mirror of
https://we.phorge.it/source/phorge.git
synced 2024-11-13 18:32:41 +01:00
879c14e13a
Summary: Route all `$_SERVER['HTTP_...']` stuff through AphrontRequest (it would be nice to make this non-static, but the stack is a bit tangled right now...) Test Plan: Verified CSRF and cascading profiling. `var_dump()`'d User-Agent and Referer and verified they are populated and returned correct values when accessed. Restarted server to trigger setup checks. Reviewers: vrana Reviewed By: vrana CC: aran Differential Revision: https://secure.phabricator.com/D4888
68 lines
2.2 KiB
PHP
68 lines
2.2 KiB
PHP
<?php
|
|
|
|
final class PhabricatorSetupCheckBaseURI extends PhabricatorSetupCheck {
|
|
|
|
protected function executeChecks() {
|
|
$base_uri = PhabricatorEnv::getEnvConfig('phabricator.base-uri');
|
|
|
|
if (strpos(AphrontRequest::getHTTPHeader('Host'), '.') === false) {
|
|
$summary = pht(
|
|
'The domain does not contain a dot. This is necessary for some web '.
|
|
'browsers to be able to set cookies.');
|
|
|
|
$message = pht(
|
|
'The domain in the base URI must contain a dot ("."), e.g. '.
|
|
'"http://example.com", not just a bare name like "http://example/". '.
|
|
'Some web browsers will not set cookies on domains with no TLD.');
|
|
|
|
$this
|
|
->newIssue('config.phabricator.domain')
|
|
->setShortName(pht('Dotless Domain'))
|
|
->setName(pht('No Dot Character in Domain'))
|
|
->setSummary($summary)
|
|
->setMessage($message)
|
|
->setIsFatal(true);
|
|
}
|
|
|
|
if ($base_uri) {
|
|
return;
|
|
}
|
|
|
|
$base_uri_guess = PhabricatorEnv::getRequestBaseURI();
|
|
|
|
$summary = pht(
|
|
'The base URI for this install is not configured. Configuring it will '.
|
|
'improve security and enable features.');
|
|
|
|
$message = pht(
|
|
'The base URI for this install is not configured. Configuring it will '.
|
|
'improve security and allow background processes (like daemons and '.
|
|
'scripts) to generate links.'.
|
|
"\n\n".
|
|
'You should set the base URI to the URI you will use to access '.
|
|
'Phabricator, like "http://phabricator.example.com/".'.
|
|
"\n\n".
|
|
'Include the protocol (http or https), domain name, and port number if '.
|
|
'you are using a port other than 80 (http) or 443 (https).'.
|
|
"\n\n".
|
|
'Based on this request, it appears that the correct setting is:'.
|
|
"\n\n".
|
|
'%s'.
|
|
"\n\n".
|
|
'To configure the base URI, run the command shown below.',
|
|
$base_uri_guess);
|
|
|
|
$this
|
|
->newIssue('config.phabricator.base-uri')
|
|
->setShortName(pht('No Base URI'))
|
|
->setName(pht("Base URI Not Configured"))
|
|
->setSummary($summary)
|
|
->setMessage($message)
|
|
->addCommand(
|
|
hsprintf(
|
|
'<tt>phabricator/ $</tt> %s',
|
|
csprintf(
|
|
'./bin/config set phabricator.base-uri %s',
|
|
$base_uri_guess)));
|
|
}
|
|
}
|