16b13307fSandi<?php 26b13307fSandi/** 36b13307fSandi * DokuWiki Actions 46b13307fSandi * 56b13307fSandi * @license GPL 2 (http://www.gnu.org/licenses/gpl.html) 66b13307fSandi * @author Andreas Gohr <andi@splitbrain.org> 76b13307fSandi */ 86b13307fSandi 96b13307fSandi if(!defined('DOKU_INC')) define('DOKU_INC',realpath(dirname(__FILE__).'/../').'/'); 106b13307fSandi require_once(DOKU_INC.'inc/template.php'); 116b13307fSandi 12af182434Sandi 136b13307fSandi/** 146b13307fSandi * Call the needed action handlers 156b13307fSandi * 166b13307fSandi * @author Andreas Gohr <andi@splitbrain.org> 176b13307fSandi */ 186b13307fSandifunction act_dispatch(){ 196b13307fSandi global $INFO; 206b13307fSandi global $ACT; 216b13307fSandi global $ID; 226b13307fSandi global $QUERY; 236b13307fSandi global $lang; 246b13307fSandi global $conf; 256b13307fSandi 26af182434Sandi //sanitize $ACT 27af182434Sandi $ACT = act_clean($ACT); 28af182434Sandi 29b8957367SBenjamin Gilbert //check if searchword was given - else just show 30b8957367SBenjamin Gilbert if($ACT == 'search' && empty($QUERY)){ 31b8957367SBenjamin Gilbert $ACT = 'show'; 32b8957367SBenjamin Gilbert } 33b8957367SBenjamin Gilbert 34b8957367SBenjamin Gilbert //login stuff 35b8957367SBenjamin Gilbert if(in_array($ACT,array('login','logout'))) 36b8957367SBenjamin Gilbert $ACT = act_auth($ACT); 37b8957367SBenjamin Gilbert 386b13307fSandi //check permissions 396b13307fSandi $ACT = act_permcheck($ACT); 406b13307fSandi 41b8957367SBenjamin Gilbert //register 42b8957367SBenjamin Gilbert if($ACT == 'register' && register()){ 43b8957367SBenjamin Gilbert $ACT = 'login'; 44b8957367SBenjamin Gilbert } 456b13307fSandi 466b13307fSandi //save 476b13307fSandi if($ACT == 'save') 486b13307fSandi $ACT = act_save($ACT); 496b13307fSandi 506b13307fSandi //edit 51b146b32bSandi if(($ACT == 'edit' || $ACT == 'preview') && $INFO['editable']){ 52af182434Sandi $ACT = act_edit($ACT); 536b13307fSandi }else{ 546b13307fSandi unlock($ID); //try to unlock 556b13307fSandi } 566b13307fSandi 576b13307fSandi //handle export 58ac83b9d8Sandi if(substr($ACT,0,7) == 'export_') 596b13307fSandi $ACT = act_export($ACT); 606b13307fSandi 616b13307fSandi //display some infos 626b13307fSandi if($ACT == 'check'){ 636b13307fSandi check(); 646b13307fSandi $ACT = 'show'; 656b13307fSandi } 666b13307fSandi 67c19fe9c0Sandi //handle admin tasks 68c19fe9c0Sandi if($ACT == 'admin'){ 69c19fe9c0Sandi if($_REQUEST['page'] == 'acl'){ 70c19fe9c0Sandi require_once(DOKU_INC.'inc/admin_acl.php'); 71c19fe9c0Sandi admin_acl_handler(); 72c19fe9c0Sandi } 73c19fe9c0Sandi } 74c19fe9c0Sandi 756b13307fSandi //call template FIXME: all needed vars available? 766b13307fSandi header('Content-Type: text/html; charset=utf-8'); 77*5a892029SAndreas Gohr include(template('main.php')); 78c19fe9c0Sandi // output for the commands is now handled in inc/templates.php 79c19fe9c0Sandi // in function tpl_content() 806b13307fSandi} 816b13307fSandi 826b13307fSandi/** 83af182434Sandi * Sanitize the action command 84af182434Sandi * 85af182434Sandi * Add all allowed commands here. 86af182434Sandi * 87af182434Sandi * @author Andreas Gohr <andi@splitbrain.org> 88af182434Sandi */ 89af182434Sandifunction act_clean($act){ 90af182434Sandi global $lang; 91af182434Sandi 92cf81b04aSandi //handle localized buttons 93cf81b04aSandi if($act == $lang['btn_save']) $act = 'save'; 94cf81b04aSandi if($act == $lang['btn_preview']) $act = 'preview'; 95cf81b04aSandi if($act == $lang['btn_cancel']) $act = 'show'; 96cf81b04aSandi 97ac83b9d8Sandi //remove all bad chars 98ac83b9d8Sandi $act = strtolower($act); 99ac83b9d8Sandi $act = preg_replace('/[^a-z_]+/','',$act); 100ac83b9d8Sandi 101ac83b9d8Sandi if($act == 'export_html') $act = 'export_xhtml'; 102b146b32bSandi 1032f597e0eSandi if(array_search($act,array('login','logout','register','save','edit', 104ac83b9d8Sandi 'preview','search','show','check','index','revisions', 105ac83b9d8Sandi 'diff','recent','backlink','admin',)) === false 106ac83b9d8Sandi && substr($act,0,7) != 'export_' ) { 107b146b32bSandi msg('Unknown command: '.htmlspecialchars($act),-1); 108af182434Sandi return 'show'; 109af182434Sandi } 110af182434Sandi return $act; 111af182434Sandi} 112af182434Sandi 113af182434Sandi/** 1146b13307fSandi * Run permissionchecks 1156b13307fSandi * 1166b13307fSandi * @author Andreas Gohr <andi@splitbrain.org> 1176b13307fSandi */ 1186b13307fSandifunction act_permcheck($act){ 119dbbc6aa7Sandi global $INFO; 1205e199953Smatthiasgrimm global $conf; 121dbbc6aa7Sandi 1226b13307fSandi if(in_array($act,array('save','preview','edit'))){ 1236b13307fSandi if($INFO['exists']){ 124bdbc16bfSandi if($act == 'edit'){ 125bdbc16bfSandi //the edit function will check again and do a source show 126bdbc16bfSandi //when no AUTH_EDIT available 127bdbc16bfSandi $permneed = AUTH_READ; 128bdbc16bfSandi }else{ 1296b13307fSandi $permneed = AUTH_EDIT; 130bdbc16bfSandi } 1316b13307fSandi }else{ 1326b13307fSandi $permneed = AUTH_CREATE; 1336b13307fSandi } 1345e199953Smatthiasgrimm }elseif(in_array($act,array('login','search','recent'))){ 1356b13307fSandi $permneed = AUTH_NONE; 1365e199953Smatthiasgrimm }elseif($act == 'register'){ 137e1fcbe1eSandi if ($conf['openregister']){ 1385e199953Smatthiasgrimm $permneed = AUTH_NONE; 139e1fcbe1eSandi }else{ 140e1fcbe1eSandi $permneed = AUTH_ADMIN; 141e1fcbe1eSandi } 142c19fe9c0Sandi }elseif($act == 'admin'){ 143c19fe9c0Sandi $permneed = AUTH_ADMIN; 1446b13307fSandi }else{ 1456b13307fSandi $permneed = AUTH_READ; 1466b13307fSandi } 147dbbc6aa7Sandi if($INFO['perm'] >= $permneed) return $act; 148dbbc6aa7Sandi 1496b13307fSandi return 'denied'; 1506b13307fSandi} 1516b13307fSandi 1526b13307fSandi/** 1536b13307fSandi * Handle 'save' 1546b13307fSandi * 1556b13307fSandi * Checks for spam and conflicts and saves the page. 1566b13307fSandi * Does a redirect to show the page afterwards or 1576b13307fSandi * returns a new action. 1586b13307fSandi * 1596b13307fSandi * @author Andreas Gohr <andi@splitbrain.org> 1606b13307fSandi */ 1616b13307fSandifunction act_save($act){ 1626b13307fSandi global $ID; 1636b13307fSandi global $DATE; 1646b13307fSandi global $PRE; 1656b13307fSandi global $TEXT; 1666b13307fSandi global $SUF; 1676b13307fSandi global $SUM; 1686b13307fSandi 1696b13307fSandi //spam check 1706b13307fSandi if(checkwordblock()) 1716b13307fSandi return 'wordblock'; 1726b13307fSandi //conflict check //FIXME use INFO 1736b13307fSandi if($DATE != 0 && @filemtime(wikiFN($ID)) > $DATE ) 1746b13307fSandi return 'conflict'; 1756b13307fSandi 1766b13307fSandi //save it 1776b13307fSandi saveWikiText($ID,con($PRE,$TEXT,$SUF,1),$SUM); //use pretty mode for con 1786b13307fSandi //unlock it 1796b13307fSandi unlock($ID); 1806b13307fSandi 1816b13307fSandi //show it 1826b13307fSandi session_write_close(); 1836b13307fSandi header("Location: ".wl($ID,'',true)); 1846b13307fSandi exit(); 1856b13307fSandi} 1866b13307fSandi 1876b13307fSandi/** 188b8957367SBenjamin Gilbert * Handle 'login', 'logout' 1896b13307fSandi * 1906b13307fSandi * @author Andreas Gohr <andi@splitbrain.org> 1916b13307fSandi */ 1926b13307fSandifunction act_auth($act){ 19308eda5bcSmatthiasgrimm global $ID; 19408eda5bcSmatthiasgrimm 1956b13307fSandi //already logged in? 1966b13307fSandi if($_SERVER['REMOTE_USER'] && $act=='login') 1976b13307fSandi return 'show'; 1986b13307fSandi 1996b13307fSandi //handle logout 2006b13307fSandi if($act=='logout'){ 20108eda5bcSmatthiasgrimm $lockedby = checklock($ID); //page still locked? 202424c3c4fSJohannes Buchner if($lockedby == $_SERVER['REMOTE_USER']) 20308eda5bcSmatthiasgrimm unlock($ID); //try to unlock 20408eda5bcSmatthiasgrimm 2056b13307fSandi auth_logoff(); 2066b13307fSandi return 'login'; 2076b13307fSandi } 2086b13307fSandi 2096b13307fSandi return $act; 2106b13307fSandi} 2116b13307fSandi 2126b13307fSandi/** 2136b13307fSandi * Handle 'edit', 'preview' 2146b13307fSandi * 2156b13307fSandi * @author Andreas Gohr <andi@splitbrain.org> 2166b13307fSandi */ 2176b13307fSandifunction act_edit($act){ 218cd409024Sjorda global $ID; 219cd409024Sjorda 2206b13307fSandi //check if locked by anyone - if not lock for my self 2216b13307fSandi $lockedby = checklock($ID); 2226b13307fSandi if($lockedby) return 'locked'; 2236b13307fSandi 2246b13307fSandi lock($ID); 2256b13307fSandi return $act; 2266b13307fSandi} 2276b13307fSandi 2286b13307fSandi/** 2296b13307fSandi * Handle 'edit', 'preview' 2306b13307fSandi * 2316b13307fSandi * @author Andreas Gohr <andi@splitbrain.org> 2326b13307fSandi */ 2336b13307fSandifunction act_export($act){ 2346b13307fSandi global $ID; 2356b13307fSandi global $REV; 2366b13307fSandi 237ac83b9d8Sandi // no renderer for this 238ac83b9d8Sandi if($act == 'export_raw'){ 239ac83b9d8Sandi header('Content-Type: text/plain; charset=utf-8'); 240ac83b9d8Sandi print rawWiki($ID,$REV); 241ac83b9d8Sandi exit; 242ac83b9d8Sandi } 243ac83b9d8Sandi 244ac83b9d8Sandi // html export #FIXME what about the template's style? 245ac83b9d8Sandi if($act == 'export_xhtml'){ 2466b13307fSandi header('Content-Type: text/html; charset=utf-8'); 2476b13307fSandi ptln('<html>'); 2486b13307fSandi ptln('<head>'); 2496b13307fSandi tpl_metaheaders(); 2506b13307fSandi ptln('</head>'); 2516b13307fSandi ptln('<body>'); 252ac83b9d8Sandi print p_wiki_xhtml($ID,$REV,false); 2536b13307fSandi ptln('</body>'); 2546b13307fSandi ptln('</html>'); 2556b13307fSandi exit; 2566b13307fSandi } 2576b13307fSandi 258ac83b9d8Sandi // try to run renderer #FIXME use cached instructions 259ac83b9d8Sandi $mode = substr($act,7); 2609dc2c2afSandi $text = p_render($mode,p_get_instructions(rawWiki($ID,$REV)),$info); 261ac83b9d8Sandi if(!is_null($text)){ 262ac83b9d8Sandi print $text; 2636b13307fSandi exit; 2646b13307fSandi } 2656b13307fSandi 266ac83b9d8Sandi 267ac83b9d8Sandi 2686b13307fSandi return 'show'; 2696b13307fSandi} 270340756e4Sandi 271340756e4Sandi 272340756e4Sandi//Setup VIM: ex: et ts=2 enc=utf-8 : 273