国内流行的内容管理系统(CMS)多端全媒体解决方案 https://www.dedebiz.com
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.

373 lines
10KB

  1. <?php
  2. /**
  3. * @version $Id: common.inc.php 3 17:44 2010-11-23 tianya $
  4. * @package DedeCMS.Libraries
  5. * @copyright Copyright (c) 2007 - 2018, DesDev, Inc.
  6. * @copyright Copyright (c) 2020, DedeBIZ.COM
  7. * @license https://www.dedebiz.com/license/v6
  8. * @link https://www.dedebiz.com
  9. */
  10. // 生产环境使用production,如果采用dev模式,会有一些php的报错信息提示,便于开发调试
  11. define('DEDE_ENVIRONMENT', 'dev');
  12. if ( DEDE_ENVIRONMENT == 'production' )
  13. {
  14. error_reporting(E_ALL || ~E_NOTICE);
  15. } else {
  16. error_reporting(E_ALL);
  17. }
  18. define('DEBUG_LEVEL', FALSE); // 如果设置为TRUE则会打印执行SQL的时间和标签加载时间方便调试
  19. define('DEDEINC', str_replace("\\", '/', dirname(__FILE__) ) );
  20. define('DEDEROOT', str_replace("\\", '/', substr(DEDEINC,0,-8) ) );
  21. define('DEDEDATA', DEDEROOT.'/data');
  22. define('DEDEMEMBER', DEDEROOT.'/member');
  23. define('DEDETEMPLATE', DEDEROOT.'/templets');
  24. // ------------------------------------------------------------------------
  25. define('DEDEMODEL', './model');
  26. define('DEDECONTROL', './control');
  27. define('DEDEAPPTPL', './templates');
  28. // ------------------------------------------------------------------------
  29. define('DEDEVER', 6); // 当前系统大版本
  30. define('DEDEPUB', <<<EOT
  31. -----BEGIN PUBLIC KEY-----
  32. MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvupO2Lixns34bBqwTzK0
  33. 9wA9sfGBdgc03zh1sUacieJBikx08e7xmkJbMF81jb/YfNGW/+iJ3qHULdc9Dtd3
  34. +FsnHG+tUDnzjkPnVVmnrjucQqfHRRVKKAgXOWxtuRKUVF3NDjiJtDAf5Y2BMAhw
  35. oqzeepye5I4mWyO4A8/V2ougO+xDK426MIf1dq+W59NVZj8k+zeZrbPh7+fPFw4u
  36. PwAMpkTJJ9nwNOO6saH2eMGaQ3oxZIQ+SmminDB8miI/+hwIn2hNmaHFuur0OGlB
  37. NQabUzX9JoYtXqPcpZRT7ymHrppU0KFdUSEJiW0utTWJo0HrDOBIT5qWlM0MP9p/
  38. PwIDAQAB
  39. -----END PUBLIC KEY-----
  40. EOT); // DedeBIZ系统公钥
  41. if (version_compare(PHP_VERSION, '5.3.0', '<') && function_exists("get_magic_quotes_gpc"))
  42. {
  43. set_magic_quotes_runtime(0);
  44. }
  45. if (version_compare(PHP_VERSION, '5.4.0', '>='))
  46. {
  47. if (!function_exists('session_register'))
  48. {
  49. function session_register()
  50. {
  51. $args = func_get_args();
  52. foreach ($args as $key){
  53. $_SESSION[$key]=$GLOBALS[$key];
  54. }
  55. }
  56. function session_is_registered($key)
  57. {
  58. return isset($_SESSION[$key]);
  59. }
  60. function session_unregister($key){
  61. unset($_SESSION[$key]);
  62. }
  63. }
  64. }
  65. //是否启用mb_substr替换cn_substr来提高效率
  66. $cfg_is_mb = $cfg_is_iconv = FALSE;
  67. if(function_exists('mb_substr')) $cfg_is_mb = TRUE;
  68. if(function_exists('iconv_substr')) $cfg_is_iconv = TRUE;
  69. function _RunMagicQuotes(&$svar)
  70. {
  71. if(function_exists("get_magic_quotes_gpc") && !@get_magic_quotes_gpc())
  72. {
  73. if( is_array($svar) )
  74. {
  75. foreach($svar as $_k => $_v) $svar[$_k] = _RunMagicQuotes($_v);
  76. }
  77. else
  78. {
  79. if( strlen($svar)>0 && preg_match('#^(cfg_|GLOBALS|_GET|_POST|_COOKIE|_SESSION)#',$svar) )
  80. {
  81. exit('Request var not allow!');
  82. }
  83. $svar = addslashes($svar);
  84. }
  85. }
  86. return $svar;
  87. }
  88. if (!defined('DEDEREQUEST'))
  89. {
  90. //检查和注册外部提交的变量 (2011.8.10 修改登录时相关过滤)
  91. function CheckRequest(&$val) {
  92. if (is_array($val)) {
  93. foreach ($val as $_k=>$_v) {
  94. if($_k == 'nvarname') continue;
  95. CheckRequest($_k);
  96. CheckRequest($val[$_k]);
  97. }
  98. } else
  99. {
  100. if( strlen($val)>0 && preg_match('#^(cfg_|GLOBALS|_GET|_POST|_COOKIE|_SESSION)#',$val) )
  101. {
  102. exit('Request var not allow!');
  103. }
  104. }
  105. }
  106. //var_dump($_REQUEST);exit;
  107. CheckRequest($_REQUEST);
  108. CheckRequest($_COOKIE);
  109. foreach(Array('_GET','_POST','_COOKIE') as $_request)
  110. {
  111. foreach($$_request as $_k => $_v)
  112. {
  113. if($_k == 'nvarname') ${$_k} = $_v;
  114. else ${$_k} = _RunMagicQuotes($_v);
  115. }
  116. }
  117. }
  118. //系统相关变量检测
  119. if(!isset($needFilter))
  120. {
  121. $needFilter = false;
  122. }
  123. $registerGlobals = @ini_get("register_globals");
  124. $isUrlOpen = @ini_get("allow_url_fopen");
  125. $isSafeMode = @ini_get("safe_mode");
  126. if( preg_match('/windows/i', @getenv('OS')) )
  127. {
  128. $isSafeMode = false;
  129. }
  130. //系统配置参数
  131. require_once(DEDEDATA."/config.cache.inc.php");
  132. //Session保存路径
  133. $sessSaveHandler = @ini_get("session.save_handler");
  134. if ($sessSaveHandler !== "files") {
  135. @ini_set("session.save_handler", "files");
  136. }
  137. $enkey = substr(md5(substr($cfg_cookie_encode,0,5)),0,10);
  138. $sessSavePath = DEDEDATA."/sessions_{$enkey}";
  139. if ( !is_dir($sessSavePath) ) mkdir($sessSavePath);
  140. if(is_writeable($sessSavePath) && is_readable($sessSavePath))
  141. {
  142. session_save_path($sessSavePath);
  143. }
  144. //转换上传的文件相关的变量及安全处理、并引用前台通用的上传函数
  145. if($_FILES)
  146. {
  147. require_once(DEDEINC.'/uploadsafe.inc.php');
  148. }
  149. //数据库配置文件
  150. require_once(DEDEDATA.'/common.inc.php');
  151. if ( !isset($cfg_dbtype) )
  152. {
  153. $cfg_dbtype = 'mysql';
  154. }
  155. //载入系统验证安全配置
  156. if(file_exists(DEDEDATA.'/safe/inc_safe_config.php'))
  157. {
  158. require_once(DEDEDATA.'/safe/inc_safe_config.php');
  159. if(!empty($safe_faqs)) $safefaqs = unserialize($safe_faqs);
  160. }
  161. //Session跨域设置
  162. if(!empty($cfg_domain_cookie))
  163. {
  164. @session_set_cookie_params(0,'/',$cfg_domain_cookie);
  165. }
  166. //php5.1版本以上时区设置
  167. //由于这个函数对于是php5.1以下版本并无意义,因此实际上的时间调用,应该用MyDate函数调用
  168. if(PHP_VERSION > '5.1')
  169. {
  170. $time51 = $cfg_cli_time * -1;
  171. @date_default_timezone_set('Etc/GMT'.$time51);
  172. }
  173. $cfg_isUrlOpen = @ini_get("allow_url_fopen");
  174. //用户访问的网站host
  175. $cfg_clihost = 'http://'.$_SERVER['HTTP_HOST'];
  176. //站点根目录
  177. $cfg_basedir = preg_replace('#'.$cfg_cmspath.'\/include$#i', '', DEDEINC);
  178. if($cfg_multi_site == 'Y')
  179. {
  180. $cfg_mainsite = $cfg_basehost;
  181. }
  182. else
  183. {
  184. $cfg_mainsite = '';
  185. }
  186. //模板的存放目录
  187. $cfg_templets_dir = $cfg_cmspath.'/templets';
  188. $cfg_templeturl = $cfg_mainsite.$cfg_templets_dir;
  189. $cfg_templets_skin = empty($cfg_df_style)? $cfg_mainsite.$cfg_templets_dir."/default" : $cfg_mainsite.$cfg_templets_dir."/$cfg_df_style";
  190. //cms安装目录的网址
  191. $cfg_cmsurl = $cfg_mainsite.$cfg_cmspath;
  192. //插件目录,这个目录是用于存放计数器、投票、评论等程序的必要动态程序
  193. $cfg_plus_dir = $cfg_cmspath.'/plus';
  194. $cfg_phpurl = $cfg_mainsite.$cfg_plus_dir;
  195. $cfg_static_dir = $cfg_cmspath.'/static';
  196. $cfg_staticurl = $cfg_mainsite.$cfg_static_dir;
  197. $cfg_mobile_dir = $cfg_cmspath.'/m';
  198. $cfg_mobileurl = $cfg_mainsite.$cfg_mobile_dir;
  199. $cfg_data_dir = $cfg_cmspath.'/data';
  200. $cfg_dataurl = $cfg_mainsite.$cfg_data_dir;
  201. //会员目录
  202. $cfg_member_dir = $cfg_cmspath.'/member';
  203. $cfg_memberurl = $cfg_mainsite.$cfg_member_dir;
  204. //专题列表的存放路径
  205. $cfg_special = $cfg_cmspath.'/special';
  206. $cfg_specialurl = $cfg_mainsite.$cfg_special;
  207. //附件目录
  208. $cfg_medias_dir = $cfg_cmspath.$cfg_medias_dir;
  209. $cfg_mediasurl = $cfg_mainsite.$cfg_medias_dir;
  210. //上传的普通图片的路径,建议按默认
  211. $cfg_image_dir = $cfg_medias_dir.'/allimg';
  212. //上传的缩略图
  213. $ddcfg_image_dir = $cfg_medias_dir.'/litimg';
  214. //用户投稿图片存放目录
  215. $cfg_user_dir = $cfg_medias_dir.'/userup';
  216. //上传的软件目录
  217. $cfg_soft_dir = $cfg_medias_dir.'/soft';
  218. //上传的多媒体文件目录
  219. $cfg_other_medias = $cfg_medias_dir.'/media';
  220. //软件摘要信息,****请不要删除本项**** 否则系统无法正确接收系统漏洞或升级信息
  221. $cfg_version = 'V6_UTF8';
  222. $cfg_soft_lang = 'utf-8';
  223. $cfg_soft_public = 'base';
  224. $cfg_softname = '织梦内容管理系统';
  225. $cfg_soft_enname = 'DedeCMS';
  226. $cfg_soft_devteam = 'DedeCMS官方团队';
  227. //文档的默认命名规则
  228. $art_shortname = $cfg_df_ext = '.html';
  229. $cfg_df_namerule = '{typedir}/{Y}/{M}{D}/{aid}'.$cfg_df_ext;
  230. //新建目录的权限,如果你使用别的属性,本程不保证程序能顺利在Linux或Unix系统运行
  231. if(isset($cfg_ftp_mkdir) && $cfg_ftp_mkdir=='Y')
  232. {
  233. $cfg_dir_purview = '0755';
  234. }
  235. else
  236. {
  237. $cfg_dir_purview = 0755;
  238. }
  239. //会员是否使用精简模式(已禁用)
  240. $cfg_mb_lit = 'N';
  241. //特殊全局变量
  242. $_sys_globals['curfile'] = '';
  243. $_sys_globals['typeid'] = 0;
  244. $_sys_globals['typename'] = '';
  245. $_sys_globals['aid'] = 0;
  246. if(empty($cfg_addon_savetype))
  247. {
  248. $cfg_addon_savetype = 'Ymd';
  249. }
  250. if($cfg_sendmail_bysmtp=='Y' && !empty($cfg_smtp_usermail))
  251. {
  252. $cfg_adminemail = $cfg_smtp_usermail;
  253. }
  254. //对全局分页传递参数进行过滤
  255. if (isset($GLOBALS['PageNo'])) {
  256. $GLOBALS['PageNo'] = intval($GLOBALS['PageNo']);
  257. }
  258. if (isset($GLOBALS['TotalResult'])) {
  259. $GLOBALS['TotalResult'] = intval($GLOBALS['TotalResult']);
  260. }
  261. // ------------------------------------------------------------------------
  262. // 设定缓存配置信息
  263. if ($cfg_memcache_enable == 'Y')
  264. {
  265. $cache_helper_config = array();
  266. $cache_helper_config['memcache']['is_mc_enable'] = $GLOBALS["cfg_memcache_enable"];
  267. $cache_helper_config['memcache']['mc'] = array (
  268. 'default' => $GLOBALS["cfg_memcache_mc_defa"],
  269. 'other' => $GLOBALS["cfg_memcache_mc_oth"]
  270. );
  271. $cache_helper_config['memcache']['mc_cache_time'] = $GLOBALS["cfg_puccache_time"];
  272. }
  273. if(!isset($cfg_NotPrintHead)) {
  274. header("Content-Type: text/html; charset={$cfg_soft_lang}");
  275. }
  276. //自动加载类库处理
  277. if (version_compare(PHP_VERSION, '7.2.0', '>='))
  278. {
  279. require_once(DEDEINC.'/autoload7.inc.php');
  280. } else {
  281. require_once(DEDEINC.'/autoload.inc.php');
  282. }
  283. //引入数据库类
  284. if ( $GLOBALS['cfg_dbtype'] =='mysql' )
  285. {
  286. if ($GLOBALS['cfg_mysql_type'] == 'mysqli' && function_exists("mysqli_init") || !function_exists('mysql_connect'))
  287. {
  288. require_once(DEDEINC.'/dedesqli.class.php');
  289. } else {
  290. require_once(DEDEINC.'/dedesql.class.php');
  291. }
  292. } else {
  293. require_once(DEDEINC.'/dedesqlite.class.php');
  294. }
  295. //全局常用函数
  296. require_once(DEDEINC.'/common.func.php');
  297. // 模块MVC框架需要的控制器和模型基类
  298. require_once(DEDEINC.'/control.class.php');
  299. require_once(DEDEINC.'/model.class.php');
  300. //全局常用函数
  301. require_once(DEDEINC.'/dedebiz.class.php');
  302. //载入小助手配置,并对其进行默认初始化
  303. if(file_exists(DEDEDATA.'/helper.inc.php'))
  304. {
  305. require_once(DEDEDATA.'/helper.inc.php');
  306. // 若没有载入配置,则初始化一个默认小助手配置
  307. if (!isset($cfg_helper_autoload))
  308. {
  309. $cfg_helper_autoload = array('util', 'charset', 'string', 'time', 'cookie');
  310. }
  311. // 初始化小助手
  312. helper($cfg_helper_autoload);
  313. }