4 // IMPORTANT NOTE: Use of the ***configurator.php*** to generate an
5 // index.php is depreciated, because it is out of date and a new
6 // configuration system is in the works (see the config directory, not
7 // finished yet though). DO compare or diff the configurator's output
8 // against this file if you feel you must use it to generate an
12 Copyright 1999, 2000, 2001, 2002 $ThePhpWikiProgrammingTeam = array(
13 "Steve Wainstead", "Clifford A. Adams", "Lawrence Akka",
14 "Scott R. Anderson", "Jon Åslund", "Neil Brown", "Jeff Dairiki",
15 "Stéphane Gourichon", "Jan Hidders", "Arno Hollosi", "John Jorgensen",
16 "Antti Kaihola", "Jeremie Kass", "Carsten Klapp", "Marco Milanesi",
17 "Grant Morgan", "Jan Nieuwenhuizen", "Aredridel Niothke",
18 "Pablo Roca Rozas", "Sandino Araico Sánchez", "Joel Uckelman",
19 "Reini Urban", "Tim Voght", "Jochen Kalmbach");
21 This file is part of PhpWiki.
23 PhpWiki is free software; you can redistribute it and/or modify
24 it under the terms of the GNU General Public License as published by
25 the Free Software Foundation; either version 2 of the License, or
26 (at your option) any later version.
28 PhpWiki is distributed in the hope that it will be useful,
29 but WITHOUT ANY WARRANTY; without even the implied warranty of
30 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
31 GNU General Public License for more details.
33 You should have received a copy of the GNU General Public License
34 along with PhpWiki; if not, write to the Free Software
35 Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA
39 /////////////////////////////////////////////////////////////////////
41 This is the starting file for PhpWiki. All this file does is set
42 configuration options, and at the end of the file it includes() the
43 file lib/main.php, where the real action begins.
45 This file is divided into seven parts: Parts Zero, One, Two, Three,
46 Four, Five and Six. Each one has different configuration settings you can
47 change; in all cases the default should work on your system,
48 however, we recommend you tailor things to your particular setting.
51 /////////////////////////////////////////////////////////////////////
52 // Part Zero: If PHP needs help in finding where you installed the
53 // rest of the PhpWiki code, you can set the include_path here.
55 // Define PHP's include path so that it can find the PHP source code
58 // You shouldn't need to do this unless you've moved index.php out
59 // of the PhpWiki install directory.
61 // Note that on Windows-based servers, you should use ; rather than :
62 // as the path separator.
63 //ini_set('include_path', '.:/usr/local/httpd/phpwiki');
65 // Set DEBUG to 1 to view the XHTML and CSS validator icons, page
66 // processing timer, and possibly other debugging messages at the
67 // bottom of each page.
68 if (!defined('DEBUG')) define ('DEBUG', 0);
69 define('ENABLE_USER_NEW',true); // this will disappear with 1.4.0
71 /////////////////////////////////////////////////////////////////////
72 // Part Null: Don't touch this!
74 define ('PHPWIKI_VERSION', '1.3.8');
75 require "lib/prepend.php";
76 rcs_id('$Id: index.php,v 1.130 2004-03-09 17:16:43 rurban Exp $');
78 /////////////////////////////////////////////////////////////////////
81 // Authentication and security settings. See Part Three for more.
83 /////////////////////////////////////////////////////////////////////
85 // The name of your wiki.
87 // This is used to generate a keywords meta tag in the HTML templates,
88 // in bookmark titles for any bookmarks made to pages in your wiki,
89 // and during RSS generation for the <title> of the RSS channel.
91 // To use your own logo and signature files, name them PhpWikiLogo.png
92 // and PhpWikiSignature.png and put them into themes/default/images
93 // (substituting "PhpWiki" in the filename with the name you define
96 // It is recommended this be a relatively short WikiWord like the
97 // InterWiki monikers found in the InterWikiMap. (For examples, see
98 // lib/interwiki.map).
99 if (!defined('WIKI_NAME')) define('WIKI_NAME', 'PhpWiki');
101 // Visitor Hostname Lookup
103 // If set, reverse dns lookups will be performed to attempt to convert
104 // the user's IP number into a host name, in the case where the http
105 // server does not do this.
106 if (!defined('ENABLE_REVERSE_DNS')) define('ENABLE_REVERSE_DNS', true);
108 // Username and password of administrator.
110 // Set these to your preferences. For heaven's sake pick a good
111 // password and use the passencrypt.php tool. See:
112 // http://wolfram.org/writing/howto/password.html
114 // Log into the wiki with the admin user and password to lock, unlock,
115 // or remove pages and to perform other PhpWikiAdministration
116 // functions. On all other occasions you should simply log in with
117 // your regular WikiName.
118 if (!defined('ADMIN_USER')) define('ADMIN_USER', "");
119 if (!defined('ADMIN_PASSWD')) define('ADMIN_PASSWD', "");
120 // It is recommended to use the passencrypt.php utility to encode the
121 // admin password, in the unlikely event someone gains ftp or ssh
122 // access to the server and directory containing phpwiki. Once you
123 // have pasted the encrypted password into ADMIN_PASSWD, uncomment
125 //if (!defined('ENCRYPTED_PASSWD')) define('ENCRYPTED_PASSWD', true);
127 // Private ZIP Dumps of All Wiki Pages
129 // If true, only the admin user can make zip dumps. Otherwise anyone
130 // may download all wiki pages as a single zip archive.
131 if (!defined('ZIPDUMP_AUTH')) define('ZIPDUMP_AUTH', false);
133 // Define to false to disable the RawHtml plugin.
134 //if (!defined('ENABLE_RAW_HTML')) define('ENABLE_RAW_HTML', false);
136 // If you define this to true, (MIME-type) page-dumps (either zip dumps,
137 // or "dumps to directory" will be encoded using the quoted-printable
138 // encoding. If you're actually thinking of mailing the raw page dumps,
139 // then this might be useful, since (among other things,) it ensures
140 // that all lines in the message body are under 80 characters in length.
142 // Also, setting this will cause a few additional mail headers
143 // to be generated, so that the resulting dumps are valid
144 // RFC 2822 e-mail messages.
146 // Probably you can just leave this set to false, in which case you get
147 // raw ('binary' content-encoding) page dumps.
148 if (!defined('STRICT_MAILABLE_PAGEDUMPS')) define('STRICT_MAILABLE_PAGEDUMPS', false);
150 // Here you can change the filename suffix used for XHTML page dumps.
151 // If you don't want any suffix just comment this out.
152 $HTML_DUMP_SUFFIX = '.html';
154 // The maximum file upload size.
155 if (!defined('MAX_UPLOAD_SIZE')) define('MAX_UPLOAD_SIZE', 16 * 1024 * 1024);
157 // If the last edit is older than MINOR_EDIT_TIMEOUT seconds, the
158 // default state for the "minor edit" checkbox on the edit page form
160 if (!defined('MINOR_EDIT_TIMEOUT')) define("MINOR_EDIT_TIMEOUT", 7 * 24 * 3600);
162 // Actions listed in this array will not be allowed. The complete list
163 // of actions can be found in lib/main.php within the function
164 // getActionDescription.
165 //$DisabledActions = array('dumpserial', 'loadfile');
167 // PhpWiki can generate an access_log (in "NCSA combined log" format)
168 // for you. If you want one, define this to the name of the log
169 // file. The server must have write access to the directory specified.
170 //define('ACCESS_LOG', '/var/tmp/wiki_access_log');
173 // By default PhpWiki will try to have PHP compress its output
174 // before sending it to the browser (if you have a recent enough
175 // version of PHP and the browser supports it.)
176 // Define COMPRESS_OUTPUT to false to prevent output compression.
177 // Define COMPRESS_OUTPUT to true to force output compression,
178 // even if we think your version of PHP does this in a buggy
180 // Leave it undefined to leave the choice up to PhpWiki.
181 //define('COMPRESS_OUTPUT', false);
184 // HTTP CACHE_CONTROL
186 // This controls how PhpWiki sets the HTTP cache control
187 // headers (Expires: and Cache-Control:)
191 // NONE: This is roughly the old (pre 1.3.4) behavior. PhpWiki will
192 // instruct proxies and browsers never to cache PhpWiki output.
194 // STRICT: Cached pages will be invalidated whenever the database global
195 // timestamp changes. This should behave just like NONE (modulo
196 // bugs in PhpWiki and your proxies and browsers), except that
197 // things will be slightly more efficient.
199 // LOOSE: Cached pages will be invalidated whenever they are edited,
200 // or, if the pages include plugins, when the plugin output could
201 // concievably have changed.
203 // Behavior should be much like STRICT, except that sometimes
204 // wikilinks will show up as undefined (with the question mark)
205 // when in fact they refer to (recently) created pages.
206 // (Hitting your browsers reload or perhaps shift-reload button
207 // should fix the problem.)
209 // ALLOW_STALE: Proxies and browsers will be allowed to used stale pages.
210 // (The timeout for stale pages is controlled by CACHE_CONTROL_MAX_AGE.)
212 // This setting will result in quirky behavior. When you edit a
213 // page your changes may not show up until you shift-reload the
216 // This setting is generally not advisable, however it may be useful
217 // in certain cases (e.g. if your wiki gets lots of page views,
218 // and few edits by knowledgable people who won't freak over the quirks.)
220 // The default is currently LOOSE.
222 if (!defined('CACHE_CONTROL')) define('CACHE_CONTROL', 'LOOSE');
224 // Maximum page staleness, in seconds.
226 // This only has effect if CACHE_CONTROL is set to ALLOW_STALE.
227 if (!defined('CACHE_CONTROL_MAX_AGE')) define('CACHE_CONTROL_MAX_AGE', 600);
232 // PhpWiki normally caches a preparsed version (i.e. mostly
233 // converted to HTML) of the most recent version of each page.
234 // (Parsing the wiki-markup takes a fair amount of CPU.)
236 // Define WIKIDB_NOCACHE_MARKUP to true to disable the
237 // caching of marked-up page content.
239 // Note that you can also disable markup caching on a per-page
240 // temporary basis by addinging a query arg of '?nocache=1'
241 // to the URL to the page. (Use '?nocache=purge' to completely
242 // discard the cached version of the page.)
244 // You can also purge the cached markup globally by using the
245 // "Purge Markup Cache" button on the PhpWikiAdministration page.
246 //if (!defined('WIKIDB_NOCACHE_MARKUP')) define ('WIKIDB_NOCACHE_MARKUP', true);
248 /////////////////////////////////////////////////////////////////////
251 // Database Selection
253 /////////////////////////////////////////////////////////////////////
256 // This array holds the parameters which select the database to use.
258 // Not all of these parameters are used by any particular DB backend.
261 // Select the database type:
263 // Choose ADODB or SQL to use an SQL database with ADODB or PEAR
264 // respectively (both ADODB and PEAR libraries are already included
266 // Choose dba to use one of the standard UNIX dbm libraries.
267 // Choose file to use a flat file database.
268 //'dbtype' => 'ADODB',
271 //'dbtype' => 'file',
274 // For SQL based backends, specify the database as a DSN
275 // The most general form of a DSN looks like:
277 // phptype(dbsyntax)://username:password@protocol+hostspec/database
279 // For a MySQL database, the following should work:
281 // mysql://user:password@host/databasename
283 // To connect over a unix socket, use something like
285 // mysql://user:password@unix(/path/to/socket)/databasename
287 //'dsn' => 'mysql://guest@unix(/var/lib/mysql/mysql.sock)/test',
288 //'dsn' => 'mysql://guest@localhost/test',
289 //'dsn' => 'pgsql://localhost/test',
291 // The common table prefix (see below) is added if defined
292 'db_session_table' => 'session',
294 // Used by all DB types:
296 // prefix for filenames or table names
298 * currently you MUST EDIT THE SQL file too (in the schemas/
299 * directory because we aren't doing on the fly sql generation
300 * during the installation.
302 //'prefix' => 'phpwiki_',
304 // Used by either 'dba' or 'file' and must be writable by the web
305 // server If you leave this as '/tmp' you will probably lose all
306 // your files eventually
307 'directory' => "/tmp",
309 // choose the type of DB database file to use; most GNU systems have gdbm
310 'dba_handler' => 'gdbm', // Either of 'gdbm' or 'db2' work great for me.
311 //'dba_handler' => 'db2',
312 //'dba_handler' => 'db3', // Works fine on Windows, but not on every linux.
313 //'dba_handler' => 'dbm', // On sf.net redhat there's dbm and gdbm.
314 // dbm suffers from limits on size of data items?
320 /////////////////////////////////////////////////////////////////////
321 // PHP Session settings:
324 // Only for $DBParams['dbtype'] => 'SQL'. See schemas/mysql.sql or
326 // $DBParams['db_session_table'] must be defined.
327 if (!defined('USE_DB_SESSION') and
328 $DBParams['dbtype'] == 'SQL' and
329 !empty($DBParams['db_session_table']))
330 define('USE_DB_SESSION',true);
332 // If your php was compiled with --enable-trans-sid it tries to
333 // add a PHPSESSID query argument to all URL strings when cookie
334 // support isn't detected in the client browser. For reasons
335 // which aren't entirely clear (PHP bug) this screws up the URLs
336 // generated by PhpWiki. Therefore, transparent session ids
337 // should be disabled. This next line does that.
339 // (At the present time, you will not be able to log-in to PhpWiki,
340 // unless your browser supports cookies.)
341 @ini_set('session.use_trans_sid', 0);
343 // The login code now uses PHP's session support. Usually, the default
344 // configuration of PHP is to store the session state information in
345 // /tmp. That probably will work fine, but fails e.g. on clustered
346 // servers where each server has their own distinct /tmp (this is the
347 // case on SourceForge's project web server.) You can specify an
348 // alternate directory in which to store state information like so
349 // (whatever user your httpd runs as must have read/write permission
350 // in this directory):
352 //ini_set('session.save_path', 'some_other_directory');
354 /////////////////////////////////////////////////////////////////////
356 // The next section controls how many old revisions of each page are
357 // kept in the database.
359 // There are two basic classes of revisions: major and minor. Which
360 // class a revision belongs in is determined by whether the author
361 // checked the "this is a minor revision" checkbox when they saved the
364 // There is, additionally, a third class of revisions: author
365 // revisions. The most recent non-mergable revision from each distinct
366 // author is and author revision.
368 // The expiry parameters for each of those three classes of revisions
369 // can be adjusted seperately. For each class there are five
370 // parameters (usually, only two or three of the five are actually
371 // set) which control how long those revisions are kept in the
374 // max_keep: If set, this specifies an absolute maximum for the
375 // number of archived revisions of that class. This is
376 // meant to be used as a safety cap when a non-zero
377 // min_age is specified. It should be set relatively high,
378 // and it's purpose is to prevent malicious or accidental
379 // database overflow due to someone causing an
380 // unreasonable number of edits in a short period of time.
382 // min_age: Revisions younger than this (based upon the supplanted
383 // date) will be kept unless max_keep is exceeded. The age
384 // should be specified in days. It should be a
385 // non-negative, real number,
387 // min_keep: At least this many revisions will be kept.
389 // keep: No more than this many revisions will be kept.
391 // max_age: No revision older than this age will be kept.
393 // Supplanted date: Revisions are timestamped at the instant that they
394 // cease being the current revision. Revision age is computed using
395 // this timestamp, not the edit time of the page.
397 // Merging: When a minor revision is deleted, if the preceding
398 // revision is by the same author, the minor revision is merged with
399 // the preceding revision before it is deleted. Essentially: this
400 // replaces the content (and supplanted timestamp) of the previous
401 // revision with the content after the merged minor edit, the rest of
402 // the page metadata for the preceding version (summary, mtime, ...)
405 // Keep up to 8 major edits, but keep them no longer than a month.
406 $ExpireParams['major'] = array('max_age' => 32,
408 // Keep up to 4 minor edits, but keep them no longer than a week.
409 $ExpireParams['minor'] = array('max_age' => 7,
411 // Keep the latest contributions of the last 8 authors up to a year.
412 // Additionally, (in the case of a particularly active page) try to
413 // keep the latest contributions of all authors in the last week (even
414 // if there are more than eight of them,) but in no case keep more
415 // than twenty unique author revisions.
416 $ExpireParams['author'] = array('max_age' => 365,
421 /////////////////////////////////////////////////////////////////////
423 // Part Three: (optional)
424 // User Authentication
426 /////////////////////////////////////////////////////////////////////
428 // New user authentification configuration:
429 // We support three basic authentification methods and a stacked array
430 // of advanced auth methods to get and check the passwords:
432 // ALLOW_ANON_USER default true
433 // ALLOW_ANON_EDIT default true
434 // ALLOW_BOGO_LOGIN default true
435 // ALLOW_USER_PASSWORDS default true
437 // allow anon users to view pages! (not edit)
438 if (!defined('ALLOW_ANON_USER')) define('ALLOW_ANON_USER', true);
439 // allow anon users to edit pages
440 if (!defined('ALLOW_ANON_EDIT')) define('ALLOW_ANON_EDIT', true);
442 // This was replaced by ALLOW_ANON_EDIT
443 if (!defined('REQUIRE_SIGNIN_BEFORE_EDIT')) define('REQUIRE_SIGNIN_BEFORE_EDIT', ! ALLOW_ANON_EDIT);
445 // If ALLOW_BOGO_LOGIN is true, users are allowed to login (with
446 // any/no password) using any userid which:
447 // 1) is not the ADMIN_USER, and
448 // 2) is a valid WikiWord (matches $WikiNameRegexp.)
449 // If true, users may be created by themselves. Otherwise we need seperate auth.
450 // If such a user will create a so called HomePage with his userid, he will
451 // be able to store his preferences and password there.
452 if (!defined('ALLOW_BOGO_LOGIN')) define('ALLOW_BOGO_LOGIN', true);
454 // True User Authentification:
455 // To require user passwords:
456 // ALLOW_ANON_USER = false
457 // ALLOW_ANON_EDIT = false
458 // ALLOW_BOGO_LOGIN = false,
459 // ALLOW_USER_PASSWORDS = true.
460 // Otherwise any anon or bogo user might login without any or a wrong password.
461 if (!defined('ALLOW_USER_PASSWORDS')) define('ALLOW_USER_PASSWORDS', true);
463 // Below we define which methods exists and in which order
465 // BogoLogin: WikiWord enough, but with PASSWORD_LENGTH_MINIMUM
466 // PersonalPage: Store passwords in the users homepage metadata (simple)
467 // Db: Use $DBAuthParams[] (see below) with the PearDB or
469 // LDAP: Authenticate against LDAP_AUTH_HOST with LDAP_BASE_DN
470 // IMAP: Authenticate against IMAP_AUTH_HOST (email account)
471 // POP3: Authenticate against POP3_AUTH_HOST (email account)
472 // File: Store username:crypted-passwords in .htaccess like files.
473 // Use Apache's htpasswd to manage this file.
474 // HttpAuth: Use the protection by the webserver (.htaccess) or
477 if (defined('ALLOW_USER_PASSWORDS')) {
479 // use the following order of authentification methods:
480 if (!isset($USER_AUTH_ORDER))
486 // "LDAP", // define LDAP_AUTH_HOST and LDAP_BASE_DN
487 // "IMAP", // define IMAP_AUTH_HOST
488 // "POP3", // define POP3_AUTH_HOST
489 // "File", // define AUTH_USER_FILE and opt. AUTH_USER_FILE_STORABLE
493 if (!defined('PASSWORD_LENGTH_MINIMUM')) define('PASSWORD_LENGTH_MINIMUM', 2);
495 if (!defined('USER_AUTH_POLICY'))
496 //We support the following auth policies:
497 // first-only: use only the first method in USER_AUTH_ORDER
498 // old: ignore USER_AUTH_ORDER and try to use all available
499 // methods as in the previous PhpWiki releases (slow)
500 // strict: check if the user exists for all methods:
501 // on the first existing user, try the password.
502 // dont try the other methods on failure then
503 // stacked: check the given user - password combination for all methods
504 // and return true on the first success.
506 //define('USER_AUTH_POLICY','first-only');
507 define('USER_AUTH_POLICY','old');
508 //define('USER_AUTH_POLICY','strict');
509 //define('USER_AUTH_POLICY','stacked');
513 if (!defined('LDAP_AUTH_HOST')) define('LDAP_AUTH_HOST', "ldap://localhost:389");
514 // or "ldaps://server:636"
515 // The organizational or domain BASE DN: e.g. "dc=mydomain,dc=com" to restrict the search
516 // Note: ou=Users and ou=Groups are used for GroupLdap Membership
517 if (!defined('LDAP_BASE_DN')) define('LDAP_BASE_DN', "ou=Users,o=Development,dc=mycompany.com");
518 // LDAP Auth Optional:
519 // Some LDAP servers disallow anonymous binds, and need some more options,
520 // such as the Windows Active Directory Server:
521 // $LDAP_SET_OPTION = array('LDAP_OPT_PROTOCOL_VERSION' => 3,
522 // 'LDAP_OPT_REFERRALS' => 0);
523 // define(LDAP_AUTH_USER, "CN=ldapuser,CN=Users,DC=uai,DC=int");
524 // define(LDAP_AUTH_PASSWORD, '');
525 // define(LDAP_SEARCH_FIELD, 'sAMAccountName'); // might be different from uid,
526 // here's its a Windows/Samba account
529 // check userid/passwords from a imap server, defaults to localhost
530 if (!defined('IMAP_AUTH_HOST')) define('IMAP_AUTH_HOST', 'localhost:143/imap/notls');
531 // Some IMAP_AUTH_HOST samples:
532 // "localhost", "localhost:143/imap/notls",
533 // "localhost:993/imap/ssl/novalidate-cert" (SuSE refuses non-SSL conections)
535 //if (!defined('POP3_AUTH_HOST')) define('POP3_AUTH_HOST', 'localhost');
536 //if (!defined('POP3_AUTH_PORT')) define('POP3_AUTH_HOST', '110');
539 //if (!defined('AUTH_USER_FILE')) define('AUTH_USER_FILE', '/etc/shadow'); // or '/etc/httpd/.htpasswd'
540 // set this to true if the user may change his password into this file.
541 //if (!defined('AUTH_USER_FILE_STORABLE')) define('AUTH_USER_FILE_STORABLE',false);
544 //if (!defined('GROUP_METHOD')) define('GROUP_METHOD', "NONE");
545 if (!defined('GROUP_METHOD')) define('GROUP_METHOD', "WIKIPAGE");
546 //if (!defined('GROUP_METHOD')) define('GROUP_METHOD', "DB");
547 //if (!defined('GROUP_METHOD')) define('GROUP_METHOD', "FILE");
548 //if (!defined('GROUP_METHOD')) define('GROUP_METHOD', "LDAP");
549 //if (!defined('AUTH_GROUP_FILE')) define('AUTH_GROUP_FILE', '/etc/groups'); // or '/etc/httpd/.htgroup'
551 // Seperate DB User Authentication.
552 // Can be external, like radius, phpnuke, courier authmysql,
553 // apache auth_mysql or something else.
554 // The default is to store the data as metadata in the users PersonalPage.
555 // The most likely dsn option is the same dsn as the wikipages.
557 // Note: Order of variables important!
558 $DBAuthParams = array (
559 // if not defined use $DBParams['dsn'] i.e. the phpwiki database
560 //'auth_dsn' => 'mysql://localhost/phpwiki',
563 // plaintext passwords:
564 // 'auth_check' => 'SELECT IF(passwd="$password",1,0) as ok FROM user WHERE userid="$userid"',
565 // database (md5) passwords (more secure):
566 'auth_check' => 'SELECT IF(passwd=PASSWORD("$password"),1,0) as ok FROM user WHERE userid="$userid"',
568 //'auth_check' => 'SELECT password as password FROM user WHERE userid="$userid"',
569 // this is only needed with auth_crypt_method plain:
570 'auth_user_exists' => 'SELECT userid FROM user WHERE userid="$userid"',
572 //'auth_crypt_method' => 'crypt', // 'crypt' (unix)
573 'auth_crypt_method' => 'plain', // plain or secure mysql PASSWORD()
575 // If 'auth_update' is not defined but 'auth_check' is defined, the user cannot
576 // change his password.
577 // $password is processed by the 'auth_crypt_method'
578 //'auth_update' => 'UPDATE user SET passwd="$password" WHERE userid="$userid"',
579 // for mysql md5 use 'auth_crypt_method' => 'plain'
580 'auth_update' => 'UPDATE user SET passwd=PASSWORD("$password") WHERE userid="$userid"',
582 // Let a user create himself. Generally in external databases not wanted.
583 //'auth_create' => 'INSERT INTO user SET passwd=PASSWORD("$password"),userid="$userid"',
585 // USER => PREFERENCES
586 // This can be optionally defined in the phpwiki db.
587 // The default is to store it the users homepage.
588 // If you choose the user table, only registered user get their prefs from the DB,
589 // self-created users not. Better use the special pref table.
590 //'pref_select' => 'SELECT prefs FROM user WHERE userid="$userid"',
591 'pref_select' => 'SELECT prefs FROM pref WHERE userid="$userid"',
592 //Don't use replace with user or all other fields here get erased! (passwords e.g.)
593 //'pref_update' => 'UPDATE user SET prefs="$pref_blob" WHERE userid="$userid"',
594 // The special prefs table is safe to erase. All users can store their prefs here.
595 'pref_update' => 'REPLACE INTO pref SET prefs="$pref_blob",userid="$userid"',
598 // DB methods for lib/WikiGroup.php, see also AUTH_GROUP_FILE above.
599 // You can define 1:n or n:m user<=>group relations, as you wish.
600 // Sample configurations
601 // only one group per user (1:n):
602 //'is_member' => 'SELECT user FROM user WHERE user="$userid" AND group="$groupname"',
603 //'group_members' => 'SELECT user FROM user WHERE group="$groupname"',
604 //'user_groups' => 'SELECT group FROM user WHERE user="$userid"',
605 // or multiple groups per user (n:m):
606 'is_member' => 'SELECT userid FROM member WHERE userid="$userid" AND groupname="$groupname"',
607 'group_members' => 'SELECT DISTINCT userid FROM member WHERE groupname="$groupname"',
608 'user_groups' => 'SELECT groupname FROM member WHERE userid="$userid"',
613 // Old settings, only needed for ENABLE_USER_NEW = false
615 // The wiki can be protected by HTTP Auth. Use the username and password
616 // from there, but this is not sufficient. Try the other methods also.
617 if (!defined('ALLOW_HTTP_AUTH_LOGIN')) define('ALLOW_HTTP_AUTH_LOGIN', false);
618 // If ALLOW_USER_LOGIN is true, any defined internal and external
619 // authentication method is tried. If not, we don't care about
620 // passwords, but listen to the next two constants. Note that external
621 // authentication is not supported at this time, you will likely have
622 // to patch code yourself to get PhpWiki to recognise userids and
623 // passwords from an external source.
624 if (!defined('ALLOW_USER_LOGIN')) define('ALLOW_USER_LOGIN', false);
625 // also only if ENABLE_USER_NEW = false:
626 //if (!defined('ALLOW_LDAP_LOGIN')) define('ALLOW_LDAP_LOGIN', true and function_exists('ldap_connect'));
627 //if (!defined('ALLOW_IMAP_LOGIN')) define('ALLOW_IMAP_LOGIN', true and function_exists('imap_open'));
629 // A interim page which gets displayed on every edit attempt
630 //if (!defined('EDITING_POLICY')) define('EDITING_POLICY', "EditingPolicy");
633 /////////////////////////////////////////////////////////////////////
636 // Page appearance and layout
638 /////////////////////////////////////////////////////////////////////
642 * Most of the page appearance is controlled by files in the theme
645 * There are a number of pre-defined themes shipped with PhpWiki.
646 * Or you may create your own (e.g. by copying and then modifying one of
651 if (!defined('THEME')) {
652 define('THEME', 'default');
653 //define('THEME', 'Hawaiian');
654 //define('THEME', 'MacOSX');
655 //define('THEME', 'Portland');
656 //define('THEME', 'Sidebar');
657 //define('THEME', 'SpaceWiki');
660 // Select a valid charset name to be inserted into the xml/html pages,
661 // and to reference links to the stylesheets (css). For more info see:
662 // <http://www.iana.org/assignments/character-sets>. Note that PhpWiki
663 // has been extensively tested only with the latin1 (iso-8859-1)
666 // If you change the default from iso-8859-1 PhpWiki may not work
667 // properly and will require code modifications, at the very least you
668 // will have to convert the files in pgsrc or locale/xx/pgsrc to
671 // Character sets similar to iso-8859-1 may work with little or no
672 // modification depending on your setup. The database must also
673 // support the same charset, and of course the same is true for the
674 // web browser. (Some work is in progress hopefully to allow more
675 // flexibility in this area in the future).
676 if (!defined('CHARSET')) define("CHARSET", "iso-8859-1");
678 // Select your language/locale - default language is "en" for English.
679 // Other languages available:
680 // English "en" (English - HomePage)
681 // Dutch "nl" (Nederlands - ThuisPagina)
682 // Spanish "es" (Español - PáginaPrincipal)
683 // French "fr" (Français - Accueil)
684 // German "de" (Deutsch - StartSeite)
685 // Swedish "sv" (Svenska - Framsida)
686 // Italian "it" (Italiano - PaginaPrincipale)
687 // Japanese "ja" (Japanese - ¥Û¡¼¥à¥Ú¡¼¥¸)
689 // If you set DEFAULT_LANGUAGE to the empty string, your system's
690 // default language (as determined by the applicable environment
691 // variables) will be used.
693 if (!defined('DEFAULT_LANGUAGE')) define('DEFAULT_LANGUAGE', 'en');
695 /* WIKI_PGSRC -- specifies the source for the initial page contents of
696 * the Wiki. The setting of WIKI_PGSRC only has effect when the wiki is
697 * accessed for the first time (or after clearing the database.)
698 * WIKI_PGSRC can either name a directory or a zip file. In either case
699 * WIKI_PGSRC is scanned for files -- one file per page.
701 if (!defined('WIKI_PGSRC')) define('WIKI_PGSRC', "pgsrc"); // Default (old) behavior.
702 //define('WIKI_PGSRC', 'wiki.zip'); // New style.
703 //define('WIKI_PGSRC', '../../../Logs/Hamwiki/hamwiki-20010830.zip'); // New style.
706 * DEFAULT_WIKI_PGSRC is only used when the language is *not* the
707 * default (English) and when reading from a directory: in that case
708 * some English pages are inserted into the wiki as well.
709 * DEFAULT_WIKI_PGSRC defines where the English pages reside.
711 // FIXME: is this really needed? Can't we just copy these pages into
712 // the localized pgsrc?
713 define('DEFAULT_WIKI_PGSRC', "pgsrc");
714 // These are the pages which will get loaded from DEFAULT_WIKI_PGSRC.
715 $GenericPages = array("ReleaseNotes", "SteveWainstead", "TestPage");
717 /////////////////////////////////////////////////////////////////////
722 /////////////////////////////////////////////////////////////////////
724 // allowed protocols for links - be careful not to allow "javascript:"
725 // URL of these types will be automatically linked.
726 // within a named link [name|uri] one more protocol is defined: phpwiki
727 $AllowedProtocols = "http|https|mailto|ftp|news|nntp|ssh|gopher";
729 // URLs ending with the following extension should be inlined as images
730 $InlineImages = "png|jpg|gif";
732 // Perl regexp for WikiNames ("bumpy words")
733 // (?<!..) & (?!...) used instead of '\b' because \b matches '_' as well
734 $WikiNameRegexp = "(?<![[:alnum:]])(?:[[:upper:]][[:lower:]]+){2,}(?![[:alnum:]])";
736 // Defaults to '/', but '.' was also used.
737 if (!defined('SUBPAGE_SEPARATOR')) define('SUBPAGE_SEPARATOR', '/');
739 // InterWiki linking -- wiki-style links to other wikis on the web
741 // The map will be taken from a page name InterWikiMap.
742 // If that page is not found (or is not locked), or map
743 // data can not be found in it, then the file specified
744 // by INTERWIKI_MAP_FILE (if any) will be used.
745 define('INTERWIKI_MAP_FILE', "lib/interwiki.map");
747 // Display a warning if the internal lib/interwiki.map is used, and
748 // not the public InterWikiMap page. This file is not readable from outside.
749 //define('WARN_NONPUBLIC_INTERWIKIMAP', false);
751 // Regexp used for automatic keyword extraction.
753 // Any links on a page to pages whose names match this regexp will
754 // be used keywords in the keywords meta tag. (This is an aid to
755 // classification by search engines.) The value of the match is
756 // used as the keyword.
758 // The default behavior is to match Category* and Topic* links.
759 $keywords = array("Category", "Topic");
760 $KeywordLinkRegexp = '(?<=^'. join('|^', $keywords) . ')[[:upper:]].*$';
762 // Author and Copyright Site Navigation Links
764 // These will be inserted as <link rel> tags in the html header of
765 // every page, for search engines and for browsers like Mozilla which
766 // take advantage of link rel site navigation.
768 // If you have your own copyright and contact information pages change
769 // these as appropriate.
770 if (!defined('COPYRIGHTPAGE_TITLE')) define('COPYRIGHTPAGE_TITLE',
771 "GNU General Public License");
772 if (!defined('COPYRIGHTPAGE_URL')) define('COPYRIGHTPAGE_URL',
773 'http://www.gnu.org/copyleft/gpl.html#SEC1');
774 if (!defined('AUTHORPAGE_TITLE')) define('AUTHORPAGE_TITLE',
775 "The PhpWiki Programming Team");
776 if (!defined('AUTHORPAGE_URL')) define('AUTHORPAGE_URL',
777 'http://phpwiki.sourceforge.net/phpwiki/ThePhpWikiProgrammingTeam');
780 /////////////////////////////////////////////////////////////////////
783 // URL options -- you can probably skip this section.
785 /////////////////////////////////////////////////////////////////////
786 /******************************************************************
788 * The following section contains settings which you can use to tailor
789 * the URLs which PhpWiki generates.
791 * Any of these parameters which are left undefined will be deduced
792 * automatically. You need only set them explicitly if the
793 * auto-detected values prove to be incorrect.
795 * In most cases the auto-detected values should work fine, so
796 * hopefully you don't need to mess with this section.
798 * In case of local overrides of short placeholders, which themselves
799 * include index.php, we check for most constants. See '/wiki'.
800 * We can override DATA_PATH and PHPWIKI_DIR to support multiple phpwiki
801 * versions (for development), but most likely other values like
802 * THEME, $LANG and $DbParams for a WikiFarm.
804 ******************************************************************/
807 * Canonical name and httpd port of the server on which this PhpWiki
810 //if (!defined('SERVER_NAME')) define('SERVER_NAME', 'some.host.com');
811 //define('SERVER_PORT', 80);
814 * Relative URL (from the server root) of the PhpWiki
817 //if (!defined('SCRIPT_NAME')) define('SCRIPT_NAME', '/some/where/index.php');
820 * URL of the PhpWiki install directory. (You only need to set this
821 * if you've moved index.php out of the install directory.) This can
822 * be either a relative URL (from the directory where the top-level
823 * PhpWiki script is) or an absolute one.
825 //if (!defined('DATA_PATH')) define('DATA_PATH', '/home/user/phpwiki');
828 * Path to the PhpWiki install directory. This is the local
829 * filesystem counterpart to DATA_PATH. (If you have to set
830 * DATA_PATH, your probably have to set this as well.) This can be
831 * either an absolute path, or a relative path interpreted from the
832 * directory where the top-level PhpWiki script (normally index.php)
835 //if (!defined('PHPWIKI_DIR')) define('PHPWIKI_DIR', 'C:/Apache/phpwiki');
836 //if (!defined('PHPWIKI_DIR')) define('PHPWIKI_DIR', '/home/user/public_html/phpwiki');
839 * PhpWiki will try to use short urls to pages, eg
840 * http://www.example.com/index.php/HomePage
841 * If you want to use urls like
842 * http://www.example.com/index.php?pagename=HomePage
843 * then define 'USE_PATH_INFO' as false by uncommenting the line below.
844 * NB: If you are using Apache >= 2.0.30, then you may need to to use
845 * the directive "AcceptPathInfo On" in your Apache configuration file
846 * (or in an appropriate <.htaccess> file) for the short urls to work:
847 * See http://httpd.apache.org/docs-2.0/mod/core.html#acceptpathinfo
849 * See also http://phpwiki.sourceforge.net/phpwiki/PrettyWiki for more ideas
850 * on prettifying your urls.
852 * Default: PhpWiki will try to divine whether use of PATH_INFO
853 * is supported in by your webserver/PHP configuration, and will
854 * use PATH_INFO if it thinks that is possible.
856 //if (!defined('USE_PATH_INFO')) define('USE_PATH_INFO', false);
859 * VIRTUAL_PATH is the canonical URL path under which your your wiki
860 * appears. Normally this is the same as dirname(SCRIPT_NAME), however
861 * using, e.g. apaches mod_actions (or mod_rewrite), you can make it
862 * something different.
864 * If you do this, you should set VIRTUAL_PATH here.
866 * E.g. your phpwiki might be installed at at /scripts/phpwiki/index.php,
867 * but * you've made it accessible through eg. /wiki/HomePage.
869 * One way to do this is to create a directory named 'wiki' in your
870 * server root. The directory contains only one file: an .htaccess
871 * file which reads something like:
873 * Action x-phpwiki-page /scripts/phpwiki/index.php
874 * SetHandler x-phpwiki-page
875 * DirectoryIndex /scripts/phpwiki/index.php
877 * In that case you should set VIRTUAL_PATH to '/wiki'.
879 * (VIRTUAL_PATH is only used if USE_PATH_INFO is true.)
881 //if (!defined('VIRTUAL_PATH')) define('VIRTUAL_PATH', '/SomeWiki');
883 /////////////////////////////////////////////////////////////////////
886 // Miscellaneous settings
888 /////////////////////////////////////////////////////////////////////
891 * Disable HTTP redirects.
893 * (You probably don't need to touch this.)
895 * PhpWiki uses HTTP redirects for some of it's functionality.
896 * (e.g. after saving changes, PhpWiki redirects your browser to
897 * view the page you just saved.)
899 * Some web service providers (notably free European Lycos) don't seem to
900 * allow these redirects. (On Lycos the result in an "Internal Server Error"
901 * report.) In that case you can set DISABLE_HTTP_REDIRECT to true.
902 * (In which case, PhpWiki will revert to sneakier tricks to try to
903 * redirect the browser...)
905 //if (!defined('DISABLE_HTTP_REDIRECT')) define ('DISABLE_HTTP_REDIRECT', true);
907 //if (defined('WIKI_SOAP') and WIKI_SOAP) return;
909 ////////////////////////////////////////////////////////////////
911 // Check if we were included by some other wiki version
912 // (getimg.php, en, de, wiki, ...) or not.
913 // If the server requested this index.php fire up the code by loading lib/main.php.
914 // Parallel wiki scripts can now simply include /index.php for the
915 // main configuration, extend or redefine some settings and
916 // load lib/main.php by themselves. See the file 'wiki'.
917 // This overcomes the IndexAsConfigProblem.
918 // Generally a simple
919 // define('VIRTUAL_PATH', $_SERVER['SCRIPT_NAME']);
920 // is enough in the wiki file, plus the action definition in a .htaccess file
921 ////////////////////////////////////////////////////////////////
923 // If your lib/main.php is not loaded, comment that out, and
924 // uncomment the include "lib/main.php" line below.
925 if (defined('VIRTUAL_PATH') and defined('USE_PATH_INFO')) {
926 if ($HTTP_SERVER_VARS['SCRIPT_NAME'] != VIRTUAL_PATH) {
927 include "lib/main.php";
929 elseif (defined('SCRIPT_NAME') and
930 ($HTTP_SERVER_VARS['SCRIPT_NAME'] != SCRIPT_NAME)) {
931 include "lib/main.php";
934 if (defined('SCRIPT_NAME') and
935 ($HTTP_SERVER_VARS['SCRIPT_NAME'] == SCRIPT_NAME)) {
936 include "lib/main.php";
937 } elseif (strstr($HTTP_SERVER_VARS['PHP_SELF'],'index.php')) {
938 include "lib/main.php";
941 //include "lib/main.php";
943 // $Log: not supported by cvs2svn $
944 // Revision 1.129 2004/02/29 04:10:55 rurban
945 // new POP3 auth (thanks to BiloBilo: pentothal at despammed dot com)
946 // fixed syntax error in index.php
948 // Revision 1.128 2004/02/29 02:06:05 rurban
949 // And this is the SOAP server. Just a view methods for now. (page content)
950 // I would like to see common-wiki soap wdsl.
952 // "SOAP is a bloated, over engineered mess of a perfectly trivial concept. Sigh."
953 // -- http://www.wlug.org.nz/SOAP
955 // Revision 1.127 2004/02/28 21:18:29 rurban
956 // new SQL auth_create, don't ever use REPLACE sql calls!
957 // moved HttpAuth to the end of the chain
958 // PrettyWiki enabled again
960 // Revision 1.126 2004/02/27 16:27:48 rurban
961 // REPLACE is a dirty hack, and erases passwd btw.
963 // Revision 1.125 2004/02/24 02:51:57 rurban
964 // release 1.3.8 ready
966 // Revision 1.124 2004/02/16 00:20:30 rurban
967 // new Japanses language
969 // Revision 1.123 2004/02/09 03:58:07 rurban
970 // for now default DB_SESSION to false
972 // * not existing perms will now query the parent, and not
973 // return the default perm
974 // * added pagePermissions func which returns the object per page
975 // * added getAccessDescription
977 // * added global ->prepare (not yet used) with smart user/pref/member table prefixing.
978 // * force init of authdbh in the 2 db classes
980 // * fixed session handling (not triple auth request anymore)
981 // * don't store cookie prefs with sessions
982 // stdlib: global obj2hash helper from _AuthInfo, also needed for PagePerm
984 // Revision 1.122 2004/02/07 14:20:18 rurban
985 // consistent mysql schema with index.php (userid)
987 // Revision 1.121 2004/02/07 10:41:25 rurban
988 // fixed auth from session (still double code but works)
990 // fixed DbPassUser upgrade and policy=old
993 // Revision 1.120 2004/02/03 09:45:39 rurban
994 // LDAP cleanup, start of new Pref classes
996 // Revision 1.119 2004/02/01 09:14:10 rurban
997 // Started with Group_Ldap (not yet ready)
998 // added new _AuthInfo plugin to help in auth problems (warning: may display passwords)
999 // fixed some configurator vars
1000 // renamed LDAP_AUTH_SEARCH to LDAP_BASE_DN
1001 // changed PHPWIKI_VERSION from 1.3.8a to 1.3.8pre
1002 // USE_DB_SESSION defaults to true on SQL
1003 // changed GROUP_METHOD definition to string, not constants
1004 // changed sample user DBAuthParams from UPDATE to REPLACE to be able to
1005 // create users. (Not to be used with external databases generally, but
1006 // with the default internal user table)
1008 // fixed the IndexAsConfigProblem logic. this was flawed:
1009 // scripts which are the same virtual path defined their own lib/main call
1010 // (hmm, have to test this better, phpwiki.sf.net/demo works again)
1012 // Revision 1.118 2004/01/28 14:34:13 rurban
1013 // session table takes the common prefix
1014 // + various minor stuff
1015 // reallow password changing
1017 // Revision 1.117 2004/01/27 23:25:50 rurban
1018 // added new tables to mysql schema
1019 // fixed default DBAUthParam samples to match these
1020 // added group constants (look terrible, I'd prefer strings instead of constants)
1022 // Revision 1.116 2004/01/25 04:21:02 rurban
1023 // WikiUserNew support (temp. ENABLE_USER_NEW constant)
1025 // Revision 1.115 2003/12/22 04:58:11 carstenklapp
1026 // Incremented release version.
1028 // Revision 1.114 2003/12/05 16:00:42 carstenklapp
1029 // ACK! gettext is not available at this point in index.php.
1031 // Revision 1.113 2003/12/05 15:51:37 carstenklapp
1032 // Added note that use of the configurator is depreciated.
1034 // Enable localization/gettextification of $KeywordLinkRegexp. (Also, now
1035 // users not familiar with regex can more easily just edit the $keywords
1038 // Added four new constants to define author and copyright link rel~s
1039 // used in html head. This makes it easier to run multiple wikis off of
1042 // Eliminated RECENT_CHANGES constant for RSS auto discovery because it's
1043 // another step to watch out for when running a non-english wiki. Now
1044 // simply defined as _("RecentChanges") in head.tmpl itself. Non-standard
1045 // wikis where the RecentChanges page has been named to something else
1046 // will have to modify this in head.tmpl (along with all other places the
1047 // word RecentChanges appears in the code, something that already would
1048 // have had to be done on such a wiki anyway).
1050 // Added a little more info and instructions to flesh out:
1051 // DEBUG, WIKI_NAME, ADMIN_USER, $DisabledActions, $DBParams, CHARSET.
1053 // A few typos and spelling mistakes corrected, and some text rewrapped.
1055 // Revision 1.112 2003/11/17 15:49:21 carstenklapp
1056 // Updated version number to 1.3.7pre (beyond current release
1057 // 1.3.6). Disabled DEBUG output by default (hide DebugInfo, XHTML &
1058 // CSS validator buttons). Note the DebugInfo button remains visible
1059 // for the Admin, and can be accessed by anyone else by adding
1060 // "?action=DebugInfo" to the URL for the occasional use.
1062 // Revision 1.111 2003/03/18 21:40:04 dairiki
1063 // Copy Lawrence's memo on USE_PATH_INFO/AcceptPathInfo to configurator.php
1066 // Plus slight clarification of default (auto-detect) behavior.
1068 // Revision 1.110 2003/03/18 20:51:10 lakka
1069 // Revised comments on use of USE_PATH_INFO with Apache 2
1071 // Revision 1.109 2003/03/17 21:24:50 dairiki
1072 // Fix security bugs in the RawHtml plugin.
1074 // Change the default configuration to allow use of plugin, since
1075 // I believe the plugin is now safe for general use. (Raw HTML will only
1076 // work on locked pages.)
1078 // Revision 1.108 2003/03/07 22:47:01 dairiki
1079 // A few more if(!defined(...))'s
1081 // Revision 1.107 2003/03/07 20:51:54 dairiki
1082 // New feature: Automatic extraction of keywords (for the meta keywords tag)
1083 // from Category* and Topic* links on each page.
1085 // Revision 1.106 2003/03/07 02:48:23 dairiki
1086 // Add option to prevent HTTP redirect.
1088 // Revision 1.105 2003/03/04 02:08:08 dairiki
1089 // Fix and document the WIKIDB_NOCACHE_MARKUP config define.
1091 // Revision 1.104 2003/02/26 02:55:52 dairiki
1092 // New config settings in index.php to control cache control strictness.
1094 // Revision 1.103 2003/02/22 19:43:50 dairiki
1095 // Fix comment regarding connecting to SQL server over a unix socket.
1097 // Revision 1.102 2003/02/22 18:53:38 dairiki
1098 // Renamed method Request::compress_output to Request::buffer_output.
1100 // Added config option to disable compression.
1102 // Revision 1.101 2003/02/21 19:29:30 dairiki
1103 // Update PHPWIKI_VERSION to 1.3.5pre.
1105 // Revision 1.100 2003/01/04 03:36:58 wainstead
1106 // Added 'file' as a database type alongside 'dbm'; added cvs log tag
1109 // (c-file-style: "gnu")
1113 // c-basic-offset: 4
1114 // c-hanging-comment-ender-p: nil
1115 // indent-tabs-mode: nil