[github/wallabag/wallabag.git] / inc / poche / Database.class.php

<?php
/**
 * poche, a read it later open source system
 *
 * @category   poche
 * @author     Nicolas Lœuillet <support@inthepoche.com>
 * @copyright  2013
 * @license    http://www.wtfpl.net/ see COPYING file
 */

class Database {
    var $handle;

    function __construct()
    {
        switch (STORAGE) {
            case 'sqlite':
                $db_path = 'sqlite:' . STORAGE_SQLITE;
                $this->handle = new PDO($db_path);
                break;
            case 'mysql':
                $db_path = 'mysql:host=' . STORAGE_SERVER . ';dbname=' . STORAGE_DB;
                $this->handle = new PDO($db_path, STORAGE_USER, STORAGE_PASSWORD); 
                break;
            case 'postgres':
                $db_path = 'pgsql:host=' . STORAGE_SERVER . ';dbname=' . STORAGE_DB;
                $this->handle = new PDO($db_path, STORAGE_USER, STORAGE_PASSWORD); 
                break;
        }

        $this->handle->setAttribute(PDO::ATTR_ERRMODE, PDO::ERRMODE_EXCEPTION);
        Tools::logm('storage type ' . STORAGE);
    }

    private function getHandle() {
        return $this->handle;
    }

    public function isInstalled() {
        $sql = "SELECT username FROM users";
        $query = $this->executeQuery($sql, array());
        $hasAdmin = count($query->fetchAll());

        if ($hasAdmin == 0) 
            return FALSE;

        return TRUE;
    }

    public function install($login, $password) {
        $sql = 'INSERT INTO users ( username, password, name, email) VALUES (?, ?, ?, ?)';
        $params = array($login, $password, $login, ' ');
        $query = $this->executeQuery($sql, $params);

        $sequence = '';
        if (STORAGE == 'postgres') {
            $sequence = 'users_id_seq';
        }

        $id_user = intval($this->getLastId($sequence));

        $sql = 'INSERT INTO users_config ( user_id, name, value ) VALUES (?, ?, ?)';
        $params = array($id_user, 'pager', PAGINATION);
        $query = $this->executeQuery($sql, $params);

        $sql = 'INSERT INTO users_config ( user_id, name, value ) VALUES (?, ?, ?)';
        $params = array($id_user, 'language', LANG);
        $query = $this->executeQuery($sql, $params);
        
        $sql = 'INSERT INTO users_config ( user_id, name, value ) VALUES (?, ?, ?)';
        $params = array($id_user, 'theme', DEFAULT_THEME);
        $query = $this->executeQuery($sql, $params);

        return TRUE;
    }

    private function getConfigUser($id) {
        $sql = "SELECT * FROM users_config WHERE user_id = ?";
        $query = $this->executeQuery($sql, array($id));
        $result = $query->fetchAll();
        $user_config = array();
        
        foreach ($result as $key => $value) {
            $user_config[$value['name']] = $value['value'];
        }

        return $user_config;
    }

    public function login($username, $password) {
        $sql = "SELECT * FROM users WHERE username=? AND password=?";
        $query = $this->executeQuery($sql, array($username, $password));
        $login = $query->fetchAll();

        $user = array();
        if (isset($login[0])) {
            $user['id'] = $login[0]['id'];
            $user['username'] = $login[0]['username'];
            $user['password'] = $login[0]['password'];
            $user['name'] = $login[0]['name'];
            $user['email'] = $login[0]['email'];
            $user['config'] = $this->getConfigUser($login[0]['id']);
        }

        return $user;
    }

    public function updatePassword($userId, $password)
    {
        $sql_update = "UPDATE users SET password=? WHERE id=?";
        $params_update = array($password, $id);
        $this->updateUserConfig($userId, 'password', $password);
    }
    
    public function updateUserConfig($userId, $key, $value) {
        $sql_update = "UPDATE users_config SET `value`=? WHERE `user_id`=? AND `name`=?";
        $params_update = array($value, $userId, $key);
        $query = $this->executeQuery($sql_update, $params_update);
    }

    private function executeQuery($sql, $params) {
        try
        {
            $query = $this->getHandle()->prepare($sql);
            $query->execute($params);
            return $query;
        }
        catch (Exception $e)
        {
            Tools::logm('execute query error : '.$e->getMessage());
            return FALSE;
        }
    }

    public function retrieveAll($user_id) {
        $sql        = "SELECT * FROM entries WHERE user_id=? ORDER BY id";
        $query      = $this->executeQuery($sql, array($user_id));
        $entries    = $query->fetchAll();

        return $entries;
    }

    public function retrieveOneById($id, $user_id) {
        $entry  = NULL;
        $sql    = "SELECT * FROM entries WHERE id=? AND user_id=?";
        $params = array(intval($id), $user_id);
        $query  = $this->executeQuery($sql, $params);
        $entry  = $query->fetchAll();

        return $entry[0];
    }

    public function getEntriesByView($view, $user_id, $limit = '') {
        switch ($_SESSION['sort'])
        {
            case 'ia':
                $order = 'ORDER BY id';
                break;
            case 'id':
                $order = 'ORDER BY id DESC';
                break;
            case 'ta':
                $order = 'ORDER BY lower(title)';
                break;
            case 'td':
                $order = 'ORDER BY lower(title) DESC';
                break;
            default:
                $order = 'ORDER BY id';
                break;
        }

        switch ($view)
        {
            case 'archive':
                $sql    = "SELECT * FROM entries WHERE user_id=? AND is_read=? " . $order;
                $params = array($user_id, 1);
                break;
            case 'fav' :
                $sql    = "SELECT * FROM entries WHERE user_id=? AND is_fav=? " . $order;
                $params = array($user_id, 1);
                break;
            default:
                $sql    = "SELECT * FROM entries WHERE user_id=? AND is_read=? " . $order;
                $params = array($user_id, 0);
                break;
        }

        $sql .= ' ' . $limit;

        $query = $this->executeQuery($sql, $params);
        $entries = $query->fetchAll();

        return $entries;
    }

    public function updateContent($id, $content, $user_id) {
        $sql_action = 'UPDATE entries SET content = ? WHERE id=? AND user_id=?';
        $params_action = array($content, $id, $user_id);
        $query = $this->executeQuery($sql_action, $params_action);
        return $query;
    }

    public function add($url, $title, $content, $user_id) {
        $sql_action = 'INSERT INTO entries ( url, title, content, user_id ) VALUES (?, ?, ?, ?)';
        $params_action = array($url, $title, $content, $user_id);
        $query = $this->executeQuery($sql_action, $params_action);
        return $query;
    }

    public function deleteById($id, $user_id) {
        $sql_action     = "DELETE FROM entries WHERE id=? AND user_id=?";
        $params_action  = array($id, $user_id);
        $query          = $this->executeQuery($sql_action, $params_action);
        return $query;
    }

    public function favoriteById($id, $user_id) {
        $sql_action     = "UPDATE entries SET is_fav=NOT is_fav WHERE id=? AND user_id=?";
        $params_action  = array($id, $user_id);
        $query          = $this->executeQuery($sql_action, $params_action);
    }

    public function archiveById($id, $user_id) {
        $sql_action     = "UPDATE entries SET is_read=NOT is_read WHERE id=? AND user_id=?";
        $params_action  = array($id, $user_id);
        $query          = $this->executeQuery($sql_action, $params_action);
    }

    public function getLastId($column = '') {
        return $this->getHandle()->lastInsertId($column);
    }
}
Commit	Line	Data
14890de3	1	<?php
	2	/**
	3	* poche, a read it later open source system
	4	*
	5	* @category poche
	6	* @author Nicolas Lœuillet <support@inthepoche.com>
	7	* @copyright 2013
	8	* @license http://www.wtfpl.net/ see COPYING file
	9	*/
	10
bc1ee852	11	class Database {
14890de3	12	var $handle;
14890de3	13
68857cea NL	14	function __construct()
	15	{
	16	switch (STORAGE) {
	17	case 'sqlite':
	18	$db_path = 'sqlite:' . STORAGE_SQLITE;
	19	$this->handle = new PDO($db_path);
	20	break;
	21	case 'mysql':
	22	$db_path = 'mysql:host=' . STORAGE_SERVER . ';dbname=' . STORAGE_DB;
	23	$this->handle = new PDO($db_path, STORAGE_USER, STORAGE_PASSWORD);
	24	break;
	25	case 'postgres':
	26	$db_path = 'pgsql:host=' . STORAGE_SERVER . ';dbname=' . STORAGE_DB;
	27	$this->handle = new PDO($db_path, STORAGE_USER, STORAGE_PASSWORD);
	28	break;
	29	}
	30
14890de3	31	$this->handle->setAttribute(PDO::ATTR_ERRMODE, PDO::ERRMODE_EXCEPTION);
580d60b9	32	Tools::logm('storage type ' . STORAGE);
14890de3	33	}
	34
	35	private function getHandle() {
	36	return $this->handle;
	37	}
	38
aa8c9f2a	39	public function isInstalled() {
b916bcfc NL	40	$sql = "SELECT username FROM users";
	41	$query = $this->executeQuery($sql, array());
	42	$hasAdmin = count($query->fetchAll());
aa8c9f2a	43
b916bcfc	44	if ($hasAdmin == 0)
aa8c9f2a NL	45	return FALSE;
	46
	47	return TRUE;
	48	}
	49
	50	public function install($login, $password) {
b916bcfc NL	51	$sql = 'INSERT INTO users ( username, password, name, email) VALUES (?, ?, ?, ?)';
	52	$params = array($login, $password, $login, ' ');
	53	$query = $this->executeQuery($sql, $params);
	54
	55	$sequence = '';
	56	if (STORAGE == 'postgres') {
	57	$sequence = 'users_id_seq';
	58	}
	59
	60	$id_user = intval($this->getLastId($sequence));
	61
	62	$sql = 'INSERT INTO users_config ( user_id, name, value ) VALUES (?, ?, ?)';
00dbaf90	63	$params = array($id_user, 'pager', PAGINATION);
b916bcfc NL	64	$query = $this->executeQuery($sql, $params);
	65
	66	$sql = 'INSERT INTO users_config ( user_id, name, value ) VALUES (?, ?, ?)';
00dbaf90 NL	67	$params = array($id_user, 'language', LANG);
	68	$query = $this->executeQuery($sql, $params);
	69
	70	$sql = 'INSERT INTO users_config ( user_id, name, value ) VALUES (?, ?, ?)';
	71	$params = array($id_user, 'theme', DEFAULT_THEME);
7ce7ec4c	72	$query = $this->executeQuery($sql, $params);
aa8c9f2a	73
7ce7ec4c NL	74	return TRUE;
7ce7ec4c NL	75	}
aa8c9f2a	76
7ce7ec4c NL	77	private function getConfigUser($id) {
	78	$sql = "SELECT * FROM users_config WHERE user_id = ?";
	79	$query = $this->executeQuery($sql, array($id));
	80	$result = $query->fetchAll();
	81	$user_config = array();
	82
	83	foreach ($result as $key => $value) {
	84	$user_config[$value['name']] = $value['value'];
aa8c9f2a NL	85	}
aa8c9f2a NL	86
7ce7ec4c	87	return $user_config;
aa8c9f2a NL	88	}
aa8c9f2a NL	89
7ce7ec4c	90	public function login($username, $password) {
8d3275be NL	91	$sql = "SELECT * FROM users WHERE username=? AND password=?";
	92	$query = $this->executeQuery($sql, array($username, $password));
	93	$login = $query->fetchAll();
aa8c9f2a	94
7ce7ec4c NL	95	$user = array();
	96	if (isset($login[0])) {
	97	$user['id'] = $login[0]['id'];
	98	$user['username'] = $login[0]['username'];
	99	$user['password'] = $login[0]['password'];
	100	$user['name'] = $login[0]['name'];
	101	$user['email'] = $login[0]['email'];
	102	$user['config'] = $this->getConfigUser($login[0]['id']);
	103	}
aa8c9f2a	104
7ce7ec4c	105	return $user;
aa8c9f2a NL	106	}
aa8c9f2a NL	107
00dbaf90	108	public function updatePassword($userId, $password)
6499b26a	109	{
8d3275be NL	110	$sql_update = "UPDATE users SET password=? WHERE id=?";
8d3275be NL	111	$params_update = array($password, $id);
00dbaf90 NL	112	$this->updateUserConfig($userId, 'password', $password);
	113	}
	114
	115	public function updateUserConfig($userId, $key, $value) {
	116	$sql_update = "UPDATE users_config SET `value`=? WHERE `user_id`=? AND `name`=?";
	117	$params_update = array($value, $userId, $key);
8d3275be	118	$query = $this->executeQuery($sql_update, $params_update);
6499b26a NL	119	}
6499b26a NL	120
14890de3	121	private function executeQuery($sql, $params) {
	122	try
	123	{
	124	$query = $this->getHandle()->prepare($sql);
	125	$query->execute($params);
	126	return $query;
	127	}
	128	catch (Exception $e)
	129	{
eb1af592	130	Tools::logm('execute query error : '.$e->getMessage());
bc1ee852	131	return FALSE;
14890de3	132	}
	133	}
	134
8d3275be NL	135	public function retrieveAll($user_id) {
	136	$sql = "SELECT * FROM entries WHERE user_id=? ORDER BY id";
	137	$query = $this->executeQuery($sql, array($user_id));
44e77bfa	138	$entries = $query->fetchAll();
	139
	140	return $entries;
	141	}
	142
8d3275be	143	public function retrieveOneById($id, $user_id) {
14890de3	144	$entry = NULL;
8d3275be NL	145	$sql = "SELECT * FROM entries WHERE id=? AND user_id=?";
8d3275be NL	146	$params = array(intval($id), $user_id);
14890de3	147	$query = $this->executeQuery($sql, $params);
	148	$entry = $query->fetchAll();
	149
	150	return $entry[0];
	151	}
	152
8d3275be	153	public function getEntriesByView($view, $user_id, $limit = '') {
14890de3	154	switch ($_SESSION['sort'])
	155	{
	156	case 'ia':
	157	$order = 'ORDER BY id';
	158	break;
	159	case 'id':
	160	$order = 'ORDER BY id DESC';
	161	break;
	162	case 'ta':
	163	$order = 'ORDER BY lower(title)';
	164	break;
	165	case 'td':
	166	$order = 'ORDER BY lower(title) DESC';
	167	break;
	168	default:
	169	$order = 'ORDER BY id';
	170	break;
	171	}
	172
	173	switch ($view)
	174	{
	175	case 'archive':
8d3275be	176	$sql = "SELECT * FROM entries WHERE user_id=? AND is_read=? " . $order;
bc1ee852	177	$params = array($user_id, 1);
14890de3	178	break;
14890de3	179	case 'fav' :
8d3275be	180	$sql = "SELECT * FROM entries WHERE user_id=? AND is_fav=? " . $order;
bc1ee852	181	$params = array($user_id, 1);
14890de3	182	break;
14890de3	183	default:
8d3275be NL	184	$sql = "SELECT * FROM entries WHERE user_id=? AND is_read=? " . $order;
8d3275be NL	185	$params = array($user_id, 0);
14890de3	186	break;
	187	}
	188
6a361945 NL	189	$sql .= ' ' . $limit;
6a361945 NL	190
8d3275be NL	191	$query = $this->executeQuery($sql, $params);
8d3275be NL	192	$entries = $query->fetchAll();
14890de3	193
	194	return $entries;
	195	}
	196
b58e261d NL	197	public function updateContent($id, $content, $user_id) {
	198	$sql_action = 'UPDATE entries SET content = ? WHERE id=? AND user_id=?';
	199	$params_action = array($content, $id, $user_id);
	200	$query = $this->executeQuery($sql_action, $params_action);
	201	return $query;
	202	}
	203
8d3275be	204	public function add($url, $title, $content, $user_id) {
8d3275be NL	205	$sql_action = 'INSERT INTO entries ( url, title, content, user_id ) VALUES (?, ?, ?, ?)';
	206	$params_action = array($url, $title, $content, $user_id);
	207	$query = $this->executeQuery($sql_action, $params_action);
29c6fd46	208	return $query;
14890de3	209	}
14890de3	210
8d3275be	211	public function deleteById($id, $user_id) {
8d3275be NL	212	$sql_action = "DELETE FROM entries WHERE id=? AND user_id=?";
8d3275be NL	213	$params_action = array($id, $user_id);
14890de3	214	$query = $this->executeQuery($sql_action, $params_action);
29c6fd46	215	return $query;
14890de3	216	}
14890de3	217
8d3275be	218	public function favoriteById($id, $user_id) {
bc1ee852	219	$sql_action = "UPDATE entries SET is_fav=NOT is_fav WHERE id=? AND user_id=?";
8d3275be	220	$params_action = array($id, $user_id);
14890de3	221	$query = $this->executeQuery($sql_action, $params_action);
	222	}
	223
8d3275be	224	public function archiveById($id, $user_id) {
bc1ee852	225	$sql_action = "UPDATE entries SET is_read=NOT is_read WHERE id=? AND user_id=?";
8d3275be	226	$params_action = array($id, $user_id);
14890de3	227	$query = $this->executeQuery($sql_action, $params_action);
	228	}
	229
b916bcfc NL	230	public function getLastId($column = '') {
b916bcfc NL	231	return $this->getHandle()->lastInsertId($column);
14890de3	232	}
2cd263e0	233	}