Home Explore Help
Sign In
iProspective
/
dolibarr
3
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: 2bf36bff6d
Branches Tags
dolibarr
/
htdocs
/
public
/
website
/
styles.css.php

styles.css.php 4.3 KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156 
  1. <?php
    2. 

  2. /* Copyright (C) 2016-2017 Laurent Destailleur  <eldy@users.sourceforge.net>
    3. 

  3.  *
    4. 

  4.  * This program is free software; you can redistribute it and/or modify
    5. 

  5.  * it under the terms of the GNU General Public License as published by
    6. 

  6.  * the Free Software Foundation; either version 3 of the License, or
    7. 

  7.  * (at your option) any later version.
    8. 

  8.  *
    9. 

  9.  * This program is distributed in the hope that it will be useful,
    10. 

  10.  * but WITHOUT ANY WARRANTY; without even the implied warranty of
    11. 

  11.  * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
    12. 

  12.  * GNU General Public License for more details.
    13. 

  13.  *
    14. 

  14.  * You should have received a copy of the GNU General Public License
    15. 

  15.  * along with this program. If not, see <https://www.gnu.org/licenses/>.
    16. 

  16.  */
    17. 

  17. 

  18. /**
    19. 

  19.  *     	\file       htdocs/public/website/styles.css.php
    20. 

  20.  *		\ingroup    website
    21. 

  21.  *		\brief      Page to output style page. Called with <link rel="stylesheet" href="styles.css.php?websiteid=123" type="text/css" />
    22. 

  22.  */
    23. 

  23. 

  24. if (!defined('NOTOKENRENEWAL')) define('NOTOKENRENEWAL', 1); // Disables token renewal
    25. 

  25. if (!defined('NOLOGIN'))        define("NOLOGIN", 1);
    26. 

  26. if (!defined('NOCSRFCHECK'))    define("NOCSRFCHECK", 1); // We accept to go on this page from external web site.
    27. 

  27. if (!defined('NOREQUIREMENU'))  define('NOREQUIREMENU', '1');
    28. 

  28. if (!defined('NOREQUIREHTML'))  define('NOREQUIREHTML', '1');
    29. 

  29. if (!defined('NOREQUIREAJAX'))  define('NOREQUIREAJAX', '1');
    30. 

  30. 

  31. /**
    32. 

  32.  * Header empty
    33. 

  33.  *
    34. 

  34.  * @return	void
    35. 

  35.  */
    36. 

  36. function llxHeader()
    37. 

  37. {
    38. 

  38. }
    39. 

  39. /**
    40. 

  40.  * Footer empty
    41. 

  41.  *
    42. 

  42.  * @return	void
    43. 

  43.  */
    44. 

  44. function llxFooter()
    45. 

  45. {
    46. 

  46. }
    47. 

  47. 

  48. require '../../master.inc.php';
    49. 

  49. require_once DOL_DOCUMENT_ROOT.'/core/lib/files.lib.php';
    50. 

  50. 

  51. 

  52. $error = 0;
    53. 

  53. $website = GETPOST('website', 'alpha');
    54. 

  54. $websiteid = GETPOST('websiteid', 'int');
    55. 

  55. $pageid = GETPOST('page', 'alpha') ?GETPOST('page', 'alpha') : GETPOST('pageid', 'alpha');
    56. 

  56. 

  57. $accessallowed = 1;
    58. 

  58. $type = '';
    59. 

  59. 

  60. 

  61. /*
    62. 

  62.  * View
    63. 

  63.  */
    64. 

  64. 

  65. $appli = constant('DOL_APPLICATION_TITLE');
    66. 

  66. if (!empty($conf->global->MAIN_APPLICATION_TITLE)) $appli = $conf->global->MAIN_APPLICATION_TITLE;
    67. 

  67. 

  68. //print 'Directory with '.$appli.' websites.<br>';
    69. 

  69. 

  70. if (empty($pageid))
    71. 

  71. {
    72. 

  72.     require_once DOL_DOCUMENT_ROOT.'/website/class/website.class.php';
    73. 

  73.     require_once DOL_DOCUMENT_ROOT.'/website/class/websitepage.class.php';
    74. 

  74. 

  75.     $object = new Website($db);
    76. 

  76.     if ($websiteid)
    77. 

  77.     {
    78. 

  78.         $object->fetch($websiteid);
    79. 

  79.         $website = $object->ref;
    80. 

  80.     }
    81. 

  81.     else
    82. 

  82.     {
    83. 

  83.         $object->fetch(0, $website);
    84. 

  84.     }
    85. 

  85. 

  86.     $objectpage = new WebsitePage($db);
    87. 

  87.     /* Not required for CSS file
    88. 

  88.     $array=$objectpage->fetchAll($object->id);
    89. 

  89. 

  90.     if (is_array($array) && count($array) > 0)
    91. 

  91.     {
    92. 

  92.         $firstrep=reset($array);
    93. 

  93.         $pageid=$firstrep->id;
    94. 

  94.     }
    95. 

  95.     */
    96. 

  96. }
    97. 

  97. /* Not required for CSS file
    98. 

  98. if (empty($pageid))
    99. 

  99. {
    100. 

  100.     $langs->load("website");
    101. 

  101.     print $langs->trans("PreviewOfSiteNotYetAvailable");
    102. 

  102.     exit;
    103. 

  103. }
    104. 

  104. */
    105. 

  105. 

  106. // Security: Delete string ../ into $original_file
    107. 

  107. global $dolibarr_main_data_root;
    108. 

  108. 

  109. $original_file = $dolibarr_main_data_root.'/website/'.$website.'/styles.css.php';
    110. 

  110. 

  111. // Find the subdirectory name as the reference
    112. 

  112. $refname = basename(dirname($original_file)."/");
    113. 

  113. 

  114. // Security:
    115. 

  115. // Limite acces si droits non corrects
    116. 

  116. if (!$accessallowed)
    117. 

  117. {
    118. 

  118.     accessforbidden();
    119. 

  119. }
    120. 

  120. 

  121. // Security:
    122. 

  122. // On interdit les remontees de repertoire ainsi que les pipe dans
    123. 

  123. // les noms de fichiers.
    124. 

  124. if (preg_match('/\.\./', $original_file) || preg_match('/[<>|]/', $original_file))
    125. 

  125. {
    126. 

  126.     dol_syslog("Refused to deliver file ".$original_file);
    127. 

  127.     $file = basename($original_file); // Do no show plain path of original_file in shown error message
    128. 

  128.     dol_print_error(0, $langs->trans("ErrorFileNameInvalid", $file));
    129. 

  129.     exit;
    130. 

  130. }
    131. 

  131. 

  132. clearstatcache();
    133. 

  133. 

  134. $filename = basename($original_file);
    135. 

  135. 

  136. // Output file on browser
    137. 

  137. dol_syslog("styles.css.php include $original_file $filename content-type=$type");
    138. 

  138. $original_file_osencoded = dol_osencode($original_file); // New file name encoded in OS encoding charset
    139. 

  139. 

  140. // This test if file exists should be useless. We keep it to find bug more easily
    141. 

  141. if (!file_exists($original_file_osencoded))
    142. 

  142. {
    143. 

  143.     $langs->load("website");
    144. 

  144.     print $langs->trans("RequestedPageHasNoContentYet", $pageid);
    145. 

  145.     //dol_print_error(0,$langs->trans("ErrorFileDoesNotExists",$original_file));
    146. 

  146.     exit;
    147. 

  147. }
    148. 

  148. 

  149. 

  150. // Output page content
    151. 

  151. define('USEDOLIBARRSERVER', 1);
    152. 

  152. print '/* Page content '.$original_file.' : CSS content that was saved into tpl dir */'."\n";
    153. 

  153. require_once $original_file_osencoded;
    154. 

  154. 

  155. 

  156. if (is_object($db)) $db->close();
    157.