wallabag/inc/poche/Database.class.php

253 lines
8.2 KiB
PHP
Raw Normal View History

<?php
/**
* poche, a read it later open source system
*
* @category poche
* @author Nicolas Lœuillet <support@inthepoche.com>
* @copyright 2013
* @license http://www.wtfpl.net/ see COPYING file
*/
2013-08-07 12:24:07 +00:00
class Database {
var $handle;
2013-08-07 12:38:58 +00:00
function __construct()
{
switch (STORAGE) {
case 'sqlite':
$db_path = 'sqlite:' . STORAGE_SQLITE;
$this->handle = new PDO($db_path);
break;
case 'mysql':
$db_path = 'mysql:host=' . STORAGE_SERVER . ';dbname=' . STORAGE_DB;
$this->handle = new PDO($db_path, STORAGE_USER, STORAGE_PASSWORD);
break;
case 'postgres':
$db_path = 'pgsql:host=' . STORAGE_SERVER . ';dbname=' . STORAGE_DB;
$this->handle = new PDO($db_path, STORAGE_USER, STORAGE_PASSWORD);
break;
}
$this->handle->setAttribute(PDO::ATTR_ERRMODE, PDO::ERRMODE_EXCEPTION);
2013-08-07 13:46:17 +00:00
Tools::logm('storage type ' . STORAGE);
}
private function getHandle() {
return $this->handle;
}
2013-05-31 20:55:52 +00:00
public function isInstalled() {
2013-08-07 17:14:28 +00:00
$sql = "SELECT username FROM users";
$query = $this->executeQuery($sql, array());
$hasAdmin = count($query->fetchAll());
2013-05-31 20:55:52 +00:00
2013-08-07 17:14:28 +00:00
if ($hasAdmin == 0)
2013-05-31 20:55:52 +00:00
return FALSE;
return TRUE;
}
public function install($login, $password) {
2013-08-07 17:14:28 +00:00
$sql = 'INSERT INTO users ( username, password, name, email) VALUES (?, ?, ?, ?)';
$params = array($login, $password, $login, ' ');
$query = $this->executeQuery($sql, $params);
$sequence = '';
if (STORAGE == 'postgres') {
$sequence = 'users_id_seq';
}
$id_user = intval($this->getLastId($sequence));
$sql = 'INSERT INTO users_config ( user_id, name, value ) VALUES (?, ?, ?)';
2013-09-20 08:21:39 +00:00
$params = array($id_user, 'pager', PAGINATION);
2013-08-07 17:14:28 +00:00
$query = $this->executeQuery($sql, $params);
$sql = 'INSERT INTO users_config ( user_id, name, value ) VALUES (?, ?, ?)';
2013-09-20 08:21:39 +00:00
$params = array($id_user, 'language', LANG);
$query = $this->executeQuery($sql, $params);
$sql = 'INSERT INTO users_config ( user_id, name, value ) VALUES (?, ?, ?)';
$params = array($id_user, 'theme', DEFAULT_THEME);
2013-08-06 12:18:03 +00:00
$query = $this->executeQuery($sql, $params);
2013-05-31 20:55:52 +00:00
2013-08-06 12:18:03 +00:00
return TRUE;
}
2013-05-31 20:55:52 +00:00
2013-08-06 12:18:03 +00:00
private function getConfigUser($id) {
$sql = "SELECT * FROM users_config WHERE user_id = ?";
$query = $this->executeQuery($sql, array($id));
$result = $query->fetchAll();
$user_config = array();
foreach ($result as $key => $value) {
$user_config[$value['name']] = $value['value'];
2013-05-31 20:55:52 +00:00
}
2013-08-06 12:18:03 +00:00
return $user_config;
2013-05-31 20:55:52 +00:00
}
2013-10-20 21:28:45 +00:00
public function userExists($username) {
$sql = "SELECT * FROM users WHERE username=?";
$query = $this->executeQuery($sql, array($username));
$login = $query->fetchAll();
if (isset($login[0])) {
return true;
} else {
return false;
}
}
2013-08-06 12:18:03 +00:00
public function login($username, $password) {
2013-08-06 13:51:48 +00:00
$sql = "SELECT * FROM users WHERE username=? AND password=?";
$query = $this->executeQuery($sql, array($username, $password));
$login = $query->fetchAll();
2013-05-31 20:55:52 +00:00
2013-08-06 12:18:03 +00:00
$user = array();
if (isset($login[0])) {
$user['id'] = $login[0]['id'];
$user['username'] = $login[0]['username'];
$user['password'] = $login[0]['password'];
$user['name'] = $login[0]['name'];
$user['email'] = $login[0]['email'];
$user['config'] = $this->getConfigUser($login[0]['id']);
}
2013-05-31 20:55:52 +00:00
2013-08-06 12:18:03 +00:00
return $user;
2013-05-31 20:55:52 +00:00
}
2013-09-20 08:21:39 +00:00
public function updatePassword($userId, $password)
{
2013-08-06 13:51:48 +00:00
$sql_update = "UPDATE users SET password=? WHERE id=?";
2013-10-07 12:56:21 +00:00
$params_update = array($password, $userId);
$query = $this->executeQuery($sql_update, $params_update);
2013-09-20 08:21:39 +00:00
}
public function updateUserConfig($userId, $key, $value) {
$config = $this->getConfigUser($userId);
if (!isset ($user_config[$key])) {
$sql = "INSERT INTO users_config (`value`, `user_id`, `name`) VALUES (?, ?, ?)";
}
else {
$sql = "UPDATE users_config SET `value`=? WHERE `user_id`=? AND `name`=?";
}
$params = array($value, $userId, $key);
$query = $this->executeQuery($sql, $params);
}
private function executeQuery($sql, $params) {
try
{
$query = $this->getHandle()->prepare($sql);
$query->execute($params);
return $query;
}
catch (Exception $e)
{
2013-08-04 18:58:31 +00:00
Tools::logm('execute query error : '.$e->getMessage());
2013-08-07 12:24:07 +00:00
return FALSE;
}
}
2013-08-06 13:51:48 +00:00
public function retrieveAll($user_id) {
$sql = "SELECT * FROM entries WHERE user_id=? ORDER BY id";
$query = $this->executeQuery($sql, array($user_id));
$entries = $query->fetchAll();
return $entries;
}
2013-08-06 13:51:48 +00:00
public function retrieveOneById($id, $user_id) {
$entry = NULL;
2013-08-06 13:51:48 +00:00
$sql = "SELECT * FROM entries WHERE id=? AND user_id=?";
$params = array(intval($id), $user_id);
$query = $this->executeQuery($sql, $params);
$entry = $query->fetchAll();
return isset($entry[0]) ? $entry[0] : null;
}
2013-08-06 13:51:48 +00:00
public function getEntriesByView($view, $user_id, $limit = '') {
switch ($_SESSION['sort'])
{
case 'ia':
$order = 'ORDER BY id';
break;
case 'id':
$order = 'ORDER BY id DESC';
break;
case 'ta':
$order = 'ORDER BY lower(title)';
break;
case 'td':
$order = 'ORDER BY lower(title) DESC';
break;
default:
$order = 'ORDER BY id';
break;
}
switch ($view)
{
case 'archive':
2013-08-06 13:51:48 +00:00
$sql = "SELECT * FROM entries WHERE user_id=? AND is_read=? " . $order;
2013-08-07 12:24:07 +00:00
$params = array($user_id, 1);
break;
case 'fav' :
2013-08-06 13:51:48 +00:00
$sql = "SELECT * FROM entries WHERE user_id=? AND is_fav=? " . $order;
2013-08-07 12:24:07 +00:00
$params = array($user_id, 1);
break;
default:
2013-08-06 13:51:48 +00:00
$sql = "SELECT * FROM entries WHERE user_id=? AND is_read=? " . $order;
$params = array($user_id, 0);
break;
}
2013-08-05 19:56:32 +00:00
$sql .= ' ' . $limit;
2013-08-06 13:51:48 +00:00
$query = $this->executeQuery($sql, $params);
$entries = $query->fetchAll();
return $entries;
}
public function updateContent($id, $content, $user_id) {
$sql_action = 'UPDATE entries SET content = ? WHERE id=? AND user_id=?';
$params_action = array($content, $id, $user_id);
$query = $this->executeQuery($sql_action, $params_action);
return $query;
}
2013-08-06 13:51:48 +00:00
public function add($url, $title, $content, $user_id) {
$sql_action = 'INSERT INTO entries ( url, title, content, user_id ) VALUES (?, ?, ?, ?)';
$params_action = array($url, $title, $content, $user_id);
$query = $this->executeQuery($sql_action, $params_action);
return $query;
}
2013-08-06 13:51:48 +00:00
public function deleteById($id, $user_id) {
$sql_action = "DELETE FROM entries WHERE id=? AND user_id=?";
$params_action = array($id, $user_id);
$query = $this->executeQuery($sql_action, $params_action);
return $query;
}
2013-08-06 13:51:48 +00:00
public function favoriteById($id, $user_id) {
2013-08-07 12:24:07 +00:00
$sql_action = "UPDATE entries SET is_fav=NOT is_fav WHERE id=? AND user_id=?";
2013-08-06 13:51:48 +00:00
$params_action = array($id, $user_id);
$query = $this->executeQuery($sql_action, $params_action);
}
2013-08-06 13:51:48 +00:00
public function archiveById($id, $user_id) {
2013-08-07 12:24:07 +00:00
$sql_action = "UPDATE entries SET is_read=NOT is_read WHERE id=? AND user_id=?";
2013-08-06 13:51:48 +00:00
$params_action = array($id, $user_id);
$query = $this->executeQuery($sql_action, $params_action);
}
2013-08-07 17:14:28 +00:00
public function getLastId($column = '') {
return $this->getHandle()->lastInsertId($column);
}
2013-04-20 08:05:42 +00:00
}