26ad852451
Improves bulk actions in the domains view by ensuring unique domain IDs are counted and selected, preventing double-counting from desktop and mobile checkboxes. Adds CSRF token to bulk actions forms for security. Moves timezone initialization to public/index.php to ensure it is set before any date operations, and updates base layout to reflect this change.
85 lines
2.5 KiB
PHP
85 lines
2.5 KiB
PHP
<?php
|
|
|
|
require_once __DIR__ . '/../vendor/autoload.php';
|
|
|
|
use Core\Application;
|
|
use Core\Router;
|
|
use Dotenv\Dotenv;
|
|
use App\Services\ErrorHandler;
|
|
|
|
define('PATH_ROOT', __DIR__ . '/../');
|
|
|
|
// Register global error handlers FIRST (before anything else can fail)
|
|
ErrorHandler::register();
|
|
|
|
// Load environment variables (using safeLoad to not throw if missing)
|
|
$dotenv = Dotenv::createImmutable(__DIR__ . '/..');
|
|
try {
|
|
$dotenv->load();
|
|
} catch (\Throwable $e) {
|
|
// If .env is missing, create a minimal one or use defaults
|
|
if (!file_exists(__DIR__ . '/../.env')) {
|
|
// Show helpful error about missing .env file
|
|
throw new \Exception(
|
|
".env file not found! Please copy env.example.txt to .env and configure your settings.\n\n" .
|
|
"Quick fix:\n" .
|
|
"1. Copy env.example.txt to .env\n" .
|
|
"2. Update database credentials in .env\n" .
|
|
"3. Set APP_ENV=development or production\n\n" .
|
|
"Original error: " . $e->getMessage()
|
|
);
|
|
}
|
|
throw $e;
|
|
}
|
|
|
|
// Configure and start session (with database sessions if available)
|
|
Core\SessionConfig::configure();
|
|
Core\SessionConfig::start();
|
|
|
|
// Load CSRF helper functions
|
|
require_once __DIR__ . '/../app/Helpers/CsrfHelper.php';
|
|
|
|
// Check if system is installed (using flag file - no DB queries!)
|
|
$currentPath = parse_url($_SERVER['REQUEST_URI'] ?? '/', PHP_URL_PATH);
|
|
$isInstallerPath = strpos($currentPath, '/install') === 0;
|
|
$installedFlagFile = __DIR__ . '/../.installed';
|
|
|
|
if (!$isInstallerPath) {
|
|
// Check if .installed flag file exists
|
|
if (!file_exists($installedFlagFile)) {
|
|
header('Location: /install');
|
|
exit;
|
|
}
|
|
}
|
|
|
|
// Check remember me token if user is not logged in
|
|
if (!isset($_SESSION['user_id']) && isset($_COOKIE['remember_token']) && !$isInstallerPath) {
|
|
$authController = new \App\Controllers\AuthController();
|
|
$authController->checkRememberToken();
|
|
}
|
|
|
|
// Set application timezone early (before any date operations)
|
|
if (!$isInstallerPath && file_exists($installedFlagFile)) {
|
|
try {
|
|
$settingModel = new \App\Models\Setting();
|
|
$timezone = $settingModel->getValue('app_timezone', 'UTC');
|
|
date_default_timezone_set($timezone);
|
|
} catch (\Exception $e) {
|
|
// Database not available, use UTC as fallback
|
|
date_default_timezone_set('UTC');
|
|
}
|
|
} else {
|
|
// Default to UTC during installation
|
|
date_default_timezone_set('UTC');
|
|
}
|
|
|
|
// Initialize application
|
|
$app = new Application();
|
|
|
|
// Load routes
|
|
require_once __DIR__ . '/../routes/web.php';
|
|
|
|
// Run application
|
|
$app->run();
|
|
|