gitlabFork/ISPConfig3.git - Solinfo Gitblit

			@@ -38,20 +38,20 @@
			* End Form configuration
			******************************************/

			require_once('../../lib/config.inc.php');
			require_once('../../lib/app.inc.php');
			require_once '../../lib/config.inc.php';
			require_once '../../lib/app.inc.php';

			//* Check permissions for module
			$app->auth->check_module_permissions('sites');

			// Loading classes
			$app->uses('tpl,tform,tform_actions');
			$app->uses('tpl,tform,tform_actions,tools_sites');
			$app->load('tform_actions');

			class page_action extends tform_actions {

			//* Returna a "3/2/1" path hash from a numeric id '123'
			function id_hash($id,$levels) {
			function id_hash($id, $levels) {
			$hash = "" . $id % 10 ;
			$id /= 10 ;
			$levels -- ;
			@@ -62,16 +62,16 @@
			}
			return $hash;
			}


			function onShowNew() {
			global $app, $conf;

			// we will check only users, not admins
			if($_SESSION["s"]["user"]["typ"] == 'user') {
			if(!$app->tform->checkClientLimit('limit_web_subdomain',"(type = 'subdomain' OR type = 'vhostsubdomain')")) {
			if(!$app->tform->checkClientLimit('limit_web_subdomain', "(type = 'subdomain' OR type = 'vhostsubdomain')")) {
			$app->error($app->tform->wordbook["limit_web_subdomain_txt"]);
			}
			if(!$app->tform->checkResellerLimit('limit_web_subdomain',"(type = 'subdomain' OR type = 'vhostsubdomain')")) {
			if(!$app->tform->checkResellerLimit('limit_web_subdomain', "(type = 'subdomain' OR type = 'vhostsubdomain')")) {
			$app->error('Reseller: '.$app->tform->wordbook["limit_web_subdomain_txt"]);
			}
			}
			@@ -80,20 +80,20 @@

			function onShowEnd() {
			global $app, $conf;


			$app->uses('ini_parser,getconf');

			$read_limits = array('limit_cgi', 'limit_ssi', 'limit_perl', 'limit_ruby', 'limit_python', 'force_suexec', 'limit_hterror', 'limit_wildcard', 'limit_ssl');

			$parent_domain = $app->db->queryOneRecord("select * FROM web_domain WHERE domain_id = ".intval(@$this->dataRecord["parent_domain_id"]));
			$read_limits = array('limit_cgi', 'limit_ssi', 'limit_perl', 'limit_ruby', 'limit_python', 'force_suexec', 'limit_hterror', 'limit_wildcard', 'limit_ssl');

			$parent_domain = $app->db->queryOneRecord("select * FROM web_domain WHERE domain_id = ".$app->functions->intval(@$this->dataRecord["parent_domain_id"]));

			//* Client: If the logged in user is not admin and has no sub clients (no reseller)
			if($_SESSION["s"]["user"]["typ"] != 'admin' && !$app->auth->has_clients($_SESSION['s']['user']['userid'])) {

			// Get the limits of the client
			$client_group_id = $_SESSION["s"]["user"]["default_group"];
			$client = $app->db->queryOneRecord("SELECT client.limit_web_domain, client.default_webserver, client." . implode(", client.", $read_limits) . " FROM sys_group, client WHERE sys_group.client_id = client.client_id and sys_group.groupid = $client_group_id");

			$client_group_id = $app->functions->intval($_SESSION["s"]["user"]["default_group"]);
			$client = $app->db->queryOneRecord("SELECT client.limit_web_subdomain, client.default_webserver, client." . implode(", client.", $read_limits) . " FROM sys_group, client WHERE sys_group.client_id = client.client_id and sys_group.groupid = $client_group_id");

			//* Get global web config
			$web_config = $app->getconf->get_server_config($parent_domain['server_id'], 'web');

			@@ -102,10 +102,10 @@
			if(!empty($web_config['server_type'])) $server_type = $web_config['server_type'];
			if($server_type == 'nginx' && $this->dataRecord['php'] == 'fast-cgi') $this->dataRecord['php'] = 'php-fpm';
			if($this->dataRecord['php'] == 'php-fpm'){
			$php_records = $app->db->queryAllRecords("SELECT * FROM server_php WHERE php_fpm_init_script != '' AND php_fpm_ini_dir != '' AND php_fpm_pool_dir != '' AND server_id = ".$parent_domain['server_id']." AND (client_id = 0 OR client_id=".$_SESSION['s']['user']['client_id'].")");
			$php_records = $app->db->queryAllRecords("SELECT * FROM server_php WHERE php_fpm_init_script != '' AND php_fpm_ini_dir != '' AND php_fpm_pool_dir != '' AND server_id = ".$app->functions->intval($parent_domain['server_id'])." AND (client_id = 0 OR client_id=".$app->functions->intval($_SESSION['s']['user']['client_id']).")");
			}
			if($this->dataRecord['php'] == 'fast-cgi'){
			$php_records = $app->db->queryAllRecords("SELECT * FROM server_php WHERE php_fastcgi_binary != '' AND php_fastcgi_ini_dir != '' AND server_id = ".$parent_domain['server_id']." AND (client_id = 0 OR client_id=".$_SESSION['s']['user']['client_id'].")");
			$php_records = $app->db->queryAllRecords("SELECT * FROM server_php WHERE php_fastcgi_binary != '' AND php_fastcgi_ini_dir != '' AND server_id = ".$app->functions->intval($parent_domain['server_id'])." AND (client_id = 0 OR client_id=".$app->functions->intval($_SESSION['s']['user']['client_id']).")");
			}
			$php_select = "<option value=''>Default</option>";
			if(is_array($php_records) && !empty($php_records)) {
			@@ -119,32 +119,32 @@
			$php_select .= "<option value='$php_version' $selected>".$php_record['name']."</option>\r\n";
			}
			}
			$app->tpl->setVar("fastcgi_php_version",$php_select);
			$app->tpl->setVar("fastcgi_php_version", $php_select);
			unset($php_records);

			// add limits to template to be able to hide settings
			foreach($read_limits as $limit) $app->tpl->setVar($limit, $client[$limit]);


			// add limits to template to be able to hide settings
			foreach($read_limits as $limit) $app->tpl->setVar($limit, $client[$limit]);


			//* Reseller: If the logged in user is not admin and has sub clients (is a reseller)
			} elseif ($_SESSION["s"]["user"]["typ"] != 'admin' && $app->auth->has_clients($_SESSION['s']['user']['userid'])) {

			// Get the limits of the client
			$client_group_id = $_SESSION["s"]["user"]["default_group"];
			$client = $app->db->queryOneRecord("SELECT client.client_id, client.limit_web_domain, client.default_webserver, client.contact_name, CONCAT(client.company_name,' :: ',client.contact_name) as contactname, sys_group.name, client." . implode(", client.", $read_limits) . " FROM sys_group, client WHERE sys_group.client_id = client.client_id and sys_group.groupid = $client_group_id");

			$client_group_id = $app->functions->intval($_SESSION["s"]["user"]["default_group"]);
			$client = $app->db->queryOneRecord("SELECT client.client_id, client.limit_web_subdomain, client.default_webserver, client.contact_name, CONCAT(IF(client.company_name != '', CONCAT(client.company_name, ' :: '), ''), client.contact_name, ' (', client.username, IF(client.customer_no != '', CONCAT(', ', client.customer_no), ''), ')') as contactname, sys_group.name, client." . implode(", client.", $read_limits) . " FROM sys_group, client WHERE sys_group.client_id = client.client_id and sys_group.groupid = $client_group_id");

			//* Get global web config
			$web_config = $app->getconf->get_server_config($parent_domain['server_id'], 'web');


			//PHP Version Selection (FastCGI)
			$server_type = 'apache';
			if(!empty($web_config['server_type'])) $server_type = $web_config['server_type'];
			if($server_type == 'nginx' && $this->dataRecord['php'] == 'fast-cgi') $this->dataRecord['php'] = 'php-fpm';
			if($this->dataRecord['php'] == 'php-fpm'){
			$php_records = $app->db->queryAllRecords("SELECT * FROM server_php WHERE php_fpm_init_script != '' AND php_fpm_ini_dir != '' AND php_fpm_pool_dir != '' AND server_id = ".$parent_domain['server_id']." AND (client_id = 0 OR client_id=".$_SESSION['s']['user']['client_id'].")");
			$php_records = $app->db->queryAllRecords("SELECT * FROM server_php WHERE php_fpm_init_script != '' AND php_fpm_ini_dir != '' AND php_fpm_pool_dir != '' AND server_id = ".$app->functions->intval($parent_domain['server_id'])." AND (client_id = 0 OR client_id=".$app->functions->intval($_SESSION['s']['user']['client_id']).")");
			}
			if($this->dataRecord['php'] == 'fast-cgi') {
			$php_records = $app->db->queryAllRecords("SELECT * FROM server_php WHERE php_fastcgi_binary != '' AND php_fastcgi_ini_dir != '' AND server_id = ".$parent_domain['server_id']." AND (client_id = 0 OR client_id=".$_SESSION['s']['user']['client_id'].")");
			$php_records = $app->db->queryAllRecords("SELECT * FROM server_php WHERE php_fastcgi_binary != '' AND php_fastcgi_ini_dir != '' AND server_id = ".$app->functions->intval($parent_domain['server_id'])." AND (client_id = 0 OR client_id=".$app->functions->intval($_SESSION['s']['user']['client_id']).")");
			}
			$php_select = "<option value=''>Default</option>";
			if(is_array($php_records) && !empty($php_records)) {
			@@ -158,28 +158,28 @@
			$php_select .= "<option value='$php_version' $selected>".$php_record['name']."</option>\r\n";
			}
			}
			$app->tpl->setVar("fastcgi_php_version",$php_select);
			$app->tpl->setVar("fastcgi_php_version", $php_select);
			unset($php_records);

			// add limits to template to be able to hide settings
			foreach($read_limits as $limit) $app->tpl->setVar($limit, $client[$limit]);



			// add limits to template to be able to hide settings
			foreach($read_limits as $limit) $app->tpl->setVar($limit, $client[$limit]);


			//* Admin: If the logged in user is admin
			} else {

			//* get global web config
			$web_config = $app->getconf->get_server_config($parent_domain['server_id'], 'web');


			//PHP Version Selection (FastCGI)
			$server_type = 'apache';
			if(!empty($web_config['server_type'])) $server_type = $web_config['server_type'];
			if($server_type == 'nginx' && $this->dataRecord['php'] == 'fast-cgi') $this->dataRecord['php'] = 'php-fpm';
			if($this->dataRecord['php'] == 'php-fpm'){
			$php_records = $app->db->queryAllRecords("SELECT * FROM server_php WHERE php_fpm_init_script != '' AND php_fpm_ini_dir != '' AND php_fpm_pool_dir != '' AND server_id = " . $parent_domain['server_id']);
			$php_records = $app->db->queryAllRecords("SELECT * FROM server_php WHERE php_fpm_init_script != '' AND php_fpm_ini_dir != '' AND php_fpm_pool_dir != '' AND server_id = " . $app->functions->intval($parent_domain['server_id']));
			}
			if($this->dataRecord['php'] == 'fast-cgi') {
			$php_records = $app->db->queryAllRecords("SELECT * FROM server_php WHERE php_fastcgi_binary != '' AND php_fastcgi_ini_dir != '' AND server_id = " . $parent_domain['server_id']);
			$php_records = $app->db->queryAllRecords("SELECT * FROM server_php WHERE php_fastcgi_binary != '' AND php_fastcgi_ini_dir != '' AND server_id = " . $app->functions->intval($parent_domain['server_id']));
			}
			$php_select = "<option value=''>Default</option>";
			if(is_array($php_records) && !empty($php_records)) {
			@@ -193,45 +193,146 @@
			$php_select .= "<option value='$php_version' $selected>".$php_record['name']."</option>\r\n";
			}
			}
			$app->tpl->setVar("fastcgi_php_version",$php_select);
			$app->tpl->setVar("fastcgi_php_version", $php_select);
			unset($php_records);

			foreach($read_limits as $limit) $app->tpl->setVar($limit, ($limit == 'force_suexec' ? 'n' : 'y'));
			foreach($read_limits as $limit) $app->tpl->setVar($limit, ($limit == 'force_suexec' ? 'n' : 'y'));

			// Directive Snippets
			$php_directive_snippets = $app->db->queryAllRecords("SELECT * FROM directive_snippets WHERE type = 'php' AND active = 'y'");
			$php_directive_snippets_txt = '';
			if(is_array($php_directive_snippets) && !empty($php_directive_snippets)){
			foreach($php_directive_snippets as $php_directive_snippet){
			$php_directive_snippets_txt .= '<a href="javascript:void(0);" class="addPlaceholderContent">['.$php_directive_snippet['name'].']<pre class="addPlaceholderContent" style="display:none;">'.htmlentities($php_directive_snippet['snippet']).'</pre></a> ';
			}
			}
			if($php_directive_snippets_txt == '') $php_directive_snippets_txt = '------';
			$app->tpl->setVar("php_directive_snippets_txt", $php_directive_snippets_txt);

			if($server_type == 'apache'){
			$apache_directive_snippets = $app->db->queryAllRecords("SELECT * FROM directive_snippets WHERE type = 'apache' AND active = 'y'");
			$apache_directive_snippets_txt = '';
			if(is_array($apache_directive_snippets) && !empty($apache_directive_snippets)){
			foreach($apache_directive_snippets as $apache_directive_snippet){
			$apache_directive_snippets_txt .= '<a href="javascript:void(0);" class="addPlaceholderContent">['.$apache_directive_snippet['name'].']<pre class="addPlaceholderContent" style="display:none;">'.htmlentities($apache_directive_snippet['snippet']).'</pre></a> ';
			}
			}
			if($apache_directive_snippets_txt == '') $apache_directive_snippets_txt = '------';
			$app->tpl->setVar("apache_directive_snippets_txt", $apache_directive_snippets_txt);
			}

			if($server_type == 'nginx'){
			$nginx_directive_snippets = $app->db->queryAllRecords("SELECT * FROM directive_snippets WHERE type = 'nginx' AND active = 'y'");
			$nginx_directive_snippets_txt = '';
			if(is_array($nginx_directive_snippets) && !empty($nginx_directive_snippets)){
			foreach($nginx_directive_snippets as $nginx_directive_snippet){
			$nginx_directive_snippets_txt .= '<a href="javascript:void(0);" class="addPlaceholderContent">['.$nginx_directive_snippet['name'].']<pre class="addPlaceholderContent" style="display:none;">'.htmlentities($nginx_directive_snippet['snippet']).'</pre></a> ';
			}
			}
			if($nginx_directive_snippets_txt == '') $nginx_directive_snippets_txt = '------';
			$app->tpl->setVar("nginx_directive_snippets_txt", $nginx_directive_snippets_txt);
			}

			$proxy_directive_snippets = $app->db->queryAllRecords("SELECT * FROM directive_snippets WHERE type = 'proxy' AND active = 'y'");
			$proxy_directive_snippets_txt = '';
			if(is_array($proxy_directive_snippets) && !empty($proxy_directive_snippets)){
			foreach($proxy_directive_snippets as $proxy_directive_snippet){
			$proxy_directive_snippets_txt .= '<a href="javascript:void(0);" class="addPlaceholderContent">['.$proxy_directive_snippet['name'].']<pre class="addPlaceholderContent" style="display:none;">'.htmlentities($proxy_directive_snippet['snippet']).'</pre></a> ';
			}
			}
			if($proxy_directive_snippets_txt == '') $proxy_directive_snippets_txt = '------';
			$app->tpl->setVar("proxy_directive_snippets_txt", $proxy_directive_snippets_txt);
			}

			$ssl_domain_select = '';
			$tmp = $app->db->queryOneRecord("SELECT domain FROM web_domain WHERE domain_id = ".$this->id);
			$ssl_domains = array($tmp["domain"],'www.'.$tmp["domain"]);
			$ssl_domains = array($tmp["domain"], 'www.'.$tmp["domain"], '*.'.$tmp["domain"]);
			if(is_array($ssl_domains)) {
			foreach( $ssl_domains as $ssl_domain) {
			$selected = ($ssl_domain == $this->dataRecord['ssl_domain'])?'SELECTED':'';
			$ssl_domain_select .= "<option value='$ssl_domain' $selected>$ssl_domain</option>\r\n";
			}
			}

			if($this->id > 0) $app->tpl->setVar('fixed_folder', 'y');
			else $app->tpl->setVar('fixed_folder', 'n');

			$app->tpl->setVar("ssl_domain",$ssl_domain_select);
			$app->tpl->setVar("ssl_domain", $ssl_domain_select);
			unset($ssl_domain_select);
			unset($ssl_domains);
			unset($ssl_domain);

			if($this->id > 0) {
			$app->tpl->setVar('fixed_folder', 'y');
			$app->tpl->setVar('server_id_value', $parent_domain['server_id']);
			} else {
			$app->tpl->setVar('fixed_folder', 'n');
			$app->tpl->setVar('server_id_value', $parent_domain['server_id']);
			}

			$tmp_txt = ($this->dataRecord['traffic_quota_lock'] == 'y')?'<b>('.$app->tform->lng('traffic_quota_exceeded_txt').')</b>':'';
			$app->tpl->setVar("traffic_quota_exceeded_txt", $tmp_txt);

			// remove the parent domain part of the domain name before we show it in the text field.
			$this->dataRecord["domain"] = str_replace('.'.$parent_domain["domain"],'',$this->dataRecord["domain"]);
			$app->tpl->setVar("domain",$this->dataRecord["domain"]);

			$app->uses('ini_parser,getconf');
			$settings = $app->getconf->get_global_config('domains');
			if ($settings['use_domain_module'] == 'y') {
			/*
			* The domain-module is in use.
			*/
			$domains = $app->tools_sites->getDomainModuleDomains();
			$domain_select = '';
			$selected_domain = '';
			if(is_array($domains) && sizeof($domains) > 0) {
			/* We have domains in the list, so create the drop-down-list */
			foreach( $domains as $domain) {
			$domain_select .= "<option value=" . $domain['domain_id'] ;
			if ('.' . $domain['domain'] == substr($this->dataRecord["domain"], -strlen($domain['domain']) - 1)) {
			$domain_select .= " selected";
			$selected_domain = $domain['domain'];
			}
			$domain_select .= ">" . $app->functions->idn_decode($domain['domain']) . "</option>\r\n";
			}
			}
			else {
			/*
			* We have no domains in the domain-list. This means, we can not add ANY new domain.
			* To avoid, that the variable "domain_option" is empty and so the user can
			* free enter a domain, we have to create a empty option!
			*/
			$domain_select .= "<option value=''></option>\r\n";
			}
			$app->tpl->setVar("domain_option", $domain_select);
			$this->dataRecord['domain'] = substr($this->dataRecord["domain"], 0, strlen($this->dataRecord['domain']) - strlen($selected_domain) - 1);
			} else {

			// remove the parent domain part of the domain name before we show it in the text field.
			$this->dataRecord["domain"] = str_replace('.'.$parent_domain["domain"], '', $this->dataRecord["domain"]);
			}
			$app->tpl->setVar("domain", $this->dataRecord["domain"]);

			// check for configuration errors in sys_datalog
			if($this->id > 0) {
			$datalog = $app->db->queryOneRecord("SELECT sys_datalog.error, sys_log.tstamp FROM sys_datalog, sys_log WHERE sys_datalog.dbtable = 'web_domain' AND sys_datalog.dbidx = 'domain_id:".$app->functions->intval($this->id)."' AND sys_datalog.datalog_id = sys_log.datalog_id AND sys_log.message = CONCAT('Processed datalog_id ',sys_log.datalog_id) ORDER BY sys_datalog.tstamp DESC");
			if(is_array($datalog) && !empty($datalog)){
			if(trim($datalog['error']) != ''){
			$app->tpl->setVar("config_error_msg", nl2br(htmlentities($datalog['error'])));
			$app->tpl->setVar("config_error_tstamp", date($app->lng('conf_format_datetime'), $datalog['tstamp']));
			}
			}
			}

			parent::onShowEnd();
			}


			function onSubmit() {
			global $app, $conf;

			// Get the record of the parent domain
			$parent_domain = $app->db->queryOneRecord("select * FROM web_domain WHERE domain_id = ".intval(@$this->dataRecord["parent_domain_id"]));
			if(!@$this->dataRecord["parent_domain_id"] && $this->id) {
			$tmp = $app->db->queryOneRecord("SELECT parent_domain_id FROM web_domain WHERE domain_id = ".$app->functions->intval($this->id));
			if($tmp) $this->dataRecord["parent_domain_id"] = $tmp['parent_domain_id'];
			unset($tmp);
			}

			$parent_domain = $app->db->queryOneRecord("select * FROM web_domain WHERE domain_id = ".$app->functions->intval(@$this->dataRecord["parent_domain_id"]) . " AND ".$app->tform->getAuthSQL('r'));
			if(!$parent_domain \|\| $parent_domain['domain_id'] != @$this->dataRecord['parent_domain_id']) $app->tform->errorMessage .= $app->tform->lng("no_domain_perm");

			// Set a few fixed values
			$this->dataRecord["type"] = 'vhostsubdomain';
			@@ -240,61 +341,88 @@
			$this->dataRecord["ipv6_address"] = $parent_domain["ipv6_address"];
			$this->dataRecord["client_group_id"] = $parent_domain["client_group_id"];
			$this->dataRecord["vhost_type"] = 'name';
			$this->dataRecord["domain"] = $this->dataRecord["domain"].'.'.$parent_domain["domain"];
			$this->dataRecord["system_user"] = $parent_domain["system_user"];
			$this->dataRecord["system_group"] = $parent_domain["system_group"];

			$this->parent_domain_record = $parent_domain;

			$read_limits = array('limit_cgi', 'limit_ssi', 'limit_perl', 'limit_ruby', 'limit_python', 'force_suexec', 'limit_hterror', 'limit_wildcard', 'limit_ssl');

			if($app->tform->getCurrentTab() == 'domain') {
			$this->dataRecord['web_folder'] = strtolower($this->dataRecord['web_folder']);
			$forbidden_folders = array('', 'cgi-bin', 'web', 'log', 'private', 'ssl', 'tmp', 'webdav');
			if(in_array($this->dataRecord['web_folder'], $forbidden_folders)) {
			$app->tform->errorMessage .= $app->tform->lng("web_folder_invalid_txt")."<br>";
			}
			// check for duplicate folder usage
			$check = $app->db->queryOneRecord("SELECT COUNT(*) as `cnt` FROM `web_domain` WHERE `type` = 'vhostsubdomain' AND `parent_domain_id` = '" . intval($this->dataRecord['parent_domain_id']) . "' AND `web_folder` = '" . $app->db->quote($this->dataRecord['web_folder']) . "' AND `domain_id` != '" . intval($this->id) . "'");

			$read_limits = array('limit_cgi', 'limit_ssi', 'limit_perl', 'limit_ruby', 'limit_python', 'force_suexec', 'limit_hterror', 'limit_wildcard', 'limit_ssl');

			if($app->tform->getCurrentTab() == 'domain') {

			// Check that domain (the subdomain part) is not empty
			if(!preg_match('/^[a-zA-Z0-9].*/',$this->dataRecord['domain'])) {
			$app->tform->errorMessage .= $app->tform->lng("subdomain_error_empty")."<br />";
			}

			/* check if the domain module is used - and check if the selected domain can be used! */
			$app->uses('ini_parser,getconf');
			$settings = $app->getconf->get_global_config('domains');
			if ($settings['use_domain_module'] == 'y') {
			$domain_check = $app->tools_sites->checkDomainModuleDomain($this->dataRecord['sel_domain']);
			if(!$domain_check) {
			// invalid domain selected
			$app->tform->errorMessage .= $app->tform->lng("domain_error_empty")."<br />";
			} else {
			$this->dataRecord['domain'] = $this->dataRecord['domain'] . '.' . $domain_check;
			}
			} else {
			$this->dataRecord["domain"] = $this->dataRecord["domain"].'.'.$parent_domain["domain"];
			}


			$this->dataRecord['web_folder'] = strtolower($this->dataRecord['web_folder']);
			if(substr($this->dataRecord['web_folder'], 0, 1) === '/') $this->dataRecord['web_folder'] = substr($this->dataRecord['web_folder'], 1);
			if(substr($this->dataRecord['web_folder'], -1) === '/') $this->dataRecord['web_folder'] = substr($this->dataRecord['web_folder'], 0, -1);
			$forbidden_folders = array('', 'cgi-bin', 'log', 'private', 'ssl', 'tmp', 'webdav');
			$check_folder = strtolower($this->dataRecord['web_folder']);
			if(substr($check_folder, 0, 1) === '/') $check_folder = substr($check_folder, 1); // strip / at beginning to check against forbidden entries
			if(strpos($check_folder, '/') !== false) $check_folder = substr($check_folder, 0, strpos($check_folder, '/')); // get the first part of the path to check it
			if(in_array($check_folder, $forbidden_folders)) {
			$app->tform->errorMessage .= $app->tform->lng("web_folder_invalid_txt")."<br>";
			}

			// vhostsubdomains do not have a quota of their own
			$this->dataRecord["hd_quota"] = 0;

			// check for duplicate folder usage
			/*
			$check = $app->db->queryOneRecord("SELECT COUNT(*) as `cnt` FROM `web_domain` WHERE `type` = 'vhostsubdomain' AND `parent_domain_id` = '" . $app->functions->intval($this->dataRecord['parent_domain_id']) . "' AND `web_folder` = '" . $app->db->quote($this->dataRecord['web_folder']) . "' AND `domain_id` != '" . $app->functions->intval($this->id) . "'");
			if($check && $check['cnt'] > 0) {
			$app->tform->errorMessage .= $app->tform->lng("web_folder_unique_txt")."<br>";
			}
			}

			*/
			} else {
			$this->dataRecord["domain"] = $this->dataRecord["domain"].'.'.$parent_domain["domain"];
			}

			if($_SESSION["s"]["user"]["typ"] != 'admin') {
			// Get the limits of the client
			$client_group_id = $_SESSION["s"]["user"]["default_group"];
			$client = $app->db->queryOneRecord("SELECT limit_traffic_quota, limit_web_domain, default_webserver, parent_client_id, limit_web_quota, client." . implode(", client.", $read_limits) . " FROM sys_group, client WHERE sys_group.client_id = client.client_id and sys_group.groupid = $client_group_id");

			if($client['limit_cgi'] != 'y') $this->dataRecord['cgi'] = '-';
			if($client['limit_ssi'] != 'y') $this->dataRecord['ssi'] = '-';
			if($client['limit_perl'] != 'y') $this->dataRecord['perl'] = '-';
			if($client['limit_ruby'] != 'y') $this->dataRecord['ruby'] = '-';
			if($client['limit_python'] != 'y') $this->dataRecord['python'] = '-';
			if($client['force_suexec'] != 'n') $this->dataRecord['suexec'] = '-';
			if($client['limit_hterror'] != 'y') $this->dataRecord['errordocs'] = '-';
			if($client['limit_wildcard'] != 'y' && $this->dataRecord['subdomain'] == '*') $this->dataRecord['subdomain'] = '-';
			if($client['limit_ssl'] != 'y') $this->dataRecord['ssl'] = '-';

			//* Check the website quota of the client
			if(isset($_POST["hd_quota"]) && $client["limit_web_quota"] >= 0) {
			$tmp = $app->db->queryOneRecord("SELECT sum(hd_quota) as webquota FROM web_domain WHERE domain_id != ".intval($this->id)." AND ".$app->tform->getAuthSQL('u'));
			$webquota = $tmp["webquota"];
			$new_web_quota = intval($this->dataRecord["hd_quota"]);
			if(($webquota + $new_web_quota > $client["limit_web_quota"]) \|\| ($new_web_quota < 0 && $client["limit_web_quota"] >= 0)) {
			$max_free_quota = floor($client["limit_web_quota"] - $webquota);
			if($max_free_quota < 0) $max_free_quota = 0;
			$app->tform->errorMessage .= $app->tform->lng("limit_web_quota_free_txt").": ".$max_free_quota." MB<br>";
			// Set the quota field to the max free space
			$this->dataRecord["hd_quota"] = $max_free_quota;
			}
			unset($tmp);
			unset($tmp_quota);
			$client_group_id = $app->functions->intval($_SESSION["s"]["user"]["default_group"]);
			$client = $app->db->queryOneRecord("SELECT limit_traffic_quota, limit_web_subdomain, default_webserver, parent_client_id, limit_web_quota, client." . implode(", client.", $read_limits) . " FROM sys_group, client WHERE sys_group.client_id = client.client_id and sys_group.groupid = $client_group_id");

			if($client['limit_cgi'] != 'y') $this->dataRecord['cgi'] = 'n';
			if($client['limit_ssi'] != 'y') $this->dataRecord['ssi'] = 'n';
			if($client['limit_perl'] != 'y') $this->dataRecord['perl'] = 'n';
			if($client['limit_ruby'] != 'y') $this->dataRecord['ruby'] = 'n';
			if($client['limit_python'] != 'y') $this->dataRecord['python'] = 'n';
			if($client['force_suexec'] == 'y') $this->dataRecord['suexec'] = 'y';
			if($client['limit_hterror'] != 'y') $this->dataRecord['errordocs'] = 'n';
			if($client['limit_wildcard'] != 'y' && $this->dataRecord['subdomain'] == '*') $this->dataRecord['subdomain'] = 'n';
			if($client['limit_ssl'] != 'y') $this->dataRecord['ssl'] = 'n';

			// only generate quota and traffic warnings if value has changed
			if($this->id > 0) {
			$old_web_values = $app->db->queryOneRecord("SELECT * FROM web_domain WHERE domain_id = ".$app->functions->intval($this->id));
			} else {
			$old_web_values = array();
			}

			//* Check the traffic quota of the client
			if(isset($_POST["traffic_quota"]) && $client["limit_traffic_quota"] > 0) {
			$tmp = $app->db->queryOneRecord("SELECT sum(traffic_quota) as trafficquota FROM web_domain WHERE domain_id != ".intval($this->id)." AND ".$app->tform->getAuthSQL('u'));
			if(isset($_POST["traffic_quota"]) && $client["limit_traffic_quota"] > 0 && $_POST["traffic_quota"] != $old_web_values["traffic_quota"]) {
			$tmp = $app->db->queryOneRecord("SELECT sum(traffic_quota) as trafficquota FROM web_domain WHERE domain_id != ".$app->functions->intval($this->id)." AND ".$app->tform->getAuthSQL('u'));
			$trafficquota = $tmp["trafficquota"];
			$new_traffic_quota = intval($this->dataRecord["traffic_quota"]);
			$new_traffic_quota = $app->functions->intval($this->dataRecord["traffic_quota"]);
			if(($trafficquota + $new_traffic_quota > $client["limit_traffic_quota"]) \|\| ($new_traffic_quota < 0 && $client["limit_traffic_quota"] >= 0)) {
			$max_free_quota = floor($client["limit_traffic_quota"] - $trafficquota);
			if($max_free_quota < 0) $max_free_quota = 0;
			@@ -305,32 +433,16 @@
			unset($tmp);
			unset($tmp_quota);
			}


			if($client['parent_client_id'] > 0) {
			// Get the limits of the reseller
			$reseller = $app->db->queryOneRecord("SELECT limit_traffic_quota, limit_web_domain, default_webserver, limit_web_quota FROM client WHERE client_id = ".$client['parent_client_id']);

			//* Check the website quota of the client
			if(isset($_POST["hd_quota"]) && $reseller["limit_web_quota"] >= 0) {
			$tmp = $app->db->queryOneRecord("SELECT sum(hd_quota) as webquota FROM web_domain WHERE domain_id != ".intval($this->id)." AND ".$app->tform->getAuthSQL('u'));
			$webquota = $tmp["webquota"];
			$new_web_quota = intval($this->dataRecord["hd_quota"]);
			if(($webquota + $new_web_quota > $reseller["limit_web_quota"]) \|\| ($new_web_quota < 0 && $reseller["limit_web_quota"] >= 0)) {
			$max_free_quota = floor($reseller["limit_web_quota"] - $webquota);
			if($max_free_quota < 0) $max_free_quota = 0;
			$app->tform->errorMessage .= $app->tform->lng("limit_web_quota_free_txt").": ".$max_free_quota." MB<br>";
			// Set the quota field to the max free space
			$this->dataRecord["hd_quota"] = $max_free_quota;
			}
			unset($tmp);
			unset($tmp_quota);
			}
			$reseller = $app->db->queryOneRecord("SELECT limit_traffic_quota, limit_web_subdomain, default_webserver, limit_web_quota FROM client WHERE client_id = ".$app->functions->intval($client['parent_client_id']));

			//* Check the traffic quota of the client
			if(isset($_POST["traffic_quota"]) && $reseller["limit_traffic_quota"] > 0) {
			$tmp = $app->db->queryOneRecord("SELECT sum(traffic_quota) as trafficquota FROM web_domain WHERE domain_id != ".intval($this->id)." AND ".$app->tform->getAuthSQL('u'));
			if(isset($_POST["traffic_quota"]) && $reseller["limit_traffic_quota"] > 0 && $_POST["traffic_quota"] != $old_web_values["traffic_quota"]) {
			$tmp = $app->db->queryOneRecord("SELECT sum(traffic_quota) as trafficquota FROM web_domain WHERE domain_id != ".$app->functions->intval($this->id)." AND ".$app->tform->getAuthSQL('u'));
			$trafficquota = $tmp["trafficquota"];
			$new_traffic_quota = intval($this->dataRecord["traffic_quota"]);
			$new_traffic_quota = $app->functions->intval($this->dataRecord["traffic_quota"]);
			if(($trafficquota + $new_traffic_quota > $reseller["limit_traffic_quota"]) \|\| ($new_traffic_quota < 0 && $reseller["limit_traffic_quota"] >= 0)) {
			$max_free_quota = floor($reseller["limit_traffic_quota"] - $trafficquota);
			if($max_free_quota < 0) $max_free_quota = 0;
			@@ -345,21 +457,21 @@

			// When the record is updated
			if($this->id > 0) {
			// restore the server ID if the user is not admin and record is edited
			$tmp = $app->db->queryOneRecord("SELECT server_id, `web_folder`, `cgi`, `ssi`, `perl`, `ruby`, `python`, `suexec`, `errordocs`, `subdomain`, `ssl` FROM web_domain WHERE domain_id = ".intval($this->id));
			$this->dataRecord['web_folder'] = $tmp['web_folder']; // cannot be changed!

			// set the settings to current if not provided (or cleared due to limits)
			if($this->dataRecord['cgi'] == '-') $this->dataRecord['cgi'] = $tmp['cgi'];
			if($this->dataRecord['ssi'] == '-') $this->dataRecord['ssi'] = $tmp['ssi'];
			if($this->dataRecord['perl'] == '-') $this->dataRecord['perl'] = $tmp['perl'];
			if($this->dataRecord['ruby'] == '-') $this->dataRecord['ruby'] = $tmp['ruby'];
			if($this->dataRecord['python'] == '-') $this->dataRecord['python'] = $tmp['python'];
			if($this->dataRecord['suexec'] == '-') $this->dataRecord['suexec'] = $tmp['suexec'];
			if($this->dataRecord['errordocs'] == '-') $this->dataRecord['errordocs'] = $tmp['errordocs'];
			if($this->dataRecord['subdomain'] == '-') $this->dataRecord['subdomain'] = $tmp['subdomain'];
			if($this->dataRecord['ssl'] == '-') $this->dataRecord['ssl'] = $tmp['ssl'];

			// restore the server ID if the user is not admin and record is edited
			$tmp = $app->db->queryOneRecord("SELECT server_id, `web_folder`, `cgi`, `ssi`, `perl`, `ruby`, `python`, `suexec`, `errordocs`, `subdomain`, `ssl` FROM web_domain WHERE domain_id = ".$app->functions->intval($this->id));
			$this->dataRecord['web_folder'] = $tmp['web_folder']; // cannot be changed!

			// set the settings to current if not provided (or cleared due to limits)
			if($this->dataRecord['cgi'] == 'n') $this->dataRecord['cgi'] = $tmp['cgi'];
			if($this->dataRecord['ssi'] == 'n') $this->dataRecord['ssi'] = $tmp['ssi'];
			if($this->dataRecord['perl'] == 'n') $this->dataRecord['perl'] = $tmp['perl'];
			if($this->dataRecord['ruby'] == 'n') $this->dataRecord['ruby'] = $tmp['ruby'];
			if($this->dataRecord['python'] == 'n') $this->dataRecord['python'] = $tmp['python'];
			if($this->dataRecord['suexec'] == 'n') $this->dataRecord['suexec'] = $tmp['suexec'];
			if($this->dataRecord['errordocs'] == 'n') $this->dataRecord['errordocs'] = $tmp['errordocs'];
			if($this->dataRecord['subdomain'] == 'n') $this->dataRecord['subdomain'] = $tmp['subdomain'];
			if($this->dataRecord['ssl'] == 'n') $this->dataRecord['ssl'] = $tmp['ssl'];

			unset($tmp);
			// When the record is inserted
			} else {
			@@ -372,26 +484,108 @@
			}
			}
			}


			//* make sure that the domain is lowercase
			if(isset($this->dataRecord["domain"])) $this->dataRecord["domain"] = strtolower($this->dataRecord["domain"]);


			//* get the server config for this server
			$app->uses("getconf");
			$web_config = $app->getconf->get_server_config(intval(isset($this->dataRecord["server_id"]) ? $this->dataRecord["server_id"] : 0),'web');
			$web_config = $app->getconf->get_server_config($app->functions->intval(isset($this->dataRecord["server_id"]) ? $this->dataRecord["server_id"] : 0), 'web');
			//* Check for duplicate ssl certs per IP if SNI is disabled
			if(isset($this->dataRecord['ssl']) && $this->dataRecord['ssl'] == 'y' && $web_config['enable_sni'] != 'y') {
			$sql = "SELECT count(domain_id) as number FROM web_domain WHERE `ssl` = 'y' AND ip_address = '".$app->db->quote($this->dataRecord['ip_address'])."' and domain_id != ".$this->id;
			$tmp = $app->db->queryOneRecord($sql);
			if($tmp['number'] > 0) $app->tform->errorMessage .= $app->tform->lng("error_no_sni_txt");
			}


			// Check if pm.max_children >= pm.max_spare_servers >= pm.start_servers >= pm.min_spare_servers > 0
			if(isset($this->dataRecord['pm_max_children']) && $this->dataRecord['pm'] == 'dynamic') {
			if(intval($this->dataRecord['pm_max_children']) >= intval($this->dataRecord['pm_max_spare_servers']) && intval($this->dataRecord['pm_max_spare_servers']) >= intval($this->dataRecord['pm_start_servers']) && intval($this->dataRecord['pm_start_servers']) >= intval($this->dataRecord['pm_min_spare_servers']) && intval($this->dataRecord['pm_min_spare_servers']) > 0){

			if($app->functions->intval($this->dataRecord['pm_max_children'], true) >= $app->functions->intval($this->dataRecord['pm_max_spare_servers'], true) && $app->functions->intval($this->dataRecord['pm_max_spare_servers'], true) >= $app->functions->intval($this->dataRecord['pm_start_servers'], true) && $app->functions->intval($this->dataRecord['pm_start_servers'], true) >= $app->functions->intval($this->dataRecord['pm_min_spare_servers'], true) && $app->functions->intval($this->dataRecord['pm_min_spare_servers'], true) > 0){

			} else {
			$app->tform->errorMessage .= $app->tform->lng("error_php_fpm_pm_settings_txt").'<br>';
			}
			}

			// Check rewrite rules
			$server_type = $web_config['server_type'];

			if($server_type == 'nginx' && isset($this->dataRecord['rewrite_rules']) && trim($this->dataRecord['rewrite_rules']) != '') {
			$rewrite_rules = trim($this->dataRecord['rewrite_rules']);
			$rewrites_are_valid = true;
			// use this counter to make sure all curly brackets are properly closed
			$if_level = 0;
			// Make sure we only have Unix linebreaks
			$rewrite_rules = str_replace("\r\n", "\n", $rewrite_rules);
			$rewrite_rules = str_replace("\r", "\n", $rewrite_rules);
			$rewrite_rule_lines = explode("\n", $rewrite_rules);
			if(is_array($rewrite_rule_lines) && !empty($rewrite_rule_lines)){
			foreach($rewrite_rule_lines as $rewrite_rule_line){
			// ignore comments
			if(substr(ltrim($rewrite_rule_line), 0, 1) == '#') continue;
			// empty lines
			if(trim($rewrite_rule_line) == '') continue;
			// rewrite
			if(preg_match('@^\srewrite\s+(^/)?\S+(\$)?\s+\S+(\s+(last\|break\|redirect\|permanent\|))?\s;\s*$@', $rewrite_rule_line)) continue;
			// if
			if(preg_match('@^\sif\s+$\s\$\S+(\s+(\!?(=\|~\|~\))\s+(\S+\|\".+\"))?\s$\s\{\s$@', $rewrite_rule_line)){
			$if_level += 1;
			continue;
			}
			// if - check for files, directories, etc.
			if(preg_match('@^\sif\s+$\s\!?-(f\|d\|e\|x)\s+\S+\s$\s\{\s*$@', $rewrite_rule_line)){
			$if_level += 1;
			continue;
			}
			// break
			if(preg_match('@^\sbreak\s;\s*$@', $rewrite_rule_line)){
			continue;
			}
			// return code [ text ]
			if(preg_match('@^\sreturn\s+\d\d\d.;\s*$@', $rewrite_rule_line)) continue;
			// return code URL
			// return URL
			if(preg_match('@^\sreturn(\s+\d\d\d)?\s+(http\|https\|ftp)\://([a-zA-Z0-9\.\-]+(\:[a-zA-Z0-9\.&%\$\-]+)\@)((25[0-5]\|2[0-4][0-9]\|[0-1]{1}[0-9]{2}\|[1-9]{1}[0-9]{1}\|[1-9])\.(25[0-5]\|2[0-4][0-9]\|[0-1]{1}[0-9]{2}\|[1-9]{1}[0-9]{1}\|[1-9]\|0)\.(25[0-5]\|2[0-4][0-9]\|[0-1]{1}[0-9]{2}\|[1-9]{1}[0-9]{1}\|[1-9]\|0)\.(25[0-5]\|2[0-4][0-9]\|[0-1]{1}[0-9]{2}\|[1-9]{1}[0-9]{1}\|[0-9])\|localhost\|([a-zA-Z0-9\-]+\.)[a-zA-Z0-9\-]+\.(com\|edu\|gov\|int\|mil\|net\|org\|biz\|arpa\|info\|name\|pro\|aero\|coop\|museum\|[a-zA-Z]{2}))(\:[0-9]+)(/($\|[a-zA-Z0-9\.\,\?\'\\\+&%\$#\=~_\-]+))\s;\s$@', $rewrite_rule_line)) continue;
			// set
			if(preg_match('@^\sset\s+\$\S+\s+\S+\s;\s*$@', $rewrite_rule_line)) continue;
			// closing curly bracket
			if(trim($rewrite_rule_line) == '}'){
			$if_level -= 1;
			continue;
			}
			$rewrites_are_valid = false;
			break;
			}
			}

			if(!$rewrites_are_valid \|\| $if_level != 0){
			$app->tform->errorMessage .= $app->tform->lng("invalid_rewrite_rules_txt").'<br>';
			}
			}

			// Check custom PHP version
			if(isset($this->dataRecord['fastcgi_php_version']) && $this->dataRecord['fastcgi_php_version'] != '') {
			// Check php-fpm mode
			if($this->dataRecord['php'] == 'php-fpm'){
			$tmp = $app->db->queryOneRecord("SELECT * FROM server_php WHERE CONCAT(name,':',php_fpm_init_script,':',php_fpm_ini_dir,':',php_fpm_pool_dir) = '".$app->db->quote($this->dataRecord['fastcgi_php_version'])."'");
			if(is_array($tmp)) {
			$this->dataRecord['fastcgi_php_version'] = $tmp['name'].':'.$tmp['php_fpm_init_script'].':'.$tmp['php_fpm_ini_dir'].':'.$tmp['php_fpm_pool_dir'];
			} else {
			$this->dataRecord['fastcgi_php_version'] = '';
			}
			unset($tmp);
			// Check fast-cgi mode
			} elseif($this->dataRecord['php'] == 'fast-cgi') {
			$tmp = $app->db->queryOneRecord("SELECT * FROM server_php WHERE CONCAT(name,':',php_fastcgi_binary,':',php_fastcgi_ini_dir) = '".$app->db->quote($this->dataRecord['fastcgi_php_version'])."'");
			if(is_array($tmp)) {
			$this->dataRecord['fastcgi_php_version'] = $tmp['name'].':'.$tmp['php_fastcgi_binary'].':'.$tmp['php_fastcgi_ini_dir'];
			} else {
			$this->dataRecord['fastcgi_php_version'] = '';
			}
			unset($tmp);
			} else {
			// Other PHP modes do not have custom versions, so we force the value to be empty
			$this->dataRecord['fastcgi_php_version'] = '';
			}
			}

			@@ -404,19 +598,19 @@
			// Get configuration for the web system
			$app->uses("getconf");
			$web_rec = $app->tform->getDataRecord($this->id);
			$web_config = $app->getconf->get_server_config(intval($web_rec["server_id"]),'web');
			var_dump($this->parent_domain_record, $web_rec);
			$web_config = $app->getconf->get_server_config($app->functions->intval($web_rec["server_id"]), 'web');
			//var_dump($this->parent_domain_record, $web_rec);
			// Set the values for document_root, system_user and system_group
			$system_user = $app->db->quote($this->parent_domain_record['system_user']);
			$system_group = $app->db->quote($this->parent_domain_record['system_group']);
			$document_root = $app->db->quote($this->parent_domain_record['document_root']);
			$php_open_basedir = str_replace("[website_path]/web",$document_root.'/'.$web_rec['web_folder'],$web_config["php_open_basedir"]);
			$php_open_basedir = str_replace("[website_domain]/web",$web_rec['domain'].'/'.$web_rec['web_folder'],$php_open_basedir);
			$php_open_basedir = str_replace("[website_path]",$document_root,$php_open_basedir);
			$php_open_basedir = $app->db->quote(str_replace("[website_domain]",$web_rec['domain'],$php_open_basedir));
			$php_open_basedir = str_replace("[website_path]/web", $document_root.'/'.$web_rec['web_folder'], $web_config["php_open_basedir"]);
			$php_open_basedir = str_replace("[website_domain]/web", $web_rec['domain'].'/'.$web_rec['web_folder'], $php_open_basedir);
			$php_open_basedir = str_replace("[website_path]", $document_root, $php_open_basedir);
			$php_open_basedir = $app->db->quote(str_replace("[website_domain]", $web_rec['domain'], $php_open_basedir));
			$htaccess_allow_override = $app->db->quote($this->parent_domain_record['allow_override']);

			$sql = "UPDATE web_domain SET sys_groupid = ".intval($this->parent_domain_record['sys_groupid']).",system_user = '$system_user', system_group = '$system_group', document_root = '$document_root', allow_override = '$htaccess_allow_override', php_open_basedir = '$php_open_basedir' WHERE domain_id = ".$this->id;
			$sql = "UPDATE web_domain SET sys_groupid = ".$app->functions->intval($this->parent_domain_record['sys_groupid']).",system_user = '$system_user', system_group = '$system_group', document_root = '$document_root', allow_override = '$htaccess_allow_override', php_open_basedir = '$php_open_basedir' WHERE domain_id = ".$this->id;
			$app->db->query($sql);
			}

			@@ -431,7 +625,7 @@
			if($this->dataRecord['ssl_organisation_unit'] == '') $app->tform->errorMessage .= $app->tform->lng('error_ssl_organisation_unit_empty').'<br />';
			if($this->dataRecord['ssl_country'] == '') $app->tform->errorMessage .= $app->tform->lng('error_ssl_country_empty').'<br />';
			}


			if(isset($this->dataRecord['ssl_action']) && $this->dataRecord['ssl_action'] == 'save') {
			if(trim($this->dataRecord['ssl_cert']) == '') $app->tform->errorMessage .= $app->tform->lng('error_ssl_cert_empty').'<br />';
			}
			@@ -440,24 +634,27 @@

			function onAfterUpdate() {
			global $app, $conf;

			//* Update settings when parent domain gets changed
			if(isset($this->dataRecord["parent_domain_id"]) && $this->dataRecord["parent_domain_id"] != $this->oldDataRecord["parent_domain_id"]) {
			// Get configuration for the web system
			$app->uses("getconf");
			$web_rec = $app->tform->getDataRecord($this->id);
			$web_config = $app->getconf->get_server_config($app->functions->intval($web_rec["server_id"]), 'web');

			// Get configuration for the web system
			$app->uses("getconf");
			$web_rec = $app->tform->getDataRecord($this->id);
			$web_config = $app->getconf->get_server_config(intval($web_rec["server_id"]),'web');
			// Set the values for document_root, system_user and system_group
			$system_user = $app->db->quote($this->parent_domain_record['system_user']);
			$system_group = $app->db->quote($this->parent_domain_record['system_group']);
			$document_root = $app->db->quote($this->parent_domain_record['document_root']);
			$php_open_basedir = str_replace("[website_path]/web", $document_root.'/'.$web_rec['web_folder'], $web_config["php_open_basedir"]);
			$php_open_basedir = str_replace("[website_domain]/web", $web_rec['domain'].'/'.$web_rec['web_folder'], $php_open_basedir);
			$php_open_basedir = str_replace("[website_path]", $document_root, $php_open_basedir);
			$php_open_basedir = $app->db->quote(str_replace("[website_domain]", $web_rec['domain'], $php_open_basedir));
			$htaccess_allow_override = $app->db->quote($this->parent_domain_record['allow_override']);

			// Set the values for document_root, system_user and system_group
			$system_user = $app->db->quote($this->parent_domain_record['system_user']);
			$system_group = $app->db->quote($this->parent_domain_record['system_group']);
			$document_root = $app->db->quote($this->parent_domain_record['document_root']);
			$php_open_basedir = str_replace("[website_path]/web",$document_root.'/'.$web_rec['web_folder'],$web_config["php_open_basedir"]);
			$php_open_basedir = str_replace("[website_domain]/web",$web_rec['domain'].'/'.$web_rec['web_folder'],$php_open_basedir);
			$php_open_basedir = str_replace("[website_path]",$document_root,$php_open_basedir);
			$php_open_basedir = $app->db->quote(str_replace("[website_domain]",$web_rec['domain'],$php_open_basedir));
			$htaccess_allow_override = $app->db->quote($this->parent_domain_record['allow_override']);

			$sql = "UPDATE web_domain SET sys_groupid = ".intval($this->parent_domain_record['sys_groupid']).",system_user = '$system_user', system_group = '$system_group', document_root = '$document_root', allow_override = '$htaccess_allow_override', php_open_basedir = '$php_open_basedir' WHERE domain_id = ".$this->id;
			$app->db->query($sql);
			$sql = "UPDATE web_domain SET sys_groupid = ".$app->functions->intval($this->parent_domain_record['sys_groupid']).",system_user = '$system_user', system_group = '$system_group', document_root = '$document_root', allow_override = '$htaccess_allow_override', php_open_basedir = '$php_open_basedir' WHERE domain_id = ".$this->id;
			$app->db->query($sql);
			}
			}

			}
			@@ -465,4 +662,4 @@
			$page = new page_action;
			$page->onLoad();

			?>
			?>