search:
summary | log | graphiclog1 | graphiclog2 | commit | commitdiff | tree | refs | edit | fork
blame | history | raw | HEAD
Cleaned up the logout script
[openemr.git] / phpmyadmin / index.php
blob0e87ccdaf0727b281ba037ba0e670657d62b6e0c
1 <?php
2 /* vim: set expandtab sw=4 ts=4 sts=4: */
3 /**
4 *
5 * @package PhpMyAdmin
6 */
7
8 /**
9 * Gets some core libraries and displays a top message if required
10 */
11 require_once 'libraries/common.inc.php';
12
13 /**
14 * display Git revision if requested
15 */
16 require_once 'libraries/display_git_revision.lib.php';
17
18 /**
19 * pass variables to child pages
20 */
21 $drops = array(
22 'lang',
23 'server',
24 'collation_connection',
25 'db',
26 'table'
27 );
28 foreach ($drops as $each_drop) {
29 if (array_key_exists($each_drop, $_GET)) {
30 unset($_GET[$each_drop]);
31 }
32 }
33 unset($drops, $each_drop);
34
35 // If we have a valid target, let's load that script instead
36 if (! empty($_REQUEST['target'])
37 && is_string($_REQUEST['target'])
38 && ! preg_match('/^index/', $_REQUEST['target'])
39 && in_array($_REQUEST['target'], $goto_whitelist)
40 ) {
41 include $_REQUEST['target'];
42 exit;
43 }
44
45 /**
46 * Check if it is an ajax request to reload the recent tables list.
47 */
48 require_once 'libraries/RecentTable.class.php';
49 if ($GLOBALS['is_ajax_request'] && ! empty($_REQUEST['recent_table'])) {
50 $response = PMA_Response::getInstance();
51 $response->addJSON(
52 'options',
53 PMA_RecentTable::getInstance()->getHtmlSelectOption()
54 );
55 exit;
56 }
57
58 if ($GLOBALS['PMA_Config']->isGitRevision()) {
59 if (isset($_REQUEST['git_revision']) && $GLOBALS['is_ajax_request'] == true) {
60 PMA_printGitRevision();
61 exit;
62 }
63 echo '<div id="is_git_revision"></div>';
64 }
65
66 // Handles some variables that may have been sent by the calling script
67 $GLOBALS['db'] = '';
68 $GLOBALS['table'] = '';
69 $show_query = '1';
70
71 // Any message to display?
72 if (! empty($message)) {
73 echo PMA_Util::getMessage($message);
74 unset($message);
75 }
76
77 $common_url_query = PMA_generate_common_url('', '');
78
79 // when $server > 0, a server has been chosen so we can display
80 // all MySQL-related information
81 if ($server > 0) {
82 include 'libraries/server_common.inc.php';
83 include 'libraries/StorageEngine.class.php';
84
85 // Use the verbose name of the server instead of the hostname
86 // if a value is set
87 $server_info = '';
88 if (! empty($cfg['Server']['verbose'])) {
89 $server_info .= htmlspecialchars($cfg['Server']['verbose']);
90 if ($GLOBALS['cfg']['ShowServerInfo']) {
91 $server_info .= ' (';
92 }
93 }
94 if ($GLOBALS['cfg']['ShowServerInfo'] || empty($cfg['Server']['verbose'])) {
95 $server_info .= PMA_DBI_get_host_info();
96 }
97 if (! empty($cfg['Server']['verbose']) && $GLOBALS['cfg']['ShowServerInfo']) {
98 $server_info .= ')';
99 }
100 $mysql_cur_user_and_host = PMA_DBI_fetch_value('SELECT USER();');
101
102 // should we add the port info here?
103 $short_server_info = (!empty($GLOBALS['cfg']['Server']['verbose'])
104 ? $GLOBALS['cfg']['Server']['verbose']
105 : $GLOBALS['cfg']['Server']['host']);
106 }
107
108 echo '<div id="maincontainer">' . "\n";
109 echo '<div id="main_pane_left">';
110 if ($server > 0 || count($cfg['Servers']) > 1
111 ) {
112 echo '<div class="group">';
113 echo '<h2>' . __('General Settings') . '</h2>';
114 echo '<ul>';
115
116 /**
117 * Displays the MySQL servers choice form
118 */
119 if ($cfg['ServerDefault'] == 0
120 || (! $cfg['NavigationDisplayServers']
121 && (count($cfg['Servers']) > 1
122 || ($server == 0 && count($cfg['Servers']) == 1)
123 )
124 )
125 ) {
126 echo '<li id="li_select_server" class="no_bullets" >';
127 include_once 'libraries/select_server.lib.php';
128 echo PMA_Util::getImage('s_host.png') . " " . PMA_selectServer(true, true);
129 echo '</li>';
130 }
131
132 /**
133 * Displays the mysql server related links
134 */
135 if ($server > 0 && ! PMA_DRIZZLE) {
136 include_once 'libraries/check_user_privileges.lib.php';
137
138 // Logout for advanced authentication
139 if ($cfg['Server']['auth_type'] != 'config') {
140 if ($cfg['ShowChgPassword']) {
141 $conditional_class = 'ajax';
142 PMA_printListItem(
143 PMA_Util::getImage('s_passwd.png') . " " . __('Change password'),
144 'li_change_password',
145 'user_password.php?' . $common_url_query,
146 null,
147 null,
148 'change_password_anchor',
149 "no_bullets",
150 $conditional_class
151 );
152 }
153 } // end if
154 echo ' <li id="li_select_mysql_collation" class="no_bullets" >';
155 echo ' <form method="post" action="index.php">' . "\n"
156 . PMA_generate_common_hidden_inputs(null, null, 4, 'collation_connection')
157 . ' <label for="select_collation_connection">' . "\n"
158 . ' '. PMA_Util::getImage('s_asci.png') . " "
159 . __('Server connection collation') . "\n"
160 // put the doc link in the form so that it appears on the same line
161 . PMA_Util::showMySQLDocu(
162 'MySQL_Database_Administration',
163 'Charset-connection'
164 )
165 . ': ' . "\n"
166 . ' </label>' . "\n"
167
168 . PMA_generateCharsetDropdownBox(
169 PMA_CSDROPDOWN_COLLATION,
170 'collation_connection',
171 'select_collation_connection',
172 $collation_connection,
173 true,
174 4,
175 true
176 )
177 . ' </form>' . "\n"
178 . ' </li>' . "\n";
179 } // end of if ($server > 0 && !PMA_DRIZZLE)
180 echo '</ul>';
181 echo '</div>';
182 }
183
184 echo '<div class="group">';
185 echo '<h2>' . __('Appearance Settings') . '</h2>';
186 echo ' <ul>';
187
188 // Displays language selection combo
189 if (empty($cfg['Lang']) && count($GLOBALS['available_languages']) > 1) {
190 echo '<li id="li_select_lang" class="no_bullets">';
191 include_once 'libraries/display_select_lang.lib.php';
192 echo PMA_Util::getImage('s_lang.png') . " " . PMA_getLanguageSelectorHtml();
193 echo '</li>';
194 }
195
196 // ThemeManager if available
197
198 if ($GLOBALS['cfg']['ThemeManager']) {
199 echo '<li id="li_select_theme" class="no_bullets">';
200 echo PMA_Util::getImage('s_theme.png') . " "
201 . $_SESSION['PMA_Theme_Manager']->getHtmlSelectBox();
202 echo '</li>';
203 }
204 echo '<li id="li_select_fontsize">';
205 echo PMA_Config::getFontsizeForm();
206 echo '</li>';
207
208 echo '</ul>';
209
210 // User preferences
211
212 if ($server > 0) {
213 echo '<ul>';
214 PMA_printListItem(
215 PMA_Util::getImage('b_tblops.png')." " .__('More settings'),
216 'li_user_preferences',
217 'prefs_manage.php?' . $common_url_query,
218 null,
219 null,
220 null,
221 "no_bullets"
222 );
223 echo '</ul>';
224 }
225
226 echo '</div>';
227
228
229 echo '</div>';
230 echo '<div id="main_pane_right">';
231
232
233 if ($server > 0 && $GLOBALS['cfg']['ShowServerInfo']) {
234
235 echo '<div class="group">';
236 echo '<h2>' . __('Database server') . '</h2>';
237 echo '<ul>' . "\n";
238 PMA_printListItem(
239 __('Server') . ': ' . $server_info,
240 'li_server_info'
241 );
242 PMA_printListItem(
243 __('Server type') . ': ' . PMA_Util::getServerType(),
244 'li_server_type'
245 );
246 PMA_printListItem(
247 __('Server version') . ': ' . PMA_MYSQL_STR_VERSION . ' - ' . PMA_MYSQL_VERSION_COMMENT,
248 'li_server_version'
249 );
250 PMA_printListItem(
251 __('Protocol version') . ': ' . PMA_DBI_get_proto_info(),
252 'li_mysql_proto'
253 );
254 PMA_printListItem(
255 __('User') . ': ' . htmlspecialchars($mysql_cur_user_and_host),
256 'li_user_info'
257 );
258
259 echo ' <li id="li_select_mysql_charset">';
260 echo ' ' . __('Server charset') . ': '
261 . ' <span lang="en" dir="ltr">'
262 . ' ' . $mysql_charsets_descriptions[$mysql_charset_map['utf-8']] . "\n"
263 . ' (' . $mysql_charset_map['utf-8'] . ')' . "\n"
264 . ' </span>' . "\n"
265 . ' </li>' . "\n";
266 echo ' </ul>';
267 echo ' </div>';
268 }
269
270 if ($GLOBALS['cfg']['ShowServerInfo'] || $GLOBALS['cfg']['ShowPhpInfo']) {
271 echo '<div class="group">';
272 echo '<h2>' . __('Web server') . '</h2>';
273 echo '<ul>';
274 if ($GLOBALS['cfg']['ShowServerInfo']) {
275 PMA_printListItem($_SERVER['SERVER_SOFTWARE'], 'li_web_server_software');
276
277 if ($server > 0) {
278 $client_version_str = PMA_DBI_get_client_info();
279 if (preg_match('#\d+\.\d+\.\d+#', $client_version_str)
280 && in_array($GLOBALS['cfg']['Server']['extension'], array('mysql', 'mysqli'))
281 ) {
282 $client_version_str = 'libmysql - ' . $client_version_str;
283 }
284 PMA_printListItem(
285 __('Database client version') . ': ' . $client_version_str,
286 'li_mysql_client_version'
287 );
288
289 $php_ext_string = __('PHP extension') . ': '
290 . $GLOBALS['cfg']['Server']['extension'] . ' '
291 . PMA_Util::showPHPDocu(
292 'book.' . $GLOBALS['cfg']['Server']['extension'] . '.php'
293 );
294 PMA_printListItem(
295 $php_ext_string,
296 'li_used_php_extension'
297 );
298 }
299 }
300
301 if ($cfg['ShowPhpInfo']) {
302 PMA_printListItem(
303 __('Show PHP information'),
304 'li_phpinfo',
305 'phpinfo.php?' . $common_url_query,
306 null,
307 '_blank'
308 );
309 }
310 echo ' </ul>';
311 echo ' </div>';
312 }
313
314 echo '<div class="group pmagroup">';
315 echo '<h2>phpMyAdmin</h2>';
316 echo '<ul>';
317 $class = null;
318 // We rely on CSP to allow access to http://www.phpmyadmin.net, but IE lacks
319 // support here and does not allow request to http once using https.
320 if ($GLOBALS['cfg']['VersionCheck']
321 && (! $GLOBALS['PMA_Config']->get('is_https') || PMA_USR_BROWSER_AGENT != 'IE')
322 ) {
323 $class = 'jsversioncheck';
324 }
325 PMA_printListItem(
326 __('Version information') . ': ' . PMA_VERSION,
327 'li_pma_version',
328 null,
329 null,
330 null,
331 null,
332 $class
333 );
334 PMA_printListItem(
335 __('Documentation'),
336 'li_pma_docs',
337 PMA_Util::getDocuLink('index'),
338 null,
339 '_blank'
340 );
341 PMA_printListItem(
342 __('Wiki'),
343 'li_pma_wiki',
344 PMA_linkURL('http://wiki.phpmyadmin.net/'),
345 null,
346 '_blank'
347 );
348
349 // does not work if no target specified, don't know why
350 PMA_printListItem(
351 __('Official Homepage'),
352 'li_pma_homepage',
353 PMA_linkURL('http://www.phpMyAdmin.net/'),
354 null,
355 '_blank'
356 );
357 PMA_printListItem(
358 __('Contribute'),
359 'li_pma_contribute',
360 PMA_linkURL('http://www.phpmyadmin.net/home_page/improve.php'),
361 null,
362 '_blank'
363 );
364 PMA_printListItem(
365 __('Get support'),
366 'li_pma_support',
367 PMA_linkURL('http://www.phpmyadmin.net/home_page/support.php'),
368 null,
369 '_blank'
370 );
371 PMA_printListItem(
372 __('List of changes'),
373 'li_pma_changes',
374 PMA_linkURL('changelog.php'),
375 null,
376 '_blank'
377 );
378 ?>
379 </ul>
380 </div>
381
382 </div>
383
384 </div>
385
386 <?php
387 /**
388 * Warning if using the default MySQL privileged account
389 */
390 if ($server != 0
391 && $cfg['Server']['user'] == 'root'
392 && $cfg['Server']['password'] == ''
393 ) {
394 trigger_error(
395 __('Your configuration file contains settings (root with no password) that correspond to the default MySQL privileged account. Your MySQL server is running with this default, is open to intrusion, and you really should fix this security hole by setting a password for user \'root\'.'),
396 E_USER_WARNING
397 );
398 }
399
400 /**
401 * Nijel: As we try to handle charsets by ourself, mbstring overloads just
402 * break it, see bug 1063821.
403 */
404 if (@extension_loaded('mbstring') && @ini_get('mbstring.func_overload') > 1) {
405 trigger_error(
406 __('You have enabled mbstring.func_overload in your PHP configuration. This option is incompatible with phpMyAdmin and might cause some data to be corrupted!'),
407 E_USER_WARNING
408 );
409 }
410
411 /**
412 * Nijel: mbstring is used for handling multibyte inside parser, so it is good
413 * to tell user something might be broken without it, see bug #1063149.
414 */
415 if (! @extension_loaded('mbstring')) {
416 trigger_error(
417 __('The mbstring PHP extension was not found and you seem to be using a multibyte charset. Without the mbstring extension phpMyAdmin is unable to split strings correctly and it may result in unexpected results.'),
418 E_USER_WARNING
419 );
420 }
421
422 /**
423 * Check whether session.gc_maxlifetime limits session validity.
424 */
425 $gc_time = (int)@ini_get('session.gc_maxlifetime');
426 if ($gc_time < $GLOBALS['cfg']['LoginCookieValidity'] ) {
427 trigger_error(
428 __('Your PHP parameter [a@http://php.net/manual/en/session.configuration.php#ini.session.gc-maxlifetime@_blank]session.gc_maxlifetime[/a] is lower than cookie validity configured in phpMyAdmin, because of this, your login will expire sooner than configured in phpMyAdmin.'),
429 E_USER_WARNING
430 );
431 }
432
433 /**
434 * Check whether LoginCookieValidity is limited by LoginCookieStore.
435 */
436 if ($GLOBALS['cfg']['LoginCookieStore'] != 0
437 && $GLOBALS['cfg']['LoginCookieStore'] < $GLOBALS['cfg']['LoginCookieValidity']
438 ) {
439 trigger_error(
440 __('Login cookie store is lower than cookie validity configured in phpMyAdmin, because of this, your login will expire sooner than configured in phpMyAdmin.'),
441 E_USER_WARNING
442 );
443 }
444
445 /**
446 * Check if user does not have defined blowfish secret and it is being used.
447 */
448 if (! empty($_SESSION['auto_blowfish_secret'])
449 && empty($GLOBALS['cfg']['blowfish_secret'])
450 ) {
451 trigger_error(
452 __('The configuration file now needs a secret passphrase (blowfish_secret).'),
453 E_USER_WARNING
454 );
455 }
456
457 /**
458 * Check for existence of config directory which should not exist in
459 * production environment.
460 */
461 if (file_exists('config')) {
462 trigger_error(
463 __('Directory [code]config[/code], which is used by the setup script, still exists in your phpMyAdmin directory. You should remove it once phpMyAdmin has been configured.'),
464 E_USER_WARNING
465 );
466 }
467
468 if ($server > 0) {
469 $cfgRelation = PMA_getRelationsParam();
470 if (! $cfgRelation['allworks']
471 && $cfg['PmaNoRelation_DisableWarning'] == false
472 ) {
473 $msg = PMA_Message::notice(__('The phpMyAdmin configuration storage is not completely configured, some extended features have been deactivated. To find out why click %shere%s.'));
474 $msg->addParam(
475 '<a href="' . $cfg['PmaAbsoluteUri'] . 'chk_rel.php?' . $common_url_query . '">',
476 false
477 );
478 $msg->addParam('</a>', false);
479 /* Show error if user has configured something, notice elsewhere */
480 if (!empty($cfg['Servers'][$server]['pmadb'])) {
481 $msg->isError(true);
482 }
483 $msg->display();
484 } // end if
485 }
486
487 /**
488 * Warning about different MySQL library and server version
489 * (a difference on the third digit does not count).
490 * If someday there is a constant that we can check about mysqlnd,
491 * we can use it instead of strpos().
492 * If no default server is set, PMA_DBI_get_client_info() is not defined yet.
493 * Drizzle can speak MySQL protocol, so don't warn about version mismatch for
494 * Drizzle servers.
495 */
496 if (function_exists('PMA_DBI_get_client_info') && !PMA_DRIZZLE) {
497 $_client_info = PMA_DBI_get_client_info();
498 if ($server > 0
499 && strpos($_client_info, 'mysqlnd') === false
500 && substr(PMA_MYSQL_CLIENT_API, 0, 3) != substr(PMA_MYSQL_INT_VERSION, 0, 3)
501 ) {
502 trigger_error(
503 PMA_sanitize(
504 sprintf(
505 __('Your PHP MySQL library version %s differs from your MySQL server version %s. This may cause unpredictable behavior.'),
506 $_client_info,
507 substr(
508 PMA_MYSQL_STR_VERSION,
509 0,
510 strpos(PMA_MYSQL_STR_VERSION . '-', '-')
511 )
512 )
513 ),
514 E_USER_NOTICE
515 );
516 }
517 unset($_client_info);
518 }
519
520 /**
521 * Warning about Suhosin
522 */
523 if ($cfg['SuhosinDisableWarning'] == false
524 && @ini_get('suhosin.request.max_value_length')
525 // warn about Suhosin only if its simulation mode is not enabled
526 && @ini_get('suhosin.simulation') == '0'
527 ) {
528 trigger_error(
529 sprintf(
530 __('Server running with Suhosin. Please refer to %sdocumentation%s for possible issues.'),
531 '[doc@faq1-38]',
532 '[/doc]'
533 ),
534 E_USER_WARNING
535 );
536 }
537
538 /**
539 * Warning about mcrypt.
540 */
541 if (! function_exists('mcrypt_encrypt')
542 && ! $GLOBALS['cfg']['McryptDisableWarning']
543 ) {
544 PMA_warnMissingExtension('mcrypt');
545 }
546
547 /**
548 * Warning about incomplete translations.
549 *
550 * The data file is created while creating release by ./scripts/remove-incomplete-mo
551 */
552 if (file_exists('libraries/language_stats.inc.php')) {
553 include 'libraries/language_stats.inc.php';
554 /*
555 * This message is intentionally not translated, because we're
556 * handling incomplete translations here and focus on english
557 * speaking users.
558 */
559 if (isset($GLOBALS['language_stats'][$lang])
560 && $GLOBALS['language_stats'][$lang] < $cfg['TranslationWarningThreshold']
561 ) {
562 trigger_error(
563 'You are using an incomplete translation, please help to make it better by <a href="http://www.phpmyadmin.net/home_page/improve.php#translate" target="_blank">contributing</a>.',
564 E_USER_NOTICE
565 );
566 }
567 }
568
569 /**
570 * prints list item for main page
571 *
572 * @param string $name displayed text
573 * @param string $id id, used for css styles
574 * @param string $url make item as link with $url as target
575 * @param string $mysql_help_page display a link to MySQL's manual
576 * @param string $target special target for $url
577 * @param string $a_id id for the anchor,
578 * used for jQuery to hook in functions
579 * @param string $class class for the li element
580 * @param string $a_class class for the anchor element
581 *
582 * @return void
583 */
584 function PMA_printListItem($name, $id = null, $url = null, $mysql_help_page = null,
585 $target = null, $a_id = null, $class = null, $a_class = null
586 ) {
587 echo '<li id="' . $id . '"';
588 if (null !== $class) {
589 echo ' class="' . $class . '"';
590 }
591 echo '>';
592 if (null !== $url) {
593 echo '<a href="' . $url . '"';
594 if (null !== $target) {
595 echo ' target="' . $target . '"';
596 }
597 if (null != $a_id) {
598 echo ' id="' . $a_id .'"';
599 }
600 if (null != $a_class) {
601 echo ' class="' . $a_class .'"';
602 }
603 echo '>';
604 }
605
606 echo $name;
607
608 if (null !== $url) {
609 echo '</a>' . "\n";
610 }
611 if (null !== $mysql_help_page) {
612 echo PMA_Util::showMySQLDocu('', $mysql_help_page);
613 }
614 echo '</li>';
615 }
616 ?>
Mirror of official OpenEMR Sourceforge repository