[github/wallabag/wallabag.git] / inc / poche / Database.class.php

<?php
/**
 * poche, a read it later open source system
 *
 * @category   poche
 * @author     Nicolas Lœuillet <support@inthepoche.com>
 * @copyright  2013
 * @license    http://www.wtfpl.net/ see COPYING file
 */

class Database {
    var $handle;

    function __construct()
    {
        switch (STORAGE) {
            case 'sqlite':
                $db_path = 'sqlite:' . STORAGE_SQLITE;
                $this->handle = new PDO($db_path);
                break;
            case 'mysql':
                $db_path = 'mysql:host=' . STORAGE_SERVER . ';dbname=' . STORAGE_DB;
                $this->handle = new PDO($db_path, STORAGE_USER, STORAGE_PASSWORD); 
                break;
            case 'postgres':
                $db_path = 'pgsql:host=' . STORAGE_SERVER . ';dbname=' . STORAGE_DB;
                $this->handle = new PDO($db_path, STORAGE_USER, STORAGE_PASSWORD); 
                break;
        }

        $this->handle->setAttribute(PDO::ATTR_ERRMODE, PDO::ERRMODE_EXCEPTION);
        Tools::logm('storage type ' . STORAGE);
    }

    private function getHandle() {
        return $this->handle;
    }

    public function isInstalled() {
        $sql = "SELECT username FROM users";
        $query = $this->executeQuery($sql, array());
        $hasAdmin = count($query->fetchAll());

        if ($hasAdmin == 0) 
            return FALSE;

        return TRUE;
    }

    public function install($login, $password) {
        $sql = 'INSERT INTO users ( username, password, name, email) VALUES (?, ?, ?, ?)';
        $params = array($login, $password, $login, ' ');
        $query = $this->executeQuery($sql, $params);

        $sequence = '';
        if (STORAGE == 'postgres') {
            $sequence = 'users_id_seq';
        }

        $id_user = intval($this->getLastId($sequence));

        $sql = 'INSERT INTO users_config ( user_id, name, value ) VALUES (?, ?, ?)';
        $params = array($id_user, 'pager', PAGINATION);
        $query = $this->executeQuery($sql, $params);

        $sql = 'INSERT INTO users_config ( user_id, name, value ) VALUES (?, ?, ?)';
        $params = array($id_user, 'language', LANG);
        $query = $this->executeQuery($sql, $params);
        
        $sql = 'INSERT INTO users_config ( user_id, name, value ) VALUES (?, ?, ?)';
        $params = array($id_user, 'theme', DEFAULT_THEME);
        $query = $this->executeQuery($sql, $params);

        return TRUE;
    }

    public function getConfigUser($id) {
        $sql = "SELECT * FROM users_config WHERE user_id = ?";
        $query = $this->executeQuery($sql, array($id));
        $result = $query->fetchAll();
        $user_config = array();
        
        foreach ($result as $key => $value) {
            $user_config[$value['name']] = $value['value'];
        }

        return $user_config;
    }

    public function userExists($username) {
        $sql = "SELECT * FROM users WHERE username=?";
        $query = $this->executeQuery($sql, array($username));
        $login = $query->fetchAll();
        if (isset($login[0])) {
            return true;
        } else {
            return false;
        }
    }

    public function login($username, $password) {
        $sql = "SELECT * FROM users WHERE username=? AND password=?";
        $query = $this->executeQuery($sql, array($username, $password));
        $login = $query->fetchAll();

        $user = array();
        if (isset($login[0])) {
            $user['id'] = $login[0]['id'];
            $user['username'] = $login[0]['username'];
            $user['password'] = $login[0]['password'];
            $user['name'] = $login[0]['name'];
            $user['email'] = $login[0]['email'];
            $user['config'] = $this->getConfigUser($login[0]['id']);
        }

        return $user;
    }

    public function updatePassword($userId, $password)
    {
        $sql_update = "UPDATE users SET password=? WHERE id=?";
        $params_update = array($password, $userId);
        $query = $this->executeQuery($sql_update, $params_update);
    }
    
    public function updateUserConfig($userId, $key, $value) {
        $config = $this->getConfigUser($userId);
        
        if (!isset ($user_config[$key])) {
            $sql = "INSERT INTO users_config (`value`, `user_id`, `name`) VALUES (?, ?, ?)";
        }
        else {
            $sql = "UPDATE users_config SET `value`=? WHERE `user_id`=? AND `name`=?";
        }

        $params = array($value, $userId, $key);
        $query = $this->executeQuery($sql, $params);
    }

    private function executeQuery($sql, $params) {
        try
        {
            $query = $this->getHandle()->prepare($sql);
            $query->execute($params);
            return $query;
        }
        catch (Exception $e)
        {
            Tools::logm('execute query error : '.$e->getMessage());
            return FALSE;
        }
    }

    public function retrieveAll($user_id) {
        $sql        = "SELECT * FROM entries WHERE user_id=? ORDER BY id";
        $query      = $this->executeQuery($sql, array($user_id));
        $entries    = $query->fetchAll();

        return $entries;
    }

    public function retrieveOneById($id, $user_id) {
        $entry  = NULL;
        $sql    = "SELECT * FROM entries WHERE id=? AND user_id=?";
        $params = array(intval($id), $user_id);
        $query  = $this->executeQuery($sql, $params);
        $entry  = $query->fetchAll();

        return isset($entry[0]) ? $entry[0] : null;
    }

    public function getEntriesByView($view, $user_id, $limit = '') {
        switch ($_SESSION['sort'])
        {
            case 'ia':
                $order = 'ORDER BY id';
                break;
            case 'id':
                $order = 'ORDER BY id DESC';
                break;
            case 'ta':
                $order = 'ORDER BY lower(title)';
                break;
            case 'td':
                $order = 'ORDER BY lower(title) DESC';
                break;
            default:
                $order = 'ORDER BY id';
                break;
        }

        switch ($view)
        {
            case 'archive':
                $sql    = "SELECT * FROM entries WHERE user_id=? AND is_read=? " . $order;
                $params = array($user_id, 1);
                break;
            case 'fav' :
                $sql    = "SELECT * FROM entries WHERE user_id=? AND is_fav=? " . $order;
                $params = array($user_id, 1);
                break;
            default:
                $sql    = "SELECT * FROM entries WHERE user_id=? AND is_read=? " . $order;
                $params = array($user_id, 0);
                break;
        }

        $sql .= ' ' . $limit;

        $query = $this->executeQuery($sql, $params);
        $entries = $query->fetchAll();

        return $entries;
    }

    public function updateContent($id, $content, $user_id) {
        $sql_action = 'UPDATE entries SET content = ? WHERE id=? AND user_id=?';
        $params_action = array($content, $id, $user_id);
        $query = $this->executeQuery($sql_action, $params_action);
        return $query;
    }

    public function add($url, $title, $content, $user_id) {
        $sql_action = 'INSERT INTO entries ( url, title, content, user_id ) VALUES (?, ?, ?, ?)';
        $params_action = array($url, $title, $content, $user_id);
        $query = $this->executeQuery($sql_action, $params_action);
        return $query;
    }

    public function deleteById($id, $user_id) {
        $sql_action     = "DELETE FROM entries WHERE id=? AND user_id=?";
        $params_action  = array($id, $user_id);
        $query          = $this->executeQuery($sql_action, $params_action);
        return $query;
    }

    public function favoriteById($id, $user_id) {
        $sql_action     = "UPDATE entries SET is_fav=NOT is_fav WHERE id=? AND user_id=?";
        $params_action  = array($id, $user_id);
        $query          = $this->executeQuery($sql_action, $params_action);
    }

    public function archiveById($id, $user_id) {
        $sql_action     = "UPDATE entries SET is_read=NOT is_read WHERE id=? AND user_id=?";
        $params_action  = array($id, $user_id);
        $query          = $this->executeQuery($sql_action, $params_action);
    }

    public function getLastId($column = '') {
        return $this->getHandle()->lastInsertId($column);
    }
}
Commit	Line	Data
14890de3	1	<?php
	2	/**
	3	* poche, a read it later open source system
	4	*
	5	* @category poche
	6	* @author Nicolas Lœuillet <support@inthepoche.com>
	7	* @copyright 2013
	8	* @license http://www.wtfpl.net/ see COPYING file
	9	*/
	10
bc1ee852	11	class Database {
14890de3	12	var $handle;
14890de3	13
68857cea NL	14	function __construct()
	15	{
	16	switch (STORAGE) {
	17	case 'sqlite':
	18	$db_path = 'sqlite:' . STORAGE_SQLITE;
	19	$this->handle = new PDO($db_path);
	20	break;
	21	case 'mysql':
	22	$db_path = 'mysql:host=' . STORAGE_SERVER . ';dbname=' . STORAGE_DB;
	23	$this->handle = new PDO($db_path, STORAGE_USER, STORAGE_PASSWORD);
	24	break;
	25	case 'postgres':
	26	$db_path = 'pgsql:host=' . STORAGE_SERVER . ';dbname=' . STORAGE_DB;
	27	$this->handle = new PDO($db_path, STORAGE_USER, STORAGE_PASSWORD);
	28	break;
	29	}
	30
14890de3	31	$this->handle->setAttribute(PDO::ATTR_ERRMODE, PDO::ERRMODE_EXCEPTION);
580d60b9	32	Tools::logm('storage type ' . STORAGE);
14890de3	33	}
	34
	35	private function getHandle() {
	36	return $this->handle;
	37	}
	38
aa8c9f2a	39	public function isInstalled() {
b916bcfc NL	40	$sql = "SELECT username FROM users";
	41	$query = $this->executeQuery($sql, array());
	42	$hasAdmin = count($query->fetchAll());
aa8c9f2a	43
b916bcfc	44	if ($hasAdmin == 0)
aa8c9f2a NL	45	return FALSE;
	46
	47	return TRUE;
	48	}
	49
	50	public function install($login, $password) {
b916bcfc NL	51	$sql = 'INSERT INTO users ( username, password, name, email) VALUES (?, ?, ?, ?)';
	52	$params = array($login, $password, $login, ' ');
	53	$query = $this->executeQuery($sql, $params);
	54
	55	$sequence = '';
	56	if (STORAGE == 'postgres') {
	57	$sequence = 'users_id_seq';
	58	}
	59
	60	$id_user = intval($this->getLastId($sequence));
	61
	62	$sql = 'INSERT INTO users_config ( user_id, name, value ) VALUES (?, ?, ?)';
00dbaf90	63	$params = array($id_user, 'pager', PAGINATION);
b916bcfc NL	64	$query = $this->executeQuery($sql, $params);
	65
	66	$sql = 'INSERT INTO users_config ( user_id, name, value ) VALUES (?, ?, ?)';
00dbaf90 NL	67	$params = array($id_user, 'language', LANG);
	68	$query = $this->executeQuery($sql, $params);
	69
	70	$sql = 'INSERT INTO users_config ( user_id, name, value ) VALUES (?, ?, ?)';
	71	$params = array($id_user, 'theme', DEFAULT_THEME);
7ce7ec4c	72	$query = $this->executeQuery($sql, $params);
aa8c9f2a	73
7ce7ec4c NL	74	return TRUE;
7ce7ec4c NL	75	}
aa8c9f2a	76
5846b0f1	77	public function getConfigUser($id) {
7ce7ec4c NL	78	$sql = "SELECT * FROM users_config WHERE user_id = ?";
	79	$query = $this->executeQuery($sql, array($id));
	80	$result = $query->fetchAll();
	81	$user_config = array();
	82
	83	foreach ($result as $key => $value) {
	84	$user_config[$value['name']] = $value['value'];
aa8c9f2a NL	85	}
aa8c9f2a NL	86
7ce7ec4c	87	return $user_config;
aa8c9f2a NL	88	}
aa8c9f2a NL	89
027b4e15 DS	90	public function userExists($username) {
	91	$sql = "SELECT * FROM users WHERE username=?";
	92	$query = $this->executeQuery($sql, array($username));
	93	$login = $query->fetchAll();
	94	if (isset($login[0])) {
	95	return true;
	96	} else {
	97	return false;
	98	}
	99	}
	100
7ce7ec4c	101	public function login($username, $password) {
8d3275be NL	102	$sql = "SELECT * FROM users WHERE username=? AND password=?";
	103	$query = $this->executeQuery($sql, array($username, $password));
	104	$login = $query->fetchAll();
aa8c9f2a	105
7ce7ec4c NL	106	$user = array();
	107	if (isset($login[0])) {
	108	$user['id'] = $login[0]['id'];
	109	$user['username'] = $login[0]['username'];
	110	$user['password'] = $login[0]['password'];
	111	$user['name'] = $login[0]['name'];
	112	$user['email'] = $login[0]['email'];
	113	$user['config'] = $this->getConfigUser($login[0]['id']);
	114	}
aa8c9f2a	115
7ce7ec4c	116	return $user;
aa8c9f2a NL	117	}
aa8c9f2a NL	118
00dbaf90	119	public function updatePassword($userId, $password)
6499b26a	120	{
8d3275be	121	$sql_update = "UPDATE users SET password=? WHERE id=?";
1e98ee1d NL	122	$params_update = array($password, $userId);
1e98ee1d NL	123	$query = $this->executeQuery($sql_update, $params_update);
00dbaf90 NL	124	}
	125
	126	public function updateUserConfig($userId, $key, $value) {
58ace494 NL	127	$config = $this->getConfigUser($userId);
	128
	129	if (!isset ($user_config[$key])) {
	130	$sql = "INSERT INTO users_config (`value`, `user_id`, `name`) VALUES (?, ?, ?)";
	131	}
	132	else {
	133	$sql = "UPDATE users_config SET `value`=? WHERE `user_id`=? AND `name`=?";
	134	}
	135
	136	$params = array($value, $userId, $key);
	137	$query = $this->executeQuery($sql, $params);
6499b26a NL	138	}
6499b26a NL	139
14890de3	140	private function executeQuery($sql, $params) {
	141	try
	142	{
	143	$query = $this->getHandle()->prepare($sql);
	144	$query->execute($params);
	145	return $query;
	146	}
	147	catch (Exception $e)
	148	{
eb1af592	149	Tools::logm('execute query error : '.$e->getMessage());
bc1ee852	150	return FALSE;
14890de3	151	}
	152	}
	153
8d3275be NL	154	public function retrieveAll($user_id) {
	155	$sql = "SELECT * FROM entries WHERE user_id=? ORDER BY id";
	156	$query = $this->executeQuery($sql, array($user_id));
44e77bfa	157	$entries = $query->fetchAll();
	158
	159	return $entries;
	160	}
	161
8d3275be	162	public function retrieveOneById($id, $user_id) {
14890de3	163	$entry = NULL;
8d3275be NL	164	$sql = "SELECT * FROM entries WHERE id=? AND user_id=?";
8d3275be NL	165	$params = array(intval($id), $user_id);
14890de3	166	$query = $this->executeQuery($sql, $params);
	167	$entry = $query->fetchAll();
	168
0c2f4537	169	return isset($entry[0]) ? $entry[0] : null;
14890de3	170	}
14890de3	171
8d3275be	172	public function getEntriesByView($view, $user_id, $limit = '') {
14890de3	173	switch ($_SESSION['sort'])
	174	{
	175	case 'ia':
	176	$order = 'ORDER BY id';
	177	break;
	178	case 'id':
	179	$order = 'ORDER BY id DESC';
	180	break;
	181	case 'ta':
	182	$order = 'ORDER BY lower(title)';
	183	break;
	184	case 'td':
	185	$order = 'ORDER BY lower(title) DESC';
	186	break;
	187	default:
	188	$order = 'ORDER BY id';
	189	break;
	190	}
	191
	192	switch ($view)
	193	{
	194	case 'archive':
8d3275be	195	$sql = "SELECT * FROM entries WHERE user_id=? AND is_read=? " . $order;
bc1ee852	196	$params = array($user_id, 1);
14890de3	197	break;
14890de3	198	case 'fav' :
8d3275be	199	$sql = "SELECT * FROM entries WHERE user_id=? AND is_fav=? " . $order;
bc1ee852	200	$params = array($user_id, 1);
14890de3	201	break;
14890de3	202	default:
8d3275be NL	203	$sql = "SELECT * FROM entries WHERE user_id=? AND is_read=? " . $order;
8d3275be NL	204	$params = array($user_id, 0);
14890de3	205	break;
	206	}
	207
6a361945 NL	208	$sql .= ' ' . $limit;
6a361945 NL	209
8d3275be NL	210	$query = $this->executeQuery($sql, $params);
8d3275be NL	211	$entries = $query->fetchAll();
14890de3	212
	213	return $entries;
	214	}
	215
b58e261d NL	216	public function updateContent($id, $content, $user_id) {
	217	$sql_action = 'UPDATE entries SET content = ? WHERE id=? AND user_id=?';
	218	$params_action = array($content, $id, $user_id);
	219	$query = $this->executeQuery($sql_action, $params_action);
	220	return $query;
	221	}
	222
8d3275be	223	public function add($url, $title, $content, $user_id) {
8d3275be NL	224	$sql_action = 'INSERT INTO entries ( url, title, content, user_id ) VALUES (?, ?, ?, ?)';
	225	$params_action = array($url, $title, $content, $user_id);
	226	$query = $this->executeQuery($sql_action, $params_action);
29c6fd46	227	return $query;
14890de3	228	}
14890de3	229
8d3275be	230	public function deleteById($id, $user_id) {
8d3275be NL	231	$sql_action = "DELETE FROM entries WHERE id=? AND user_id=?";
8d3275be NL	232	$params_action = array($id, $user_id);
14890de3	233	$query = $this->executeQuery($sql_action, $params_action);
29c6fd46	234	return $query;
14890de3	235	}
14890de3	236
8d3275be	237	public function favoriteById($id, $user_id) {
bc1ee852	238	$sql_action = "UPDATE entries SET is_fav=NOT is_fav WHERE id=? AND user_id=?";
8d3275be	239	$params_action = array($id, $user_id);
14890de3	240	$query = $this->executeQuery($sql_action, $params_action);
	241	}
	242
8d3275be	243	public function archiveById($id, $user_id) {
bc1ee852	244	$sql_action = "UPDATE entries SET is_read=NOT is_read WHERE id=? AND user_id=?";
8d3275be	245	$params_action = array($id, $user_id);
14890de3	246	$query = $this->executeQuery($sql_action, $params_action);
	247	}
	248
b916bcfc NL	249	public function getLastId($column = '') {
b916bcfc NL	250	return $this->getHandle()->lastInsertId($column);
14890de3	251	}
2cd263e0	252	}