* SugarCRM Community Edition is a customer relationship management program developed by
* SugarCRM, Inc. Copyright (C) 2004-2013 SugarCRM Inc.
* SuiteCRM is an extension to SugarCRM Community Edition developed by SalesAgility Ltd.
* Copyright (C) 2011 - 2018 SalesAgility Ltd.
* This program is free software; you can redistribute it and/or modify it under
* the terms of the GNU Affero General Public License version 3 as published by the
* Free Software Foundation with the addition of the following permission added
* to Section 15 as permitted in Section 7(a): FOR ANY PART OF THE COVERED WORK
* This program is distributed in the hope that it will be useful, but WITHOUT
* ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS
* FOR A PARTICULAR PURPOSE. See the GNU Affero General Public License for more
* details.
* You should have received a copy of the GNU Affero General Public License along with
* this program; if not, see http://www.gnu.org/licenses or write to the Free
* Software Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA
* 02110-1301 USA.
* You can contact SugarCRM, Inc. headquarters at 10050 North Wolfe Road,
* SW2-130, Cupertino, CA 95014, USA. or at email address contact@sugarcrm.com.
* The interactive user interfaces in modified source and object code versions
* of this program must display Appropriate Legal Notices, as required under
* Section 5 of the GNU Affero General Public License version 3.
* In accordance with Section 7(b) of the GNU Affero General Public License version 3,
* these Appropriate Legal Notices must retain the display of the "Powered by
* SugarCRM" logo and "Supercharged by SuiteCRM" logo. If the display of the logos is not
* reasonably feasible for technical reasons, the Appropriate Legal Notices must
* display the words "Powered by SugarCRM" and "Supercharged by SuiteCRM".
if (!defined('sugarEntry') || !sugarEntry) {
die('Not A Valid Entry Point');
//// GLOBAL utility
* Calls a custom function (if it exists) based on the first parameter,
* and returns result of function call, or 'undefined' if the function doesn't exist
* @param string function name to call in custom install hooks
* @return mixed function call result, or 'undefined'
function installerHook($function_name, $options = array())
if (!isset($GLOBALS['customInstallHooksExist'])) {
if (file_exists('custom/install/install_hooks.php')) {
installLog("installerHook: Found custom/install/install_hooks.php");
$GLOBALS['customInstallHooksExist'] = true;
} else {
installLog("installerHook: Info: custom/install/install_hooks.php not present, no custom hooks to execute");
$GLOBALS['customInstallHooksExist'] = false;
if ($GLOBALS['customInstallHooksExist'] === false) {
return 'undefined';
} else {
if (function_exists($function_name)) {
installLog("installerHook: function {$function_name} found, calling and returning the return value");
return $function_name($options);
} else {
installLog("installerHook: function {$function_name} not found in custom install hooks file");
return 'undefined';
//// FROM welcome.php
* returns lowercase lang encoding
* @return string encoding or blank on false
function parseAcceptLanguage()
if (strpos((string) $lang, ';')) {
$exLang = explode(';', $lang);
return strtolower(str_replace('-', '_', $exLang[0]));
} else {
$match = array();
if (preg_match("#\w{2}\-?\_?\w{2}#", (string) $lang, $match)) {
return strtolower(str_replace('-', '_', $match[0]));
return '';
//// FROM localization.php
* copies the temporary unzip'd files to their final destination
* removes unzip'd files from system if $uninstall=true
* @param bool uninstall true if uninstalling a language pack
* @return array sugar_config
function commitLanguagePack($uninstall=false)
$new_lang_name = "";
global $install_file;
global $sugar_config;
global $mod_strings;
global $base_upgrade_dir;
global $base_tmp_upgrade_dir;
$install_file = $install_file ?? '';
$errors = array();
$manifest = urldecode($_REQUEST['manifest']);
$zipFile = urldecode($_REQUEST['zipFile']);
$version = "";
$show_files = true;
$unzip_dir = mk_temp_dir($base_tmp_upgrade_dir);
$zip_from_dir = ".";
$zip_to_dir = ".";
$zip_force_copy = array();
if ($uninstall == false && isset($_SESSION['INSTALLED_LANG_PACKS']) && in_array($zipFile, $_SESSION['INSTALLED_LANG_PACKS'])) {
// unzip lang pack to temp dir
if (isset($zipFile) && !empty($zipFile)) {
if (is_file($zipFile)) {
unzip($zipFile, $unzip_dir);
} else {
echo $mod_strings['ERR_LANG_MISSING_FILE'].$zipFile;
die(); // no point going any further
// filter for special to/from dir conditions (langpacks generally don't have them)
if (isset($manifest) && !empty($manifest)) {
if (is_file($manifest)) {
if (isset($manifest['copy_files']['from_dir']) && $manifest['copy_files']['from_dir'] != "") {
$zip_from_dir = $manifest['copy_files']['from_dir'];
if (isset($manifest['copy_files']['to_dir']) && $manifest['copy_files']['to_dir'] != "") {
$zip_to_dir = $manifest['copy_files']['to_dir'];
if (isset($manifest['copy_files']['force_copy']) && $manifest['copy_files']['force_copy'] != "") {
$zip_force_copy = $manifest['copy_files']['force_copy'];
if (isset($manifest['version'])) {
$version = $manifest['version'];
} else {
$errors[] = $mod_strings['ERR_LANG_MISSING_FILE'].$manifest;
// find name of language pack: find single file in include/language/xx_xx.lang.php
$d = dir("$unzip_dir/$zip_from_dir/include/language");
while ($f = $d->read()) {
if ($f == "." || $f == "..") {
} else {
if (preg_match("/(.*)\.lang\.php\$/", $f, $match)) {
$new_lang_name = $match[1];
if ($new_lang_name == "") {
$new_lang_desc = getLanguagePackName("$unzip_dir/$zip_from_dir/include/language/$new_lang_name.lang.php");
if ($new_lang_desc == "") {
die("No language pack description found at include/language/$new_lang_name.lang.php inside $install_file.");
// add language to available languages
$sugar_config['languages'][$new_lang_name] = ($new_lang_desc);
// get an array of all files to be moved
$filesFrom = array();
$filesFrom = findAllFiles($unzip_dir, $filesFrom);
if ($uninstall) {
// unlink all pack files
foreach ($filesFrom as $fileFrom) {
//echo "deleting: ".getcwd().substr($fileFrom, strlen($unzip_dir), strlen($fileFrom))."<br>";
@unlink(getcwd().substr((string) $fileFrom, strlen((string) $unzip_dir), strlen((string) $fileFrom)));
// remove session entry
foreach ($_SESSION['INSTALLED_LANG_PACKS'] as $k => $langPack) {
if ($langPack == $zipFile) {
$removedLang = $k;
// remove language from config
$new_langs = array();
$old_langs = $sugar_config['languages'];
foreach ($old_langs as $key => $value) {
if ($key != $removedLang) {
$new_langs += array( $key => $value );
$sugar_config['languages'] = $new_langs;
} else {
// copy filesFrom to filesTo
foreach ($filesFrom as $fileFrom) {
@copy($fileFrom, getcwd().substr((string) $fileFrom, strlen((string) $unzip_dir), strlen((string) $fileFrom)));
$_SESSION['INSTALLED_LANG_PACKS'][$new_lang_name] = $zipFile;
$_SESSION['INSTALLED_LANG_PACKS_VERSION'][$new_lang_name] = $version;
$serial_manifest = array();
$serial_manifest['manifest'] = (isset($manifest) ? $manifest : '');
$serial_manifest['installdefs'] = (isset($installdefs) ? $installdefs : '');
$serial_manifest['upgrade_manifest'] = (isset($upgrade_manifest) ? $upgrade_manifest : '');
$_SESSION['INSTALLED_LANG_PACKS_MANIFEST'][$new_lang_name] = base64_encode(serialize($serial_manifest));
return $sugar_config;
function commitPatch($unlink = false, $type = 'patch')
global $mod_strings;
global $base_upgrade_dir;
global $base_tmp_upgrade_dir;
$db = DBManagerFactory::getInstance();
$GLOBALS['db'] = $db;
$errors = array();
$files = array();
global $current_user;
$current_user = BeanFactory::newBean('Users');
$current_user->is_admin = '1';
$old_mod_strings = $mod_strings;
if (is_dir($base_upgrade_dir)) {
$files = findAllFiles("$base_upgrade_dir/$type", $files);
$mi = new ModuleInstaller();
$mi->silent = true;
$mod_strings = return_module_language('en', "Administration");
foreach ($files as $file) {
if (!preg_match('#.*\.zip\$#', (string) $file)) {
// handle manifest.php
$target_manifest = remove_file_extension($file) . '-manifest.php';
$unzip_dir = mk_temp_dir($base_tmp_upgrade_dir);
unzip($file, $unzip_dir);
if (file_exists("$unzip_dir/scripts/pre_install.php")) {
if (isset($manifest['copy_files']['from_dir']) && $manifest['copy_files']['from_dir'] != "") {
$zip_from_dir = $manifest['copy_files']['from_dir'];
$source = "$unzip_dir/$zip_from_dir";
$dest = getcwd();
copy_recursive($source, $dest);
if (file_exists("$unzip_dir/scripts/post_install.php")) {
$new_upgrade = new UpgradeHistory();
$new_upgrade->filename = $file;
$new_upgrade->md5sum = md5_file($file);
$new_upgrade->type = $manifest['type'];
$new_upgrade->version = $manifest['version'];
$new_upgrade->status = "installed";
//$new_upgrade->author = $manifest['author'];
$new_upgrade->name = $manifest['name'];
$new_upgrade->description = $manifest['description'];
$serial_manifest = array();
$serial_manifest['manifest'] = (isset($manifest) ? $manifest : '');
$serial_manifest['installdefs'] = (isset($installdefs) ? $installdefs : '');
$serial_manifest['upgrade_manifest'] = (isset($upgrade_manifest) ? $upgrade_manifest : '');
$new_upgrade->manifest = base64_encode(serialize($serial_manifest));
$mod_strings = $old_mod_strings;
function commitModules($unlink = false, $type = 'module')
global $mod_strings;
global $base_upgrade_dir;
global $base_tmp_upgrade_dir;
$db = DBManagerFactory::getInstance();
$GLOBALS['db'] = $db;
$errors = array();
$files = array();
global $current_user;
$current_user = BeanFactory::newBean('Users');
$current_user->is_admin = '1';
$old_mod_strings = $mod_strings;
if (is_dir(sugar_cached("upload/upgrades"))) {
$files = findAllFiles(sugar_cached("upload/upgrades/$type"), $files);
$mi = new ModuleInstaller();
$mi->silent = true;
$mod_strings = return_module_language('en', "Administration");
foreach ($files as $file) {
if (!preg_match('#.*\.zip\$', (string) $file)) {
$lic_name = 'accept_lic_'.str_replace('.', '_', urlencode(basename((string) $file)));
$can_install = true;
if (isset($_REQUEST[$lic_name])) {
if ($_REQUEST[$lic_name] == 'yes') {
$can_install = true;
} else {
$can_install = false;
if ($can_install) {
// handle manifest.php
$target_manifest = remove_file_extension($file) . '-manifest.php';
if ($type == 'langpack') {
$_REQUEST['manifest'] = $target_manifest;
$_REQUEST['zipFile'] = $file;
$unzip_dir = mk_temp_dir($base_tmp_upgrade_dir);
unzip($file, $unzip_dir);
$_REQUEST['install_file'] = $file;
$new_upgrade = new UpgradeHistory();
$new_upgrade->filename = $file;
$new_upgrade->md5sum = md5_file($file);
$new_upgrade->type = $manifest['type'];
$new_upgrade->version = $manifest['version'];
$new_upgrade->status = "installed";
// $new_upgrade->author = $manifest['author'];
$new_upgrade->name = $manifest['name'];
$new_upgrade->description = $manifest['description'];
$new_upgrade->id_name = (isset($installdefs['id_name'])) ? $installdefs['id_name'] : '';
$serial_manifest = array();
$serial_manifest['manifest'] = (isset($manifest) ? $manifest : '');
$serial_manifest['installdefs'] = (isset($installdefs) ? $installdefs : '');
$serial_manifest['upgrade_manifest'] = (isset($upgrade_manifest) ? $upgrade_manifest : '');
$new_upgrade->manifest = base64_encode(serialize($serial_manifest));
$mod_strings = $old_mod_strings;
* creates UpgradeHistory entries
* @param mode string Install or Uninstall
function updateUpgradeHistory()
if (isset($_SESSION['INSTALLED_LANG_PACKS']) && (is_countable($_SESSION['INSTALLED_LANG_PACKS']) ? count($_SESSION['INSTALLED_LANG_PACKS']) : 0) > 0) {
foreach ($_SESSION['INSTALLED_LANG_PACKS'] as $k => $zipFile) {
$new_upgrade = new UpgradeHistory();
$new_upgrade->filename = $zipFile;
$new_upgrade->md5sum = md5_file($zipFile);
$new_upgrade->type = 'langpack';
$new_upgrade->version = $_SESSION['INSTALLED_LANG_PACKS_VERSION'][$k];
$new_upgrade->status = "installed";
$new_upgrade->manifest = $_SESSION['INSTALLED_LANG_PACKS_MANIFEST'][$k];
* removes the installed language pack, but the zip is still in the cache dir
function removeLanguagePack()
global $mod_strings;
global $sugar_config;
$errors = array();
$manifest = urldecode($_REQUEST['manifest']);
$zipFile = urldecode($_REQUEST['zipFile']);
if (isset($manifest) && !empty($manifest)) {
if (is_file($manifest)) {
if (!unlink($manifest)) {
$errors[] = $mod_strings['ERR_LANG_CANNOT_DELETE_FILE'].$manifest;
} else {
$errors[] = $mod_strings['ERR_LANG_MISSING_FILE'].$manifest;
if (isset($zipFile) && !empty($zipFile)) {
if (is_file($zipFile)) {
if (!unlink($zipFile)) {
$errors[] = $mod_strings['ERR_LANG_CANNOT_DELETE_FILE'].$zipFile;
} else {
$errors[] = $mod_strings['ERR_LANG_MISSING_FILE'].$zipFile;
if (is_countable($errors > 0) ? count($errors > 0) : 0) {
echo "<p class='error'>";
foreach ($errors as $error) {
echo "{$error}<br>";
echo "</p>";
unlinkTempFiles($manifest, $zipFile);
* takes the current value of $sugar_config and writes it out to config.php (sorta the same as the final step)
* @param array sugar_config
function writeSugarConfig($sugar_config)
$sugar_config_string = "<?php\n" .
'// created: ' . date('Y-m-d H:i:s') . "\n" .
'$sugar_config = ' .
var_export($sugar_config, true) .
if (is_writable('config.php')) {
write_array_to_file("sugar_config", $sugar_config, "config.php");
* uninstalls the Language pack
function uninstallLangPack()
global $sugar_config;
// remove language from config
$new_langs = array();
$old_langs = $sugar_config['languages'];
foreach ($old_langs as $key => $value) {
if ($key != $_REQUEST['new_lang_name']) {
$new_langs += array( $key => $value );
$sugar_config['languages'] = $new_langs;
* retrieves the name of the language
if (!function_exists('getLanguagePackName')) {
function getLanguagePackName($the_file)
$app_list_strings = [];
if (isset($app_list_strings["language_pack_name"])) {
function getInstalledLangPacks($showButtons=true)
global $mod_strings;
global $next_step;
$ret = "<tr><td colspan=7 align=left>{$mod_strings['LBL_LANG_PACK_INSTALLED']}</td></tr>";
//$ret .="<table width='100%' cellpadding='0' cellspacing='0' border='0'>";
$ret .= "<tr>
<td width='15%' ><b>{$mod_strings['LBL_ML_NAME']}</b></td>
<td width='15%' ><b>{$mod_strings['LBL_ML_VERSION']}</b></td>
<td width='15%' ><b>{$mod_strings['LBL_ML_PUBLISHED']}</b></td>
<td width='15%' ><b>{$mod_strings['LBL_ML_UNINSTALLABLE']}</b></td>
<td width='15%' ><b>{$mod_strings['LBL_ML_DESCRIPTION']}</b></td>
<td width='15%' ></td>
<td width='15%' ></td>
$files = array();
$files = findAllFiles(sugar_cached("upload/upgrades"), $files);
if (is_countable($_SESSION['INSTALLED_LANG_PACKS'] > 0) ? count($_SESSION['INSTALLED_LANG_PACKS'] > 0) : 0) {
foreach ($_SESSION['INSTALLED_LANG_PACKS'] as $file) {
// handle manifest.php
$target_manifest = remove_file_extension($file) . '-manifest.php';
$name = empty($manifest['name']) ? $file : $manifest['name'];
$version = empty($manifest['version']) ? '' : $manifest['version'];
$published_date = empty($manifest['published_date']) ? '' : $manifest['published_date'];
$icon = '';
$description = empty($manifest['description']) ? 'None' : $manifest['description'];
$uninstallable = empty($manifest['is_uninstallable']) ? 'No' : 'Yes';
$manifest_type = $manifest['type'];
$deletePackage = getPackButton('uninstall', $target_manifest, $file, $next_step, $uninstallable, $showButtons);
//$ret .="<table width='100%' cellpadding='0' cellspacing='0' border='0'>";
$ret .= "<tr>";
$ret .= "<td width='15%' >".$name."</td>";
$ret .= "<td width='15%' >".$version."</td>";
$ret .= "<td width='15%' >".$published_date."</td>";
$ret .= "<td width='15%' >".$uninstallable."</td>";
$ret .= "<td width='15%' >".$description."</td>";
$ret .= "<td width='15%' ></td>";
$ret .= "<td width='15%' >{$deletePackage}</td>";
$ret .= "</tr>";
} else {
$ret .= "</tr><td colspan=7><i>{$mod_strings['LBL_LANG_NO_PACKS']}</i></td></tr>";
} else {
$ret .= "</tr><td colspan=7><i>{$mod_strings['LBL_LANG_NO_PACKS']}</i></td></tr>";
return $ret;
function uninstallLanguagePack()
return commitLanguagePack(true);
function getSugarConfigLanguageArray($langZip)
global $installdefs;
global $manifest;
global $sugar_config;
$installdefs = $installdefs ?? [];
$manifest = $manifest ?? [];
$ret = '';
if (isset($installdefs['id']) && isset($manifest['name'])) {
$ret = $installdefs['id']."::".$manifest['name']."::".$manifest['version'];
return $ret;
//// FROM performSetup.php
function getInstallDbInstance()
return DBManagerFactory::getTypeInstance($_SESSION['setup_db_type'], array("db_manager" => $_SESSION['setup_db_manager']));
function getDbConnection()
$dbconfig = array(
"db_host_name" => $_SESSION['setup_db_host_name'],
"db_user_name" => $_SESSION['setup_db_admin_user_name'],
"db_password" => $_SESSION['setup_db_admin_password'],
"db_host_instance" => $_SESSION['setup_db_host_instance'],
"db_port" => $_SESSION['setup_db_port_num'],
if (empty($_SESSION['setup_db_create_database'])) {
$dbconfig["db_name"] = $_SESSION['setup_db_database_name'];
$dbconfig["db_user_name"] = $_SESSION['setup_db_sugarsales_user'];
$dbconfig["db_password"] = $_SESSION['setup_db_sugarsales_password'];
$db = getInstallDbInstance();
if (!empty($_SESSION['setup_db_options'])) {
$db->connect($dbconfig, true);
return $db;
* creates the Sugar DB user (if not admin)
function handleDbCreateSugarUser()
global $mod_strings;
global $setup_db_database_name;
global $setup_db_host_name;
global $setup_db_host_instance;
global $setup_db_port_num;
global $setup_db_admin_user_name;
global $setup_db_admin_password;
global $sugar_config;
global $setup_db_sugarsales_user;
global $setup_site_host_name;
global $setup_db_sugarsales_password;
echo $mod_strings['LBL_PERFORM_CREATE_DB_USER'];
$db = getDbConnection();
$db->createDbUser($setup_db_database_name, $setup_site_host_name, $setup_db_sugarsales_user, $setup_db_sugarsales_password);
$err = $db->lastError();
if ($err == '') {
echo $mod_strings['LBL_PERFORM_DONE'];
} else {
echo "<div style='color:red;'>";
echo "An error occurred when creating user:<br>";
echo "$err<br>";
echo "</div>";
installLog("An error occurred when creating user: $err");
* ensures that the charset and collation for a given database is set
function handleDbCharsetCollation()
global $mod_strings;
global $setup_db_database_name;
global $setup_db_host_name;
global $setup_db_admin_user_name;
global $setup_db_admin_password;
global $sugar_config;
if ($_SESSION['setup_db_type'] == 'mysql') {
$db = getDbConnection();
$db->query("ALTER DATABASE `{$setup_db_database_name}` DEFAULT CHARACTER SET utf8", true);
$db->query("ALTER DATABASE `{$setup_db_database_name}` DEFAULT COLLATE utf8_general_ci", true);
* creates the new database
function handleDbCreateDatabase()
global $mod_strings;
global $setup_db_database_name;
global $setup_db_host_name;
global $setup_db_host_instance;
global $setup_db_port_num;
global $setup_db_admin_user_name;
global $setup_db_admin_password;
global $sugar_config;
echo "{$mod_strings['LBL_PERFORM_CREATE_DB_1']} {$setup_db_database_name} {$mod_strings['LBL_PERFORM_CREATE_DB_2']} {$setup_db_host_name}...";
$db = getDbConnection();
if ($db->dbExists($setup_db_database_name)) {
echo $mod_strings['LBL_PERFORM_DONE'];
* handles creation of Log4PHP properties file
* This function has been deprecated. Use SugarLogger.
function handleLog4Php()
function installLog($entry)
global $mod_strings;
$nl = '
'.gmdate("Y-m-d H:i:s").'...';
$log = clean_path(getcwd().'/install.log');
// create if not exists
if (!file_exists($log)) {
$fp = @sugar_fopen($log, 'w+'); // attempts to create file
if (!is_resource($fp)) {
$GLOBALS['log']->fatal('could not create the install.log file');
} else {
$fp = @sugar_fopen($log, 'a+'); // write pointer at end of file
if (!is_resource($fp)) {
$GLOBALS['log']->fatal('could not open/lock install.log file');
if (@fwrite($fp, $nl.$entry) === false) {
$GLOBALS['log']->fatal('could not write to install.log: '.$entry);
if (is_resource($fp)) {
* takes session vars and creates config.php
* @return array bottle collection of error messages
function handleSugarConfig()
global $bottle;
global $cache_dir;
global $mod_strings;
global $setup_db_host_name;
global $setup_db_host_instance;
global $setup_db_port_num;
global $setup_db_sugarsales_user;
global $setup_db_sugarsales_password;
global $setup_db_database_name;
global $setup_site_host_name;
global $setup_site_log_dir;
global $setup_site_log_file;
global $setup_site_session_path;
global $setup_site_guid;
global $setup_site_url;
global $setup_sugar_version;
global $sugar_config;
global $setup_site_log_level;
echo "<b>{$mod_strings['LBL_PERFORM_CONFIG_PHP']} (config.php)</b><br>";
//// $sugar_config SETTINGS
if (is_file('config.php')) {
$is_writable = is_writable('config.php');
// require is needed here (config.php is sometimes require'd from install.php)
} else {
$is_writable = is_writable('.');
// build default sugar_config and merge with new values
$sugar_config = sugarArrayMerge(get_sugar_config_defaults(), $sugar_config);
// always lock the installer
$sugar_config['installer_locked'] = true;
// we're setting these since the user was given a fair chance to change them
$sugar_config['dbconfig']['db_host_name'] = $setup_db_host_name;
if (!empty($setup_db_host_instance)) {
$sugar_config['dbconfig']['db_host_instance'] = $setup_db_host_instance;
} else {
$sugar_config['dbconfig']['db_host_instance'] = '';
if (!isset($_SESSION['setup_db_manager'])) {
$_SESSION['setup_db_manager'] = DBManagerFactory::getManagerByType($_SESSION['setup_db_type']);
$sugar_config['dbconfig']['db_user_name'] = $setup_db_sugarsales_user;
$sugar_config['dbconfig']['db_password'] = $setup_db_sugarsales_password;
$sugar_config['dbconfig']['db_name'] = $setup_db_database_name;
$sugar_config['dbconfig']['db_type'] = $_SESSION['setup_db_type'];
$sugar_config['dbconfig']['db_port'] = $setup_db_port_num;
$sugar_config['dbconfig']['db_manager'] = $_SESSION['setup_db_manager'];
if (!empty($_SESSION['setup_db_options'])) {
$sugar_config['dbconfigoption'] = array_merge($sugar_config['dbconfigoption'], $_SESSION['setup_db_options']);
$sugar_config['dbconfig']['collation'] = $_SESSION['setup_db_collation'];
$sugar_config['dbconfig']['charset'] = $_SESSION['setup_db_charset'];
$sugar_config['cache_dir'] = $cache_dir;
$sugar_config['default_charset'] = $mod_strings['DEFAULT_CHARSET'];
$sugar_config['default_email_client'] = 'sugar';
$sugar_config['default_email_editor'] = 'html';
$sugar_config['host_name'] = $setup_site_host_name;
$sugar_config['js_custom_version'] = '';
$sugar_config['use_real_names'] = true;
$sugar_config['disable_convert_lead'] = false;
$sugar_config['log_dir'] = $setup_site_log_dir;
$sugar_config['log_file'] = $setup_site_log_file;
$sugar_config['enable_line_editing_detail'] = true;
$sugar_config['enable_line_editing_list'] = true;
$sugar_config['filter_module_fields'] = array(
'Users' => array(
'Employees' => array(
$sugar_config['hide_subpanels'] = true;
// Setup FTS
if (!empty($_SESSION['setup_fts_type'])) {
$sugar_config['full_text_engine'] = array(
$_SESSION['setup_fts_type'] => getFtsSettings()
if (isset($_SESSION['setup_fts_hide_config'])) {
$sugar_config['hide_full_text_engine_config'] = $_SESSION['setup_fts_hide_config'];
/*nsingh(bug 22402): Consolidate logger settings under $config['logger'] as liked by the new logger! If log4pphp exists,
these settings will be overwritten by those in log4php.properties when the user access admin->system settings.*/
$sugar_config['logger'] =
'file' => array(
'ext' => '.log',
'name' => 'suitecrm',
'dateFormat' => '%c',
'maxSize' => '10MB',
'maxLogs' => 10,
'suffix' => ''), // bug51583, change default suffix to blank for backwards comptability
$sugar_config['session_dir'] = $setup_site_session_path;
$sugar_config['site_url'] = $setup_site_url;
$sugar_config['sugar_version'] = $setup_sugar_version;
$sugar_config['tmp_dir'] = $cache_dir.'xml/';
$sugar_config['upload_dir'] = 'upload/';
// $sugar_config['use_php_code_json'] = returnPhpJsonStatus(); // true on error
if (isset($_SESSION['setup_site_sugarbeet_anonymous_stats'])) {
$sugar_config['sugarbeet'] = $_SESSION['setup_site_sugarbeet_anonymous_stats'];
$sugar_config['demoData'] = $_SESSION['demoData'];
if (isset($setup_site_guid)) {
$sugar_config['unique_key'] = $setup_site_guid;
if (empty($sugar_config['unique_key'])) {
$sugar_config['unique_key'] = md5(create_guid());
// add installed langs to config
// entry in upgrade_history comes AFTER table creation
foreach ($_SESSION['INSTALLED_LANG_PACKS'] as $langZip) {
$lang = getSugarConfigLanguageArray($langZip);
if (!empty($lang)) {
$exLang = explode('::', $lang);
if (is_array($exLang) && count($exLang) == 3) {
$sugar_config['languages'][$exLang[0]] = $exLang[1];
if (file_exists('install/lang.config.php')) {
$config = [];
if (!empty($config['languages'])) {
foreach ($config['languages'] as $lang=>$label) {
$sugar_config['languages'][$lang] = $label;
$sugar_config_string = "<?php\n" .
'// created: ' . date('Y-m-d H:i:s') . "\n" .
'$sugar_config = ' .
var_export($sugar_config, true) .
if ($is_writable && write_array_to_file("sugar_config", $sugar_config, "config.php")) {
// was 'Done'
} else {
echo 'failed<br>';
echo "<p>{$mod_strings['ERR_PERFORM_CONFIG_PHP_1']}</p>\n";
echo "<p>{$mod_strings['ERR_PERFORM_CONFIG_PHP_2']}</p>\n";
echo "<TEXTAREA rows=\"15\" cols=\"80\">".$sugar_config_string."</TEXTAREA>";
echo "<p>{$mod_strings['ERR_PERFORM_CONFIG_PHP_3']}</p>";
$bottle[] = $mod_strings['ERR_PERFORM_CONFIG_PHP_4'];
//Now merge the config_si.php settings into config.php
if (file_exists('config.php') && file_exists('config_si.php')) {
merge_config_si_settings(false, 'config.php', 'config_si.php');
//// END $sugar_config
return $bottle;
* Get FTS settings
* @return array
function getFtsSettings()
// Base settings
$ftsSettings = array(
'host' => $_SESSION['setup_fts_host'],
'port' => $_SESSION['setup_fts_port'],
// Add optional settings
$ftsOptional = array(
foreach ($ftsOptional as $ftsOpt) {
$ftsConfigKey = "setup_fts_{$ftsOpt}";
if (!empty($_SESSION[$ftsConfigKey])) {
$ftsSettings[$ftsOpt] = $_SESSION[$ftsConfigKey];
return $ftsSettings;
* (re)write the .htaccess file to prevent browser access to the log file
function handleHtaccess()
global $mod_strings;
global $sugar_config;
$ignoreCase = '';
if (!empty($_SERVER['SERVER_SOFTWARE']) && (substr_count(strtolower($_SERVER['SERVER_SOFTWARE']), 'apache/2') > 0)) {
$ignoreCase = '(?i)';
$htaccess_file = '.htaccess';
$contents = '';
$basePath = parse_url((string) $sugar_config['site_url'], PHP_URL_PATH);
if (empty($basePath)) {
$basePath = '/';
$cacheDir = $sugar_config['cache_dir'];
$restrict_str = <<<EOQ
if (ini_get('suhosin.perdir') !== false && strpos(ini_get('suhosin.perdir'), 'e') !== false) {
$restrict_str .= "php_value suhosin.executor.include.whitelist upload\n";
$restrict_str .= <<<EOQ
RedirectMatch 403 {$ignoreCase}.*\.log$
RedirectMatch 403 {$ignoreCase}/+not_imported_.*\.txt
RedirectMatch 403 {$ignoreCase}/+(soap|cache|xtemplate|data|examples|include|log4php|metadata|modules|vendor)/+.*\.(php|tpl|phar)
RedirectMatch 403 {$ignoreCase}/+emailmandelivery\.php
RedirectMatch 403 {$ignoreCase}/+.git
RedirectMatch 403 {$ignoreCase}/+.{$cacheDir}
RedirectMatch 403 {$ignoreCase}/+tests
RedirectMatch 403 {$ignoreCase}/+RoboFile\.php
RedirectMatch 403 {$ignoreCase}/+composer\.json
RedirectMatch 403 {$ignoreCase}/+composer\.lock
RedirectMatch 403 {$ignoreCase}/+upload
RedirectMatch 403 {$ignoreCase}/+custom/+blowfish
RedirectMatch 403 {$ignoreCase}/+cache/+diagnostic
RedirectMatch 403 {$ignoreCase}/+files\.md5\$
$cache_headers = <<<EOQ
<IfModule mod_rewrite.c>
Options +SymLinksIfOwnerMatch
Options -Indexes
Options -MultiViews
RewriteEngine On
RewriteBase {$basePath}
RewriteRule ^cache/jsLanguage/(.._..).js$ index.php?entryPoint=jslang&modulename=app_strings&lang=$1 [L,QSA]
RewriteRule ^cache/jsLanguage/(\w*)/(.._..).js$ index.php?entryPoint=jslang&modulename=$1&lang=$2 [L,QSA]
# --------- DEPRECATED --------
RewriteRule ^api/(.*)$ - [env=HTTP_AUTHORIZATION:%{HTTP:Authorization}]
RewriteRule ^api/(.*?)$ lib/API/public/index.php/$1 [L]
# -----------------------------
RewriteRule ^Api/(.*)$ - [env=HTTP_AUTHORIZATION:%{HTTP:Authorization}]
RewriteRule ^Api/access_token$ Api/index.php [L]
RewriteRule ^Api/V8/(.*?)$ Api/index.php [L]
<IfModule mod_headers.c>
Header unset ETag
FileETag None
<IfModule mod_headers.c>
Header unset X-Powered-By
Header always unset X-Powered-By
<IfModule mod_expires.c>
ExpiresActive on
ExpiresDefault "access plus 1 month"
ExpiresByType text/css "access plus 1 year"
# Data
ExpiresByType application/atom+xml "access plus 1 hour"
ExpiresByType application/rdf+xml "access plus 1 hour"
ExpiresByType application/rss+xml "access plus 1 hour"
ExpiresByType application/json "access plus 0 seconds"
ExpiresByType application/ld+json "access plus 0 seconds"
ExpiresByType application/schema+json "access plus 0 seconds"
ExpiresByType application/geo+json "access plus 0 seconds"
ExpiresByType application/xml "access plus 0 seconds"
ExpiresByType text/calendar "access plus 0 seconds"
ExpiresByType text/xml "access plus 0 seconds"
# Favicon
ExpiresByType image/x-icon "access plus 1 week"
ExpiresByType text/html "access plus 0 seconds"
# JavaScript
ExpiresByType application/javascript "access plus 1 year"
ExpiresByType application/x-javascript "access plus 1 year"
ExpiresByType text/javascript "access plus 1 year"
# Markdown
ExpiresByType text/markdown "access plus 0 seconds"
# Media files
ExpiresByType audio/ogg "access plus 1 month"
ExpiresByType image/bmp "access plus 1 month"
ExpiresByType image/gif "access plus 1 month"
ExpiresByType image/jpeg "access plus 1 month"
ExpiresByType image/jpg "access plus 1 month"
ExpiresByType image/png "access plus 1 month"
ExpiresByType image/svg+xml "access plus 1 month"
ExpiresByType image/webp "access plus 1 month"
ExpiresByType video/mp4 "access plus 1 month"
ExpiresByType video/ogg "access plus 1 month"
ExpiresByType video/webm "access plus 1 month"
# Fonts
ExpiresByType font/eot "access plus 1 month"
ExpiresByType font/opentype "access plus 1 month"
ExpiresByType font/otf "access plus 1 month"
ExpiresByType application/x-font-ttf "access plus 1 month"
ExpiresByType font/ttf "access plus 1 month"
ExpiresByType application/font-woff "access plus 1 month"
ExpiresByType application/x-font-woff "access plus 1 month"
ExpiresByType font/woff "access plus 1 month"
ExpiresByType application/font-woff2 "access plus 1 month"
ExpiresByType font/woff2 "access plus 1 month"
# Other
ExpiresByType text/x-cross-domain-policy "access plus 1 week"
<IfModule mod_headers.c>
Header set X-Content-Type-Options "nosniff"
<IfModule mod_rewrite.c>
RewriteEngine On
RewriteCond %{REQUEST_FILENAME} !-d
RewriteCond %{REQUEST_URI} (.+)/$
RewriteRule ^ %1 [R=301,L]
// add custom content from current '.htaccess' before "# BEGIN SUITECRM RESTRICTIONS"
$haveBegin = false;
if (file_exists($htaccess_file)) {
$fp = fopen($htaccess_file, 'rb');
while ($line = fgets($fp)) {
if (preg_match("/\s*#\s*BEGIN\s*SUITECRM\s*RESTRICTIONS/i",
$line) || preg_match("/\s*#\s*BEGIN\s*SUGARCRM\s*RESTRICTIONS/i", $line)) {
$haveBegin = true;
$contents .= $line;
// add default content
$contents .= $restrict_str . $cache_headers;
// add custom content from current '.htaccess' after "# END SUITECRM RESTRICTIONS"
if ($haveBegin && file_exists($htaccess_file)) {
$skip = true;
$fp = fopen($htaccess_file, 'rb');
while ($line = fgets($fp)) {
if (preg_match("/\s*#\s*END\s*SUITECRM\s*RESTRICTIONS/i",
$line) || preg_match("/\s*#\s*END\s*SUGARCRM\s*RESTRICTIONS/i", $line)) {
$skip = false;
$contents .= PHP_EOL;
if (!$skip) {
$contents .= $line;
$status = file_put_contents($htaccess_file, $contents);
if (!$status) {
echo "<p>{$mod_strings['ERR_PERFORM_HTACCESS_1']}<span class=stop>{$htaccess_file}</span> {$mod_strings['ERR_PERFORM_HTACCESS_2']}</p>\n";
echo "<p>{$mod_strings['ERR_PERFORM_HTACCESS_3']}</p>\n";
echo $restrict_str;
return $status;
* (re)write the web.config file to prevent browser access to the log file
function handleWebConfig()
if (!isset($_SERVER['IIS_UrlRewriteModule'])) {
global $setup_site_log_dir;
global $setup_site_log_file;
global $sugar_config;
// Bug 36968 - Fallback to using $sugar_config values when we are not calling this from the installer
if (empty($setup_site_log_file)) {
$setup_site_log_file = $sugar_config['log_file'];
if (empty($sugar_config['log_file'])) {
$setup_site_log_file = 'suitecrm.log';
if (empty($setup_site_log_dir)) {
$setup_site_log_dir = $sugar_config['log_dir'];
if (empty($sugar_config['log_dir'])) {
$setup_site_log_dir = '.';
$prefix = $setup_site_log_dir.empty($setup_site_log_dir)?'':'/';
$config_array = array(
array('1'=> $prefix.str_replace('.', '\\.', (string) $setup_site_log_file).'\\.*' ,'2'=>'log_file_restricted.html'),
array('1'=> $prefix.'install.log' ,'2'=>'log_file_restricted.html'),
array('1'=> $prefix.'upgradeWizard.log' ,'2'=>'log_file_restricted.html'),
array('1'=> $prefix.'emailman.log' ,'2'=>'log_file_restricted.html'),
array('1'=>'not_imported_.*.txt' ,'2'=>'log_file_restricted.html'),
array('1'=>'XTemplate/(.*)/(.*).php' ,'2'=>'index.php'),
array('1'=>'data/(.*).php' ,'2'=>'index.php'),
array('1'=>'examples/(.*).php' ,'2'=>'index.php'),
array('1'=>'include/(.*).php' ,'2'=>'index.php'),
array('1'=>'include/(.*)/(.*).php' ,'2'=>'index.php'),
array('1'=>'log4php/(.*).php' ,'2'=>'index.php'),
array('1'=>'log4php/(.*)/(.*)' ,'2'=>'index.php'),
array('1'=>'metadata/(.*)/(.*).php' ,'2'=>'index.php'),
array('1'=>'modules/(.*)/(.*).php' ,'2'=>'index.php'),
array('1'=>'soap/(.*).php' ,'2'=>'index.php'),
array('1'=>'emailmandelivery.php' ,'2'=>'index.php'),
array('1'=>'cron.php' ,'2'=>'index.php'),
array('1'=> $sugar_config['upload_dir'].'.*' ,'2'=>'index.php'),
$xmldoc = new XMLWriter();
$xmldoc->setIndentString(' ');
$xmldoc->startDocument('1.0', 'UTF-8');
$config_arrayCount = count($config_array);
for ($i = 0; $i < $config_arrayCount; $i++) {
$xmldoc->writeAttribute('name', "redirect$i");
$xmldoc->writeAttribute('stopProcessing', 'true');
$xmldoc->writeAttribute('url', $config_array[$i]['1']);
$xmldoc->writeAttribute('type', 'Redirect');
$xmldoc->writeAttribute('url', $config_array[$i]['2']);
$xmldoc->writeAttribute('redirectType', 'Found');
$xmldoc->writeAttribute('extension', ".php");
$xmldoc->writeAttribute('cacheControlMode', 'UseMaxAge');
$xmldoc->writeAttribute('cacheControlMaxAge', '30.00:00:00');
* Drop old tables if table exists and told to drop it
function drop_table_install(&$focus)
$db = DBManagerFactory::getInstance();
global $dictionary;
$result = $db->tableExists($focus->table_name);
if ($result) {
$GLOBALS['log']->info("Dropped old ".$focus->table_name." table.");
return 1;
} else {
$GLOBALS['log']->info("Did not need to drop old ".$focus->table_name." table. It doesn't exist.");
return 0;
// Creating new tables if they don't exist.
function create_table_if_not_exist(&$focus)
global $db;
$table_created = false;
// normal code follows
$result = $db->tableExists($focus->table_name);
if ($result) {
$GLOBALS['log']->info("Table ".$focus->table_name." already exists.");
} else {
$GLOBALS['log']->info("Created ".$focus->table_name." table.");
$table_created = true;
return $table_created;
function create_default_users()
global $setup_site_admin_password;
global $setup_site_admin_user_name;
global $create_default_user;
global $sugar_config;
//Create default admin user
$user = BeanFactory::newBean('Users');
$user->id = 1;
$user->new_with_id = true;
$user->last_name = 'Administrator';
$user->user_name = $setup_site_admin_user_name;
$user->title = "Administrator";
$user->status = 'Active';
$user->is_admin = true;
$user->employee_status = 'Active';
$user->user_hash = User::getPasswordHash($setup_site_admin_password);
$GLOBALS['current_user'] = $user;
if ($create_default_user) {
$default_user = BeanFactory::newBean('Users');
$default_user->last_name = $sugar_config['default_user_name'];
$default_user->user_name = $sugar_config['default_user_name'];
$default_user->status = 'Active';
if (isset($sugar_config['default_user_is_admin']) && $sugar_config['default_user_is_admin']) {
$default_user->is_admin = true;
$default_user->user_hash = User::getPasswordHash($sugar_config['default_password']);
function set_admin_password($password)
$db = DBManagerFactory::getInstance();
$user_hash = User::getPasswordHash($password);
$query = "update users set user_hash='$user_hash' where id='1'";
function insert_default_settings()
$db = DBManagerFactory::getInstance();
global $setup_sugar_version;
global $sugar_db_version;
$fromAddress = 'do_not_reply@example.com';
if (isset($_SESSION['smtp_from_addr']) && $_SESSION['smtp_from_addr']) {
$fromAddress = $_SESSION['smtp_from_addr'];
$fromName = 'SuiteCRM';
if (isset($_SESSION['smtp_from_name']) && $_SESSION['smtp_from_name']) {
$fromName = $_SESSION['smtp_from_name'];
$db->query("INSERT INTO config (category, name, value) VALUES ('notify', 'fromaddress', '$fromAddress')");
$db->query("INSERT INTO config (category, name, value) VALUES ('notify', 'fromname', '$fromName')");
$db->query("INSERT INTO config (category, name, value) VALUES ('notify', 'send_by_default', '1')");
$db->query("INSERT INTO config (category, name, value) VALUES ('notify', 'on', '1')");
$db->query("INSERT INTO config (category, name, value) VALUES ('notify', 'send_from_assigning_user', '0')");
/* cn: moved to OutboundEmail class
$db->query("INSERT INTO config (category, name, value) VALUES ('mail', 'smtpserver', 'localhost')");
$db->query("INSERT INTO config (category, name, value) VALUES ('mail', 'smtpport', '25')");
$db->query("INSERT INTO config (category, name, value) VALUES ('mail', 'sendtype', 'smtp')");
$db->query("INSERT INTO config (category, name, value) VALUES ('mail', 'smtpuser', '')");
$db->query("INSERT INTO config (category, name, value) VALUES ('mail', 'smtppass', '')");
$db->query("INSERT INTO config (category, name, value) VALUES ('mail', 'smtpauth_req', '0')");
$db->query("INSERT INTO config (category, name, value) VALUES ('info', 'sugar_version', '" . $sugar_db_version . "')");
$db->query("INSERT INTO config (category, name, value) VALUES ('MySettings', 'tab', '')");
$db->query("INSERT INTO config (category, name, value) VALUES ('portal', 'on', '0')");
//insert default tracker settings
$db->query("INSERT INTO config (category, name, value) VALUES ('tracker', 'Tracker', '1')");
// Returns true if the given file/dir has been made writable (or is already
// writable).
function make_writable($file)
$ret_val = false;
if (is_file($file) || is_dir($file)) {
if (is_writable($file)) {
$ret_val = true;
} else {
$original_fileperms = fileperms($file);
// add user writable permission
$new_fileperms = $original_fileperms | 0x0080;
@sugar_chmod($file, $new_fileperms);
if (is_writable($file)) {
$ret_val = true;
} else {
// add group writable permission
$new_fileperms = $original_fileperms | 0x0010;
@chmod($file, $new_fileperms);
if (is_writable($file)) {
$ret_val = true;
} else {
// add world writable permission
$new_fileperms = $original_fileperms | 0x0002;
@chmod($file, $new_fileperms);
if (is_writable($file)) {
$ret_val = true;
return $ret_val;
function recursive_make_writable($start_file)
$ret_val = make_writable($start_file);
if ($ret_val && is_dir($start_file)) {
// PHP 4 alternative to scandir()
$files = array();
$dh = opendir($start_file);
$filename = readdir($dh);
while (!empty($filename)) {
if ($filename != '.' && $filename != '..' && $filename != '.svn') {
$files[] = $filename;
$filename = readdir($dh);
foreach ($files as $file) {
$ret_val = recursive_make_writable($start_file . '/' . $file);
if (!$ret_val) {
$_SESSION['unwriteable_module_files'][dirname($file)] = dirname($file);
$fnl_ret_val = false;
if (!$ret_val) {
$unwriteable_directory = is_dir($start_file) ? $start_file : dirname((string) $start_file);
if ($unwriteable_directory[0] == '.') {
$unwriteable_directory = substr((string) $unwriteable_directory, 1);
$_SESSION['unwriteable_module_files'][$unwriteable_directory] = $unwriteable_directory;
$_SESSION['unwriteable_module_files']['failed'] = true;
return $ret_val;
function recursive_is_writable($start_file)
$ret_val = is_writable($start_file);
if ($ret_val && is_dir($start_file)) {
// PHP 4 alternative to scandir()
$files = array();
$dh = opendir($start_file);
$filename = readdir($dh);
while (!empty($filename)) {
if ($filename != '.' && $filename != '..' && $filename != '.svn') {
$files[] = $filename;
$filename = readdir($dh);
foreach ($files as $file) {
$ret_val = recursive_is_writable($start_file . '/' . $file);
if (!$ret_val) {
return $ret_val;
// one place for form validation/conversion to boolean
function get_boolean_from_request($field)
if (!isset($_REQUEST[$field])) {
if (($_REQUEST[$field] == 'on') || ($_REQUEST[$field] == 'yes')) {
} else {
function stripslashes_checkstrings($value)
if (is_string($value)) {
return stripslashes($value);
return $value;
function print_debug_array($name, $debug_array)
print("$name vars:\n");
foreach ($debug_array as $key => $value) {
if (stristr((string) $key, "password")) {
$value = "WAS SET";
print(" [$key] => $value\n");
function print_debug_comment()
if (!empty($_REQUEST['debug'])) {
$_SESSION['debug'] = $_REQUEST['debug'];
if (!empty($_SESSION['debug']) && ($_SESSION['debug'] == 'true')) {
print("<!-- debug is on (to turn off, hit any page with 'debug=false' as a URL parameter.\n");
print_debug_array("Session", $_SESSION);
print_debug_array("Request", $_REQUEST);
print_debug_array("Post", $_POST);
print_debug_array("Get", $_GET);
function validate_systemOptions()
global $mod_strings;
$errors = array();
if (!empty($_SESSION['setup_db_type']) && trim($_SESSION['setup_db_type']) != '') {
$db = DBManagerFactory::getTypeInstance($_SESSION['setup_db_type']);
if (!empty($db)) {
$_SESSION['setup_db_manager'] = get_class($db);
return $errors;
$errors[] = "<span class='error'>".$mod_strings['ERR_DB_INVALID']."</span>";
return $errors;
function validate_dbConfig()
return checkDBSettings(true);
function validate_siteConfig($type)
global $mod_strings;
$errors = array();
if ($type=='a') {
if (empty($_SESSION['setup_system_name'])) {
$errors[] = "<span class='error'>".$mod_strings['LBL_REQUIRED_SYSTEM_NAME']."</span>";
if ($_SESSION['setup_site_url'] == '') {
$errors[] = "<span class='error'>".$mod_strings['ERR_URL_BLANK']."</span>";
if ($_SESSION['setup_site_admin_user_name'] == '') {
$errors[] = "<span class='error'>".$mod_strings['ERR_ADMIN_USER_NAME_BLANK']."</span>";
if ($_SESSION['setup_site_admin_password'] == '') {
$errors[] = "<span class='error'>".$mod_strings['ERR_ADMIN_PASS_BLANK']."</span>";
if ($_SESSION['setup_site_admin_password'] != $_SESSION['setup_site_admin_password_retype']) {
$errors[] = "<span class='error'>".$mod_strings['ERR_PASSWORD_MISMATCH']."</span>";
} else {
if (!empty($_SESSION['setup_site_custom_session_path']) && $_SESSION['setup_site_session_path'] == '') {
$errors[] = "<span class='error'>".$mod_strings['ERR_SESSION_PATH']."</span>";
if (!empty($_SESSION['setup_site_custom_session_path']) && $_SESSION['setup_site_session_path'] != '') {
if (is_dir($_SESSION['setup_site_session_path'])) {
if (!is_writable($_SESSION['setup_site_session_path'])) {
$errors[] = "<span class='error'>".$mod_strings['ERR_SESSION_DIRECTORY']."</span>";
} else {
$errors[] = "<span class='error'>".$mod_strings['ERR_SESSION_DIRECTORY_NOT_EXISTS']."</span>";
if (!empty($_SESSION['setup_site_custom_log_dir']) && $_SESSION['setup_site_log_dir'] == '') {
$errors[] = "<span class='error'>".$mod_strings['ERR_LOG_DIRECTORY_NOT_EXISTS']."</span>";
if (!empty($_SESSION['setup_site_custom_log_dir']) && $_SESSION['setup_site_log_dir'] != '') {
if (is_dir($_SESSION['setup_site_log_dir'])) {
if (!is_writable($_SESSION['setup_site_log_dir'])) {
$errors[] = "<span class='error'>".$mod_strings['ERR_LOG_DIRECTORY_NOT_WRITABLE']."</span>";
} else {
$errors[] = "<span class='error'>".$mod_strings['ERR_LOG_DIRECTORY_NOT_EXISTS']."</span>";
if (!empty($_SESSION['setup_site_specify_guid']) && $_SESSION['setup_site_guid'] == '') {
$errors[] = "<span class='error'>".$mod_strings['ERR_SITE_GUID']."</span>";
return $errors;
function pullSilentInstallVarsIntoSession()
global $mod_strings;
global $sugar_config;
if (file_exists('config_si.php')) {
} else {
if (empty($sugar_config_si)) {
$config_subset = array(
'setup_site_url' => isset($sugar_config['site_url']) ? $sugar_config['site_url'] : '',
'setup_db_host_name' => isset($sugar_config['dbconfig']['db_host_name']) ? $sugar_config['dbconfig']['db_host_name'] : '',
'setup_db_host_instance' => isset($sugar_config['dbconfig']['db_host_instance']) ? $sugar_config['dbconfig']['db_host_instance'] : '',
'setup_db_sugarsales_user' => isset($sugar_config['dbconfig']['db_user_name']) ? $sugar_config['dbconfig']['db_user_name'] : '',
'setup_db_sugarsales_password' => isset($sugar_config['dbconfig']['db_password']) ? $sugar_config['dbconfig']['db_password'] : '',
'setup_db_database_name' => isset($sugar_config['dbconfig']['db_name']) ? $sugar_config['dbconfig']['db_name'] : '',
'setup_db_type' => isset($sugar_config['dbconfig']['db_type']) ? $sugar_config['dbconfig']['db_type'] : '',
'setup_db_port_num' => isset($sugar_config['dbconfig']['db_port']) ? $sugar_config['dbconfig']['db_port'] : '',
'setup_db_options' => !empty($sugar_config['dbconfigoptions']) ? $sugar_config['dbconfigoptions'] : array(),
// third array of values derived from above values
$derived = array(
'setup_site_admin_password_retype' => $sugar_config_si['setup_site_admin_password'],
'setup_db_sugarsales_password_retype' => $config_subset['setup_db_sugarsales_password'],
$needles = array('demoData','setup_db_create_database','setup_db_create_sugarsales_user','setup_license_key_users',
'setup_license_key_expire_date','setup_license_key', 'setup_num_lic_oc',
'default_currency_iso4217', 'default_currency_name', 'default_currency_significant_digits',
'default_currency_symbol', 'default_date_format', 'default_time_format', 'default_decimal_seperator',
'default_export_charset', 'default_language', 'default_locale_name_format', 'default_number_grouping_seperator',
'export_delimiter', 'cache_dir', 'setup_db_options',
'setup_fts_type', 'setup_fts_host', 'setup_fts_port', 'setup_fts_index_settings'. 'setup_fts_transport');
copyFromArray($sugar_config_si, $needles, $derived);
$all_config_vars = array_merge($config_subset, $sugar_config_si, $derived);
// bug 16860 tyoung - trim leading and trailing whitespace from license_key
if (isset($all_config_vars['setup_license_key'])) {
$all_config_vars['setup_license_key'] = trim($all_config_vars['setup_license_key']);
foreach ($all_config_vars as $key => $value) {
$_SESSION[$key] = $value;
* given an array it will check to determine if the key exists in the array, if so
* it will addd to the return array
* @param intput_array haystack to check
* @param needles list of needles to search for
* @param output_array the array to add the keys to
function copyFromArray($input_array, $needles, $output_array)
foreach ($needles as $needle) {
if (isset($input_array[$needle])) {
$output_array[$needle] = $input_array[$needle];
* handles language pack uploads - code based off of upload_file->final_move()
* puts it into the cache/upload dir to be handed off to langPackUnpack();
* @param object file UploadFile object
* @return bool true if successful
function langPackFinalMove($file)
global $sugar_config;
$destination = $sugar_config['upload_dir'].$file->stored_file_name;
if (!move_uploaded_file($_FILES[$file->field_name]['tmp_name'], $destination)) {
die("ERROR: can't move_uploaded_file to $destination. You should try making the directory writable by the webserver");
return true;
function getLicenseDisplay($type, $manifest, $zipFile, $next_step, $license_file, $clean_file)
return PackageManagerDisplay::getLicenseDisplay($license_file, 'install.php', $next_step, $zipFile, $type, $manifest, $clean_file);
* creates the remove/delete form for langpack page
* @param string type commit/remove
* @param string manifest path to manifest file
* @param string zipFile path to uploaded zip file
* @param int nextstep current step
* @return string ret <form> for this package
function getPackButton($type, $manifest, $zipFile, $next_step, $uninstallable='Yes', $showButtons=true)
global $mod_strings;
$button = $mod_strings['LBL_LANG_BUTTON_COMMIT'];
if ($type == 'remove') {
$button = $mod_strings['LBL_LANG_BUTTON_REMOVE'];
} elseif ($type == 'uninstall') {
$button = $mod_strings['LBL_LANG_BUTTON_UNINSTALL'];
$disabled = ($uninstallable == 'Yes') ? false : true;
$ret = "<form name='delete{$zipFile}' action='install.php' method='POST'>
<input type='hidden' name='current_step' value='{$next_step}'>
<input type='hidden' name='goto' value='{$mod_strings['LBL_CHECKSYS_RECHECK']}'>
<input type='hidden' name='languagePackAction' value='{$type}'>
<input type='hidden' name='manifest' value='".urlencode($manifest)."'>
<input type='hidden' name='zipFile' value='".urlencode($zipFile)."'>
<input type='hidden' name='install_type' value='custom'>";
if (!$disabled && $showButtons) {
$ret .= "<input type='submit' value='{$button}' class='button'>";
$ret .= "</form>";
return $ret;
* finds all installed languages and returns an array with the names
* @return array langs array of installed languages
function getInstalledLanguages()
$langDir = 'include/language/';
$dh = opendir($langDir);
$langs = array();
while ($file = readdir($dh)) {
if (substr($file, -3) == 'php') {
* searches upgrade dir for lang pack files.
* @return string HTML of available lang packs
function getLangPacks($display_commit = true, $types = array('langpack'), $notice_text = '')
global $mod_strings;
global $next_step;
global $base_upgrade_dir;
if (empty($notice_text)) {
$notice_text = $mod_strings['LBL_LANG_PACK_READY'];
$ret = "<tr><td colspan=7 align=left>{$notice_text}</td></tr>";
//$ret .="<table width='100%' cellpadding='0' cellspacing='0' border='0'>";
$ret .= "<tr>
<td width='20%' ><b>{$mod_strings['LBL_ML_NAME']}</b></td>
<td width='15%' ><b>{$mod_strings['LBL_ML_VERSION']}</b></td>
<td width='15%' ><b>{$mod_strings['LBL_ML_PUBLISHED']}</b></td>
<td width='15%' ><b>{$mod_strings['LBL_ML_UNINSTALLABLE']}</b></td>
<td width='20%' ><b>{$mod_strings['LBL_ML_DESCRIPTION']}</b></td>
<td width='7%' ></td>
<td width='1%' ></td>
<td width='7%' ></td>
$files = array();
// duh, new installs won't have the upgrade folders
if (!is_dir($base_upgrade_dir)) {
$subdirs = array('full', 'langpack', 'module', 'patch', 'theme', 'temp');
foreach ($subdirs as $subdir) {
$files = findAllFiles($base_upgrade_dir, $files);
$hidden_input = '';
foreach ($files as $file) {
if (!preg_match("#.*\.zip\$#", (string) $file)) {
// skip installed lang packs
if (isset($_SESSION['INSTALLED_LANG_PACKS']) && in_array($file, $_SESSION['INSTALLED_LANG_PACKS'])) {
// handle manifest.php
$target_manifest = remove_file_extension($file) . '-manifest.php';
$license_file = remove_file_extension($file) . '-license.txt';
if (!empty($types)) {
if (!in_array(strtolower($manifest['type']), $types)) {
$md5_matches = array();
if ($manifest['type'] == 'module') {
$uh = new UpgradeHistory();
$upgrade_content = clean_path($file);
$the_base = basename((string) $upgrade_content);
$the_md5 = md5_file($upgrade_content);
$md5_matches = $uh->findByMd5($the_md5);
if ($manifest['type']!= 'module' || 0 == (is_countable($md5_matches) ? count($md5_matches) : 0)) {
$name = empty($manifest['name']) ? $file : $manifest['name'];
$version = empty($manifest['version']) ? '' : $manifest['version'];
$published_date = empty($manifest['published_date']) ? '' : $manifest['published_date'];
$icon = '';
$description = empty($manifest['description']) ? 'None' : $manifest['description'];
$uninstallable = empty($manifest['is_uninstallable']) ? 'No' : 'Yes';
$manifest_type = $manifest['type'];
$commitPackage = getPackButton('commit', $target_manifest, $file, $next_step);
$deletePackage = getPackButton('remove', $target_manifest, $file, $next_step);
//$ret .="<table width='100%' cellpadding='0' cellspacing='0' border='0'>";
$ret .= "<tr>";
$ret .= "<td width='20%' >".$name."</td>";
$ret .= "<td width='15%' >".$version."</td>";
$ret .= "<td width='15%' >".$published_date."</td>";
$ret .= "<td width='15%' >".$uninstallable."</td>";
$ret .= "<td width='20%' >".$description."</td>";
if ($display_commit) {
$ret .= "<td width='7%'>{$commitPackage}</td>";
$ret .= "<td width='1%'></td>";
$ret .= "<td width='7%'>{$deletePackage}</td>";
$ret .= "</td></tr>";
$clean_field_name = "accept_lic_".str_replace('.', '_', urlencode(basename((string) $file)));
if (is_file($license_file)) {
$ret .= "<tr><td colspan=6>";
$ret .= getLicenseDisplay('commit', $target_manifest, $file, $next_step, $license_file, $clean_field_name);
$ret .= "</td></tr>";
$hidden_input .= "<input type='hidden' name='$clean_field_name' id='$clean_field_name' value='no'>";
} else {
$hidden_input .= "<input type='hidden' name='$clean_field_name' id='$clean_field_name' value='yes'>";
$_SESSION['hidden_input'] = $hidden_input;
if ((is_countable($files) ? count($files) : 0) > 0) {
$ret .= "</tr><td colspan=7>";
$ret .= "<form name='commit' action='install.php' method='POST'>
<input type='hidden' name='current_step' value='{$next_step}'>
<input type='hidden' name='goto' value='Re-check'>
<input type='hidden' name='languagePackAction' value='commit'>
<input type='hidden' name='install_type' value='custom'>
$ret .= "</td></tr>";
} else {
$ret .= "</tr><td colspan=7><i>{$mod_strings['LBL_LANG_NO_PACKS']}</i></td></tr>";
return $ret;
if (!function_exists('extractFile')) {
function extractFile($zip_file, $file_in_zip, $base_tmp_upgrade_dir)
$my_zip_dir = mk_temp_dir($base_tmp_upgrade_dir);
unzip_file($zip_file, $file_in_zip, $my_zip_dir);
if (!function_exists('extractManifest')) {
function extractManifest($zip_file, $base_tmp_upgrade_dir)
return(extractFile($zip_file, "manifest.php", $base_tmp_upgrade_dir));
if (!function_exists('unlinkTempFiles')) {
function unlinkTempFiles($manifest='', $zipFile='')
global $sugar_config;
if (!empty($manifest)) {
if (!empty($zipFile)) {
$tmpZipFile = substr((string) $zipFile, strpos((string) $zipFile, 'langpack/') + 9, strlen((string) $zipFile));
function langPackUnpack($unpack_type, $full_file)
$license_file = null;
global $sugar_config;
global $base_upgrade_dir;
global $base_tmp_upgrade_dir;
$manifest = array();
if (!empty($full_file)) {
$base_filename = pathinfo(urldecode($full_file), PATHINFO_FILENAME);
} else {
return "Empty filename supplied";
$manifest_file = extractManifest($full_file, $base_tmp_upgrade_dir);
if ($unpack_type == 'module') {
$license_file = extractFile($full_file, 'LICENSE.txt', $base_tmp_upgrade_dir);
if (is_file($manifest_file)) {
if ($unpack_type == 'module' && is_file($license_file)) {
copy($license_file, $base_upgrade_dir.'/'.$unpack_type.'/'.$base_filename."-license.txt");
copy($manifest_file, $base_upgrade_dir.'/'.$unpack_type.'/'.$base_filename."-manifest.php");
$upgrade_zip_type = $manifest['type'];
$target_path = "$base_upgrade_dir/$upgrade_zip_type/$base_filename";
$target_manifest = $target_path . "-manifest.php";
if (isset($manifest['icon']) && $manifest['icon'] != "") {
$icon_location = extractFile($full_file, $manifest['icon'], $base_tmp_upgrade_dir);
$path_parts = pathinfo((string) $icon_location);
copy($icon_location, $target_path . "-icon." . $path_parts['extension']);
// move file from uploads to cache
// FIXME: where should it be?
if (copy($full_file, $target_path.".zip")) {
copy($manifest_file, $target_manifest);
unlink($full_file); // remove tempFile
return "The file $base_filename has been uploaded.<br>\n";
} else {
unlinkTempFiles($manifest_file, $full_file);
return "There was an error uploading the file, please try again!<br>\n";
} else {
die("The zip file is missing a manifest.php file. Cannot proceed.");
unlinkTempFiles($manifest_file, '');
if (!function_exists('validate_manifest')) {
function validate_manifest($manifest)
// takes a manifest.php manifest array and validates contents
global $subdirs;
global $sugar_version;
global $sugar_flavor;
global $mod_strings;
if (!isset($manifest['type'])) {
$type = $manifest['type'];
if (getInstallType("/$type/") == "") {
die($mod_strings['ERROR_PACKAGE_TYPE']. ": '" . $type . "'.");
return true; // making this a bit more relaxed since we updated the language extraction and merge capabilities
if (!function_exists('getInstallType')) {
function getInstallType($type_string)
// detect file type
$subdirs = array('full', 'langpack', 'module', 'patch', 'theme', 'temp');
foreach ($subdirs as $subdir) {
if (preg_match("#/$subdir/#", (string) $type_string)) {
// return empty if no match
//mysqli connector has a separate parameter for port.. We need to separate it out from the host name
function getHostPortFromString($hostname='')
$pos=strpos((string) $hostname, ':');
if ($pos === false) {
//no need to process as string is empty or does not contain ':' delimiter
return '';
$hostArr = explode(':', $hostname);
return $hostArr;
function getLicenseContents($filename)
$license_file = '';
if (file_exists($filename) && filesize($filename) >0) {
$license_file = trim(file_get_contents($filename));
return $license_file;
$seed = array(
'qa', 'dev', 'beans',
'info', 'sales', 'support',
'kid', 'the', 'section',
'sugar', 'hr', 'im',
'kid', 'vegan', 'phone',
$tlds = array(
".com", ".org", ".net", ".tv", ".cn", ".co.jp", ".us",
".edu", ".tw", ".de", ".it", ".co.uk", ".info", ".biz",
* creates a random, DNS-clean webaddress
function createWebAddress()
global $seed;
global $tlds;
$one = $seed[mt_rand(0, count($seed)-1)];
$two = $seed[mt_rand(0, count($seed)-1)];
$tld = $tlds[mt_rand(0, count($tlds)-1)];
return "www.{$one}{$two}{$tld}";
* creates a random email address
* @return string
function createEmailAddress()
$part = [];
global $seed;
global $tlds;
$part[0] = $seed[mt_rand(0, count($seed)-1)];
$part[1] = $seed[mt_rand(0, count($seed)-1)];
$part[2] = $seed[mt_rand(0, count($seed)-1)];
$tld = $tlds[mt_rand(0, count($tlds)-1)];
$len = mt_rand(1, 3);
$ret = '';
for ($i=0; $i<$len; $i++) {
$ret .= (empty($ret)) ? '' : '.';
$ret .= $part[$i];
if ($len == 1) {
$ret .= mt_rand(10, 99);
return "{$ret}@example{$tld}";
function add_digits($quantity, &$string, $min = 0, $max = 9)
for ($i=0; $i < $quantity; $i++) {
$string .= mt_rand($min, $max);
function create_phone_number()
$phone = "(";
add_digits(3, $phone);
$phone .= ") ";
add_digits(3, $phone);
$phone .= "-";
add_digits(4, $phone);
return $phone;
function create_date($year=null, $mnth=null, $day=null)
global $timedate;
$now = $timedate->getNow();
if ($day==null) {
$day=$now->day+mt_rand(0, 365);
return $timedate->asDbDate($now->get_day_begin($day, $mnth, $year));
function create_current_date_time()
global $timedate;
return $timedate->nowDb();
function create_time($hr=null, $min=null, $sec=null)
global $timedate;
$date = TimeDate::getInstance()->fromTimestamp(0);
if ($hr==null) {
$hr=mt_rand(6, 19);
if ($min==null) {
$min=(mt_rand(0, 3)*15);
if ($sec==null) {
return $timedate->asDbTime($date->setDate(2007, 10, 7)->setTime($hr, $min, $sec));
function create_past_date()
global $timedate;
$now = $timedate->getNow(true);
$day=$now->day-mt_rand(1, 365);
return $timedate->asDbDate($now->get_day_begin($day));
* This method will look for a file modules_post_install.php in the root directory and based on the
* contents of this file, it will silently install any modules as specified in this array.
function post_install_modules()
if (is_file('modules_post_install.php')) {
global $current_user, $mod_strings;
$current_user = BeanFactory::newBean('Users');
$current_user->is_admin = '1';
//we now have the $modules_to_install array in memory
$pm = new PackageManager();
$old_mod_strings = $mod_strings;
foreach ($modules_to_install as $module_to_install) {
if (is_file($module_to_install)) {
$pm->performSetup($module_to_install, 'module', false);
$file_to_install = sugar_cached('upload/upgrades/module/').basename((string) $module_to_install);
$_REQUEST['install_file'] = $file_to_install;
$mod_strings = $old_mod_strings;
function get_help_button_url()
$help_url = 'https://docs.suitecrm.com/user/';
return $help_url;
function create_db_user_creds($numChars=10)
$numChars = 7; // number of chars in the password
//chars to select from
$charBKT = "abcdefghijklmnpqrstuvwxyz123456789ABCDEFGHIJKLMNPQRSTUVWXYZ";
// seed the random number generator
for ($i=0;$i<$numChars;$i++) { // loop and create password
$password = $password . substr($charBKT, mt_rand() % strlen($charBKT), 1);
return $password;
function addDefaultRoles($defaultRoles = array())
$db = DBManagerFactory::getInstance();
foreach ($defaultRoles as $roleName=>$role) {
$ACLField = new ACLField();
$role1= BeanFactory::newBean('ACLRoles');
$role1->name = $roleName;
$role1->description = $roleName." Role";
foreach ($role as $category=>$actions) {
foreach ($actions as $name=>$access_override) {
if ($name=='fields') {
foreach ($access_override as $field_id=>$access) {
$ACLField->setAccessControl($category, $role1_id, $field_id, $access);
} else {
$queryACL="SELECT id FROM acl_actions where category='$category' and name='$name'";
$result = $db->query($queryACL);
if (isset($actionId['id']) && !empty($actionId['id'])) {
$role1->setAction($role1_id, $actionId['id'], $access_override);
* Fully enable SugarFeeds, enabling the user feed and all available modules that have SugarFeed data.
function enableSugarFeeds()
$admin = BeanFactory::newBean('Administration');
$admin->saveSetting('sugarfeed', 'enabled', '1');
foreach (SugarFeed::getAllFeedModules() as $module) {
check_logic_hook_file('Users', 'after_login', array(1, 'SugarFeed old feed entry remover', 'modules/SugarFeed/SugarFeedFlush.php', 'SugarFeedFlush', 'flushStaleEntries'));
function create_writable_dir($dirname)
if ((is_dir($dirname)) || @sugar_mkdir($dirname, 0755)) {
$ok = make_writable($dirname);
if (empty($ok)) {
installLog("ERROR: Cannot create writable dir $dirname");
* Enable the InsideView connector for the four default modules.
function enableInsideViewConnector()
$mapping = [];
// Load up the existing mapping and hand it to the InsideView connector to have it setup the correct logic hooks
$mapFile = 'modules/Connectors/connectors/sources/ext/rest/insideview/mapping.php';
if (file_exists('custom/'.$mapFile)) {
} else {
$source = new ext_rest_insideview();
// $mapping is brought in from the mapping.php file above