. */ declare(strict_types=1); use Fisharebest\Localization\Locale as WebtreesLocale; use Fisharebest\Localization\Locale\LocaleInterface; use Fisharebest\Webtrees\Auth; use Fisharebest\Webtrees\Database; use Fisharebest\Webtrees\DebugBar; use Fisharebest\Webtrees\Exceptions\Handler; use Fisharebest\Webtrees\Http\Controllers\SetupController; use Fisharebest\Webtrees\Http\Middleware\CheckCsrf; use Fisharebest\Webtrees\Http\Middleware\CheckForMaintenanceMode; use Fisharebest\Webtrees\Http\Middleware\Housekeeping; use Fisharebest\Webtrees\Http\Middleware\PageHitCounter; use Fisharebest\Webtrees\Http\Middleware\UseTransaction; use Fisharebest\Webtrees\I18N; use Fisharebest\Webtrees\Resolver; use Fisharebest\Webtrees\Services\TimeoutService; use Fisharebest\Webtrees\Session; use Fisharebest\Webtrees\Site; use Fisharebest\Webtrees\Theme; use Fisharebest\Webtrees\Tree; use Fisharebest\Webtrees\User; use Fisharebest\Webtrees\View; use Fisharebest\Webtrees\Webtrees; use League\Flysystem\Adapter\Local; use League\Flysystem\Filesystem; use Symfony\Component\HttpFoundation\JsonResponse; use Symfony\Component\HttpFoundation\RedirectResponse; use Symfony\Component\HttpFoundation\Request; use Symfony\Component\HttpFoundation\Response; require __DIR__ . '/vendor/autoload.php'; // Regular expressions for validating user input, etc. const WT_MINIMUM_PASSWORD_LENGTH = 6; const WT_REGEX_PASSWORD = '.{' . WT_MINIMUM_PASSWORD_LENGTH . ',}'; const WT_ROOT = __DIR__ . DIRECTORY_SEPARATOR; Webtrees::init(); // Initialise the DebugBar for development. // Use `composer install --dev` on a development build to enable. // Note that you may need to increase the size of the fcgi buffers on nginx. // e.g. add these lines to your fastcgi_params file: // fastcgi_buffers 16 16m; // fastcgi_buffer_size 32m; DebugBar::init(Webtrees::DEBUG && class_exists('\\DebugBar\\StandardDebugBar')); // Calculate the base URL, so we can generate absolute URLs. $request = Request::createFromGlobals(); $request_uri = $request->getSchemeAndHttpHost() . $request->getRequestUri(); // Remove any PHP script name and parameters. $base_uri = preg_replace('/[^\/]+\.php(\?.*)?$/', '', $request_uri); define('WT_BASE_URL', $base_uri); DebugBar::startMeasure('init database'); // Connect to the database try { // No config file? Run the setup wizard if (!file_exists(Webtrees::CONFIG_FILE)) { define('WT_DATA_DIR', 'data/'); $request = Request::createFromGlobals(); $controller = new SetupController(); $response = $controller->setup($request); $response->prepare($request)->send(); return; } $database_config = parse_ini_file(Webtrees::CONFIG_FILE); if ($database_config === false) { throw new Exception('Invalid config file: ' . Webtrees::CONFIG_FILE); } // Read the connection settings and create the database Database::createInstance($database_config); // Update the database schema, if necessary. Database::updateSchema('\Fisharebest\Webtrees\Schema', 'WT_SCHEMA_VERSION', Webtrees::SCHEMA_VERSION); } catch (PDOException $ex) { DebugBar::addThrowable($ex); define('WT_DATA_DIR', 'data/'); I18N::init(); if ($ex->getCode() === 1045) { // Error during connection? $content = view('errors/database-connection', ['error' => $ex->getMessage()]); } else { // Error in a migration script? $content = view('errors/database-error', ['error' => $ex->getMessage()]); } $html = view('layouts/error', ['content' => $content]); $response = new Response($html, Response::HTTP_SERVICE_UNAVAILABLE); $response->prepare($request)->send(); return; } catch (Throwable $ex) { DebugBar::addThrowable($ex); define('WT_DATA_DIR', 'data/'); I18N::init(); $content = view('errors/database-connection', ['error' => $ex->getMessage()]); $html = view('layouts/error', ['content' => $content]); $response = new Response($html, Response::HTTP_SERVICE_UNAVAILABLE); $response->prepare($request)->send(); return; } DebugBar::stopMeasure('init database'); // The config.ini.php file must always be in a fixed location. // Other user files can be stored elsewhere... define('WT_DATA_DIR', realpath(Site::getPreference('INDEX_DIRECTORY', 'data/')) . DIRECTORY_SEPARATOR); // Some broken servers block access to their own temp folder using open_basedir... $data_dir = new Filesystem(new Local(WT_DATA_DIR)); $data_dir->createDir('tmp'); putenv('TMPDIR=' . WT_DATA_DIR . 'tmp'); // Request more resources - if we can/want to $memory_limit = Site::getPreference('MEMORY_LIMIT'); if ($memory_limit !== '' && strpos(ini_get('disable_functions'), 'ini_set') === false) { ini_set('memory_limit', $memory_limit); } $max_execution_time = Site::getPreference('MAX_EXECUTION_TIME'); if ($max_execution_time !== '' && strpos(ini_get('disable_functions'), 'set_time_limit') === false) { set_time_limit((int) $max_execution_time); } // Sessions Session::start(); // Note that the database/webservers may not be synchronised, so use DB time throughout. define('WT_TIMESTAMP', (int) Database::prepare("SELECT UNIX_TIMESTAMP()")->fetchOne()); // Users get their own time-zone. Visitors get the site time-zone. try { if (Auth::check()) { date_default_timezone_set(Auth::user()->getPreference('TIMEZONE')); } else { date_default_timezone_set(Site::getPreference('TIMEZONE')); } } catch (ErrorException $ex) { // Server upgrades and migrations can leave us with invalid timezone settings. date_default_timezone_set('UTC'); } define('WT_TIMESTAMP_OFFSET', (new DateTime('now'))->getOffset()); define('WT_CLIENT_JD', 2440588 + intdiv(WT_TIMESTAMP + WT_TIMESTAMP_OFFSET, 86400)); // Update the last-login time no more than once a minute if (WT_TIMESTAMP - Session::get('activity_time') >= 60) { if (Session::get('masquerade') === null) { Auth::user()->setPreference('sessiontime', (string) WT_TIMESTAMP); } Session::put('activity_time', WT_TIMESTAMP); } DebugBar::startMeasure('routing'); // The HTTP request. $request = Request::createFromGlobals(); $route = $request->get('route'); try { // Most requests will need the current tree and user. $all_trees = Tree::getAll(); $tree = $all_trees[$request->get('ged')] ?? null; // No tree specified/available? Choose one. if ($tree === null && $request->getMethod() === Request::METHOD_GET) { $tree = $all_trees[Site::getPreference('DEFAULT_GEDCOM')] ?? array_values($all_trees)[0] ?? null; } // Select a locale define('WT_LOCALE', I18N::init('', $tree)); Session::put('locale', WT_LOCALE); // Most layouts will require a tree for the page header/footer View::share('tree', $tree); // Load the routing table. $routes = require 'routes/web.php'; // Find the controller and action for the selected route $controller_action = $routes[$request->getMethod() . ':' . $route] ?? 'ErrorController@noRouteFound'; [$controller_name, $action] = explode('@', $controller_action); $controller_class = '\\Fisharebest\\Webtrees\\Http\\Controllers\\' . $controller_name; // Set up dependency injection for the controllers. $resolver = new Resolver(); $resolver->bind(Resolver::class, $resolver); $resolver->bind(Tree::class, $tree); $resolver->bind(User::class, Auth::user()); $resolver->bind(LocaleInterface::class, WebtreesLocale::create(WT_LOCALE)); $resolver->bind(TimeoutService::class, new TimeoutService(microtime(true))); $resolver->bind(Filesystem::class, new Filesystem(new Local(WT_DATA_DIR))); $controller = $resolver->resolve($controller_class); DebugBar::stopMeasure('routing'); DebugBar::startMeasure('init theme'); // Last theme used? $theme_id = Session::get('theme_id'); // Default for tree if (!array_key_exists($theme_id, Theme::themeNames()) && $tree) { $theme_id = $tree->getPreference('THEME_DIR'); } // Default for site if (!array_key_exists($theme_id, Theme::themeNames())) { $theme_id = Site::getPreference('THEME_DIR'); } // Default if (!array_key_exists($theme_id, Theme::themeNames())) { $theme_id = 'webtrees'; } foreach (Theme::installedThemes() as $theme) { if ($theme->themeId() === $theme_id) { Theme::theme($theme)->init($request, $tree); // Remember this setting if (Site::getPreference('ALLOW_USER_THEMES') === '1') { Session::put('theme_id', $theme_id); } break; } } DebugBar::stopMeasure('init theme'); // Note that we can't stop this timer, as running the action will // generate the response - which includes (and stops) the timer DebugBar::startMeasure('controller_action'); $middleware_stack = [ CheckForMaintenanceMode::class, ]; if ($request->getMethod() === Request::METHOD_GET) { $middleware_stack[] = PageHitCounter::class; $middleware_stack[] = Housekeeping::class; } if ($request->getMethod() === Request::METHOD_POST) { $middleware_stack[] = UseTransaction::class; $middleware_stack[] = CheckCsrf::class; } // Apply the middleware using the "onion" pattern. $pipeline = array_reduce($middleware_stack, function (Closure $next, string $middleware) use ($resolver): Closure { // Create a closure to apply the middleware. return function (Request $request) use ($middleware, $next, $resolver): Response { return $resolver->resolve($middleware)->handle($request, $next); }; }, function (Request $request) use ($controller, $action, $resolver): Response { $resolver->bind(Request::class, $request); return $resolver->dispatch($controller, $action); }); $response = call_user_func($pipeline, $request); } catch (Exception $exception) { DebugBar::addThrowable($exception); $response = (new Handler())->render($request, $exception); } // Send response if ($response instanceof RedirectResponse) { // Show the debug data on the next page DebugBar::stackData(); } elseif ($response instanceof JsonResponse) { // Use HTTP headers and some jQuery to add debug to the current page. DebugBar::sendDataInHeaders(); } $response->prepare($request)->send();