xref: /dokuwiki/inc/actions.php (revision 08eda5bc3c3fbfc539af9f9fd2f62a3c23fb7798) 
16b13307fSandi<?php
26b13307fSandi/**
36b13307fSandi * DokuWiki Actions
46b13307fSandi *
56b13307fSandi * @license    GPL 2 (http://www.gnu.org/licenses/gpl.html)
66b13307fSandi * @author     Andreas Gohr <andi@splitbrain.org>
76b13307fSandi */
86b13307fSandi
96b13307fSandi  if(!defined('DOKU_INC')) define('DOKU_INC',realpath(dirname(__FILE__).'/../').'/');
106b13307fSandi  require_once(DOKU_INC.'inc/template.php');
116b13307fSandi
12af182434Sandi
136b13307fSandi/**
146b13307fSandi * Call the needed action handlers
156b13307fSandi *
166b13307fSandi * @author Andreas Gohr <andi@splitbrain.org>
176b13307fSandi */
186b13307fSandifunction act_dispatch(){
196b13307fSandi  global $INFO;
206b13307fSandi  global $ACT;
216b13307fSandi  global $ID;
226b13307fSandi  global $QUERY;
236b13307fSandi  global $lang;
246b13307fSandi  global $conf;
256b13307fSandi
26af182434Sandi  //sanitize $ACT
27af182434Sandi  $ACT = act_clean($ACT);
28af182434Sandi
296b13307fSandi  //check permissions
306b13307fSandi  $ACT = act_permcheck($ACT);
316b13307fSandi
326b13307fSandi  //login stuff
336b13307fSandi  if(in_array($ACT,array('login','logout','register')))
342f597e0eSandi    $ACT = act_auth($ACT);
356b13307fSandi
366b13307fSandi  //save
376b13307fSandi  if($ACT == 'save')
386b13307fSandi    $ACT = act_save($ACT);
396b13307fSandi
406b13307fSandi  //edit
41b146b32bSandi  if(($ACT == 'edit' || $ACT == 'preview') && $INFO['editable']){
42af182434Sandi    $ACT = act_edit($ACT);
436b13307fSandi  }else{
446b13307fSandi    unlock($ID); //try to unlock
456b13307fSandi  }
466b13307fSandi
476b13307fSandi  //handle export
48ac83b9d8Sandi  if(substr($ACT,0,7) == 'export_')
496b13307fSandi    $ACT = act_export($ACT);
506b13307fSandi
516b13307fSandi  //display some infos
526b13307fSandi  if($ACT == 'check'){
536b13307fSandi    check();
546b13307fSandi    $ACT = 'show';
556b13307fSandi  }
566b13307fSandi
576b13307fSandi  //check if searchword was given - else just show
586b13307fSandi  if($ACT == 'search' && empty($QUERY)){
596b13307fSandi    $ACT = 'show';
606b13307fSandi  }
616b13307fSandi
62c19fe9c0Sandi  //handle admin tasks
63c19fe9c0Sandi  if($ACT == 'admin'){
64c19fe9c0Sandi		if($_REQUEST['page'] == 'acl'){
65c19fe9c0Sandi			require_once(DOKU_INC.'inc/admin_acl.php');
66c19fe9c0Sandi			admin_acl_handler();
67c19fe9c0Sandi    }
68c19fe9c0Sandi  }
69c19fe9c0Sandi
706b13307fSandi  //call template FIXME: all needed vars available?
716b13307fSandi  header('Content-Type: text/html; charset=utf-8');
72f62ea8a1Sandi  include(DOKU_INC.'lib/tpl/'.$conf['template'].'/main.php');
73c19fe9c0Sandi  // output for the commands is now handled in inc/templates.php
74c19fe9c0Sandi  // in function tpl_content()
756b13307fSandi}
766b13307fSandi
776b13307fSandi/**
78af182434Sandi * Sanitize the action command
79af182434Sandi *
80af182434Sandi * Add all allowed commands here.
81af182434Sandi *
82af182434Sandi * @author Andreas Gohr <andi@splitbrain.org>
83af182434Sandi */
84af182434Sandifunction act_clean($act){
85af182434Sandi  global $lang;
86af182434Sandi
87cf81b04aSandi  //handle localized buttons
88cf81b04aSandi  if($act == $lang['btn_save']) $act = 'save';
89cf81b04aSandi  if($act == $lang['btn_preview']) $act = 'preview';
90cf81b04aSandi  if($act == $lang['btn_cancel']) $act = 'show';
91cf81b04aSandi
92ac83b9d8Sandi  //remove all bad chars
93ac83b9d8Sandi  $act = strtolower($act);
94ac83b9d8Sandi  $act = preg_replace('/[^a-z_]+/','',$act);
95ac83b9d8Sandi
96ac83b9d8Sandi  if($act == 'export_html') $act = 'export_xhtml';
97b146b32bSandi
982f597e0eSandi  if(array_search($act,array('login','logout','register','save','edit',
99ac83b9d8Sandi                             'preview','search','show','check','index','revisions',
100ac83b9d8Sandi                             'diff','recent','backlink','admin',)) === false
101ac83b9d8Sandi     && substr($act,0,7) != 'export_' ) {
102b146b32bSandi    msg('Unknown command: '.htmlspecialchars($act),-1);
103af182434Sandi    return 'show';
104af182434Sandi  }
105af182434Sandi  return $act;
106af182434Sandi}
107af182434Sandi
108af182434Sandi/**
1096b13307fSandi * Run permissionchecks
1106b13307fSandi *
1116b13307fSandi * @author Andreas Gohr <andi@splitbrain.org>
1126b13307fSandi */
1136b13307fSandifunction act_permcheck($act){
114dbbc6aa7Sandi  global $INFO;
1155e199953Smatthiasgrimm  global $conf;
116dbbc6aa7Sandi
1176b13307fSandi  if(in_array($act,array('save','preview','edit'))){
1186b13307fSandi    if($INFO['exists']){
119bdbc16bfSandi      if($act == 'edit'){
120bdbc16bfSandi        //the edit function will check again and do a source show
121bdbc16bfSandi        //when no AUTH_EDIT available
122bdbc16bfSandi        $permneed = AUTH_READ;
123bdbc16bfSandi      }else{
1246b13307fSandi        $permneed = AUTH_EDIT;
125bdbc16bfSandi      }
1266b13307fSandi    }else{
1276b13307fSandi      $permneed = AUTH_CREATE;
1286b13307fSandi    }
1295e199953Smatthiasgrimm  }elseif(in_array($act,array('login','search','recent'))){
1306b13307fSandi    $permneed = AUTH_NONE;
1315e199953Smatthiasgrimm  }elseif($act == 'register'){
132e1fcbe1eSandi    if ($conf['openregister']){
1335e199953Smatthiasgrimm      $permneed = AUTH_NONE;
134e1fcbe1eSandi    }else{
135e1fcbe1eSandi      $permneed = AUTH_ADMIN;
136e1fcbe1eSandi    }
137c19fe9c0Sandi  }elseif($act == 'admin'){
138c19fe9c0Sandi    $permneed = AUTH_ADMIN;
1396b13307fSandi  }else{
1406b13307fSandi    $permneed = AUTH_READ;
1416b13307fSandi  }
142dbbc6aa7Sandi  if($INFO['perm'] >= $permneed) return $act;
143dbbc6aa7Sandi
1446b13307fSandi  return 'denied';
1456b13307fSandi}
1466b13307fSandi
1476b13307fSandi/**
1486b13307fSandi * Handle 'save'
1496b13307fSandi *
1506b13307fSandi * Checks for spam and conflicts and saves the page.
1516b13307fSandi * Does a redirect to show the page afterwards or
1526b13307fSandi * returns a new action.
1536b13307fSandi *
1546b13307fSandi * @author Andreas Gohr <andi@splitbrain.org>
1556b13307fSandi */
1566b13307fSandifunction act_save($act){
1576b13307fSandi  global $ID;
1586b13307fSandi  global $DATE;
1596b13307fSandi  global $PRE;
1606b13307fSandi  global $TEXT;
1616b13307fSandi  global $SUF;
1626b13307fSandi  global $SUM;
1636b13307fSandi
1646b13307fSandi  //spam check
1656b13307fSandi  if(checkwordblock())
1666b13307fSandi    return 'wordblock';
1676b13307fSandi  //conflict check //FIXME use INFO
1686b13307fSandi  if($DATE != 0 && @filemtime(wikiFN($ID)) > $DATE )
1696b13307fSandi    return 'conflict';
1706b13307fSandi
1716b13307fSandi  //save it
1726b13307fSandi  saveWikiText($ID,con($PRE,$TEXT,$SUF,1),$SUM); //use pretty mode for con
1736b13307fSandi  //unlock it
1746b13307fSandi  unlock($ID);
1756b13307fSandi
1766b13307fSandi  //show it
1776b13307fSandi  session_write_close();
1786b13307fSandi  header("Location: ".wl($ID,'',true));
1796b13307fSandi  exit();
1806b13307fSandi}
1816b13307fSandi
1826b13307fSandi/**
1836b13307fSandi * Handle 'login', 'logout', 'register'
1846b13307fSandi *
1856b13307fSandi * @author Andreas Gohr <andi@splitbrain.org>
1866b13307fSandi */
1876b13307fSandifunction act_auth($act){
188*08eda5bcSmatthiasgrimm  global $ID;
189*08eda5bcSmatthiasgrimm
1906b13307fSandi  //already logged in?
1916b13307fSandi  if($_SERVER['REMOTE_USER'] && $act=='login')
1926b13307fSandi    return 'show';
1936b13307fSandi
1946b13307fSandi  //handle logout
1956b13307fSandi  if($act=='logout'){
196*08eda5bcSmatthiasgrimm    $lockedby = checklock($ID); //page still locked?
197*08eda5bcSmatthiasgrimm    if($lockedby == $_SERVER['REMOTER_USER'])
198*08eda5bcSmatthiasgrimm      unlock($ID); //try to unlock
199*08eda5bcSmatthiasgrimm
2006b13307fSandi    auth_logoff();
2016b13307fSandi    return 'login';
2026b13307fSandi  }
2036b13307fSandi
2046b13307fSandi  //handle register
2056b13307fSandi  if($act=='register' && register()){
2062f597e0eSandi    return 'login';
2076b13307fSandi  }
2086b13307fSandi
2096b13307fSandi  return $act;
2106b13307fSandi}
2116b13307fSandi
2126b13307fSandi/**
2136b13307fSandi * Handle 'edit', 'preview'
2146b13307fSandi *
2156b13307fSandi * @author Andreas Gohr <andi@splitbrain.org>
2166b13307fSandi */
2176b13307fSandifunction act_edit($act){
218cd409024Sjorda  global $ID;
219cd409024Sjorda
2206b13307fSandi  //check if locked by anyone - if not lock for my self
2216b13307fSandi  $lockedby = checklock($ID);
2226b13307fSandi  if($lockedby) return 'locked';
2236b13307fSandi
2246b13307fSandi  lock($ID);
2256b13307fSandi  return $act;
2266b13307fSandi}
2276b13307fSandi
2286b13307fSandi/**
2296b13307fSandi * Handle 'edit', 'preview'
2306b13307fSandi *
2316b13307fSandi * @author Andreas Gohr <andi@splitbrain.org>
2326b13307fSandi */
2336b13307fSandifunction act_export($act){
2346b13307fSandi  global $ID;
2356b13307fSandi  global $REV;
2366b13307fSandi
237ac83b9d8Sandi  // no renderer for this
238ac83b9d8Sandi  if($act == 'export_raw'){
239ac83b9d8Sandi    header('Content-Type: text/plain; charset=utf-8');
240ac83b9d8Sandi    print rawWiki($ID,$REV);
241ac83b9d8Sandi    exit;
242ac83b9d8Sandi  }
243ac83b9d8Sandi
244ac83b9d8Sandi  // html export #FIXME what about the template's style?
245ac83b9d8Sandi  if($act == 'export_xhtml'){
2466b13307fSandi    header('Content-Type: text/html; charset=utf-8');
2476b13307fSandi    ptln('<html>');
2486b13307fSandi    ptln('<head>');
2496b13307fSandi    tpl_metaheaders();
2506b13307fSandi    ptln('</head>');
2516b13307fSandi    ptln('<body>');
252ac83b9d8Sandi    print p_wiki_xhtml($ID,$REV,false);
2536b13307fSandi    ptln('</body>');
2546b13307fSandi    ptln('</html>');
2556b13307fSandi    exit;
2566b13307fSandi  }
2576b13307fSandi
258ac83b9d8Sandi  // try to run renderer #FIXME use cached instructions
259ac83b9d8Sandi  $mode = substr($act,7);
2609dc2c2afSandi  $text = p_render($mode,p_get_instructions(rawWiki($ID,$REV)),$info);
261ac83b9d8Sandi  if(!is_null($text)){
262ac83b9d8Sandi    print $text;
2636b13307fSandi    exit;
2646b13307fSandi  }
2656b13307fSandi
266ac83b9d8Sandi
267ac83b9d8Sandi
2686b13307fSandi  return 'show';
2696b13307fSandi}
270340756e4Sandi
271340756e4Sandi
272340756e4Sandi//Setup VIM: ex: et ts=2 enc=utf-8 :
273