[github/wallabag/wallabag.git] / inc / poche / Database.class.php

<?php
/**
 * poche, a read it later open source system
 *
 * @category   poche
 * @author     Nicolas Lœuillet <support@inthepoche.com>
 * @copyright  2013
 * @license    http://www.wtfpl.net/ see COPYING file
 */

class Database {
    var $handle;

    function __construct()
    {
        switch (STORAGE) {
            case 'sqlite':
                $db_path = 'sqlite:' . STORAGE_SQLITE;
                $this->handle = new PDO($db_path);
                break;
            case 'mysql':
                $db_path = 'mysql:host=' . STORAGE_SERVER . ';dbname=' . STORAGE_DB;
                $this->handle = new PDO($db_path, STORAGE_USER, STORAGE_PASSWORD); 
                break;
            case 'postgres':
                $db_path = 'pgsql:host=' . STORAGE_SERVER . ';dbname=' . STORAGE_DB;
                $this->handle = new PDO($db_path, STORAGE_USER, STORAGE_PASSWORD); 
                break;
        }

        $this->handle->setAttribute(PDO::ATTR_ERRMODE, PDO::ERRMODE_EXCEPTION);
        Tools::logm('storage type ' . STORAGE);
    }

    private function getHandle() {
        return $this->handle;
    }

    public function isInstalled() {
        $sql = "SELECT username FROM users";
        $query = $this->executeQuery($sql, array());
        $hasAdmin = count($query->fetchAll());

        if ($hasAdmin == 0) 
            return FALSE;

        return TRUE;
    }

    public function install($login, $password) {
        $sql = 'INSERT INTO users ( username, password, name, email) VALUES (?, ?, ?, ?)';
        $params = array($login, $password, $login, ' ');
        $query = $this->executeQuery($sql, $params);

        $sequence = '';
        if (STORAGE == 'postgres') {
            $sequence = 'users_id_seq';
        }

        $id_user = intval($this->getLastId($sequence));

        $sql = 'INSERT INTO users_config ( user_id, name, value ) VALUES (?, ?, ?)';
        $params = array($id_user, 'pager', PAGINATION);
        $query = $this->executeQuery($sql, $params);

        $sql = 'INSERT INTO users_config ( user_id, name, value ) VALUES (?, ?, ?)';
        $params = array($id_user, 'language', LANG);
        $query = $this->executeQuery($sql, $params);
        
        $sql = 'INSERT INTO users_config ( user_id, name, value ) VALUES (?, ?, ?)';
        $params = array($id_user, 'theme', DEFAULT_THEME);
        $query = $this->executeQuery($sql, $params);

        return TRUE;
    }

    private function getConfigUser($id) {
        $sql = "SELECT * FROM users_config WHERE user_id = ?";
        $query = $this->executeQuery($sql, array($id));
        $result = $query->fetchAll();
        $user_config = array();
        
        foreach ($result as $key => $value) {
            $user_config[$value['name']] = $value['value'];
        }

        return $user_config;
    }

    public function login($username, $password) {
        $sql = "SELECT * FROM users WHERE username=? AND password=?";
        $query = $this->executeQuery($sql, array($username, $password));
        $login = $query->fetchAll();

        $user = array();
        if (isset($login[0])) {
            $user['id'] = $login[0]['id'];
            $user['username'] = $login[0]['username'];
            $user['password'] = $login[0]['password'];
            $user['name'] = $login[0]['name'];
            $user['email'] = $login[0]['email'];
            $user['config'] = $this->getConfigUser($login[0]['id']);
        }

        return $user;
    }

    public function updatePassword($userId, $password)
    {
        $sql_update = "UPDATE users SET password=? WHERE id=?";
        $params_update = array($password, $userId);
        $query = $this->executeQuery($sql_update, $params_update);
    }
    
    public function updateUserConfig($userId, $key, $value) {
        $config = $this->getConfigUser($userId);
        
        if (!isset ($user_config[$key])) {
            $sql = "INSERT INTO users_config (`value`, `user_id`, `name`) VALUES (?, ?, ?)";
        }
        else {
            $sql = "UPDATE users_config SET `value`=? WHERE `user_id`=? AND `name`=?";
        }

        $params = array($value, $userId, $key);
        $query = $this->executeQuery($sql, $params);
    }

    private function executeQuery($sql, $params) {
        try
        {
            $query = $this->getHandle()->prepare($sql);
            $query->execute($params);
            return $query;
        }
        catch (Exception $e)
        {
            Tools::logm('execute query error : '.$e->getMessage());
            return FALSE;
        }
    }

    public function retrieveAll($user_id) {
        $sql        = "SELECT * FROM entries WHERE user_id=? ORDER BY id";
        $query      = $this->executeQuery($sql, array($user_id));
        $entries    = $query->fetchAll();

        return $entries;
    }

    public function retrieveOneById($id, $user_id) {
        $entry  = NULL;
        $sql    = "SELECT * FROM entries WHERE id=? AND user_id=?";
        $params = array(intval($id), $user_id);
        $query  = $this->executeQuery($sql, $params);
        $entry  = $query->fetchAll();

        return $entry[0];
    }

    public function getEntriesByView($view, $user_id, $limit = '') {
        switch ($_SESSION['sort'])
        {
            case 'ia':
                $order = 'ORDER BY id';
                break;
            case 'id':
                $order = 'ORDER BY id DESC';
                break;
            case 'ta':
                $order = 'ORDER BY lower(title)';
                break;
            case 'td':
                $order = 'ORDER BY lower(title) DESC';
                break;
            default:
                $order = 'ORDER BY id';
                break;
        }

        switch ($view)
        {
            case 'archive':
                $sql    = "SELECT * FROM entries WHERE user_id=? AND is_read=? " . $order;
                $params = array($user_id, 1);
                break;
            case 'fav' :
                $sql    = "SELECT * FROM entries WHERE user_id=? AND is_fav=? " . $order;
                $params = array($user_id, 1);
                break;
            default:
                $sql    = "SELECT * FROM entries WHERE user_id=? AND is_read=? " . $order;
                $params = array($user_id, 0);
                break;
        }

        $sql .= ' ' . $limit;

        $query = $this->executeQuery($sql, $params);
        $entries = $query->fetchAll();

        return $entries;
    }

    public function updateContent($id, $content, $user_id) {
        $sql_action = 'UPDATE entries SET content = ? WHERE id=? AND user_id=?';
        $params_action = array($content, $id, $user_id);
        $query = $this->executeQuery($sql_action, $params_action);
        return $query;
    }

    public function add($url, $title, $content, $user_id) {
        $sql_action = 'INSERT INTO entries ( url, title, content, user_id ) VALUES (?, ?, ?, ?)';
        $params_action = array($url, $title, $content, $user_id);
        $query = $this->executeQuery($sql_action, $params_action);
        return $query;
    }

    public function deleteById($id, $user_id) {
        $sql_action     = "DELETE FROM entries WHERE id=? AND user_id=?";
        $params_action  = array($id, $user_id);
        $query          = $this->executeQuery($sql_action, $params_action);
        return $query;
    }

    public function favoriteById($id, $user_id) {
        $sql_action     = "UPDATE entries SET is_fav=NOT is_fav WHERE id=? AND user_id=?";
        $params_action  = array($id, $user_id);
        $query          = $this->executeQuery($sql_action, $params_action);
    }

    public function archiveById($id, $user_id) {
        $sql_action     = "UPDATE entries SET is_read=NOT is_read WHERE id=? AND user_id=?";
        $params_action  = array($id, $user_id);
        $query          = $this->executeQuery($sql_action, $params_action);
    }

    public function getLastId($column = '') {
        return $this->getHandle()->lastInsertId($column);
    }
}
Commit	Line	Data
14890de3	1	<?php
	2	/**
	3	* poche, a read it later open source system
	4	*
	5	* @category poche
	6	* @author Nicolas Lœuillet <support@inthepoche.com>
	7	* @copyright 2013
	8	* @license http://www.wtfpl.net/ see COPYING file
	9	*/
	10
bc1ee852	11	class Database {
14890de3	12	var $handle;
14890de3	13
68857cea NL	14	function __construct()
	15	{
	16	switch (STORAGE) {
	17	case 'sqlite':
	18	$db_path = 'sqlite:' . STORAGE_SQLITE;
	19	$this->handle = new PDO($db_path);
	20	break;
	21	case 'mysql':
	22	$db_path = 'mysql:host=' . STORAGE_SERVER . ';dbname=' . STORAGE_DB;
	23	$this->handle = new PDO($db_path, STORAGE_USER, STORAGE_PASSWORD);
	24	break;
	25	case 'postgres':
	26	$db_path = 'pgsql:host=' . STORAGE_SERVER . ';dbname=' . STORAGE_DB;
	27	$this->handle = new PDO($db_path, STORAGE_USER, STORAGE_PASSWORD);
	28	break;
	29	}
	30
14890de3	31	$this->handle->setAttribute(PDO::ATTR_ERRMODE, PDO::ERRMODE_EXCEPTION);
580d60b9	32	Tools::logm('storage type ' . STORAGE);
14890de3	33	}
	34
	35	private function getHandle() {
	36	return $this->handle;
	37	}
	38
aa8c9f2a	39	public function isInstalled() {
b916bcfc NL	40	$sql = "SELECT username FROM users";
	41	$query = $this->executeQuery($sql, array());
	42	$hasAdmin = count($query->fetchAll());
aa8c9f2a	43
b916bcfc	44	if ($hasAdmin == 0)
aa8c9f2a NL	45	return FALSE;
	46
	47	return TRUE;
	48	}
	49
	50	public function install($login, $password) {
b916bcfc NL	51	$sql = 'INSERT INTO users ( username, password, name, email) VALUES (?, ?, ?, ?)';
	52	$params = array($login, $password, $login, ' ');
	53	$query = $this->executeQuery($sql, $params);
	54
	55	$sequence = '';
	56	if (STORAGE == 'postgres') {
	57	$sequence = 'users_id_seq';
	58	}
	59
	60	$id_user = intval($this->getLastId($sequence));
	61
	62	$sql = 'INSERT INTO users_config ( user_id, name, value ) VALUES (?, ?, ?)';
00dbaf90	63	$params = array($id_user, 'pager', PAGINATION);
b916bcfc NL	64	$query = $this->executeQuery($sql, $params);
	65
	66	$sql = 'INSERT INTO users_config ( user_id, name, value ) VALUES (?, ?, ?)';
00dbaf90 NL	67	$params = array($id_user, 'language', LANG);
	68	$query = $this->executeQuery($sql, $params);
	69
	70	$sql = 'INSERT INTO users_config ( user_id, name, value ) VALUES (?, ?, ?)';
	71	$params = array($id_user, 'theme', DEFAULT_THEME);
7ce7ec4c	72	$query = $this->executeQuery($sql, $params);
aa8c9f2a	73
7ce7ec4c NL	74	return TRUE;
7ce7ec4c NL	75	}
aa8c9f2a	76
7ce7ec4c NL	77	private function getConfigUser($id) {
	78	$sql = "SELECT * FROM users_config WHERE user_id = ?";
	79	$query = $this->executeQuery($sql, array($id));
	80	$result = $query->fetchAll();
	81	$user_config = array();
	82
	83	foreach ($result as $key => $value) {
	84	$user_config[$value['name']] = $value['value'];
aa8c9f2a NL	85	}
aa8c9f2a NL	86
7ce7ec4c	87	return $user_config;
aa8c9f2a NL	88	}
aa8c9f2a NL	89
7ce7ec4c	90	public function login($username, $password) {
8d3275be NL	91	$sql = "SELECT * FROM users WHERE username=? AND password=?";
	92	$query = $this->executeQuery($sql, array($username, $password));
	93	$login = $query->fetchAll();
aa8c9f2a	94
7ce7ec4c NL	95	$user = array();
	96	if (isset($login[0])) {
	97	$user['id'] = $login[0]['id'];
	98	$user['username'] = $login[0]['username'];
	99	$user['password'] = $login[0]['password'];
	100	$user['name'] = $login[0]['name'];
	101	$user['email'] = $login[0]['email'];
	102	$user['config'] = $this->getConfigUser($login[0]['id']);
	103	}
aa8c9f2a	104
7ce7ec4c	105	return $user;
aa8c9f2a NL	106	}
aa8c9f2a NL	107
00dbaf90	108	public function updatePassword($userId, $password)
6499b26a	109	{
8d3275be	110	$sql_update = "UPDATE users SET password=? WHERE id=?";
1e98ee1d NL	111	$params_update = array($password, $userId);
1e98ee1d NL	112	$query = $this->executeQuery($sql_update, $params_update);
00dbaf90 NL	113	}
	114
	115	public function updateUserConfig($userId, $key, $value) {
58ace494 NL	116	$config = $this->getConfigUser($userId);
	117
	118	if (!isset ($user_config[$key])) {
	119	$sql = "INSERT INTO users_config (`value`, `user_id`, `name`) VALUES (?, ?, ?)";
	120	}
	121	else {
	122	$sql = "UPDATE users_config SET `value`=? WHERE `user_id`=? AND `name`=?";
	123	}
	124
	125	$params = array($value, $userId, $key);
	126	$query = $this->executeQuery($sql, $params);
6499b26a NL	127	}
6499b26a NL	128
14890de3	129	private function executeQuery($sql, $params) {
	130	try
	131	{
	132	$query = $this->getHandle()->prepare($sql);
	133	$query->execute($params);
	134	return $query;
	135	}
	136	catch (Exception $e)
	137	{
eb1af592	138	Tools::logm('execute query error : '.$e->getMessage());
bc1ee852	139	return FALSE;
14890de3	140	}
	141	}
	142
8d3275be NL	143	public function retrieveAll($user_id) {
	144	$sql = "SELECT * FROM entries WHERE user_id=? ORDER BY id";
	145	$query = $this->executeQuery($sql, array($user_id));
44e77bfa	146	$entries = $query->fetchAll();
	147
	148	return $entries;
	149	}
	150
8d3275be	151	public function retrieveOneById($id, $user_id) {
14890de3	152	$entry = NULL;
8d3275be NL	153	$sql = "SELECT * FROM entries WHERE id=? AND user_id=?";
8d3275be NL	154	$params = array(intval($id), $user_id);
14890de3	155	$query = $this->executeQuery($sql, $params);
	156	$entry = $query->fetchAll();
	157
	158	return $entry[0];
	159	}
	160
8d3275be	161	public function getEntriesByView($view, $user_id, $limit = '') {
14890de3	162	switch ($_SESSION['sort'])
	163	{
	164	case 'ia':
	165	$order = 'ORDER BY id';
	166	break;
	167	case 'id':
	168	$order = 'ORDER BY id DESC';
	169	break;
	170	case 'ta':
	171	$order = 'ORDER BY lower(title)';
	172	break;
	173	case 'td':
	174	$order = 'ORDER BY lower(title) DESC';
	175	break;
	176	default:
	177	$order = 'ORDER BY id';
	178	break;
	179	}
	180
	181	switch ($view)
	182	{
	183	case 'archive':
8d3275be	184	$sql = "SELECT * FROM entries WHERE user_id=? AND is_read=? " . $order;
bc1ee852	185	$params = array($user_id, 1);
14890de3	186	break;
14890de3	187	case 'fav' :
8d3275be	188	$sql = "SELECT * FROM entries WHERE user_id=? AND is_fav=? " . $order;
bc1ee852	189	$params = array($user_id, 1);
14890de3	190	break;
14890de3	191	default:
8d3275be NL	192	$sql = "SELECT * FROM entries WHERE user_id=? AND is_read=? " . $order;
8d3275be NL	193	$params = array($user_id, 0);
14890de3	194	break;
	195	}
	196
6a361945 NL	197	$sql .= ' ' . $limit;
6a361945 NL	198
8d3275be NL	199	$query = $this->executeQuery($sql, $params);
8d3275be NL	200	$entries = $query->fetchAll();
14890de3	201
	202	return $entries;
	203	}
	204
b58e261d NL	205	public function updateContent($id, $content, $user_id) {
	206	$sql_action = 'UPDATE entries SET content = ? WHERE id=? AND user_id=?';
	207	$params_action = array($content, $id, $user_id);
	208	$query = $this->executeQuery($sql_action, $params_action);
	209	return $query;
	210	}
	211
8d3275be	212	public function add($url, $title, $content, $user_id) {
8d3275be NL	213	$sql_action = 'INSERT INTO entries ( url, title, content, user_id ) VALUES (?, ?, ?, ?)';
	214	$params_action = array($url, $title, $content, $user_id);
	215	$query = $this->executeQuery($sql_action, $params_action);
29c6fd46	216	return $query;
14890de3	217	}
14890de3	218
8d3275be	219	public function deleteById($id, $user_id) {
8d3275be NL	220	$sql_action = "DELETE FROM entries WHERE id=? AND user_id=?";
8d3275be NL	221	$params_action = array($id, $user_id);
14890de3	222	$query = $this->executeQuery($sql_action, $params_action);
29c6fd46	223	return $query;
14890de3	224	}
14890de3	225
8d3275be	226	public function favoriteById($id, $user_id) {
bc1ee852	227	$sql_action = "UPDATE entries SET is_fav=NOT is_fav WHERE id=? AND user_id=?";
8d3275be	228	$params_action = array($id, $user_id);
14890de3	229	$query = $this->executeQuery($sql_action, $params_action);
	230	}
	231
8d3275be	232	public function archiveById($id, $user_id) {
bc1ee852	233	$sql_action = "UPDATE entries SET is_read=NOT is_read WHERE id=? AND user_id=?";
8d3275be	234	$params_action = array($id, $user_id);
14890de3	235	$query = $this->executeQuery($sql_action, $params_action);
	236	}
	237
b916bcfc NL	238	public function getLastId($column = '') {
b916bcfc NL	239	return $this->getHandle()->lastInsertId($column);
14890de3	240	}
2cd263e0	241	}