
Welcome Anonymous
Conversion of PHP-Nuke addons to CPG-Nuke ⇒ Frequently Asked Questions ⇒ CPG Dragonfly™ CMS
$Version_Num vs. CPG_NUKE vs. \Dragonfly::VERSIONAs of CPG-Nuke 9.x, $Version_Num has become deprecated. Why? PHP-Nuke 8.x is around the corner and using $Version_Num to compare versions could cause a problem with CPG-Nuke 8.x. To eliminate the potential for this, a new constant has been created - CPG_NUKE, which stores the version of your CPG-Nuke.
If your modules use $Version_Num, please replace it with CPG_NUKE. As of Dragonfly CMS 10.x, CPG_NUKE has become deprecated. If your modules use $Version_Num/CPG_NUKE, please replace it with \Dragonfly::VERSION. Can I still use PHP-Nuke themes, modules and blocks?In most cases you can, but you won't be able to use CPG-Nuke's collapsable blocks unless you modify the theme.
Open up themes/cpgnuke/theme.php to familiarize yourself with how everything works and what needs to be changed for compatibility with CPG-Nuke. Also, due to the differences in our SQL abstraction layer, modules, blocks and themes need to be changed to use the correct abstraction layer ($db vs. $dbi). Direct access protectionWe have created a better, more secure way of protecting files from being directly accessed by a user.
PHP-Nuke: if (eregi("block-Big_Story_of_Today.php", $_SERVER['PHP_SELF'])) {
Header("Location: index.php");
die();
} CPG-Nuke: if (!defined('CPG_NUKE')) { exit; } The same concept applies for files in admin files: if (!defined('ADMIN_PAGES')) { exit; } Freeing the memory associated with MySQL result setsWhen working with several result sets in a single script, the memory associated with these result sets can become congested. By using the simple function below, we can free all memory associated with the given result set:
$result->free(); Let's take this bit of code in context: $result = $db->query("SELECT * FROM ".$prefix."_referer");
list($rid, $url) = $result->fetchrow();
$result->free(); Please take note that all memory is automatically freed at the end of a PHP script. Including the appropriate filesIn PHP-Nuke, each module made a direct inclusion to mainfile.php, something like:
require_once("mainfile.php"); NEVER, EVER directly include mainfile.php OR config.php, anywhere Don't include footer.php it is loaded automaticly. Find and remove something like: include('footer.php');
# OR
include_once('footer.php');
# OR
require('footer.php');
# OR
require_once('footer.php'); Limiting access to administrator modulesIn PHP-Nuke, extra code was wasted for determining if the given administrator had permission to access the requested admin module. A typical example looks something like:
$aid = substr("$aid", 0,25);
$row = $db->sql_fetchrow($db->sql_query("SELECT radminsuper FROM " . $prefix . "_authors WHERE aid='$aid'"));
if ($row['radminsuper'] == 1) { We have replaced such code in CPG-Nuke with: if (!can_admin()) { die('Access Denied'); } Read more on function can_admin() here Obtaining information about the current userIn PHP-Nuke, if you wanted to obtain information about the given user, you would have to decode the cookie yourself, a process that is messy and insecure. A typical example looks something like:
if (is_user($user)) {
cookiedecode($user);
$userid = $cookie[0];
$username = $cookie[1];
} NEVER attempt to decode the cookie yourself in CPG-Nuke! Please take note that the $user and $admin variables are no longer used, thus they should not be used as arguments in the functions. Follow this model for fetching information about a user: if (is_user()) {
$userid = \Dragonfly::getKernel()->IDENTITY->id;
$username = \Dragonfly::getKernel()->IDENTITY->username;
} Only fetch the needed data in a queryPHP-Nuke queries often selected all data from a selected table, only to perform a simple action such as counting the number of rows. Take this for example:
$total = $db->sql_numrows($db->sql_query("SELECT * FROM ".$prefix."_referer")); It is storing all data from cms_referer in the memory, a useless operation that takes up space. We can save memory by rewriting the code as: list($total) = $db->uFetchRow("SELECT COUNT(*) FROM {$db->TBL->referer}");
# OR
$total = $db->TBL->referer->count(); Reduce code by using list()A lot of code can be reduced by using PHP's list() function instead of assigning variables to the result set of an SQL query one by one.
Take this bit of code for example: $sql = "SELECT yid, content FROM ".$prefix."_ephem WHERE did='$eday' AND mid='$emonth'";
$result = $db->sql_query($sql);
$row = $db->sql_fetchrow($result);
$yid = $row['yid'];
$content = $row['content']; We can easily reduce this code by rewriting it as: $result = $db->query("SELECT yid, content FROM {$db->TBL->ephem} WHERE did='{$eday}' AND mid='{$emonth}'");
list($yid, $content) = $result->fetch_row();
# OR
list($yid, $content) = $db->uFetchRow("SELECT yid, content FROM {$db->TBL->ephem} WHERE did='{$eday}' AND mid='{$emonth}'");
Read more on function list() here Retrieving data from cms_config_customIn PHP-Nuke and CPG-Nuke versions prior to 8.2, the table cms_config was used for storing configuration data. As part of our continuing efforts to simplify the use of CPG-Nuke, we have created a new table, cms_config_custom, which is a lot more flexible.
Retrieving data from this table is a piece of cake! As opposed to using an SQL query each time you want to grab a piece of information from the configuration table, you can use the array $MAIN_CFG. Let's say that you wanted to retrieve the value of sitename: $sitename = \Dragonfly::getKernel()->CFG->global->sitename; That may look a bit confusing, so let's break it down... The first dimension of the array, in this case 'global' is the cfg_name column in cms_config_custom. The second dimension, in this case 'sitename' is the cfg_field column in cms_config_custom. Putting the array together will result in the retrieval of the cfg_value column in cms_config_custom. Sending mail through CPG-NukePHP-Nuke used PHP's mail() function for sending mail. The trouble with this is that it has limited usage and does not support SMTP.
In CPG-Nuke, we've developed a new function for this task, send_mail(). This new function can handle mail through SMTP or PHP, features support for non-html messages, and is a lot more powerful than the standard mail() function. Let's compare PHP-Nuke and CPG-Nuke's handling of mail... PHP-Nuke: mail($adminmail, "Testing 1, 2, 3", "Hello World!"); CPG-Nuke: send_mail($mailer_message, 'Hello World', 0, 'Testing 1, 2, 3'); Read more on function send_mail() here Using the right amount of quotesPHP-Nuke's code was sloppy, one example being excessive quoting. Let's take this bit of code:
if ($month == 1) { echo ""._JANUARY.""; } There is simply no need for that many quotes when you only wish to echo one constant. Rewrite it as: if ($month == 1) { echo _JANUARY; } register_globals... to use them or not to use them?PHP-Nuke overrode PHP's default setting for register_globals (OFF by default, as of PHP 4.2.0). Misuse of register_globals can compromise the security of a script, and in turn the entire server. It's safe to say that PHP-Nuke misused register_globals.
Take this bit of code for example: if (isset($id)) { $id = intval($id); } With register_globals on, $id could be set anywhere - a GET, POST, or even COOKIE request. However, with register_globals off, $id cannot be set through any of these requests. In this case, a NULL value will be assigned to $id. In order to allow $id to be set through a GET request, for example, we would change the above code to: if (isset($_GET['id'])) { $id = intval($_GET['id']); } For a POST request: if (isset($_POST['id'])) { $id = intval($_POST['id']); } Or to allow both GET and POST requests: $id = (isset($_POST['id']) ? intval($_POST['id']) : (isset($_GET['id']) ? intval($_GET['id']) : '')); (intval returns 0 if not a numeric as opposed to int() which returns null) register_globals have been turned off as of CPG-Nuke 9.x. Read more on register_globals here sql_fetch_array() vs. $db->sql_fetchrow() vs. $result->fetch_assoc()PHP-Nuke:
$array = sql_fetch_array($result); CPG-Nuke: $array = $db->sql_fetchrow($result); Dragonfly: $array = $result->fetch_assoc(); sql_fetch_row() vs. $db->sql_fetchrow() vs. $result->fetch_row()PHP-Nuke:
$array = sql_fetch_row($result); CPG-Nuke: $array = $db->sql_fetchrow($result); Dragonfly: $array = $result->fetch_row(); sql_num_rows() vs. $db->sql_numrows() vs. $result->num_rowsPHP-Nuke:
$count = sql_num_rows($result); CPG-Nuke: $count = $db->sql_numrows($result); Dragonfly: $count = $result->num_rows; sql_query() vs. $db->sql_query() vs. $db->query()PHP-Nuke:
$result = sql_query("SELECT * FROM ".$prefix."_users", $dbi); CPG-Nuke: $result = $db->sql_query("SELECT * FROM ".$prefix."_users"); Dragonfly: $result = $db->query("SELECT * FROM {$db->TBL->users}"); |
User Info
![]() Welcome Anonymous |