4 // IMPORTANT NOTE: Use of the ***configurator.php*** to generate an
5 // index.php is depreciated, because it is out of date and a new
6 // configuration system is in the works (see the config directory, not
7 // finished yet though). DO compare or diff the configurator's output
8 // against this file if you feel you must use it to generate an
12 Copyright 1999, 2000, 2001, 2002 $ThePhpWikiProgrammingTeam = array(
13 "Steve Wainstead", "Clifford A. Adams", "Lawrence Akka",
14 "Scott R. Anderson", "Jon Åslund", "Neil Brown", "Jeff Dairiki",
15 "Stéphane Gourichon", "Jan Hidders", "Arno Hollosi", "John Jorgensen",
16 "Antti Kaihola", "Jeremie Kass", "Carsten Klapp", "Marco Milanesi",
17 "Grant Morgan", "Jan Nieuwenhuizen", "Aredridel Niothke",
18 "Pablo Roca Rozas", "Sandino Araico Sánchez", "Joel Uckelman",
19 "Reini Urban", "Tim Voght", "Jochen Kalmbach");
21 This file is part of PhpWiki.
23 PhpWiki is free software; you can redistribute it and/or modify
24 it under the terms of the GNU General Public License as published by
25 the Free Software Foundation; either version 2 of the License, or
26 (at your option) any later version.
28 PhpWiki is distributed in the hope that it will be useful,
29 but WITHOUT ANY WARRANTY; without even the implied warranty of
30 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
31 GNU General Public License for more details.
33 You should have received a copy of the GNU General Public License
34 along with PhpWiki; if not, write to the Free Software
35 Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA
39 /////////////////////////////////////////////////////////////////////
41 This is the starting file for PhpWiki. All this file does is set
42 configuration options, and at the end of the file it includes() the
43 file lib/main.php, where the real action begins.
45 This file is divided into seven parts: Parts Zero, One, Two, Three,
46 Four, Five and Six. Each one has different configuration settings you can
47 change; in all cases the default should work on your system,
48 however, we recommend you tailor things to your particular setting.
51 /////////////////////////////////////////////////////////////////////
52 // Part Zero: If PHP needs help in finding where you installed the
53 // rest of the PhpWiki code, you can set the include_path here.
55 // Define PHP's include path so that it can find the PHP source code
58 // You shouldn't need to do this unless you've moved index.php out
59 // of the PhpWiki install directory.
61 // Note that on Windows-based servers, you should use ; rather than :
62 // as the path separator.
63 //ini_set('include_path', '.:/usr/local/httpd/phpwiki');
65 // Set DEBUG to 1 to view the XHTML and CSS validator icons, page
66 // processing timer, and possibly other debugging messages at the
67 // bottom of each page.
68 if (!defined('DEBUG')) define ('DEBUG', 0);
69 define('ENABLE_USER_NEW',true); // this will disappear with 1.4.0
71 /////////////////////////////////////////////////////////////////////
72 // Part Null: Don't touch this!
74 define ('PHPWIKI_VERSION', '1.3.8');
75 require "lib/prepend.php";
76 rcs_id('$Id: index.php,v 1.126 2004-02-27 16:27:48 rurban Exp $');
78 /////////////////////////////////////////////////////////////////////
81 // Authentication and security settings. See Part Three for more.
83 /////////////////////////////////////////////////////////////////////
85 // The name of your wiki.
87 // This is used to generate a keywords meta tag in the HTML templates,
88 // in bookmark titles for any bookmarks made to pages in your wiki,
89 // and during RSS generation for the <title> of the RSS channel.
91 // To use your own logo and signature files, name them PhpWikiLogo.png
92 // and PhpWikiSignature.png and put them into themes/default/images
93 // (substituting "PhpWiki" in the filename with the name you define
96 // It is recommended this be a relatively short WikiWord like the
97 // InterWiki monikers found in the InterWikiMap. (For examples, see
98 // lib/interwiki.map).
99 if (!defined('WIKI_NAME')) define('WIKI_NAME', 'PhpWiki');
101 // Visitor Hostname Lookup
103 // If set, reverse dns lookups will be performed to attempt to convert
104 // the user's IP number into a host name, in the case where the http
105 // server does not do this.
106 if (!defined('ENABLE_REVERSE_DNS')) define('ENABLE_REVERSE_DNS', true);
108 // Username and password of administrator.
110 // Set these to your preferences. For heaven's sake pick a good
111 // password and use the passencrypt.php tool. See:
112 // http://wolfram.org/writing/howto/password.html
114 // Log into the wiki with the admin user and password to lock, unlock,
115 // or remove pages and to perform other PhpWikiAdministration
116 // functions. On all other occasions you should simply log in with
117 // your regular WikiName.
118 if (!defined('ADMIN_USER')) define('ADMIN_USER', "");
119 if (!defined('ADMIN_PASSWD')) define('ADMIN_PASSWD', "");
120 // It is recommended to use the passencrypt.php utility to encode the
121 // admin password, in the unlikely event someone gains ftp or ssh
122 // access to the server and directory containing phpwiki. Once you
123 // have pasted the encrypted password into ADMIN_PASSWD, uncomment
125 //if (!defined('ENCRYPTED_PASSWD')) define('ENCRYPTED_PASSWD', true);
127 // Private ZIP Dumps of All Wiki Pages
129 // If true, only the admin user can make zip dumps. Otherwise anyone
130 // may download all wiki pages as a single zip archive.
131 if (!defined('ZIPDUMP_AUTH')) define('ZIPDUMP_AUTH', false);
133 // Define to false to disable the RawHtml plugin.
134 //if (!defined('ENABLE_RAW_HTML')) define('ENABLE_RAW_HTML', false);
136 // If you define this to true, (MIME-type) page-dumps (either zip dumps,
137 // or "dumps to directory" will be encoded using the quoted-printable
138 // encoding. If you're actually thinking of mailing the raw page dumps,
139 // then this might be useful, since (among other things,) it ensures
140 // that all lines in the message body are under 80 characters in length.
142 // Also, setting this will cause a few additional mail headers
143 // to be generated, so that the resulting dumps are valid
144 // RFC 2822 e-mail messages.
146 // Probably you can just leave this set to false, in which case you get
147 // raw ('binary' content-encoding) page dumps.
148 if (!defined('STRICT_MAILABLE_PAGEDUMPS')) define('STRICT_MAILABLE_PAGEDUMPS', false);
150 // Here you can change the filename suffix used for XHTML page dumps.
151 // If you don't want any suffix just comment this out.
152 $HTML_DUMP_SUFFIX = '.html';
154 // The maximum file upload size.
155 if (!defined('MAX_UPLOAD_SIZE')) define('MAX_UPLOAD_SIZE', 16 * 1024 * 1024);
157 // If the last edit is older than MINOR_EDIT_TIMEOUT seconds, the
158 // default state for the "minor edit" checkbox on the edit page form
160 if (!defined('MINOR_EDIT_TIMEOUT')) define("MINOR_EDIT_TIMEOUT", 7 * 24 * 3600);
162 // Actions listed in this array will not be allowed. The complete list
163 // of actions can be found in lib/main.php within the function
164 // getActionDescription.
165 //$DisabledActions = array('dumpserial', 'loadfile');
167 // PhpWiki can generate an access_log (in "NCSA combined log" format)
168 // for you. If you want one, define this to the name of the log
169 // file. The server must have write access to the directory specified.
170 //define('ACCESS_LOG', '/var/tmp/wiki_access_log');
173 // By default PhpWiki will try to have PHP compress its output
174 // before sending it to the browser (if you have a recent enough
175 // version of PHP and the browser supports it.)
176 // Define COMPRESS_OUTPUT to false to prevent output compression.
177 // Define COMPRESS_OUTPUT to true to force output compression,
178 // even if we think your version of PHP does this in a buggy
180 // Leave it undefined to leave the choice up to PhpWiki.
181 //define('COMPRESS_OUTPUT', false);
184 // HTTP CACHE_CONTROL
186 // This controls how PhpWiki sets the HTTP cache control
187 // headers (Expires: and Cache-Control:)
191 // NONE: This is roughly the old (pre 1.3.4) behavior. PhpWiki will
192 // instruct proxies and browsers never to cache PhpWiki output.
194 // STRICT: Cached pages will be invalidated whenever the database global
195 // timestamp changes. This should behave just like NONE (modulo
196 // bugs in PhpWiki and your proxies and browsers), except that
197 // things will be slightly more efficient.
199 // LOOSE: Cached pages will be invalidated whenever they are edited,
200 // or, if the pages include plugins, when the plugin output could
201 // concievably have changed.
203 // Behavior should be much like STRICT, except that sometimes
204 // wikilinks will show up as undefined (with the question mark)
205 // when in fact they refer to (recently) created pages.
206 // (Hitting your browsers reload or perhaps shift-reload button
207 // should fix the problem.)
209 // ALLOW_STALE: Proxies and browsers will be allowed to used stale pages.
210 // (The timeout for stale pages is controlled by CACHE_CONTROL_MAX_AGE.)
212 // This setting will result in quirky behavior. When you edit a
213 // page your changes may not show up until you shift-reload the
216 // This setting is generally not advisable, however it may be useful
217 // in certain cases (e.g. if your wiki gets lots of page views,
218 // and few edits by knowledgable people who won't freak over the quirks.)
220 // The default is currently LOOSE.
222 if (!defined('CACHE_CONTROL')) define('CACHE_CONTROL', 'LOOSE');
224 // Maximum page staleness, in seconds.
226 // This only has effect if CACHE_CONTROL is set to ALLOW_STALE.
227 if (!defined('CACHE_CONTROL_MAX_AGE')) define('CACHE_CONTROL_MAX_AGE', 600);
232 // PhpWiki normally caches a preparsed version (i.e. mostly
233 // converted to HTML) of the most recent version of each page.
234 // (Parsing the wiki-markup takes a fair amount of CPU.)
236 // Define WIKIDB_NOCACHE_MARKUP to true to disable the
237 // caching of marked-up page content.
239 // Note that you can also disable markup caching on a per-page
240 // temporary basis by addinging a query arg of '?nocache=1'
241 // to the URL to the page. (Use '?nocache=purge' to completely
242 // discard the cached version of the page.)
244 // You can also purge the cached markup globally by using the
245 // "Purge Markup Cache" button on the PhpWikiAdministration page.
246 //if (!defined('WIKIDB_NOCACHE_MARKUP')) define ('WIKIDB_NOCACHE_MARKUP', true);
248 /////////////////////////////////////////////////////////////////////
251 // Database Selection
253 /////////////////////////////////////////////////////////////////////
256 // This array holds the parameters which select the database to use.
258 // Not all of these parameters are used by any particular DB backend.
261 // Select the database type:
263 // Choose ADODB or SQL to use an SQL database with ADODB or PEAR
264 // respectively (both ADODB and PEAR libraries are already included
266 // Choose dba to use one of the standard UNIX dbm libraries.
267 // Choose file to use a flat file database.
268 //'dbtype' => 'ADODB',
271 //'dbtype' => 'file',
274 // For SQL based backends, specify the database as a DSN
275 // The most general form of a DSN looks like:
277 // phptype(dbsyntax)://username:password@protocol+hostspec/database
279 // For a MySQL database, the following should work:
281 // mysql://user:password@host/databasename
283 // To connect over a unix socket, use something like
285 // mysql://user:password@unix(/path/to/socket)/databasename
287 //'dsn' => 'mysql://guest@unix(/var/lib/mysql/mysql.sock)/test',
288 //'dsn' => 'mysql://guest@localhost/test',
289 //'dsn' => 'pgsql://localhost/test',
291 // The common table prefix (see below) is added if defined
292 'db_session_table' => 'session',
294 // Used by all DB types:
296 // prefix for filenames or table names
298 * currently you MUST EDIT THE SQL file too (in the schemas/
299 * directory because we aren't doing on the fly sql generation
300 * during the installation.
302 //'prefix' => 'phpwiki_',
304 // Used by either 'dba' or 'file' and must be writable by the web
305 // server If you leave this as '/tmp' you will probably lose all
306 // your files eventually
307 'directory' => "/tmp",
309 // choose the type of DB database file to use; most GNU systems have gdbm
310 'dba_handler' => 'gdbm', // Either of 'gdbm' or 'db2' work great for me.
311 //'dba_handler' => 'db2',
312 //'dba_handler' => 'db3', // Works fine on Windows, but not on every linux.
313 //'dba_handler' => 'dbm', // On sf.net redhat there's dbm and gdbm.
314 // dbm suffers from limits on size of data items?
320 /////////////////////////////////////////////////////////////////////
321 // PHP Session settings:
324 // Only for $DBParams['dbtype'] => 'SQL'. See schemas/mysql.sql or
325 // schemas/psql.sql. $DBParams['db_session_table'] must be defined.
326 if (!defined('USE_DB_SESSION') and
327 $DBParams['dbtype'] == 'SQL' and
328 $DBParams['db_session_table'])
329 define('USE_DB_SESSION',true);
331 // If your php was compiled with --enable-trans-sid it tries to
332 // add a PHPSESSID query argument to all URL strings when cookie
333 // support isn't detected in the client browser. For reasons
334 // which aren't entirely clear (PHP bug) this screws up the URLs
335 // generated by PhpWiki. Therefore, transparent session ids
336 // should be disabled. This next line does that.
338 // (At the present time, you will not be able to log-in to PhpWiki,
339 // unless your browser supports cookies.)
340 @ini_set('session.use_trans_sid', 0);
342 // The login code now uses PHP's session support. Usually, the default
343 // configuration of PHP is to store the session state information in
344 // /tmp. That probably will work fine, but fails e.g. on clustered
345 // servers where each server has their own distinct /tmp (this is the
346 // case on SourceForge's project web server.) You can specify an
347 // alternate directory in which to store state information like so
348 // (whatever user your httpd runs as must have read/write permission
349 // in this directory):
351 //ini_set('session.save_path', 'some_other_directory');
353 /////////////////////////////////////////////////////////////////////
355 // The next section controls how many old revisions of each page are
356 // kept in the database.
358 // There are two basic classes of revisions: major and minor. Which
359 // class a revision belongs in is determined by whether the author
360 // checked the "this is a minor revision" checkbox when they saved the
363 // There is, additionally, a third class of revisions: author
364 // revisions. The most recent non-mergable revision from each distinct
365 // author is and author revision.
367 // The expiry parameters for each of those three classes of revisions
368 // can be adjusted seperately. For each class there are five
369 // parameters (usually, only two or three of the five are actually
370 // set) which control how long those revisions are kept in the
373 // max_keep: If set, this specifies an absolute maximum for the
374 // number of archived revisions of that class. This is
375 // meant to be used as a safety cap when a non-zero
376 // min_age is specified. It should be set relatively high,
377 // and it's purpose is to prevent malicious or accidental
378 // database overflow due to someone causing an
379 // unreasonable number of edits in a short period of time.
381 // min_age: Revisions younger than this (based upon the supplanted
382 // date) will be kept unless max_keep is exceeded. The age
383 // should be specified in days. It should be a
384 // non-negative, real number,
386 // min_keep: At least this many revisions will be kept.
388 // keep: No more than this many revisions will be kept.
390 // max_age: No revision older than this age will be kept.
392 // Supplanted date: Revisions are timestamped at the instant that they
393 // cease being the current revision. Revision age is computed using
394 // this timestamp, not the edit time of the page.
396 // Merging: When a minor revision is deleted, if the preceding
397 // revision is by the same author, the minor revision is merged with
398 // the preceding revision before it is deleted. Essentially: this
399 // replaces the content (and supplanted timestamp) of the previous
400 // revision with the content after the merged minor edit, the rest of
401 // the page metadata for the preceding version (summary, mtime, ...)
404 // Keep up to 8 major edits, but keep them no longer than a month.
405 $ExpireParams['major'] = array('max_age' => 32,
407 // Keep up to 4 minor edits, but keep them no longer than a week.
408 $ExpireParams['minor'] = array('max_age' => 7,
410 // Keep the latest contributions of the last 8 authors up to a year.
411 // Additionally, (in the case of a particularly active page) try to
412 // keep the latest contributions of all authors in the last week (even
413 // if there are more than eight of them,) but in no case keep more
414 // than twenty unique author revisions.
415 $ExpireParams['author'] = array('max_age' => 365,
420 /////////////////////////////////////////////////////////////////////
422 // Part Three: (optional)
423 // User Authentication
425 /////////////////////////////////////////////////////////////////////
427 // New user authentification configuration:
428 // We support three basic authentification methods and a stacked array
429 // of advanced auth methods to get and check the passwords:
431 // ALLOW_ANON_USER default true
432 // ALLOW_ANON_EDIT default true
433 // ALLOW_BOGO_LOGIN default true
434 // ALLOW_USER_PASSWORDS default true
436 // allow anon users to view pages! (not edit)
437 if (!defined('ALLOW_ANON_USER')) define('ALLOW_ANON_USER', true);
438 // allow anon users to edit pages
439 if (!defined('ALLOW_ANON_EDIT')) define('ALLOW_ANON_EDIT', true);
441 // This was replaced by ALLOW_ANON_EDIT
442 if (!defined('REQUIRE_SIGNIN_BEFORE_EDIT')) define('REQUIRE_SIGNIN_BEFORE_EDIT', ! ALLOW_ANON_EDIT);
444 // If ALLOW_BOGO_LOGIN is true, users are allowed to login (with
445 // any/no password) using any userid which:
446 // 1) is not the ADMIN_USER, and
447 // 2) is a valid WikiWord (matches $WikiNameRegexp.)
448 // If true, users may be created by themselves. Otherwise we need seperate auth.
449 // If such a user will create a so called HomePage with his userid, he will
450 // be able to store his preferences and password there.
451 if (!defined('ALLOW_BOGO_LOGIN')) define('ALLOW_BOGO_LOGIN', true);
453 // True User Authentification:
454 // To require user passwords:
455 // ALLOW_ANON_USER = false
456 // ALLOW_ANON_EDIT = false
457 // ALLOW_BOGO_LOGIN = false,
458 // ALLOW_USER_PASSWORDS = true.
459 // Otherwise any anon or bogo user might login without any or a wrong password.
460 if (!defined('ALLOW_USER_PASSWORDS')) define('ALLOW_USER_PASSWORDS', true);
462 // Below we define which methods exists and in which order
464 // BogoLogin: WikiWord enough, but with PASSWORD_LENGTH_MINIMUM
465 // PersonalPage: Store passwords in the users homepage metadata (simple)
466 // HttpAuth: Use the protection by the webserver (.htaccess)
467 // Db: Use $DBAuthParams[] (see below) with the PearDB or
469 // LDAP: Authenticate against LDAP_AUTH_HOST with LDAP_BASE_DN
470 // IMAP: Authenticate against IMAP_AUTH_HOST (email account)
471 // File: Store username:crypted-passwords in .htaccess like files.
472 // Use Apache's htpasswd to manage this file.
474 if (defined('ALLOW_USER_PASSWORDS')) {
476 // use the following order of authentification methods:
477 if (!isset($USER_AUTH_ORDER))
484 // "LDAP", // define LDAP_AUTH_HOST and LDAP_BASE_DN
485 // "IMAP", // define IMAP_AUTH_HOST
486 // "File" // define AUTH_USER_FILE and opt. AUTH_USER_FILE_STORABLE
489 if (!defined('PASSWORD_LENGTH_MINIMUM')) define('PASSWORD_LENGTH_MINIMUM', 2);
491 if (!defined('USER_AUTH_POLICY'))
492 //We support the following auth policies:
493 // first-only: use only the first method in USER_AUTH_ORDER
494 // old: ignore USER_AUTH_ORDER and try to use all available
495 // methods as in the previous PhpWiki releases (slow)
496 // strict: check if the user exists for all methods:
497 // on the first existing user, try the password.
498 // dont try the other methods on failure then
499 // stacked: check the given user - password combination for all methods
500 // and return true on the first success.
502 //define('USER_AUTH_POLICY','first-only');
503 define('USER_AUTH_POLICY','old');
504 //define('USER_AUTH_POLICY','strict');
505 //define('USER_AUTH_POLICY','stacked');
509 if (!defined('LDAP_AUTH_HOST')) define('LDAP_AUTH_HOST', "ldap://localhost:389");
510 // or "ldaps://server:636"
511 // The organizational or domain BASE DN: e.g. "dc=mydomain,dc=com" to restrict the search
512 // Note: ou=Users and ou=Groups are used for GroupLdap Membership
513 if (!defined('LDAP_BASE_DN')) define('LDAP_BASE_DN', "ou=Users,o=Development,dc=mycompany.com");
514 // LDAP Auth Optional:
515 // Some LDAP servers disallow anonymous binds, and need some more options,
516 // such as the Windows Active Directory Server:
517 // $LDAP_SET_OPTION = array(LDAP_OPT_PROTOCOL_VERSION => 3,
518 // LDAP_OPT_REFERRALS, 0);
519 // define(LDAP_AUTH_USER, "CN=ldapuser,CN=Users,DC=uai,DC=int");
520 // define(LDAP_AUTH_PASSWORD, '');
521 // define(LDAP_SEARCH_FIELD, 'sAMAccountName'); // might be different from uid,
522 // here's its a Windows/Samba account
526 // check userid/passwords from a imap server, defaults to localhost
527 if (!defined('IMAP_AUTH_HOST')) define('IMAP_AUTH_HOST', 'localhost:143/imap/notls');
528 // Some IMAP_AUTH_HOST samples:
529 // "localhost", "localhost:143/imap/notls",
530 // "localhost:993/imap/ssl/novalidate-cert" (SuSE refuses non-SSL conections)
533 //if (!defined('AUTH_USER_FILE')) define('AUTH_USER_FILE', '/etc/shadow'); // or '/etc/httpd/.htpasswd'
534 // set this to true if the user may change his password into this file.
535 //if (!defined('AUTH_USER_FILE_STORABLE')) define('AUTH_USER_FILE_STORABLE',false);
538 //if (!defined('GROUP_METHOD')) define('GROUP_METHOD', "NONE");
539 if (!defined('GROUP_METHOD')) define('GROUP_METHOD', "WIKIPAGE");
540 //if (!defined('GROUP_METHOD')) define('GROUP_METHOD', "DB");
541 //if (!defined('GROUP_METHOD')) define('GROUP_METHOD', "FILE");
542 //if (!defined('GROUP_METHOD')) define('GROUP_METHOD', "LDAP");
543 //if (!defined('AUTH_GROUP_FILE')) define('AUTH_GROUP_FILE', '/etc/groups'); // or '/etc/httpd/.htgroup'
545 // Seperate DB User Authentication.
546 // Can be external, like radius, phpnuke, courier authmysql,
547 // apache auth_mysql or something else.
548 // The default is to store the data as metadata in the users PersonalPage.
549 // The most likely dsn option is the same dsn as the wikipages.
550 $DBAuthParams = array (
551 // if not defined use $DBParams['dsn'] i.e. the phpwiki database
552 //'auth_dsn' => 'mysql://localhost/phpwiki',
555 // plaintext passwords:
556 // 'auth_check' => 'SELECT IF(passwd="$password",1,0) as ok FROM user WHERE userid="$userid"',
557 // database (md5) passwords (more secure):
558 'auth_check' => 'SELECT IF(passwd=PASSWORD("$password"),1,0) as ok FROM user WHERE userid="$userid"',
560 //'auth_check' => 'SELECT password as password FROM user WHERE userid="$userid"',
561 // this is only needed with auth_crypt_method plain:
562 'auth_user_exists' => 'SELECT userid FROM user WHERE userid="$userid"',
564 //'auth_crypt_method' => 'crypt', // 'crypt' (unix)
565 'auth_crypt_method' => 'plain', // plain or secure mysql PASSWORD()
567 // If 'auth_update' is not defined but 'auth_check' is defined, the user cannot
568 // change his password.
569 //don't create new users:
570 // $password is processed by the 'auth_crypt_method', don't create.
571 //'auth_update' => 'UPDATE user SET passwd="$password" WHERE userid="$userid"',
572 // for mysql md5 use 'auth_crypt_method' => 'plain'
573 'auth_update' => 'UPDATE user SET passwd=PASSWORD("$password") WHERE userid="$userid"',
574 //or create new users automatically, with auth_crypt_method = plain
575 // Order important: Password first!
576 //'auth_update' => 'REPLACE INTO user SET passwd=PASSWORD("$password"), userid="$userid"',
578 // USER => PREFERENCES
579 // This can be optionally defined in the phpwiki db.
580 // The default is to store it the users homepage.
581 'pref_select' => 'SELECT prefs FROM user WHERE userid="$userid"',
582 //users must be predefined:
583 'pref_update' => 'UPDATE user SET prefs="$pref_blob" WHERE userid="$userid"',
584 //or users can create themselves:
585 //'pref_update' => 'REPLACE INTO user SET prefs="$pref_blob", userid="$userid"',
588 // DB methods for lib/WikiGroup.php, see also AUTH_GROUP_FILE above.
589 // You can define 1:n or n:m user<=>group relations, as you wish.
590 // Sample configurations
591 // only one group per user (1:n):
592 //'is_member' => 'SELECT user FROM user WHERE user="$userid" AND group="$groupname"',
593 //'group_members' => 'SELECT user FROM user WHERE group="$groupname"',
594 //'user_groups' => 'SELECT group FROM user WHERE user="$userid"',
595 // or multiple groups per user (n:m):
596 'is_member' => 'SELECT userid FROM member WHERE userid="$userid" AND groupname="$groupname"',
597 'group_members' => 'SELECT DISTINCT userid FROM member WHERE groupname="$groupname"',
598 'user_groups' => 'SELECT groupname FROM member WHERE userid="$userid"',
603 // Old settings, only needed for ENABLE_USER_NEW = false
605 // The wiki can be protected by HTTP Auth. Use the username and password
606 // from there, but this is not sufficient. Try the other methods also.
607 if (!defined('ALLOW_HTTP_AUTH_LOGIN')) define('ALLOW_HTTP_AUTH_LOGIN', false);
608 // If ALLOW_USER_LOGIN is true, any defined internal and external
609 // authentication method is tried. If not, we don't care about
610 // passwords, but listen to the next two constants. Note that external
611 // authentication is not supported at this time, you will likely have
612 // to patch code yourself to get PhpWiki to recognise userids and
613 // passwords from an external source.
614 if (!defined('ALLOW_USER_LOGIN')) define('ALLOW_USER_LOGIN', false);
615 // also only if ENABLE_USER_NEW = false:
616 //if (!defined('ALLOW_LDAP_LOGIN')) define('ALLOW_LDAP_LOGIN', true and function_exists('ldap_connect'));
617 //if (!defined('ALLOW_IMAP_LOGIN')) define('ALLOW_IMAP_LOGIN', true and function_exists('imap_open'));
619 // A interim page which gets displayed on every edit attempt
620 //if (!defined('EDITING_POLICY')) define('EDITING_POLICY', "EditingPolicy");
623 /////////////////////////////////////////////////////////////////////
626 // Page appearance and layout
628 /////////////////////////////////////////////////////////////////////
632 * Most of the page appearance is controlled by files in the theme
635 * There are a number of pre-defined themes shipped with PhpWiki.
636 * Or you may create your own (e.g. by copying and then modifying one of
641 if (!defined('THEME')) {
642 define('THEME', 'default');
643 //define('THEME', 'Hawaiian');
644 //define('THEME', 'MacOSX');
645 //define('THEME', 'Portland');
646 //define('THEME', 'Sidebar');
647 //define('THEME', 'SpaceWiki');
650 // Select a valid charset name to be inserted into the xml/html pages,
651 // and to reference links to the stylesheets (css). For more info see:
652 // <http://www.iana.org/assignments/character-sets>. Note that PhpWiki
653 // has been extensively tested only with the latin1 (iso-8859-1)
656 // If you change the default from iso-8859-1 PhpWiki may not work
657 // properly and will require code modifications, at the very least you
658 // will have to convert the files in pgsrc or locale/xx/pgsrc to
661 // Character sets similar to iso-8859-1 may work with little or no
662 // modification depending on your setup. The database must also
663 // support the same charset, and of course the same is true for the
664 // web browser. (Some work is in progress hopefully to allow more
665 // flexibility in this area in the future).
666 if (!defined('CHARSET')) define("CHARSET", "iso-8859-1");
668 // Select your language/locale - default language is "en" for English.
669 // Other languages available:
670 // English "en" (English - HomePage)
671 // Dutch "nl" (Nederlands - ThuisPagina)
672 // Spanish "es" (Español - PáginaPrincipal)
673 // French "fr" (Français - Accueil)
674 // German "de" (Deutsch - StartSeite)
675 // Swedish "sv" (Svenska - Framsida)
676 // Italian "it" (Italiano - PaginaPrincipale)
677 // Japanese "ja" (Japanese - ¥Û¡¼¥à¥Ú¡¼¥¸)
679 // If you set DEFAULT_LANGUAGE to the empty string, your system's
680 // default language (as determined by the applicable environment
681 // variables) will be used.
683 if (!defined('DEFAULT_LANGUAGE')) define('DEFAULT_LANGUAGE', 'en');
685 /* WIKI_PGSRC -- specifies the source for the initial page contents of
686 * the Wiki. The setting of WIKI_PGSRC only has effect when the wiki is
687 * accessed for the first time (or after clearing the database.)
688 * WIKI_PGSRC can either name a directory or a zip file. In either case
689 * WIKI_PGSRC is scanned for files -- one file per page.
691 if (!defined('WIKI_PGSRC')) define('WIKI_PGSRC', "pgsrc"); // Default (old) behavior.
692 //define('WIKI_PGSRC', 'wiki.zip'); // New style.
693 //define('WIKI_PGSRC', '../../../Logs/Hamwiki/hamwiki-20010830.zip'); // New style.
696 * DEFAULT_WIKI_PGSRC is only used when the language is *not* the
697 * default (English) and when reading from a directory: in that case
698 * some English pages are inserted into the wiki as well.
699 * DEFAULT_WIKI_PGSRC defines where the English pages reside.
701 // FIXME: is this really needed? Can't we just copy these pages into
702 // the localized pgsrc?
703 define('DEFAULT_WIKI_PGSRC', "pgsrc");
704 // These are the pages which will get loaded from DEFAULT_WIKI_PGSRC.
705 $GenericPages = array("ReleaseNotes", "SteveWainstead", "TestPage");
707 /////////////////////////////////////////////////////////////////////
712 /////////////////////////////////////////////////////////////////////
714 // allowed protocols for links - be careful not to allow "javascript:"
715 // URL of these types will be automatically linked.
716 // within a named link [name|uri] one more protocol is defined: phpwiki
717 $AllowedProtocols = "http|https|mailto|ftp|news|nntp|ssh|gopher";
719 // URLs ending with the following extension should be inlined as images
720 $InlineImages = "png|jpg|gif";
722 // Perl regexp for WikiNames ("bumpy words")
723 // (?<!..) & (?!...) used instead of '\b' because \b matches '_' as well
724 $WikiNameRegexp = "(?<![[:alnum:]])(?:[[:upper:]][[:lower:]]+){2,}(?![[:alnum:]])";
726 // Defaults to '/', but '.' was also used.
727 if (!defined('SUBPAGE_SEPARATOR')) define('SUBPAGE_SEPARATOR', '/');
729 // InterWiki linking -- wiki-style links to other wikis on the web
731 // The map will be taken from a page name InterWikiMap.
732 // If that page is not found (or is not locked), or map
733 // data can not be found in it, then the file specified
734 // by INTERWIKI_MAP_FILE (if any) will be used.
735 define('INTERWIKI_MAP_FILE', "lib/interwiki.map");
737 // Display a warning if the internal lib/interwiki.map is used, and
738 // not the public InterWikiMap page. This file is not readable from outside.
739 //define('WARN_NONPUBLIC_INTERWIKIMAP', false);
741 // Regexp used for automatic keyword extraction.
743 // Any links on a page to pages whose names match this regexp will
744 // be used keywords in the keywords meta tag. (This is an aid to
745 // classification by search engines.) The value of the match is
746 // used as the keyword.
748 // The default behavior is to match Category* and Topic* links.
749 $keywords = array("Category", "Topic");
750 $KeywordLinkRegexp = '(?<=^'. join('|^', $keywords) . ')[[:upper:]].*$';
752 // Author and Copyright Site Navigation Links
754 // These will be inserted as <link rel> tags in the html header of
755 // every page, for search engines and for browsers like Mozilla which
756 // take advantage of link rel site navigation.
758 // If you have your own copyright and contact information pages change
759 // these as appropriate.
760 if (!defined('COPYRIGHTPAGE_TITLE')) define('COPYRIGHTPAGE_TITLE',
761 "GNU General Public License");
762 if (!defined('COPYRIGHTPAGE_URL')) define('COPYRIGHTPAGE_URL',
763 'http://www.gnu.org/copyleft/gpl.html#SEC1');
764 if (!defined('AUTHORPAGE_TITLE')) define('AUTHORPAGE_TITLE',
765 "The PhpWiki Programming Team");
766 if (!defined('AUTHORPAGE_URL')) define('AUTHORPAGE_URL',
767 'http://phpwiki.sourceforge.net/phpwiki/ThePhpWikiProgrammingTeam');
770 /////////////////////////////////////////////////////////////////////
773 // URL options -- you can probably skip this section.
775 /////////////////////////////////////////////////////////////////////
776 /******************************************************************
778 * The following section contains settings which you can use to tailor
779 * the URLs which PhpWiki generates.
781 * Any of these parameters which are left undefined will be deduced
782 * automatically. You need only set them explicitly if the
783 * auto-detected values prove to be incorrect.
785 * In most cases the auto-detected values should work fine, so
786 * hopefully you don't need to mess with this section.
788 * In case of local overrides of short placeholders, which themselves
789 * include index.php, we check for most constants. See '/wiki'.
790 * We can override DATA_PATH and PHPWIKI_DIR to support multiple phpwiki
791 * versions (for development), but most likely other values like
792 * THEME, $LANG and $DbParams for a WikiFarm.
794 ******************************************************************/
797 * Canonical name and httpd port of the server on which this PhpWiki
800 //if (!defined('SERVER_NAME')) define('SERVER_NAME', 'some.host.com');
801 //define('SERVER_PORT', 80);
804 * Relative URL (from the server root) of the PhpWiki
807 //if (!defined('SCRIPT_NAME')) define('SCRIPT_NAME', '/some/where/index.php');
810 * URL of the PhpWiki install directory. (You only need to set this
811 * if you've moved index.php out of the install directory.) This can
812 * be either a relative URL (from the directory where the top-level
813 * PhpWiki script is) or an absolute one.
815 //if (!defined('DATA_PATH')) define('DATA_PATH', '/home/user/phpwiki');
818 * Path to the PhpWiki install directory. This is the local
819 * filesystem counterpart to DATA_PATH. (If you have to set
820 * DATA_PATH, your probably have to set this as well.) This can be
821 * either an absolute path, or a relative path interpreted from the
822 * directory where the top-level PhpWiki script (normally index.php)
825 //if (!defined('PHPWIKI_DIR')) define('PHPWIKI_DIR', 'C:/Apache/phpwiki');
826 //if (!defined('PHPWIKI_DIR')) define('PHPWIKI_DIR', '/home/user/public_html/phpwiki');
829 * PhpWiki will try to use short urls to pages, eg
830 * http://www.example.com/index.php/HomePage
831 * If you want to use urls like
832 * http://www.example.com/index.php?pagename=HomePage
833 * then define 'USE_PATH_INFO' as false by uncommenting the line below.
834 * NB: If you are using Apache >= 2.0.30, then you may need to to use
835 * the directive "AcceptPathInfo On" in your Apache configuration file
836 * (or in an appropriate <.htaccess> file) for the short urls to work:
837 * See http://httpd.apache.org/docs-2.0/mod/core.html#acceptpathinfo
839 * See also http://phpwiki.sourceforge.net/phpwiki/PrettyWiki for more ideas
840 * on prettifying your urls.
842 * Default: PhpWiki will try to divine whether use of PATH_INFO
843 * is supported in by your webserver/PHP configuration, and will
844 * use PATH_INFO if it thinks that is possible.
846 //if (!defined('USE_PATH_INFO')) define('USE_PATH_INFO', false);
849 * VIRTUAL_PATH is the canonical URL path under which your your wiki
850 * appears. Normally this is the same as dirname(SCRIPT_NAME), however
851 * using, e.g. apaches mod_actions (or mod_rewrite), you can make it
852 * something different.
854 * If you do this, you should set VIRTUAL_PATH here.
856 * E.g. your phpwiki might be installed at at /scripts/phpwiki/index.php,
857 * but * you've made it accessible through eg. /wiki/HomePage.
859 * One way to do this is to create a directory named 'wiki' in your
860 * server root. The directory contains only one file: an .htaccess
861 * file which reads something like:
863 * Action x-phpwiki-page /scripts/phpwiki/index.php
864 * SetHandler x-phpwiki-page
865 * DirectoryIndex /scripts/phpwiki/index.php
867 * In that case you should set VIRTUAL_PATH to '/wiki'.
869 * (VIRTUAL_PATH is only used if USE_PATH_INFO is true.)
871 //if (!defined('VIRTUAL_PATH')) define('VIRTUAL_PATH', '/SomeWiki');
873 /////////////////////////////////////////////////////////////////////
876 // Miscellaneous settings
878 /////////////////////////////////////////////////////////////////////
881 * Disable HTTP redirects.
883 * (You probably don't need to touch this.)
885 * PhpWiki uses HTTP redirects for some of it's functionality.
886 * (e.g. after saving changes, PhpWiki redirects your browser to
887 * view the page you just saved.)
889 * Some web service providers (notably free European Lycos) don't seem to
890 * allow these redirects. (On Lycos the result in an "Internal Server Error"
891 * report.) In that case you can set DISABLE_HTTP_REDIRECT to true.
892 * (In which case, PhpWiki will revert to sneakier tricks to try to
893 * redirect the browser...)
895 //if (!defined('DISABLE_HTTP_REDIRECT')) define ('DISABLE_HTTP_REDIRECT', true);
897 ////////////////////////////////////////////////////////////////
898 // Check if we were included by some other wiki version
899 // (getimg.php, en, de, wiki, ...) or not.
900 // If the server requested this index.php fire up the code by loading lib/main.php.
901 // Parallel wiki scripts can now simply include /index.php for the
902 // main configuration, extend or redefine some settings and
903 // load lib/main.php by themselves. See the file 'wiki'.
904 // This overcomes the IndexAsConfigProblem.
905 ////////////////////////////////////////////////////////////////
907 // Tested: Works with CGI also.
908 if (defined('VIRTUAL_PATH') and defined('USE_PATH_INFO')) {
909 if ($HTTP_SERVER_VARS['SCRIPT_NAME'] == VIRTUAL_PATH) {
910 include "lib/main.php";
912 elseif (defined('SCRIPT_NAME') and
913 ($HTTP_SERVER_VARS['SCRIPT_NAME'] == SCRIPT_NAME)) {
914 include "lib/main.php";
917 if (defined('SCRIPT_NAME') and
918 ($HTTP_SERVER_VARS['SCRIPT_NAME'] == SCRIPT_NAME)) {
919 include "lib/main.php";
920 } elseif (strstr($HTTP_SERVER_VARS['PHP_SELF'],'index.php')) {
921 include "lib/main.php";
925 include "lib/main.php";
927 // $Log: not supported by cvs2svn $
928 // Revision 1.125 2004/02/24 02:51:57 rurban
929 // release 1.3.8 ready
931 // Revision 1.124 2004/02/16 00:20:30 rurban
932 // new Japanses language
934 // Revision 1.123 2004/02/09 03:58:07 rurban
935 // for now default DB_SESSION to false
937 // * not existing perms will now query the parent, and not
938 // return the default perm
939 // * added pagePermissions func which returns the object per page
940 // * added getAccessDescription
942 // * added global ->prepare (not yet used) with smart user/pref/member table prefixing.
943 // * force init of authdbh in the 2 db classes
945 // * fixed session handling (not triple auth request anymore)
946 // * don't store cookie prefs with sessions
947 // stdlib: global obj2hash helper from _AuthInfo, also needed for PagePerm
949 // Revision 1.122 2004/02/07 14:20:18 rurban
950 // consistent mysql schema with index.php (userid)
952 // Revision 1.121 2004/02/07 10:41:25 rurban
953 // fixed auth from session (still double code but works)
955 // fixed DbPassUser upgrade and policy=old
958 // Revision 1.120 2004/02/03 09:45:39 rurban
959 // LDAP cleanup, start of new Pref classes
961 // Revision 1.119 2004/02/01 09:14:10 rurban
962 // Started with Group_Ldap (not yet ready)
963 // added new _AuthInfo plugin to help in auth problems (warning: may display passwords)
964 // fixed some configurator vars
965 // renamed LDAP_AUTH_SEARCH to LDAP_BASE_DN
966 // changed PHPWIKI_VERSION from 1.3.8a to 1.3.8pre
967 // USE_DB_SESSION defaults to true on SQL
968 // changed GROUP_METHOD definition to string, not constants
969 // changed sample user DBAuthParams from UPDATE to REPLACE to be able to
970 // create users. (Not to be used with external databases generally, but
971 // with the default internal user table)
973 // fixed the IndexAsConfigProblem logic. this was flawed:
974 // scripts which are the same virtual path defined their own lib/main call
975 // (hmm, have to test this better, phpwiki.sf.net/demo works again)
977 // Revision 1.118 2004/01/28 14:34:13 rurban
978 // session table takes the common prefix
979 // + various minor stuff
980 // reallow password changing
982 // Revision 1.117 2004/01/27 23:25:50 rurban
983 // added new tables to mysql schema
984 // fixed default DBAUthParam samples to match these
985 // added group constants (look terrible, I'd prefer strings instead of constants)
987 // Revision 1.116 2004/01/25 04:21:02 rurban
988 // WikiUserNew support (temp. ENABLE_USER_NEW constant)
990 // Revision 1.115 2003/12/22 04:58:11 carstenklapp
991 // Incremented release version.
993 // Revision 1.114 2003/12/05 16:00:42 carstenklapp
994 // ACK! gettext is not available at this point in index.php.
996 // Revision 1.113 2003/12/05 15:51:37 carstenklapp
997 // Added note that use of the configurator is depreciated.
999 // Enable localization/gettextification of $KeywordLinkRegexp. (Also, now
1000 // users not familiar with regex can more easily just edit the $keywords
1003 // Added four new constants to define author and copyright link rel~s
1004 // used in html head. This makes it easier to run multiple wikis off of
1007 // Eliminated RECENT_CHANGES constant for RSS auto discovery because it's
1008 // another step to watch out for when running a non-english wiki. Now
1009 // simply defined as _("RecentChanges") in head.tmpl itself. Non-standard
1010 // wikis where the RecentChanges page has been named to something else
1011 // will have to modify this in head.tmpl (along with all other places the
1012 // word RecentChanges appears in the code, something that already would
1013 // have had to be done on such a wiki anyway).
1015 // Added a little more info and instructions to flesh out:
1016 // DEBUG, WIKI_NAME, ADMIN_USER, $DisabledActions, $DBParams, CHARSET.
1018 // A few typos and spelling mistakes corrected, and some text rewrapped.
1020 // Revision 1.112 2003/11/17 15:49:21 carstenklapp
1021 // Updated version number to 1.3.7pre (beyond current release
1022 // 1.3.6). Disabled DEBUG output by default (hide DebugInfo, XHTML &
1023 // CSS validator buttons). Note the DebugInfo button remains visible
1024 // for the Admin, and can be accessed by anyone else by adding
1025 // "?action=DebugInfo" to the URL for the occasional use.
1027 // Revision 1.111 2003/03/18 21:40:04 dairiki
1028 // Copy Lawrence's memo on USE_PATH_INFO/AcceptPathInfo to configurator.php
1031 // Plus slight clarification of default (auto-detect) behavior.
1033 // Revision 1.110 2003/03/18 20:51:10 lakka
1034 // Revised comments on use of USE_PATH_INFO with Apache 2
1036 // Revision 1.109 2003/03/17 21:24:50 dairiki
1037 // Fix security bugs in the RawHtml plugin.
1039 // Change the default configuration to allow use of plugin, since
1040 // I believe the plugin is now safe for general use. (Raw HTML will only
1041 // work on locked pages.)
1043 // Revision 1.108 2003/03/07 22:47:01 dairiki
1044 // A few more if(!defined(...))'s
1046 // Revision 1.107 2003/03/07 20:51:54 dairiki
1047 // New feature: Automatic extraction of keywords (for the meta keywords tag)
1048 // from Category* and Topic* links on each page.
1050 // Revision 1.106 2003/03/07 02:48:23 dairiki
1051 // Add option to prevent HTTP redirect.
1053 // Revision 1.105 2003/03/04 02:08:08 dairiki
1054 // Fix and document the WIKIDB_NOCACHE_MARKUP config define.
1056 // Revision 1.104 2003/02/26 02:55:52 dairiki
1057 // New config settings in index.php to control cache control strictness.
1059 // Revision 1.103 2003/02/22 19:43:50 dairiki
1060 // Fix comment regarding connecting to SQL server over a unix socket.
1062 // Revision 1.102 2003/02/22 18:53:38 dairiki
1063 // Renamed method Request::compress_output to Request::buffer_output.
1065 // Added config option to disable compression.
1067 // Revision 1.101 2003/02/21 19:29:30 dairiki
1068 // Update PHPWIKI_VERSION to 1.3.5pre.
1070 // Revision 1.100 2003/01/04 03:36:58 wainstead
1071 // Added 'file' as a database type alongside 'dbm'; added cvs log tag
1074 // (c-file-style: "gnu")
1078 // c-basic-offset: 4
1079 // c-hanging-comment-ender-p: nil
1080 // indent-tabs-mode: nil