-
-
Notifications
You must be signed in to change notification settings - Fork 839
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
implements a router for the PHP builtin webserver
PHP comes with a builtin webserver for development purposes. This adds the needed routing and also enables rewriting compatible to out userewrite=1 setting. It also implements basic access security (denying access to the data directory and similar directories) A PHP based webserver running DokuWiki can now be started with php -S localhost:8000 index.php
- Loading branch information
1 parent
3d0cf09
commit 7aaab10
Showing
1 changed file
with
62 additions
and
2 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -1,8 +1,68 @@ | ||
<?php | ||
/** | ||
* Forwarder to doku.php | ||
* Forwarder/Router to doku.php | ||
* | ||
* In normal usage, this script simply redirects to doku.php. However it can also be used as a routing | ||
* script with PHP's builtin webserver. It takes care of .htaccess compatible rewriting, directory/file | ||
* access permission checking and passing on static files. | ||
* | ||
* Usage example: | ||
* | ||
* php -S localhost:8000 index.php | ||
* | ||
* @license GPL 2 (http://www.gnu.org/licenses/gpl.html) | ||
* @author Andreas Gohr <andi@splitbrain.org> | ||
*/ | ||
header("Location: doku.php"); | ||
if(php_sapi_name() != 'cli-server') { | ||
header("Location: doku.php"); | ||
exit; | ||
} | ||
|
||
# ROUTER starts below | ||
|
||
# avoid path traversal | ||
$_SERVER['SCRIPT_NAME'] = str_replace('/../', '/', $_SERVER['SCRIPT_NAME']); | ||
|
||
# routing aka. rewriting | ||
if(preg_match('/^\/_media\/(.*)/', $_SERVER['SCRIPT_NAME'], $m)) { | ||
# media dispatcher | ||
$_GET['media'] = $m[1]; | ||
require $_SERVER['DOCUMENT_ROOT'] . '/lib/exe/fetch.php'; | ||
|
||
} else if(preg_match('/^\/_detail\/(.*)/', $_SERVER['SCRIPT_NAME'], $m)) { | ||
# image detail view | ||
$_GET['media'] = $m[1]; | ||
require $_SERVER['DOCUMENT_ROOT'] . '/lib/exe/detail.php'; | ||
|
||
} else if(preg_match('/^\/_media\/(.*)/', $_SERVER['SCRIPT_NAME'], $m)) { | ||
# exports | ||
$_GET['do'] = 'export_' . $m[1]; | ||
$_GET['id'] = $m[2]; | ||
require $_SERVER['DOCUMENT_ROOT'] . '/doku.php'; | ||
|
||
} elseif($_SERVER['SCRIPT_NAME'] == '/index.php') { | ||
# 404s are automatically mapped to index.php | ||
if(isset($_SERVER['PATH_INFO'])) { | ||
$_GET['id'] = $_SERVER['PATH_INFO']; | ||
} | ||
require $_SERVER['DOCUMENT_ROOT'] . '/doku.php'; | ||
|
||
} else if(file_exists($_SERVER['DOCUMENT_ROOT'] . $_SERVER['SCRIPT_NAME'])) { | ||
# existing files | ||
|
||
# access limitiations | ||
if(preg_match('/\/([\._]ht|README$|VERSION$|COPYING$)/', $_SERVER['SCRIPT_NAME']) or | ||
preg_match('/^\/(data\/|conf\/|bin\/|inc\/|install.php)/', $_SERVER['SCRIPT_NAME']) | ||
) { | ||
die('Access denied'); | ||
} | ||
|
||
if(substr($_SERVER['SCRIPT_NAME'], -4) == '.php') { | ||
# php scripts | ||
require $_SERVER['DOCUMENT_ROOT'] . $_SERVER['SCRIPT_NAME']; | ||
} else { | ||
# static files | ||
return false; | ||
} | ||
} | ||
# 404 |