'install.sql should be deleted',
'../install.php' => 'install.php should be deleted',
'upgrades' => 'nucleus/upgrades directory should be deleted',
'convert' => 'nucleus/convert directory should be deleted'
);
$aFound = array();
foreach($aFiles as $fileName => $fileDesc)
{
if (@file_exists($fileName))
array_push($aFound, $fileDesc);
}
if (@is_writable('../config.php')) {
array_push($aFound, 'config.php should be non-writable (chmod to 444)');
}
if (sizeof($aFound) > 0)
{
startUpError(
'One or more of the Nucleus installation files are still present on the webserver, or are writable.
You should remove these files or change their permissions to ensure security. Here are the files that were found by Nucleus
- '. implode($aFound, '
- ').'
If you don\'t want to see this error message again, without solving the problem, set $CONF[\'alertOnSecurityRisk\'] in globalfunctions.php to 0, or do this at the end of config.php.
',
'Security Risk'
);
}
}
$bNeedsLogin = false;
$bIsActivation = in_array($action, array('activate', 'activatesetpwd'));
if ($action == 'logout')
$bNeedsLogin = true;
if (!$member->isLoggedIn() && !$bIsActivation)
$bNeedsLogin = true;
// show error if member cannot login to admin
if ($member->isLoggedIn() && !$member->canLogin() && !$bIsActivation) {
$error = _ERROR_LOGINDISALLOWED;
$bNeedsLogin = true;
}
if ($bNeedsLogin)
{
setOldAction($action); // see ADMIN::login() (sets old action in POST vars)
$action = 'showlogin';
}
sendContentType('application/xhtml+xml', 'admin-' . $action);
$admin = new ADMIN();
$admin->action($action);
?>