lindeas
/
jilo-web
1
1
Fork 0
Code Issues Pull Requests Packages Projects Releases 7 Wiki Activity

Updates index.php to use global APP_PATH var

main
Yasen Pramatarov 2025-12-23 13:26:23 +02:00
parent 4639baeef9
commit 20cc575792
1 changed files with 40 additions and 41 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

81
public_html/index.php
View File

@ -16,13 +16,16 @@
//ini_set('display_startup_errors', 1); //ini_set('display_startup_errors', 1);
//error_reporting(E_ALL); //error_reporting(E_ALL);
// Define main app path
define('APP_PATH', __DIR__ . '/../app/');
// Prepare config loader // Prepare config loader
require_once __DIR__ . '/../app/core/ConfigLoader.php'; require_once APP_PATH . 'core/ConfigLoader.php';
use App\Core\ConfigLoader; use App\Core\ConfigLoader;
// Load configuration // Load configuration
$config = ConfigLoader::loadConfig([ $config = ConfigLoader::loadConfig([
__DIR__ . '/../app/config/jilo-web.conf.php', APP_PATH . 'config/jilo-web.conf.php',
__DIR__ . '/../jilo-web.conf.php', __DIR__ . '/../jilo-web.conf.php',
'/srv/jilo-web/jilo-web.conf.php', '/srv/jilo-web/jilo-web.conf.php',
'/opt/jilo-web/jilo-web.conf.php', '/opt/jilo-web/jilo-web.conf.php',
@ -40,8 +43,8 @@ $app_root = $config['folder'] ?? '/';
// Preparing plugins and hooks // Preparing plugins and hooks
// Initialize HookDispatcher and plugin system // Initialize HookDispatcher and plugin system
require_once __DIR__ . '/../app/core/HookDispatcher.php'; require_once APP_PATH . 'core/HookDispatcher.php';
require_once __DIR__ . '/../app/core/PluginManager.php'; require_once APP_PATH . 'core/PluginManager.php';
use App\Core\HookDispatcher; use App\Core\HookDispatcher;
use App\Core\PluginManager; use App\Core\PluginManager;
@ -78,30 +81,27 @@ $GLOBALS['enabled_plugins'] = $enabled_plugins;
// Define CSRF token include path globally // Define CSRF token include path globally
if (!defined('CSRF_TOKEN_INCLUDE')) { if (!defined('CSRF_TOKEN_INCLUDE')) {
define('CSRF_TOKEN_INCLUDE', dirname(__DIR__) . '/app/includes/csrf_token.php'); define('CSRF_TOKEN_INCLUDE', APP_PATH . 'includes/csrf_token.php');
} }
// Global cnstants // Global cnstants
require_once '../app/includes/constants.php'; require_once APP_PATH . 'includes/constants.php';
// we start output buffering and // we start output buffering and
// flush it later only when there is no redirect // flush it later only when there is no redirect
ob_start(); ob_start();
// Start session before any session-dependent code // Start session before any session-dependent code
require_once '../app/classes/session.php'; require_once APP_PATH . 'classes/session.php';
// Initialize themes system after session is started // Initialize themes system after session is started
require_once __DIR__ . '/../app/helpers/theme.php'; require_once APP_PATH . 'helpers/theme.php';
use app\Helpers\Theme; use app\Helpers\Theme;
Session::startSession(); Session::startSession();
// Reset flash messages display flag for new page load
$_SESSION['flash_messages_displayed'] = false;
// Define page variable early via sanitize // Define page variable early via sanitize
require_once __DIR__ . '/../app/includes/sanitize.php'; require_once APP_PATH . 'includes/sanitize.php';
// Ensure $page is defined to avoid undefined variable // Ensure $page is defined to avoid undefined variable
if (!isset($page)) { if (!isset($page)) {
$page = 'dashboard'; $page = 'dashboard';
@ -114,11 +114,11 @@ $public_pages = ['login', 'help', 'about', 'theme-asset', 'plugin-asset'];
$public_pages = filter_public_pages($public_pages); $public_pages = filter_public_pages($public_pages);
// Middleware pipeline for security, sanitization & CSRF // Middleware pipeline for security, sanitization & CSRF
require_once __DIR__ . '/../app/core/MiddlewarePipeline.php'; require_once APP_PATH . 'core/MiddlewarePipeline.php';
$pipeline = new \App\Core\MiddlewarePipeline(); $pipeline = new \App\Core\MiddlewarePipeline();
$pipeline->add(function() { $pipeline->add(function() {
// Apply security headers // Apply security headers
require_once __DIR__ . '/../app/includes/security_headers_middleware.php'; require_once APP_PATH . 'includes/security_headers_middleware.php';
return true; return true;
}); });
@ -128,10 +128,10 @@ $validSession = Session::isValidSession(true);
$userId = $validSession ? Session::getUserId() : null; $userId = $validSession ? Session::getUserId() : null;
// Initialize feedback message system // Initialize feedback message system
require_once '../app/classes/feedback.php'; require_once APP_PATH . 'classes/feedback.php';
$system_messages = []; $system_messages = [];
require '../app/includes/errors.php'; require APP_PATH . 'includes/errors.php';
// list of available pages // list of available pages
// edit accordingly, add 'pages/PAGE.php' // edit accordingly, add 'pages/PAGE.php'
@ -140,9 +140,8 @@ $allowed_urls = [
'conferences','participants','components', 'conferences','participants','components',
'graphs','latest','livejs','agents', 'graphs','latest','livejs','agents',
'profile','credentials','config','security', 'profile','credentials','config','security',
'settings','theme','theme-asset', 'settings','theme','theme-asset','plugin-asset',
'admin', 'admin-tools', 'admin','admin-tools','status',
'status',
'help','about', 'help','about',
'login','logout', 'login','logout',
]; ];
@ -151,7 +150,7 @@ $allowed_urls = [
$allowed_urls = filter_allowed_urls($allowed_urls); $allowed_urls = filter_allowed_urls($allowed_urls);
// Dispatch routing and auth // Dispatch routing and auth
require_once __DIR__ . '/../app/core/Router.php'; require_once APP_PATH . 'core/Router.php';
use App\Core\Router; use App\Core\Router;
$currentUser = Router::checkAuth($config, $app_root, $public_pages, $page); $currentUser = Router::checkAuth($config, $app_root, $public_pages, $page);
if ($currentUser === null && $validSession) { if ($currentUser === null && $validSession) {
@ -159,22 +158,22 @@ if ($currentUser === null && $validSession) {
} }
// Connect to DB via DatabaseConnector // Connect to DB via DatabaseConnector
require_once __DIR__ . '/../app/core/DatabaseConnector.php'; require_once APP_PATH . 'core/DatabaseConnector.php';
use App\Core\DatabaseConnector; use App\Core\DatabaseConnector;
$db = DatabaseConnector::connect($config); $db = DatabaseConnector::connect($config);
// Initialize Log throttler // Initialize Log throttler
require_once __DIR__ . '/../app/core/LogThrottler.php'; require_once APP_PATH . 'core/LogThrottler.php';
use App\Core\LogThrottler; use App\Core\LogThrottler;
// Logging: default to NullLogger, plugin can override // Logging: default to NullLogger, plugin can override
require_once __DIR__ . '/../app/core/NullLogger.php'; require_once APP_PATH . 'core/NullLogger.php';
use App\Core\NullLogger; use App\Core\NullLogger;
$logObject = new NullLogger(); $logObject = new NullLogger();
require_once __DIR__ . '/../app/helpers/logger_loader.php'; require_once APP_PATH . 'helpers/logger_loader.php';
// Get the user IP // Get the user IP
require_once __DIR__ . '/../app/helpers/ip_helper.php'; require_once APP_PATH . 'helpers/ip_helper.php';
$user_IP = ''; $user_IP = '';
// Plugin: initialize logging system plugin if available // Plugin: initialize logging system plugin if available
@ -191,9 +190,9 @@ if (isset($GLOBALS['user_IP'])) {
// Check for pending DB migrations (non-intrusive: warn only) // Check for pending DB migrations (non-intrusive: warn only)
// Only show for authenticated users and not on login page // Only show for authenticated users and not on login page
try { try {
$migrationsDir = __DIR__ . '/../doc/database/migrations'; $migrationsDir = APP_PATH . '../doc/database/migrations';
if (is_dir($migrationsDir) && $userId !== null && $page !== 'login') { if (is_dir($migrationsDir) && $userId !== null && $page !== 'login') {
require_once __DIR__ . '/../app/core/MigrationRunner.php'; require_once APP_PATH . 'core/MigrationRunner.php';
$runner = new \App\Core\MigrationRunner($db, $migrationsDir); $runner = new \App\Core\MigrationRunner($db, $migrationsDir);
if ($runner->hasPendingMigrations()) { if ($runner->hasPendingMigrations()) {
$pending = $runner->listPendingMigrations(); $pending = $runner->listPendingMigrations();
@ -225,8 +224,8 @@ try {
// CSRF middleware and run pipeline // CSRF middleware and run pipeline
$pipeline->add(function() { $pipeline->add(function() {
// Initialize security middleware // Initialize security middleware
require_once __DIR__ . '/../app/includes/csrf_middleware.php'; require_once APP_PATH . 'includes/csrf_middleware.php';
require_once __DIR__ . '/../app/helpers/security.php'; require_once APP_PATH . 'helpers/security.php';
$security = SecurityHelper::getInstance(); $security = SecurityHelper::getInstance();
// Verify CSRF token for POST requests // Verify CSRF token for POST requests
return applyCsrfMiddleware(); return applyCsrfMiddleware();
@ -234,14 +233,14 @@ $pipeline->add(function() {
$pipeline->add(function() { $pipeline->add(function() {
// Init rate limiter // Init rate limiter
global $db, $page, $userId; global $db, $page, $userId;
require_once __DIR__ . '/../app/includes/rate_limit_middleware.php'; require_once APP_PATH . 'includes/rate_limit_middleware.php';
return checkRateLimit($db, $page, $userId); return checkRateLimit($db, $page, $userId);
}); });
$pipeline->add(function() { $pipeline->add(function() {
// Init user functions // Init user functions
global $db, $userObject; global $db, $userObject;
require_once __DIR__ . '/../app/classes/user.php'; require_once APP_PATH . 'classes/user.php';
include __DIR__ . '/../app/helpers/profile.php'; include APP_PATH . 'helpers/profile.php';
$userObject = new User($db); $userObject = new User($db);
return true; return true;
}); });
@ -251,7 +250,7 @@ if (!$pipeline->run()) {
// Maintenance mode: show maintenance page to non-superusers // Maintenance mode: show maintenance page to non-superusers
try { try {
require_once __DIR__ . '/../app/core/Maintenance.php'; require_once APP_PATH . 'core/Maintenance.php';
if (\App\Core\Maintenance::isEnabled()) { if (\App\Core\Maintenance::isEnabled()) {
$isSuperuser = false; $isSuperuser = false;
if ($validSession && isset($userId) && isset($userObject) && method_exists($userObject, 'hasRight')) { if ($validSession && isset($userId) && isset($userObject) && method_exists($userObject, 'hasRight')) {
@ -265,7 +264,7 @@ try {
// Show themed maintenance page // Show themed maintenance page
\App\Helpers\Theme::include('page-header'); \App\Helpers\Theme::include('page-header');
\App\Helpers\Theme::include('page-menu'); \App\Helpers\Theme::include('page-menu');
include __DIR__ . '/../app/templates/maintenance.php'; include APP_PATH . 'templates/maintenance.php';
\App\Helpers\Theme::include('page-footer'); \App\Helpers\Theme::include('page-footer');
ob_end_flush(); ob_end_flush();
exit; exit;
@ -298,7 +297,7 @@ if ($validSession && isset($userId) && isset($userObject) && is_object($userObje
} }
// get platforms details // get platforms details
require '../app/classes/platform.php'; require APP_PATH . 'classes/platform.php';
$platformObject = new Platform($db); $platformObject = new Platform($db);
$platformsAll = $platformObject->getPlatformDetails(); $platformsAll = $platformObject->getPlatformDetails();
@ -335,7 +334,7 @@ if ($page == 'logout') {
// Use theme helper to include templates // Use theme helper to include templates
\App\Helpers\Theme::include('page-header'); \App\Helpers\Theme::include('page-header');
\App\Helpers\Theme::include('page-menu'); \App\Helpers\Theme::include('page-menu');
include '../app/pages/login.php'; include APP_PATH . 'pages/login.php';
\App\Helpers\Theme::include('page-footer'); \App\Helpers\Theme::include('page-footer');
} else { } else {
@ -351,7 +350,7 @@ if ($page == 'logout') {
$userTimezone = (!empty($userDetails[0]['timezone'])) ? $userDetails[0]['timezone'] : 'UTC'; // Default to UTC if no timezone is set (or is missing) $userTimezone = (!empty($userDetails[0]['timezone'])) ? $userDetails[0]['timezone'] : 'UTC'; // Default to UTC if no timezone is set (or is missing)
// check if the Jilo Server is running // check if the Jilo Server is running
require '../app/classes/server.php'; require APP_PATH . 'classes/server.php';
$serverObject = new Server($db); $serverObject = new Server($db);
$server_host = '127.0.0.1'; $server_host = '127.0.0.1';
@ -410,10 +409,10 @@ if ($page == 'logout') {
if ($validSession) { if ($validSession) {
\App\Helpers\Theme::include('page-sidebar'); \App\Helpers\Theme::include('page-sidebar');
} }
if (file_exists("../app/pages/{$page}.php")) { if (file_exists(APP_PATH . "pages/{$page}.php")) {
include "../app/pages/{$page}.php"; include APP_PATH . "pages/{$page}.php";
} else { } else {
include '../app/templates/error-notfound.php'; include APP_PATH . 'templates/error-notfound.php';
} }
\App\Helpers\Theme::include('page-footer'); \App\Helpers\Theme::include('page-footer');
} }
@ -424,7 +423,7 @@ if ($page == 'logout') {
if ($validSession) { if ($validSession) {
\App\Helpers\Theme::include('page-sidebar'); \App\Helpers\Theme::include('page-sidebar');
} }
include '../app/templates/error-notfound.php'; include APP_PATH . 'templates/error-notfound.php';
\App\Helpers\Theme::include('page-footer'); \App\Helpers\Theme::include('page-footer');
} }
} }