Merge pull request #56 from ggoffy/master

update to php8

Author: ggoffy

SECURITY.md

@@ -0,0 +1,37 @@
+# XOOPS Security Policy
+
+XOOPS takes the security of our software products and services seriously, which includes all source code repositories managed through our GitHub organizations.
+This documentation provides guidelines and standard procedures regarding maintaining security with our software.
+
+## Supported Versions
+
+By default, only the latest version built from branch `master` (or `main`) is supported with security updates.
+
+
+## Reporting a Vulnerability
+
+**Please do not report security vulnerabilities through public GitHub issues.**
+
+Instead, please report (suspected) security vulnerabilities to
+**[security@xoops.org](mailto:security@xoops.org)**. You will receive a response from
+us within 48 hours. If the issue is confirmed, we will release a patch as soon
+as possible depending on complexity, and you'll receive a credit in our changelog.
+
+Please use a descriptive subject line for your report email. After the initial
+reply to your report, the security team will endeavor to keep you informed of
+the progress being made towards a fix and announcement.
+
+In addition, please include the following information along with your report:
+
+* Your name and affiliation (if any).
+* A description of the technical details of the vulnerabilities. It is very
+  important to let us know how we can reproduce your findings.
+* Type of issue (e.g. buffer overflow, SQL injection, cross-site scripting, etc.)
+* Full paths of source file(s) related to the manifestation of the issue
+* The location of the affected source code (tag/branch/commit or direct URL)
+* Any special configuration required to reproduce the issue
+* Step-by-step instructions to reproduce the issue
+* Proof-of-concept or exploit code (if possible)
+* Impact of the issue, including how an attacker might exploit the issue
+
+This information will help us triage your report more quickly.

admin/broken.php

@@ -0,0 +1,64 @@
+<?php
+/*
+ You may not change or alter any portion of this comment or credits
+ of supporting developers from this source code or any supporting source code
+ which is considered copyrighted (c) material of the original comment or credit authors.
+
+ This program is distributed in the hope that it will be useful,
+ but WITHOUT ANY WARRANTY; without even the implied warranty of
+ MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.
+*/
+
+/**
+ * wgGitHub module for xoops
+ *
+ * @copyright      2020 XOOPS Project (https://xooops.org)
+ * @license        GPL 2.0 or later
+ * @package        wggithub
+ * @since          1.0
+ * @min_xoops      2.5.10
+ * @author         TDM XOOPS - Email:<goffy@wedega.com> - Website:<https://wedega.com>
+ */
+
+use Xmf\Request;
+use XoopsModules\Wggithub;
+use XoopsModules\Wggithub\Constants;
+
+require __DIR__ . '/header.php';
+
+// Define Stylesheet
+$GLOBALS['xoTheme']->addStylesheet($style, null);
+$templateMain = 'wggithub_admin_broken.tpl';
+$GLOBALS['xoopsTpl']->assign('navigation', $adminObject->displayNavigation('broken.php'));
+
+// Check table repositories
+$start = Request::getInt('startRepositories', 0);
+$limit = Request::getInt('limitRepositories', $helper->getConfig('adminpager'));
+$crRepositories = new \CriteriaCompo();
+$crRepositories->add(new \Criteria('repo_status', Constants::STATUS_BROKEN));
+$repositoriesCount = $repositoriesHandler->getCount($crRepositories);
+$GLOBALS['xoopsTpl']->assign('repositories_count', $repositoriesCount);
+$GLOBALS['xoopsTpl']->assign('repositories_result', \sprintf(\_AM_WGGITHUB_BROKEN_RESULT, 'Repositories'));
+$crRepositories->setStart($start);
+$crRepositories->setLimit($limit);
+if ($repositoriesCount > 0) {
+    $repositoriesAll = $repositoriesHandler->getAll($crRepositories);
+    foreach (\array_keys($repositoriesAll) as $i) {
+        $repository['table'] = 'Repositories';
+        $repository['key'] = 'repo_id';
+        $repository['keyval'] = $repositoriesAll[$i]->getVar('repo_id');
+        $repository['main'] = $repositoriesAll[$i]->getVar('repo_name');
+        $GLOBALS['xoopsTpl']->append('repositories_list', $repository);
+    }
+    // Display Navigation
+    if ($repositoriesCount > $limit) {
+        include_once \XOOPS_ROOT_PATH . '/class/pagenav.php';
+        $pagenav = new \XoopsPageNav($repositoriesCount, $limit, $start, 'startRepositories', 'op=list&limitRepositories=' . $limit);
+        $GLOBALS['xoopsTpl']->assign('pagenav', $pagenav->renderNav(4));
+    }
+} else {
+    $GLOBALS['xoopsTpl']->assign('nodataRepositories', \sprintf(\_AM_WGGITHUB_BROKEN_NODATA, 'Repositories'));
+}
+unset($crRepositories);
+
+require __DIR__ . '/footer.php';

admin/directories.php

@@ -41,18 +41,18 @@
     default:
         // Define Stylesheet
         $GLOBALS['xoTheme']->addStylesheet($style, null);
-        $GLOBALS['xoTheme']->addScript(WGGITHUB_URL . '/assets/js/jquery-ui.js');
-        $GLOBALS['xoTheme']->addScript(WGGITHUB_URL . '/assets/js/sortable.js');
+        $GLOBALS['xoTheme']->addScript(\WGGITHUB_URL . '/assets/js/jquery-ui.js');
+        $GLOBALS['xoTheme']->addScript(\WGGITHUB_URL . '/assets/js/sortable.js');
         $templateMain = 'wggithub_admin_directories.tpl';
         $GLOBALS['xoopsTpl']->assign('navigation', $adminObject->displayNavigation('directories.php'));
         $adminObject->addItemButton(\_AM_WGGITHUB_ADD_DIRECTORY, 'directories.php?op=new', 'add');
         $GLOBALS['xoopsTpl']->assign('buttons', $adminObject->displayButton('left'));
         $directoriesCount = $directoriesHandler->getCountDirectories();
         $directoriesAll = $directoriesHandler->getAllDirectories($start, $limit);
         $GLOBALS['xoopsTpl']->assign('directories_count', $directoriesCount);
-        $GLOBALS['xoopsTpl']->assign('wggithub_url', WGGITHUB_URL);
-        $GLOBALS['xoopsTpl']->assign('wggithub_upload_url', WGGITHUB_UPLOAD_URL);
-        $GLOBALS['xoopsTpl']->assign('wggithub_icons_url_16', WGGITHUB_ICONS_URL . '/16');
+        $GLOBALS['xoopsTpl']->assign('wggithub_url', \WGGITHUB_URL);
+        $GLOBALS['xoopsTpl']->assign('wggithub_upload_url', \WGGITHUB_UPLOAD_URL);
+        $GLOBALS['xoopsTpl']->assign('wggithub_icons_url_16', \WGGITHUB_ICONS_URL . '/16');
         // Table view directories
         if ($directoriesCount > 0) {
             foreach (\array_keys($directoriesAll) as $i) {
@@ -133,7 +133,7 @@
             $errors = [];
             //delete all related data
             $crRepositories = new \CriteriaCompo();
-            $crRepositories->add(new Criteria('repo_user', $dirName));
+            $crRepositories->add(new \Criteria('repo_user', $dirName));
             $repositoriesAll = $repositoriesHandler->getAll($crRepositories);
             foreach (\array_keys($repositoriesAll) as $i) {
                 $repoId = $repositoriesAll[$i]->getVar('repo_id');

admin/header.php

@@ -26,8 +26,8 @@
 $sysPathIcon16   = '../' . $GLOBALS['xoopsModule']->getInfo('sysicons16');
 $sysPathIcon32   = '../' . $GLOBALS['xoopsModule']->getInfo('sysicons32');
 $pathModuleAdmin = $GLOBALS['xoopsModule']->getInfo('dirmoduleadmin');
-$modPathIcon16   = WGGITHUB_URL . '/' . $GLOBALS['xoopsModule']->getInfo('modicons16') . '/';
-$modPathIcon32   = WGGITHUB_URL . '/' . $GLOBALS['xoopsModule']->getInfo('modicons32') . '/';
+$modPathIcon16   = \WGGITHUB_URL . '/' . $GLOBALS['xoopsModule']->getInfo('modicons16') . '/';
+$modPathIcon32   = \WGGITHUB_URL . '/' . $GLOBALS['xoopsModule']->getInfo('modicons32') . '/';
 
 // Get instance of module
 $helper = \XoopsModules\Wggithub\Helper::getInstance();
@@ -64,4 +64,4 @@
 $GLOBALS['xoopsTpl']->assign('modPathIcon32', $modPathIcon32);
 
 $adminObject = \Xmf\Module\Admin::getInstance();
-$style = WGGITHUB_URL . '/assets/css/admin/style.css';
+$style = \WGGITHUB_URL . '/assets/css/admin/style.css';

admin/index.php

@@ -62,7 +62,7 @@
 // Uploads Folders Created
 foreach (\array_keys($folder) as $i) {
     $adminObject->addConfigBoxLine($folder[$i], 'folder');
-    $adminObject->addConfigBoxLine(array($folder[$i], '777'), 'chmod');
+    $adminObject->addConfigBoxLine([$folder[$i], '777'], 'chmod');
 }
 
 // Render Index

admin/logs.php

@@ -46,8 +46,8 @@
         $logsCount = $logsHandler->getCountLogs();
         $logsAll = $logsHandler->getAllLogs($start, $limit);
         $GLOBALS['xoopsTpl']->assign('logs_count', $logsCount);
-        $GLOBALS['xoopsTpl']->assign('wggithub_url', WGGITHUB_URL);
-        $GLOBALS['xoopsTpl']->assign('wggithub_upload_url', WGGITHUB_UPLOAD_URL);
+        $GLOBALS['xoopsTpl']->assign('wggithub_url', \WGGITHUB_URL);
+        $GLOBALS['xoopsTpl']->assign('wggithub_upload_url', \WGGITHUB_UPLOAD_URL);
         // Table view logs
         if ($logsCount > 0) {
             foreach (\array_keys($logsAll) as $i) {

admin/menu.php

@@ -22,7 +22,7 @@
 
 $dirname       = \basename(\dirname(__DIR__));
 $moduleHandler = \xoops_getHandler('module');
-$xoopsModule   = XoopsModule::getByDirname($dirname);
+$xoopsModule   = \XoopsModule::getByDirname($dirname);
 $moduleInfo    = $moduleHandler->get($xoopsModule->getVar('mid'));
 $sysPathIcon32 = $moduleInfo->getInfo('sysicons32');
 

admin/readmes.php

@@ -50,9 +50,9 @@
             $filterField = Request::getString('filter_field', '');
             $filterValue = Request::getString('filter_value', 'none');
             if (Constants::FILTER_OPERAND_EQUAL == $operand) {
-                $crRepositories->add(new Criteria($filterField, $filterValue));
+                $crRepositories->add(new \Criteria($filterField, $filterValue));
             } elseif (Constants::FILTER_OPERAND_LIKE == $operand) {
-                $crRepositories->add(new Criteria($filterField, "%$filterValue%", 'LIKE'));
+                $crRepositories->add(new \Criteria($filterField, "%$filterValue%", 'LIKE'));
             }
             $repositoriesCount = $repositoriesHandler->getCount($crRepositories);
             $in = [];
@@ -63,15 +63,15 @@
                     $in[] = $i;
                 }
             }
-            $crReadmes->add(new Criteria('rm_repoid', '(' . \implode(',', $in) . ')', 'IN'));
+            $crReadmes->add(new \Criteria('rm_repoid', '(' . \implode(',', $in) . ')', 'IN'));
         }
         $crReadmes->setStart($start);
         $crReadmes->setLimit($limit);
         $readmesCount = $readmesHandler->getCount($crReadmes);
         $readmesAll = $readmesHandler->getAll($crReadmes);
         $GLOBALS['xoopsTpl']->assign('readmes_count', $readmesCount);
-        $GLOBALS['xoopsTpl']->assign('wggithub_url', WGGITHUB_URL);
-        $GLOBALS['xoopsTpl']->assign('wggithub_upload_url', WGGITHUB_UPLOAD_URL);
+        $GLOBALS['xoopsTpl']->assign('wggithub_url', \WGGITHUB_URL);
+        $GLOBALS['xoopsTpl']->assign('wggithub_upload_url', \WGGITHUB_UPLOAD_URL);
         // Table view readmes
         if ($readmesCount > 0) {
             foreach (\array_keys($readmesAll) as $i) {

admin/releases.php

@@ -49,18 +49,18 @@
             $filterField = Request::getString('filter_field', '');
             $filterValue = Request::getString('filter_value', 'none');
             if (Constants::FILTER_OPERAND_EQUAL == $operand) {
-                $crReleases->add(new Criteria($filterField, $filterValue));
+                $crReleases->add(new \Criteria($filterField, $filterValue));
             } elseif (Constants::FILTER_OPERAND_LIKE == $operand) {
-                $crReleases->add(new Criteria($filterField, "%$filterValue%", 'LIKE'));
+                $crReleases->add(new \Criteria($filterField, "%$filterValue%", 'LIKE'));
             }
         }
         $crReleases->setStart($start);
         $crReleases->setLimit($limit);
         $releasesCount = $releasesHandler->getCount($crReleases);
         $releasesAll = $releasesHandler->getAll($crReleases);
         $GLOBALS['xoopsTpl']->assign('releases_count', $releasesCount);
-        $GLOBALS['xoopsTpl']->assign('wggithub_url', WGGITHUB_URL);
-        $GLOBALS['xoopsTpl']->assign('wggithub_upload_url', WGGITHUB_UPLOAD_URL);
+        $GLOBALS['xoopsTpl']->assign('wggithub_url', \WGGITHUB_URL);
+        $GLOBALS['xoopsTpl']->assign('wggithub_upload_url', \WGGITHUB_UPLOAD_URL);
         // Table view releases
         if ($releasesCount > 0) {
             foreach (\array_keys($releasesAll) as $i) {

admin/repositories.php

@@ -45,7 +45,7 @@
 
         $autoApproved = (int)$helper->getConfig('autoapproved');
         $GLOBALS['xoopsTpl']->assign('autoApproved', !$autoApproved);
-        $GLOBALS['xoopsTpl']->assign('wggithub_icons_url_16', WGGITHUB_ICONS_URL . '/16');
+        $GLOBALS['xoopsTpl']->assign('wggithub_icons_url_16', \WGGITHUB_ICONS_URL . '/16');
 
         $filterValue = '';
         $filterStatus = 0;
@@ -56,23 +56,23 @@
             $filterValue = Request::getString('filter_value', '');
             if ('' !== $filterValue) {
                 if (Constants::FILTER_OPERAND_EQUAL == $operand) {
-                    $crRepositories->add(new Criteria($filterField, $filterValue));
+                    $crRepositories->add(new \Criteria($filterField, $filterValue));
                 } elseif (Constants::FILTER_OPERAND_LIKE == $operand) {
-                    $crRepositories->add(new Criteria($filterField, "%$filterValue%", 'LIKE'));
+                    $crRepositories->add(new \Criteria($filterField, "%$filterValue%", 'LIKE'));
                 }
             }
             $filterStatus = Request::getInt('filter_status');
             if ($filterStatus > 0) {
-                $crRepositories->add(new Criteria('repo_status', $filterStatus));
+                $crRepositories->add(new \Criteria('repo_status', $filterStatus));
             }
         }
         $crRepositories->setStart($start);
         $crRepositories->setLimit($limit);
         $repositoriesCount = $repositoriesHandler->getCount($crRepositories);
         $repositoriesAll = $repositoriesHandler->getAll($crRepositories);
         $GLOBALS['xoopsTpl']->assign('repositories_count', $repositoriesCount);
-        $GLOBALS['xoopsTpl']->assign('wggithub_url', WGGITHUB_URL);
-        $GLOBALS['xoopsTpl']->assign('wggithub_upload_url', WGGITHUB_UPLOAD_URL);
+        $GLOBALS['xoopsTpl']->assign('wggithub_url', \WGGITHUB_URL);
+        $GLOBALS['xoopsTpl']->assign('wggithub_upload_url', \WGGITHUB_UPLOAD_URL);
         // Table view repositories
         if ($repositoriesCount > 0) {
             foreach (\array_keys($repositoriesAll) as $i) {