Mention .htaccess, and test that .htaccess is working.

Also, perform a through-the-web test of the Documents directory to make sure it isn't left accessible via the web. git-svn-id: https://kt-dms.svn.sourceforge.net/svnroot/kt-dms/trunk@3252 c91229c3-7414-0410-bfa2-8a42b809f60b

Mention .htaccess, and test that .htaccess is working.
Also, perform a through-the-web test of the Documents directory to make sure it isn't left accessible via the web. git-svn-id: https://kt-dms.svn.sourceforge.net/svnroot/kt-dms/trunk@3252 c91229c3-7414-0410-bfa2-8a42b809f60b
Neil Blakey-Milner
1 parent d6e28ac2
Showing 2 changed files with 31 additions and 5 deletions
setup/postcheckup.php
setup/precheckup.php
@@ -44,10 +44,18 @@ that things are still set up correctly.&lt;/p&gt;
 <?php
 if (substr($default->documentRoot, 0, strlen(KT_DIR)) == KT_DIR) {
-    print '<p><font color="orange">Your document directory seems to be
-    accessible from the web.  Change the documentRoot in your
-    environment.php configuration file to a place not accessible from
-    the web to prevent access outside of KnowledgeTree.</font></p>';
+    print '<p><strong><font color="orange">Your document directory is
+    set to the default, which is inside the web root.  This may present
+    a security problem if your documents can be accessed from the web,
+    working around the permission system in
+    KnowledgeTree.</font></strong></p>';
+}
+
+$linkcheck = generateLink('/Documents/', '');
+$handle = @fopen($linkcheck, 'rb');
+if ($handle !== false) {
+    print '<p><strong><font color="red">Your document directory seems to
+    be accessible via the web!</font></strong></p>';
 }
 ?>
@@ -127,6 +127,7 @@ function bigEnough($name, $setting, $preferred, $bytes = false, $red = true) {
 }
 function must_extension_loaded($ext, $message = "") {
+    @dl($ext);
     if (extension_loaded($ext)) {
         return '<b><font color="green">Available</font></b>';
     }
@@ -167,6 +168,13 @@ function running_user() {
     return null;
 }
+function htaccess() {
+    if (array_key_exists('kt_htaccess_worked', $_SERVER)) {
+        return '<p><strong><font color="green">Your web server is set up to use the .htaccess files.</font></strong></p>';
+    }
+    return '<p><strong><font color="red">Your web server is NOT set up to use the .htaccess files.</font></strong></p>';
+}
+
 ?>
 <html>
   <head>
@@ -189,6 +197,16 @@ added.  Green items means you&#39;re ready to go in this area.  You can
 check back here to see if anything has changed in your environment if
 you have any problems.</p>
+<h2>.htaccess file</h2>
+
+<p>You can let KnowledgeTree manage the PHP settings that apply to the
+KnowledgeTree application (it won't affect your other applications) by
+configuring your web server to use the .htaccess files that come with
+KnowledgeTree.  This will ensure that the settings for KnowledgeTree
+(detailed below) are set up for optimal, reliable performance.</p>
+
+<?=htaccess()?>
+
 <h2>PHP version and extensions</h2>
 <p>This relates to your PHP installation environment - which version of
@@ -222,7 +240,7 @@ PHP you are running, and which modules are available.&lt;/p&gt;
     </tr>
     <tr>
       <th>Fileinfo support</th>
-      <td><?=can_extension_loaded('fileinfo', "Provides better file identification support - not necessary if you use file entensions");?></td>
+      <td><?=can_extension_loaded('fileinfo', "Provides better file identification support - not necessary if you use file extensions");?></td>
     </tr>
   </tbody>
 </table>