$dir) { if ($dir == '.') { $dirs[$key] = $dirPath; } else { $dir = rtrim($dir, '\\/'); $dirs[$key] = $dir . DIRECTORY_SEPARATOR . $dirPath; } } $file = basename($file); self::loadFile($file, $dirs, true); } else { self::_securityCheck($file); include_once $file; } if (!class_exists($class, false) && !interface_exists($class, false)) { require_once 'Zend/Exception.php'; throw new Zend_Exception("File \"$file\" does not exist or class \"$class\" was not found in the file"); } } /** * Loads a PHP file. This is a wrapper for PHP's include() function. * * $filename must be the complete filename, including any * extension such as ".php". Note that a security check is performed that * does not permit extended characters in the filename. This method is * intended for loading Zend Framework files. * * If $dirs is a string or an array, it will search the directories * in the order supplied, and attempt to load the first matching file. * * If the file was not found in the $dirs, or if no $dirs were specified, * it will attempt to load it from PHP's include_path. * * If $once is TRUE, it will use include_once() instead of include(). * * @param string $filename * @param string|array $dirs - OPTIONAL either a path or array of paths * to search. * @param boolean $once * @return boolean * @throws Zend_Exception */ public static function loadFile($filename, $dirs = null, $once = false) { self::_securityCheck($filename); /** * Search in provided directories, as well as include_path */ $incPath = false; if (!empty($dirs) && (is_array($dirs) || is_string($dirs))) { if (is_array($dirs)) { $dirs = implode(PATH_SEPARATOR, $dirs); } $incPath = get_include_path(); set_include_path($dirs . PATH_SEPARATOR . $incPath); } /** * Try finding for the plain filename in the include_path. */ if ($once) { include_once $filename; } else { include $filename; } /** * If searching in directories, reset include_path */ if ($incPath) { set_include_path($incPath); } return true; } /** * Returns TRUE if the $filename is readable, or FALSE otherwise. * This function uses the PHP include_path, where PHP's is_readable() * does not. * * @param string $filename * @return boolean */ public static function isReadable($filename) { if (!$fh = @fopen($filename, 'r', true)) { return false; } @fclose($fh); return true; } /** * spl_autoload() suitable implementation for supporting class autoloading. * * Attach to spl_autoload() using the following: * * spl_autoload_register(array('Zend_Loader', 'autoload')); * * * @param string $class * @return string|false Class name on success; false on failure */ public static function autoload($class) { try { self::loadClass($class); return $class; } catch (Exception $e) { return false; } } /** * Register {@link autoload()} with spl_autoload() * * @param string $class (optional) * @param boolean $enabled (optional) * @return void * @throws Zend_Exception if spl_autoload() is not found * or if the specified class does not have an autoload() method. */ public static function registerAutoload($class = 'Zend_Loader', $enabled = true) { if (!function_exists('spl_autoload_register')) { require_once 'Zend/Exception.php'; throw new Zend_Exception('spl_autoload does not exist in this PHP installation'); } self::loadClass($class); $methods = get_class_methods($class); if (!in_array('autoload', (array) $methods)) { require_once 'Zend/Exception.php'; throw new Zend_Exception("The class \"$class\" does not have an autoload() method"); } if ($enabled === true) { spl_autoload_register(array($class, 'autoload')); } else { spl_autoload_unregister(array($class, 'autoload')); } } /** * Ensure that filename does not contain exploits * * @param string $filename * @return void * @throws Zend_Exception */ protected static function _securityCheck($filename) { /** * Security check */ if (preg_match('/[^a-z0-9\\/\\\\_.-]/i', $filename)) { require_once 'Zend/Exception.php'; throw new Zend_Exception('Security check: Illegal character in filename'); } } /** * Attempt to include() the file. * * include() is not prefixed with the @ operator because if * the file is loaded and contains a parse error, execution * will halt silently and this is difficult to debug. * * Always set display_errors = Off on production servers! * * @param string $filespec * @param boolean $once * @return boolean * @deprecated Since 1.5.0; use loadFile() instead */ protected static function _includeFile($filespec, $once = false) { if ($once) { return include_once $filespec; } else { return include $filespec ; } } }