PhpWiki

This looks pretty nice.  I have always been reticent to switch from php files to 
.ini files.  But some quick testing using unix "time" on a single P2-400 shows 
only a .011 second "real" difference between parsing the phpwiki .ini and doing 
nothing.  This should be perfectly acceptable, especially since all of the prior 
"if (!defined())" routines had a cost too -- which is not accounted for in the 
above test.  If others think this is a Good ThingTM, I'll add this to CVS.

1) Do we want to wait until after 1.3.8, so that 1.3.8 testing can be for 
Reini's new user model?  I'm not sure this is necessary since it is a pretty 
straight forward change.

2) Instead of config.ini, the CVS file should be config-dist.ini.  Then the user 
can change to config.ini or use config/ tools -- this will prevent a new version 
of PhpWiki from overwriting a config file (as happens on the SF.net site 
whenever index.php is modified).

3) My config/ stuff needs some serious work.  PEAR_Config has some tools to make 
this easier.  And with Matthew's one dimensional .ini file it will be 
*signficiantly* easier.

The planned config was to have:

Values.php -- default values and bounds of each config setting *Authoritative*
Tools.php -- default classes to be used by WWW or CLI interface to create config 
files
config-dist.php -- generated file with default values.
config-user.php -- generated file with differences from default.

Using the .ini makes things a bit easier:
Values.php -- same as above
Tools.php -- same as above
config-dist.ini -- same as above
config.ini -- config settings to use

Not much will change but the model is cleaner and solves a couple of the 
headaches I had when starting the config/ section.

---

On a personal note, there has been some significant reorganization for me at 
work -- leading to ~80% of my job responsibilities going away.  I'm being 
refocussed on tool generation.  This means I should have significantly more time 
to devote to PhpWiki dev.

jbw

Matthew Palmer wrote:

> I've put together a first revision of the IniConfig system for configuring
> PHPWiki pretty much entirely through an INI file (config.ini).  This negates
> the need to edit *any* PHP code at all, and simplifies the user experience
> by not requiring the user to wade through any "if (!defined) define()" type
> statements.  The syntax is also standardised now, everything is defined
> through ALL_UPPERCASE_WITH_UNDERSCORES config variables, which is then
> translated through the IniConfig() function into the defines and variables
> used by PHPWiki internally.
> 
> I've tested it as working properly on the latest CVS as of about 4 hours
> ago.  A backport to 1.3.7 might be in the cards, but I figure it's probably
> best if I stick to breaking one branch at a time.  <grin>
> 
> Of course, existing config files need to be rewritten, so it might not make
> sense to release it with 1.3.8, but I'd appreciate it if people could have a
> good old fashioned test and report problems.  I *want* this into PHPWiki -
> it makes programmatic editing of config files sooooo much easier because a
> common regular expression can be used to find and edit every config item. 
> The configurator will be easier to keep maintained.
> 
> The gzipped patch is attached.
> 
> - Matt

Matthew,

Some special characters are not passed via the parse_ini_file function.  See:

http://us4.php.net/manual/en/function.parse-ini-file.php

The only place this should be an issue is the DBAUTH_AUTH SQL querries.

jbw

Matthew Palmer wrote:

> I've put together a first revision of the IniConfig system for configuring
> PHPWiki pretty much entirely through an INI file (config.ini).  This negates
> the need to edit *any* PHP code at all, and simplifies the user experience
> by not requiring the user to wade through any "if (!defined) define()" type
> statements.  The syntax is also standardised now, everything is defined
> through ALL_UPPERCASE_WITH_UNDERSCORES config variables, which is then
> translated through the IniConfig() function into the defines and variables
> used by PHPWiki internally.
> 
> I've tested it as working properly on the latest CVS as of about 4 hours
> ago.  A backport to 1.3.7 might be in the cards, but I figure it's probably
> best if I stick to breaking one branch at a time.  <grin>
> 
> Of course, existing config files need to be rewritten, so it might not make
> sense to release it with 1.3.8, but I'd appreciate it if people could have a
> good old fashioned test and report problems.  I *want* this into PHPWiki -
> it makes programmatic editing of config files sooooo much easier because a
> common regular expression can be used to find and edit every config item. 
> The configurator will be easier to keep maintained.
> 
> The gzipped patch is attached.
> 
> - Matt

I've done some testing with PEAR_Config and the 'inicommented' method seems to 
work just fine with quotes (they do need to be escaped), so I'll put some effor 
into moving this forward.

But I'll limit my effort to config/ until after 1.3.8 so as to not hold up this 
already late revision.

jbw


Joby Walker wrote:

> Matthew,
> 
> Some special characters are not passed via the parse_ini_file function.  
> See:
> 
> http://us4.php.net/manual/en/function.parse-ini-file.php
> 
> The only place this should be an issue is the DBAUTH_AUTH SQL querries.
> 
> jbw
> 
> Matthew Palmer wrote:
> 
>> I've put together a first revision of the IniConfig system for 
>> configuring
>> PHPWiki pretty much entirely through an INI file (config.ini).  This 
>> negates
>> the need to edit *any* PHP code at all, and simplifies the user 
>> experience
>> by not requiring the user to wade through any "if (!defined) define()" 
>> type
>> statements.  The syntax is also standardised now, everything is defined
>> through ALL_UPPERCASE_WITH_UNDERSCORES config variables, which is then
>> translated through the IniConfig() function into the defines and 
>> variables
>> used by PHPWiki internally.
>>
>> I've tested it as working properly on the latest CVS as of about 4 hours
>> ago.  A backport to 1.3.7 might be in the cards, but I figure it's 
>> probably
>> best if I stick to breaking one branch at a time.  <grin>
>>
>> Of course, existing config files need to be rewritten, so it might not 
>> make
>> sense to release it with 1.3.8, but I'd appreciate it if people could 
>> have a
>> good old fashioned test and report problems.  I *want* this into 
>> PHPWiki -
>> it makes programmatic editing of config files sooooo much easier 
>> because a
>> common regular expression can be used to find and edit every config 
>> item. The configurator will be easier to keep maintained.
>>
>> The gzipped patch is attached.
>>
>> - Matt
> 
> 
> 
> -------------------------------------------------------
> This SF.Net email is sponsored by: IBM Linux Tutorials
> Free Linux tutorial presented by Daniel Robbins, President and CEO of
> GenToo technologies. Learn everything from fundamentals to system
> administration.http://ads.osdn.com/?ad_id=1470&alloc_id=3638&op=click
> _______________________________________________
> Phpwiki-talk mailing list
> Phpwiki-talk@...
> https://lists.sourceforge.net/lists/listinfo/phpwiki-talk

On Mon, Mar 22, 2004 at 09:53:49AM -0800, Joby Walker wrote:
> Some special characters are not passed via the parse_ini_file function.  
> See:
> 
> http://us4.php.net/manual/en/function.parse-ini-file.php

Double quotes?  Hmm, potential problem.  I don't like the whole DBAUTH
section, myself.  I'd recommend making the external authenticator a separate
file/class that can plugin.  Provide a couple of default ones, and just make
a single config option - "DBAUTH_PLUGIN_FILE" or similar, which specifies
the file that contains the auth functions, which would presumably just do
SQL calls (but could do BDB, or LDAP, or ...)

- Matt

Matthew Palmer wrote:

> On Mon, Mar 22, 2004 at 09:53:49AM -0800, Joby Walker wrote:
> 
>>Some special characters are not passed via the parse_ini_file function.  
>>See:
>>
>>http://us4.php.net/manual/en/function.parse-ini-file.php
> 
> 
> Double quotes?  Hmm, potential problem.  I don't like the whole DBAUTH
> section, myself.  I'd recommend making the external authenticator a separate
> file/class that can plugin.  Provide a couple of default ones, and just make
> a single config option - "DBAUTH_PLUGIN_FILE" or similar, which specifies
> the file that contains the auth functions, which would presumably just do
> SQL calls (but could do BDB, or LDAP, or ...)
> 

The & sign is also a problem with parse_ini_file().  While the DBAUTH section 
may be a bit advanced for the model of an INI file we really want to avoid 
fragmenting the config file.  Since the PEAR_Config 'inicommented' type handles 
both characters just fine, we should keep things together.

jbw

The DB_AUTH stuff shouldn't even be in index.php

I'll save debate for another day, but essentially no SQL code should leak
from the wikiDB directories.

Also, if you prefix your tables, those default db_auth statements break.

I've already proposed moving wiki_auth to an abstract class like wikidb or
even part of DB. I'll beat that drum some more.

As far as the ini goes, assume DB_Auth will not be part of it.

-JTP



I've stopped 7,521 spam messages. You can too!
One month FREE spam protection at http://www.cloudmark.com/spamnetsig/}
-----Original Message-----
From: phpwiki-talk-admin@...
[mailto:phpwiki-talk-admin@...] On Behalf Of Joby Walker
Sent: Monday, March 22, 2004 5:20 PM
To: Matthew Palmer
Cc: phpwiki-talk@...
Subject: Re: [Phpwiki-talk] IniConfig - it lives!

Matthew Palmer wrote:

> On Mon, Mar 22, 2004 at 09:53:49AM -0800, Joby Walker wrote:
> 
>>Some special characters are not passed via the parse_ini_file function.  
>>See:
>>
>>http://us4.php.net/manual/en/function.parse-ini-file.php
> 
> 
> Double quotes?  Hmm, potential problem.  I don't like the whole DBAUTH
> section, myself.  I'd recommend making the external authenticator a
separate
> file/class that can plugin.  Provide a couple of default ones, and just
make
> a single config option - "DBAUTH_PLUGIN_FILE" or similar, which specifies
> the file that contains the auth functions, which would presumably just do
> SQL calls (but could do BDB, or LDAP, or ...)
> 

The & sign is also a problem with parse_ini_file().  While the DBAUTH
section 
may be a bit advanced for the model of an INI file we really want to avoid 
fragmenting the config file.  Since the PEAR_Config 'inicommented' type
handles 
both characters just fine, we should keep things together.

jbw


-------------------------------------------------------
This SF.Net email is sponsored by: IBM Linux Tutorials
Free Linux tutorial presented by Daniel Robbins, President and CEO of
GenToo technologies. Learn everything from fundamentals to system
administration.http://ads.osdn.com/?ad_id=1470&alloc_id=3638&op=click
_______________________________________________
Phpwiki-talk mailing list
Phpwiki-talk@...
https://lists.sourceforge.net/lists/listinfo/phpwiki-talk

Yes it will break those default statements -- but adding a $prefix to the 
default would solve that.

The Auth stuff (LDAP and DB primarily) is all accessable via the config file so 
that PhpWiki can use foreign authentication mechanisms transparently without the 
user having to hack the Auth Code.  Currently it is pretty kludgy, and we 
certainly can clean it up.  But there should be the ability to put such 
statements into the config file.  In an ideal world we would have a default 
class (or more then one) for SQL or LDAP queries, but the defaults would be 
overridden by the user provided settings.  And all of these advanced settings 
should be at the very end of the config file -- and marked as dangerous to modify.

Providing this functionality makes the product much more attractive to large 
organizations that already have authentication systems.  My first job after 
picking PhpWiki for a documentation project was to hack the authentication 
system to work with and require the UW's Pubcookie Authentication.  Another 
group on my floor had to make more extensive modifications to GNU Mailman to get 
it to work with Pubcookie.  Eliminating this hacking will dramatically reduce 
the barriers to adoption.

jbw



electron wrote:

> The DB_AUTH stuff shouldn't even be in index.php
> 
> I'll save debate for another day, but essentially no SQL code should leak
> from the wikiDB directories.
> 
> Also, if you prefix your tables, those default db_auth statements break.
> 
> I've already proposed moving wiki_auth to an abstract class like wikidb or
> even part of DB. I'll beat that drum some more.
> 
> As far as the ini goes, assume DB_Auth will not be part of it.
> 
> -JTP
> 
> 
> 
> I've stopped 7,521 spam messages. You can too!
> One month FREE spam protection at http://www.cloudmark.com/spamnetsig/}
> -----Original Message-----
> From: phpwiki-talk-admin@...
> [mailto:phpwiki-talk-admin@...] On Behalf Of Joby Walker
> Sent: Monday, March 22, 2004 5:20 PM
> To: Matthew Palmer
> Cc: phpwiki-talk@...
> Subject: Re: [Phpwiki-talk] IniConfig - it lives!
> 
> Matthew Palmer wrote:
> 
> 
>>On Mon, Mar 22, 2004 at 09:53:49AM -0800, Joby Walker wrote:
>>
>>
>>>Some special characters are not passed via the parse_ini_file function.  
>>>See:
>>>
>>>http://us4.php.net/manual/en/function.parse-ini-file.php
>>
>>
>>Double quotes?  Hmm, potential problem.  I don't like the whole DBAUTH
>>section, myself.  I'd recommend making the external authenticator a
> 
> separate
> 
>>file/class that can plugin.  Provide a couple of default ones, and just
> 
> make
> 
>>a single config option - "DBAUTH_PLUGIN_FILE" or similar, which specifies
>>the file that contains the auth functions, which would presumably just do
>>SQL calls (but could do BDB, or LDAP, or ...)
>>
> 
> 
> The & sign is also a problem with parse_ini_file().  While the DBAUTH
> section 
> may be a bit advanced for the model of an INI file we really want to avoid 
> fragmenting the config file.  Since the PEAR_Config 'inicommented' type
> handles 
> both characters just fine, we should keep things together.
> 
> jbw
> 
> 
> -------------------------------------------------------
> This SF.Net email is sponsored by: IBM Linux Tutorials
> Free Linux tutorial presented by Daniel Robbins, President and CEO of
> GenToo technologies. Learn everything from fundamentals to system
> administration.http://ads.osdn.com/?ad_id=1470&alloc_id=3638&op=click
> _______________________________________________
> Phpwiki-talk mailing list
> Phpwiki-talk@...
> https://lists.sourceforge.net/lists/listinfo/phpwiki-talk
>

On Mon, Mar 22, 2004 at 03:20:04PM -0800, Joby Walker wrote:
> The & sign is also a problem with parse_ini_file().  While the DBAUTH 

Is it?  Ugh, what a stupid design.

> section may be a bit advanced for the model of an INI file we really want 
> to avoid fragmenting the config file.  Since the PEAR_Config 'inicommented' 
> type handles both characters just fine, we should keep things together.

OK, would you like me to port the IniConfig system to that, or do you want
to do it?

- Matt

-- 
[On LDAP] "Lightweight my ass.  The fact that X.509 has the weight of an
18-wheel rig doesn't make a minivan something you shove in your backpack."
		-- Zed Pobre, ASR

I can handle it.  It is a very easy modification.

jbw

Matthew Palmer wrote:
> On Mon, Mar 22, 2004 at 03:20:04PM -0800, Joby Walker wrote:
> 
>>The & sign is also a problem with parse_ini_file().  While the DBAUTH 
> 
> 
> Is it?  Ugh, what a stupid design.
> 
> 
>>section may be a bit advanced for the model of an INI file we really want 
>>to avoid fragmenting the config file.  Since the PEAR_Config 'inicommented' 
>>type handles both characters just fine, we should keep things together.
> 
> 
> OK, would you like me to port the IniConfig system to that, or do you want
> to do it?
> 
> - Matt
>