332 lines
9.7 KiB
PHP
332 lines
9.7 KiB
PHP
<?php
|
|
/**
|
|
* @author Administrator <Administrator@WINDOWS-2012>
|
|
* @author Arthur Schiwon <blizzz@owncloud.com>
|
|
* @author Bart Visscher <bartv@thisnet.nl>
|
|
* @author Bernhard Posselt <dev@bernhard-posselt.com>
|
|
* @author Brice Maron <brice@bmaron.net>
|
|
* @author Christopher Schäpers <kondou@ts.unde.re>
|
|
* @author François Kubler <francois@kubler.org>
|
|
* @author Jakob Sack <mail@jakobsack.de>
|
|
* @author Joas Schilling <nickvergessen@gmx.de>
|
|
* @author Lukas Reschke <lukas@owncloud.com>
|
|
* @author Robin Appelman <icewind@owncloud.com>
|
|
* @author Sean Comeau <sean@ftlnetworks.ca>
|
|
* @author Serge Martin <edb@sigluy.net>
|
|
* @author Stefan Seidel <android@stefanseidel.info>
|
|
* @author Thomas Müller <thomas.mueller@tmit.eu>
|
|
* @author Vincent Petry <pvince81@owncloud.com>
|
|
*
|
|
* @copyright Copyright (c) 2015, ownCloud, Inc.
|
|
* @license AGPL-3.0
|
|
*
|
|
* This code is free software: you can redistribute it and/or modify
|
|
* it under the terms of the GNU Affero General Public License, version 3,
|
|
* as published by the Free Software Foundation.
|
|
*
|
|
* This program is distributed in the hope that it will be useful,
|
|
* but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
|
* GNU Affero General Public License for more details.
|
|
*
|
|
* You should have received a copy of the GNU Affero General Public License, version 3,
|
|
* along with this program. If not, see <http://www.gnu.org/licenses/>
|
|
*
|
|
*/
|
|
use OCP\IConfig;
|
|
|
|
class OC_Setup {
|
|
/** @var IConfig */
|
|
protected $config;
|
|
|
|
/**
|
|
* @param IConfig $config
|
|
*/
|
|
function __construct(IConfig $config) {
|
|
$this->config = $config;
|
|
}
|
|
|
|
static $dbSetupClasses = array(
|
|
'mysql' => '\OC\Setup\MySQL',
|
|
'pgsql' => '\OC\Setup\PostgreSQL',
|
|
'oci' => '\OC\Setup\OCI',
|
|
'mssql' => '\OC\Setup\MSSQL',
|
|
'sqlite' => '\OC\Setup\Sqlite',
|
|
'sqlite3' => '\OC\Setup\Sqlite',
|
|
);
|
|
|
|
/**
|
|
* @return OC_L10N
|
|
*/
|
|
public static function getTrans(){
|
|
return \OC::$server->getL10N('lib');
|
|
}
|
|
|
|
/**
|
|
* Wrapper around the "class_exists" PHP function to be able to mock it
|
|
* @param string $name
|
|
* @return bool
|
|
*/
|
|
public function class_exists($name) {
|
|
return class_exists($name);
|
|
}
|
|
|
|
/**
|
|
* Wrapper around the "is_callable" PHP function to be able to mock it
|
|
* @param string $name
|
|
* @return bool
|
|
*/
|
|
public function is_callable($name) {
|
|
return is_callable($name);
|
|
}
|
|
|
|
/**
|
|
* Get the available and supported databases of this instance
|
|
*
|
|
* @throws Exception
|
|
* @return array
|
|
*/
|
|
public function getSupportedDatabases() {
|
|
$availableDatabases = array(
|
|
'sqlite' => array(
|
|
'type' => 'class',
|
|
'call' => 'SQLite3',
|
|
'name' => 'SQLite'
|
|
),
|
|
'mysql' => array(
|
|
'type' => 'function',
|
|
'call' => 'mysql_connect',
|
|
'name' => 'MySQL/MariaDB'
|
|
),
|
|
'pgsql' => array(
|
|
'type' => 'function',
|
|
'call' => 'pg_connect',
|
|
'name' => 'PostgreSQL'
|
|
),
|
|
'oci' => array(
|
|
'type' => 'function',
|
|
'call' => 'oci_connect',
|
|
'name' => 'Oracle'
|
|
),
|
|
'mssql' => array(
|
|
'type' => 'function',
|
|
'call' => 'sqlsrv_connect',
|
|
'name' => 'MS SQL'
|
|
)
|
|
);
|
|
$configuredDatabases = $this->config->getSystemValue('supportedDatabases',
|
|
array('sqlite', 'mysql', 'pgsql'));
|
|
if(!is_array($configuredDatabases)) {
|
|
throw new Exception('Supported databases are not properly configured.');
|
|
}
|
|
|
|
$supportedDatabases = array();
|
|
|
|
foreach($configuredDatabases as $database) {
|
|
if(array_key_exists($database, $availableDatabases)) {
|
|
$working = false;
|
|
if($availableDatabases[$database]['type'] === 'class') {
|
|
$working = $this->class_exists($availableDatabases[$database]['call']);
|
|
} elseif ($availableDatabases[$database]['type'] === 'function') {
|
|
$working = $this->is_callable($availableDatabases[$database]['call']);
|
|
}
|
|
if($working) {
|
|
$supportedDatabases[$database] = $availableDatabases[$database]['name'];
|
|
}
|
|
}
|
|
}
|
|
|
|
return $supportedDatabases;
|
|
}
|
|
|
|
/**
|
|
* @param $options
|
|
* @return array
|
|
*/
|
|
public static function install($options) {
|
|
$l = self::getTrans();
|
|
|
|
$error = array();
|
|
$dbType = $options['dbtype'];
|
|
|
|
if(empty($options['adminlogin'])) {
|
|
$error[] = $l->t('Set an admin username.');
|
|
}
|
|
if(empty($options['adminpass'])) {
|
|
$error[] = $l->t('Set an admin password.');
|
|
}
|
|
if(empty($options['directory'])) {
|
|
$options['directory'] = OC::$SERVERROOT."/data";
|
|
}
|
|
|
|
if (!isset(self::$dbSetupClasses[$dbType])) {
|
|
$dbType = 'sqlite';
|
|
}
|
|
|
|
$username = htmlspecialchars_decode($options['adminlogin']);
|
|
$password = htmlspecialchars_decode($options['adminpass']);
|
|
$dataDir = htmlspecialchars_decode($options['directory']);
|
|
|
|
$class = self::$dbSetupClasses[$dbType];
|
|
/** @var \OC\Setup\AbstractDatabase $dbSetup */
|
|
$dbSetup = new $class(self::getTrans(), 'db_structure.xml');
|
|
$error = array_merge($error, $dbSetup->validate($options));
|
|
|
|
// validate the data directory
|
|
if (
|
|
(!is_dir($dataDir) and !mkdir($dataDir)) or
|
|
!is_writable($dataDir)
|
|
) {
|
|
$error[] = $l->t("Can't create or write into the data directory %s", array($dataDir));
|
|
}
|
|
|
|
if(count($error) != 0) {
|
|
return $error;
|
|
}
|
|
|
|
$request = \OC::$server->getRequest();
|
|
|
|
//no errors, good
|
|
if(isset($options['trusted_domains'])
|
|
&& is_array($options['trusted_domains'])) {
|
|
$trustedDomains = $options['trusted_domains'];
|
|
} else {
|
|
$trustedDomains = [$request->getInsecureServerHost()];
|
|
}
|
|
|
|
if (OC_Util::runningOnWindows()) {
|
|
$dataDir = rtrim(realpath($dataDir), '\\');
|
|
}
|
|
|
|
//use sqlite3 when available, otherwise sqlite2 will be used.
|
|
if($dbType=='sqlite' and class_exists('SQLite3')) {
|
|
$dbType='sqlite3';
|
|
}
|
|
|
|
//generate a random salt that is used to salt the local user passwords
|
|
$salt = \OC::$server->getSecureRandom()->getLowStrengthGenerator()->generate(30);
|
|
// generate a secret
|
|
$secret = \OC::$server->getSecureRandom()->getMediumStrengthGenerator()->generate(48);
|
|
|
|
//write the config file
|
|
\OC::$server->getConfig()->setSystemValues([
|
|
'passwordsalt' => $salt,
|
|
'secret' => $secret,
|
|
'trusted_domains' => $trustedDomains,
|
|
'datadirectory' => $dataDir,
|
|
'overwrite.cli.url' => $request->getServerProtocol() . '://' . $request->getInsecureServerHost() . OC::$WEBROOT,
|
|
'dbtype' => $dbType,
|
|
'version' => implode('.', OC_Util::getVersion()),
|
|
]);
|
|
|
|
try {
|
|
$dbSetup->initialize($options);
|
|
$dbSetup->setupDatabase($username);
|
|
} catch (\OC\DatabaseSetupException $e) {
|
|
$error[] = array(
|
|
'error' => $e->getMessage(),
|
|
'hint' => $e->getHint()
|
|
);
|
|
return($error);
|
|
} catch (Exception $e) {
|
|
$error[] = array(
|
|
'error' => 'Error while trying to create admin user: ' . $e->getMessage(),
|
|
'hint' => ''
|
|
);
|
|
return($error);
|
|
}
|
|
|
|
//create the user and group
|
|
try {
|
|
OC_User::createUser($username, $password);
|
|
} catch(Exception $exception) {
|
|
$error[] = $exception->getMessage();
|
|
}
|
|
|
|
if(count($error) == 0) {
|
|
$appConfig = \OC::$server->getAppConfig();
|
|
$appConfig->setValue('core', 'installedat', microtime(true));
|
|
$appConfig->setValue('core', 'lastupdatedat', microtime(true));
|
|
|
|
OC_Group::createGroup('admin');
|
|
OC_Group::addToGroup($username, 'admin');
|
|
OC_User::login($username, $password);
|
|
|
|
//guess what this does
|
|
OC_Installer::installShippedApps();
|
|
|
|
// create empty file in data dir, so we can later find
|
|
// out that this is indeed an ownCloud data directory
|
|
file_put_contents(OC_Config::getValue('datadirectory', OC::$SERVERROOT.'/data').'/.ocdata', '');
|
|
|
|
// Update htaccess files for apache hosts
|
|
if (isset($_SERVER['SERVER_SOFTWARE']) && strstr($_SERVER['SERVER_SOFTWARE'], 'Apache')) {
|
|
self::updateHtaccess();
|
|
self::protectDataDirectory();
|
|
}
|
|
|
|
//and we are done
|
|
OC_Config::setValue('installed', true);
|
|
}
|
|
|
|
return $error;
|
|
}
|
|
|
|
/**
|
|
* @return string Absolute path to htaccess
|
|
*/
|
|
private function pathToHtaccess() {
|
|
return OC::$SERVERROOT.'/.htaccess';
|
|
}
|
|
|
|
/**
|
|
* Checks if the .htaccess contains the current version parameter
|
|
*
|
|
* @return bool
|
|
*/
|
|
private function isCurrentHtaccess() {
|
|
$version = \OC_Util::getVersion();
|
|
unset($version[3]);
|
|
|
|
return !strpos(
|
|
file_get_contents($this->pathToHtaccess()),
|
|
'Version: '.implode('.', $version)
|
|
) === false;
|
|
}
|
|
|
|
/**
|
|
* Append the correct ErrorDocument path for Apache hosts
|
|
*
|
|
* @throws \OC\HintException If .htaccess does not include the current version
|
|
*/
|
|
public static function updateHtaccess() {
|
|
$setupHelper = new OC_Setup(\OC::$server->getConfig());
|
|
if(!$setupHelper->isCurrentHtaccess()) {
|
|
throw new \OC\HintException('.htaccess file has the wrong version. Please upload the correct version. Maybe you forgot to replace it after updating?');
|
|
}
|
|
|
|
$content = "\n";
|
|
$content.= "ErrorDocument 403 ".OC::$WEBROOT."/core/templates/403.php\n";//custom 403 error page
|
|
$content.= "ErrorDocument 404 ".OC::$WEBROOT."/core/templates/404.php";//custom 404 error page
|
|
@file_put_contents($setupHelper->pathToHtaccess(), $content, FILE_APPEND); //suppress errors in case we don't have permissions for it
|
|
}
|
|
|
|
public static function protectDataDirectory() {
|
|
//Require all denied
|
|
$now = date('Y-m-d H:i:s');
|
|
$content = "# Generated by ownCloud on $now\n";
|
|
$content.= "# line below if for Apache 2.4\n";
|
|
$content.= "<ifModule mod_authz_core.c>\n";
|
|
$content.= "Require all denied\n";
|
|
$content.= "</ifModule>\n\n";
|
|
$content.= "# line below if for Apache 2.2\n";
|
|
$content.= "<ifModule !mod_authz_core.c>\n";
|
|
$content.= "deny from all\n";
|
|
$content.= "Satisfy All\n";
|
|
$content.= "</ifModule>\n\n";
|
|
$content.= "# section for Apache 2.2 and 2.4\n";
|
|
$content.= "IndexIgnore *\n";
|
|
file_put_contents(OC_Config::getValue('datadirectory', OC::$SERVERROOT.'/data').'/.htaccess', $content);
|
|
file_put_contents(OC_Config::getValue('datadirectory', OC::$SERVERROOT.'/data').'/index.html', '');
|
|
}
|
|
}
|