'include', // The config file dir 'cfg_f' => 'include/config.inc.php', // The config file name 'alb_d' => 'albums', // The album dir 'upl_d' => 'userpics', // The uploaded pic dir ); $superCage = Inspekt::makeSuperCage(); // If including includes/init.inc.php has worked as expected, the constants should be populated, so let's check that first if (!defined('SKIP_AUTHENTICATION') && defined('COPPERMINE_VERSION') && GALLERY_ADMIN_MODE) { $_SESSION['auth'] = true; } else { // we need to populate the language array "manually" $lang_common['ok'] = 'OK'; $lang_update_php = array( 'title' => 'Updater', // cpg1.5 'welcome_updater' => 'Welcome to Coppermine update', // cpg1.5 'could_not_authenticate' => 'Could not authenticate you', // cpg1.5 'provide_admin_account' => 'Please provide your coppermine admin account details or your mySQL account data', // cpg1.5 'try_again' => 'Try again', // cpg1.5 'mysql_connect_error' => 'Could not create a mySQL connection', // cpg1.5 'mysql_database_error' => 'mySQL could not locate a database called %s', // cpg1.5 'mysql_said' => 'MySQL said', // cpg1.5 'check_config_file' => 'Please check the SQL values in %s', // cpg1.5 'performing_database_updates' => 'Performing Database Updates', // cpg1.5 'already_done' => 'Already Done', // cpg1.5 'password_encryption' => 'Encryption of passwords', // cpg1.5 'alb_password_encryption' => 'Encryption of album passwords', // cpg1.5 'category_tree' => 'Category tree', // cpg1.5 'authentication_needed' => 'Authentication needed', // cpg1.5 'username' => 'Username', // cpg1.5 'password' => 'Password', // cpg1.5 'update_completed' => 'Update completed', // cpg1.5 'check_versions' => 'It\'s recommended to %scheck your file versions%s if you just upgraded from an older version of coppermine', // cpg1.5 // Leave the %s untouched when translating - it wraps the link 'start_page' => 'If you didn\'t (or you don\'t want to check), you can go to %syour gallery\'s start page%s', // cpg1.5 // Leave the %s untouched when translating - it wraps the link 'errors_encountered' => 'The following errors were encountered and need to be corrected first', // cpg1.5 'delete_file' => 'Delete %s', // cpg1.5 'could_not_delete' => 'Could not delete due to missing permissions. Delete the file manually!', // cpg1.5 ); } if (!function_exists('cpg_display_help')) { $help = ' '.cpg_display_help('f=upgrading.htm&as=updater&ae=updater_end&top=1', '650', '500'); } else { $help = ' '; } // ---------------------------- AUTHENTICATION --------------------------- // // SKIP_AUTHENTICATION is a constant that can be defined for users who can't retrieve any kind of password if (!defined('SKIP_AUTHENTICATION') && !$_SESSION['auth']) { html_header($lang_update_php['title']); if (!$superCage->post->keyExists('method')) { //first try to connect to the db to see if we can authenticate the admin test_sql_connection(); if ($errors != '') { //we could not establish an sql connection, so update can't be done (and user can't be autenticated) html_error($errors); } else { //echo a box for admin autentication html_auth_box('admin'); } } elseif ($superCage->post->getAlpha('method') == 'admin') { //try to autenticate the admin test_sql_connection(); $user = $superCage->post->getEscaped('user'); $pass = $superCage->post->getEscaped('pass'); $pass2 = md5($pass); $sql = "SELECT user_active FROM {$CONFIG['TABLE_PREFIX']}users WHERE user_group = 1 AND user_name = '$user' AND (user_password = '$pass' OR user_password = '$pass2')"; $result = @mysql_query($sql); if (!@mysql_num_rows($result)) { //not authenticated, try mysql account details html_auth_box('MySQL'); } else { //authenticated, do the update $_SESSION['auth'] = true; start_update(); } } else { //try to autenticate via MySQL details (in configuration) if ($superCage->post->getEscaped('user') == $CONFIG['dbuser'] && $superCage->post->getEscaped('pass') == $CONFIG['dbpass']) { //authenticated, do the update $_SESSION['auth'] = true; start_update(); } else { //no go, try again html_error($lang_update_php['could_not_authenticate'] . ' - ' . $lang_update_php['try_again'] .''); } } html_footer(); } else { html_header($lang_update_php['title']); $_SESSION['auth'] = true; start_update(); html_footer(); } // function definitions --- start // ------------------------- HTML OUTPUT FUNCTIONS ------------------------- // function html_header($title, $charset = 'iso8859-1') { if (function_exists('pageheader') && defined('COPPERMINE_VERSION') && GALLERY_ADMIN_MODE) { pageheader($title); } else { echo <<< EOT {$title} EOT; } } function html_error($error_msg = '') { global $lang_update_php, $help; echo <<< EOT EOT; if ($error_msg) { echo <<< EOT EOT; } echo <<< EOT

{$lang_update_php['welcome_updater']}{$help}
• • • ERROR • • •
{$lang_update_php['errors_encountered']}:
{$error_msg}
EOT; } function html_install_success($notes) { global $DFLT, $lang_update_php; //Coppermine is now upgraded and ready to roll. echo ' 
'; echo '

' . $lang_update_php['update_completed'] . '

'; echo '

'; printf($lang_update_php['check_versions'], '', ''); echo '. '; printf($lang_update_php['start_page'], '', ''); echo '.

'; } function html_footer() { if (function_exists('pagefooter') && defined('COPPERMINE_VERSION') && GALLERY_ADMIN_MODE) { pagefooter(); } else { echo <<< EOT EOT; } } function html_auth_box($method) { global $lang_update_php, $lang_common, $help; $superCage = Inspekt::makeSuperCage(); if ($superCage->get->keyExists('debug')) { $debug_mode = '?debug'; } else { $debug_mode = ''; } if (function_exists('cpg_fetch_icon')) { $update_icon = cpg_fetch_icon('update_database', 2); $ok_icon = cpg_fetch_icon('ok', 2); $login_icon = cpg_fetch_icon('login', 2); $username_icon = cpg_fetch_icon('my_profile', 2); $password_icon = cpg_fetch_icon('key_enter', 2); } else { $update_icon = ''; $ok_icon = ''; $login_icon = ''; $username_icon = ''; $password_icon = ''; } echo <<< EOT

{$update_icon}{$lang_update_php['welcome_updater']}{$help}

{$login_icon}{$lang_update_php['authentication_needed']}
EOT; if ($method == 'MySQL') { echo $lang_update_php['could_not_authenticate']. '. ' . $lang_update_php['try_again'] . ''; } else { echo $lang_update_php['provide_admin_account']; } echo <<< EOT
{$username_icon}{$lang_update_php['username']}:
{$password_icon}{$lang_update_php['password']}:
EOT; } // --------------------------------- MAIN CODE ----------------------------- // function start_update() { global $errors, $notes, $lang_update_php, $LINEBREAK; global $update_icon, $ok_icon, $already_done_icon, $error_icon, $file_system_icon; // The updater //html_header($lang_update_php['title']); test_sql_connection(); if (function_exists('cpg_fetch_icon')) { $update_icon = cpg_fetch_icon('update_database', 2); $ok_icon = cpg_fetch_icon('ok', 2); $already_done_icon = cpg_fetch_icon('info', 2); $error_icon = cpg_fetch_icon('stop', 2); $file_system_icon = cpg_fetch_icon('hdd', 2); } else { $update_icon = ''; $ok_icon = ''; $already_done_icon = ''; $error_icon = ''; $file_system_icon = ''; } if ($errors == '') { echo ' ' . $LINEBREAK; update_tables(); update_files(); echo '
' . $LINEBREAK; } else { html_error($errors); } if ($errors == '') { html_install_success($notes); session_destroy(); } else { html_error($errors); } //html_footer(); } // Return an array containing config values specified in the array function cpg_get_config_value($config_name) { global $CONFIG; $result = mysql_query("SELECT value FROM ".$CONFIG['TABLE_PREFIX']."config WHERE name='".$config_name."' LIMIT 1"); $row = mysql_fetch_row($result); return $row[0]; } // ----------------------------- TEST FUNCTIONS ---------------------------- // function test_sql_connection() { global $errors, $CONFIG, $lang_update_php; if (! $connect_id = @mysql_connect($CONFIG['dbserver'], $CONFIG['dbuser'], $CONFIG['dbpass'])) { $errors .= '
'; $errors .= $lang_update_php['mysql_connect_error'] . '. '; $errors .= sprintf($lang_update_php['check_config_file'] . '. ', 'include/config.inc.php'); $errors .= '
'; $errors .= $lang_update_php['mysql_said'] . ': ' . mysql_error(); } elseif (! mysql_select_db($CONFIG['dbname'], $connect_id)) { $errors .= '
'; $errors .= sprintf($lang_update_php['mysql_database_error'] . '. ', $CONFIG['dbname']); $errors .= sprintf($lang_update_php['check_config_file'] . '. ', 'include/config.inc.php'); } else { $CONFIG['LINK_ID'] = $connect_id; } } // ------------------------- SQL QUERIES TO CREATE TABLES ------------------ // function update_tables() { global $errors, $CONFIG, $lang_update_php, $lang_common, $LINEBREAK, $help; global $update_icon, $ok_icon, $already_done_icon, $error_icon, $file_system_icon; $loopCounter = 0; $cellStyle = ''; $superCage = Inspekt::makeSuperCage(); $db_update = 'sql/update.sql'; $sql_query = fread(fopen($db_update, 'r'), filesize($db_update)); // Update table prefix $sql_query = preg_replace('/CPG_/', $CONFIG['TABLE_PREFIX'], $sql_query); $sql_query = remove_remarks($sql_query); $sql_query = split_sql_file($sql_query, ';'); $sql_query = array_map('trim', $sql_query); echo <<< EOT {$update_icon}{$lang_update_php['performing_database_updates']}{$help} EOT; foreach ($sql_query as $q) { $cellStyle = ($loopCounter / 2 == floor($loopCounter / 2)) ? 'tableb' : 'tableb tableb_alternate'; $loopCounter++; echo '' . $LINEBREAK . ' ' . $q; /** * Determining if the Alter Table actually made a change * to properly reflect it's status on the update page. */ if (strpos(strtolower($q), 'alter table') !== false) { $query = explode(' ', $q); $result = mysql_query("DESCRIBE " . $query[2]); $description = array(); while ($row = mysql_fetch_row($result)) { $description[] = $row; } $result = @mysql_query($q); $affected = mysql_affected_rows(); $warnings = mysql_query('SHOW WARNINGS'); $result = mysql_query("DESCRIBE " . $query[2]); $description2 = array(); while ($row = mysql_fetch_row($result)) { $description2[] = $row; } if ($description == $description2) { $affected = 0; } } else { $result = @mysql_query($q); $affected = mysql_affected_rows(); $warnings = mysql_query('SHOW WARNINGS;'); } if ($superCage->get->keyExists('debug')) { echo '
Debug output:
'; if ($affected > -1) { echo "Rows Affected: ".$affected.". "; } if ($warnings) { while ($warning = mysql_fetch_row($warnings)) { if ($warning[0] != '') { $warning_text = 'MySQL said: '; } else { $warning_text = ''; } echo $warning_text.''.$warning[0]. ' ('.$warning[1].') '.$warning[2].'
'; } } } echo ''.$LINEBREAK; // end the table cell that contains the output if ($result && $affected) { echo ' ' . $ok_icon . $lang_common['ok'] . ''.$LINEBREAK; } else { echo ' ' . $already_done_icon . $lang_update_php['already_done'] . ''.$LINEBREAK; } echo '' . $LINEBREAK; } // end foreach loop // Check password encryption and perform the conversion if applicable $cellStyle = ($loopCounter / 2 == floor($loopCounter / 2)) ? 'tableb' : 'tableb tableb_alternate'; $loopCounter++; echo <<< EOT {$lang_update_php['password_encryption']}: EOT; $CONFIG['enable_encrypted_passwords'] = cpg_get_config_value('enable_encrypted_passwords'); if ($CONFIG['enable_encrypted_passwords'] != '1') { echo <<< EOT {$ok_icon}{$lang_common['ok']} EOT; $result = mysql_query("update {$CONFIG['TABLE_PREFIX']}users set user_password=md5(user_password);"); if ($CONFIG['enable_encrypted_passwords'] === '0') { $result = mysql_query("update {$CONFIG['TABLE_PREFIX']}config set value = '1' WHERE name = 'enable_encrypted_passwords'"); } else { $result = mysql_query("INSERT INTO {$CONFIG['TABLE_PREFIX']}config ( `name` , `value` ) VALUES ('enable_encrypted_passwords', '1')"); } } else { echo <<< EOT {$already_done_icon}{$lang_update_php['already_done']} EOT; } // Check album password encryption and perform the conversion if applicable $cellStyle = ($loopCounter / 2 == floor($loopCounter / 2)) ? 'tableb' : 'tableb tableb_alternate'; $loopCounter++; echo <<< EOT {$lang_update_php['alb_password_encryption']}: EOT; $CONFIG['enable_encrypted_alb_passwords'] = cpg_get_config_value('enable_encrypted_alb_passwords'); if ($CONFIG['enable_encrypted_alb_passwords'] != 1) { echo <<< EOT {$ok_icon}{$lang_common['ok']} EOT; // Encrypt the album password but only for those albums which have a password assigned. $result = mysql_query("update {$CONFIG['TABLE_PREFIX']}albums set alb_password=md5(alb_password) WHERE alb_password IS NOT NULL AND alb_password != '';"); if ($CONFIG['enable_encrypted_alb_passwords'] != NULL) { $result = mysql_query("update {$CONFIG['TABLE_PREFIX']}config set value = 1 WHERE name = 'enable_encrypted_alb_passwords'"); } else { $result = mysql_query("INSERT INTO {$CONFIG['TABLE_PREFIX']}config ( `name` , `value` ) VALUES ('enable_encrypted_alb_passwords', '1')"); } } else { echo <<< EOT {$already_done_icon}{$lang_update_php['already_done']} EOT; } // Check category tree modifications $cellStyle = ($loopCounter / 2 == floor($loopCounter / 2)) ? 'tableb' : 'tableb tableb_alternate'; $loopCounter++; echo <<< EOT {$lang_update_php['category_tree']}: EOT; if (check_rebuild_tree()) { echo <<< EOT {$ok_icon}{$lang_common['ok']} EOT; } else { echo <<< EOT {$already_done_icon}{$lang_update_php['already_done']} EOT; } } function update_files() { global $lang_update_php, $file_system_icon; echo <<< EOT {$file_system_icon}{$lang_update_php['performing_file_updates']} EOT; delete_files(); update_system_thumbs(); } function delete_files() { global $lang_update_php, $lang_common, $ok_icon, $already_done_icon, $error_icon; // Attempt to delete outdated files $delete_file_array = array( 'config.php', 'editOnePic.php', 'faq.php', 'image_processor.php', 'picEditor.php', 'relocate_server.php', 'scripts.js', 'bridge/phpbb22.inc.php', 'bridge/punbb.inc.php', 'bridge/smf.inc.php', 'bridge/vbulletin.inc.php', 'bridge/vbulletin23.inc.php', 'bridge/vbulletin3gamma.inc.php', 'bridge/woltlab21.inc.php', 'bridge/yabbse.inc.php', 'albums/edit/index.htm', 'docs/COPYING', 'docs/faq.htm', 'docs/faq_de.htm', 'docs/faq_fr.htm', 'docs/index_es.htm', 'docs/index_fr.htm', 'docs/README.html', 'docs/showdoc.php', 'docs/tester-README.txt', 'docs/theme.htm', 'docs/translation.htm', 'docs/de/theme_upgrade_13x-14x.htm', 'docs/en/theme_upgrade_13x-14x.htm', 'docs/fr/theme_upgrade_13x-14x.htm', 'docs/nl/theme_upgrade_13x-14x.htm', 'docs/pics/', 'docs/theme/', 'images/smiles/icon_arrow.gif', 'images/smiles/icon_biggrin.gif', 'images/smiles/icon_confused.gif', 'images/smiles/icon_cool.gif', 'images/smiles/icon_cry.gif', 'images/smiles/icon_eek.gif', 'images/smiles/icon_evil.gif', 'images/smiles/icon_exclaim.gif', 'images/smiles/icon_frown.gif', 'images/smiles/icon_idea.gif', 'images/smiles/icon_lol.gif', 'images/smiles/icon_mad.gif', 'images/smiles/icon_mrgreen.gif', 'images/smiles/icon_neutral.gif', 'images/smiles/icon_question.gif', 'images/smiles/icon_razz.gif', 'images/smiles/icon_redface.gif', 'images/smiles/icon_rolleyes.gif', 'images/smiles/icon_sad.gif', 'images/smiles/icon_smile.gif', 'images/smiles/icon_surprised.gif', 'images/smiles/icon_twisted.gif', 'images/smiles/icon_wink.gif', 'include/imageObjectGD.class.php', 'include/imageObjectIM.class.php', 'include/index.html', ); // Check if the file exists in the first place $loopCounter = 0; foreach ($delete_file_array as $delete_file) { $cellStyle = ($loopCounter / 2 == floor($loopCounter / 2)) ? 'tableb' : 'tableb tableb_alternate'; $delete_output = sprintf($lang_update_php['delete_file'], '«'.$delete_file.'»'); echo <<< EOT {$delete_output} EOT; if (!file_exists($delete_file)) { $result_output = $already_done_icon . $lang_update_php['already_done']; } else { list($delete_result,$debug_output) = cpg_folder_file_delete($delete_file); if ($delete_result == TRUE ) { $result_output = $ok_icon . $lang_common['ok']; } else { $result_output = $error_icon . $lang_update_php['could_not_delete']; } } echo <<< EOT {$result_output} EOT; $loopCounter++; } // foreach $delete_file } function update_system_thumbs() { global $CONFIG, $lang_update_php, $lang_common, $ok_icon, $already_done_icon, $error_icon; $results = mysql_query("SELECT * FROM {$CONFIG['TABLE_PREFIX']}config;"); while ($row = mysql_fetch_array($results)) { $CONFIG[$row['name']] = $row['value']; } // while mysql_free_result($results); // Code to rename system thumbs in images folder $default_thumb_pfx = 'thumb_'; if ($default_thumb_pfx != $CONFIG['thumb_pfx']) { $THEME_DIR = 'themes/' . $CONFIG['theme'] . '/'; $folders = array('images/thumbs/', $THEME_DIR.'images/'); $loopCounter = 0; foreach ($folders as $folder) { $thumbs = cpg_get_system_thumb_list($folder); foreach ($thumbs as $thumb) { $cellStyle = ($loopCounter / 2 == floor($loopCounter / 2)) ? 'tableb' : 'tableb tableb_alternate'; $rename_file_from = $folder . $thumb['filename']; $rename_file_to = $folder . str_replace($default_thumb_pfx, $CONFIG['thumb_pfx'], $thumb['filename']); $rename_output = sprintf($lang_update_php['rename_file'], '«'.$rename_file_from.'»', '«'.$rename_file_to.'»'); echo <<< EOT {$rename_output} EOT; if (file_exists($rename_file_to)) { $result_output = $already_done_icon . $lang_update_php['already_done']; echo <<< EOT {$result_output} EOT; $loopCounter++; if ($rename_file_from == $rename_file_to) { continue; } $cellStyle = ($loopCounter / 2 == floor($loopCounter / 2)) ? 'tableb' : 'tableb tableb_alternate'; $delete_file = $rename_file_from; $delete_output = sprintf($lang_update_php['delete_file'], '«'.$delete_file.'»'); echo <<< EOT {$delete_output} EOT; if (!file_exists($delete_file)) { $result_output = $already_done_icon . $lang_update_php['already_done']; } else { list($delete_result,$debug_output) = cpg_folder_file_delete($delete_file); if ($delete_result == TRUE ) { $result_output = $ok_icon . $lang_common['ok']; } else { $result_output = $error_icon . $lang_update_php['could_not_delete']; } } echo <<< EOT {$result_output} EOT; $loopCounter++; continue; } else { $rename_result = @rename($rename_file_from, $rename_file_to); if ($rename_result == TRUE ) { $result_output = $ok_icon . $lang_common['ok']; } else { $result_output = $error_icon . $lang_update_php['could_not_rename']; } } echo <<< EOT {$result_output} EOT; $loopCounter++; } // foreach $thumbs } // foreach $folders } // if different thumb_pfx /* // Unnecessary for 1.5 since these thumbs are included with the system thumbs above // If old images for nopic.jpg and private.jpg exist, delete the new ones if (file_exists('images/nopic.jpg')) { cpg_folder_file_delete('images/thumb_nopic.jpg'); @rename('images/nopic.jpg', 'images/' . $CONFIG['thumb_pfx'] . 'nopic.jpg'); } if (file_exists('images/private.jpg')) { cpg_folder_file_delete('images/thumb_private.jpg'); @rename('images/private.jpg', 'images/' . $CONFIG['thumb_pfx'] . 'private.jpg'); } */ } // function definitions --- end ?>