Add radio button group widget type SMOPT_TYPE_STRLIST_RADIO
[squirrelmail.git] / include / init.php
CommitLineData
202bcbcc 1<?php
2
3/**
4 * init.php -- initialisation file
5 *
6 * File should be loaded in every file in src/ or plugins that occupate an entire frame
7 *
8 * @copyright &copy; 2006 The SquirrelMail Project Team
9 * @license http://opensource.org/licenses/gpl-license.php GNU Public License
10 * @version $Id$
11 * @package squirrelmail
12 */
13
202bcbcc 14/**
15 * This is a development version so in order to track programmer mistakes we
16 * set the error reporting to E_ALL
1888b1bf 17FIXME: disabling this for now, because we now have $sm_debug_mode, but the problem with that is that we don't know what it will be until we have loaded the config file, a good 175 lines below after several important files have been included, etc. For now, we'll trust that developers have turned on E_ALL in php.ini anyway, but this can be uncommented if not.
202bcbcc 18 */
1888b1bf 19//error_reporting(E_ALL);
20
202bcbcc 21
22
23/**
c7ebdfcf 24 * Make sure we have a page name
25 *
26 */
27if ( !defined('PAGE_NAME') ) define('PAGE_NAME', NULL);
28
29
30/**
6a2a6e44 31 * If register_globals are on, unregister globals.
a3b99374 32 * Second test covers boolean set as string (php_value register_globals off).
6a2a6e44 33 */
55dd9abf 34if ((bool) ini_get('register_globals') &&
a3b99374 35 strtolower(ini_get('register_globals'))!='off') {
6a2a6e44 36 /**
55dd9abf 37 * Remove all globals that are not reserved by PHP
38 * 'value' and 'key' are used by foreach. Don't unset them inside foreach.
6a2a6e44 39 */
55dd9abf 40 foreach ($GLOBALS as $key => $value) {
41 switch($key) {
42 case 'HTTP_POST_VARS':
43 case '_POST':
44 case 'HTTP_GET_VARS':
45 case '_GET':
46 case 'HTTP_COOKIE_VARS':
47 case '_COOKIE':
48 case 'HTTP_SERVER_VARS':
49 case '_SERVER':
50 case 'HTTP_ENV_VARS':
51 case '_ENV':
52 case 'HTTP_POST_FILES':
53 case '_FILES':
54 case '_REQUEST':
55 case 'HTTP_SESSION_VARS':
56 case '_SESSION':
57 case 'GLOBALS':
58 case 'key':
59 case 'value':
60 break;
55dd9abf 61 default:
62 unset($GLOBALS[$key]);
63 }
6a2a6e44 64 }
55dd9abf 65 // Unset variables used in foreach
66 unset($GLOBALS['key']);
67 unset($GLOBALS['value']);
6a2a6e44 68}
69
71efd1ed 70/**
d849b570 71 * Used as a dummy value, e.g., for passing as an empty
e39d00e9 72 * hook argument (where the value is passed by reference,
73 * and therefore NULL itself is not acceptable).
d849b570 74 */
086ad092 75global $null;
d849b570 76$null = NULL;
77
78/**
71efd1ed 79 * [#1518885] session.use_cookies = off breaks SquirrelMail
80 *
086ad092 81 * When session cookies are not used, all http redirects, meta refreshes,
82 * src/download.php and javascript URLs are broken. Setting must be set
71efd1ed 83 * before session is started.
84 */
85if (!(bool)ini_get('session.use_cookies') ||
86 ini_get('session.use_cookies') == 'off') {
87 ini_set('session.use_cookies','1');
88}
6a2a6e44 89
3f081dd0 90
6a2a6e44 91/**
202bcbcc 92 * calculate SM_PATH and calculate the base_uri
93 * assumptions made: init.php is only called from plugins or from the src dir.
94 * files in the plugin directory may not be part of a subdirectory called "src"
95 *
96 */
97if (isset($_SERVER['SCRIPT_NAME'])) {
3f081dd0 98 $a = explode('/', $_SERVER['SCRIPT_NAME']);
202bcbcc 99} elseif (isset($HTTP_SERVER_VARS['SCRIPT_NAME'])) {
3f081dd0 100 $a = explode('/', $HTTP_SERVER_VARS['SCRIPT_NAME']);
b0829edf 101} else {
3f081dd0 102 $error = 'Unable to detect script environment. Please test your PHP '
103 . 'settings and send your PHP core configuration, $_SERVER and '
104 . '$HTTP_SERVER_VARS contents to the SquirrelMail developers.';
b0829edf 105 die($error);
202bcbcc 106}
107$sSM_PATH = '';
3f081dd0 108for($i = count($a) -2; $i > -1; --$i) {
202bcbcc 109 $sSM_PATH .= '../';
110 if ($a[$i] === 'src' || $a[$i] === 'plugins') {
111 break;
112 }
113}
114
3f081dd0 115$base_uri = implode('/', array_slice($a, 0, $i)). '/';
202bcbcc 116
202bcbcc 117define('SM_PATH',$sSM_PATH);
6a2a6e44 118define('SM_BASE_URI', $base_uri);
3f081dd0 119
120
202bcbcc 121/**
122 * global var $bInit is used to check if initialisation took place.
123 * At this moment it's a workarounf for the include of addrbook_search_html
124 * inside compose.php. If we found a better way then remove this. Do only use
125 * this var if you know for sure a page can be called stand alone and be included
126 * in another file.
127 */
128$bInit = true;
129
8e1e2794 130/**
131 * This theme as a failsafe if no themes were found, or if we error
132 * out before anything could be initialised.
133 */
134$color = array();
135$color[0] = '#DCDCDC'; /* light gray TitleBar */
136$color[1] = '#800000'; /* red */
137$color[2] = '#CC0000'; /* light red Warning/Error Messages */
138$color[3] = '#A0B8C8'; /* green-blue Left Bar Background */
139$color[4] = '#FFFFFF'; /* white Normal Background */
140$color[5] = '#FFFFCC'; /* light yellow Table Headers */
141$color[6] = '#000000'; /* black Text on left bar */
142$color[7] = '#0000CC'; /* blue Links */
143$color[8] = '#000000'; /* black Normal text */
144$color[9] = '#ABABAB'; /* mid-gray Darker version of #0 */
145$color[10] = '#666666'; /* dark gray Darker version of #9 */
146$color[11] = '#770000'; /* dark red Special Folders color */
147$color[12] = '#EDEDED';
148$color[13] = '#800000'; /* (dark red) Color for quoted text -- > 1 quote */
149$color[14] = '#ff0000'; /* (red) Color for quoted text -- >> 2 or more */
150$color[15] = '#002266'; /* (dark blue) Unselectable folders */
151$color[16] = '#ff9933'; /* (orange) Highlight color */
152
1888b1bf 153require(SM_PATH . 'include/constants.php');
202bcbcc 154require(SM_PATH . 'functions/global.php');
4ffcf13a 155require(SM_PATH . 'functions/strings.php');
918fcc1d 156require(SM_PATH . 'functions/arrays.php');
5e68a08e 157
158/* load default configuration */
159require(SM_PATH . 'config/config_default.php');
160/* reset arrays in default configuration */
161$ldap_server = array();
162$plugins = array();
163$fontsets = array();
5e68a08e 164$aTemplateSet = array();
28294310 165$aTemplateSet[0]['ID'] = 'default';
166$aTemplateSet[0]['NAME'] = 'Default';
01fd1d1a 167
5e68a08e 168/* load site configuration */
202bcbcc 169require(SM_PATH . 'config/config.php');
5e68a08e 170/* load local configuration overrides */
171if (file_exists(SM_PATH . 'config/config_local.php')) {
172 require(SM_PATH . 'config/config_local.php');
173}
174
1888b1bf 175
176/**
177 * Set PHP error reporting level based on the SquirrelMail debug mode
178 */
179$error_level = 0;
180if ($sm_debug_mode & SM_DEBUG_MODE_SIMPLE)
181 $error_level |= E_ERROR;
182if ($sm_debug_mode & SM_DEBUG_MODE_MODERATE
183 || $sm_debug_mode & SM_DEBUG_MODE_ADVANCED)
184 $error_level |= E_ALL;
185if ($sm_debug_mode & SM_DEBUG_MODE_STRICT)
186 $error_level |= E_STRICT;
187error_reporting($error_level);
188
189
202bcbcc 190require(SM_PATH . 'functions/plugin.php');
202bcbcc 191require(SM_PATH . 'include/languages.php');
42b5e8aa 192require(SM_PATH . 'class/template/Template.class.php');
5ab684a5 193require(SM_PATH . 'class/error.class.php');
202bcbcc 194
195/**
196 * If magic_quotes_runtime is on, SquirrelMail breaks in new and creative ways.
197 * Force magic_quotes_runtime off.
198 * tassium@squirrelmail.org - I put it here in the hopes that all SM code includes this.
199 * If there's a better place, please let me know.
200 */
201ini_set('magic_quotes_runtime','0');
202
203
204/* if running with magic_quotes_gpc then strip the slashes
205 from POST and GET global arrays */
430a19f3 206if (function_exists('get_magic_quotes_gpc') && @get_magic_quotes_gpc()) {
202bcbcc 207 sqstripslashes($_GET);
208 sqstripslashes($_POST);
209}
210
202bcbcc 211
212/* strip any tags added to the url from PHP_SELF.
213This fixes hand crafted url XXS expoits for any
214 page that uses PHP_SELF as the FORM action */
215$_SERVER['PHP_SELF'] = strip_tags($_SERVER['PHP_SELF']);
216
217$PHP_SELF = php_self();
218
219/**
220 * Initialize the session
221 */
222
e8c4e350 223/** set the name of the session cookie */
224if (!isset($session_name) || !$session_name) {
225 $session_name = 'SQMSESSID';
226}
227
228/**
319ad3c0 229 * When session.auto_start is On we want to destroy/close the session
1d537493 230 */
231$sSessionAutostartName = session_name();
bf6140e3 232$sCookiePath = null;
319ad3c0 233if (isset($sSessionAutostartName) && $sSessionAutostartName !== $session_name) {
1d537493 234 $sCookiePath = ini_get('session.cookie_path');
235 $sCookieDomain = ini_get('session.cookie_domain');
e8c4e350 236 // reset the cookie
1d537493 237 setcookie($sSessionAutostartName,'',time() - 604800,$sCookiePath,$sCookieDomain);
e8c4e350 238 @session_destroy();
239 session_write_close();
1d537493 240}
e8c4e350 241
202bcbcc 242/**
243 * includes from classes stored in the session
244 */
245require(SM_PATH . 'class/mime.class.php');
246
202bcbcc 247ini_set('session.name' , $session_name);
248session_set_cookie_params (0, $base_uri);
249sqsession_is_active();
250
202bcbcc 251/**
319ad3c0 252 * When on login page, have to reset the user session, making
253 * sure to save session restore data first
254 */
255if (PAGE_NAME == 'login') {
256 if (!sqGetGlobalVar('session_expired_post', $sep, SQ_SESSION))
257 $sep = '';
258 if (!sqGetGlobalVar('session_expired_location', $sel, SQ_SESSION))
259 $sel = '';
260 sqsession_destroy();
261 session_write_close();
262
263 /**
264 * in some rare instances, the session seems to stick
265 * around even after destroying it (!!), so if it does,
266 * we'll manually flatten the $_SESSION data
267 */
268 if (!empty($_SESSION))
269 $_SESSION = array();
270
bc3acc5a 271 /**
272 * Allow administrators to define custom session handlers
273 * for SquirrelMail without needing to change anything in
274 * php.ini (application-level).
275 *
276 * In config_local.php, admin needs to put:
277 *
278 * $custom_session_handlers = array(
279 * 'my_open_handler',
280 * 'my_close_handler',
281 * 'my_read_handler',
282 * 'my_write_handler',
283 * 'my_destroy_handler',
284 * 'my_gc_handler',
285 * );
286 * session_module_name('user');
287 * session_set_save_handler(
288 * $custom_session_handlers[0],
289 * $custom_session_handlers[1],
290 * $custom_session_handlers[2],
291 * $custom_session_handlers[3],
292 * $custom_session_handlers[4],
293 * $custom_session_handlers[5]
294 * );
295 *
296 * We need to replicate that code once here because PHP has
297 * long had a bug that resets the session handler mechanism
298 * when the session data is also destroyed. Because of this
299 * bug, even administrators who define custom session handlers
300 * via a PHP pre-load defined in php.ini (auto_prepend_file)
301 * will still need to define the $custom_session_handlers array
302 * in config_local.php.
303 */
304 global $custom_session_handlers;
305 if (!empty($custom_session_handlers)) {
306 $open = $custom_session_handlers[0];
307 $close = $custom_session_handlers[1];
308 $read = $custom_session_handlers[2];
309 $write = $custom_session_handlers[3];
310 $destroy = $custom_session_handlers[4];
311 $gc = $custom_session_handlers[5];
312 session_module_name('user');
313 session_set_save_handler($open, $close, $read, $write, $destroy, $gc);
314 }
315
319ad3c0 316 sqsession_is_active();
317 session_regenerate_id();
ef33def6 318
319 // put session restore data back into session if necessary
320 if (!empty($sel)) {
321 sqsession_register($sel, 'session_expired_location');
322 if (!empty($sep))
323 sqsession_register($sep, 'session_expired_post');
324 }
319ad3c0 325}
326
327/**
5aed95be 328 * SquirrelMail internal version number -- DO NOT CHANGE
329 * $sm_internal_version = array (release, major, minor)
330 */
a895042a 331$SQM_INTERNAL_VERSION = explode('.', SM_VERSION, 3);
b37e457f 332$SQM_INTERNAL_VERSION[2] = intval($SQM_INTERNAL_VERSION[2]);
5aed95be 333
93d67e0d 334
6d5775db 335/* load prefs system; even when user not logged in, should be OK to do this here */
336require(SM_PATH . 'functions/prefs.php');
337
d43a862e 338// FIXME: config/plugin_hooks.php has not yet been loaded (see a few lines below); so this hook call should I think not be working -- has anyone actually tested it? Is there any reason we cannot move this prefs code block down below "MAIN PLUGIN LOADING CODE HERE" (see below)? Reading the code, I *think* it should be OK, but.... Also, note that this code would then be placed immediately next to the config_override hook, and since it makes little sense to execute two hooks in a row, I will propose removing config_override (although sadly, it is less clear to plugin authors that they should use the prefs_backend hook to do any configuration override work in their plugin)
6d5775db 339$prefs_backend = do_hook('prefs_backend', $null);
340if (isset($prefs_backend) && !empty($prefs_backend) && file_exists(SM_PATH . $prefs_backend)) {
341 require(SM_PATH . $prefs_backend);
342} elseif (isset($prefs_dsn) && !empty($prefs_dsn)) {
343 require(SM_PATH . 'functions/db_prefs.php');
344} else {
345 require(SM_PATH . 'functions/file_prefs.php');
346}
347
348
086ad092 349/* if plugins are disabled only for one user and
93d67e0d 350 * the current user is NOT that user, turn them
351 * back on
352 */
353sqgetGlobalVar('username',$username,SQ_SESSION);
354if ($disable_plugins && !empty($disable_plugins_user)
355 && $username != $disable_plugins_user) {
356 $disable_plugins = false;
357}
358
359/* remove all plugins if they are disabled */
360if ($disable_plugins) {
361 $plugins = array();
362}
363
364
5aed95be 365/**
366 * Include Compatibility plugin if available.
367 */
93d67e0d 368if (!$disable_plugins && file_exists(SM_PATH . 'plugins/compatibility/functions.php'))
5aed95be 369 include_once(SM_PATH . 'plugins/compatibility/functions.php');
370
371/**
372 * MAIN PLUGIN LOADING CODE HERE
086ad092 373 * On init, we no longer need to load all plugin setup files.
5aed95be 374 * Now, we load the statically generated hook registrations here
375 * and let the hook calls include only the plugins needed.
376 */
377$squirrelmail_plugin_hooks = array();
93d67e0d 378if (!$disable_plugins && file_exists(SM_PATH . 'config/plugin_hooks.php')) {
5aed95be 379 require(SM_PATH . 'config/plugin_hooks.php');
380}
381
382/**
383 * allow plugins to override main configuration; hook is placed
384 * here to allow plugins to use session information to do their work
385 */
d849b570 386do_hook('config_override', $null);
5aed95be 387
388/**
3464e1f4 389 * DISABLED.
202bcbcc 390 * Remove globalized session data in rg=on setups
086ad092 391 *
3464e1f4 392 * Code can be utilized when session is started, but data is not loaded.
086ad092 393 * We have already loaded configuration and other important vars. Can't
aae60854 394 * clean session globals here, beside, the cleanout of globals at the
395 * top of this file will have removed anything this code would find anyway.
3464e1f4 396if ((bool) @ini_get('register_globals') &&
397 strtolower(ini_get('register_globals'))!='off') {
202bcbcc 398 foreach ($_SESSION as $key => $value) {
399 unset($GLOBALS[$key]);
400 }
401}
3464e1f4 402*/
6a2a6e44 403
826ddd72 404sqsession_register(SM_BASE_URI,'base_uri');
6a2a6e44 405
202bcbcc 406/**
407 * Retrieve the language cookie
408 */
409if (! sqgetGlobalVar('squirrelmail_language',$squirrelmail_language,SQ_COOKIE)) {
410 $squirrelmail_language = '';
411}
412
bf3abdc3 413
202bcbcc 414/**
f0d28f44 415 * Do something special for some pages. This is based on the PAGE_NAME constant
9e06a3ea 416 * set at the top of every page.
202bcbcc 417 */
9e06a3ea 418switch (PAGE_NAME) {
086ad092 419 case 'style':
c4e5f61f 420
2b26084f 421 // need to get the right template set up
28294310 422 //
423 sqGetGlobalVar('templateid', $templateid, SQ_GET);
c4e5f61f 424
2b26084f 425 // sanitize just in case...
28294310 426 //
427 $templateid = preg_replace('/(\.\.\/){1,}/', '', $templateid);
428
429 // make sure given template actually is available
430 //
28294310 431 $found_templateset = false;
432 for ($i = 0; $i < count($aTemplateSet); ++$i) {
433 if ($aTemplateSet[$i]['ID'] == $templateid) {
434 $found_templateset = true;
435 break;
436 }
437 }
c4e5f61f 438
be155e14 439// FIXME: do we need/want to check here for actual (physical) presence of template sets?
28294310 440 // selected template not available, fall back to default template
441 //
442 if (!$found_templateset) {
42b5e8aa 443 $sTemplateID = Template::get_default_template_set();
28294310 444 } else {
445 $sTemplateID = $templateid;
c4e5f61f 446 }
447
2b26084f 448 session_write_close();
c4e5f61f 449 break;
450
f0d28f44 451 case 'mailto':
452 // nothing to do
453 break;
454
202bcbcc 455 case 'redirect':
2e616fa4 456 require(SM_PATH . 'functions/auth.php');
202bcbcc 457 //nobreak;
bf3abdc3 458
202bcbcc 459 case 'login':
460 require(SM_PATH . 'functions/display_messages.php' );
461 require(SM_PATH . 'functions/page_header.php');
462 require(SM_PATH . 'functions/html.php');
42b5e8aa 463
464 // reset template file cache
465 //
466 $sTemplateID = Template::get_default_template_set();
467 Template::cache_template_file_hierarchy(TRUE);
468
1d537493 469 /**
01fd1d1a 470 * Make sure icon variables are setup for the login page.
471 */
472 $icon_theme = $icon_themes[$icon_theme_def]['PATH'];
473 /*
474 * NOTE: The $icon_theme_path var should contain the path to the icon
475 * theme to use. If the admin has disabled icons, or the user has
476 * set the icon theme to "None," no icons will be used.
477 */
478 $icon_theme_path = (!$use_icons || $icon_theme=='none') ? NULL : ($icon_theme == 'template' ? SM_PATH . Template::calculate_template_images_directory($sTemplateID) : $icon_theme);
479
480 /**
1d537493 481 * cleanup old cookies with a cookie path the same as the standard php.ini
482 * cookie path. All previous SquirrelMail version used the standard php.ini
483 * cookie path for storing the session name. That behaviour changed.
484 */
485 if ($sCookiePath !== SM_BASE_URI) {
486 /**
487 * do not delete the standard sessions with session.name is i.e. PHPSESSID
488 * because they probably belong to other php apps
489 */
490 if (ini_get('session.name') !== $sSessionAutostartName) {
30a428c6 491 // This does not work. Sometimes the cookie with SQSESSID=deleted and path /
492 // is picked up in webmail.php => login will fail
493 //sqsetcookie(ini_get('session.name'),'',0,$sCookiePath);
1d537493 494 }
495 }
202bcbcc 496 break;
497 default:
498 require(SM_PATH . 'functions/display_messages.php' );
499 require(SM_PATH . 'functions/page_header.php');
500 require(SM_PATH . 'functions/html.php');
202bcbcc 501
502
503 /**
504 * Check if we are logged in
505 */
506 require(SM_PATH . 'functions/auth.php');
507
508 if ( !sqsession_is_registered('user_is_logged_in') ) {
f8eb968d 509
510 // use $message to indicate what logout text the user
511 // will see... if 0, typical "You must be logged in"
512 // if 1, information that the user session was saved
513 // and will be resumed after (re)login
514 //
515 $message = 0;
516
202bcbcc 517 // First we store some information in the new session to prevent
518 // information-loss.
519 //
520 $session_expired_post = $_POST;
f8e68605 521 $session_expired_location = PAGE_NAME;
202bcbcc 522 if (!sqsession_is_registered('session_expired_post')) {
523 sqsession_register($session_expired_post,'session_expired_post');
524 }
525 if (!sqsession_is_registered('session_expired_location')) {
526 sqsession_register($session_expired_location,'session_expired_location');
f8e68605 527 if ($session_expired_location == 'compose')
f8eb968d 528 $message = 1;
202bcbcc 529 }
530 // signout page will deal with users who aren't logged
531 // in on its own; don't show error here
532 //
9e06a3ea 533 if ( PAGE_NAME == 'signout' ) {
a140422a 534 return;
202bcbcc 535 }
536
8efadc6b 537 /**
538 * Initialize the template object (logout_error uses it)
539 */
8efadc6b 540 /*
086ad092 541 * $sTemplateID is not initialized when a user is not logged in, so we
542 * will use the config file defaults here. If the neccesary variables
28294310 543 * are net set, force a default value.
8efadc6b 544 */
42b5e8aa 545 $sTemplateID = Template::get_default_template_set();
28294310 546 $oTemplate = Template::construct_template($sTemplateID);
8efadc6b 547
202bcbcc 548 set_up_language($squirrelmail_language, true);
f8eb968d 549 if (!$message)
550 logout_error( _("You must be logged in to access this page.") );
551 else
552 logout_error( _("Your session has expired, but will be resumed after logging in again.") );
202bcbcc 553 exit;
554 }
555
79524620 556 sqgetGlobalVar('authz',$authz,SQ_SESSION);
202bcbcc 557
558 /**
559 * Setting the prefs backend
560 */
561 sqgetGlobalVar('prefs_cache', $prefs_cache, SQ_SESSION );
562 sqgetGlobalVar('prefs_are_cached', $prefs_are_cached, SQ_SESSION );
563
564 if ( !sqsession_is_registered('prefs_are_cached') ||
565 !isset( $prefs_cache) ||
566 !is_array( $prefs_cache)) {
567 $prefs_are_cached = false;
568 $prefs_cache = false; //array();
569 }
570
202bcbcc 571 /**
572 * initializing user settings
573 */
574 require(SM_PATH . 'include/load_prefs.php');
575
202bcbcc 576// i do not understand the frames language cookie story
577 /**
578 * We'll need this to later have a noframes version
579 *
580 * Check if the user has a language preference, but no cookie.
581 * Send him a cookie with his language preference, if there is
582 * such discrepancy.
583 */
584 $my_language = getPref($data_dir, $username, 'language');
585 if ($my_language != $squirrelmail_language) {
586 sqsetcookie('squirrelmail_language', $my_language, time()+2592000, $base_uri);
587 }
588// /dont understand
589
590 /**
591 * Set up the language.
592 */
593 $err=set_up_language(getPref($data_dir, $username, 'language'));
202bcbcc 594
595 // Japanese translation used without mbstring support
596 if ($err==2) {
aae60854 597 $sError = "<p>Your administrator needs to have PHP installed with the multibyte string extension enabled (using configure option --enable-mbstring).</p>\n"
598 . "<p>This system has assumed that you accidently switched to Japanese and has reverted your language preference to English.</p>\n"
599 . "<p>Please refresh this page in order to continue using your webmail.</p>\n";
202bcbcc 600 error_box($sError);
601 }
602
603 $timeZone = getPref($data_dir, $username, 'timezone');
604
605 /* Check to see if we are allowed to set the TZ environment variable.
606 * We are able to do this if ...
607 * safe_mode is disabled OR
608 * safe_mode_allowed_env_vars is empty (you are allowed to set any) OR
609 * safe_mode_allowed_env_vars contains TZ
610 */
611 $tzChangeAllowed = (!ini_get('safe_mode')) ||
612 !strcmp(ini_get('safe_mode_allowed_env_vars'),'') ||
613 preg_match('/^([\w_]+,)*TZ/', ini_get('safe_mode_allowed_env_vars'));
614
615 if ( $timeZone != SMPREF_NONE && ($timeZone != "")
616 && $tzChangeAllowed ) {
617
618 // get time zone key, if strict or custom strict timezones are used
619 if (isset($time_zone_type) &&
620 ($time_zone_type == 1 || $time_zone_type == 3)) {
621 /* load time zone functions */
622 require(SM_PATH . 'include/timezones.php');
623 $realTimeZone = sq_get_tz_key($timeZone);
624 } else {
625 $realTimeZone = $timeZone;
626 }
627
628 // set time zone
629 if ($realTimeZone) {
630 putenv("TZ=".$realTimeZone);
631 }
632 }
867fed37 633
634 /**
635 * php 5.1.0 added time zone functions. Set time zone with them in order
636 * to prevent E_STRICT notices and allow time zone modifications in safe_mode.
637 */
638 if (function_exists('date_default_timezone_set')) {
639 if ($timeZone != SMPREF_NONE && $timeZone != "") {
640 date_default_timezone_set($timeZone);
641 } else {
642 // interface runs on server's time zone. Remove php E_STRICT complains
643 $default_timezone = @date_default_timezone_get();
086ad092 644 date_default_timezone_set($default_timezone);
867fed37 645 }
646 }
202bcbcc 647 break;
648}
649
202bcbcc 650/*
086ad092 651 * $sTemplateID is not initialized when a user is not logged in, so we
652 * will use the config file defaults here. If the neccesary variables
28294310 653 * are not set, force a default value.
086ad092 654 *
655 * If the user is logged in, $sTemplateID will be set in load_prefs.php,
28294310 656 * so we shouldn't change it here.
202bcbcc 657 */
28294310 658if (!isset($sTemplateID)) {
42b5e8aa 659 $sTemplateID = Template::get_default_template_set();
28294310 660 $icon_theme_path = !$use_icons ? NULL : Template::calculate_template_images_directory($sTemplateID);
3aa46abc 661}
be155e14 662
663// template object may have already been constructed in load_prefs.php
664//
665if (empty($oTemplate)) {
666 $oTemplate = Template::construct_template($sTemplateID);
667}
202bcbcc 668
7aae649d 669// We want some variables to always be available to the template
551c7b53 670//
e39d00e9 671$oTemplate->assign('javascript_on',
672 (sqGetGlobalVar('user_is_logged_in', $user_is_logged_in, SQ_SESSION)
673 ? checkForJavascript() : 0));
fe8103c2 674$oTemplate->assign('base_uri', sqm_baseuri());
457e8593 675$always_include = array('sTemplateID', 'icon_theme_path');
7aae649d 676foreach ($always_include as $var) {
677 $oTemplate->assign($var, (isset($$var) ? $$var : NULL));
678}
679
551c7b53 680// A few output elements are used often, so just get them once here
681//
682$nbsp = $oTemplate->fetch('non_breaking_space.tpl');
683$br = $oTemplate->fetch('line_break.tpl');
684
202bcbcc 685/**
686 * Initialize our custom error handler object
687 */
202bcbcc 688$oErrorHandler = new ErrorHandler($oTemplate,'error_message.tpl');
689
690/**
691 * Activate custom error handling
692 */
693if (version_compare(PHP_VERSION, "4.3.0", ">=")) {
694 $oldErrorHandler = set_error_handler(array($oErrorHandler, 'SquirrelMailErrorhandler'));
695} else {
696 $oldErrorHandler = set_error_handler('SquirrelMailErrorhandler');
697}
698
f0d28f44 699
700// ============================================================================
701// ================= End of Live Code, Beginning of Functions =================
702// ============================================================================
703
704
202bcbcc 705/**
706 * Javascript support detection function
707 * @param boolean $reset recheck javascript support if set to true.
867fed37 708 * @return integer SMPREF_JS_ON or SMPREF_JS_OFF ({@see include/constants.php})
202bcbcc 709 * @since 1.5.1
710 */
202bcbcc 711function checkForJavascript($reset = FALSE) {
712 global $data_dir, $username, $javascript_on, $javascript_setting;
713
714 if ( !$reset && sqGetGlobalVar('javascript_on', $javascript_on, SQ_SESSION) )
715 return $javascript_on;
716
e39d00e9 717 $user_is_logged_in = FALSE;
bf3abdc3 718 if ( $reset || !isset($javascript_setting) )
202bcbcc 719 $javascript_setting = getPref($data_dir, $username, 'javascript_setting', SMPREF_JS_AUTODETECT);
720
721 if ( !sqGetGlobalVar('new_js_autodetect_results', $js_autodetect_results) &&
722 !sqGetGlobalVar('js_autodetect_results', $js_autodetect_results) )
723 $js_autodetect_results = SMPREF_JS_OFF;
724
725 if ( $javascript_setting == SMPREF_JS_AUTODETECT )
726 $javascript_on = $js_autodetect_results;
727 else
728 $javascript_on = $javascript_setting;
729
730 sqsession_register($javascript_on, 'javascript_on');
731 return $javascript_on;
732}
733
734function sqm_baseuri() {
735 global $base_uri;
736 return $base_uri;
8e1e2794 737}