<?php
/* ========================================================================== */
/*   webportfolio site request handler																				*/
/* ========================================================================== */
session_start ();

$AJAX = FALSE;
$refresh = FALSE;
#
#includes
#
	$conf = parse_ini_file('inc/conf.ini',true);
	$mods = parse_ini_file('inc/mods.ini',true);

	/*include_once "lib/conf.php";*/
	include_once "lib/phphtmllib/phphtmllib.inc";
	include_once "inc/func.main.php";
	include_once "inc/func.sql.php";
	include_once "inc/func.site.php";

#
#spamfilter
#
	if (strlen($_SERVER['HTTP_USER_AGENT'])==0)
		die ('ERROR: No User Agent String.');

#
#POST filter
#
	if (!empty($_POST) && !ereg($conf['site']['base_href'],$_SERVER['HTTP_REFERER']))
		die ("ERROR: POST data from restricted referrer.");

#
#sql
#
	sql_connect ($conf['sql']['host'], $conf['sql']['user'],$conf['sql']['pass']);
	sql_select_db($conf['sql']['db'], $SQL);

#
#query
#
	if (ereg("\?",$_SERVER['REQUEST_URI']))
		$QUERY = $_SERVER['QUERY_STRING'];
	else
		$QUERY = $_SERVER['REDIRECT_QUERY_STRING'];

	if (ereg("/",$QUERY))
		$QUERY = remove_repeats_in_array(explode("/",$QUERY));
	else
		$QUERY = array($QUERY);

	array_apply_recursive($QUERY, 'public_post');

#
#langs
#
	#$sql = sql_query ("SELECT `iso`,`national`,`default` FROM `".$conf['sql']['prefix']."languages`",$SQL);
	$sql = sql_query ("SELECT * FROM `".$conf['sql']['prefix']."languages`",$SQL);
	for ($i=0;$i< sql_num_rows($sql);$i++)
	{
		$row = sql_fetch_array($sql);

		if ($QUERY[0] == $row['iso'])
		{
			$_SESSION['lang'] = $row['iso'];
			unset($QUERY[0]);
		}

		if ($row['default'] == 1 && !isset($_SESSION['lang']))
		{
			$_SESSION['lang'] = $row['iso'];
		}
		$LANGS[] = $row;
	}
	array_unshift($QUERY,$_SESSION['lang']);
	mysql_free_result ($sql);

#
#lang include
#
		if (is_file("inc/lang/".$_SESSION['lang']))
		include_once "inc/lang/".$_SESSION['lang'];

#
#places
#
	$sql = sql_query ("SELECT DISTINCT `place` FROM `".$conf['sql']['prefix']."contents_".$_SESSION['lang']."`",$SQL);
	for ($i=0;$i<sql_num_rows ($sql);$i++)
	{
		$place = sql_fetch_array($sql);
		$places[] = $place['place'];
	}
	mysql_free_result ($sql);

#
#groups
#
	$sql = sql_query ("SELECT * FROM `".$conf['sql']['prefix']."groups`",$SQL);
	for ($i=0;$i<sql_num_rows ($sql);$i++)
	{
		$row = sql_fetch_array($sql);
		foreach ($row as $key => $value)
			if ($key != 'ID' && !is_numeric($key))
				$group[$key] = $value;

		$GROUPS[$row['ID']] = $group;
	}
	mysql_free_result ($sql);
#
#frontend / backend
#
	$ADMIN = FALSE;
	foreach ($QUERY as $key => $value)
	{
		if (!empty($value) && $value!=$_SESSION['lang'])
		{	if ($value == "admin")
				$ADMIN = TRUE;
				break;
		}
	}

#
#create document
#
	$PAGE = new HTMLDocument();

#
#frontend
#
	if (!$ADMIN)
	{
		//if (!empty($_POST))
		//	foreach ($_POST as $key=>$val)
		//		$_POST[$key] = public_post($val);

		array_apply_recursive($_POST, 'public_post');

		#
		#get all the MENUS from the content
		#
		$sql = sql_query ("SELECT `ID`,`url`,`parent`,`default` FROM `".$conf['sql']['prefix']."contents_".$_SESSION['lang']."`",$SQL);
		for ($i=0;$i<sql_num_rows ($sql);$i++)
		{
			$row = sql_fetch_array($sql);

			if ($row['default']==1)
				$MENUS['default'] = $row['ID'];

			$MENUS['url'][] = $row['url'];
			$MENUS['ID'][] = $row['ID'];
			$MENUS['parent'][] = $row['parent'];
		}
		mysql_free_result ($sql);


		#
		#get the ID-s of the menus in the QUERY
		#
		$MENUIDS = array();
		foreach ($QUERY as $key => $value)
		{	if ((strlen($value)>0) && $value!=$_SESSION['lang'] && in_array($value,$MENUS['url']))
			{
				$possible_ids = array_keys($MENUS['url'],$value);

				if (sizeof($MENUIDS)==0)
				{	foreach ($possible_ids as $key => $value)
						if ($MENUS['parent'][$value] == 0)	$MENUIDS[] = $MENUS['ID'][$value];
				}
				else
				{	foreach ($possible_ids as $key => $value)
						if ($MENUS['parent'][$value] == end($MENUIDS))
							$MENUIDS[] = $MENUS['ID'][$value];
				}
			}
		}
		#
		#default menu, if nothing found
		#
		$err = false;
		if (sizeof($MENUIDS)==0)
		{
			$MENUIDS[] = $MENUS['default'];
			$test = $QUERY;
				foreach ($test as $key => $value)
					if (empty($value) || $value==$_SESSION['lang'])
						unset ($test[$key]);
			if (!empty($test))
				$err = true;
		}

		$MENU = sql_fetch_array (sql_query("SELECT * FROM `".$conf['sql']['prefix']."contents_".$_SESSION['lang']."` WHERE `ID`='".end($MENUIDS)."'",$SQL));
			if ($err)
			{
				$MENU['title'] = error_404_title;
				$MENU['description'] = error_404_desc;
				$MENU['keywords'] = '';
				$MENU['text'] = error_404_text;
				$MENU['type'] = '';
				header("HTTP/1.0 404 Not Found");
				header("Status: 404 Not Found");
			}
			else
			{
				menu_defaults();
			}

		include_once ('frontend.php');

		if (end($QUERY)=='rss')
		{
			if (is_file("mod/".$MENU['type']."/".$MENU['type'].".rss.php"))
			{
				include_once "mod/".$MENU['type']."/".$MENU['type'].".rss.php";
				$AJAX = true;
			}
		}
		else
		{
			if (is_file("mod/".$MENU['type']."/".$MENU['type'].".php"))
				include_once "mod/".$MENU['type']."/".$MENU['type'].".php";
		}
	}
	#
	#admin
	#
	else
	{
		if (!empty($_POST))
			foreach ($_POST as $key=>$val)
				$_POST[$key] = to_sql($val);

		$PRIVILEGES = array(
			1 => admin_menu_rights_privileges_user,
			2 => admin_menu_rights_privileges_group,
			3 => admin_menu_rights_privileges_all
		);

		include_once "lib/zip/pclzip.lib.php";
		include_once "adm/inc/func.admin.php";
		//include_once "lib/ini/ini.php";
		include_once ('adm/backend.php');
		include_once "adm/index.php";
	}
	mysql_close ($SQL);

	if ($refresh)
		refresh_page();

	if (!$AJAX && !$ADMIN)
	{
		echo rewrite(replace_specials($PAGE->render()));
		/*
		$out = rewrite(replace_specials($PAGE->render()));

		$f = iconv('utf-8','iso-8859-2','cache/'.$PAGE->get_title().'.html');
		if (!is_file($f))
			file_put_contents ($f,$out);

		echo $out;
		*/
	}
	elseif (!$AJAX && $ADMIN)
		echo rewrite($PAGE->render());
	elseif ($OUTAJAX)
		echo replace_specials($OUTAJAX);
?>