]> git.immae.eu Git - github/wallabag/wallabag.git/blob - inc/poche/Database.class.php
projects / github / wallabag / wallabag.git / blob
? search:
summary | shortlog | log | commit | commitdiff | tree
blame | history | raw | HEAD
bug fix: changing password was buggy
[github/wallabag/wallabag.git] / inc / poche / Database.class.php
1 <?php
2 /**
3 * poche, a read it later open source system
4 *
5 * @category poche
6 * @author Nicolas LÅ“uillet <support@inthepoche.com>
7 * @copyright 2013
8 * @license http://www.wtfpl.net/ see COPYING file
9 */
10
11 class Database {
12 var $handle;
13
14 function __construct()
15 {
16 switch (STORAGE) {
17 case 'sqlite':
18 $db_path = 'sqlite:' . STORAGE_SQLITE;
19 $this->handle = new PDO($db_path);
20 break;
21 case 'mysql':
22 $db_path = 'mysql:host=' . STORAGE_SERVER . ';dbname=' . STORAGE_DB;
23 $this->handle = new PDO($db_path, STORAGE_USER, STORAGE_PASSWORD);
24 break;
25 case 'postgres':
26 $db_path = 'pgsql:host=' . STORAGE_SERVER . ';dbname=' . STORAGE_DB;
27 $this->handle = new PDO($db_path, STORAGE_USER, STORAGE_PASSWORD);
28 break;
29 }
30
31 $this->handle->setAttribute(PDO::ATTR_ERRMODE, PDO::ERRMODE_EXCEPTION);
32 Tools::logm('storage type ' . STORAGE);
33 }
34
35 private function getHandle() {
36 return $this->handle;
37 }
38
39 public function isInstalled() {
40 $sql = "SELECT username FROM users";
41 $query = $this->executeQuery($sql, array());
42 $hasAdmin = count($query->fetchAll());
43
44 if ($hasAdmin == 0)
45 return FALSE;
46
47 return TRUE;
48 }
49
50 public function install($login, $password) {
51 $sql = 'INSERT INTO users ( username, password, name, email) VALUES (?, ?, ?, ?)';
52 $params = array($login, $password, $login, ' ');
53 $query = $this->executeQuery($sql, $params);
54
55 $sequence = '';
56 if (STORAGE == 'postgres') {
57 $sequence = 'users_id_seq';
58 }
59
60 $id_user = intval($this->getLastId($sequence));
61
62 $sql = 'INSERT INTO users_config ( user_id, name, value ) VALUES (?, ?, ?)';
63 $params = array($id_user, 'pager', PAGINATION);
64 $query = $this->executeQuery($sql, $params);
65
66 $sql = 'INSERT INTO users_config ( user_id, name, value ) VALUES (?, ?, ?)';
67 $params = array($id_user, 'language', LANG);
68 $query = $this->executeQuery($sql, $params);
69
70 $sql = 'INSERT INTO users_config ( user_id, name, value ) VALUES (?, ?, ?)';
71 $params = array($id_user, 'theme', DEFAULT_THEME);
72 $query = $this->executeQuery($sql, $params);
73
74 return TRUE;
75 }
76
77 private function getConfigUser($id) {
78 $sql = "SELECT * FROM users_config WHERE user_id = ?";
79 $query = $this->executeQuery($sql, array($id));
80 $result = $query->fetchAll();
81 $user_config = array();
82
83 foreach ($result as $key => $value) {
84 $user_config[$value['name']] = $value['value'];
85 }
86
87 return $user_config;
88 }
89
90 public function login($username, $password) {
91 $sql = "SELECT * FROM users WHERE username=? AND password=?";
92 $query = $this->executeQuery($sql, array($username, $password));
93 $login = $query->fetchAll();
94
95 $user = array();
96 if (isset($login[0])) {
97 $user['id'] = $login[0]['id'];
98 $user['username'] = $login[0]['username'];
99 $user['password'] = $login[0]['password'];
100 $user['name'] = $login[0]['name'];
101 $user['email'] = $login[0]['email'];
102 $user['config'] = $this->getConfigUser($login[0]['id']);
103 }
104
105 return $user;
106 }
107
108 public function updatePassword($userId, $password)
109 {
110 $sql_update = "UPDATE users SET password=? WHERE id=?";
111 $params_update = array($password, $userId);
112 $query = $this->executeQuery($sql_update, $params_update);
113 }
114
115 public function updateUserConfig($userId, $key, $value) {
116 $config = $this->getConfigUser($userId);
117
118 if (!isset ($user_config[$key])) {
119 $sql = "INSERT INTO users_config (`value`, `user_id`, `name`) VALUES (?, ?, ?)";
120 }
121 else {
122 $sql = "UPDATE users_config SET `value`=? WHERE `user_id`=? AND `name`=?";
123 }
124
125 $params = array($value, $userId, $key);
126 $query = $this->executeQuery($sql, $params);
127 }
128
129 private function executeQuery($sql, $params) {
130 try
131 {
132 $query = $this->getHandle()->prepare($sql);
133 $query->execute($params);
134 return $query;
135 }
136 catch (Exception $e)
137 {
138 Tools::logm('execute query error : '.$e->getMessage());
139 return FALSE;
140 }
141 }
142
143 public function retrieveAll($user_id) {
144 $sql = "SELECT * FROM entries WHERE user_id=? ORDER BY id";
145 $query = $this->executeQuery($sql, array($user_id));
146 $entries = $query->fetchAll();
147
148 return $entries;
149 }
150
151 public function retrieveOneById($id, $user_id) {
152 $entry = NULL;
153 $sql = "SELECT * FROM entries WHERE id=? AND user_id=?";
154 $params = array(intval($id), $user_id);
155 $query = $this->executeQuery($sql, $params);
156 $entry = $query->fetchAll();
157
158 return $entry[0];
159 }
160
161 public function getEntriesByView($view, $user_id, $limit = '') {
162 switch ($_SESSION['sort'])
163 {
164 case 'ia':
165 $order = 'ORDER BY id';
166 break;
167 case 'id':
168 $order = 'ORDER BY id DESC';
169 break;
170 case 'ta':
171 $order = 'ORDER BY lower(title)';
172 break;
173 case 'td':
174 $order = 'ORDER BY lower(title) DESC';
175 break;
176 default:
177 $order = 'ORDER BY id';
178 break;
179 }
180
181 switch ($view)
182 {
183 case 'archive':
184 $sql = "SELECT * FROM entries WHERE user_id=? AND is_read=? " . $order;
185 $params = array($user_id, 1);
186 break;
187 case 'fav' :
188 $sql = "SELECT * FROM entries WHERE user_id=? AND is_fav=? " . $order;
189 $params = array($user_id, 1);
190 break;
191 default:
192 $sql = "SELECT * FROM entries WHERE user_id=? AND is_read=? " . $order;
193 $params = array($user_id, 0);
194 break;
195 }
196
197 $sql .= ' ' . $limit;
198
199 $query = $this->executeQuery($sql, $params);
200 $entries = $query->fetchAll();
201
202 return $entries;
203 }
204
205 public function updateContent($id, $content, $user_id) {
206 $sql_action = 'UPDATE entries SET content = ? WHERE id=? AND user_id=?';
207 $params_action = array($content, $id, $user_id);
208 $query = $this->executeQuery($sql_action, $params_action);
209 return $query;
210 }
211
212 public function add($url, $title, $content, $user_id) {
213 $sql_action = 'INSERT INTO entries ( url, title, content, user_id ) VALUES (?, ?, ?, ?)';
214 $params_action = array($url, $title, $content, $user_id);
215 $query = $this->executeQuery($sql_action, $params_action);
216 return $query;
217 }
218
219 public function deleteById($id, $user_id) {
220 $sql_action = "DELETE FROM entries WHERE id=? AND user_id=?";
221 $params_action = array($id, $user_id);
222 $query = $this->executeQuery($sql_action, $params_action);
223 return $query;
224 }
225
226 public function favoriteById($id, $user_id) {
227 $sql_action = "UPDATE entries SET is_fav=NOT is_fav WHERE id=? AND user_id=?";
228 $params_action = array($id, $user_id);
229 $query = $this->executeQuery($sql_action, $params_action);
230 }
231
232 public function archiveById($id, $user_id) {
233 $sql_action = "UPDATE entries SET is_read=NOT is_read WHERE id=? AND user_id=?";
234 $params_action = array($id, $user_id);
235 $query = $this->executeQuery($sql_action, $params_action);
236 }
237
238 public function getLastId($column = '') {
239 return $this->getHandle()->lastInsertId($column);
240 }
241 }
A self hostable application for saving web pages: Save and classify articles. Read them later. Freely.