Adding debug mode to core. Please run the configuration utility once after retrievin...
[squirrelmail.git] / include / init.php
CommitLineData
202bcbcc 1<?php
2
3/**
4 * init.php -- initialisation file
5 *
6 * File should be loaded in every file in src/ or plugins that occupate an entire frame
7 *
8 * @copyright &copy; 2006 The SquirrelMail Project Team
9 * @license http://opensource.org/licenses/gpl-license.php GNU Public License
10 * @version $Id$
11 * @package squirrelmail
12 */
13
202bcbcc 14/**
15 * This is a development version so in order to track programmer mistakes we
16 * set the error reporting to E_ALL
1888b1bf 17FIXME: disabling this for now, because we now have $sm_debug_mode, but the problem with that is that we don't know what it will be until we have loaded the config file, a good 175 lines below after several important files have been included, etc. For now, we'll trust that developers have turned on E_ALL in php.ini anyway, but this can be uncommented if not.
202bcbcc 18 */
1888b1bf 19//error_reporting(E_ALL);
20
202bcbcc 21
22
23/**
c7ebdfcf 24 * Make sure we have a page name
25 *
26 */
27if ( !defined('PAGE_NAME') ) define('PAGE_NAME', NULL);
28
29
30/**
6a2a6e44 31 * If register_globals are on, unregister globals.
a3b99374 32 * Second test covers boolean set as string (php_value register_globals off).
6a2a6e44 33 */
55dd9abf 34if ((bool) ini_get('register_globals') &&
a3b99374 35 strtolower(ini_get('register_globals'))!='off') {
6a2a6e44 36 /**
55dd9abf 37 * Remove all globals that are not reserved by PHP
38 * 'value' and 'key' are used by foreach. Don't unset them inside foreach.
6a2a6e44 39 */
55dd9abf 40 foreach ($GLOBALS as $key => $value) {
41 switch($key) {
42 case 'HTTP_POST_VARS':
43 case '_POST':
44 case 'HTTP_GET_VARS':
45 case '_GET':
46 case 'HTTP_COOKIE_VARS':
47 case '_COOKIE':
48 case 'HTTP_SERVER_VARS':
49 case '_SERVER':
50 case 'HTTP_ENV_VARS':
51 case '_ENV':
52 case 'HTTP_POST_FILES':
53 case '_FILES':
54 case '_REQUEST':
55 case 'HTTP_SESSION_VARS':
56 case '_SESSION':
57 case 'GLOBALS':
58 case 'key':
59 case 'value':
60 break;
55dd9abf 61 default:
62 unset($GLOBALS[$key]);
63 }
6a2a6e44 64 }
55dd9abf 65 // Unset variables used in foreach
66 unset($GLOBALS['key']);
67 unset($GLOBALS['value']);
6a2a6e44 68}
69
71efd1ed 70/**
d849b570 71 * Used as a dummy value, e.g., for passing as an empty
e39d00e9 72 * hook argument (where the value is passed by reference,
73 * and therefore NULL itself is not acceptable).
d849b570 74 */
086ad092 75global $null;
d849b570 76$null = NULL;
77
78/**
71efd1ed 79 * [#1518885] session.use_cookies = off breaks SquirrelMail
80 *
086ad092 81 * When session cookies are not used, all http redirects, meta refreshes,
82 * src/download.php and javascript URLs are broken. Setting must be set
71efd1ed 83 * before session is started.
84 */
85if (!(bool)ini_get('session.use_cookies') ||
86 ini_get('session.use_cookies') == 'off') {
87 ini_set('session.use_cookies','1');
88}
6a2a6e44 89
3f081dd0 90
6a2a6e44 91/**
202bcbcc 92 * calculate SM_PATH and calculate the base_uri
93 * assumptions made: init.php is only called from plugins or from the src dir.
94 * files in the plugin directory may not be part of a subdirectory called "src"
95 *
96 */
97if (isset($_SERVER['SCRIPT_NAME'])) {
3f081dd0 98 $a = explode('/', $_SERVER['SCRIPT_NAME']);
202bcbcc 99} elseif (isset($HTTP_SERVER_VARS['SCRIPT_NAME'])) {
3f081dd0 100 $a = explode('/', $HTTP_SERVER_VARS['SCRIPT_NAME']);
b0829edf 101} else {
3f081dd0 102 $error = 'Unable to detect script environment. Please test your PHP '
103 . 'settings and send your PHP core configuration, $_SERVER and '
104 . '$HTTP_SERVER_VARS contents to the SquirrelMail developers.';
b0829edf 105 die($error);
202bcbcc 106}
107$sSM_PATH = '';
3f081dd0 108for($i = count($a) -2; $i > -1; --$i) {
202bcbcc 109 $sSM_PATH .= '../';
110 if ($a[$i] === 'src' || $a[$i] === 'plugins') {
111 break;
112 }
113}
114
3f081dd0 115$base_uri = implode('/', array_slice($a, 0, $i)). '/';
202bcbcc 116
202bcbcc 117define('SM_PATH',$sSM_PATH);
6a2a6e44 118define('SM_BASE_URI', $base_uri);
3f081dd0 119
120
202bcbcc 121/**
122 * global var $bInit is used to check if initialisation took place.
123 * At this moment it's a workarounf for the include of addrbook_search_html
124 * inside compose.php. If we found a better way then remove this. Do only use
125 * this var if you know for sure a page can be called stand alone and be included
126 * in another file.
127 */
128$bInit = true;
129
8e1e2794 130/**
131 * This theme as a failsafe if no themes were found, or if we error
132 * out before anything could be initialised.
133 */
134$color = array();
135$color[0] = '#DCDCDC'; /* light gray TitleBar */
136$color[1] = '#800000'; /* red */
137$color[2] = '#CC0000'; /* light red Warning/Error Messages */
138$color[3] = '#A0B8C8'; /* green-blue Left Bar Background */
139$color[4] = '#FFFFFF'; /* white Normal Background */
140$color[5] = '#FFFFCC'; /* light yellow Table Headers */
141$color[6] = '#000000'; /* black Text on left bar */
142$color[7] = '#0000CC'; /* blue Links */
143$color[8] = '#000000'; /* black Normal text */
144$color[9] = '#ABABAB'; /* mid-gray Darker version of #0 */
145$color[10] = '#666666'; /* dark gray Darker version of #9 */
146$color[11] = '#770000'; /* dark red Special Folders color */
147$color[12] = '#EDEDED';
148$color[13] = '#800000'; /* (dark red) Color for quoted text -- > 1 quote */
149$color[14] = '#ff0000'; /* (red) Color for quoted text -- >> 2 or more */
150$color[15] = '#002266'; /* (dark blue) Unselectable folders */
151$color[16] = '#ff9933'; /* (orange) Highlight color */
152
1888b1bf 153require(SM_PATH . 'include/constants.php');
202bcbcc 154require(SM_PATH . 'functions/global.php');
4ffcf13a 155require(SM_PATH . 'functions/strings.php');
918fcc1d 156require(SM_PATH . 'functions/arrays.php');
5e68a08e 157
158/* load default configuration */
159require(SM_PATH . 'config/config_default.php');
160/* reset arrays in default configuration */
161$ldap_server = array();
162$plugins = array();
163$fontsets = array();
5e68a08e 164$aTemplateSet = array();
28294310 165$aTemplateSet[0]['ID'] = 'default';
166$aTemplateSet[0]['NAME'] = 'Default';
01fd1d1a 167
5e68a08e 168/* load site configuration */
202bcbcc 169require(SM_PATH . 'config/config.php');
5e68a08e 170/* load local configuration overrides */
171if (file_exists(SM_PATH . 'config/config_local.php')) {
172 require(SM_PATH . 'config/config_local.php');
173}
174
1888b1bf 175
176/**
177 * Set PHP error reporting level based on the SquirrelMail debug mode
178 */
179$error_level = 0;
180if ($sm_debug_mode & SM_DEBUG_MODE_SIMPLE)
181 $error_level |= E_ERROR;
182if ($sm_debug_mode & SM_DEBUG_MODE_MODERATE
183 || $sm_debug_mode & SM_DEBUG_MODE_ADVANCED)
184 $error_level |= E_ALL;
185if ($sm_debug_mode & SM_DEBUG_MODE_STRICT)
186 $error_level |= E_STRICT;
187error_reporting($error_level);
188
189
202bcbcc 190require(SM_PATH . 'functions/plugin.php');
202bcbcc 191require(SM_PATH . 'include/languages.php');
42b5e8aa 192require(SM_PATH . 'class/template/Template.class.php');
5ab684a5 193require(SM_PATH . 'class/error.class.php');
202bcbcc 194
195/**
196 * If magic_quotes_runtime is on, SquirrelMail breaks in new and creative ways.
197 * Force magic_quotes_runtime off.
198 * tassium@squirrelmail.org - I put it here in the hopes that all SM code includes this.
199 * If there's a better place, please let me know.
200 */
201ini_set('magic_quotes_runtime','0');
202
203
204/* if running with magic_quotes_gpc then strip the slashes
205 from POST and GET global arrays */
206if (get_magic_quotes_gpc()) {
207 sqstripslashes($_GET);
208 sqstripslashes($_POST);
209}
210
202bcbcc 211
212/* strip any tags added to the url from PHP_SELF.
213This fixes hand crafted url XXS expoits for any
214 page that uses PHP_SELF as the FORM action */
215$_SERVER['PHP_SELF'] = strip_tags($_SERVER['PHP_SELF']);
216
217$PHP_SELF = php_self();
218
219/**
220 * Initialize the session
221 */
222
e8c4e350 223/** set the name of the session cookie */
224if (!isset($session_name) || !$session_name) {
225 $session_name = 'SQMSESSID';
226}
227
228/**
319ad3c0 229 * When session.auto_start is On we want to destroy/close the session
1d537493 230 */
231$sSessionAutostartName = session_name();
bf6140e3 232$sCookiePath = null;
319ad3c0 233if (isset($sSessionAutostartName) && $sSessionAutostartName !== $session_name) {
1d537493 234 $sCookiePath = ini_get('session.cookie_path');
235 $sCookieDomain = ini_get('session.cookie_domain');
e8c4e350 236 // reset the cookie
1d537493 237 setcookie($sSessionAutostartName,'',time() - 604800,$sCookiePath,$sCookieDomain);
e8c4e350 238 @session_destroy();
239 session_write_close();
1d537493 240}
e8c4e350 241
202bcbcc 242/**
243 * includes from classes stored in the session
244 */
245require(SM_PATH . 'class/mime.class.php');
246
202bcbcc 247ini_set('session.name' , $session_name);
248session_set_cookie_params (0, $base_uri);
249sqsession_is_active();
250
202bcbcc 251/**
319ad3c0 252 * When on login page, have to reset the user session, making
253 * sure to save session restore data first
254 */
255if (PAGE_NAME == 'login') {
256 if (!sqGetGlobalVar('session_expired_post', $sep, SQ_SESSION))
257 $sep = '';
258 if (!sqGetGlobalVar('session_expired_location', $sel, SQ_SESSION))
259 $sel = '';
260 sqsession_destroy();
261 session_write_close();
262
263 /**
264 * in some rare instances, the session seems to stick
265 * around even after destroying it (!!), so if it does,
266 * we'll manually flatten the $_SESSION data
267 */
268 if (!empty($_SESSION))
269 $_SESSION = array();
270
bc3acc5a 271 /**
272 * Allow administrators to define custom session handlers
273 * for SquirrelMail without needing to change anything in
274 * php.ini (application-level).
275 *
276 * In config_local.php, admin needs to put:
277 *
278 * $custom_session_handlers = array(
279 * 'my_open_handler',
280 * 'my_close_handler',
281 * 'my_read_handler',
282 * 'my_write_handler',
283 * 'my_destroy_handler',
284 * 'my_gc_handler',
285 * );
286 * session_module_name('user');
287 * session_set_save_handler(
288 * $custom_session_handlers[0],
289 * $custom_session_handlers[1],
290 * $custom_session_handlers[2],
291 * $custom_session_handlers[3],
292 * $custom_session_handlers[4],
293 * $custom_session_handlers[5]
294 * );
295 *
296 * We need to replicate that code once here because PHP has
297 * long had a bug that resets the session handler mechanism
298 * when the session data is also destroyed. Because of this
299 * bug, even administrators who define custom session handlers
300 * via a PHP pre-load defined in php.ini (auto_prepend_file)
301 * will still need to define the $custom_session_handlers array
302 * in config_local.php.
303 */
304 global $custom_session_handlers;
305 if (!empty($custom_session_handlers)) {
306 $open = $custom_session_handlers[0];
307 $close = $custom_session_handlers[1];
308 $read = $custom_session_handlers[2];
309 $write = $custom_session_handlers[3];
310 $destroy = $custom_session_handlers[4];
311 $gc = $custom_session_handlers[5];
312 session_module_name('user');
313 session_set_save_handler($open, $close, $read, $write, $destroy, $gc);
314 }
315
319ad3c0 316 sqsession_is_active();
317 session_regenerate_id();
ef33def6 318
319 // put session restore data back into session if necessary
320 if (!empty($sel)) {
321 sqsession_register($sel, 'session_expired_location');
322 if (!empty($sep))
323 sqsession_register($sep, 'session_expired_post');
324 }
319ad3c0 325}
326
327/**
5aed95be 328 * SquirrelMail internal version number -- DO NOT CHANGE
329 * $sm_internal_version = array (release, major, minor)
330 */
a895042a 331$SQM_INTERNAL_VERSION = explode('.', SM_VERSION, 3);
b37e457f 332$SQM_INTERNAL_VERSION[2] = intval($SQM_INTERNAL_VERSION[2]);
5aed95be 333
93d67e0d 334
6d5775db 335/* load prefs system; even when user not logged in, should be OK to do this here */
336require(SM_PATH . 'functions/prefs.php');
337
d43a862e 338// FIXME: config/plugin_hooks.php has not yet been loaded (see a few lines below); so this hook call should I think not be working -- has anyone actually tested it? Is there any reason we cannot move this prefs code block down below "MAIN PLUGIN LOADING CODE HERE" (see below)? Reading the code, I *think* it should be OK, but.... Also, note that this code would then be placed immediately next to the config_override hook, and since it makes little sense to execute two hooks in a row, I will propose removing config_override (although sadly, it is less clear to plugin authors that they should use the prefs_backend hook to do any configuration override work in their plugin)
6d5775db 339$prefs_backend = do_hook('prefs_backend', $null);
340if (isset($prefs_backend) && !empty($prefs_backend) && file_exists(SM_PATH . $prefs_backend)) {
341 require(SM_PATH . $prefs_backend);
342} elseif (isset($prefs_dsn) && !empty($prefs_dsn)) {
343 require(SM_PATH . 'functions/db_prefs.php');
344} else {
345 require(SM_PATH . 'functions/file_prefs.php');
346}
347
348
086ad092 349/* if plugins are disabled only for one user and
93d67e0d 350 * the current user is NOT that user, turn them
351 * back on
352 */
353sqgetGlobalVar('username',$username,SQ_SESSION);
354if ($disable_plugins && !empty($disable_plugins_user)
355 && $username != $disable_plugins_user) {
356 $disable_plugins = false;
357}
358
359/* remove all plugins if they are disabled */
360if ($disable_plugins) {
361 $plugins = array();
362}
363
364
5aed95be 365/**
366 * Include Compatibility plugin if available.
367 */
93d67e0d 368if (!$disable_plugins && file_exists(SM_PATH . 'plugins/compatibility/functions.php'))
5aed95be 369 include_once(SM_PATH . 'plugins/compatibility/functions.php');
370
371/**
372 * MAIN PLUGIN LOADING CODE HERE
086ad092 373 * On init, we no longer need to load all plugin setup files.
5aed95be 374 * Now, we load the statically generated hook registrations here
375 * and let the hook calls include only the plugins needed.
376 */
377$squirrelmail_plugin_hooks = array();
93d67e0d 378if (!$disable_plugins && file_exists(SM_PATH . 'config/plugin_hooks.php')) {
5aed95be 379 require(SM_PATH . 'config/plugin_hooks.php');
380}
381
382/**
383 * allow plugins to override main configuration; hook is placed
384 * here to allow plugins to use session information to do their work
385 */
d849b570 386do_hook('config_override', $null);
5aed95be 387
388/**
3464e1f4 389 * DISABLED.
202bcbcc 390 * Remove globalized session data in rg=on setups
086ad092 391 *
3464e1f4 392 * Code can be utilized when session is started, but data is not loaded.
086ad092 393 * We have already loaded configuration and other important vars. Can't
3464e1f4 394 * clean session globals here.
395if ((bool) @ini_get('register_globals') &&
396 strtolower(ini_get('register_globals'))!='off') {
202bcbcc 397 foreach ($_SESSION as $key => $value) {
398 unset($GLOBALS[$key]);
399 }
400}
3464e1f4 401*/
6a2a6e44 402
826ddd72 403sqsession_register(SM_BASE_URI,'base_uri');
6a2a6e44 404
202bcbcc 405/**
406 * Retrieve the language cookie
407 */
408if (! sqgetGlobalVar('squirrelmail_language',$squirrelmail_language,SQ_COOKIE)) {
409 $squirrelmail_language = '';
410}
411
bf3abdc3 412
202bcbcc 413/**
f0d28f44 414 * Do something special for some pages. This is based on the PAGE_NAME constant
9e06a3ea 415 * set at the top of every page.
202bcbcc 416 */
9e06a3ea 417switch (PAGE_NAME) {
086ad092 418 case 'style':
c4e5f61f 419
2b26084f 420 // need to get the right template set up
28294310 421 //
422 sqGetGlobalVar('templateid', $templateid, SQ_GET);
c4e5f61f 423
2b26084f 424 // sanitize just in case...
28294310 425 //
426 $templateid = preg_replace('/(\.\.\/){1,}/', '', $templateid);
427
428 // make sure given template actually is available
429 //
28294310 430 $found_templateset = false;
431 for ($i = 0; $i < count($aTemplateSet); ++$i) {
432 if ($aTemplateSet[$i]['ID'] == $templateid) {
433 $found_templateset = true;
434 break;
435 }
436 }
c4e5f61f 437
be155e14 438// FIXME: do we need/want to check here for actual (physical) presence of template sets?
28294310 439 // selected template not available, fall back to default template
440 //
441 if (!$found_templateset) {
42b5e8aa 442 $sTemplateID = Template::get_default_template_set();
28294310 443 } else {
444 $sTemplateID = $templateid;
c4e5f61f 445 }
446
2b26084f 447 session_write_close();
c4e5f61f 448 break;
449
f0d28f44 450 case 'mailto':
451 // nothing to do
452 break;
453
202bcbcc 454 case 'redirect':
2e616fa4 455 require(SM_PATH . 'functions/auth.php');
202bcbcc 456 //nobreak;
bf3abdc3 457
202bcbcc 458 case 'login':
459 require(SM_PATH . 'functions/display_messages.php' );
460 require(SM_PATH . 'functions/page_header.php');
461 require(SM_PATH . 'functions/html.php');
42b5e8aa 462
463 // reset template file cache
464 //
465 $sTemplateID = Template::get_default_template_set();
466 Template::cache_template_file_hierarchy(TRUE);
467
1d537493 468 /**
01fd1d1a 469 * Make sure icon variables are setup for the login page.
470 */
471 $icon_theme = $icon_themes[$icon_theme_def]['PATH'];
472 /*
473 * NOTE: The $icon_theme_path var should contain the path to the icon
474 * theme to use. If the admin has disabled icons, or the user has
475 * set the icon theme to "None," no icons will be used.
476 */
477 $icon_theme_path = (!$use_icons || $icon_theme=='none') ? NULL : ($icon_theme == 'template' ? SM_PATH . Template::calculate_template_images_directory($sTemplateID) : $icon_theme);
478
479 /**
1d537493 480 * cleanup old cookies with a cookie path the same as the standard php.ini
481 * cookie path. All previous SquirrelMail version used the standard php.ini
482 * cookie path for storing the session name. That behaviour changed.
483 */
484 if ($sCookiePath !== SM_BASE_URI) {
485 /**
486 * do not delete the standard sessions with session.name is i.e. PHPSESSID
487 * because they probably belong to other php apps
488 */
489 if (ini_get('session.name') !== $sSessionAutostartName) {
30a428c6 490 // This does not work. Sometimes the cookie with SQSESSID=deleted and path /
491 // is picked up in webmail.php => login will fail
492 //sqsetcookie(ini_get('session.name'),'',0,$sCookiePath);
1d537493 493 }
494 }
202bcbcc 495 break;
496 default:
497 require(SM_PATH . 'functions/display_messages.php' );
498 require(SM_PATH . 'functions/page_header.php');
499 require(SM_PATH . 'functions/html.php');
202bcbcc 500
501
502 /**
503 * Check if we are logged in
504 */
505 require(SM_PATH . 'functions/auth.php');
506
507 if ( !sqsession_is_registered('user_is_logged_in') ) {
f8eb968d 508
509 // use $message to indicate what logout text the user
510 // will see... if 0, typical "You must be logged in"
511 // if 1, information that the user session was saved
512 // and will be resumed after (re)login
513 //
514 $message = 0;
515
202bcbcc 516 // First we store some information in the new session to prevent
517 // information-loss.
518 //
519 $session_expired_post = $_POST;
f8e68605 520 $session_expired_location = PAGE_NAME;
202bcbcc 521 if (!sqsession_is_registered('session_expired_post')) {
522 sqsession_register($session_expired_post,'session_expired_post');
523 }
524 if (!sqsession_is_registered('session_expired_location')) {
525 sqsession_register($session_expired_location,'session_expired_location');
f8e68605 526 if ($session_expired_location == 'compose')
f8eb968d 527 $message = 1;
202bcbcc 528 }
529 // signout page will deal with users who aren't logged
530 // in on its own; don't show error here
531 //
9e06a3ea 532 if ( PAGE_NAME == 'signout' ) {
a140422a 533 return;
202bcbcc 534 }
535
8efadc6b 536 /**
537 * Initialize the template object (logout_error uses it)
538 */
8efadc6b 539 /*
086ad092 540 * $sTemplateID is not initialized when a user is not logged in, so we
541 * will use the config file defaults here. If the neccesary variables
28294310 542 * are net set, force a default value.
8efadc6b 543 */
42b5e8aa 544 $sTemplateID = Template::get_default_template_set();
28294310 545 $oTemplate = Template::construct_template($sTemplateID);
8efadc6b 546
202bcbcc 547 set_up_language($squirrelmail_language, true);
f8eb968d 548 if (!$message)
549 logout_error( _("You must be logged in to access this page.") );
550 else
551 logout_error( _("Your session has expired, but will be resumed after logging in again.") );
202bcbcc 552 exit;
553 }
554
79524620 555 sqgetGlobalVar('authz',$authz,SQ_SESSION);
202bcbcc 556
557 /**
558 * Setting the prefs backend
559 */
560 sqgetGlobalVar('prefs_cache', $prefs_cache, SQ_SESSION );
561 sqgetGlobalVar('prefs_are_cached', $prefs_are_cached, SQ_SESSION );
562
563 if ( !sqsession_is_registered('prefs_are_cached') ||
564 !isset( $prefs_cache) ||
565 !is_array( $prefs_cache)) {
566 $prefs_are_cached = false;
567 $prefs_cache = false; //array();
568 }
569
202bcbcc 570 /**
571 * initializing user settings
572 */
573 require(SM_PATH . 'include/load_prefs.php');
574
202bcbcc 575// i do not understand the frames language cookie story
576 /**
577 * We'll need this to later have a noframes version
578 *
579 * Check if the user has a language preference, but no cookie.
580 * Send him a cookie with his language preference, if there is
581 * such discrepancy.
582 */
583 $my_language = getPref($data_dir, $username, 'language');
584 if ($my_language != $squirrelmail_language) {
585 sqsetcookie('squirrelmail_language', $my_language, time()+2592000, $base_uri);
586 }
587// /dont understand
588
589 /**
590 * Set up the language.
591 */
592 $err=set_up_language(getPref($data_dir, $username, 'language'));
202bcbcc 593
594 // Japanese translation used without mbstring support
595 if ($err==2) {
596 $sError =
597 "<p>You need to have PHP installed with the multibyte string function \n".
598 "enabled (using configure option --enable-mbstring).</p>\n".
599 "<p>System assumed that you accidently switched to Japanese translation \n".
600 "and reverted your language preference to English.</p>\n".
601 "<p>Please refresh this page in order to use webmail.</p>\n";
602 error_box($sError);
603 }
604
605 $timeZone = getPref($data_dir, $username, 'timezone');
606
607 /* Check to see if we are allowed to set the TZ environment variable.
608 * We are able to do this if ...
609 * safe_mode is disabled OR
610 * safe_mode_allowed_env_vars is empty (you are allowed to set any) OR
611 * safe_mode_allowed_env_vars contains TZ
612 */
613 $tzChangeAllowed = (!ini_get('safe_mode')) ||
614 !strcmp(ini_get('safe_mode_allowed_env_vars'),'') ||
615 preg_match('/^([\w_]+,)*TZ/', ini_get('safe_mode_allowed_env_vars'));
616
617 if ( $timeZone != SMPREF_NONE && ($timeZone != "")
618 && $tzChangeAllowed ) {
619
620 // get time zone key, if strict or custom strict timezones are used
621 if (isset($time_zone_type) &&
622 ($time_zone_type == 1 || $time_zone_type == 3)) {
623 /* load time zone functions */
624 require(SM_PATH . 'include/timezones.php');
625 $realTimeZone = sq_get_tz_key($timeZone);
626 } else {
627 $realTimeZone = $timeZone;
628 }
629
630 // set time zone
631 if ($realTimeZone) {
632 putenv("TZ=".$realTimeZone);
633 }
634 }
867fed37 635
636 /**
637 * php 5.1.0 added time zone functions. Set time zone with them in order
638 * to prevent E_STRICT notices and allow time zone modifications in safe_mode.
639 */
640 if (function_exists('date_default_timezone_set')) {
641 if ($timeZone != SMPREF_NONE && $timeZone != "") {
642 date_default_timezone_set($timeZone);
643 } else {
644 // interface runs on server's time zone. Remove php E_STRICT complains
645 $default_timezone = @date_default_timezone_get();
086ad092 646 date_default_timezone_set($default_timezone);
867fed37 647 }
648 }
202bcbcc 649 break;
650}
651
202bcbcc 652/*
086ad092 653 * $sTemplateID is not initialized when a user is not logged in, so we
654 * will use the config file defaults here. If the neccesary variables
28294310 655 * are not set, force a default value.
086ad092 656 *
657 * If the user is logged in, $sTemplateID will be set in load_prefs.php,
28294310 658 * so we shouldn't change it here.
202bcbcc 659 */
28294310 660if (!isset($sTemplateID)) {
42b5e8aa 661 $sTemplateID = Template::get_default_template_set();
28294310 662 $icon_theme_path = !$use_icons ? NULL : Template::calculate_template_images_directory($sTemplateID);
3aa46abc 663}
be155e14 664
665// template object may have already been constructed in load_prefs.php
666//
667if (empty($oTemplate)) {
668 $oTemplate = Template::construct_template($sTemplateID);
669}
202bcbcc 670
7aae649d 671// We want some variables to always be available to the template
e39d00e9 672$oTemplate->assign('javascript_on',
673 (sqGetGlobalVar('user_is_logged_in', $user_is_logged_in, SQ_SESSION)
674 ? checkForJavascript() : 0));
fe8103c2 675$oTemplate->assign('base_uri', sqm_baseuri());
457e8593 676$always_include = array('sTemplateID', 'icon_theme_path');
7aae649d 677foreach ($always_include as $var) {
678 $oTemplate->assign($var, (isset($$var) ? $$var : NULL));
679}
680
202bcbcc 681/**
682 * Initialize our custom error handler object
683 */
202bcbcc 684$oErrorHandler = new ErrorHandler($oTemplate,'error_message.tpl');
685
686/**
687 * Activate custom error handling
688 */
689if (version_compare(PHP_VERSION, "4.3.0", ">=")) {
690 $oldErrorHandler = set_error_handler(array($oErrorHandler, 'SquirrelMailErrorhandler'));
691} else {
692 $oldErrorHandler = set_error_handler('SquirrelMailErrorhandler');
693}
694
f0d28f44 695
696// ============================================================================
697// ================= End of Live Code, Beginning of Functions =================
698// ============================================================================
699
700
202bcbcc 701/**
702 * Javascript support detection function
703 * @param boolean $reset recheck javascript support if set to true.
867fed37 704 * @return integer SMPREF_JS_ON or SMPREF_JS_OFF ({@see include/constants.php})
202bcbcc 705 * @since 1.5.1
706 */
202bcbcc 707function checkForJavascript($reset = FALSE) {
708 global $data_dir, $username, $javascript_on, $javascript_setting;
709
710 if ( !$reset && sqGetGlobalVar('javascript_on', $javascript_on, SQ_SESSION) )
711 return $javascript_on;
712
e39d00e9 713 $user_is_logged_in = FALSE;
bf3abdc3 714 if ( $reset || !isset($javascript_setting) )
202bcbcc 715 $javascript_setting = getPref($data_dir, $username, 'javascript_setting', SMPREF_JS_AUTODETECT);
716
717 if ( !sqGetGlobalVar('new_js_autodetect_results', $js_autodetect_results) &&
718 !sqGetGlobalVar('js_autodetect_results', $js_autodetect_results) )
719 $js_autodetect_results = SMPREF_JS_OFF;
720
721 if ( $javascript_setting == SMPREF_JS_AUTODETECT )
722 $javascript_on = $js_autodetect_results;
723 else
724 $javascript_on = $javascript_setting;
725
726 sqsession_register($javascript_on, 'javascript_on');
727 return $javascript_on;
728}
729
730function sqm_baseuri() {
731 global $base_uri;
732 return $base_uri;
8e1e2794 733}