4 // IMPORTANT NOTE: Use of the ***configurator.php*** to generate an
5 // index.php is depreciated, because it is out of date and a new
6 // configuration system is in the works (see the config directory, not
7 // finished yet though). DO compare or diff the configurator's output
8 // against this file if you feel you must use it to generate an
12 Copyright 1999,2000,2001,2002,2003,2004 $ThePhpWikiProgrammingTeam
14 "Steve Wainstead", "Clifford A. Adams", "Lawrence Akka",
15 "Scott R. Anderson", "Jon Åslund", "Neil Brown", "Jeff Dairiki",
16 "Stéphane Gourichon", "Jan Hidders", "Arno Hollosi", "John Jorgensen",
17 "Antti Kaihola", "Jeremie Kass", "Carsten Klapp", "Marco Milanesi",
18 "Grant Morgan", "Jan Nieuwenhuizen", "Aredridel Niothke",
19 "Pablo Roca Rozas", "Sandino Araico Sánchez", "Joel Uckelman",
20 "Reini Urban", "Tim Voght", "Jochen Kalmbach");
22 This file is part of PhpWiki.
24 PhpWiki is free software; you can redistribute it and/or modify
25 it under the terms of the GNU General Public License as published by
26 the Free Software Foundation; either version 2 of the License, or
27 (at your option) any later version.
29 PhpWiki is distributed in the hope that it will be useful,
30 but WITHOUT ANY WARRANTY; without even the implied warranty of
31 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
32 GNU General Public License for more details.
34 You should have received a copy of the GNU General Public License
35 along with PhpWiki; if not, write to the Free Software
36 Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA
40 /////////////////////////////////////////////////////////////////////
42 This is the starting file for PhpWiki. All this file does is set
43 configuration options, and at the end of the file it includes() the
44 file lib/main.php, where the real action begins.
46 This file is divided into seven parts: Parts Zero, One, Two, Three,
47 Four, Five and Six. Each one has different configuration settings you can
48 change; in all cases the default should work on your system,
49 however, we recommend you tailor things to your particular setting.
52 /////////////////////////////////////////////////////////////////////
53 // Part Zero: If PHP needs help in finding where you installed the
54 // rest of the PhpWiki code, you can set the include_path here.
56 // Define PHP's include path so that it can find the PHP source code
59 // You shouldn't need to do this unless you've moved index.php out
60 // of the PhpWiki install directory.
62 // Note that on Windows-based servers, you should use ; rather than :
63 // as the path separator.
64 //ini_set('include_path', '.:/usr/local/httpd/phpwiki');
66 // Set DEBUG to 1 to view the XHTML and CSS validator icons, page
67 // processing timer, and possibly other debugging messages at the
68 // bottom of each page.
69 if (!defined('DEBUG')) define ('DEBUG', 0);
70 define('ENABLE_USER_NEW',true); // this will disappear with 1.4.0
71 define('JS_SEARCHREPLACE',true); // experimental edit feature
73 /////////////////////////////////////////////////////////////////////
74 // Part Null: Don't touch this!
76 define ('PHPWIKI_VERSION', '1.3.9');
77 require "lib/prepend.php";
78 rcs_id('$Id: index.php,v 1.138 2004-04-12 12:27:07 rurban Exp $');
80 /////////////////////////////////////////////////////////////////////
83 // Authentication and security settings. See Part Three for more.
85 /////////////////////////////////////////////////////////////////////
87 // The name of your wiki.
89 // This is used to generate a keywords meta tag in the HTML templates,
90 // in bookmark titles for any bookmarks made to pages in your wiki,
91 // and during RSS generation for the <title> of the RSS channel.
93 // To use your own logo and signature files, name them PhpWikiLogo.png
94 // and PhpWikiSignature.png and put them into themes/default/images
95 // (substituting "PhpWiki" in the filename with the name you define
98 // It is recommended this be a relatively short WikiWord like the
99 // InterWiki monikers found in the InterWikiMap. (For examples, see
100 // lib/interwiki.map).
101 if (!defined('WIKI_NAME')) define('WIKI_NAME', 'PhpWiki');
103 // Visitor Hostname Lookup
105 // If set, reverse dns lookups will be performed to attempt to convert
106 // the user's IP number into a host name, in the case where the http
107 // server does not do this.
108 if (!defined('ENABLE_REVERSE_DNS')) define('ENABLE_REVERSE_DNS', true);
110 // Username and password of administrator.
112 // Set these to your preferences. For heaven's sake pick a good
113 // password and use the passencrypt.php tool. See:
114 // http://wolfram.org/writing/howto/password.html
116 // Log into the wiki with the admin user and password to lock, unlock,
117 // or remove pages and to perform other PhpWikiAdministration
118 // functions. On all other occasions you should simply log in with
119 // your regular WikiName.
120 if (!defined('ADMIN_USER')) define('ADMIN_USER', "");
121 if (!defined('ADMIN_PASSWD')) define('ADMIN_PASSWD', "");
122 // It is recommended to use the passencrypt.php utility to encode the
123 // admin password, in the unlikely event someone gains ftp or ssh
124 // access to the server and directory containing phpwiki. Once you
125 // have pasted the encrypted password into ADMIN_PASSWD, uncomment
127 //if (!defined('ENCRYPTED_PASSWD')) define('ENCRYPTED_PASSWD', true);
129 // Private ZIP Dumps of All Wiki Pages
131 // If true, only the admin user can make zip dumps. Otherwise anyone
132 // may download all wiki pages as a single zip archive.
133 if (!defined('ZIPDUMP_AUTH')) define('ZIPDUMP_AUTH', false);
135 // Define to false to disable the RawHtml plugin.
136 //if (!defined('ENABLE_RAW_HTML')) define('ENABLE_RAW_HTML', false);
138 // If you define this to true, (MIME-type) page-dumps (either zip dumps,
139 // or "dumps to directory" will be encoded using the quoted-printable
140 // encoding. If you're actually thinking of mailing the raw page dumps,
141 // then this might be useful, since (among other things,) it ensures
142 // that all lines in the message body are under 80 characters in length.
144 // Also, setting this will cause a few additional mail headers
145 // to be generated, so that the resulting dumps are valid
146 // RFC 2822 e-mail messages.
148 // Probably you can just leave this set to false, in which case you get
149 // raw ('binary' content-encoding) page dumps.
150 if (!defined('STRICT_MAILABLE_PAGEDUMPS')) define('STRICT_MAILABLE_PAGEDUMPS', false);
152 // Here you can change the filename suffix used for XHTML page dumps.
153 // If you don't want any suffix just comment this out.
154 $HTML_DUMP_SUFFIX = '.html';
156 // The maximum file upload size.
157 if (!defined('MAX_UPLOAD_SIZE')) define('MAX_UPLOAD_SIZE', 16 * 1024 * 1024);
159 // If the last edit is older than MINOR_EDIT_TIMEOUT seconds, the
160 // default state for the "minor edit" checkbox on the edit page form
162 if (!defined('MINOR_EDIT_TIMEOUT')) define("MINOR_EDIT_TIMEOUT", 7 * 24 * 3600);
164 // Actions listed in this array will not be allowed. The complete list
165 // of actions can be found in lib/main.php within the function
166 // getActionDescription.
167 //$DisabledActions = array('dumpserial', 'loadfile');
169 // PhpWiki can generate an access_log (in "NCSA combined log" format)
170 // for you. If you want one, define this to the name of the log
171 // file. The server must have write access to the directory specified.
172 //define('ACCESS_LOG', '/var/tmp/wiki_access_log');
175 // By default PhpWiki will try to have PHP compress its output
176 // before sending it to the browser (if you have a recent enough
177 // version of PHP and the browser supports it.)
178 // Define COMPRESS_OUTPUT to false to prevent output compression.
179 // Define COMPRESS_OUTPUT to true to force output compression,
180 // even if we think your version of PHP does this in a buggy
182 // Leave it undefined to leave the choice up to PhpWiki.
183 //define('COMPRESS_OUTPUT', false);
186 // HTTP CACHE_CONTROL
188 // This controls how PhpWiki sets the HTTP cache control
189 // headers (Expires: and Cache-Control:)
193 // NONE: This is roughly the old (pre 1.3.4) behavior. PhpWiki will
194 // instruct proxies and browsers never to cache PhpWiki output.
196 // STRICT: Cached pages will be invalidated whenever the database global
197 // timestamp changes. This should behave just like NONE (modulo
198 // bugs in PhpWiki and your proxies and browsers), except that
199 // things will be slightly more efficient.
201 // LOOSE: Cached pages will be invalidated whenever they are edited,
202 // or, if the pages include plugins, when the plugin output could
203 // concievably have changed.
205 // Behavior should be much like STRICT, except that sometimes
206 // wikilinks will show up as undefined (with the question mark)
207 // when in fact they refer to (recently) created pages.
208 // (Hitting your browsers reload or perhaps shift-reload button
209 // should fix the problem.)
211 // ALLOW_STALE: Proxies and browsers will be allowed to used stale pages.
212 // (The timeout for stale pages is controlled by CACHE_CONTROL_MAX_AGE.)
214 // This setting will result in quirky behavior. When you edit a
215 // page your changes may not show up until you shift-reload the
218 // This setting is generally not advisable, however it may be useful
219 // in certain cases (e.g. if your wiki gets lots of page views,
220 // and few edits by knowledgable people who won't freak over the quirks.)
222 // The default is currently LOOSE.
224 if (!defined('CACHE_CONTROL')) define('CACHE_CONTROL', 'LOOSE');
226 // Maximum page staleness, in seconds.
228 // This only has effect if CACHE_CONTROL is set to ALLOW_STALE.
229 if (!defined('CACHE_CONTROL_MAX_AGE')) define('CACHE_CONTROL_MAX_AGE', 600);
234 // PhpWiki normally caches a preparsed version (i.e. mostly
235 // converted to HTML) of the most recent version of each page.
236 // (Parsing the wiki-markup takes a fair amount of CPU.)
238 // Define WIKIDB_NOCACHE_MARKUP to true to disable the
239 // caching of marked-up page content.
241 // Note that you can also disable markup caching on a per-page
242 // temporary basis by addinging a query arg of '?nocache=1'
243 // to the URL to the page. (Use '?nocache=purge' to completely
244 // discard the cached version of the page.)
246 // You can also purge the cached markup globally by using the
247 // "Purge Markup Cache" button on the PhpWikiAdministration page.
248 //if (!defined('WIKIDB_NOCACHE_MARKUP')) define ('WIKIDB_NOCACHE_MARKUP', true);
250 /////////////////////////////////////////////////////////////////////
253 // Database Selection
255 /////////////////////////////////////////////////////////////////////
258 // This array holds the parameters which select the database to use.
260 // Not all of these parameters are used by any particular DB backend.
263 // Select the database type:
265 // Choose ADODB or SQL to use an SQL database with ADODB or PEAR
266 // respectively (both ADODB and PEAR libraries are already included
268 // Choose dba to use one of the standard UNIX dbm libraries.
269 // Choose file to use a flat file database.
270 //'dbtype' => 'ADODB',
273 //'dbtype' => 'file',
276 // For SQL based backends, specify the database as a DSN
277 // The most general form of a DSN looks like:
279 // phptype(dbsyntax)://username:password@protocol+hostspec/database
281 // For a MySQL database, the following should work:
283 // mysql://user:password@host/databasename
285 // To connect over a unix socket, use something like
287 // mysql://user:password@unix(/path/to/socket)/databasename
289 //'dsn' => 'mysql://guest@unix(/var/lib/mysql/mysql.sock)/test',
290 //'dsn' => 'mysql://guest:pass@localhost/test',
291 //'dsn' => 'pgsql://localhost/test',
293 // The common table prefix (see below) is added if defined
294 // Undefine this if you use dbtype = "cvs" or "file"
295 'db_session_table' => 'session',
297 // Used by all DB types:
299 // prefix for filenames or table names
301 * currently you MUST EDIT THE SQL file too (in the schemas/
302 * directory because we aren't doing on the fly sql generation
303 * during the installation.
305 //'prefix' => 'phpwiki_',
307 // Used by either 'dba' or 'file' and must be writable by the web
308 // server If you leave this as '/tmp' you will probably lose all
309 // your files eventually
310 'directory' => "/tmp",
312 // choose the type of DB database file to use; most GNU systems have gdbm
313 'dba_handler' => 'gdbm', // Either of 'gdbm' or 'db2' work great for me.
314 //'dba_handler' => 'db2',
315 //'dba_handler' => 'db3', // Works fine on Windows, but not on every linux.
316 //'dba_handler' => 'dbm', // On sf.net redhat there's dbm and gdbm.
317 // dbm suffers from limits on size of data items?
323 /////////////////////////////////////////////////////////////////////
324 // PHP Session settings:
327 // Tested for dbtype: 'SQL', 'ADODB' and 'dba'. See schemas/mysql.sql,
328 // schemas/sqlite.sql or schemas/psql.sql.
329 // $DBParams['db_session_table'] must be defined.
330 if (!defined('USE_DB_SESSION') and
331 !empty($DBParams['db_session_table']))
332 define('USE_DB_SESSION',true);
334 // If your php was compiled with --enable-trans-sid it tries to
335 // add a PHPSESSID query argument to all URL strings when cookie
336 // support isn't detected in the client browser. For reasons
337 // which aren't entirely clear (PHP bug) this screws up the URLs
338 // generated by PhpWiki. Therefore, transparent session ids
339 // should be disabled. This next line does that.
341 // (At the present time, you will not be able to log-in to PhpWiki,
342 // unless your browser supports cookies.)
343 @ini_set('session.use_trans_sid', 0);
345 // The login code now uses PHP's session support. Usually, the default
346 // configuration of PHP is to store the session state information in
347 // /tmp. That probably will work fine, but fails e.g. on clustered
348 // servers where each server has their own distinct /tmp (this is the
349 // case on SourceForge's project web server.) You can specify an
350 // alternate directory in which to store state information like so
351 // (whatever user your httpd runs as must have read/write permission
352 // in this directory):
354 //ini_set('session.save_path', 'some_other_directory');
356 /////////////////////////////////////////////////////////////////////
358 // The next section controls how many old revisions of each page are
359 // kept in the database.
361 // There are two basic classes of revisions: major and minor. Which
362 // class a revision belongs in is determined by whether the author
363 // checked the "this is a minor revision" checkbox when they saved the
366 // There is, additionally, a third class of revisions: author
367 // revisions. The most recent non-mergable revision from each distinct
368 // author is and author revision.
370 // The expiry parameters for each of those three classes of revisions
371 // can be adjusted seperately. For each class there are five
372 // parameters (usually, only two or three of the five are actually
373 // set) which control how long those revisions are kept in the
376 // max_keep: If set, this specifies an absolute maximum for the
377 // number of archived revisions of that class. This is
378 // meant to be used as a safety cap when a non-zero
379 // min_age is specified. It should be set relatively high,
380 // and it's purpose is to prevent malicious or accidental
381 // database overflow due to someone causing an
382 // unreasonable number of edits in a short period of time.
384 // min_age: Revisions younger than this (based upon the supplanted
385 // date) will be kept unless max_keep is exceeded. The age
386 // should be specified in days. It should be a
387 // non-negative, real number,
389 // min_keep: At least this many revisions will be kept.
391 // keep: No more than this many revisions will be kept.
393 // max_age: No revision older than this age will be kept.
395 // Supplanted date: Revisions are timestamped at the instant that they
396 // cease being the current revision. Revision age is computed using
397 // this timestamp, not the edit time of the page.
399 // Merging: When a minor revision is deleted, if the preceding
400 // revision is by the same author, the minor revision is merged with
401 // the preceding revision before it is deleted. Essentially: this
402 // replaces the content (and supplanted timestamp) of the previous
403 // revision with the content after the merged minor edit, the rest of
404 // the page metadata for the preceding version (summary, mtime, ...)
407 // Keep up to 8 major edits, but keep them no longer than a month.
408 $ExpireParams['major'] = array('max_age' => 32,
410 // Keep up to 4 minor edits, but keep them no longer than a week.
411 $ExpireParams['minor'] = array('max_age' => 7,
413 // Keep the latest contributions of the last 8 authors up to a year.
414 // Additionally, (in the case of a particularly active page) try to
415 // keep the latest contributions of all authors in the last week (even
416 // if there are more than eight of them,) but in no case keep more
417 // than twenty unique author revisions.
418 $ExpireParams['author'] = array('max_age' => 365,
423 /////////////////////////////////////////////////////////////////////
425 // Part Three: (optional)
426 // User Authentication
428 /////////////////////////////////////////////////////////////////////
430 // New user authentication configuration:
431 // We support three basic authentication methods and a stacked array
432 // of advanced auth methods to get and check the passwords:
434 // ALLOW_ANON_USER default true
435 // ALLOW_ANON_EDIT default true
436 // ALLOW_BOGO_LOGIN default true
437 // ALLOW_USER_PASSWORDS default true
439 // allow anon users to view pages! (not edit)
440 if (!defined('ALLOW_ANON_USER')) define('ALLOW_ANON_USER', true);
441 // allow anon users to edit pages
442 if (!defined('ALLOW_ANON_EDIT')) define('ALLOW_ANON_EDIT', true);
444 // This was replaced by ALLOW_ANON_EDIT
445 if (!defined('REQUIRE_SIGNIN_BEFORE_EDIT')) define('REQUIRE_SIGNIN_BEFORE_EDIT', ! ALLOW_ANON_EDIT);
447 // If ALLOW_BOGO_LOGIN is true, users are allowed to login (with
448 // any/no password) using any userid which:
449 // 1) is not the ADMIN_USER, and
450 // 2) is a valid WikiWord (matches $WikiNameRegexp.)
451 // If true, users may be created by themselves. Otherwise we need seperate auth.
452 // If such a user will create a so called HomePage with his userid, he will
453 // be able to store his preferences and password there.
454 if (!defined('ALLOW_BOGO_LOGIN')) define('ALLOW_BOGO_LOGIN', true);
456 // True User Authentication:
457 // To require user passwords:
458 // ALLOW_ANON_USER = false
459 // ALLOW_ANON_EDIT = false
460 // ALLOW_BOGO_LOGIN = false,
461 // ALLOW_USER_PASSWORDS = true.
462 // Otherwise any anon or bogo user might login without any or a wrong password.
463 if (!defined('ALLOW_USER_PASSWORDS')) define('ALLOW_USER_PASSWORDS', true);
465 // Below we define which methods exists and in which order
467 // BogoLogin: WikiWord enough, but with PASSWORD_LENGTH_MINIMUM
468 // PersonalPage: Store passwords in the users homepage metadata (simple)
469 // Db: Use $DBAuthParams[] (see below) with the PearDB or
471 // LDAP: Authenticate against LDAP_AUTH_HOST with LDAP_BASE_DN
472 // IMAP: Authenticate against IMAP_AUTH_HOST (email account)
473 // POP3: Authenticate against POP3_AUTH_HOST (email account)
474 // File: Store username:crypted-passwords in .htaccess like files.
475 // Use Apache's htpasswd to manage this file.
476 // HttpAuth: Use the protection by the webserver (.htaccess) or
479 if (defined('ALLOW_USER_PASSWORDS')) {
481 // use the following order of authentication methods:
482 if (!isset($USER_AUTH_ORDER))
488 // "LDAP", // define LDAP_AUTH_HOST and LDAP_BASE_DN
489 // "IMAP", // define IMAP_AUTH_HOST
490 // "POP3", // define POP3_AUTH_HOST
491 // "File", // define AUTH_USER_FILE and opt. AUTH_USER_FILE_STORABLE
495 if (!defined('PASSWORD_LENGTH_MINIMUM')) define('PASSWORD_LENGTH_MINIMUM', 2);
497 if (!defined('USER_AUTH_POLICY'))
498 //We support the following auth policies:
499 // first-only: use only the first method in USER_AUTH_ORDER
500 // old: ignore USER_AUTH_ORDER and try to use all available
501 // methods as in the previous PhpWiki releases (slow)
502 // strict: check if the user exists for all methods:
503 // on the first existing user, try the password.
504 // dont try the other methods on failure then
505 // stacked: check the given user - password combination for all methods
506 // and return true on the first success.
508 //define('USER_AUTH_POLICY','first-only');
509 define('USER_AUTH_POLICY','old');
510 //define('USER_AUTH_POLICY','strict');
511 //define('USER_AUTH_POLICY','stacked');
515 if (!defined('LDAP_AUTH_HOST')) define('LDAP_AUTH_HOST', "ldap://localhost:389");
516 // or "ldaps://server:636"
517 // The organizational or domain BASE DN: e.g. "dc=mydomain,dc=com" to restrict the search
518 // Note: ou=Users and ou=Groups are used for GroupLdap Membership
519 if (!defined('LDAP_BASE_DN')) define('LDAP_BASE_DN', "ou=Users,o=Development,dc=mycompany.com");
520 // LDAP Auth Optional:
521 // Some LDAP servers disallow anonymous binds, and need some more options,
522 // such as for the Windows Active Directory Server:
523 // $LDAP_SET_OPTION = array('LDAP_OPT_PROTOCOL_VERSION' => 3,
524 // 'LDAP_OPT_REFERRALS' => 0);
525 // define(LDAP_AUTH_USER, "CN=ldapuser,CN=Users,DC=uai,DC=int");
526 // define(LDAP_AUTH_PASSWORD, '');
527 // define(LDAP_SEARCH_FIELD, 'sAMAccountName'); // might be different from uid,
528 // here's its a Windows/Samba account
531 // check userid/passwords from a imap server, defaults to localhost
532 if (!defined('IMAP_AUTH_HOST')) define('IMAP_AUTH_HOST', 'localhost:143/imap/notls');
533 // Some IMAP_AUTH_HOST samples:
534 // "localhost", "localhost:143/imap/notls",
535 // "localhost:993/imap/ssl/novalidate-cert" (SuSE refuses non-SSL conections)
538 //if (!defined('POP3_AUTH_HOST')) define('POP3_AUTH_HOST', 'localhost');
539 //if (!defined('POP3_AUTH_PORT')) define('POP3_AUTH_PORT', '110');
542 //if (!defined('AUTH_USER_FILE')) define('AUTH_USER_FILE', '/etc/shadow'); // or '/etc/httpd/.htpasswd'
543 // set this to true if the user may change his password into this file.
544 //if (!defined('AUTH_USER_FILE_STORABLE')) define('AUTH_USER_FILE_STORABLE',false);
547 //if (!defined('GROUP_METHOD')) define('GROUP_METHOD', "NONE");
548 if (!defined('GROUP_METHOD')) define('GROUP_METHOD', "WIKIPAGE");
549 //if (!defined('GROUP_METHOD')) define('GROUP_METHOD', "DB");
550 //if (!defined('GROUP_METHOD')) define('GROUP_METHOD', "FILE");
551 //if (!defined('GROUP_METHOD')) define('GROUP_METHOD', "LDAP");
552 //if (!defined('AUTH_GROUP_FILE')) define('AUTH_GROUP_FILE', '/etc/groups'); // or '/etc/httpd/.htgroup'
554 // Seperate DB User Authentication.
555 // Can be external, like radius, phpnuke, courier authmysql,
556 // apache auth_mysql or something else.
557 // The default is to store the data as metadata in the users PersonalPage.
558 // The most likely dsn option is the same dsn as the wikipages.
560 // Note: Order of variables important!
561 $DBAuthParams = array (
562 // if not defined use $DBParams['dsn'] i.e. the phpwiki database
563 //'auth_dsn' => 'mysql://localhost/phpwiki',
566 // plaintext passwords:
567 // 'auth_check' => 'SELECT IF(passwd="$password",1,0) as ok FROM user WHERE userid="$userid"',
568 // database (md5) passwords (more secure):
569 'auth_check' => 'SELECT IF(passwd=PASSWORD("$password"),1,0) as ok FROM user WHERE userid="$userid"',
571 //'auth_check' => 'SELECT password as password FROM user WHERE userid="$userid"',
572 // this is only needed with auth_crypt_method plain:
573 'auth_user_exists' => 'SELECT userid FROM user WHERE userid="$userid"',
575 //'auth_crypt_method' => 'crypt', // 'crypt' (unix)
576 'auth_crypt_method' => 'plain', // plain or secure mysql PASSWORD()
578 // If 'auth_update' is not defined but 'auth_check' is defined, the user cannot
579 // change his password.
580 // $password is processed by the 'auth_crypt_method'
581 //'auth_update' => 'UPDATE user SET passwd="$password" WHERE userid="$userid"',
582 // for mysql md5 use 'auth_crypt_method' => 'plain'
583 'auth_update' => 'UPDATE user SET passwd=PASSWORD("$password") WHERE userid="$userid"',
585 // Let a user create himself. Generally in external databases not wanted.
587 //'auth_create' => 'INSERT INTO user SET passwd=PASSWORD("$password"),userid="$userid"',
589 // USER => PREFERENCES
590 // This can be optionally defined in the phpwiki db.
591 // The default is to store it the users homepage.
592 // If you choose the user table, only registered user get their prefs from the DB,
593 // self-created users not. Better use the special pref table.
594 //'pref_select' => 'SELECT prefs FROM user WHERE userid="$userid"',
595 'pref_select' => 'SELECT prefs FROM pref WHERE userid="$userid"',
596 //Don't use replace with user or all other fields here get erased! (passwords e.g.)
597 //'pref_update' => 'UPDATE user SET prefs="$pref_blob" WHERE userid="$userid"',
598 // The special prefs table is safe to erase. All users can store their prefs here.
599 'pref_update' => 'REPLACE INTO pref SET prefs="$pref_blob",userid="$userid"',
602 // DB methods for lib/WikiGroup.php, see also AUTH_GROUP_FILE above.
603 // You can define 1:n or n:m user<=>group relations, as you wish.
604 // Sample configurations
605 // only one group per user (1:n):
606 //'is_member' => 'SELECT user FROM user WHERE user="$userid" AND group="$groupname"',
607 //'group_members' => 'SELECT user FROM user WHERE group="$groupname"',
608 //'user_groups' => 'SELECT group FROM user WHERE user="$userid"',
609 // or multiple groups per user (n:m):
610 'is_member' => 'SELECT userid FROM member WHERE userid="$userid" AND groupname="$groupname"',
611 'group_members' => 'SELECT DISTINCT userid FROM member WHERE groupname="$groupname"',
612 'user_groups' => 'SELECT groupname FROM member WHERE userid="$userid"',
617 // Old settings, only needed for ENABLE_USER_NEW = false
619 // The wiki can be protected by HTTP Auth. Use the username and password
620 // from there, but this is not sufficient. Try the other methods also.
621 if (!defined('ALLOW_HTTP_AUTH_LOGIN')) define('ALLOW_HTTP_AUTH_LOGIN', false);
622 // If ALLOW_USER_LOGIN is true, any defined internal and external
623 // authentication method is tried. If not, we don't care about
624 // passwords, but listen to the next two constants. Note that external
625 // authentication is not supported at this time, you will likely have
626 // to patch code yourself to get PhpWiki to recognise userids and
627 // passwords from an external source.
628 if (!defined('ALLOW_USER_LOGIN')) define('ALLOW_USER_LOGIN', false);
629 // also only if ENABLE_USER_NEW = false:
630 //if (!defined('ALLOW_LDAP_LOGIN')) define('ALLOW_LDAP_LOGIN', true and function_exists('ldap_connect'));
631 //if (!defined('ALLOW_IMAP_LOGIN')) define('ALLOW_IMAP_LOGIN', true and function_exists('imap_open'));
633 // A interim page which gets displayed on every edit attempt
634 //if (!defined('EDITING_POLICY')) define('EDITING_POLICY', "EditingPolicy");
637 /////////////////////////////////////////////////////////////////////
640 // Page appearance and layout
642 /////////////////////////////////////////////////////////////////////
646 * Most of the page appearance is controlled by files in the theme
649 * There are a number of pre-defined themes shipped with PhpWiki.
650 * Or you may create your own (e.g. by copying and then modifying one of
655 if (!defined('THEME')) {
656 define('THEME', 'default');
657 //define('THEME', 'MacOSX');
658 //define('THEME', 'smaller');
659 //define('THEME', 'Wordpress');
660 //define('THEME', 'Portland');
661 //define('THEME', 'Hawaiian');
662 //define('THEME', 'Sidebar');
663 //define('THEME', 'SpaceWiki');
664 //define('THEME', 'wikilens');
667 // Select a valid charset name to be inserted into the xml/html pages,
668 // and to reference links to the stylesheets (css). For more info see:
669 // <http://www.iana.org/assignments/character-sets>. Note that PhpWiki
670 // has been extensively tested only with the latin1 (iso-8859-1)
673 // If you change the default from iso-8859-1 PhpWiki may not work
674 // properly and will require code modifications, at the very least you
675 // will have to convert the files in pgsrc or locale/xx/pgsrc to
678 // Character sets similar to iso-8859-1 may work with little or no
679 // modification depending on your setup. The database must also
680 // support the same charset, and of course the same is true for the
681 // web browser. (Some work is in progress hopefully to allow more
682 // flexibility in this area in the future).
683 // Note: For $GLOBALS['LANG']="ja" CHARSET "utf-8" must be defined.
684 if (!defined('CHARSET')) define("CHARSET", "iso-8859-1");
686 // Select your language/locale - default language is "en" for English.
687 // Other languages available:
688 // English "en" (English - HomePage)
689 // Dutch "nl" (Nederlands - ThuisPagina)
690 // Spanish "es" (Español - PáginaPrincipal)
691 // French "fr" (Français - Accueil)
692 // German "de" (Deutsch - StartSeite)
693 // Swedish "sv" (Svenska - Framsida)
694 // Italian "it" (Italiano - PaginaPrincipale)
695 // Japanese "ja" (Japanese - ¥Û¡¼¥à¥Ú¡¼¥¸)
697 // If you set DEFAULT_LANGUAGE to the empty string, your system's
698 // default language (as determined by the applicable environment
699 // variables) will be used.
700 // Note: The users language will be defined in $GLOBALS['LANG'],
701 // which overrides the DEFAULT_LANGUAGE. See wiki.
703 // Note: User-specified languages will set $GLOBALS['LANG'], this is just
704 // the system default.
705 if (!defined('DEFAULT_LANGUAGE')) define('DEFAULT_LANGUAGE', 'en');
707 /* WIKI_PGSRC -- specifies the source for the initial page contents of
708 * the Wiki. The setting of WIKI_PGSRC only has effect when the wiki is
709 * accessed for the first time (or after clearing the database.)
710 * WIKI_PGSRC can either name a directory or a zip file. In either case
711 * WIKI_PGSRC is scanned for files -- one file per page.
713 if (!defined('WIKI_PGSRC')) define('WIKI_PGSRC', "pgsrc"); // Default (old) behavior.
714 //define('WIKI_PGSRC', 'wiki.zip'); // New style.
715 //define('WIKI_PGSRC', '../../../Logs/Hamwiki/hamwiki-20010830.zip'); // New style.
718 * DEFAULT_WIKI_PGSRC is only used when the language is *not* the
719 * default (English) and when reading from a directory: in that case
720 * some English pages are inserted into the wiki as well.
721 * DEFAULT_WIKI_PGSRC defines where the English pages reside.
723 // FIXME: is this really needed? Can't we just copy these pages into
724 // the localized pgsrc?
725 define('DEFAULT_WIKI_PGSRC', "pgsrc");
726 // These are the pages which will get loaded from DEFAULT_WIKI_PGSRC.
727 $GenericPages = array("ReleaseNotes", "SteveWainstead", "TestPage");
729 /////////////////////////////////////////////////////////////////////
734 /////////////////////////////////////////////////////////////////////
736 // allowed protocols for links - be careful not to allow "javascript:"
737 // URL of these types will be automatically linked.
738 // within a named link [name|uri] one more protocol is defined: phpwiki
739 $AllowedProtocols = "http|https|mailto|ftp|news|nntp|ssh|gopher";
741 // URLs ending with the following extension should be inlined as images
742 $InlineImages = "png|jpg|gif";
744 // Perl regexp for WikiNames ("bumpy words")
745 // (?<!..) & (?!...) used instead of '\b' because \b matches '_' as well
746 $WikiNameRegexp = "(?<![[:alnum:]])(?:[[:upper:]][[:lower:]]+){2,}(?![[:alnum:]])";
748 // Defaults to '/', but '.' was also used.
749 if (!defined('SUBPAGE_SEPARATOR')) define('SUBPAGE_SEPARATOR', '/');
751 // InterWiki linking -- wiki-style links to other wikis on the web
753 // The map will be taken from a page name InterWikiMap.
754 // If that page is not found (or is not locked), or map
755 // data can not be found in it, then the file specified
756 // by INTERWIKI_MAP_FILE (if any) will be used.
757 define('INTERWIKI_MAP_FILE', "lib/interwiki.map");
759 // Display a warning if the internal lib/interwiki.map is used, and
760 // not the public InterWikiMap page. This file is not readable from outside.
761 //define('WARN_NONPUBLIC_INTERWIKIMAP', false);
763 // Regexp used for automatic keyword extraction.
765 // Any links on a page to pages whose names match this regexp will
766 // be used keywords in the keywords meta tag. (This is an aid to
767 // classification by search engines.) The value of the match is
768 // used as the keyword.
770 // The default behavior is to match Category* and Topic* links.
771 $keywords = array("Category", "Topic");
772 $KeywordLinkRegexp = '(?<=^'. join('|^', $keywords) . ')[[:upper:]].*$';
774 // Author and Copyright Site Navigation Links
776 // These will be inserted as <link rel> tags in the html header of
777 // every page, for search engines and for browsers like Mozilla which
778 // take advantage of link rel site navigation.
780 // If you have your own copyright and contact information pages change
781 // these as appropriate.
782 if (!defined('COPYRIGHTPAGE_TITLE')) define('COPYRIGHTPAGE_TITLE',
783 "GNU General Public License");
784 if (!defined('COPYRIGHTPAGE_URL')) define('COPYRIGHTPAGE_URL',
785 'http://www.gnu.org/copyleft/gpl.html#SEC1');
786 if (!defined('AUTHORPAGE_TITLE')) define('AUTHORPAGE_TITLE',
787 "The PhpWiki Programming Team");
788 if (!defined('AUTHORPAGE_URL')) define('AUTHORPAGE_URL',
789 'http://phpwiki.sourceforge.net/phpwiki/ThePhpWikiProgrammingTeam');
792 /////////////////////////////////////////////////////////////////////
795 // URL options -- you can probably skip this section.
797 /////////////////////////////////////////////////////////////////////
798 /******************************************************************
800 * The following section contains settings which you can use to tailor
801 * the URLs which PhpWiki generates.
803 * Any of these parameters which are left undefined will be deduced
804 * automatically. You need only set them explicitly if the
805 * auto-detected values prove to be incorrect.
807 * In most cases the auto-detected values should work fine, so
808 * hopefully you don't need to mess with this section.
810 * In case of local overrides of short placeholders, which themselves
811 * include index.php, we check for most constants. See '/wiki'.
812 * We can override DATA_PATH and PHPWIKI_DIR to support multiple phpwiki
813 * versions (for development), but most likely other values like
814 * THEME, $LANG and $DbParams for a WikiFarm.
816 ******************************************************************/
819 * Canonical name and httpd port of the server on which this PhpWiki
822 //if (!defined('SERVER_NAME')) define('SERVER_NAME', 'some.host.com');
823 //define('SERVER_PORT', 80);
826 * Relative URL (from the server root) of the PhpWiki
829 //if (!defined('SCRIPT_NAME')) define('SCRIPT_NAME', '/some/where/index.php');
832 * URL of the PhpWiki install directory. (You only need to set this
833 * if you've moved index.php out of the install directory.) This can
834 * be either a relative URL (from the directory where the top-level
835 * PhpWiki script is) or an absolute one.
837 //if (!defined('DATA_PATH')) define('DATA_PATH', '/home/user/phpwiki');
840 * Path to the PhpWiki install directory. This is the local
841 * filesystem counterpart to DATA_PATH. (If you have to set
842 * DATA_PATH, your probably have to set this as well.) This can be
843 * either an absolute path, or a relative path interpreted from the
844 * directory where the top-level PhpWiki script (normally index.php)
847 //if (!defined('PHPWIKI_DIR')) define('PHPWIKI_DIR', 'C:/Apache/phpwiki');
848 //if (!defined('PHPWIKI_DIR')) define('PHPWIKI_DIR', '/home/user/public_html/phpwiki');
851 * PhpWiki will try to use short urls to pages, eg
852 * http://www.example.com/index.php/HomePage
853 * If you want to use urls like
854 * http://www.example.com/index.php?pagename=HomePage
855 * then define 'USE_PATH_INFO' as false by uncommenting the line below.
856 * NB: If you are using Apache >= 2.0.30, then you may need to to use
857 * the directive "AcceptPathInfo On" in your Apache configuration file
858 * (or in an appropriate <.htaccess> file) for the short urls to work:
859 * See http://httpd.apache.org/docs-2.0/mod/core.html#acceptpathinfo
861 * See also http://phpwiki.sourceforge.net/phpwiki/PrettyWiki for more ideas
862 * on prettifying your urls.
864 * Default: PhpWiki will try to divine whether use of PATH_INFO
865 * is supported in by your webserver/PHP configuration, and will
866 * use PATH_INFO if it thinks that is possible.
868 //if (!defined('USE_PATH_INFO')) define('USE_PATH_INFO', false);
871 * VIRTUAL_PATH is the canonical URL path under which your your wiki
872 * appears. Normally this is the same as dirname(SCRIPT_NAME), however
873 * using, e.g. apaches mod_actions (or mod_rewrite), you can make it
874 * something different.
876 * If you do this, you should set VIRTUAL_PATH here.
878 * E.g. your phpwiki might be installed at at /scripts/phpwiki/index.php,
879 * but * you've made it accessible through eg. /wiki/HomePage.
881 * One way to do this is to create a directory named 'wiki' in your
882 * server root. The directory contains only one file: an .htaccess
883 * file which reads something like:
885 * Action x-phpwiki-page /scripts/phpwiki/index.php
886 * SetHandler x-phpwiki-page
887 * DirectoryIndex /scripts/phpwiki/index.php
889 * In that case you should set VIRTUAL_PATH to '/wiki'.
891 * (VIRTUAL_PATH is only used if USE_PATH_INFO is true.)
893 //if (!defined('VIRTUAL_PATH')) define('VIRTUAL_PATH', '/SomeWiki');
895 /////////////////////////////////////////////////////////////////////
898 // Miscellaneous settings
900 /////////////////////////////////////////////////////////////////////
903 * Disable HTTP redirects.
905 * (You probably don't need to touch this.)
907 * PhpWiki uses HTTP redirects for some of it's functionality.
908 * (e.g. after saving changes, PhpWiki redirects your browser to
909 * view the page you just saved.)
911 * Some web service providers (notably free European Lycos) don't seem to
912 * allow these redirects. (On Lycos the result in an "Internal Server Error"
913 * report.) In that case you can set DISABLE_HTTP_REDIRECT to true.
914 * (In which case, PhpWiki will revert to sneakier tricks to try to
915 * redirect the browser...)
917 //if (!defined('DISABLE_HTTP_REDIRECT')) define ('DISABLE_HTTP_REDIRECT', true);
919 //if (defined('WIKI_SOAP') and WIKI_SOAP) return;
921 ////////////////////////////////////////////////////////////////
923 // Check if we were included by some other wiki version
924 // (getimg.php, en, de, wiki, ...) or not.
925 // If the server requested this index.php fire up the code by loading lib/main.php.
926 // Parallel wiki scripts can now simply include /index.php for the
927 // main configuration, extend or redefine some settings and
928 // load lib/main.php by themselves. See the file 'wiki'.
929 // This overcomes the IndexAsConfigProblem.
930 // Generally a simple
931 // define('VIRTUAL_PATH', $_SERVER['SCRIPT_NAME']);
932 // is enough in the wiki file, plus the action definition in a .htaccess file
933 ////////////////////////////////////////////////////////////////
935 // If your lib/main.php is not loaded, comment that out, and
936 // uncomment the include "lib/main.php" line below.
937 if (defined('VIRTUAL_PATH') and defined('USE_PATH_INFO')) {
938 if ($HTTP_SERVER_VARS['SCRIPT_NAME'] != VIRTUAL_PATH) {
939 include "lib/main.php";
941 elseif (defined('SCRIPT_NAME') and
942 ($HTTP_SERVER_VARS['SCRIPT_NAME'] != SCRIPT_NAME)) {
943 include "lib/main.php";
946 if (defined('SCRIPT_NAME') and
947 ($HTTP_SERVER_VARS['SCRIPT_NAME'] == SCRIPT_NAME)) {
948 include "lib/main.php";
949 } elseif (strstr($HTTP_SERVER_VARS['PHP_SELF'],'index.php')) {
950 include "lib/main.php";
953 //include "lib/main.php";
955 // $Log: not supported by cvs2svn $
956 // Revision 1.137 2004/04/11 10:42:02 rurban
957 // pgsrc/CreatePagePlugin
959 // Revision 1.136 2004/04/10 04:14:13 rurban
960 // sf.net 906436 Suggestion
962 // Revision 1.135 2004/04/10 03:33:03 rurban
965 // Revision 1.134 2004/04/10 02:55:48 rurban
966 // fixed old WikiUser
968 // Revision 1.133 2004/04/08 01:22:53 rurban
969 // fixed PageChange Notification
971 // Revision 1.132 2004/04/01 15:57:10 rurban
972 // simplified Sidebar theme: table, not absolute css positioning
973 // added the new box methods.
974 // remaining problems: large left margin, how to override _autosplitWikiWords in Template only
976 // Revision 1.131 2004/03/14 16:24:35 rurban
977 // authenti(fi)cation spelling
979 // Revision 1.130 2004/03/09 17:16:43 rurban
980 // fixed $LDAP_SET_OPTION
982 // Revision 1.129 2004/02/29 04:10:55 rurban
983 // new POP3 auth (thanks to BiloBilo: pentothal at despammed dot com)
984 // fixed syntax error in index.php
986 // Revision 1.128 2004/02/29 02:06:05 rurban
987 // And this is the SOAP server. Just a view methods for now. (page content)
988 // I would like to see common-wiki soap wdsl.
990 // "SOAP is a bloated, over engineered mess of a perfectly trivial concept. Sigh."
991 // -- http://www.wlug.org.nz/SOAP
993 // Revision 1.127 2004/02/28 21:18:29 rurban
994 // new SQL auth_create, don't ever use REPLACE sql calls!
995 // moved HttpAuth to the end of the chain
996 // PrettyWiki enabled again
998 // Revision 1.126 2004/02/27 16:27:48 rurban
999 // REPLACE is a dirty hack, and erases passwd btw.
1001 // Revision 1.125 2004/02/24 02:51:57 rurban
1002 // release 1.3.8 ready
1004 // Revision 1.124 2004/02/16 00:20:30 rurban
1005 // new Japanses language
1007 // Revision 1.123 2004/02/09 03:58:07 rurban
1008 // for now default DB_SESSION to false
1010 // * not existing perms will now query the parent, and not
1011 // return the default perm
1012 // * added pagePermissions func which returns the object per page
1013 // * added getAccessDescription
1015 // * added global ->prepare (not yet used) with smart user/pref/member table prefixing.
1016 // * force init of authdbh in the 2 db classes
1018 // * fixed session handling (not triple auth request anymore)
1019 // * don't store cookie prefs with sessions
1020 // stdlib: global obj2hash helper from _AuthInfo, also needed for PagePerm
1022 // Revision 1.122 2004/02/07 14:20:18 rurban
1023 // consistent mysql schema with index.php (userid)
1025 // Revision 1.121 2004/02/07 10:41:25 rurban
1026 // fixed auth from session (still double code but works)
1028 // fixed DbPassUser upgrade and policy=old
1031 // Revision 1.120 2004/02/03 09:45:39 rurban
1032 // LDAP cleanup, start of new Pref classes
1034 // Revision 1.119 2004/02/01 09:14:10 rurban
1035 // Started with Group_Ldap (not yet ready)
1036 // added new _AuthInfo plugin to help in auth problems (warning: may display passwords)
1037 // fixed some configurator vars
1038 // renamed LDAP_AUTH_SEARCH to LDAP_BASE_DN
1039 // changed PHPWIKI_VERSION from 1.3.8a to 1.3.8pre
1040 // USE_DB_SESSION defaults to true on SQL
1041 // changed GROUP_METHOD definition to string, not constants
1042 // changed sample user DBAuthParams from UPDATE to REPLACE to be able to
1043 // create users. (Not to be used with external databases generally, but
1044 // with the default internal user table)
1046 // fixed the IndexAsConfigProblem logic. this was flawed:
1047 // scripts which are the same virtual path defined their own lib/main call
1048 // (hmm, have to test this better, phpwiki.sf.net/demo works again)
1050 // Revision 1.118 2004/01/28 14:34:13 rurban
1051 // session table takes the common prefix
1052 // + various minor stuff
1053 // reallow password changing
1055 // Revision 1.117 2004/01/27 23:25:50 rurban
1056 // added new tables to mysql schema
1057 // fixed default DBAUthParam samples to match these
1058 // added group constants (look terrible, I'd prefer strings instead of constants)
1060 // Revision 1.116 2004/01/25 04:21:02 rurban
1061 // WikiUserNew support (temp. ENABLE_USER_NEW constant)
1063 // Revision 1.115 2003/12/22 04:58:11 carstenklapp
1064 // Incremented release version.
1066 // Revision 1.114 2003/12/05 16:00:42 carstenklapp
1067 // ACK! gettext is not available at this point in index.php.
1069 // Revision 1.113 2003/12/05 15:51:37 carstenklapp
1070 // Added note that use of the configurator is depreciated.
1072 // Enable localization/gettextification of $KeywordLinkRegexp. (Also, now
1073 // users not familiar with regex can more easily just edit the $keywords
1076 // Added four new constants to define author and copyright link rel~s
1077 // used in html head. This makes it easier to run multiple wikis off of
1080 // Eliminated RECENT_CHANGES constant for RSS auto discovery because it's
1081 // another step to watch out for when running a non-english wiki. Now
1082 // simply defined as _("RecentChanges") in head.tmpl itself. Non-standard
1083 // wikis where the RecentChanges page has been named to something else
1084 // will have to modify this in head.tmpl (along with all other places the
1085 // word RecentChanges appears in the code, something that already would
1086 // have had to be done on such a wiki anyway).
1088 // Added a little more info and instructions to flesh out:
1089 // DEBUG, WIKI_NAME, ADMIN_USER, $DisabledActions, $DBParams, CHARSET.
1091 // A few typos and spelling mistakes corrected, and some text rewrapped.
1093 // Revision 1.112 2003/11/17 15:49:21 carstenklapp
1094 // Updated version number to 1.3.7pre (beyond current release
1095 // 1.3.6). Disabled DEBUG output by default (hide DebugInfo, XHTML &
1096 // CSS validator buttons). Note the DebugInfo button remains visible
1097 // for the Admin, and can be accessed by anyone else by adding
1098 // "?action=DebugInfo" to the URL for the occasional use.
1100 // Revision 1.111 2003/03/18 21:40:04 dairiki
1101 // Copy Lawrence's memo on USE_PATH_INFO/AcceptPathInfo to configurator.php
1104 // Plus slight clarification of default (auto-detect) behavior.
1106 // Revision 1.110 2003/03/18 20:51:10 lakka
1107 // Revised comments on use of USE_PATH_INFO with Apache 2
1109 // Revision 1.109 2003/03/17 21:24:50 dairiki
1110 // Fix security bugs in the RawHtml plugin.
1112 // Change the default configuration to allow use of plugin, since
1113 // I believe the plugin is now safe for general use. (Raw HTML will only
1114 // work on locked pages.)
1116 // Revision 1.108 2003/03/07 22:47:01 dairiki
1117 // A few more if(!defined(...))'s
1119 // Revision 1.107 2003/03/07 20:51:54 dairiki
1120 // New feature: Automatic extraction of keywords (for the meta keywords tag)
1121 // from Category* and Topic* links on each page.
1123 // Revision 1.106 2003/03/07 02:48:23 dairiki
1124 // Add option to prevent HTTP redirect.
1126 // Revision 1.105 2003/03/04 02:08:08 dairiki
1127 // Fix and document the WIKIDB_NOCACHE_MARKUP config define.
1129 // Revision 1.104 2003/02/26 02:55:52 dairiki
1130 // New config settings in index.php to control cache control strictness.
1132 // Revision 1.103 2003/02/22 19:43:50 dairiki
1133 // Fix comment regarding connecting to SQL server over a unix socket.
1135 // Revision 1.102 2003/02/22 18:53:38 dairiki
1136 // Renamed method Request::compress_output to Request::buffer_output.
1138 // Added config option to disable compression.
1140 // Revision 1.101 2003/02/21 19:29:30 dairiki
1141 // Update PHPWIKI_VERSION to 1.3.5pre.
1143 // Revision 1.100 2003/01/04 03:36:58 wainstead
1144 // Added 'file' as a database type alongside 'dbm'; added cvs log tag
1147 // (c-file-style: "gnu")
1151 // c-basic-offset: 4
1152 // c-hanging-comment-ender-p: nil
1153 // indent-tabs-mode: nil