bludit/bl-kernel/boot/admin.php

<?php defined('BLUDIT') or die('Bludit CMS.');

$layout = array(
	'controller'=>null,
	'view'=>null,
	'template'=>'index.php',
	'slug'=>null,
	'parameters'=>null,
	'title'=>'Bludit'
);

// Get the view, controller, and the parameters from the URL.
$explodeSlug = $Url->explodeSlug();
$layout['controller'] = $layout['view'] = $layout['slug'] = empty($explodeSlug[0])?'dashboard':$explodeSlug[0];
unset($explodeSlug[0]);
$layout['parameters'] = implode('/', $explodeSlug);

// Disable Magic Quotes.
// Thanks, http://stackoverflow.com/questions/517008/how-to-turn-off-magic-quotes-on-shared-hosting
if ( in_array( strtolower( ini_get( 'magic_quotes_gpc' ) ), array( '1', 'on' ) ) ) {
    $_POST	= array_map('stripslashes', $_POST);
    $_GET	= array_map('stripslashes', $_GET);
    $_COOKIE	= array_map('stripslashes', $_COOKIE);
}

// --- AJAX ---
if ($layout['slug']==='ajax') {
	if ($Login->isLogged()) {
		// Rules: Security check CSRF
		include(PATH_RULES.'99.security.php');

		// Load the ajax file
		if( Sanitize::pathFile(PATH_AJAX, $layout['parameters'].'.php') ) {
			include(PATH_AJAX.$layout['parameters'].'.php');
		}
	}
}
// --- ADMIN AREA ---
else
{
	// Boot rules
	include(PATH_RULES.'60.plugins.php');
	include(PATH_RULES.'69.pages.php');
	include(PATH_RULES.'99.header.php');
	include(PATH_RULES.'99.paginator.php');
	include(PATH_RULES.'99.themes.php');
	include(PATH_RULES.'99.security.php');

	// Page not found.
	// User not logged.
	// Slug is login.
	// Slug is login-email.
	if($Url->notFound() || !$Login->isLogged() || ($Url->slug()==='login') || ($Url->slug()==='login-email') ) {
		$layout['controller']	= 'login';
		$layout['view']		= 'login';
		$layout['template']	= 'login.php';

		if ($Url->slug()==='login-email') {
			$layout['controller']	= 'login-email';
			$layout['view']		= 'login-email';
		}

		// Generate the tokenCSRF for the user not logged, when the user log-in the token will be change.
		$Security->generateTokenCSRF();
	}

	// Define variables
	$ADMIN_CONTROLLER 	= $layout['controller'];
	$ADMIN_VIEW 		= $layout['view'];

	// Load plugins before the admin area will be load.
	Theme::plugins('beforeAdminLoad');

	// Load init.php if the theme has one.
	if( Sanitize::pathFile(PATH_ADMIN_THEMES, $Site->adminTheme().DS.'init.php') ) {
		include(PATH_ADMIN_THEMES.$Site->adminTheme().DS.'init.php');
	}

	// Load controller.
	if( Sanitize::pathFile(PATH_ADMIN_CONTROLLERS, $layout['controller'].'.php') ) {
		include(PATH_ADMIN_CONTROLLERS.$layout['controller'].'.php');
	}

	// Load view and theme.
	if( Sanitize::pathFile(PATH_ADMIN_THEMES, $Site->adminTheme().DS.$layout['template']) ) {
		include(PATH_ADMIN_THEMES.$Site->adminTheme().DS.$layout['template']);
	}

	// Load plugins after the admin area is loaded.
	Theme::plugins('afterAdminLoad');
}
New features 2015-05-05 01:00:01 +00:00			`<?php defined('BLUDIT') or die('Bludit CMS.');`

			`$layout = array(`
			`'controller'=>null,`
			`'view'=>null,`
			`'template'=>'index.php',`
			`'slug'=>null,`
Fix: redeclare getdb 2015-07-06 19:22:03 -03:00			`'parameters'=>null,`
			`'title'=>'Bludit'`
New features 2015-05-05 01:00:01 +00:00			`);`

			`// Get the view, controller, and the parameters from the URL.`
			`$explodeSlug = $Url->explodeSlug();`
Cleaning code 2017-09-15 21:26:06 +02:00			`$layout['controller'] = $layout['view'] = $layout['slug'] = empty($explodeSlug[0])?'dashboard':$explodeSlug[0];`
New features 2015-05-05 01:00:01 +00:00			`unset($explodeSlug[0]);`
			`$layout['parameters'] = implode('/', $explodeSlug);`

Opengraph, Admin panel responsive, Improves on Security tokens 2015-11-28 11:47:03 -03:00			`// Disable Magic Quotes.`
New features 2015-05-14 22:07:45 +00:00			`// Thanks, http://stackoverflow.com/questions/517008/how-to-turn-off-magic-quotes-on-shared-hosting`
fixed ajax calls 2017-07-13 22:39:04 +02:00			`if ( in_array( strtolower( ini_get( 'magic_quotes_gpc' ) ), array( '1', 'on' ) ) ) {`
Installer improves 2015-08-16 23:33:49 -03:00			`$_POST = array_map('stripslashes', $_POST);`
			`$_GET = array_map('stripslashes', $_GET);`
New features 2015-05-14 22:07:45 +00:00			`$_COOKIE = array_map('stripslashes', $_COOKIE);`
			`}`

Opengraph, Admin panel responsive, Improves on Security tokens 2015-11-28 11:47:03 -03:00			`// --- AJAX ---`
fixed ajax calls 2017-07-13 22:39:04 +02:00			`if ($layout['slug']==='ajax') {`
			`if ($Login->isLogged()) {`
Security fixes 2016-09-25 23:30:06 -03:00			`// Rules: Security check CSRF`
			`include(PATH_RULES.'99.security.php');`

fixed ajax calls 2017-07-13 22:39:04 +02:00			`// Load the ajax file`
Bruteforce protection 2015-08-17 23:02:19 -03:00			`if( Sanitize::pathFile(PATH_AJAX, $layout['parameters'].'.php') ) {`
			`include(PATH_AJAX.$layout['parameters'].'.php');`
			`}`
Installer improves 2015-08-16 23:33:49 -03:00			`}`
New features 2015-05-05 01:00:01 +00:00			`}`
Opengraph, Admin panel responsive, Improves on Security tokens 2015-11-28 11:47:03 -03:00			`// --- ADMIN AREA ---`
New features 2015-05-05 01:00:01 +00:00			`else`
			`{`
			`// Boot rules`
New hooks for plugins and Sitemap 2016-01-07 20:43:09 -03:00			`include(PATH_RULES.'60.plugins.php');`
Remove posts 2017-05-16 00:46:20 +02:00			`include(PATH_RULES.'69.pages.php');`
New features 2015-05-05 01:00:01 +00:00			`include(PATH_RULES.'99.header.php');`
Paginator 2015-07-20 00:14:12 -03:00			`include(PATH_RULES.'99.paginator.php');`
Minor changes 2015-08-01 23:47:45 -03:00			`include(PATH_RULES.'99.themes.php');`
Updates 2015-09-07 21:51:48 -03:00			`include(PATH_RULES.'99.security.php');`
New features 2015-05-05 01:00:01 +00:00
Opengraph, Admin panel responsive, Improves on Security tokens 2015-11-28 11:47:03 -03:00			`// Page not found.`
			`// User not logged.`
			`// Slug is login.`
			`// Slug is login-email.`
Login and Security improves 2017-07-16 00:42:37 +02:00			`if($Url->notFound() \|\| !$Login->isLogged() \|\| ($Url->slug()==='login') \|\| ($Url->slug()==='login-email') ) {`
New features 2015-05-05 01:00:01 +00:00			`$layout['controller'] = 'login';`
Bug fixes 2015-08-07 18:33:43 -03:00			`$layout['view'] = 'login';`
			`$layout['template'] = 'login.php';`
Updates 2015-09-07 21:51:48 -03:00
Login and Security improves 2017-07-16 00:42:37 +02:00			`if ($Url->slug()==='login-email') {`
Changes on admin panel 2015-10-18 19:45:58 -03:00			`$layout['controller'] = 'login-email';`
			`$layout['view'] = 'login-email';`
			`}`

Opengraph, Admin panel responsive, Improves on Security tokens 2015-11-28 11:47:03 -03:00			`// Generate the tokenCSRF for the user not logged, when the user log-in the token will be change.`
			`$Security->generateTokenCSRF();`
New features 2015-05-05 01:00:01 +00:00			`}`

removing posts 2017-05-17 18:48:51 +02:00			`// Define variables`
			`$ADMIN_CONTROLLER = $layout['controller'];`
			`$ADMIN_VIEW = $layout['view'];`

Opengraph, Admin panel responsive, Improves on Security tokens 2015-11-28 11:47:03 -03:00			`// Load plugins before the admin area will be load.`
Bug fixes 2015-08-07 21:39:10 -03:00			`Theme::plugins('beforeAdminLoad');`

Opengraph, Admin panel responsive, Improves on Security tokens 2015-11-28 11:47:03 -03:00			`// Load init.php if the theme has one.`
Installer improves 2015-08-16 23:33:49 -03:00			`if( Sanitize::pathFile(PATH_ADMIN_THEMES, $Site->adminTheme().DS.'init.php') ) {`
Fixes for Windows and Webservers 2015-06-21 19:01:07 -03:00			`include(PATH_ADMIN_THEMES.$Site->adminTheme().DS.'init.php');`
Installer improves 2015-08-16 23:33:49 -03:00			`}`
New features 2015-05-05 01:00:01 +00:00
Opengraph, Admin panel responsive, Improves on Security tokens 2015-11-28 11:47:03 -03:00			`// Load controller.`
Installer improves 2015-08-16 23:33:49 -03:00			`if( Sanitize::pathFile(PATH_ADMIN_CONTROLLERS, $layout['controller'].'.php') ) {`
New features 2015-05-05 01:00:01 +00:00			`include(PATH_ADMIN_CONTROLLERS.$layout['controller'].'.php');`
Installer improves 2015-08-16 23:33:49 -03:00			`}`
New features 2015-05-05 01:00:01 +00:00
Opengraph, Admin panel responsive, Improves on Security tokens 2015-11-28 11:47:03 -03:00			`// Load view and theme.`
Installer improves 2015-08-16 23:33:49 -03:00			`if( Sanitize::pathFile(PATH_ADMIN_THEMES, $Site->adminTheme().DS.$layout['template']) ) {`
Fixes for Windows and Webservers 2015-06-21 19:01:07 -03:00			`include(PATH_ADMIN_THEMES.$Site->adminTheme().DS.$layout['template']);`
Installer improves 2015-08-16 23:33:49 -03:00			`}`
Bug fixes 2015-08-07 21:39:10 -03:00
Opengraph, Admin panel responsive, Improves on Security tokens 2015-11-28 11:47:03 -03:00			`// Load plugins after the admin area is loaded.`
Bug fixes 2015-08-07 21:39:10 -03:00			`Theme::plugins('afterAdminLoad');`
Filesystem helper improved 2017-07-02 18:55:27 +02:00			`}`