KXStudio
/
Website
mirror of https://github.com/KXStudio/Website
1
0
Fork 0
Code Releases 0 Activity
KXStudio Website https://kx.studio/
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
205 Commits
2 Branches
188MB
Tree: 00eb9b18a9
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '00eb9b18a9'
${ noResults }
Website/News/includes/class/SQL.php

SQL.php 19KB
Raw Normal View History

Import news
9 years ago
 123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441442443444445446447448449450451452453454455456457458459460461462463464465466467468469470471472473 
  1. <?php

  2.     /**

  3.      * Class: SQL

  4.      * Contains the database settings and functions for interacting with the SQL database.

  5.      */

  6. 

  7.     # File: Query

  8.     # See Also:

  9.     #     <Query>

  10.     require_once INCLUDES_DIR."/class/Query.php";

  11. 

  12.     # File: QueryBuilder

  13.     # See Also:

  14.     #     <QueryBuilder>

  15.     require_once INCLUDES_DIR."/class/QueryBuilder.php";

  16. 

  17.     class SQL {

  18.         # Array: $debug

  19.         # Holds debug information for SQL queries.

  20.         public $debug = array();

  21. 

  22.         # Integer: $queries

  23.         # Number of queries it takes to load the page.

  24.         public $queries = 0;

  25. 

  26.         # Variable: $db

  27.         # Holds the currently running database.

  28.         public $db;

  29. 

  30.         # Variable: $error

  31.         # Holds an error message from the last attempted query.

  32.         public $error = "";

  33. 

  34.         # Boolean: $silence_errors

  35.         # Ignore errors?

  36.         public $silence_errors = false;

  37. 

  38.         /**

  39.          * Function: __construct

  40.          * The class constructor is private so there is only one connection.

  41.          *

  42.          * Parameters:

  43.          *     $settings - Settings to load instead of the config.

  44.          */

  45.         private function __construct($settings = array()) {

  46.             if (!UPGRADING and !INSTALLING and !isset(Config::current()->sql))

  47.                 error(__("Error"), __("Database configuration is not set. Please run the upgrader."));

  48. 

  49.             $database = !UPGRADING ?

  50.                             oneof(@Config::current()->sql, array()) :

  51.                             Config::get("sql") ;

  52. 

  53.             if (is_array($settings))

  54.                 fallback($database, $settings);

  55.             elseif ($settings === true)

  56.                 $this->silence_errors = true;

  57. 

  58.             if (!empty($database))

  59.                 foreach ($database as $setting => $value)

  60.                     $this->$setting = $value;

  61. 

  62.             $this->connected = false;

  63. 

  64.             # We really don't need PDO anymore, since we have the two we supported with it hardcoded (kinda).

  65.             # Keeping this here for when/if we decide to add support for more database engines, like Postgres and MSSQL.

  66.             # if (class_exists("PDO") and (in_array("mysql", PDO::getAvailableDrivers()) or in_array("sqlite", PDO::getAvailableDrivers())))

  67.             #     return $this->method = "pdo";

  68. 

  69.             if (isset($this->adapter)) {

  70.                 if ($this->adapter == "mysql" and class_exists("MySQLi"))

  71.                     $this->method = "mysqli";

  72.                 elseif ($this->adapter == "mysql" and function_exists("mysql_connect"))

  73.                     $this->method = "mysql";

  74.                 elseif (class_exists("PDO") and

  75.                         ($this->adapter == "sqlite" and in_array("sqlite", PDO::getAvailableDrivers()) or

  76.                          $this->adapter == "pgsql" and in_array("pgsql", PDO::getAvailableDrivers())))

  77.                     $this->method = "pdo";

  78.             } else

  79.                 if (class_exists("MySQLi"))

  80.                     $this->method = "mysqli";

  81.                 elseif (function_exists("mysql_connect"))

  82.                     $this->method = "mysql";

  83.                 elseif (class_exists("PDO") and in_array("mysql", PDO::getAvailableDrivers()))

  84.                     $this->method = "pdo";

  85.         }

  86. 

  87.         /**

  88.          * Function: set

  89.          * Sets a variable's value.

  90.          *

  91.          * Parameters:

  92.          *     $setting - The setting name.

  93.          *     $value - The new value. Can be boolean, numeric, an array, a string, etc.

  94.          *     $overwrite - If the setting exists and is the same value, should it be overwritten?

  95.          */

  96.         public function set($setting, $value, $overwrite = true) {

  97.             if (isset($this->$setting) and $this->$setting == $value and !$overwrite and !UPGRADING)

  98.                 return false;

  99. 

  100.             if (!UPGRADING)

  101.                 $config = Config::current();

  102. 

  103.             $database = (!UPGRADING) ? fallback($config->sql, array()) : Config::get("sql") ;

  104. 

  105.             # Add the setting

  106.             $database[$setting] = $this->$setting = $value;

  107. 

  108.             return (!UPGRADING) ? $config->set("sql", $database) : Config::set("sql", $database) ;

  109.         }

  110. 

  111.         /**

  112.          * Function: connect

  113.          * Connects to the SQL database.

  114.          *

  115.          * Parameters:

  116.          *     $checking - Return a boolean of whether or not it could connect, instead of showing an error.

  117.          */

  118.         public function connect($checking = false) {

  119.             if ($this->connected)

  120.                 return true;

  121. 

  122.             if (!isset($this->database))

  123.                 self::__construct();

  124. 

  125.             if (UPGRADING)

  126.                 $checking = true;

  127. 

  128.             switch($this->method) {

  129.                 case "pdo":

  130.                     try {

  131.                         if (empty($this->database))

  132.                             throw new PDOException("No database specified.");

  133. 

  134.                         if ($this->adapter == "sqlite") {

  135.                             $this->db = new PDO("sqlite:".$this->database, null, null, array(PDO::ATTR_PERSISTENT => true));

  136.                             $this->db->sqliteCreateFunction("YEAR", array($this, "year_from_datetime"), 1);

  137.                             $this->db->sqliteCreateFunction("MONTH", array($this, "month_from_datetime"), 1);

  138.                             $this->db->sqliteCreateFunction("DAY", array($this, "day_from_datetime"), 1);

  139.                             $this->db->sqliteCreateFunction("HOUR", array($this, "hour_from_datetime"), 1);

  140.                             $this->db->sqliteCreateFunction("MINUTE", array($this, "minute_from_datetime"), 1);

  141.                             $this->db->sqliteCreateFunction("SECOND", array($this, "second_from_datetime"), 1);

  142.                         } else

  143.                             $this->db = new PDO($this->adapter.":host=".$this->host.";".((isset($this->port)) ? "port=".$this->port.";" : "")."dbname=".$this->database,

  144.                                                 $this->username,

  145.                                                 $this->password,

  146.                                                 array(PDO::ATTR_PERSISTENT => true));

  147. 

  148.                         $this->db->setAttribute(PDO::ATTR_ERRMODE, PDO::ERRMODE_EXCEPTION);

  149.                     } catch (PDOException $error) {

  150.                         $this->error = $error->getMessage();

  151.                         return ($checking) ? false : error(__("Database Error"), $this->error) ;

  152.                     }

  153.                     break;

  154.                 case "mysqli":

  155.                     $this->db = @new MySQLi($this->host, $this->username, $this->password, $this->database);

  156.                     $this->error = mysqli_connect_error();

  157. 

  158.                     if (mysqli_connect_errno())

  159.                         return ($checking) ? false : error(__("Database Error"), $this->error) ;

  160. 

  161.                     break;

  162.                 case "mysql":

  163.                     $this->db = @mysql_connect($this->host, $this->username, $this->password);

  164.                     $this->error = mysql_error();

  165. 

  166.                     if (!$this->db or !@mysql_select_db($this->database))

  167.                         return ($checking) ? false : error(__("Database Error"), $this->error) ;

  168. 

  169.                     break;

  170.             }

  171. 

  172.             if ($this->adapter == "mysql")

  173.                 new Query($this, "SET NAMES 'utf8'"); # Note: This doesn't increase the query debug/count.

  174. 

  175.             return $this->connected = true;

  176.         }

  177. 

  178.         /**

  179.          * Function: query

  180.          * Executes a query and increases <SQL->$queries>.

  181.          * If the query results in an error, it will die and show the error.

  182.          *

  183.          * Parameters:

  184.          *     $query - Query to execute.

  185.          *     $params - An associative array of parameters used in the query.

  186.          *     $throw_exceptions - Should an exception be thrown if the query fails?

  187.          */

  188.         public function query($query, $params = array(), $throw_exceptions = false) {

  189.             if (!$this->connected)

  190.                 return false;

  191. 

  192.             # Ensure that every param in $params exists in the query.

  193.             # If it doesn't, remove it from $params.

  194.             foreach ($params as $name => $val)

  195.                 if (!strpos($query, $name))

  196.                     unset($params[$name]);

  197. 

  198.             $query = str_replace("__", $this->prefix, $query);

  199. 

  200.             if ($this->adapter == "sqlite")

  201.                 $query = str_ireplace(" DEFAULT CHARSET=utf8", "", str_ireplace("AUTO_INCREMENT", "AUTOINCREMENT", $query));

  202. 

  203.             if ($this->adapter == "pgsql")

  204.                 $query = str_ireplace(array("CREATE TABLE IF NOT EXISTS",

  205.                                             "INTEGER PRIMARY KEY AUTO_INCREMENT",

  206.                                             ") DEFAULT CHARSET=utf8",

  207.                                             "TINYINT",

  208.                                             "DATETIME",

  209.                                             "DEFAULT '0000-00-00 00:00:00'",

  210.                                             "LONGTEXT",

  211.                                             "REPLACE INTO"),

  212.                                       array("CREATE TABLE",

  213.                                             "SERIAL PRIMARY KEY",

  214.                                             ")",

  215.                                             "SMALLINT",

  216.                                             "TIMESTAMP",

  217.                                             "",

  218.                                             "TEXT",

  219.                                             "INSERT INTO"),

  220.                                       $query);

  221. 

  222.             $query = new Query($this, $query, $params, $throw_exceptions);

  223. 

  224.             return (!$query->query and UPGRADING) ? false : $query ;

  225.         }

  226. 

  227.         /**

  228.          * Function: count

  229.          * Performs a counting query and returns the number of matching rows.

  230.          *

  231.          * Parameters:

  232.          *     $tables - An array (or string) of tables to count results on.

  233.          *     $conds - An array (or string) of conditions to match.

  234.          *     $params - An associative array of parameters used in the query.

  235.          *     $throw_exceptions - Should exceptions be thrown on error?

  236.          */

  237.         public function count($tables, $conds = null, $params = array(), $throw_exceptions = false) {

  238.             $query = $this->query(QueryBuilder::build_count($tables, $conds, $params), $params, $throw_exceptions);

  239.             return ($query->query) ? $query->fetchColumn() : false ;

  240.         }

  241. 

  242.         /**

  243.          * Function: select

  244.          * Performs a SELECT with given criteria and returns the query result object.

  245.          *

  246.          * Parameters:

  247.          *     $tables - An array (or string) of tables to grab results from.

  248.          *     $fields - Fields to select.

  249.          *     $conds - An array (or string) of conditions to match.

  250.          *     $order - ORDER BY statement. Can be an array.

  251.          *     $params - An associative array of parameters used in the query.

  252.          *     $limit - Limit for results.

  253.          *     $offset - Offset for the select statement.

  254.          *     $group - GROUP BY statement. Can be an array.

  255.          *     $left_join - An array of additional LEFT JOINs.

  256.          *     $throw_exceptions - Should exceptions be thrown on error?

  257.          */

  258.         public function select($tables, $fields = "*", $conds = null, $order = null, $params = array(), $limit = null, $offset = null, $group = null, $left_join = array(), $throw_exceptions = false) {

  259.             return $this->query(QueryBuilder::build_select($tables, $fields, $conds, $order, $limit, $offset, $group, $left_join, $params), $params, $throw_exceptions);

  260.         }

  261. 

  262.         /**

  263.          * Function: insert

  264.          * Performs an INSERT with given data.

  265.          *

  266.          * Parameters:

  267.          *     $table - Table to insert to.

  268.          *     $data - An associative array of data to insert.

  269.          *     $params - An associative array of parameters used in the query.

  270.          *     $throw_exceptions - Should exceptions be thrown on error?

  271.          */

  272.         public function insert($table, $data, $params = array(), $throw_exceptions = false) {

  273.             return $this->query(QueryBuilder::build_insert($table, $data, $params), $params, $throw_exceptions);

  274.         }

  275. 

  276.         /**

  277.          * Function: replace

  278.          * Performs either an INSERT or an UPDATE depending on

  279.          * whether a row exists with the specified keys matching

  280.          * their values in the data.

  281.          *

  282.          * Parameters:

  283.          *     $table - Table to update or insert into.

  284.          *     $keys - Columns to match on.

  285.          *     $data - Data for the insert and value matches for the keys.

  286.          *     $params - An associative array of parameters to be used in the query.

  287.          *     $throw_exceptions - Should exceptions be thrown on error?

  288.          */

  289.         public function replace($table, $keys, $data, $params = array(), $throw_exceptions = false) {

  290.             $match = array();

  291.             foreach ((array) $keys as $key)

  292.                 $match[$key] = $data[$key];

  293. 

  294.             if ($this->count($table, $match, $params))

  295.                 $this->update($table, $match, $data, $params, $throw_exceptions);

  296.             else

  297.                 $this->insert($table, $data, $params, $throw_exceptions);

  298.         }

  299. 

  300.         /**

  301.          * Function: update

  302.          * Performs an UDATE with given criteria and data.

  303.          *

  304.          * Parameters:

  305.          *     $table - Table to update.

  306.          *     $conds - Rows to update.

  307.          *     $data - An associative array of data to update.

  308.          *     $params - An associative array of parameters used in the query.

  309.          *     $throw_exceptions - Should exceptions be thrown on error?

  310.          */

  311.         public function update($table, $conds, $data, $params = array(), $throw_exceptions = false) {

  312.             return $this->query(QueryBuilder::build_update($table, $conds, $data, $params), $params, $throw_exceptions);

  313.         }

  314. 

  315.         /**

  316.          * Function: delete

  317.          * Performs a DELETE with given criteria.

  318.          *

  319.          * Parameters:

  320.          *     $table - Table to delete from.

  321.          *     $conds - Rows to delete..

  322.          *     $params - An associative array of parameters used in the query.

  323.          *     $throw_exceptions - Should exceptions be thrown on error?

  324.          */

  325.         public function delete($table, $conds, $params = array(), $throw_exceptions = false) {

  326.             return $this->query(QueryBuilder::build_delete($table, $conds, $params), $params, $throw_exceptions);

  327.         }

  328. 

  329.         /**

  330.          * Function: latest

  331.          * Returns the last inserted sequential value.

  332.          * Both function arguments are only relevant for PostgreSQL.

  333.          *

  334.          * Parameters:

  335.          *     $table - Table to get the latest value from.

  336.          *     $seq - Name of the sequence.

  337.          */

  338.         public function latest($table, $seq = "id_seq") {

  339.             if (!isset($this->db))

  340.                 $this->connect();

  341. 

  342.             switch($this->method) {

  343.                 case "pdo":

  344.                     return $this->db->lastInsertId($this->prefix.$table."_".$seq);

  345.                     break;

  346.                 case "mysqli":

  347.                     return $this->db->insert_id;

  348.                     break;

  349.                 case "mysql":

  350.                     return @mysql_insert_id();

  351.                     break;

  352.             }

  353.         }

  354. 

  355.         /**

  356.          * Function: escape

  357.          * Escapes a string, escaping things like $1 and C:\foo\bar so that they don't get borked by the preg_replace.

  358.          *

  359.          * This also handles calling the SQL connection method's "escape_string" functions.

  360.          *

  361.          * Parameters:

  362.          *     $string - String to escape.

  363.          *     $quotes - Auto-wrap the string in quotes (@'@)?

  364.          */

  365.         public function escape($string, $quotes = true) {

  366.             if (!isset($this->db))

  367.                 $this->connect();

  368. 

  369.             switch($this->method) {

  370.                 case "pdo":

  371.                     $string = ltrim(rtrim($this->db->quote($string), "'"), "'");

  372.                     break;

  373.                 case "mysqli":

  374.                     $string = $this->db->escape_string($string);

  375.                     break;

  376.                 case "mysql":

  377.                     $string = mysql_real_escape_string($string);

  378.                     break;

  379.             }

  380. 

  381.             # I don't think this ever worked how it intended.

  382.             # I've tested PDO, MySQLi, and MySQL and they all

  383.             # properly escape with this disabled, but get double

  384.             # escaped with this uncommented:

  385.             # $string = str_replace('\\', '\\\\', $string);

  386.             $string = str_replace('$', '\$', $string);

  387. 

  388.             if ($quotes and !is_numeric($string))

  389.                 $string = "'".$string."'";

  390. 

  391.             return $string;

  392.         }

  393. 

  394.         /**

  395.          * Function: year_from_datetime

  396.          * Returns the year of a datetime.

  397.          *

  398.          * Parameters:

  399.          *     $datetime - DATETIME value.

  400.          */

  401.         public function year_from_datetime($datetime) {

  402.             return when("Y", $datetime);

  403.         }

  404. 

  405.         /**

  406.          * Function: month_from_datetime

  407.          * Returns the month of a datetime.

  408.          *

  409.          * Parameters:

  410.          *     $datetime - DATETIME value.

  411.          */

  412.         public function month_from_datetime($datetime) {

  413.             return when("m", $datetime);

  414.         }

  415. 

  416.         /**

  417.          * Function: day_from_datetime

  418.          * Returns the day of a datetime.

  419.          *

  420.          * Parameters:

  421.          *     $datetime - DATETIME value.

  422.          */

  423.         public function day_from_datetime($datetime) {

  424.             return when("d", $datetime);

  425.         }

  426. 

  427.         /**

  428.          * Function: hour_from_datetime

  429.          * Returns the hour of a datetime.

  430.          *

  431.          * Parameters:

  432.          *     $datetime - DATETIME value.

  433.          */

  434.         public function hour_from_datetime($datetime) {

  435.             return when("g", $datetime);

  436.         }

  437. 

  438.         /**

  439.          * Function: minute_from_datetime

  440.          * Returns the minute of a datetime.

  441.          *

  442.          * Parameters:

  443.          *     $datetime - DATETIME value.

  444.          */

  445.         public function minute_from_datetime($datetime) {

  446.             return when("i", $datetime);

  447.         }

  448. 

  449.         /**

  450.          * Function: second_from_datetime

  451.          * Returns the second of a datetime.

  452.          *

  453.          * Parameters:

  454.          *     $datetime - DATETIME value.

  455.          */

  456.         public function second_from_datetime($datetime) {

  457.             return when("s", $datetime);

  458.         }

  459. 

  460.         /**

  461.          * Function: current

  462.          * Returns a singleton reference to the current connection.

  463.          */

  464.         public static function & current($settings = false) {

  465.             if ($settings) {

  466.                 static $loaded_settings = null;

  467.                 return $loaded_settings = new self($settings);

  468.             } else {

  469.                 static $instance = null;

  470.                 return $instance = (empty($instance)) ? new self() : $instance ;

  471.             }

  472.         }

  473.     }