Disable direct access to installer

installer/.htaccess

@@ -0,0 +1 @@
+Deny from all

installer/index.php

@@ -1,5 +1,11 @@
 <?php
 
+if(strpos($_SERVER['REQUEST_URI'], 'installer/') !== false){
+	die('You cannot directly access the installer files.');
+}
+
+/*-----------------------------------------------------------------------------*/
+
 define('INSTALLER_MAX_STEP', 6);
 
 define('INSTALLER_TYPE_CREATE', 0);
@@ -26,6 +32,8 @@ $installerStepMapping = array(
 	7 => 6,
 );
 
+/*-----------------------------------------------------------------------------*/
+
 function installer_reset()
 {
 	global $_SESSION;
@@ -78,6 +86,8 @@ if(!isset($_SESSION['installer'])){
 	installer_reset();
 }
 
+/*-----------------------------------------------------------------------------*/
+
 $step = (isset($_GET['step']) && is_numeric($_GET['step'])) ? intval($_GET['step']) : 0;
 
 echo '<h1>Installation of WebMUM</h1>';

installer/step0.php

@@ -1,7 +1,14 @@
 <?php
 
+if(strpos($_SERVER['REQUEST_URI'], 'installer/') !== false){
+	die('You cannot directly access the installer files.');
+}
+
+/*-----------------------------------------------------------------------------*/
+
 $thisStep = 0;
 
+/*-----------------------------------------------------------------------------*/
 
 $requirements = array();
 $numberOfRequirements = 5;
@@ -21,6 +28,7 @@ if(file_exists('config') && file_exists('config/config.php.example')){
 	$requirements[] = 'config_example';
 }
 
+/*-----------------------------------------------------------------------------*/
 
 if(isset($_GET['go']) && $_GET['go'] == 'next'){
 	if(count($requirements) === $numberOfRequirements){

installer/step1.php

@@ -1,5 +1,11 @@
 <?php
 
+if(strpos($_SERVER['REQUEST_URI'], 'installer/') !== false){
+	die('You cannot directly access the installer files.');
+}
+
+/*-----------------------------------------------------------------------------*/
+
 $thisStep = 1;
 
 $error = null;

installer/step2.php

@@ -1,5 +1,11 @@
 <?php
 
+if(strpos($_SERVER['REQUEST_URI'], 'installer/') !== false){
+	die('You cannot directly access the installer files.');
+}
+
+/*-----------------------------------------------------------------------------*/
+
 $thisStep = 2;
 
 /*-----------------------------------------------------------------------------*/

installer/step3.php

@@ -1,5 +1,11 @@
 <?php
 
+if(strpos($_SERVER['REQUEST_URI'], 'installer/') !== false){
+	die('You cannot directly access the installer files.');
+}
+
+/*-----------------------------------------------------------------------------*/
+
 $thisStep = 3;
 
 if($_SESSION['installer']['lastStep'] > $thisStep){

installer/step4.php

@@ -1,5 +1,11 @@
 <?php
 
+if(strpos($_SERVER['REQUEST_URI'], 'installer/') !== false){
+	die('You cannot directly access the installer files.');
+}
+
+/*-----------------------------------------------------------------------------*/
+
 $thisStep = 4;
 
 $error = null;

installer/step5.php

@@ -1,5 +1,11 @@
 <?php
 
+if(strpos($_SERVER['REQUEST_URI'], 'installer/') !== false){
+	die('You cannot directly access the installer files.');
+}
+
+/*-----------------------------------------------------------------------------*/
+
 $thisStep = 5;
 
 $error = null;

installer/step6.php

@@ -1,5 +1,11 @@
 <?php
 
+if(strpos($_SERVER['REQUEST_URI'], 'installer/') !== false){
+	die('You cannot directly access the installer files.');
+}
+
+/*-----------------------------------------------------------------------------*/
+
 $thisStep = 6;
 
 $error = null;

installer/step7.php

@@ -1,5 +1,11 @@
 <?php
 
+if(strpos($_SERVER['REQUEST_URI'], 'installer/') !== false){
+	die('You cannot directly access the installer files.');
+}
+
+/*-----------------------------------------------------------------------------*/
+
 $thisStep = 7;
 
 $error = '';