2013-04-19 13:46:04 +00:00
|
|
|
<?php
|
|
|
|
/**
|
2014-01-28 09:36:04 +00:00
|
|
|
* wallabag, self hostable application allowing you to not miss any content anymore
|
2013-04-19 13:46:04 +00:00
|
|
|
*
|
2014-01-28 09:36:04 +00:00
|
|
|
* @category wallabag
|
|
|
|
* @author Nicolas Lœuillet <nicolas@loeuillet.org>
|
2013-04-19 13:46:04 +00:00
|
|
|
* @copyright 2013
|
|
|
|
* @license http://www.wtfpl.net/ see COPYING file
|
|
|
|
*/
|
|
|
|
|
2013-08-07 12:24:07 +00:00
|
|
|
class Database {
|
2013-04-19 13:46:04 +00:00
|
|
|
var $handle;
|
|
|
|
|
2013-08-07 12:38:58 +00:00
|
|
|
function __construct()
|
|
|
|
{
|
|
|
|
switch (STORAGE) {
|
|
|
|
case 'sqlite':
|
|
|
|
$db_path = 'sqlite:' . STORAGE_SQLITE;
|
|
|
|
$this->handle = new PDO($db_path);
|
|
|
|
break;
|
|
|
|
case 'mysql':
|
|
|
|
$db_path = 'mysql:host=' . STORAGE_SERVER . ';dbname=' . STORAGE_DB;
|
|
|
|
$this->handle = new PDO($db_path, STORAGE_USER, STORAGE_PASSWORD);
|
|
|
|
break;
|
|
|
|
case 'postgres':
|
|
|
|
$db_path = 'pgsql:host=' . STORAGE_SERVER . ';dbname=' . STORAGE_DB;
|
|
|
|
$this->handle = new PDO($db_path, STORAGE_USER, STORAGE_PASSWORD);
|
|
|
|
break;
|
|
|
|
}
|
|
|
|
|
2013-04-19 13:46:04 +00:00
|
|
|
$this->handle->setAttribute(PDO::ATTR_ERRMODE, PDO::ERRMODE_EXCEPTION);
|
2013-08-07 13:46:17 +00:00
|
|
|
Tools::logm('storage type ' . STORAGE);
|
2013-04-19 13:46:04 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
private function getHandle() {
|
|
|
|
return $this->handle;
|
|
|
|
}
|
|
|
|
|
2013-05-31 20:55:52 +00:00
|
|
|
public function isInstalled() {
|
2013-08-07 17:14:28 +00:00
|
|
|
$sql = "SELECT username FROM users";
|
|
|
|
$query = $this->executeQuery($sql, array());
|
2013-12-23 09:35:09 +00:00
|
|
|
if ($query == false) {
|
|
|
|
die(STORAGE . ' database looks empty. You have to create it (you can find database structure in install folder).');
|
|
|
|
}
|
2013-08-07 17:14:28 +00:00
|
|
|
$hasAdmin = count($query->fetchAll());
|
2013-05-31 20:55:52 +00:00
|
|
|
|
2013-08-07 17:14:28 +00:00
|
|
|
if ($hasAdmin == 0)
|
2013-12-23 09:35:09 +00:00
|
|
|
return false;
|
|
|
|
|
|
|
|
return true;
|
|
|
|
}
|
|
|
|
|
|
|
|
public function checkTags() {
|
|
|
|
|
|
|
|
if (STORAGE == 'sqlite') {
|
|
|
|
$sql = '
|
|
|
|
CREATE TABLE IF NOT EXISTS tags (
|
|
|
|
id INTEGER PRIMARY KEY AUTOINCREMENT NOT NULL UNIQUE,
|
|
|
|
value TEXT
|
|
|
|
)';
|
|
|
|
}
|
|
|
|
elseif(STORAGE == 'mysql') {
|
|
|
|
$sql = '
|
|
|
|
CREATE TABLE IF NOT EXISTS `tags` (
|
|
|
|
`id` int(11) NOT NULL AUTO_INCREMENT,
|
|
|
|
`value` varchar(255) NOT NULL,
|
|
|
|
PRIMARY KEY (`id`)
|
|
|
|
) ENGINE=InnoDB DEFAULT CHARSET=utf8;
|
|
|
|
';
|
|
|
|
}
|
|
|
|
else {
|
|
|
|
$sql = '
|
|
|
|
CREATE TABLE tags (
|
|
|
|
id bigserial primary key,
|
|
|
|
value varchar(255) NOT NULL
|
|
|
|
);
|
|
|
|
';
|
|
|
|
}
|
2013-05-31 20:55:52 +00:00
|
|
|
|
2013-12-23 09:35:09 +00:00
|
|
|
$query = $this->executeQuery($sql, array());
|
|
|
|
|
|
|
|
if (STORAGE == 'sqlite') {
|
|
|
|
$sql = '
|
2014-01-05 14:03:05 +00:00
|
|
|
CREATE TABLE IF NOT EXISTS tags_entries (
|
2013-12-23 09:35:09 +00:00
|
|
|
id INTEGER PRIMARY KEY AUTOINCREMENT NOT NULL UNIQUE,
|
|
|
|
entry_id INTEGER,
|
|
|
|
tag_id INTEGER,
|
|
|
|
FOREIGN KEY(entry_id) REFERENCES entries(id) ON DELETE CASCADE,
|
|
|
|
FOREIGN KEY(tag_id) REFERENCES tags(id) ON DELETE CASCADE
|
|
|
|
)';
|
|
|
|
}
|
|
|
|
elseif(STORAGE == 'mysql') {
|
|
|
|
$sql = '
|
|
|
|
CREATE TABLE IF NOT EXISTS `tags_entries` (
|
|
|
|
`id` int(11) NOT NULL AUTO_INCREMENT,
|
|
|
|
`entry_id` int(11) NOT NULL,
|
|
|
|
`tag_id` int(11) NOT NULL,
|
|
|
|
FOREIGN KEY(entry_id) REFERENCES entries(id) ON DELETE CASCADE,
|
|
|
|
FOREIGN KEY(tag_id) REFERENCES tags(id) ON DELETE CASCADE,
|
|
|
|
PRIMARY KEY (`id`)
|
|
|
|
) ENGINE=InnoDB DEFAULT CHARSET=utf8;
|
|
|
|
';
|
|
|
|
}
|
|
|
|
else {
|
|
|
|
$sql = '
|
|
|
|
CREATE TABLE tags_entries (
|
|
|
|
id bigserial primary key,
|
|
|
|
entry_id integer NOT NULL,
|
|
|
|
tag_id integer NOT NULL
|
|
|
|
)
|
|
|
|
';
|
|
|
|
}
|
|
|
|
|
|
|
|
$query = $this->executeQuery($sql, array());
|
2013-05-31 20:55:52 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
public function install($login, $password) {
|
2013-08-07 17:14:28 +00:00
|
|
|
$sql = 'INSERT INTO users ( username, password, name, email) VALUES (?, ?, ?, ?)';
|
|
|
|
$params = array($login, $password, $login, ' ');
|
|
|
|
$query = $this->executeQuery($sql, $params);
|
|
|
|
|
|
|
|
$sequence = '';
|
|
|
|
if (STORAGE == 'postgres') {
|
|
|
|
$sequence = 'users_id_seq';
|
|
|
|
}
|
|
|
|
|
|
|
|
$id_user = intval($this->getLastId($sequence));
|
|
|
|
|
|
|
|
$sql = 'INSERT INTO users_config ( user_id, name, value ) VALUES (?, ?, ?)';
|
2013-09-20 08:21:39 +00:00
|
|
|
$params = array($id_user, 'pager', PAGINATION);
|
2013-08-07 17:14:28 +00:00
|
|
|
$query = $this->executeQuery($sql, $params);
|
|
|
|
|
|
|
|
$sql = 'INSERT INTO users_config ( user_id, name, value ) VALUES (?, ?, ?)';
|
2013-09-20 08:21:39 +00:00
|
|
|
$params = array($id_user, 'language', LANG);
|
|
|
|
$query = $this->executeQuery($sql, $params);
|
|
|
|
|
|
|
|
$sql = 'INSERT INTO users_config ( user_id, name, value ) VALUES (?, ?, ?)';
|
|
|
|
$params = array($id_user, 'theme', DEFAULT_THEME);
|
2013-08-06 12:18:03 +00:00
|
|
|
$query = $this->executeQuery($sql, $params);
|
2013-05-31 20:55:52 +00:00
|
|
|
|
2013-08-06 12:18:03 +00:00
|
|
|
return TRUE;
|
|
|
|
}
|
2013-05-31 20:55:52 +00:00
|
|
|
|
2013-12-03 09:39:45 +00:00
|
|
|
public function getConfigUser($id) {
|
2013-08-06 12:18:03 +00:00
|
|
|
$sql = "SELECT * FROM users_config WHERE user_id = ?";
|
|
|
|
$query = $this->executeQuery($sql, array($id));
|
|
|
|
$result = $query->fetchAll();
|
|
|
|
$user_config = array();
|
|
|
|
|
|
|
|
foreach ($result as $key => $value) {
|
|
|
|
$user_config[$value['name']] = $value['value'];
|
2013-05-31 20:55:52 +00:00
|
|
|
}
|
|
|
|
|
2013-08-06 12:18:03 +00:00
|
|
|
return $user_config;
|
2013-05-31 20:55:52 +00:00
|
|
|
}
|
|
|
|
|
2013-10-20 21:28:45 +00:00
|
|
|
public function userExists($username) {
|
|
|
|
$sql = "SELECT * FROM users WHERE username=?";
|
|
|
|
$query = $this->executeQuery($sql, array($username));
|
|
|
|
$login = $query->fetchAll();
|
|
|
|
if (isset($login[0])) {
|
|
|
|
return true;
|
|
|
|
} else {
|
|
|
|
return false;
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
2013-08-06 12:18:03 +00:00
|
|
|
public function login($username, $password) {
|
2013-08-06 13:51:48 +00:00
|
|
|
$sql = "SELECT * FROM users WHERE username=? AND password=?";
|
|
|
|
$query = $this->executeQuery($sql, array($username, $password));
|
|
|
|
$login = $query->fetchAll();
|
2013-05-31 20:55:52 +00:00
|
|
|
|
2013-08-06 12:18:03 +00:00
|
|
|
$user = array();
|
|
|
|
if (isset($login[0])) {
|
|
|
|
$user['id'] = $login[0]['id'];
|
|
|
|
$user['username'] = $login[0]['username'];
|
|
|
|
$user['password'] = $login[0]['password'];
|
|
|
|
$user['name'] = $login[0]['name'];
|
|
|
|
$user['email'] = $login[0]['email'];
|
|
|
|
$user['config'] = $this->getConfigUser($login[0]['id']);
|
|
|
|
}
|
2013-05-31 20:55:52 +00:00
|
|
|
|
2013-08-06 12:18:03 +00:00
|
|
|
return $user;
|
2013-05-31 20:55:52 +00:00
|
|
|
}
|
|
|
|
|
2013-09-20 08:21:39 +00:00
|
|
|
public function updatePassword($userId, $password)
|
2013-06-01 06:29:37 +00:00
|
|
|
{
|
2013-08-06 13:51:48 +00:00
|
|
|
$sql_update = "UPDATE users SET password=? WHERE id=?";
|
2013-10-07 12:56:21 +00:00
|
|
|
$params_update = array($password, $userId);
|
|
|
|
$query = $this->executeQuery($sql_update, $params_update);
|
2013-09-20 08:21:39 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
public function updateUserConfig($userId, $key, $value) {
|
2013-09-21 12:37:53 +00:00
|
|
|
$config = $this->getConfigUser($userId);
|
|
|
|
|
2014-01-19 23:44:51 +00:00
|
|
|
if (! isset($config[$key])) {
|
2013-12-23 10:23:12 +00:00
|
|
|
$sql = "INSERT INTO users_config (value, user_id, name) VALUES (?, ?, ?)";
|
2013-09-21 12:37:53 +00:00
|
|
|
}
|
|
|
|
else {
|
2013-12-23 10:23:12 +00:00
|
|
|
$sql = "UPDATE users_config SET value=? WHERE user_id=? AND name=?";
|
2013-09-21 12:37:53 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
$params = array($value, $userId, $key);
|
|
|
|
$query = $this->executeQuery($sql, $params);
|
2013-06-01 06:29:37 +00:00
|
|
|
}
|
|
|
|
|
2013-04-19 13:46:04 +00:00
|
|
|
private function executeQuery($sql, $params) {
|
|
|
|
try
|
|
|
|
{
|
|
|
|
$query = $this->getHandle()->prepare($sql);
|
|
|
|
$query->execute($params);
|
|
|
|
return $query;
|
|
|
|
}
|
|
|
|
catch (Exception $e)
|
|
|
|
{
|
2013-08-04 18:58:31 +00:00
|
|
|
Tools::logm('execute query error : '.$e->getMessage());
|
2013-08-07 12:24:07 +00:00
|
|
|
return FALSE;
|
2013-04-19 13:46:04 +00:00
|
|
|
}
|
|
|
|
}
|
|
|
|
|
2013-08-06 13:51:48 +00:00
|
|
|
public function retrieveAll($user_id) {
|
|
|
|
$sql = "SELECT * FROM entries WHERE user_id=? ORDER BY id";
|
|
|
|
$query = $this->executeQuery($sql, array($user_id));
|
2013-04-21 16:09:25 +00:00
|
|
|
$entries = $query->fetchAll();
|
|
|
|
|
|
|
|
return $entries;
|
|
|
|
}
|
|
|
|
|
2013-08-06 13:51:48 +00:00
|
|
|
public function retrieveOneById($id, $user_id) {
|
2013-04-19 13:46:04 +00:00
|
|
|
$entry = NULL;
|
2013-08-06 13:51:48 +00:00
|
|
|
$sql = "SELECT * FROM entries WHERE id=? AND user_id=?";
|
|
|
|
$params = array(intval($id), $user_id);
|
2013-04-19 13:46:04 +00:00
|
|
|
$query = $this->executeQuery($sql, $params);
|
|
|
|
$entry = $query->fetchAll();
|
|
|
|
|
2013-11-20 09:22:21 +00:00
|
|
|
return isset($entry[0]) ? $entry[0] : null;
|
2013-04-19 13:46:04 +00:00
|
|
|
}
|
|
|
|
|
2013-08-06 13:51:48 +00:00
|
|
|
public function getEntriesByView($view, $user_id, $limit = '') {
|
2013-04-19 13:46:04 +00:00
|
|
|
switch ($_SESSION['sort'])
|
|
|
|
{
|
|
|
|
case 'ia':
|
|
|
|
$order = 'ORDER BY id';
|
|
|
|
break;
|
|
|
|
case 'id':
|
|
|
|
$order = 'ORDER BY id DESC';
|
|
|
|
break;
|
|
|
|
case 'ta':
|
|
|
|
$order = 'ORDER BY lower(title)';
|
|
|
|
break;
|
|
|
|
case 'td':
|
|
|
|
$order = 'ORDER BY lower(title) DESC';
|
|
|
|
break;
|
|
|
|
default:
|
|
|
|
$order = 'ORDER BY id';
|
|
|
|
break;
|
|
|
|
}
|
|
|
|
|
|
|
|
switch ($view)
|
|
|
|
{
|
|
|
|
case 'archive':
|
2013-08-06 13:51:48 +00:00
|
|
|
$sql = "SELECT * FROM entries WHERE user_id=? AND is_read=? " . $order;
|
2013-08-07 12:24:07 +00:00
|
|
|
$params = array($user_id, 1);
|
2013-04-19 13:46:04 +00:00
|
|
|
break;
|
|
|
|
case 'fav' :
|
2013-08-06 13:51:48 +00:00
|
|
|
$sql = "SELECT * FROM entries WHERE user_id=? AND is_fav=? " . $order;
|
2013-08-07 12:24:07 +00:00
|
|
|
$params = array($user_id, 1);
|
2013-04-19 13:46:04 +00:00
|
|
|
break;
|
|
|
|
default:
|
2013-08-06 13:51:48 +00:00
|
|
|
$sql = "SELECT * FROM entries WHERE user_id=? AND is_read=? " . $order;
|
|
|
|
$params = array($user_id, 0);
|
2013-04-19 13:46:04 +00:00
|
|
|
break;
|
|
|
|
}
|
|
|
|
|
2013-08-05 19:56:32 +00:00
|
|
|
$sql .= ' ' . $limit;
|
|
|
|
|
2013-08-06 13:51:48 +00:00
|
|
|
$query = $this->executeQuery($sql, $params);
|
|
|
|
$entries = $query->fetchAll();
|
2013-04-19 13:46:04 +00:00
|
|
|
|
|
|
|
return $entries;
|
|
|
|
}
|
|
|
|
|
2013-08-09 21:30:20 +00:00
|
|
|
public function updateContent($id, $content, $user_id) {
|
|
|
|
$sql_action = 'UPDATE entries SET content = ? WHERE id=? AND user_id=?';
|
|
|
|
$params_action = array($content, $id, $user_id);
|
|
|
|
$query = $this->executeQuery($sql_action, $params_action);
|
|
|
|
return $query;
|
|
|
|
}
|
|
|
|
|
2013-08-06 13:51:48 +00:00
|
|
|
public function add($url, $title, $content, $user_id) {
|
|
|
|
$sql_action = 'INSERT INTO entries ( url, title, content, user_id ) VALUES (?, ?, ?, ?)';
|
|
|
|
$params_action = array($url, $title, $content, $user_id);
|
|
|
|
$query = $this->executeQuery($sql_action, $params_action);
|
2013-04-23 07:38:57 +00:00
|
|
|
return $query;
|
2013-04-19 13:46:04 +00:00
|
|
|
}
|
|
|
|
|
2013-08-06 13:51:48 +00:00
|
|
|
public function deleteById($id, $user_id) {
|
|
|
|
$sql_action = "DELETE FROM entries WHERE id=? AND user_id=?";
|
|
|
|
$params_action = array($id, $user_id);
|
2013-04-19 13:46:04 +00:00
|
|
|
$query = $this->executeQuery($sql_action, $params_action);
|
2013-04-23 07:38:57 +00:00
|
|
|
return $query;
|
2013-04-19 13:46:04 +00:00
|
|
|
}
|
|
|
|
|
2013-08-06 13:51:48 +00:00
|
|
|
public function favoriteById($id, $user_id) {
|
2013-08-07 12:24:07 +00:00
|
|
|
$sql_action = "UPDATE entries SET is_fav=NOT is_fav WHERE id=? AND user_id=?";
|
2013-08-06 13:51:48 +00:00
|
|
|
$params_action = array($id, $user_id);
|
2013-04-19 13:46:04 +00:00
|
|
|
$query = $this->executeQuery($sql_action, $params_action);
|
|
|
|
}
|
|
|
|
|
2013-08-06 13:51:48 +00:00
|
|
|
public function archiveById($id, $user_id) {
|
2013-08-07 12:24:07 +00:00
|
|
|
$sql_action = "UPDATE entries SET is_read=NOT is_read WHERE id=? AND user_id=?";
|
2013-08-06 13:51:48 +00:00
|
|
|
$params_action = array($id, $user_id);
|
2013-04-19 13:46:04 +00:00
|
|
|
$query = $this->executeQuery($sql_action, $params_action);
|
|
|
|
}
|
|
|
|
|
2013-08-07 17:14:28 +00:00
|
|
|
public function getLastId($column = '') {
|
|
|
|
return $this->getHandle()->lastInsertId($column);
|
2013-04-19 13:46:04 +00:00
|
|
|
}
|
2013-12-06 12:02:15 +00:00
|
|
|
|
2013-12-06 12:15:06 +00:00
|
|
|
public function retrieveAllTags() {
|
|
|
|
$sql = "SELECT * FROM tags";
|
|
|
|
$query = $this->executeQuery($sql, array());
|
|
|
|
$tags = $query->fetchAll();
|
|
|
|
|
|
|
|
return $tags;
|
|
|
|
}
|
|
|
|
|
2013-12-06 13:22:29 +00:00
|
|
|
public function retrieveTag($id) {
|
|
|
|
$tag = NULL;
|
|
|
|
$sql = "SELECT * FROM tags WHERE id=?";
|
|
|
|
$params = array(intval($id));
|
|
|
|
$query = $this->executeQuery($sql, $params);
|
|
|
|
$tag = $query->fetchAll();
|
|
|
|
|
|
|
|
return isset($tag[0]) ? $tag[0] : null;
|
|
|
|
}
|
|
|
|
|
|
|
|
public function retrieveEntriesByTag($tag_id) {
|
|
|
|
$sql =
|
2014-01-03 09:06:26 +00:00
|
|
|
"SELECT entries.* FROM entries
|
2013-12-06 13:22:29 +00:00
|
|
|
LEFT JOIN tags_entries ON tags_entries.entry_id=entries.id
|
|
|
|
WHERE tags_entries.tag_id = ?";
|
|
|
|
$query = $this->executeQuery($sql, array($tag_id));
|
|
|
|
$entries = $query->fetchAll();
|
|
|
|
|
|
|
|
return $entries;
|
|
|
|
}
|
|
|
|
|
2013-12-06 12:02:15 +00:00
|
|
|
public function retrieveTagsByEntry($entry_id) {
|
2013-12-06 12:15:06 +00:00
|
|
|
$sql =
|
2014-01-03 09:06:26 +00:00
|
|
|
"SELECT tags.* FROM tags
|
2013-12-06 12:02:15 +00:00
|
|
|
LEFT JOIN tags_entries ON tags_entries.tag_id=tags.id
|
|
|
|
WHERE tags_entries.entry_id = ?";
|
2013-12-06 12:15:06 +00:00
|
|
|
$query = $this->executeQuery($sql, array($entry_id));
|
|
|
|
$tags = $query->fetchAll();
|
2013-12-06 12:02:15 +00:00
|
|
|
|
|
|
|
return $tags;
|
|
|
|
}
|
2013-12-06 14:07:51 +00:00
|
|
|
|
|
|
|
public function removeTagForEntry($entry_id, $tag_id) {
|
|
|
|
$sql_action = "DELETE FROM tags_entries WHERE tag_id=? AND entry_id=?";
|
|
|
|
$params_action = array($tag_id, $entry_id);
|
|
|
|
$query = $this->executeQuery($sql_action, $params_action);
|
|
|
|
return $query;
|
|
|
|
}
|
|
|
|
|
|
|
|
public function retrieveTagByValue($value) {
|
|
|
|
$tag = NULL;
|
|
|
|
$sql = "SELECT * FROM tags WHERE value=?";
|
|
|
|
$params = array($value);
|
|
|
|
$query = $this->executeQuery($sql, $params);
|
|
|
|
$tag = $query->fetchAll();
|
|
|
|
|
|
|
|
return isset($tag[0]) ? $tag[0] : null;
|
|
|
|
}
|
|
|
|
|
|
|
|
public function createTag($value) {
|
|
|
|
$sql_action = 'INSERT INTO tags ( value ) VALUES (?)';
|
|
|
|
$params_action = array($value);
|
|
|
|
$query = $this->executeQuery($sql_action, $params_action);
|
|
|
|
return $query;
|
|
|
|
}
|
|
|
|
|
|
|
|
public function setTagToEntry($tag_id, $entry_id) {
|
|
|
|
$sql_action = 'INSERT INTO tags_entries ( tag_id, entry_id ) VALUES (?, ?)';
|
|
|
|
$params_action = array($tag_id, $entry_id);
|
|
|
|
$query = $this->executeQuery($sql_action, $params_action);
|
|
|
|
return $query;
|
|
|
|
}
|
2013-04-20 08:05:42 +00:00
|
|
|
}
|