# custom error handling
+define('DOCROOT', getcwd().'/');
+
function fail($error)
{
http_response_code(500);
include_once 'page.inc.php';
ob_start();
- require_once './500.html';
+ require_once DOCROOT.'500.html';
print getoutput(['debug' => $error]);
}
# distinguish subpage Args from topmost Page script
$Args = '';
-$Page = preg_replace('/\?.*/', '', $_SERVER['REQUEST_URI']);
+$Page = preg_replace('/\?.*/', '', @$_SERVER['PATH_INFO'] ?: $_SERVER['REQUEST_URI']);
$Page = urldecode(trim($Page, '/')) ?: 'index';
while (TRUE) {
if (file_exists("$Page/.private")) {
# access restriction
- if (!isset($User)) {
- http_response_code(403);
- include_once 'page.inc.php';
- ob_start();
- @require_once './403.html';
+ if (empty($User)) {
+ http_response_code(303);
+ $target = urlencode($_SERVER['REQUEST_URI']);
+ header("Location: /login?goto=$target");
exit;
}
+ $PageAccess = $Page;
}
if (file_exists("$Page.php")) {
elseif (file_exists("$Page$Args.html")) {
$found = include "./$Page$Args.html";
}
-elseif (isset($User) and $User['admin']) {
+elseif (!empty($User['admin'])) {
$found = include (file_exists("$Page/template.html") ? "$Page/template.html" : './template.html');
}
# execute dynamic code
if ($Page) {
- $found |= @require "./$Page.php";
+ $found |= require "./$Page.php";
}
# global html