search:
summary | log | graphiclog1 | graphiclog2 | commit | commitdiff | tree | refs | edit | fork
blame | history | raw | HEAD
Translated using Weblate (Russian)
[phpmyadmin.git] / index.php
blob2274e691223a2cf2015e85b9ea53bd655f724839
1 <?php
2 /* vim: set expandtab sw=4 ts=4 sts=4: */
3 /**
4 * Main loader script
5 *
6 * @package PhpMyAdmin
7 */
8 use PhpMyAdmin\Charsets;
9 use PhpMyAdmin\Config;
10 use PhpMyAdmin\Core;
11 use PhpMyAdmin\Display\GitRevision;
12 use PhpMyAdmin\LanguageManager;
13 use PhpMyAdmin\Message;
14 use PhpMyAdmin\RecentFavoriteTable;
15 use PhpMyAdmin\Relation;
16 use PhpMyAdmin\Response;
17 use PhpMyAdmin\Sanitize;
18 use PhpMyAdmin\Server\Select;
19 use PhpMyAdmin\ThemeManager;
20 use PhpMyAdmin\Url;
21 use PhpMyAdmin\Util;
22 use PhpMyAdmin\UserPreferences;
23
24 /**
25 * Gets some core libraries and displays a top message if required
26 */
27 require_once 'libraries/common.inc.php';
28
29 /**
30 * pass variables to child pages
31 */
32 $drops = array(
33 'lang',
34 'server',
35 'collation_connection',
36 'db',
37 'table'
38 );
39 foreach ($drops as $each_drop) {
40 if (array_key_exists($each_drop, $_GET)) {
41 unset($_GET[$each_drop]);
42 }
43 }
44 unset($drops, $each_drop);
45
46 /*
47 * Black list of all scripts to which front-end must submit data.
48 * Such scripts must not be loaded on home page.
49 *
50 */
51 $target_blacklist = array (
52 'import.php', 'export.php'
53 );
54
55 // If we have a valid target, let's load that script instead
56 if (! empty($_REQUEST['target'])
57 && is_string($_REQUEST['target'])
58 && ! preg_match('/^index/', $_REQUEST['target'])
59 && ! in_array($_REQUEST['target'], $target_blacklist)
60 && Core::checkPageValidity($_REQUEST['target'], [], true)
61 ) {
62 include $_REQUEST['target'];
63 exit;
64 }
65
66 if (isset($_REQUEST['ajax_request']) && ! empty($_REQUEST['access_time'])) {
67 exit;
68 }
69
70 // user selected font size
71 if (isset($_POST['set_fontsize']) && preg_match('/^[0-9.]+(px|em|pt|\%)$/', $_POST['set_fontsize'])) {
72 $GLOBALS['PMA_Config']->setUserValue(
73 null,
74 'FontSize',
75 $_POST['set_fontsize'],
76 '82%'
77 );
78 header('Location: index.php' . Url::getCommonRaw());
79 exit();
80 }
81 // if user selected a theme
82 if (isset($_POST['set_theme'])) {
83 $tmanager = ThemeManager::getInstance();
84 $tmanager->setActiveTheme($_POST['set_theme']);
85 $tmanager->setThemeCookie();
86
87 $userPreferences = new UserPreferences();
88 $prefs = $userPreferences->load();
89 $prefs["config_data"]["ThemeDefault"] = $_POST['set_theme'];
90 $userPreferences->save($prefs["config_data"]);
91
92 header('Location: index.php' . Url::getCommonRaw());
93 exit();
94 }
95 // Change collation connection
96 if (isset($_POST['collation_connection'])) {
97 $GLOBALS['PMA_Config']->setUserValue(
98 null,
99 'DefaultConnectionCollation',
100 $_POST['collation_connection'],
101 'utf8mb4_unicode_ci'
102 );
103 header('Location: index.php' . Url::getCommonRaw());
104 exit();
105 }
106
107
108 // See FAQ 1.34
109 if (! empty($_REQUEST['db'])) {
110 $page = null;
111 if (! empty($_REQUEST['table'])) {
112 $page = Util::getScriptNameForOption(
113 $GLOBALS['cfg']['DefaultTabTable'], 'table'
114 );
115 } else {
116 $page = Util::getScriptNameForOption(
117 $GLOBALS['cfg']['DefaultTabDatabase'], 'database'
118 );
119 }
120 include $page;
121 exit;
122 }
123
124 $response = Response::getInstance();
125 /**
126 * Check if it is an ajax request to reload the recent tables list.
127 */
128 if ($response->isAjax() && ! empty($_REQUEST['recent_table'])) {
129 $response->addJSON(
130 'list',
131 RecentFavoriteTable::getInstance('recent')->getHtmlList()
132 );
133 exit;
134 }
135
136 if ($GLOBALS['PMA_Config']->isGitRevision()) {
137 // If ajax request to get revision
138 if (isset($_REQUEST['git_revision']) && $response->isAjax()) {
139 GitRevision::display();
140 exit;
141 }
142 // Else show empty html
143 echo '<div id="is_git_revision"></div>';
144 }
145
146 // Handles some variables that may have been sent by the calling script
147 $GLOBALS['db'] = '';
148 $GLOBALS['table'] = '';
149 $show_query = '1';
150
151 // Any message to display?
152 if (! empty($message)) {
153 echo Util::getMessage($message);
154 unset($message);
155 }
156 if (isset($_SESSION['partial_logout'])) {
157 Message::success(
158 __('You were logged out from one server, to logout completely from phpMyAdmin, you need to logout from all servers.')
159 )->display();
160 unset($_SESSION['partial_logout']);
161 }
162
163 $common_url_query = Url::getCommon();
164 $mysql_cur_user_and_host = '';
165
166 // when $server > 0, a server has been chosen so we can display
167 // all MySQL-related information
168 if ($server > 0) {
169 include 'libraries/server_common.inc.php';
170
171 // Use the verbose name of the server instead of the hostname
172 // if a value is set
173 $server_info = '';
174 if (! empty($cfg['Server']['verbose'])) {
175 $server_info .= htmlspecialchars($cfg['Server']['verbose']);
176 if ($GLOBALS['cfg']['ShowServerInfo']) {
177 $server_info .= ' (';
178 }
179 }
180 if ($GLOBALS['cfg']['ShowServerInfo'] || empty($cfg['Server']['verbose'])) {
181 $server_info .= $GLOBALS['dbi']->getHostInfo();
182 }
183 if (! empty($cfg['Server']['verbose']) && $GLOBALS['cfg']['ShowServerInfo']) {
184 $server_info .= ')';
185 }
186 $mysql_cur_user_and_host = $GLOBALS['dbi']->fetchValue('SELECT USER();');
187
188 // should we add the port info here?
189 $short_server_info = (!empty($GLOBALS['cfg']['Server']['verbose'])
190 ? $GLOBALS['cfg']['Server']['verbose']
191 : $GLOBALS['cfg']['Server']['host']);
192 }
193
194 echo '<div id="maincontainer">' , "\n";
195 // Anchor for favorite tables synchronization.
196 echo RecentFavoriteTable::getInstance('favorite')->getHtmlSyncFavoriteTables();
197 echo '<div id="main_pane_left">';
198 if ($server > 0 || count($cfg['Servers']) > 1
199 ) {
200 if ($cfg['DBG']['demo']) {
201 echo '<div class="group">';
202 echo '<h2>' , __('phpMyAdmin Demo Server') , '</h2>';
203 echo '<p class="cfg_dbg_demo">';
204 printf(
205 __(
206 'You are using the demo server. You can do anything here, but '
207 . 'please do not change root, debian-sys-maint and pma users. '
208 . 'More information is available at %s.'
209 ),
210 '<a href="url.php?url=https://demo.phpmyadmin.net/" target="_blank" rel="noopener noreferrer">demo.phpmyadmin.net</a>'
211 );
212 echo '</p>';
213 echo '</div>';
214 }
215 echo '<div class="group">';
216 echo '<h2>' , __('General settings') , '</h2>';
217 echo '<ul>';
218
219 /**
220 * Displays the MySQL servers choice form
221 */
222 if ($cfg['ServerDefault'] == 0
223 || (! $cfg['NavigationDisplayServers']
224 && (count($cfg['Servers']) > 1
225 || ($server == 0 && count($cfg['Servers']) == 1)))
226 ) {
227 echo '<li id="li_select_server" class="no_bullets" >';
228 echo Util::getImage('s_host') , " "
229 , Select::render(true, true);
230 echo '</li>';
231 }
232
233 /**
234 * Displays the mysql server related links
235 */
236 if ($server > 0) {
237 include_once 'libraries/check_user_privileges.inc.php';
238
239 // Logout for advanced authentication
240 if ($cfg['Server']['auth_type'] != 'config') {
241 if ($cfg['ShowChgPassword']) {
242 $conditional_class = 'ajax';
243 Core::printListItem(
244 Util::getImage('s_passwd') . "&nbsp;" . __(
245 'Change password'
246 ),
247 'li_change_password',
248 'user_password.php' . $common_url_query,
249 null,
250 null,
251 'change_password_anchor',
252 "no_bullets",
253 $conditional_class
254 );
255 }
256 } // end if
257 echo ' <li id="li_select_mysql_collation" class="no_bullets" >';
258 echo ' <form class="disableAjax" method="post" action="index.php">' , "\n"
259 . Url::getHiddenInputs(null, null, 4, 'collation_connection')
260 . ' <label for="select_collation_connection">' . "\n"
261 . ' ' . Util::getImage('s_asci')
262 . "&nbsp;" . __('Server connection collation') . "\n"
263 // put the doc link in the form so that it appears on the same line
264 . Util::showMySQLDocu('Charset-connection')
265 . ': ' . "\n"
266 . ' </label>' . "\n"
267
268 . Charsets::getCollationDropdownBox(
269 $GLOBALS['dbi'],
270 $GLOBALS['cfg']['Server']['DisableIS'],
271 'collation_connection',
272 'select_collation_connection',
273 $collation_connection,
274 true,
275 true
276 )
277 . ' </form>' . "\n"
278 . ' </li>' . "\n";
279 } // end of if ($server > 0)
280 echo '</ul>';
281 echo '</div>';
282 }
283
284 echo '<div class="group">';
285 echo '<h2>' , __('Appearance settings') , '</h2>';
286 echo ' <ul>';
287
288 // Displays language selection combo
289 $language_manager = LanguageManager::getInstance();
290 if (empty($cfg['Lang']) && $language_manager->hasChoice()) {
291 echo '<li id="li_select_lang" class="no_bullets">';
292
293 echo Util::getImage('s_lang') , " "
294 , $language_manager->getSelectorDisplay();
295 echo '</li>';
296 }
297
298 // ThemeManager if available
299
300 if ($GLOBALS['cfg']['ThemeManager']) {
301 echo '<li id="li_select_theme" class="no_bullets">';
302 echo Util::getImage('s_theme') , " "
303 , ThemeManager::getInstance()->getHtmlSelectBox();
304 echo '</li>';
305 }
306 echo '<li id="li_select_fontsize">';
307 echo Config::getFontsizeForm();
308 echo '</li>';
309
310 echo '</ul>';
311
312 // User preferences
313
314 if ($server > 0) {
315 echo '<ul>';
316 Core::printListItem(
317 Util::getImage('b_tblops') . "&nbsp;" . __(
318 'More settings'
319 ),
320 'li_user_preferences',
321 'prefs_manage.php' . $common_url_query,
322 null,
323 null,
324 null,
325 "no_bullets"
326 );
327 echo '</ul>';
328 }
329
330 echo '</div>';
331
332
333 echo '</div>';
334 echo '<div id="main_pane_right">';
335
336
337 if ($server > 0 && $GLOBALS['cfg']['ShowServerInfo']) {
338
339 echo '<div class="group">';
340 echo '<h2>' , __('Database server') , '</h2>';
341 echo '<ul>' , "\n";
342 Core::printListItem(
343 __('Server:') . ' ' . $server_info,
344 'li_server_info'
345 );
346 Core::printListItem(
347 __('Server type:') . ' ' . Util::getServerType(),
348 'li_server_type'
349 );
350 Core::printListItem(
351 __('Server connection:') . ' ' . Util::getServerSSL(),
352 'li_server_type'
353 );
354 Core::printListItem(
355 __('Server version:')
356 . ' '
357 . $GLOBALS['dbi']->getVersionString() . ' - ' . $GLOBALS['dbi']->getVersionComment(),
358 'li_server_version'
359 );
360 Core::printListItem(
361 __('Protocol version:') . ' ' . $GLOBALS['dbi']->getProtoInfo(),
362 'li_mysql_proto'
363 );
364 Core::printListItem(
365 __('User:') . ' ' . htmlspecialchars($mysql_cur_user_and_host),
366 'li_user_info'
367 );
368
369 echo ' <li id="li_select_mysql_charset">';
370 echo ' ' , __('Server charset:') , ' '
371 . ' <span lang="en" dir="ltr">';
372 $unicode = Charsets::$mysql_charset_map['utf-8'];
373 $charsets = Charsets::getMySQLCharsetsDescriptions(
374 $GLOBALS['dbi'],
375 $GLOBALS['cfg']['Server']['DisableIS']
376 );
377 echo ' ' , $charsets[$unicode], ' (' . $unicode, ')';
378 echo ' </span>'
379 . ' </li>'
380 . ' </ul>'
381 . ' </div>';
382 }
383
384 if ($GLOBALS['cfg']['ShowServerInfo'] || $GLOBALS['cfg']['ShowPhpInfo']) {
385 echo '<div class="group">';
386 echo '<h2>' , __('Web server') , '</h2>';
387 echo '<ul>';
388 if ($GLOBALS['cfg']['ShowServerInfo']) {
389 Core::printListItem($_SERVER['SERVER_SOFTWARE'], 'li_web_server_software');
390
391 if ($server > 0) {
392 $client_version_str = $GLOBALS['dbi']->getClientInfo();
393 if (preg_match('#\d+\.\d+\.\d+#', $client_version_str)) {
394 $client_version_str = 'libmysql - ' . $client_version_str;
395 }
396 Core::printListItem(
397 __('Database client version:') . ' ' . $client_version_str,
398 'li_mysql_client_version'
399 );
400
401 $php_ext_string = __('PHP extension:') . ' ';
402
403 $extensions = Util::listPHPExtensions();
404
405 foreach ($extensions as $extension) {
406 $php_ext_string .= ' ' . $extension
407 . Util::showPHPDocu('book.' . $extension . '.php');
408 }
409
410 Core::printListItem(
411 $php_ext_string,
412 'li_used_php_extension'
413 );
414
415 $php_version_string = __('PHP version:') . ' ' . phpversion();
416
417 Core::printListItem(
418 $php_version_string,
419 'li_used_php_version'
420 );
421 }
422 }
423
424 if ($cfg['ShowPhpInfo']) {
425 Core::printListItem(
426 __('Show PHP information'),
427 'li_phpinfo',
428 'phpinfo.php' . $common_url_query,
429 null,
430 '_blank'
431 );
432 }
433 echo ' </ul>';
434 echo ' </div>';
435 }
436
437 echo '<div class="group pmagroup">';
438 echo '<h2>phpMyAdmin</h2>';
439 echo '<ul>';
440 $class = null;
441 if ($GLOBALS['cfg']['VersionCheck']) {
442 $class = 'jsversioncheck';
443 }
444 Core::printListItem(
445 __('Version information:') . ' <span class="version">' . PMA_VERSION . '</span>',
446 'li_pma_version',
447 null,
448 null,
449 null,
450 null,
451 $class
452 );
453 Core::printListItem(
454 __('Documentation'),
455 'li_pma_docs',
456 Util::getDocuLink('index'),
457 null,
458 '_blank'
459 );
460
461 // does not work if no target specified, don't know why
462 Core::printListItem(
463 __('Official Homepage'),
464 'li_pma_homepage',
465 Core::linkURL('https://www.phpmyadmin.net/'),
466 null,
467 '_blank'
468 );
469 Core::printListItem(
470 __('Contribute'),
471 'li_pma_contribute',
472 Core::linkURL('https://www.phpmyadmin.net/contribute/'),
473 null,
474 '_blank'
475 );
476 Core::printListItem(
477 __('Get support'),
478 'li_pma_support',
479 Core::linkURL('https://www.phpmyadmin.net/support/'),
480 null,
481 '_blank'
482 );
483 Core::printListItem(
484 __('List of changes'),
485 'li_pma_changes',
486 'changelog.php' . Url::getCommon(),
487 null,
488 '_blank'
489 );
490 Core::printListItem(
491 __('License'),
492 'li_pma_license',
493 'license.php' . Url::getCommon(),
494 null,
495 '_blank'
496 );
497 echo ' </ul>';
498 echo ' </div>';
499
500 echo '</div>';
501
502 echo '</div>';
503
504 /**
505 * mbstring is used for handling multibytes inside parser, so it is good
506 * to tell user something might be broken without it, see bug #1063149.
507 */
508 if (! extension_loaded('mbstring')) {
509 trigger_error(
510 __(
511 'The mbstring PHP extension was not found and you seem to be using'
512 . ' a multibyte charset. Without the mbstring extension phpMyAdmin'
513 . ' is unable to split strings correctly and it may result in'
514 . ' unexpected results.'
515 ),
516 E_USER_WARNING
517 );
518 }
519
520 /**
521 * Missing functionality
522 */
523 if (! extension_loaded('curl') && ! ini_get('allow_url_fopen')) {
524 trigger_error(
525 __(
526 'The curl extension was not found and allow_url_fopen is '
527 . 'disabled. Due to this some features such as error reporting '
528 . 'or version check are disabled.'
529 )
530 );
531 }
532
533 if ($cfg['LoginCookieValidityDisableWarning'] == false) {
534 /**
535 * Check whether session.gc_maxlifetime limits session validity.
536 */
537 $gc_time = (int)ini_get('session.gc_maxlifetime');
538 if ($gc_time < $GLOBALS['cfg']['LoginCookieValidity'] ) {
539 trigger_error(
540 __(
541 'Your PHP parameter [a@https://secure.php.net/manual/en/session.' .
542 'configuration.php#ini.session.gc-maxlifetime@_blank]session.' .
543 'gc_maxlifetime[/a] is lower than cookie validity configured ' .
544 'in phpMyAdmin, because of this, your login might expire sooner ' .
545 'than configured in phpMyAdmin.'
546 ),
547 E_USER_WARNING
548 );
549 }
550 }
551
552 /**
553 * Check whether LoginCookieValidity is limited by LoginCookieStore.
554 */
555 if ($GLOBALS['cfg']['LoginCookieStore'] != 0
556 && $GLOBALS['cfg']['LoginCookieStore'] < $GLOBALS['cfg']['LoginCookieValidity']
557 ) {
558 trigger_error(
559 __(
560 'Login cookie store is lower than cookie validity configured in ' .
561 'phpMyAdmin, because of this, your login will expire sooner than ' .
562 'configured in phpMyAdmin.'
563 ),
564 E_USER_WARNING
565 );
566 }
567
568 /**
569 * Check if user does not have defined blowfish secret and it is being used.
570 */
571 if (! empty($_SESSION['encryption_key'])) {
572 if (empty($GLOBALS['cfg']['blowfish_secret'])) {
573 trigger_error(
574 __(
575 'The configuration file now needs a secret passphrase (blowfish_secret).'
576 ),
577 E_USER_WARNING
578 );
579 } elseif (strlen($GLOBALS['cfg']['blowfish_secret']) < 32) {
580 trigger_error(
581 __(
582 'The secret passphrase in configuration (blowfish_secret) is too short.'
583 ),
584 E_USER_WARNING
585 );
586 }
587 }
588
589 /**
590 * Check for existence of config directory which should not exist in
591 * production environment.
592 */
593 if (@file_exists('config')) {
594 trigger_error(
595 __(
596 'Directory [code]config[/code], which is used by the setup script, ' .
597 'still exists in your phpMyAdmin directory. It is strongly ' .
598 'recommended to remove it once phpMyAdmin has been configured. ' .
599 'Otherwise the security of your server may be compromised by ' .
600 'unauthorized people downloading your configuration.'
601 ),
602 E_USER_WARNING
603 );
604 }
605
606 $relation = new Relation();
607
608 if ($server > 0) {
609 $cfgRelation = $relation->getRelationsParam();
610 if (! $cfgRelation['allworks']
611 && $cfg['PmaNoRelation_DisableWarning'] == false
612 ) {
613 $msg_text = __(
614 'The phpMyAdmin configuration storage is not completely '
615 . 'configured, some extended features have been deactivated. '
616 . '%sFind out why%s. '
617 );
618 if ($cfg['ZeroConf'] == true) {
619 $msg_text .= '<br>' .
620 __(
621 'Or alternately go to \'Operations\' tab of any database '
622 . 'to set it up there.'
623 );
624 }
625 $msg = Message::notice($msg_text);
626 $msg->addParamHtml('<a href="./chk_rel.php" data-post="' . $common_url_query . '">');
627 $msg->addParamHtml('</a>');
628 /* Show error if user has configured something, notice elsewhere */
629 if (!empty($cfg['Servers'][$server]['pmadb'])) {
630 $msg->isError(true);
631 }
632 $msg->display();
633 } // end if
634 }
635
636 /**
637 * Warning about Suhosin only if its simulation mode is not enabled
638 */
639 if ($cfg['SuhosinDisableWarning'] == false
640 && ini_get('suhosin.request.max_value_length')
641 && ini_get('suhosin.simulation') == '0'
642 ) {
643 trigger_error(
644 sprintf(
645 __(
646 'Server running with Suhosin. Please refer to %sdocumentation%s ' .
647 'for possible issues.'
648 ),
649 '[doc@faq1-38]',
650 '[/doc]'
651 ),
652 E_USER_WARNING
653 );
654 }
655
656 /* Missing template cache */
657 if (is_null($GLOBALS['PMA_Config']->getTempDir('twig'))) {
658 trigger_error(
659 sprintf(
660 __('The $cfg[\'TempDir\'] (%s) is not accessible. phpMyAdmin is not able to cache templates and will be slow because of this.'),
661 $GLOBALS['PMA_Config']->get('TempDir')
662 ),
663 E_USER_WARNING
664 );
665 }
666
667 /**
668 * Warning about incomplete translations.
669 *
670 * The data file is created while creating release by ./scripts/remove-incomplete-mo
671 */
672 if (@file_exists('libraries/language_stats.inc.php')) {
673 include 'libraries/language_stats.inc.php';
674 /*
675 * This message is intentionally not translated, because we're
676 * handling incomplete translations here and focus on english
677 * speaking users.
678 */
679 if (isset($GLOBALS['language_stats'][$lang])
680 && $GLOBALS['language_stats'][$lang] < $cfg['TranslationWarningThreshold']
681 ) {
682 trigger_error(
683 'You are using an incomplete translation, please help to make it '
684 . 'better by [a@https://www.phpmyadmin.net/translate/'
685 . '@_blank]contributing[/a].',
686 E_USER_NOTICE
687 );
688 }
689 }
phpMyAdmin