2 /* vim: set expandtab sw=4 ts=4 sts=4: */
10 * Gets some core libraries and displays a top message if required
12 require_once 'libraries/common.inc.php';
15 * display Git revision if requested
17 require_once 'libraries/display_git_revision.lib.php';
20 * pass variables to child pages
25 'collation_connection',
29 foreach ($drops as $each_drop) {
30 if (array_key_exists($each_drop, $_GET)) {
31 unset($_GET[$each_drop]);
34 unset($drops, $each_drop);
36 // If we have a valid target, let's load that script instead
37 if (! empty($_REQUEST['target'])
38 && is_string($_REQUEST['target'])
39 && ! preg_match('/^index/', $_REQUEST['target'])
40 && in_array($_REQUEST['target'], $goto_whitelist)
42 include $_REQUEST['target'];
47 * Check if it is an ajax request to reload the recent tables list.
49 require_once 'libraries/RecentTable.class.php';
50 if ($GLOBALS['is_ajax_request'] && ! empty($_REQUEST['recent_table'])) {
51 $response = PMA_Response
::getInstance();
54 PMA_RecentTable
::getInstance()->getHtmlSelectOption()
59 if ($GLOBALS['PMA_Config']->isGitRevision()) {
60 if (isset($_REQUEST['git_revision']) && $GLOBALS['is_ajax_request'] == true) {
61 PMA_printGitRevision();
64 echo '<div id="is_git_revision"></div>';
67 // Handles some variables that may have been sent by the calling script
69 $GLOBALS['table'] = '';
72 // Any message to display?
73 if (! empty($message)) {
74 echo PMA_Util
::getMessage($message);
78 $common_url_query = PMA_URL_getCommon('', '');
80 // when $server > 0, a server has been chosen so we can display
81 // all MySQL-related information
83 include 'libraries/server_common.inc.php';
84 include 'libraries/StorageEngine.class.php';
86 // Use the verbose name of the server instead of the hostname
89 if (! empty($cfg['Server']['verbose'])) {
90 $server_info .= htmlspecialchars($cfg['Server']['verbose']);
91 if ($GLOBALS['cfg']['ShowServerInfo']) {
95 if ($GLOBALS['cfg']['ShowServerInfo'] ||
empty($cfg['Server']['verbose'])) {
96 $server_info .= $GLOBALS['dbi']->getHostInfo();
98 if (! empty($cfg['Server']['verbose']) && $GLOBALS['cfg']['ShowServerInfo']) {
101 $mysql_cur_user_and_host = $GLOBALS['dbi']->fetchValue('SELECT USER();');
103 // should we add the port info here?
104 $short_server_info = (!empty($GLOBALS['cfg']['Server']['verbose'])
105 ?
$GLOBALS['cfg']['Server']['verbose']
106 : $GLOBALS['cfg']['Server']['host']);
109 echo '<div id="maincontainer">' . "\n";
110 echo '<div id="main_pane_left">';
111 if ($server > 0 ||
count($cfg['Servers']) > 1
113 if ($cfg['DBG']['demo']) {
114 echo '<div class="group">';
115 echo '<h2>' . __('phpMyAdmin Demo Server') . '</h2>';
116 echo '<p style="margin: 0.5em 1em 0.5em 1em">';
119 'You are using the demo server. You can do anything here, but '
120 . 'please do not change root, debian-sys-maint and pma users. '
121 . 'More information is available at %s.'
123 '<a href="http://demo.phpmyadmin.net/">demo.phpmyadmin.net</a>'
128 echo '<div class="group">';
129 echo '<h2>' . __('General Settings') . '</h2>';
133 * Displays the MySQL servers choice form
135 if ($cfg['ServerDefault'] == 0
136 ||
(! $cfg['NavigationDisplayServers']
137 && (count($cfg['Servers']) > 1
138 ||
($server == 0 && count($cfg['Servers']) == 1)))
140 echo '<li id="li_select_server" class="no_bullets" >';
141 include_once 'libraries/select_server.lib.php';
142 echo PMA_Util
::getImage('s_host.png') . " " . PMA_selectServer(true, true);
147 * Displays the mysql server related links
149 if ($server > 0 && ! PMA_DRIZZLE
) {
150 include_once 'libraries/check_user_privileges.lib.php';
152 // Logout for advanced authentication
153 if ($cfg['Server']['auth_type'] != 'config') {
154 if ($cfg['ShowChgPassword']) {
155 $conditional_class = 'ajax';
157 PMA_Util
::getImage('s_passwd.png') . " " . __('Change password'),
158 'li_change_password',
159 'user_password.php?' . $common_url_query,
162 'change_password_anchor',
168 echo ' <li id="li_select_mysql_collation" class="no_bullets" >';
169 echo ' <form method="post" action="index.php">' . "\n"
170 . PMA_URL_getHiddenInputs(null, null, 4, 'collation_connection')
171 . ' <label for="select_collation_connection">' . "\n"
172 . ' '. PMA_Util
::getImage('s_asci.png') . " "
173 . __('Server connection collation') . "\n"
174 // put the doc link in the form so that it appears on the same line
175 . PMA_Util
::showMySQLDocu('Charset-connection')
179 . PMA_generateCharsetDropdownBox(
180 PMA_CSDROPDOWN_COLLATION
,
181 'collation_connection',
182 'select_collation_connection',
183 $collation_connection,
190 } // end of if ($server > 0 && !PMA_DRIZZLE)
195 echo '<div class="group">';
196 echo '<h2>' . __('Appearance Settings') . '</h2>';
199 // Displays language selection combo
200 if (empty($cfg['Lang']) && count($GLOBALS['available_languages']) > 1) {
201 echo '<li id="li_select_lang" class="no_bullets">';
202 include_once 'libraries/display_select_lang.lib.php';
203 echo PMA_Util
::getImage('s_lang.png') . " " . PMA_getLanguageSelectorHtml();
207 // ThemeManager if available
209 if ($GLOBALS['cfg']['ThemeManager']) {
210 echo '<li id="li_select_theme" class="no_bullets">';
211 echo PMA_Util
::getImage('s_theme.png') . " "
212 . $_SESSION['PMA_Theme_Manager']->getHtmlSelectBox();
215 echo '<li id="li_select_fontsize">';
216 echo PMA_Config
::getFontsizeForm();
226 PMA_Util
::getImage('b_tblops.png')." " .__('More settings'),
227 'li_user_preferences',
228 'prefs_manage.php?' . $common_url_query,
241 echo '<div id="main_pane_right">';
244 if ($server > 0 && $GLOBALS['cfg']['ShowServerInfo']) {
246 echo '<div class="group">';
247 echo '<h2>' . __('Database server') . '</h2>';
250 __('Server:') . ' ' . $server_info,
254 __('Server type:') . ' ' . PMA_Util
::getServerType(),
258 __('Server version:')
260 . PMA_MYSQL_STR_VERSION
. ' - ' . PMA_MYSQL_VERSION_COMMENT
,
264 __('Protocol version:') . ' ' . $GLOBALS['dbi']->getProtoInfo(),
268 __('User:') . ' ' . htmlspecialchars($mysql_cur_user_and_host),
272 echo ' <li id="li_select_mysql_charset">';
273 echo ' ' . __('Server charset:') . ' '
274 . ' <span lang="en" dir="ltr">';
276 echo ' ' . $mysql_charsets_descriptions[$mysql_charset_map['utf-8']];
278 echo ' (' . $mysql_charset_map['utf-8'] . ')'
285 if ($GLOBALS['cfg']['ShowServerInfo'] ||
$GLOBALS['cfg']['ShowPhpInfo']) {
286 echo '<div class="group">';
287 echo '<h2>' . __('Web server') . '</h2>';
289 if ($GLOBALS['cfg']['ShowServerInfo']) {
290 PMA_printListItem($_SERVER['SERVER_SOFTWARE'], 'li_web_server_software');
293 $client_version_str = $GLOBALS['dbi']->getClientInfo();
294 if (preg_match('#\d+\.\d+\.\d+#', $client_version_str)
296 $GLOBALS['cfg']['Server']['extension'],
297 array('mysql', 'mysqli')
300 $client_version_str = 'libmysql - ' . $client_version_str;
303 __('Database client version:') . ' ' . $client_version_str,
304 'li_mysql_client_version'
307 $php_ext_string = __('PHP extension:') . ' '
308 . $GLOBALS['cfg']['Server']['extension'] . ' '
309 . PMA_Util
::showPHPDocu(
310 'book.' . $GLOBALS['cfg']['Server']['extension'] . '.php'
314 'li_used_php_extension'
319 if ($cfg['ShowPhpInfo']) {
321 __('Show PHP information'),
323 'phpinfo.php?' . $common_url_query,
332 echo '<div class="group pmagroup">';
333 echo '<h2>phpMyAdmin</h2>';
336 // We rely on CSP to allow access to http://www.phpmyadmin.net, but IE lacks
337 // support here and does not allow request to http once using https.
338 if ($GLOBALS['cfg']['VersionCheck']
339 && (! $GLOBALS['PMA_Config']->get('is_https') || PMA_USR_BROWSER_AGENT
!= 'IE')
341 $class = 'jsversioncheck';
344 __('Version information:') . ' ' . PMA_VERSION
,
355 PMA_Util
::getDocuLink('index'),
362 PMA_linkURL('http://wiki.phpmyadmin.net/'),
367 // does not work if no target specified, don't know why
369 __('Official Homepage'),
371 PMA_linkURL('http://www.phpMyAdmin.net/'),
378 PMA_linkURL('http://www.phpmyadmin.net/home_page/improve.php'),
385 PMA_linkURL('http://www.phpmyadmin.net/home_page/support.php'),
390 __('List of changes'),
392 PMA_linkURL('changelog.php'),
404 * Warning if using the default MySQL privileged account
407 && $cfg['Server']['user'] == 'root'
408 && $cfg['Server']['password'] == ''
412 'Your configuration file contains settings (root with no password)'
413 . ' that correspond to the default MySQL privileged account.'
414 . ' Your MySQL server is running with this default, is open to'
415 . ' intrusion, and you really should fix this security hole by'
416 . ' setting a password for user \'root\'.'
423 * As we try to handle charsets by ourself, mbstring overloads just
424 * break it, see bug 1063821.
426 if (@extension_loaded
('mbstring') && @ini_get
('mbstring.func_overload') > 1) {
429 'You have enabled mbstring.func_overload in your PHP '
430 . 'configuration. This option is incompatible with phpMyAdmin '
431 . 'and might cause some data to be corrupted!'
438 * mbstring is used for handling multibyte inside parser, so it is good
439 * to tell user something might be broken without it, see bug #1063149.
441 if (! @extension_loaded
('mbstring')) {
444 'The mbstring PHP extension was not found and you seem to be using'
445 . ' a multibyte charset. Without the mbstring extension phpMyAdmin'
446 . ' is unable to split strings correctly and it may result in'
447 . ' unexpected results.'
454 * Check whether session.gc_maxlifetime limits session validity.
456 $gc_time = (int)@ini_get
('session.gc_maxlifetime');
457 if ($gc_time < $GLOBALS['cfg']['LoginCookieValidity'] ) {
459 __('Your PHP parameter [a@http://php.net/manual/en/session.configuration.php#ini.session.gc-maxlifetime@_blank]session.gc_maxlifetime[/a] is lower than cookie validity configured in phpMyAdmin, because of this, your login will expire sooner than configured in phpMyAdmin.'),
465 * Check whether LoginCookieValidity is limited by LoginCookieStore.
467 if ($GLOBALS['cfg']['LoginCookieStore'] != 0
468 && $GLOBALS['cfg']['LoginCookieStore'] < $GLOBALS['cfg']['LoginCookieValidity']
471 __('Login cookie store is lower than cookie validity configured in phpMyAdmin, because of this, your login will expire sooner than configured in phpMyAdmin.'),
477 * Check if user does not have defined blowfish secret and it is being used.
479 if (! empty($_SESSION['auto_blowfish_secret'])
480 && empty($GLOBALS['cfg']['blowfish_secret'])
483 __('The configuration file now needs a secret passphrase (blowfish_secret).'),
489 * Check for existence of config directory which should not exist in
490 * production environment.
492 if (file_exists('config')) {
494 __('Directory [code]config[/code], which is used by the setup script, still exists in your phpMyAdmin directory. It is strongly recommended to remove it once phpMyAdmin has been configured. Otherwise the security of your server may be compromised by unauthorized people downloading your configuration.'),
500 $cfgRelation = PMA_getRelationsParam();
501 if (! $cfgRelation['allworks']
502 && $cfg['PmaNoRelation_DisableWarning'] == false
504 $msg = PMA_Message
::notice(__('The phpMyAdmin configuration storage is not completely configured, some extended features have been deactivated. To find out why click %shere%s.'));
506 '<a href="' . $cfg['PmaAbsoluteUri'] . 'chk_rel.php?'
507 . $common_url_query . '">',
510 $msg->addParam('</a>', false);
511 /* Show error if user has configured something, notice elsewhere */
512 if (!empty($cfg['Servers'][$server]['pmadb'])) {
520 * Warning about different MySQL library and server version
521 * (a difference on the third digit does not count).
522 * If someday there is a constant that we can check about mysqlnd,
523 * we can use it instead of strpos().
524 * If no default server is set, $GLOBALS['dbi'] is not defined yet.
525 * Drizzle can speak MySQL protocol, so don't warn about version mismatch for
528 if (isset($GLOBALS['dbi'])
530 && $cfg['ServerLibraryDifference_DisableWarning'] == false
532 $_client_info = $GLOBALS['dbi']->getClientInfo();
534 && strpos($_client_info, 'mysqlnd') === false
535 && substr(PMA_MYSQL_CLIENT_API
, 0, 3) != substr(PMA_MYSQL_INT_VERSION
, 0, 3)
540 __('Your PHP MySQL library version %s differs from your MySQL server version %s. This may cause unpredictable behavior.'),
543 PMA_MYSQL_STR_VERSION
,
545 strpos(PMA_MYSQL_STR_VERSION
. '-', '-')
552 unset($_client_info);
556 * Warning about Suhosin only if its simulation mode is not enabled
558 if ($cfg['SuhosinDisableWarning'] == false
559 && @ini_get
('suhosin.request.max_value_length')
560 && @ini_get
('suhosin.simulation') == '0'
564 __('Server running with Suhosin. Please refer to %sdocumentation%s for possible issues.'),
573 * Warning about mcrypt.
575 if (! function_exists('mcrypt_encrypt')
576 && ! $GLOBALS['cfg']['McryptDisableWarning']
578 PMA_warnMissingExtension('mcrypt');
582 * Warning about incomplete translations.
584 * The data file is created while creating release by ./scripts/remove-incomplete-mo
586 if (file_exists('libraries/language_stats.inc.php')) {
587 include 'libraries/language_stats.inc.php';
589 * This message is intentionally not translated, because we're
590 * handling incomplete translations here and focus on english
593 if (isset($GLOBALS['language_stats'][$lang])
594 && $GLOBALS['language_stats'][$lang] < $cfg['TranslationWarningThreshold']
597 'You are using an incomplete translation, please help to make it '
598 . 'better by [a@http://www.phpmyadmin.net/home_page/improve.php'
599 . '#translate@_blank]contributing[/a].',
606 * prints list item for main page
608 * @param string $name displayed text
609 * @param string $id id, used for css styles
610 * @param string $url make item as link with $url as target
611 * @param string $mysql_help_page display a link to MySQL's manual
612 * @param string $target special target for $url
613 * @param string $a_id id for the anchor,
614 * used for jQuery to hook in functions
615 * @param string $class class for the li element
616 * @param string $a_class class for the anchor element
620 function PMA_printListItem($name, $id = null, $url = null,
621 $mysql_help_page = null, $target = null, $a_id = null, $class = null,
624 echo '<li id="' . $id . '"';
625 if (null !== $class) {
626 echo ' class="' . $class . '"';
630 echo '<a href="' . $url . '"';
631 if (null !== $target) {
632 echo ' target="' . $target . '"';
635 echo ' id="' . $a_id .'"';
637 if (null != $a_class) {
638 echo ' class="' . $a_class .'"';
648 if (null !== $mysql_help_page) {
649 echo PMA_Util
::showMySQLDocu($mysql_help_page);