Putting back SM_PATH the way it should be and eliminating chdir in the

[squirrelmail.git] / plugins / squirrelspell / sqspell_options.php

diff --git a/plugins/squirrelspell/sqspell_options.php b/plugins/squirrelspell/sqspell_options.php
index 86c75cd3fae596612bde87933c2585c268e6d215..54a898f5ae16a1fa27c29e61889852fcff0d5d6d 100644 (file)
--- a/plugins/squirrelspell/sqspell_options.php
+++ b/plugins/squirrelspell/sqspell_options.php
@@ -1,35 +1,50 @@
 <?php
 /**
-   SQSPELL_OPTIONS.PHP
-   --------------------
-   Main wrapper for the options interface.
-                                                               **/
-// Set a couple of constants. Don't change these, the setuppable stuff is
-// in sqspell_config.php
-$SQSPELL_DIR="squirrelspell";
-$SQSPELL_CRYPTO=false;
+ * sqspell_options.php 
+ *
+ * Main wrapper for the options interface.
+ *
+ * Copyright (c) 1999-2002 The SquirrelMail development team
+ * Licensed under the GNU GPL. For full terms see the file COPYING.
+ *
+ * $Id$
+ *
+ * @author Konstantin Riabitsev <icon@duke.edu> ($Author$)
+ * @version $Date$
+ */
 
-// Load some necessary stuff.
-chdir("..");
-include("../src/validate.php");
-include("../src/load_prefs.php");
-include("../functions/strings.php");
-include("../functions/page_header.php");
-include ("$SQSPELL_DIR/sqspell_config.php");
-require ("$SQSPELL_DIR/sqspell_functions.php");
+/**
+ * Set a couple of constants and defaults. Don't change these, 
+ * the configurable stuff is in sqspell_config.php
+ */
+$SQSPELL_DIR='plugins/squirrelspell/';
+$SQSPELL_CRYPTO=FALSE;
+
+/**
+ * Load some necessary stuff from squirrelmail. 
+ */
+define('SM_PATH','../../');
 
-// Access the module needed
-//
-if (!$MOD) $MOD="options_main";
+/* SquirrelMail required files. */
+require_once(SM_PATH . 'include/validate.php');
+require_once(SM_PATH . 'include/load_prefs.php');
+require_once(SM_PATH . 'functions/strings.php');
+require_once(SM_PATH . 'functions/page_header.php');
+require_once(SM_PATH . $SQSPELL_DIR . 'sqspell_config.php');
+require_once(SM_PATH . $SQSPELL_DIR . 'sqspell_functions.php');
 
-// see if someone is attempting to be nasty by trying to get out of the
-// modules directory, although it probably wouldn't do them any good,
-// since every module has to end with .mod.php. Still, they deserve
-// to be warned. ;)
-if (strstr($MOD, ".") || strstr($MOD, "/") || strstr($MOD, "%")){
-       echo "SECURITY BREACH ON DECK 5! CMDR TUVOK AND SECURITY TEAM REQUESTED.";
-        exit;
+/**
+ * $MOD is the name of the module to invoke.
+ * If $MOD is unspecified, assign "init" to it. Else check for
+ * security breach attempts.
+ */
+if (!isset($MOD) || !$MOD){
+  $MOD = 'options_main';
+} else {
+  sqspell_ckMOD($MOD);
 }
-// load the stuff already.
-include ("$SQSPELL_DIR/modules/$MOD.mod.php");
+
+/* Load the stuff already. */
+require_once(SM_PATH . $SQSPELL_DIR . "modules/$MOD.mod");
+
 ?>