working on windows + if (!file_exists($name) && isset($args['only_if_exists']) && $args['only_if_exists']) + { + return True; + } + + if ($verbose) + { + $owner = posix_getpwuid(fileowner($name)); + $group = posix_getgrgid(filegroup($name)); + + $checks = array(); + if (isset($args['is_writable'])) $checks[] = (!$args['is_writable']?'not ':'').'writable by webserver'; + if (isset($args['is_world_readable'])) $checks[] = (!$args['is_world_readable']?'not ':'').'world readable'; + if (isset($args['is_world_writable'])) $checks[] = (!$args['is_world_writable']?'not ':'').'world writable'; + $checks = implode(', ',$checks); + + echo "Checking file-permissions of $rel_name for $checks: $owner[name]/$group[name] ".verbosePerms(fileperms($name))."\n"; + } + if (!file_exists($name)) + { + echo "*** $rel_name does not exist !!!\n"; + return False; + } + if (!$GLOBALS['run_by_webserver'] && ($args['is_readable'] || $args['is_writable'])) + { + echo "*** check can only be performed, if called via a webserver, as the user-id/-name of the webserver is not known.\n"; + unset($args['is_readable']); + unset($args['is_writable']); + } + $Ok = True; + if (isset($args['is_writable']) && is_writable($name) != $args['is_writable']) + { + echo "*** $rel_name ".($args['is_writable']?'not ':'')."writable by the webserver !!!\n"; + $Ok = False; + } + if (isset($args['is_readable']) && is_readable($name) != $args['is_readable']) + { + echo "*** $rel_name ".($args['is_readable']?'not ':'')."readable by the webserver !!!\n"; + $Ok = False; + } + if (isset($args['is_world_readable']) && !(fileperms($name) & 04) == $args['is_world_readable']) + { + echo "*** $rel_name ".($args['is_world_readable']?'not ':'')."world-readable !!!\n"; + $Ok = False; + } + if (isset($args['is_world_writable']) && !(fileperms($name) & 02) == $args['is_world_writable']) + { + echo "*** $rel_name ".($args['is_world_writable']?'not ':'')."world-writable !!!\n"; + $Ok = False; + } + if ($Ok && $args['recursiv'] && is_dir($name)) + { + $handle = @opendir($name); + while($handle && ($file = readdir($handle))) + { + if ($file != '.' && $file != '..') + { + $Ok = $Ok && permission_check(($name!='.'?$name.'/':'').$file,$args,False); + } + } + if ($handle) closedir($handle); + } + return $Ok; +} + +function php_ini_check($name,$args) +{ + $safe_mode = ini_get('safe_mode'); + + $ini_value = ini_get($name); + $check = isset($args['check']) ? $args['check'] : '='; + $verbose_value = isset($args['verbose_value']) ? $args['verbose_value'] : $args['value']; + echo "Checking php.ini: $name $check $verbose_value: ini_get('$name')='$ini_value'\n"; + switch ($check) + { + case 'not set': + $result = !($ini_value & $args['value']); + break; + case 'set': + $result = !!($ini_value & $args['value']); + break; + case '>=': + $result = intval($ini_value) >= intval($args['value']) && + ($args['value'] == intval($args['value']) || + substr($args['value'],-1) == substr($ini_value,-1)); + break; + case '=': + default: + $result = $ini_value == $args['value']; + break; + } + if (!$result) + { + if (isset($args['warning'])) + { + echo $args['warning']."\n"; + } + if (isset($args['safe_mode']) && $safe_mode) + { + echo "*** Please make the following change in your php.ini:\n$args[safe_mode]\n"; + } + return False; + } + return True; +} + +if ($run_by_webserver) +{ + //echo "\n
\nChecking the eGroupWare install\n
\n\n"; + $tpl_root = $GLOBALS['phpgw_setup']->html->setup_tpl_dir('setup'); + $setup_tpl = CreateObject('setup.Template',$tpl_root); + $setup_tpl->set_file(array( + 'T_head' => 'head.tpl', + 'T_footer' => 'footer.tpl', + )); + $ConfigDomain = get_var('ConfigDomain',Array('POST','COOKIE')); + $GLOBALS['phpgw_setup']->html->show_header(lang('Checking the eGroupWare Installation'),False,'config',$ConfigDomain . '(' . $phpgw_domain[$ConfigDomain]['db_type'] . ')'); + echo '

'.lang('Checking the eGroupWare Installation')."

\n"; + echo "
\n";;
+}
+else
+{
+	echo lang('Checking the eGroupWare Installation')."\n\n";
+}
+
+$Ok = True;
+foreach ($checks as $name => $args)
+{
+	$check_ok = $args['func']($name,$args);
+	$Ok = $Ok && $check_ok;
+}
+
+if ($run_by_webserver)
+{
+	echo "
\n";; + + if ($GLOBALS['phpgw_info']['setup']['stage']['header'] != 10) + { + if (!$Ok) + { + echo '

'.lang('Please fix the above errors (***) and %1continue to the Header Admin%2','','')."

\n"; + } + else + { + echo '

'.lang('Continue to the Header Admin')."

\n"; + } + } + else + { + echo '

'.lang('Return to Setup')."

\n"; + } + $setup_tpl->pparse('out','T_footer'); + //echo "\n\n"; +} diff --git a/setup/index.php b/setup/index.php index c499feb095..beebb906c8 100644 --- a/setup/index.php +++ b/setup/index.php @@ -60,7 +60,8 @@ $GLOBALS['phpgw_info']['setup']['stage']['header'] = $GLOBALS['phpgw_setup']->detection->check_header(); if ($GLOBALS['phpgw_info']['setup']['stage']['header'] != '10') { - Header('Location: manageheader.php'); +// Header('Location: manageheader.php'); + Header('Location: check_install.php'); exit; } elseif (!$GLOBALS['phpgw_setup']->auth('Config')) diff --git a/setup/templates/default/head.tpl b/setup/templates/default/head.tpl index c4d9e364b4..fd0ef65b94 100644 --- a/setup/templates/default/head.tpl +++ b/setup/templates/default/head.tpl @@ -87,19 +87,25 @@ - + + - - - - - -
*  Back to user login
{logouticon} {logoutbutton}
+ +