4 // IMPORTANT NOTE: Use of the ***configurator.php*** to generate an
5 // index.php is depreciated, because it is out of date and a new
6 // configuration system is in the works (see the config directory, not
7 // finished yet though). DO compare or diff the configurator's output
8 // against this file if you feel you must use it to generate an
12 Copyright 1999, 2000, 2001, 2002 $ThePhpWikiProgrammingTeam = array(
13 "Steve Wainstead", "Clifford A. Adams", "Lawrence Akka",
14 "Scott R. Anderson", "Jon Åslund", "Neil Brown", "Jeff Dairiki",
15 "Stéphane Gourichon", "Jan Hidders", "Arno Hollosi", "John Jorgensen",
16 "Antti Kaihola", "Jeremie Kass", "Carsten Klapp", "Marco Milanesi",
17 "Grant Morgan", "Jan Nieuwenhuizen", "Aredridel Niothke",
18 "Pablo Roca Rozas", "Sandino Araico Sánchez", "Joel Uckelman",
19 "Reini Urban", "Tim Voght", "Jochen Kalmbach");
21 This file is part of PhpWiki.
23 PhpWiki is free software; you can redistribute it and/or modify
24 it under the terms of the GNU General Public License as published by
25 the Free Software Foundation; either version 2 of the License, or
26 (at your option) any later version.
28 PhpWiki is distributed in the hope that it will be useful,
29 but WITHOUT ANY WARRANTY; without even the implied warranty of
30 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
31 GNU General Public License for more details.
33 You should have received a copy of the GNU General Public License
34 along with PhpWiki; if not, write to the Free Software
35 Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA
39 /////////////////////////////////////////////////////////////////////
41 This is the starting file for PhpWiki. All this file does is set
42 configuration options, and at the end of the file it includes() the
43 file lib/main.php, where the real action begins.
45 This file is divided into seven parts: Parts Zero, One, Two, Three,
46 Four, Five and Six. Each one has different configuration settings you can
47 change; in all cases the default should work on your system,
48 however, we recommend you tailor things to your particular setting.
51 /////////////////////////////////////////////////////////////////////
52 // Part Zero: If PHP needs help in finding where you installed the
53 // rest of the PhpWiki code, you can set the include_path here.
55 // Define PHP's include path so that it can find the PHP source code
58 // You shouldn't need to do this unless you've moved index.php out
59 // of the PhpWiki install directory.
61 // Note that on Windows-based servers, you should use ; rather than :
62 // as the path separator.
63 //ini_set('include_path', '.:/usr/local/httpd/phpwiki');
65 // Set DEBUG to 1 to view the XHTML and CSS validator icons, page
66 // processing timer, and possibly other debugging messages at the
67 // bottom of each page.
68 if (!defined('DEBUG')) define ('DEBUG', 0);
69 define('ENABLE_USER_NEW',true); // this will disappear with 1.4.0
70 define('JS_SEARCHREPLACE',true); // experimental edit feature
72 /////////////////////////////////////////////////////////////////////
73 // Part Null: Don't touch this!
75 define ('PHPWIKI_VERSION', '1.3.8');
76 require "lib/prepend.php";
77 rcs_id('$Id: index.php,v 1.135 2004-04-10 03:33:03 rurban Exp $');
79 /////////////////////////////////////////////////////////////////////
82 // Authentication and security settings. See Part Three for more.
84 /////////////////////////////////////////////////////////////////////
86 // The name of your wiki.
88 // This is used to generate a keywords meta tag in the HTML templates,
89 // in bookmark titles for any bookmarks made to pages in your wiki,
90 // and during RSS generation for the <title> of the RSS channel.
92 // To use your own logo and signature files, name them PhpWikiLogo.png
93 // and PhpWikiSignature.png and put them into themes/default/images
94 // (substituting "PhpWiki" in the filename with the name you define
97 // It is recommended this be a relatively short WikiWord like the
98 // InterWiki monikers found in the InterWikiMap. (For examples, see
99 // lib/interwiki.map).
100 if (!defined('WIKI_NAME')) define('WIKI_NAME', 'PhpWiki');
102 // Visitor Hostname Lookup
104 // If set, reverse dns lookups will be performed to attempt to convert
105 // the user's IP number into a host name, in the case where the http
106 // server does not do this.
107 if (!defined('ENABLE_REVERSE_DNS')) define('ENABLE_REVERSE_DNS', true);
109 // Username and password of administrator.
111 // Set these to your preferences. For heaven's sake pick a good
112 // password and use the passencrypt.php tool. See:
113 // http://wolfram.org/writing/howto/password.html
115 // Log into the wiki with the admin user and password to lock, unlock,
116 // or remove pages and to perform other PhpWikiAdministration
117 // functions. On all other occasions you should simply log in with
118 // your regular WikiName.
119 if (!defined('ADMIN_USER')) define('ADMIN_USER', "");
120 if (!defined('ADMIN_PASSWD')) define('ADMIN_PASSWD', "");
121 // It is recommended to use the passencrypt.php utility to encode the
122 // admin password, in the unlikely event someone gains ftp or ssh
123 // access to the server and directory containing phpwiki. Once you
124 // have pasted the encrypted password into ADMIN_PASSWD, uncomment
126 //if (!defined('ENCRYPTED_PASSWD')) define('ENCRYPTED_PASSWD', true);
128 // Private ZIP Dumps of All Wiki Pages
130 // If true, only the admin user can make zip dumps. Otherwise anyone
131 // may download all wiki pages as a single zip archive.
132 if (!defined('ZIPDUMP_AUTH')) define('ZIPDUMP_AUTH', false);
134 // Define to false to disable the RawHtml plugin.
135 //if (!defined('ENABLE_RAW_HTML')) define('ENABLE_RAW_HTML', false);
137 // If you define this to true, (MIME-type) page-dumps (either zip dumps,
138 // or "dumps to directory" will be encoded using the quoted-printable
139 // encoding. If you're actually thinking of mailing the raw page dumps,
140 // then this might be useful, since (among other things,) it ensures
141 // that all lines in the message body are under 80 characters in length.
143 // Also, setting this will cause a few additional mail headers
144 // to be generated, so that the resulting dumps are valid
145 // RFC 2822 e-mail messages.
147 // Probably you can just leave this set to false, in which case you get
148 // raw ('binary' content-encoding) page dumps.
149 if (!defined('STRICT_MAILABLE_PAGEDUMPS')) define('STRICT_MAILABLE_PAGEDUMPS', false);
151 // Here you can change the filename suffix used for XHTML page dumps.
152 // If you don't want any suffix just comment this out.
153 $HTML_DUMP_SUFFIX = '.html';
155 // The maximum file upload size.
156 if (!defined('MAX_UPLOAD_SIZE')) define('MAX_UPLOAD_SIZE', 16 * 1024 * 1024);
158 // If the last edit is older than MINOR_EDIT_TIMEOUT seconds, the
159 // default state for the "minor edit" checkbox on the edit page form
161 if (!defined('MINOR_EDIT_TIMEOUT')) define("MINOR_EDIT_TIMEOUT", 7 * 24 * 3600);
163 // Actions listed in this array will not be allowed. The complete list
164 // of actions can be found in lib/main.php within the function
165 // getActionDescription.
166 //$DisabledActions = array('dumpserial', 'loadfile');
168 // PhpWiki can generate an access_log (in "NCSA combined log" format)
169 // for you. If you want one, define this to the name of the log
170 // file. The server must have write access to the directory specified.
171 //define('ACCESS_LOG', '/var/tmp/wiki_access_log');
174 // By default PhpWiki will try to have PHP compress its output
175 // before sending it to the browser (if you have a recent enough
176 // version of PHP and the browser supports it.)
177 // Define COMPRESS_OUTPUT to false to prevent output compression.
178 // Define COMPRESS_OUTPUT to true to force output compression,
179 // even if we think your version of PHP does this in a buggy
181 // Leave it undefined to leave the choice up to PhpWiki.
182 //define('COMPRESS_OUTPUT', false);
185 // HTTP CACHE_CONTROL
187 // This controls how PhpWiki sets the HTTP cache control
188 // headers (Expires: and Cache-Control:)
192 // NONE: This is roughly the old (pre 1.3.4) behavior. PhpWiki will
193 // instruct proxies and browsers never to cache PhpWiki output.
195 // STRICT: Cached pages will be invalidated whenever the database global
196 // timestamp changes. This should behave just like NONE (modulo
197 // bugs in PhpWiki and your proxies and browsers), except that
198 // things will be slightly more efficient.
200 // LOOSE: Cached pages will be invalidated whenever they are edited,
201 // or, if the pages include plugins, when the plugin output could
202 // concievably have changed.
204 // Behavior should be much like STRICT, except that sometimes
205 // wikilinks will show up as undefined (with the question mark)
206 // when in fact they refer to (recently) created pages.
207 // (Hitting your browsers reload or perhaps shift-reload button
208 // should fix the problem.)
210 // ALLOW_STALE: Proxies and browsers will be allowed to used stale pages.
211 // (The timeout for stale pages is controlled by CACHE_CONTROL_MAX_AGE.)
213 // This setting will result in quirky behavior. When you edit a
214 // page your changes may not show up until you shift-reload the
217 // This setting is generally not advisable, however it may be useful
218 // in certain cases (e.g. if your wiki gets lots of page views,
219 // and few edits by knowledgable people who won't freak over the quirks.)
221 // The default is currently LOOSE.
223 if (!defined('CACHE_CONTROL')) define('CACHE_CONTROL', 'LOOSE');
225 // Maximum page staleness, in seconds.
227 // This only has effect if CACHE_CONTROL is set to ALLOW_STALE.
228 if (!defined('CACHE_CONTROL_MAX_AGE')) define('CACHE_CONTROL_MAX_AGE', 600);
233 // PhpWiki normally caches a preparsed version (i.e. mostly
234 // converted to HTML) of the most recent version of each page.
235 // (Parsing the wiki-markup takes a fair amount of CPU.)
237 // Define WIKIDB_NOCACHE_MARKUP to true to disable the
238 // caching of marked-up page content.
240 // Note that you can also disable markup caching on a per-page
241 // temporary basis by addinging a query arg of '?nocache=1'
242 // to the URL to the page. (Use '?nocache=purge' to completely
243 // discard the cached version of the page.)
245 // You can also purge the cached markup globally by using the
246 // "Purge Markup Cache" button on the PhpWikiAdministration page.
247 //if (!defined('WIKIDB_NOCACHE_MARKUP')) define ('WIKIDB_NOCACHE_MARKUP', true);
249 /////////////////////////////////////////////////////////////////////
252 // Database Selection
254 /////////////////////////////////////////////////////////////////////
257 // This array holds the parameters which select the database to use.
259 // Not all of these parameters are used by any particular DB backend.
262 // Select the database type:
264 // Choose ADODB or SQL to use an SQL database with ADODB or PEAR
265 // respectively (both ADODB and PEAR libraries are already included
267 // Choose dba to use one of the standard UNIX dbm libraries.
268 // Choose file to use a flat file database.
269 //'dbtype' => 'ADODB',
272 //'dbtype' => 'file',
275 // For SQL based backends, specify the database as a DSN
276 // The most general form of a DSN looks like:
278 // phptype(dbsyntax)://username:password@protocol+hostspec/database
280 // For a MySQL database, the following should work:
282 // mysql://user:password@host/databasename
284 // To connect over a unix socket, use something like
286 // mysql://user:password@unix(/path/to/socket)/databasename
288 //'dsn' => 'mysql://guest@unix(/var/lib/mysql/mysql.sock)/test',
289 //'dsn' => 'mysql://guest@localhost/test',
290 //'dsn' => 'pgsql://localhost/test',
292 // The common table prefix (see below) is added if defined
293 'db_session_table' => 'session',
295 // Used by all DB types:
297 // prefix for filenames or table names
299 * currently you MUST EDIT THE SQL file too (in the schemas/
300 * directory because we aren't doing on the fly sql generation
301 * during the installation.
303 //'prefix' => 'phpwiki_',
305 // Used by either 'dba' or 'file' and must be writable by the web
306 // server If you leave this as '/tmp' you will probably lose all
307 // your files eventually
308 'directory' => "/tmp",
310 // choose the type of DB database file to use; most GNU systems have gdbm
311 'dba_handler' => 'gdbm', // Either of 'gdbm' or 'db2' work great for me.
312 //'dba_handler' => 'db2',
313 //'dba_handler' => 'db3', // Works fine on Windows, but not on every linux.
314 //'dba_handler' => 'dbm', // On sf.net redhat there's dbm and gdbm.
315 // dbm suffers from limits on size of data items?
321 /////////////////////////////////////////////////////////////////////
322 // PHP Session settings:
325 // Tested for dbtype: 'SQL', 'ADODB' and 'dba'. See schemas/mysql.sql,
326 // schemas/sqlite.sql or schemas/psql.sql.
327 // $DBParams['db_session_table'] must be defined.
328 if (!defined('USE_DB_SESSION') and
329 $DBParams['dbtype'] == 'SQL' and
330 !empty($DBParams['db_session_table']))
331 define('USE_DB_SESSION',true);
333 // If your php was compiled with --enable-trans-sid it tries to
334 // add a PHPSESSID query argument to all URL strings when cookie
335 // support isn't detected in the client browser. For reasons
336 // which aren't entirely clear (PHP bug) this screws up the URLs
337 // generated by PhpWiki. Therefore, transparent session ids
338 // should be disabled. This next line does that.
340 // (At the present time, you will not be able to log-in to PhpWiki,
341 // unless your browser supports cookies.)
342 @ini_set('session.use_trans_sid', 0);
344 // The login code now uses PHP's session support. Usually, the default
345 // configuration of PHP is to store the session state information in
346 // /tmp. That probably will work fine, but fails e.g. on clustered
347 // servers where each server has their own distinct /tmp (this is the
348 // case on SourceForge's project web server.) You can specify an
349 // alternate directory in which to store state information like so
350 // (whatever user your httpd runs as must have read/write permission
351 // in this directory):
353 //ini_set('session.save_path', 'some_other_directory');
355 /////////////////////////////////////////////////////////////////////
357 // The next section controls how many old revisions of each page are
358 // kept in the database.
360 // There are two basic classes of revisions: major and minor. Which
361 // class a revision belongs in is determined by whether the author
362 // checked the "this is a minor revision" checkbox when they saved the
365 // There is, additionally, a third class of revisions: author
366 // revisions. The most recent non-mergable revision from each distinct
367 // author is and author revision.
369 // The expiry parameters for each of those three classes of revisions
370 // can be adjusted seperately. For each class there are five
371 // parameters (usually, only two or three of the five are actually
372 // set) which control how long those revisions are kept in the
375 // max_keep: If set, this specifies an absolute maximum for the
376 // number of archived revisions of that class. This is
377 // meant to be used as a safety cap when a non-zero
378 // min_age is specified. It should be set relatively high,
379 // and it's purpose is to prevent malicious or accidental
380 // database overflow due to someone causing an
381 // unreasonable number of edits in a short period of time.
383 // min_age: Revisions younger than this (based upon the supplanted
384 // date) will be kept unless max_keep is exceeded. The age
385 // should be specified in days. It should be a
386 // non-negative, real number,
388 // min_keep: At least this many revisions will be kept.
390 // keep: No more than this many revisions will be kept.
392 // max_age: No revision older than this age will be kept.
394 // Supplanted date: Revisions are timestamped at the instant that they
395 // cease being the current revision. Revision age is computed using
396 // this timestamp, not the edit time of the page.
398 // Merging: When a minor revision is deleted, if the preceding
399 // revision is by the same author, the minor revision is merged with
400 // the preceding revision before it is deleted. Essentially: this
401 // replaces the content (and supplanted timestamp) of the previous
402 // revision with the content after the merged minor edit, the rest of
403 // the page metadata for the preceding version (summary, mtime, ...)
406 // Keep up to 8 major edits, but keep them no longer than a month.
407 $ExpireParams['major'] = array('max_age' => 32,
409 // Keep up to 4 minor edits, but keep them no longer than a week.
410 $ExpireParams['minor'] = array('max_age' => 7,
412 // Keep the latest contributions of the last 8 authors up to a year.
413 // Additionally, (in the case of a particularly active page) try to
414 // keep the latest contributions of all authors in the last week (even
415 // if there are more than eight of them,) but in no case keep more
416 // than twenty unique author revisions.
417 $ExpireParams['author'] = array('max_age' => 365,
422 /////////////////////////////////////////////////////////////////////
424 // Part Three: (optional)
425 // User Authentication
427 /////////////////////////////////////////////////////////////////////
429 // New user authentication configuration:
430 // We support three basic authentication methods and a stacked array
431 // of advanced auth methods to get and check the passwords:
433 // ALLOW_ANON_USER default true
434 // ALLOW_ANON_EDIT default true
435 // ALLOW_BOGO_LOGIN default true
436 // ALLOW_USER_PASSWORDS default true
438 // allow anon users to view pages! (not edit)
439 if (!defined('ALLOW_ANON_USER')) define('ALLOW_ANON_USER', true);
440 // allow anon users to edit pages
441 if (!defined('ALLOW_ANON_EDIT')) define('ALLOW_ANON_EDIT', true);
443 // This was replaced by ALLOW_ANON_EDIT
444 if (!defined('REQUIRE_SIGNIN_BEFORE_EDIT')) define('REQUIRE_SIGNIN_BEFORE_EDIT', ! ALLOW_ANON_EDIT);
446 // If ALLOW_BOGO_LOGIN is true, users are allowed to login (with
447 // any/no password) using any userid which:
448 // 1) is not the ADMIN_USER, and
449 // 2) is a valid WikiWord (matches $WikiNameRegexp.)
450 // If true, users may be created by themselves. Otherwise we need seperate auth.
451 // If such a user will create a so called HomePage with his userid, he will
452 // be able to store his preferences and password there.
453 if (!defined('ALLOW_BOGO_LOGIN')) define('ALLOW_BOGO_LOGIN', true);
455 // True User Authentication:
456 // To require user passwords:
457 // ALLOW_ANON_USER = false
458 // ALLOW_ANON_EDIT = false
459 // ALLOW_BOGO_LOGIN = false,
460 // ALLOW_USER_PASSWORDS = true.
461 // Otherwise any anon or bogo user might login without any or a wrong password.
462 if (!defined('ALLOW_USER_PASSWORDS')) define('ALLOW_USER_PASSWORDS', true);
464 // Below we define which methods exists and in which order
466 // BogoLogin: WikiWord enough, but with PASSWORD_LENGTH_MINIMUM
467 // PersonalPage: Store passwords in the users homepage metadata (simple)
468 // Db: Use $DBAuthParams[] (see below) with the PearDB or
470 // LDAP: Authenticate against LDAP_AUTH_HOST with LDAP_BASE_DN
471 // IMAP: Authenticate against IMAP_AUTH_HOST (email account)
472 // POP3: Authenticate against POP3_AUTH_HOST (email account)
473 // File: Store username:crypted-passwords in .htaccess like files.
474 // Use Apache's htpasswd to manage this file.
475 // HttpAuth: Use the protection by the webserver (.htaccess) or
478 if (defined('ALLOW_USER_PASSWORDS')) {
480 // use the following order of authentication methods:
481 if (!isset($USER_AUTH_ORDER))
487 // "LDAP", // define LDAP_AUTH_HOST and LDAP_BASE_DN
488 // "IMAP", // define IMAP_AUTH_HOST
489 // "POP3", // define POP3_AUTH_HOST
490 // "File", // define AUTH_USER_FILE and opt. AUTH_USER_FILE_STORABLE
494 if (!defined('PASSWORD_LENGTH_MINIMUM')) define('PASSWORD_LENGTH_MINIMUM', 2);
496 if (!defined('USER_AUTH_POLICY'))
497 //We support the following auth policies:
498 // first-only: use only the first method in USER_AUTH_ORDER
499 // old: ignore USER_AUTH_ORDER and try to use all available
500 // methods as in the previous PhpWiki releases (slow)
501 // strict: check if the user exists for all methods:
502 // on the first existing user, try the password.
503 // dont try the other methods on failure then
504 // stacked: check the given user - password combination for all methods
505 // and return true on the first success.
507 //define('USER_AUTH_POLICY','first-only');
508 define('USER_AUTH_POLICY','old');
509 //define('USER_AUTH_POLICY','strict');
510 //define('USER_AUTH_POLICY','stacked');
514 if (!defined('LDAP_AUTH_HOST')) define('LDAP_AUTH_HOST', "ldap://localhost:389");
515 // or "ldaps://server:636"
516 // The organizational or domain BASE DN: e.g. "dc=mydomain,dc=com" to restrict the search
517 // Note: ou=Users and ou=Groups are used for GroupLdap Membership
518 if (!defined('LDAP_BASE_DN')) define('LDAP_BASE_DN', "ou=Users,o=Development,dc=mycompany.com");
519 // LDAP Auth Optional:
520 // Some LDAP servers disallow anonymous binds, and need some more options,
521 // such as for the Windows Active Directory Server:
522 // $LDAP_SET_OPTION = array('LDAP_OPT_PROTOCOL_VERSION' => 3,
523 // 'LDAP_OPT_REFERRALS' => 0);
524 // define(LDAP_AUTH_USER, "CN=ldapuser,CN=Users,DC=uai,DC=int");
525 // define(LDAP_AUTH_PASSWORD, '');
526 // define(LDAP_SEARCH_FIELD, 'sAMAccountName'); // might be different from uid,
527 // here's its a Windows/Samba account
530 // check userid/passwords from a imap server, defaults to localhost
531 if (!defined('IMAP_AUTH_HOST')) define('IMAP_AUTH_HOST', 'localhost:143/imap/notls');
532 // Some IMAP_AUTH_HOST samples:
533 // "localhost", "localhost:143/imap/notls",
534 // "localhost:993/imap/ssl/novalidate-cert" (SuSE refuses non-SSL conections)
537 //if (!defined('POP3_AUTH_HOST')) define('POP3_AUTH_HOST', 'localhost');
538 //if (!defined('POP3_AUTH_PORT')) define('POP3_AUTH_PORT', '110');
541 //if (!defined('AUTH_USER_FILE')) define('AUTH_USER_FILE', '/etc/shadow'); // or '/etc/httpd/.htpasswd'
542 // set this to true if the user may change his password into this file.
543 //if (!defined('AUTH_USER_FILE_STORABLE')) define('AUTH_USER_FILE_STORABLE',false);
546 //if (!defined('GROUP_METHOD')) define('GROUP_METHOD', "NONE");
547 if (!defined('GROUP_METHOD')) define('GROUP_METHOD', "WIKIPAGE");
548 //if (!defined('GROUP_METHOD')) define('GROUP_METHOD', "DB");
549 //if (!defined('GROUP_METHOD')) define('GROUP_METHOD', "FILE");
550 //if (!defined('GROUP_METHOD')) define('GROUP_METHOD', "LDAP");
551 //if (!defined('AUTH_GROUP_FILE')) define('AUTH_GROUP_FILE', '/etc/groups'); // or '/etc/httpd/.htgroup'
553 // Seperate DB User Authentication.
554 // Can be external, like radius, phpnuke, courier authmysql,
555 // apache auth_mysql or something else.
556 // The default is to store the data as metadata in the users PersonalPage.
557 // The most likely dsn option is the same dsn as the wikipages.
559 // Note: Order of variables important!
560 $DBAuthParams = array (
561 // if not defined use $DBParams['dsn'] i.e. the phpwiki database
562 //'auth_dsn' => 'mysql://localhost/phpwiki',
565 // plaintext passwords:
566 // 'auth_check' => 'SELECT IF(passwd="$password",1,0) as ok FROM user WHERE userid="$userid"',
567 // database (md5) passwords (more secure):
568 'auth_check' => 'SELECT IF(passwd=PASSWORD("$password"),1,0) as ok FROM user WHERE userid="$userid"',
570 //'auth_check' => 'SELECT password as password FROM user WHERE userid="$userid"',
571 // this is only needed with auth_crypt_method plain:
572 'auth_user_exists' => 'SELECT userid FROM user WHERE userid="$userid"',
574 //'auth_crypt_method' => 'crypt', // 'crypt' (unix)
575 'auth_crypt_method' => 'plain', // plain or secure mysql PASSWORD()
577 // If 'auth_update' is not defined but 'auth_check' is defined, the user cannot
578 // change his password.
579 // $password is processed by the 'auth_crypt_method'
580 //'auth_update' => 'UPDATE user SET passwd="$password" WHERE userid="$userid"',
581 // for mysql md5 use 'auth_crypt_method' => 'plain'
582 'auth_update' => 'UPDATE user SET passwd=PASSWORD("$password") WHERE userid="$userid"',
584 // Let a user create himself. Generally in external databases not wanted.
585 //'auth_create' => 'INSERT INTO user SET passwd=PASSWORD("$password"),userid="$userid"',
587 // USER => PREFERENCES
588 // This can be optionally defined in the phpwiki db.
589 // The default is to store it the users homepage.
590 // If you choose the user table, only registered user get their prefs from the DB,
591 // self-created users not. Better use the special pref table.
592 //'pref_select' => 'SELECT prefs FROM user WHERE userid="$userid"',
593 'pref_select' => 'SELECT prefs FROM pref WHERE userid="$userid"',
594 //Don't use replace with user or all other fields here get erased! (passwords e.g.)
595 //'pref_update' => 'UPDATE user SET prefs="$pref_blob" WHERE userid="$userid"',
596 // The special prefs table is safe to erase. All users can store their prefs here.
597 'pref_update' => 'REPLACE INTO pref SET prefs="$pref_blob",userid="$userid"',
600 // DB methods for lib/WikiGroup.php, see also AUTH_GROUP_FILE above.
601 // You can define 1:n or n:m user<=>group relations, as you wish.
602 // Sample configurations
603 // only one group per user (1:n):
604 //'is_member' => 'SELECT user FROM user WHERE user="$userid" AND group="$groupname"',
605 //'group_members' => 'SELECT user FROM user WHERE group="$groupname"',
606 //'user_groups' => 'SELECT group FROM user WHERE user="$userid"',
607 // or multiple groups per user (n:m):
608 'is_member' => 'SELECT userid FROM member WHERE userid="$userid" AND groupname="$groupname"',
609 'group_members' => 'SELECT DISTINCT userid FROM member WHERE groupname="$groupname"',
610 'user_groups' => 'SELECT groupname FROM member WHERE userid="$userid"',
615 // Old settings, only needed for ENABLE_USER_NEW = false
617 // The wiki can be protected by HTTP Auth. Use the username and password
618 // from there, but this is not sufficient. Try the other methods also.
619 if (!defined('ALLOW_HTTP_AUTH_LOGIN')) define('ALLOW_HTTP_AUTH_LOGIN', false);
620 // If ALLOW_USER_LOGIN is true, any defined internal and external
621 // authentication method is tried. If not, we don't care about
622 // passwords, but listen to the next two constants. Note that external
623 // authentication is not supported at this time, you will likely have
624 // to patch code yourself to get PhpWiki to recognise userids and
625 // passwords from an external source.
626 if (!defined('ALLOW_USER_LOGIN')) define('ALLOW_USER_LOGIN', false);
627 // also only if ENABLE_USER_NEW = false:
628 //if (!defined('ALLOW_LDAP_LOGIN')) define('ALLOW_LDAP_LOGIN', true and function_exists('ldap_connect'));
629 //if (!defined('ALLOW_IMAP_LOGIN')) define('ALLOW_IMAP_LOGIN', true and function_exists('imap_open'));
631 // A interim page which gets displayed on every edit attempt
632 //if (!defined('EDITING_POLICY')) define('EDITING_POLICY', "EditingPolicy");
635 /////////////////////////////////////////////////////////////////////
638 // Page appearance and layout
640 /////////////////////////////////////////////////////////////////////
644 * Most of the page appearance is controlled by files in the theme
647 * There are a number of pre-defined themes shipped with PhpWiki.
648 * Or you may create your own (e.g. by copying and then modifying one of
653 if (!defined('THEME')) {
654 define('THEME', 'default');
655 //define('THEME', 'Hawaiian');
656 //define('THEME', 'MacOSX');
657 //define('THEME', 'Portland');
658 //define('THEME', 'Sidebar');
659 //define('THEME', 'SpaceWiki');
662 // Select a valid charset name to be inserted into the xml/html pages,
663 // and to reference links to the stylesheets (css). For more info see:
664 // <http://www.iana.org/assignments/character-sets>. Note that PhpWiki
665 // has been extensively tested only with the latin1 (iso-8859-1)
668 // If you change the default from iso-8859-1 PhpWiki may not work
669 // properly and will require code modifications, at the very least you
670 // will have to convert the files in pgsrc or locale/xx/pgsrc to
673 // Character sets similar to iso-8859-1 may work with little or no
674 // modification depending on your setup. The database must also
675 // support the same charset, and of course the same is true for the
676 // web browser. (Some work is in progress hopefully to allow more
677 // flexibility in this area in the future).
678 if (!defined('CHARSET')) define("CHARSET", "iso-8859-1");
680 // Select your language/locale - default language is "en" for English.
681 // Other languages available:
682 // English "en" (English - HomePage)
683 // Dutch "nl" (Nederlands - ThuisPagina)
684 // Spanish "es" (Español - PáginaPrincipal)
685 // French "fr" (Français - Accueil)
686 // German "de" (Deutsch - StartSeite)
687 // Swedish "sv" (Svenska - Framsida)
688 // Italian "it" (Italiano - PaginaPrincipale)
689 // Japanese "ja" (Japanese - ¥Û¡¼¥à¥Ú¡¼¥¸)
691 // If you set DEFAULT_LANGUAGE to the empty string, your system's
692 // default language (as determined by the applicable environment
693 // variables) will be used.
695 if (!defined('DEFAULT_LANGUAGE')) define('DEFAULT_LANGUAGE', 'en');
697 /* WIKI_PGSRC -- specifies the source for the initial page contents of
698 * the Wiki. The setting of WIKI_PGSRC only has effect when the wiki is
699 * accessed for the first time (or after clearing the database.)
700 * WIKI_PGSRC can either name a directory or a zip file. In either case
701 * WIKI_PGSRC is scanned for files -- one file per page.
703 if (!defined('WIKI_PGSRC')) define('WIKI_PGSRC', "pgsrc"); // Default (old) behavior.
704 //define('WIKI_PGSRC', 'wiki.zip'); // New style.
705 //define('WIKI_PGSRC', '../../../Logs/Hamwiki/hamwiki-20010830.zip'); // New style.
708 * DEFAULT_WIKI_PGSRC is only used when the language is *not* the
709 * default (English) and when reading from a directory: in that case
710 * some English pages are inserted into the wiki as well.
711 * DEFAULT_WIKI_PGSRC defines where the English pages reside.
713 // FIXME: is this really needed? Can't we just copy these pages into
714 // the localized pgsrc?
715 define('DEFAULT_WIKI_PGSRC', "pgsrc");
716 // These are the pages which will get loaded from DEFAULT_WIKI_PGSRC.
717 $GenericPages = array("ReleaseNotes", "SteveWainstead", "TestPage");
719 /////////////////////////////////////////////////////////////////////
724 /////////////////////////////////////////////////////////////////////
726 // allowed protocols for links - be careful not to allow "javascript:"
727 // URL of these types will be automatically linked.
728 // within a named link [name|uri] one more protocol is defined: phpwiki
729 $AllowedProtocols = "http|https|mailto|ftp|news|nntp|ssh|gopher";
731 // URLs ending with the following extension should be inlined as images
732 $InlineImages = "png|jpg|gif";
734 // Perl regexp for WikiNames ("bumpy words")
735 // (?<!..) & (?!...) used instead of '\b' because \b matches '_' as well
736 $WikiNameRegexp = "(?<![[:alnum:]])(?:[[:upper:]][[:lower:]]+){2,}(?![[:alnum:]])";
738 // Defaults to '/', but '.' was also used.
739 if (!defined('SUBPAGE_SEPARATOR')) define('SUBPAGE_SEPARATOR', '/');
741 // InterWiki linking -- wiki-style links to other wikis on the web
743 // The map will be taken from a page name InterWikiMap.
744 // If that page is not found (or is not locked), or map
745 // data can not be found in it, then the file specified
746 // by INTERWIKI_MAP_FILE (if any) will be used.
747 define('INTERWIKI_MAP_FILE', "lib/interwiki.map");
749 // Display a warning if the internal lib/interwiki.map is used, and
750 // not the public InterWikiMap page. This file is not readable from outside.
751 //define('WARN_NONPUBLIC_INTERWIKIMAP', false);
753 // Regexp used for automatic keyword extraction.
755 // Any links on a page to pages whose names match this regexp will
756 // be used keywords in the keywords meta tag. (This is an aid to
757 // classification by search engines.) The value of the match is
758 // used as the keyword.
760 // The default behavior is to match Category* and Topic* links.
761 $keywords = array("Category", "Topic");
762 $KeywordLinkRegexp = '(?<=^'. join('|^', $keywords) . ')[[:upper:]].*$';
764 // Author and Copyright Site Navigation Links
766 // These will be inserted as <link rel> tags in the html header of
767 // every page, for search engines and for browsers like Mozilla which
768 // take advantage of link rel site navigation.
770 // If you have your own copyright and contact information pages change
771 // these as appropriate.
772 if (!defined('COPYRIGHTPAGE_TITLE')) define('COPYRIGHTPAGE_TITLE',
773 "GNU General Public License");
774 if (!defined('COPYRIGHTPAGE_URL')) define('COPYRIGHTPAGE_URL',
775 'http://www.gnu.org/copyleft/gpl.html#SEC1');
776 if (!defined('AUTHORPAGE_TITLE')) define('AUTHORPAGE_TITLE',
777 "The PhpWiki Programming Team");
778 if (!defined('AUTHORPAGE_URL')) define('AUTHORPAGE_URL',
779 'http://phpwiki.sourceforge.net/phpwiki/ThePhpWikiProgrammingTeam');
782 /////////////////////////////////////////////////////////////////////
785 // URL options -- you can probably skip this section.
787 /////////////////////////////////////////////////////////////////////
788 /******************************************************************
790 * The following section contains settings which you can use to tailor
791 * the URLs which PhpWiki generates.
793 * Any of these parameters which are left undefined will be deduced
794 * automatically. You need only set them explicitly if the
795 * auto-detected values prove to be incorrect.
797 * In most cases the auto-detected values should work fine, so
798 * hopefully you don't need to mess with this section.
800 * In case of local overrides of short placeholders, which themselves
801 * include index.php, we check for most constants. See '/wiki'.
802 * We can override DATA_PATH and PHPWIKI_DIR to support multiple phpwiki
803 * versions (for development), but most likely other values like
804 * THEME, $LANG and $DbParams for a WikiFarm.
806 ******************************************************************/
809 * Canonical name and httpd port of the server on which this PhpWiki
812 //if (!defined('SERVER_NAME')) define('SERVER_NAME', 'some.host.com');
813 //define('SERVER_PORT', 80);
816 * Relative URL (from the server root) of the PhpWiki
819 //if (!defined('SCRIPT_NAME')) define('SCRIPT_NAME', '/some/where/index.php');
822 * URL of the PhpWiki install directory. (You only need to set this
823 * if you've moved index.php out of the install directory.) This can
824 * be either a relative URL (from the directory where the top-level
825 * PhpWiki script is) or an absolute one.
827 //if (!defined('DATA_PATH')) define('DATA_PATH', '/home/user/phpwiki');
830 * Path to the PhpWiki install directory. This is the local
831 * filesystem counterpart to DATA_PATH. (If you have to set
832 * DATA_PATH, your probably have to set this as well.) This can be
833 * either an absolute path, or a relative path interpreted from the
834 * directory where the top-level PhpWiki script (normally index.php)
837 //if (!defined('PHPWIKI_DIR')) define('PHPWIKI_DIR', 'C:/Apache/phpwiki');
838 //if (!defined('PHPWIKI_DIR')) define('PHPWIKI_DIR', '/home/user/public_html/phpwiki');
841 * PhpWiki will try to use short urls to pages, eg
842 * http://www.example.com/index.php/HomePage
843 * If you want to use urls like
844 * http://www.example.com/index.php?pagename=HomePage
845 * then define 'USE_PATH_INFO' as false by uncommenting the line below.
846 * NB: If you are using Apache >= 2.0.30, then you may need to to use
847 * the directive "AcceptPathInfo On" in your Apache configuration file
848 * (or in an appropriate <.htaccess> file) for the short urls to work:
849 * See http://httpd.apache.org/docs-2.0/mod/core.html#acceptpathinfo
851 * See also http://phpwiki.sourceforge.net/phpwiki/PrettyWiki for more ideas
852 * on prettifying your urls.
854 * Default: PhpWiki will try to divine whether use of PATH_INFO
855 * is supported in by your webserver/PHP configuration, and will
856 * use PATH_INFO if it thinks that is possible.
858 //if (!defined('USE_PATH_INFO')) define('USE_PATH_INFO', false);
861 * VIRTUAL_PATH is the canonical URL path under which your your wiki
862 * appears. Normally this is the same as dirname(SCRIPT_NAME), however
863 * using, e.g. apaches mod_actions (or mod_rewrite), you can make it
864 * something different.
866 * If you do this, you should set VIRTUAL_PATH here.
868 * E.g. your phpwiki might be installed at at /scripts/phpwiki/index.php,
869 * but * you've made it accessible through eg. /wiki/HomePage.
871 * One way to do this is to create a directory named 'wiki' in your
872 * server root. The directory contains only one file: an .htaccess
873 * file which reads something like:
875 * Action x-phpwiki-page /scripts/phpwiki/index.php
876 * SetHandler x-phpwiki-page
877 * DirectoryIndex /scripts/phpwiki/index.php
879 * In that case you should set VIRTUAL_PATH to '/wiki'.
881 * (VIRTUAL_PATH is only used if USE_PATH_INFO is true.)
883 //if (!defined('VIRTUAL_PATH')) define('VIRTUAL_PATH', '/SomeWiki');
885 /////////////////////////////////////////////////////////////////////
888 // Miscellaneous settings
890 /////////////////////////////////////////////////////////////////////
893 * Disable HTTP redirects.
895 * (You probably don't need to touch this.)
897 * PhpWiki uses HTTP redirects for some of it's functionality.
898 * (e.g. after saving changes, PhpWiki redirects your browser to
899 * view the page you just saved.)
901 * Some web service providers (notably free European Lycos) don't seem to
902 * allow these redirects. (On Lycos the result in an "Internal Server Error"
903 * report.) In that case you can set DISABLE_HTTP_REDIRECT to true.
904 * (In which case, PhpWiki will revert to sneakier tricks to try to
905 * redirect the browser...)
907 //if (!defined('DISABLE_HTTP_REDIRECT')) define ('DISABLE_HTTP_REDIRECT', true);
909 //if (defined('WIKI_SOAP') and WIKI_SOAP) return;
911 ////////////////////////////////////////////////////////////////
913 // Check if we were included by some other wiki version
914 // (getimg.php, en, de, wiki, ...) or not.
915 // If the server requested this index.php fire up the code by loading lib/main.php.
916 // Parallel wiki scripts can now simply include /index.php for the
917 // main configuration, extend or redefine some settings and
918 // load lib/main.php by themselves. See the file 'wiki'.
919 // This overcomes the IndexAsConfigProblem.
920 // Generally a simple
921 // define('VIRTUAL_PATH', $_SERVER['SCRIPT_NAME']);
922 // is enough in the wiki file, plus the action definition in a .htaccess file
923 ////////////////////////////////////////////////////////////////
925 // If your lib/main.php is not loaded, comment that out, and
926 // uncomment the include "lib/main.php" line below.
927 if (defined('VIRTUAL_PATH') and defined('USE_PATH_INFO')) {
928 if ($HTTP_SERVER_VARS['SCRIPT_NAME'] != VIRTUAL_PATH) {
929 include "lib/main.php";
931 elseif (defined('SCRIPT_NAME') and
932 ($HTTP_SERVER_VARS['SCRIPT_NAME'] != SCRIPT_NAME)) {
933 include "lib/main.php";
936 if (defined('SCRIPT_NAME') and
937 ($HTTP_SERVER_VARS['SCRIPT_NAME'] == SCRIPT_NAME)) {
938 include "lib/main.php";
939 } elseif (strstr($HTTP_SERVER_VARS['PHP_SELF'],'index.php')) {
940 include "lib/main.php";
943 //include "lib/main.php";
945 // $Log: not supported by cvs2svn $
946 // Revision 1.134 2004/04/10 02:55:48 rurban
947 // fixed old WikiUser
949 // Revision 1.133 2004/04/08 01:22:53 rurban
950 // fixed PageChange Notification
952 // Revision 1.132 2004/04/01 15:57:10 rurban
953 // simplified Sidebar theme: table, not absolute css positioning
954 // added the new box methods.
955 // remaining problems: large left margin, how to override _autosplitWikiWords in Template only
957 // Revision 1.131 2004/03/14 16:24:35 rurban
958 // authenti(fi)cation spelling
960 // Revision 1.130 2004/03/09 17:16:43 rurban
961 // fixed $LDAP_SET_OPTION
963 // Revision 1.129 2004/02/29 04:10:55 rurban
964 // new POP3 auth (thanks to BiloBilo: pentothal at despammed dot com)
965 // fixed syntax error in index.php
967 // Revision 1.128 2004/02/29 02:06:05 rurban
968 // And this is the SOAP server. Just a view methods for now. (page content)
969 // I would like to see common-wiki soap wdsl.
971 // "SOAP is a bloated, over engineered mess of a perfectly trivial concept. Sigh."
972 // -- http://www.wlug.org.nz/SOAP
974 // Revision 1.127 2004/02/28 21:18:29 rurban
975 // new SQL auth_create, don't ever use REPLACE sql calls!
976 // moved HttpAuth to the end of the chain
977 // PrettyWiki enabled again
979 // Revision 1.126 2004/02/27 16:27:48 rurban
980 // REPLACE is a dirty hack, and erases passwd btw.
982 // Revision 1.125 2004/02/24 02:51:57 rurban
983 // release 1.3.8 ready
985 // Revision 1.124 2004/02/16 00:20:30 rurban
986 // new Japanses language
988 // Revision 1.123 2004/02/09 03:58:07 rurban
989 // for now default DB_SESSION to false
991 // * not existing perms will now query the parent, and not
992 // return the default perm
993 // * added pagePermissions func which returns the object per page
994 // * added getAccessDescription
996 // * added global ->prepare (not yet used) with smart user/pref/member table prefixing.
997 // * force init of authdbh in the 2 db classes
999 // * fixed session handling (not triple auth request anymore)
1000 // * don't store cookie prefs with sessions
1001 // stdlib: global obj2hash helper from _AuthInfo, also needed for PagePerm
1003 // Revision 1.122 2004/02/07 14:20:18 rurban
1004 // consistent mysql schema with index.php (userid)
1006 // Revision 1.121 2004/02/07 10:41:25 rurban
1007 // fixed auth from session (still double code but works)
1009 // fixed DbPassUser upgrade and policy=old
1012 // Revision 1.120 2004/02/03 09:45:39 rurban
1013 // LDAP cleanup, start of new Pref classes
1015 // Revision 1.119 2004/02/01 09:14:10 rurban
1016 // Started with Group_Ldap (not yet ready)
1017 // added new _AuthInfo plugin to help in auth problems (warning: may display passwords)
1018 // fixed some configurator vars
1019 // renamed LDAP_AUTH_SEARCH to LDAP_BASE_DN
1020 // changed PHPWIKI_VERSION from 1.3.8a to 1.3.8pre
1021 // USE_DB_SESSION defaults to true on SQL
1022 // changed GROUP_METHOD definition to string, not constants
1023 // changed sample user DBAuthParams from UPDATE to REPLACE to be able to
1024 // create users. (Not to be used with external databases generally, but
1025 // with the default internal user table)
1027 // fixed the IndexAsConfigProblem logic. this was flawed:
1028 // scripts which are the same virtual path defined their own lib/main call
1029 // (hmm, have to test this better, phpwiki.sf.net/demo works again)
1031 // Revision 1.118 2004/01/28 14:34:13 rurban
1032 // session table takes the common prefix
1033 // + various minor stuff
1034 // reallow password changing
1036 // Revision 1.117 2004/01/27 23:25:50 rurban
1037 // added new tables to mysql schema
1038 // fixed default DBAUthParam samples to match these
1039 // added group constants (look terrible, I'd prefer strings instead of constants)
1041 // Revision 1.116 2004/01/25 04:21:02 rurban
1042 // WikiUserNew support (temp. ENABLE_USER_NEW constant)
1044 // Revision 1.115 2003/12/22 04:58:11 carstenklapp
1045 // Incremented release version.
1047 // Revision 1.114 2003/12/05 16:00:42 carstenklapp
1048 // ACK! gettext is not available at this point in index.php.
1050 // Revision 1.113 2003/12/05 15:51:37 carstenklapp
1051 // Added note that use of the configurator is depreciated.
1053 // Enable localization/gettextification of $KeywordLinkRegexp. (Also, now
1054 // users not familiar with regex can more easily just edit the $keywords
1057 // Added four new constants to define author and copyright link rel~s
1058 // used in html head. This makes it easier to run multiple wikis off of
1061 // Eliminated RECENT_CHANGES constant for RSS auto discovery because it's
1062 // another step to watch out for when running a non-english wiki. Now
1063 // simply defined as _("RecentChanges") in head.tmpl itself. Non-standard
1064 // wikis where the RecentChanges page has been named to something else
1065 // will have to modify this in head.tmpl (along with all other places the
1066 // word RecentChanges appears in the code, something that already would
1067 // have had to be done on such a wiki anyway).
1069 // Added a little more info and instructions to flesh out:
1070 // DEBUG, WIKI_NAME, ADMIN_USER, $DisabledActions, $DBParams, CHARSET.
1072 // A few typos and spelling mistakes corrected, and some text rewrapped.
1074 // Revision 1.112 2003/11/17 15:49:21 carstenklapp
1075 // Updated version number to 1.3.7pre (beyond current release
1076 // 1.3.6). Disabled DEBUG output by default (hide DebugInfo, XHTML &
1077 // CSS validator buttons). Note the DebugInfo button remains visible
1078 // for the Admin, and can be accessed by anyone else by adding
1079 // "?action=DebugInfo" to the URL for the occasional use.
1081 // Revision 1.111 2003/03/18 21:40:04 dairiki
1082 // Copy Lawrence's memo on USE_PATH_INFO/AcceptPathInfo to configurator.php
1085 // Plus slight clarification of default (auto-detect) behavior.
1087 // Revision 1.110 2003/03/18 20:51:10 lakka
1088 // Revised comments on use of USE_PATH_INFO with Apache 2
1090 // Revision 1.109 2003/03/17 21:24:50 dairiki
1091 // Fix security bugs in the RawHtml plugin.
1093 // Change the default configuration to allow use of plugin, since
1094 // I believe the plugin is now safe for general use. (Raw HTML will only
1095 // work on locked pages.)
1097 // Revision 1.108 2003/03/07 22:47:01 dairiki
1098 // A few more if(!defined(...))'s
1100 // Revision 1.107 2003/03/07 20:51:54 dairiki
1101 // New feature: Automatic extraction of keywords (for the meta keywords tag)
1102 // from Category* and Topic* links on each page.
1104 // Revision 1.106 2003/03/07 02:48:23 dairiki
1105 // Add option to prevent HTTP redirect.
1107 // Revision 1.105 2003/03/04 02:08:08 dairiki
1108 // Fix and document the WIKIDB_NOCACHE_MARKUP config define.
1110 // Revision 1.104 2003/02/26 02:55:52 dairiki
1111 // New config settings in index.php to control cache control strictness.
1113 // Revision 1.103 2003/02/22 19:43:50 dairiki
1114 // Fix comment regarding connecting to SQL server over a unix socket.
1116 // Revision 1.102 2003/02/22 18:53:38 dairiki
1117 // Renamed method Request::compress_output to Request::buffer_output.
1119 // Added config option to disable compression.
1121 // Revision 1.101 2003/02/21 19:29:30 dairiki
1122 // Update PHPWIKI_VERSION to 1.3.5pre.
1124 // Revision 1.100 2003/01/04 03:36:58 wainstead
1125 // Added 'file' as a database type alongside 'dbm'; added cvs log tag
1128 // (c-file-style: "gnu")
1132 // c-basic-offset: 4
1133 // c-hanging-comment-ender-p: nil
1134 // indent-tabs-mode: nil