doPreprocess(); } public static function render() { self::$instance->doRender(); } public static function ajax() { self::$instance->doAjax(); } /** * * @var \Page */ private static $instance = false; public static function set($name) { $name = preg_replace('/[^A-Za-z]/', '', $name); $modulePath = 'modules/' . strtolower($name) . '.inc.php'; if (!file_exists($modulePath)) { Util::traceError('Invalid module file: ' . $modulePath); } require_once $modulePath; $className = 'Page_' . $name; if (!class_exists($className) || get_parent_class($className) !== 'Page') { Util::traceError('Module not found: ' . $name); } self::$instance = new $className(); } } // Error reporting (hopefully goind to stderr, not being printed on pages) error_reporting(E_ALL); // Set variable if this is an ajax request if ((isset($_REQUEST['async'])) || (!empty($_SERVER['HTTP_X_REQUESTED_WITH']) && strtolower($_SERVER['HTTP_X_REQUESTED_WITH']) === 'xmlhttprequest')) { define('AJAX', true); } else { define('AJAX', false); } // Autoload classes from ./inc which adhere to naming scheme .inc.php function slxAutoloader($class) { $file = 'inc/' . preg_replace('/[^a-z0-9]/', '', mb_strtolower($class)) . '.inc.php'; if (!file_exists($file)) return; require_once $file; } spl_autoload_register('slxAutoloader'); // Now determine which module to run Page::set(empty($_REQUEST['do']) ? 'Main' : $_REQUEST['do']); // Deserialize any messages to display if (!AJAX && isset($_REQUEST['message'])) { Message::fromRequest(); } // CSRF/XSS check if ($_SERVER['REQUEST_METHOD'] === 'POST') { User::load(); if (!Util::verifyToken()) { if (AJAX) { die('CSRF/XSS? Missing token in POST request!'); } else { Util::redirect('?do=Main'); } } } // AJAX Stuff? Just do so. Otherwise, run preprocessing if (AJAX) { Page::ajax(); exit(0); } // Normal mode - preprocess first.... Page::preprocess(); // Generate Main menu //$menu = new Menu;// TODO: Merge both templates again - having 99% copy&paste sucks... if (User::getName() === false) { Render::addTemplate('main-menu-login', array( 'url' => urlencode($_SERVER['REQUEST_URI']), 'langs' => Dictionary::getLanguages(true), 'dbupdate' => Database::needSchemaUpdate() )); } else { Render::addTemplate('main-menu-logout', array( 'url' => urlencode($_SERVER['REQUEST_URI']), 'langs' => Dictionary::getLanguages(true), 'dbupdate' => Database::needSchemaUpdate(), 'user' => User::getName() )); } Message::renderList(); // Render page. If the module wants to output anything, it will be done here... Page::render(); if (defined('CONFIG_DEBUG') && CONFIG_DEBUG) { Render::openTag('div', array('class' => 'container')); Message::addWarning('debug-mode'); Render::closeTag('div'); } if (defined('CONFIG_FOOTER')) { Render::addTemplate('footer', array('text' => CONFIG_FOOTER)); } // Send page to client. Render::output();