oidplusalarmingautosfxaysaliacalllibchecksum-toolscolormanagercryptochatcurrency_converterdecoderdelphiutilsdistributeddpcstudiodpg2fastphpfileformatsfilter_foundryforestgridgameht46f47_simulatorindexer_suiteipe_artfile_utilsjavautilsjumperlightgamelogviewermusikboxmystic_houseoidconverteroidinfo_apioidinfo_new_designpersonal-webbasephp_antispamphp_clientchallengephp_guestbookphp_utilsplumbersprependrecyclebinunitsimple_log_eventsokobanspacemissionstackmanuserdetect2uuid_mac_utilsvgwhoisvnagwebcounterwinbugtrackeryt_downloader

BlueGreycalmElegant

Català-Valencià – Catalan中文 – Chinese (Simplified)中文 – Chinese (Traditional)Česky – CzechDansk – DanishNederlands – DutchEnglish – EnglishSuomi – FinnishFrançais – FrenchDeutsch – Germanעברית – Hebrewहिंदी – HindiMagyar – HungarianBahasa Indonesia – IndonesianItaliano – Italian日本語 – Japanese한국어 – KoreanМакедонски – Macedonianमराठी – MarathiNorsk – NorwegianPolski – PolishPortuguês – PortuguesePortuguês – Portuguese (Brazil)Русский – RussianSlovenčina – SlovakSlovenščina – SlovenianEspañol – SpanishSvenska – SwedishTürkçe – TurkishУкраїнська – UkrainianOëzbekcha – Uzbek

Compare Revisions

• This comparison shows the changes necessary to convert path

  → /trunk/plugins/viathinksoft/adminPages/010_notifications/OIDplusPageAdminNotifications.class.php @ 1007

  → /trunk/plugins/viathinksoft/adminPages/010_notifications/OIDplusPageAdminNotifications.class.php @ 1008

  ↔ Reverse comparison

• Compare Path:	Rev

  With Path:	Rev

Regard whitespace Rev 1007 → Rev 1008

/trunk/plugins/viathinksoft/adminPages/010_notifications/OIDplusPageAdminNotifications.class.php
130,21 → 130,27
return false;
}
private function getNotificationsCheckDirAccess($dir) {
$notifications = array();
private function webAccessWorks($dir) {
// Attention! This check does not work if OIDplus is password protected!
// The only real solution is to check via JavaScript, which is done by setup/
$url = OIDplus::webpath(null,OIDplus::PATH_ABSOLUTE_CANONICAL).$dir;
$access_worked = url_get_contents($url) !== false;
if ($access_worked) return $url;
if (!$access_worked) {
$url_alt = OIDplus::webpath(null,OIDplus::PATH_ABSOLUTE).$dir;
if ($url != $url_alt) {
$access_worked = url_get_contents($url_alt) !== false;
if ($access_worked) return $url;
}
}
if ($access_worked) {
return false;
}
private function getNotificationsCheckDirAccess($dir) {
$notifications = array();
if (($url = $this->webAccessWorks($dir)) !== false) {
// Re-use message taken from setup/includes/setup_base.js
$msg = _L('Attention: The following directory is world-readable: %1 ! You need to configure your web server to restrict access to this directory! (For Apache see <i>.htaccess</i>, for Microsoft IIS see <i>web.config</i>, for Nginx see <i>nginx.conf</i>).','<a target="_blank" href="'.$url.'">'.$dir.'</a>');
$notifications[] = array('CRIT', $msg);
158,6 → 164,9
$notifications = array();
if ((!$user || ($user == 'admin')) && OIDplus::authUtils()->isAdminLoggedIn()) {
// Check if critical directories are world-readable
if ($this->webAccessWorks('index.php') === false) {
$notifications[] = array('INFO', _L("The system can't check if critical directories (%1) are readable via web-browser. Please verify it manually.", 'userdata, res, dev, includes, setup/includes'));
} else {
// see setup/includes/setup_base.js
$forbidden_dirs = array(
"userdata/index.html",
170,6 → 179,7
foreach ($forbidden_dirs as $dir) {
$notifications = array_merge($notifications, $this->getNotificationsCheckDirAccess($dir));
}
}
// Check if cache directory is writeable
if (!is_writeable(OIDplus::localpath(null).'userdata/cache/')) {