[github/wallabag/wallabag.git] / inc / poche / Database.class.php

<?php
/**
 * wallabag, self hostable application allowing you to not miss any content anymore
 *
 * @category   wallabag
 * @author     Nicolas Lœuillet <nicolas@loeuillet.org>
 * @copyright  2013
 * @license    http://opensource.org/licenses/MIT see COPYING file
 */

class Database {
    var $handle;
    private $order = array(
      'ia' => 'ORDER BY entries.id',
      'id' => 'ORDER BY entries.id DESC',
      'ta' => 'ORDER BY lower(entries.title)',
      'td' => 'ORDER BY lower(entries.title) DESC',
      'default' => 'ORDER BY entries.id'
    );

    function __construct()
    {
        switch (STORAGE) {
            case 'sqlite':
                $db_path = 'sqlite:' . STORAGE_SQLITE;
                $this->handle = new PDO($db_path);
                break;
            case 'mysql':
                $db_path = 'mysql:host=' . STORAGE_SERVER . ';dbname=' . STORAGE_DB;
                $this->handle = new PDO($db_path, STORAGE_USER, STORAGE_PASSWORD);
                break;
            case 'postgres':
                $db_path = 'pgsql:host=' . STORAGE_SERVER . ';dbname=' . STORAGE_DB;
                $this->handle = new PDO($db_path, STORAGE_USER, STORAGE_PASSWORD);
                break;
            default:
                die(STORAGE . ' is not a recognised database system !');
        }

        $this->handle->setAttribute(PDO::ATTR_ERRMODE, PDO::ERRMODE_EXCEPTION);
        $this->_checkTags();
        Tools::logm('storage type ' . STORAGE);
    }

    private function getHandle() {
        return $this->handle;
    }

    private function _checkTags() {

        if (STORAGE == 'sqlite') {
            $sql = '
                CREATE TABLE IF NOT EXISTS tags (
                    id INTEGER PRIMARY KEY AUTOINCREMENT NOT NULL UNIQUE,
                    value TEXT
                )';
        }
        elseif(STORAGE == 'mysql') {
            $sql = '
                CREATE TABLE IF NOT EXISTS `tags` (
                  `id` int(11) NOT NULL AUTO_INCREMENT,
                  `value` varchar(255) NOT NULL,
                  PRIMARY KEY (`id`)
                ) ENGINE=InnoDB DEFAULT CHARSET=utf8;
            ';
        }
        else {
            $sql = '
                CREATE TABLE IF NOT EXISTS tags (
                  id bigserial primary key,
                  value varchar(255) NOT NULL
                );
            ';
        }

        $query = $this->executeQuery($sql, array());

        if (STORAGE == 'sqlite') {
            $sql = '
                CREATE TABLE IF NOT EXISTS tags_entries (
                    id INTEGER PRIMARY KEY AUTOINCREMENT NOT NULL UNIQUE,
                    entry_id INTEGER,
                    tag_id INTEGER,
                    FOREIGN KEY(entry_id) REFERENCES entries(id) ON DELETE CASCADE,
                    FOREIGN KEY(tag_id) REFERENCES tags(id) ON DELETE CASCADE
                )';
        }
        elseif(STORAGE == 'mysql') {
            $sql = '
                CREATE TABLE IF NOT EXISTS `tags_entries` (
                  `id` int(11) NOT NULL AUTO_INCREMENT,
                  `entry_id` int(11) NOT NULL,
                  `tag_id` int(11) NOT NULL,
                  FOREIGN KEY(entry_id) REFERENCES entries(id) ON DELETE CASCADE,
                  FOREIGN KEY(tag_id) REFERENCES tags(id) ON DELETE CASCADE,
                  PRIMARY KEY (`id`)
                ) ENGINE=InnoDB  DEFAULT CHARSET=utf8;
            ';
        }
        else {
            $sql = '
                CREATE TABLE IF NOT EXISTS tags_entries (
                  id bigserial primary key,
                  entry_id integer NOT NULL,
                  tag_id integer NOT NULL
                )
            ';
        }

        $query = $this->executeQuery($sql, array());
    }

    public function install($login, $password) {
        $sql = 'INSERT INTO users ( username, password, name, email) VALUES (?, ?, ?, ?)';
        $params = array($login, $password, $login, ' ');
        $query = $this->executeQuery($sql, $params);

        $sequence = '';
        if (STORAGE == 'postgres') {
            $sequence = 'users_id_seq';
        }

        $id_user = intval($this->getLastId($sequence));

        $sql = 'INSERT INTO users_config ( user_id, name, value ) VALUES (?, ?, ?)';
        $params = array($id_user, 'pager', PAGINATION);
        $query = $this->executeQuery($sql, $params);

        $sql = 'INSERT INTO users_config ( user_id, name, value ) VALUES (?, ?, ?)';
        $params = array($id_user, 'language', LANG);
        $query = $this->executeQuery($sql, $params);

        $sql = 'INSERT INTO users_config ( user_id, name, value ) VALUES (?, ?, ?)';
        $params = array($id_user, 'theme', DEFAULT_THEME);
        $query = $this->executeQuery($sql, $params);

        return TRUE;
    }

    public function getConfigUser($id) {
        $sql = "SELECT * FROM users_config WHERE user_id = ?";
        $query = $this->executeQuery($sql, array($id));
        $result = $query->fetchAll();
        $user_config = array();

        foreach ($result as $key => $value) {
            $user_config[$value['name']] = $value['value'];
        }

        return $user_config;
    }

    public function userExists($username) {
        $sql = "SELECT * FROM users WHERE username=?";
        $query = $this->executeQuery($sql, array($username));
        $login = $query->fetchAll();
        if (isset($login[0])) {
            return true;
        } else {
            return false;
        }
    }

    public function login($username, $password, $isauthenticated=false) {
        if ($isauthenticated) {
          $sql = "SELECT * FROM users WHERE username=?";
          $query = $this->executeQuery($sql, array($username));
        } else {
          $sql = "SELECT * FROM users WHERE username=? AND password=?";
          $query = $this->executeQuery($sql, array($username, $password));
        }
        $login = $query->fetchAll();

        $user = array();
        if (isset($login[0])) {
            $user['id'] = $login[0]['id'];
            $user['username'] = $login[0]['username'];
            $user['password'] = $login[0]['password'];
            $user['name'] = $login[0]['name'];
            $user['email'] = $login[0]['email'];
            $user['config'] = $this->getConfigUser($login[0]['id']);
        }

        return $user;
    }

    public function updatePassword($userId, $password)
    {
        $sql_update = "UPDATE users SET password=? WHERE id=?";
        $params_update = array($password, $userId);
        $query = $this->executeQuery($sql_update, $params_update);
    }

    public function updateUserConfig($userId, $key, $value) {
        $config = $this->getConfigUser($userId);

        if (! isset($config[$key])) {
            $sql = "INSERT INTO users_config (value, user_id, name) VALUES (?, ?, ?)";
        }
        else {
            $sql = "UPDATE users_config SET value=? WHERE user_id=? AND name=?";
        }

        $params = array($value, $userId, $key);
        $query = $this->executeQuery($sql, $params);
    }

    private function executeQuery($sql, $params) {
        try
        {
            $query = $this->getHandle()->prepare($sql);
            $query->execute($params);
            return $query;
        }
        catch (Exception $e)
        {
            Tools::logm('execute query error : '.$e->getMessage());
            return FALSE;
        }
    }
    
    public function listUsers($username=null) {
        $sql = 'SELECT count(*) FROM users'.( $username ? ' WHERE username=?' : '');
        $query = $this->executeQuery($sql, ( $username ? array($username) : array()));
        list($count) = $query->fetch();
        return $count;
    }
    
    public function getUserPassword($userID) {
        $sql = "SELECT * FROM users WHERE id=?";
        $query = $this->executeQuery($sql, array($userID));
        $password = $query->fetchAll();
        return isset($password[0]['password']) ? $password[0]['password'] : null;
    }
    
    public function deleteUserConfig($userID) {
        $sql_action = 'DELETE from users_config WHERE user_id=?';
        $params_action = array($userID);
        $query = $this->executeQuery($sql_action, $params_action);
        return $query;
    }
    
    public function deleteTagsEntriesAndEntries($userID) {
        $entries = $this->retrieveAll($userID);
        foreach($entries as $entryid) {
            $tags = $this->retrieveTagsByEntry($entryid);
            foreach($tags as $tag) {
                $this->removeTagForEntry($entryid,$tags);
            }
            $this->deleteById($entryid,$userID);
        }
    }
    
    public function deleteUser($userID) {
        $sql_action = 'DELETE from users WHERE id=?';
        $params_action = array($userID);
        $query = $this->executeQuery($sql_action, $params_action);
    }

    public function updateContentAndTitle($id, $title, $body, $user_id) {
        $sql_action = 'UPDATE entries SET content = ?, title = ? WHERE id=? AND user_id=?';
        $params_action = array($body, $title, $id, $user_id);
        $query = $this->executeQuery($sql_action, $params_action);
        return $query;
    }

    public function retrieveUnfetchedEntries($user_id, $limit) {

        $sql_limit = "LIMIT 0,".$limit;
        if (STORAGE == 'postgres') {
            $sql_limit = "LIMIT ".$limit." OFFSET 0";
        }

        $sql        = "SELECT * FROM entries WHERE (content = '' OR content IS NULL) AND title LIKE 'Untitled - Import%' AND user_id=? ORDER BY id " . $sql_limit;
        $query      = $this->executeQuery($sql, array($user_id));
        $entries    = $query->fetchAll();

        return $entries;
    }

    public function retrieveUnfetchedEntriesCount($user_id) {
      $sql        = "SELECT count(*) FROM entries WHERE (content = '' OR content IS NULL) AND title LIKE 'Untitled - Import%' AND user_id=?";
      $query      = $this->executeQuery($sql, array($user_id));
      list($count) = $query->fetch();

      return $count;
    }

    public function retrieveAll($user_id) {
        $sql        = "SELECT * FROM entries WHERE user_id=? ORDER BY id";
        $query      = $this->executeQuery($sql, array($user_id));
        $entries    = $query->fetchAll();

        return $entries;
    }

    public function retrieveOneById($id, $user_id) {
        $entry  = NULL;
        $sql    = "SELECT * FROM entries WHERE id=? AND user_id=?";
        $params = array(intval($id), $user_id);
        $query  = $this->executeQuery($sql, $params);
        $entry  = $query->fetchAll();

        return isset($entry[0]) ? $entry[0] : null;
    }

    public function retrieveOneByURL($url, $user_id) {
        $entry  = NULL;
        $sql    = "SELECT * FROM entries WHERE url=? AND user_id=?";
        $params = array($url, $user_id);
        $query  = $this->executeQuery($sql, $params);
        $entry  = $query->fetchAll();

        return isset($entry[0]) ? $entry[0] : null;
    }

    public function reassignTags($old_entry_id, $new_entry_id) {
        $sql    = "UPDATE tags_entries SET entry_id=? WHERE entry_id=?";
        $params = array($new_entry_id, $old_entry_id);
        $query  = $this->executeQuery($sql, $params);
    }

    public function getEntriesByView($view, $user_id, $limit = '', $tag_id = 0) {
        switch ($view) {
            case 'archive':
                $sql    = "SELECT * FROM entries WHERE user_id=? AND is_read=? ";
                $params = array($user_id, 1);
                break;
            case 'fav' :
                $sql    = "SELECT * FROM entries WHERE user_id=? AND is_fav=? ";
                $params = array($user_id, 1);
                break;
            case 'tag' :
                $sql    = "SELECT entries.* FROM entries
                LEFT JOIN tags_entries ON tags_entries.entry_id=entries.id
                WHERE entries.user_id=? AND tags_entries.tag_id = ? ";
                $params = array($user_id, $tag_id);
                break;
            default:
                $sql    = "SELECT * FROM entries WHERE user_id=? AND is_read=? ";
                $params = array($user_id, 0);
                break;
        }

                $sql .= $this->getEntriesOrder().' ' . $limit;

                $query = $this->executeQuery($sql, $params);
                $entries = $query->fetchAll();

                return $entries;
        }

    public function getEntriesByViewCount($view, $user_id, $tag_id = 0) {
        switch ($view) {
            case 'archive':
                    $sql    = "SELECT count(*) FROM entries WHERE user_id=? AND is_read=? ";
                $params = array($user_id, 1);
                break;
            case 'fav' :
                    $sql    = "SELECT count(*) FROM entries WHERE user_id=? AND is_fav=? ";
                $params = array($user_id, 1);
                break;
            case 'tag' :
                $sql    = "SELECT count(*) FROM entries
                    LEFT JOIN tags_entries ON tags_entries.entry_id=entries.id
                    WHERE entries.user_id=? AND tags_entries.tag_id = ? ";
                $params = array($user_id, $tag_id);
                break;
            default:
                $sql    = "SELECT count(*) FROM entries WHERE user_id=? AND is_read=? ";
                $params = array($user_id, 0);
                break;
        }

        $query = $this->executeQuery($sql, $params);
        list($count) = $query->fetch();

        return $count;
    }

    public function updateContent($id, $content, $user_id) {
        $sql_action = 'UPDATE entries SET content = ? WHERE id=? AND user_id=?';
        $params_action = array($content, $id, $user_id);
        $query = $this->executeQuery($sql_action, $params_action);
        return $query;
    }

    /**
     *
     * @param string $url
     * @param string $title
     * @param string $content
     * @param integer $user_id
     * @return integer $id of inserted record
     */
    public function add($url, $title, $content, $user_id, $isFavorite=0, $isRead=0) {
        $sql_action = 'INSERT INTO entries ( url, title, content, user_id, is_fav, is_read ) VALUES (?, ?, ?, ?, ?, ?)';
        $params_action = array($url, $title, $content, $user_id, $isFavorite, $isRead);

        if ( !$this->executeQuery($sql_action, $params_action) ) {
          $id = null;
        }
        else {
          $id = intval($this->getLastId( (STORAGE == 'postgres') ? 'entries_id_seq' : '') );
        }
        return $id;
    }

    public function deleteById($id, $user_id) {
        $sql_action     = "DELETE FROM entries WHERE id=? AND user_id=?";
        $params_action  = array($id, $user_id);
        $query          = $this->executeQuery($sql_action, $params_action);
        return $query;
    }

    public function favoriteById($id, $user_id) {
        $sql_action     = "UPDATE entries SET is_fav=NOT is_fav WHERE id=? AND user_id=?";
        $params_action  = array($id, $user_id);
        $query          = $this->executeQuery($sql_action, $params_action);
    }

    public function archiveById($id, $user_id) {
        $sql_action     = "UPDATE entries SET is_read=NOT is_read WHERE id=? AND user_id=?";
        $params_action  = array($id, $user_id);
        $query          = $this->executeQuery($sql_action, $params_action);
    }

    public function archiveAll($user_id) {
        $sql_action     = "UPDATE entries SET is_read=? WHERE user_id=? AND is_read=?";
        $params_action  = array($user_id, 1, 0);
        $query          = $this->executeQuery($sql_action, $params_action);
    }

    public function getLastId($column = '') {
        return $this->getHandle()->lastInsertId($column);
    }

    public function search($term, $user_id, $limit = '') {
        $search = '%'.$term.'%';
        $sql_action = "SELECT * FROM entries WHERE user_id=? AND (content LIKE ? OR title LIKE ? OR url LIKE ?) "; //searches in content, title and URL
        $sql_action .= $this->getEntriesOrder().' ' . $limit;
        $params_action = array($user_id, $search, $search, $search);
        $query = $this->executeQuery($sql_action, $params_action);
        return $query->fetchAll();
  	}

    public function retrieveAllTags($user_id, $term = null) {
        $sql = "SELECT DISTINCT tags.*, count(entries.id) AS entriescount FROM tags
          LEFT JOIN tags_entries ON tags_entries.tag_id=tags.id
          LEFT JOIN entries ON tags_entries.entry_id=entries.id
          WHERE entries.user_id=?
            ". (($term) ? "AND lower(tags.value) LIKE ?" : '') ."
          GROUP BY tags.id, tags.value
          ORDER BY tags.value";
        $query = $this->executeQuery($sql, (($term)? array($user_id, strtolower('%'.$term.'%')) : array($user_id) ));
        $tags = $query->fetchAll();

        return $tags;
    }

    public function retrieveTag($id, $user_id) {
        $tag  = NULL;
        $sql    = "SELECT DISTINCT tags.* FROM tags
          LEFT JOIN tags_entries ON tags_entries.tag_id=tags.id
          LEFT JOIN entries ON tags_entries.entry_id=entries.id
          WHERE tags.id=? AND entries.user_id=?";
        $params = array(intval($id), $user_id);
        $query  = $this->executeQuery($sql, $params);
        $tag  = $query->fetchAll();

        return isset($tag[0]) ? $tag[0] : null;
    }

    public function retrieveEntriesByTag($tag_id, $user_id) {
        $sql =
            "SELECT entries.* FROM entries
            LEFT JOIN tags_entries ON tags_entries.entry_id=entries.id
            WHERE tags_entries.tag_id = ? AND entries.user_id=? ORDER by entries.id DESC";
        $query = $this->executeQuery($sql, array($tag_id, $user_id));
        $entries = $query->fetchAll();

        return $entries;
    }

    public function retrieveTagsByEntry($entry_id) {
        $sql =
            "SELECT tags.* FROM tags
            LEFT JOIN tags_entries ON tags_entries.tag_id=tags.id
            WHERE tags_entries.entry_id = ?";
        $query = $this->executeQuery($sql, array($entry_id));
        $tags = $query->fetchAll();

        return $tags;
    }

    public function removeTagForEntry($entry_id, $tag_id) {
        $sql_action     = "DELETE FROM tags_entries WHERE tag_id=? AND entry_id=?";
        $params_action  = array($tag_id, $entry_id);
        $query          = $this->executeQuery($sql_action, $params_action);
        return $query;
    }
    
    public function cleanUnusedTag($tag_id) {
        $sql_action = "SELECT tags.* FROM tags JOIN tags_entries ON tags_entries.tag_id=tags.id WHERE tags.id=?";
        $query = $this->executeQuery($sql_action,array($tag_id));
        $tagstokeep = $query->fetchAll();
        $sql_action = "SELECT tags.* FROM tags LEFT JOIN tags_entries ON tags_entries.tag_id=tags.id WHERE tags.id=?";
        $query = $this->executeQuery($sql_action,array($tag_id));
        $alltags = $query->fetchAll();
        
        foreach ($alltags as $tag) {
            if ($tag && !in_array($tag,$tagstokeep)) {
                $sql_action = "DELETE FROM tags WHERE id=?";
                $params_action = array($tag[0]);
                $this->executeQuery($sql_action, $params_action);
                return true;
            }
        }
        
    }

    public function retrieveTagByValue($value) {
        $tag  = NULL;
        $sql    = "SELECT * FROM tags WHERE value=?";
        $params = array($value);
        $query  = $this->executeQuery($sql, $params);
        $tag  = $query->fetchAll();

        return isset($tag[0]) ? $tag[0] : null;
    }

    public function createTag($value) {
        $sql_action = 'INSERT INTO tags ( value ) VALUES (?)';
        $params_action = array($value);
        $query = $this->executeQuery($sql_action, $params_action);
        return $query;
    }

    public function setTagToEntry($tag_id, $entry_id) {
        $sql_action = 'INSERT INTO tags_entries ( tag_id, entry_id ) VALUES (?, ?)';
        $params_action = array($tag_id, $entry_id);
        $query = $this->executeQuery($sql_action, $params_action);
        return $query;
    }

        private function getEntriesOrder() {
            if (isset($_SESSION['sort']) and array_key_exists($_SESSION['sort'], $this->order)) {
                return $this->order[$_SESSION['sort']];
            }
            else {
                return $this->order['default'];
            }
        }

}
Commit	Line	Data
14890de3	1	<?php
14890de3	2	/**
c95b78a8	3	* wallabag, self hostable application allowing you to not miss any content anymore
14890de3	4	*
c95b78a8 NL	5	* @category wallabag
c95b78a8 NL	6	* @author Nicolas Lœuillet <nicolas@loeuillet.org>
14890de3	7	* @copyright 2013
3602405e	8	* @license http://opensource.org/licenses/MIT see COPYING file
14890de3	9	*/
14890de3	10
bc1ee852	11	class Database {
14890de3	12	var $handle;
032e0ca1 MR	13	private $order = array(
	14	'ia' => 'ORDER BY entries.id',
	15	'id' => 'ORDER BY entries.id DESC',
	16	'ta' => 'ORDER BY lower(entries.title)',
	17	'td' => 'ORDER BY lower(entries.title) DESC',
	18	'default' => 'ORDER BY entries.id'
	19	);
	20
182faf26	21	function __construct()
68857cea NL	22	{
	23	switch (STORAGE) {
	24	case 'sqlite':
	25	$db_path = 'sqlite:' . STORAGE_SQLITE;
	26	$this->handle = new PDO($db_path);
	27	break;
	28	case 'mysql':
	29	$db_path = 'mysql:host=' . STORAGE_SERVER . ';dbname=' . STORAGE_DB;
182faf26	30	$this->handle = new PDO($db_path, STORAGE_USER, STORAGE_PASSWORD);
68857cea NL	31	break;
	32	case 'postgres':
	33	$db_path = 'pgsql:host=' . STORAGE_SERVER . ';dbname=' . STORAGE_DB;
182faf26	34	$this->handle = new PDO($db_path, STORAGE_USER, STORAGE_PASSWORD);
68857cea	35	break;
8af31ae0	36	default:
8af31ae0	37	die(STORAGE . ' is not a recognised database system !');
68857cea NL	38	}
68857cea NL	39
14890de3	40	$this->handle->setAttribute(PDO::ATTR_ERRMODE, PDO::ERRMODE_EXCEPTION);
3602405e	41	$this->_checkTags();
580d60b9	42	Tools::logm('storage type ' . STORAGE);
14890de3	43	}
	44
	45	private function getHandle() {
	46	return $this->handle;
	47	}
	48
3602405e	49	private function _checkTags() {
5cfafc61 NL	50
	51	if (STORAGE == 'sqlite') {
	52	$sql = '
	53	CREATE TABLE IF NOT EXISTS tags (
	54	id INTEGER PRIMARY KEY AUTOINCREMENT NOT NULL UNIQUE,
	55	value TEXT
	56	)';
	57	}
	58	elseif(STORAGE == 'mysql') {
	59	$sql = '
	60	CREATE TABLE IF NOT EXISTS `tags` (
	61	`id` int(11) NOT NULL AUTO_INCREMENT,
	62	`value` varchar(255) NOT NULL,
	63	PRIMARY KEY (`id`)
	64	) ENGINE=InnoDB DEFAULT CHARSET=utf8;
	65	';
	66	}
	67	else {
	68	$sql = '
5ce39784	69	CREATE TABLE IF NOT EXISTS tags (
5cfafc61 NL	70	id bigserial primary key,
	71	value varchar(255) NOT NULL
	72	);
	73	';
	74	}
aa8c9f2a	75
5cfafc61 NL	76	$query = $this->executeQuery($sql, array());
	77
	78	if (STORAGE == 'sqlite') {
	79	$sql = '
a562e390	80	CREATE TABLE IF NOT EXISTS tags_entries (
5cfafc61 NL	81	id INTEGER PRIMARY KEY AUTOINCREMENT NOT NULL UNIQUE,
	82	entry_id INTEGER,
	83	tag_id INTEGER,
	84	FOREIGN KEY(entry_id) REFERENCES entries(id) ON DELETE CASCADE,
	85	FOREIGN KEY(tag_id) REFERENCES tags(id) ON DELETE CASCADE
	86	)';
	87	}
	88	elseif(STORAGE == 'mysql') {
	89	$sql = '
	90	CREATE TABLE IF NOT EXISTS `tags_entries` (
	91	`id` int(11) NOT NULL AUTO_INCREMENT,
	92	`entry_id` int(11) NOT NULL,
	93	`tag_id` int(11) NOT NULL,
	94	FOREIGN KEY(entry_id) REFERENCES entries(id) ON DELETE CASCADE,
	95	FOREIGN KEY(tag_id) REFERENCES tags(id) ON DELETE CASCADE,
	96	PRIMARY KEY (`id`)
	97	) ENGINE=InnoDB DEFAULT CHARSET=utf8;
	98	';
	99	}
	100	else {
	101	$sql = '
5ce39784	102	CREATE TABLE IF NOT EXISTS tags_entries (
5cfafc61 NL	103	id bigserial primary key,
	104	entry_id integer NOT NULL,
	105	tag_id integer NOT NULL
	106	)
	107	';
	108	}
	109
	110	$query = $this->executeQuery($sql, array());
aa8c9f2a NL	111	}
	112
	113	public function install($login, $password) {
b916bcfc NL	114	$sql = 'INSERT INTO users ( username, password, name, email) VALUES (?, ?, ?, ?)';
	115	$params = array($login, $password, $login, ' ');
	116	$query = $this->executeQuery($sql, $params);
	117
	118	$sequence = '';
	119	if (STORAGE == 'postgres') {
	120	$sequence = 'users_id_seq';
	121	}
	122
	123	$id_user = intval($this->getLastId($sequence));
	124
	125	$sql = 'INSERT INTO users_config ( user_id, name, value ) VALUES (?, ?, ?)';
00dbaf90	126	$params = array($id_user, 'pager', PAGINATION);
b916bcfc NL	127	$query = $this->executeQuery($sql, $params);
	128
	129	$sql = 'INSERT INTO users_config ( user_id, name, value ) VALUES (?, ?, ?)';
00dbaf90 NL	130	$params = array($id_user, 'language', LANG);
00dbaf90 NL	131	$query = $this->executeQuery($sql, $params);
182faf26	132
00dbaf90 NL	133	$sql = 'INSERT INTO users_config ( user_id, name, value ) VALUES (?, ?, ?)';
00dbaf90 NL	134	$params = array($id_user, 'theme', DEFAULT_THEME);
7ce7ec4c	135	$query = $this->executeQuery($sql, $params);
aa8c9f2a	136
7ce7ec4c NL	137	return TRUE;
7ce7ec4c NL	138	}
aa8c9f2a	139
5846b0f1	140	public function getConfigUser($id) {
7ce7ec4c NL	141	$sql = "SELECT * FROM users_config WHERE user_id = ?";
	142	$query = $this->executeQuery($sql, array($id));
	143	$result = $query->fetchAll();
	144	$user_config = array();
182faf26	145
7ce7ec4c NL	146	foreach ($result as $key => $value) {
7ce7ec4c NL	147	$user_config[$value['name']] = $value['value'];
aa8c9f2a NL	148	}
aa8c9f2a NL	149
7ce7ec4c	150	return $user_config;
aa8c9f2a NL	151	}
aa8c9f2a NL	152
027b4e15 DS	153	public function userExists($username) {
	154	$sql = "SELECT * FROM users WHERE username=?";
	155	$query = $this->executeQuery($sql, array($username));
	156	$login = $query->fetchAll();
	157	if (isset($login[0])) {
	158	return true;
	159	} else {
	160	return false;
	161	}
	162	}
	163
6af66b11 MR	164	public function login($username, $password, $isauthenticated=false) {
	165	if ($isauthenticated) {
	166	$sql = "SELECT * FROM users WHERE username=?";
	167	$query = $this->executeQuery($sql, array($username));
	168	} else {
	169	$sql = "SELECT * FROM users WHERE username=? AND password=?";
	170	$query = $this->executeQuery($sql, array($username, $password));
	171	}
8d3275be	172	$login = $query->fetchAll();
aa8c9f2a	173
7ce7ec4c NL	174	$user = array();
	175	if (isset($login[0])) {
	176	$user['id'] = $login[0]['id'];
	177	$user['username'] = $login[0]['username'];
	178	$user['password'] = $login[0]['password'];
	179	$user['name'] = $login[0]['name'];
	180	$user['email'] = $login[0]['email'];
	181	$user['config'] = $this->getConfigUser($login[0]['id']);
	182	}
aa8c9f2a	183
7ce7ec4c	184	return $user;
aa8c9f2a NL	185	}
aa8c9f2a NL	186
00dbaf90	187	public function updatePassword($userId, $password)
6499b26a	188	{
8d3275be	189	$sql_update = "UPDATE users SET password=? WHERE id=?";
1e98ee1d NL	190	$params_update = array($password, $userId);
1e98ee1d NL	191	$query = $this->executeQuery($sql_update, $params_update);
00dbaf90	192	}
182faf26	193
00dbaf90	194	public function updateUserConfig($userId, $key, $value) {
58ace494	195	$config = $this->getConfigUser($userId);
182faf26	196
d1d3498b	197	if (! isset($config[$key])) {
da5fc42f	198	$sql = "INSERT INTO users_config (value, user_id, name) VALUES (?, ?, ?)";
58ace494 NL	199	}
58ace494 NL	200	else {
da5fc42f	201	$sql = "UPDATE users_config SET value=? WHERE user_id=? AND name=?";
58ace494 NL	202	}
	203
	204	$params = array($value, $userId, $key);
	205	$query = $this->executeQuery($sql, $params);
6499b26a NL	206	}
6499b26a NL	207
14890de3	208	private function executeQuery($sql, $params) {
	209	try
	210	{
	211	$query = $this->getHandle()->prepare($sql);
	212	$query->execute($params);
	213	return $query;
	214	}
	215	catch (Exception $e)
	216	{
eb1af592	217	Tools::logm('execute query error : '.$e->getMessage());
bc1ee852	218	return FALSE;
14890de3	219	}
14890de3	220	}
4d99bae8	221
	222	public function listUsers($username=null) {
	223	$sql = 'SELECT count(*) FROM users'.( $username ? ' WHERE username=?' : '');
	224	$query = $this->executeQuery($sql, ( $username ? array($username) : array()));
	225	list($count) = $query->fetch();
	226	return $count;
	227	}
	228
	229	public function getUserPassword($userID) {
	230	$sql = "SELECT * FROM users WHERE id=?";
	231	$query = $this->executeQuery($sql, array($userID));
	232	$password = $query->fetchAll();
	233	return isset($password[0]['password']) ? $password[0]['password'] : null;
	234	}
	235
	236	public function deleteUserConfig($userID) {
	237	$sql_action = 'DELETE from users_config WHERE user_id=?';
	238	$params_action = array($userID);
	239	$query = $this->executeQuery($sql_action, $params_action);
	240	return $query;
	241	}
	242
	243	public function deleteTagsEntriesAndEntries($userID) {
	244	$entries = $this->retrieveAll($userID);
	245	foreach($entries as $entryid) {
	246	$tags = $this->retrieveTagsByEntry($entryid);
	247	foreach($tags as $tag) {
	248	$this->removeTagForEntry($entryid,$tags);
	249	}
	250	$this->deleteById($entryid,$userID);
	251	}
	252	}
	253
	254	public function deleteUser($userID) {
	255	$sql_action = 'DELETE from users WHERE id=?';
	256	$params_action = array($userID);
	257	$query = $this->executeQuery($sql_action, $params_action);
	258	}
14890de3	259
53e3158d NL	260	public function updateContentAndTitle($id, $title, $body, $user_id) {
	261	$sql_action = 'UPDATE entries SET content = ?, title = ? WHERE id=? AND user_id=?';
	262	$params_action = array($body, $title, $id, $user_id);
	263	$query = $this->executeQuery($sql_action, $params_action);
53e3158d NL	264	return $query;
	265	}
	266
	267	public function retrieveUnfetchedEntries($user_id, $limit) {
	268
	269	$sql_limit = "LIMIT 0,".$limit;
	270	if (STORAGE == 'postgres') {
	271	$sql_limit = "LIMIT ".$limit." OFFSET 0";
	272	}
	273
0f859c6f	274	$sql = "SELECT * FROM entries WHERE (content = '' OR content IS NULL) AND title LIKE 'Untitled - Import%' AND user_id=? ORDER BY id " . $sql_limit;
53e3158d NL	275	$query = $this->executeQuery($sql, array($user_id));
	276	$entries = $query->fetchAll();
	277
	278	return $entries;
	279	}
	280
182faf26	281	public function retrieveUnfetchedEntriesCount($user_id) {
0f859c6f	282	$sql = "SELECT count(*) FROM entries WHERE (content = '' OR content IS NULL) AND title LIKE 'Untitled - Import%' AND user_id=?";
182faf26 MR	283	$query = $this->executeQuery($sql, array($user_id));
	284	list($count) = $query->fetch();
	285
	286	return $count;
	287	}
	288
8d3275be	289	public function retrieveAll($user_id) {
182faf26	290	$sql = "SELECT * FROM entries WHERE user_id=? ORDER BY id";
8d3275be	291	$query = $this->executeQuery($sql, array($user_id));
44e77bfa	292	$entries = $query->fetchAll();
	293
	294	return $entries;
	295	}
	296
8d3275be	297	public function retrieveOneById($id, $user_id) {
14890de3	298	$entry = NULL;
8d3275be NL	299	$sql = "SELECT * FROM entries WHERE id=? AND user_id=?";
8d3275be NL	300	$params = array(intval($id), $user_id);
14890de3	301	$query = $this->executeQuery($sql, $params);
	302	$entry = $query->fetchAll();
	303
0c2f4537	304	return isset($entry[0]) ? $entry[0] : null;
14890de3	305	}
14890de3	306
488fc63b MR	307	public function retrieveOneByURL($url, $user_id) {
488fc63b MR	308	$entry = NULL;
182faf26	309	$sql = "SELECT * FROM entries WHERE url=? AND user_id=?";
488fc63b MR	310	$params = array($url, $user_id);
	311	$query = $this->executeQuery($sql, $params);
	312	$entry = $query->fetchAll();
	313
	314	return isset($entry[0]) ? $entry[0] : null;
	315	}
	316
	317	public function reassignTags($old_entry_id, $new_entry_id) {
	318	$sql = "UPDATE tags_entries SET entry_id=? WHERE entry_id=?";
	319	$params = array($new_entry_id, $old_entry_id);
	320	$query = $this->executeQuery($sql, $params);
	321	}
	322
032e0ca1 MR	323	public function getEntriesByView($view, $user_id, $limit = '', $tag_id = 0) {
	324	switch ($view) {
	325	case 'archive':
182faf26	326	$sql = "SELECT * FROM entries WHERE user_id=? AND is_read=? ";
032e0ca1	327	$params = array($user_id, 1);
14890de3	328	break;
032e0ca1	329	case 'fav' :
182faf26	330	$sql = "SELECT * FROM entries WHERE user_id=? AND is_fav=? ";
032e0ca1	331	$params = array($user_id, 1);
14890de3	332	break;
032e0ca1 MR	333	case 'tag' :
	334	$sql = "SELECT entries.* FROM entries
	335	LEFT JOIN tags_entries ON tags_entries.entry_id=entries.id
182faf26	336	WHERE entries.user_id=? AND tags_entries.tag_id = ? ";
032e0ca1	337	$params = array($user_id, $tag_id);
14890de3	338	break;
14890de3	339	default:
182faf26	340	$sql = "SELECT * FROM entries WHERE user_id=? AND is_read=? ";
032e0ca1	341	$params = array($user_id, 0);
14890de3	342	break;
	343	}
	344
032e0ca1 MR	345	$sql .= $this->getEntriesOrder().' ' . $limit;
	346
	347	$query = $this->executeQuery($sql, $params);
	348	$entries = $query->fetchAll();
	349
	350	return $entries;
	351	}
	352
53e3158d NL	353	public function getEntriesByViewCount($view, $user_id, $tag_id = 0) {
53e3158d NL	354	switch ($view) {
14890de3	355	case 'archive':
182faf26	356	$sql = "SELECT count(*) FROM entries WHERE user_id=? AND is_read=? ";
bc1ee852	357	$params = array($user_id, 1);
14890de3	358	break;
14890de3	359	case 'fav' :
182faf26	360	$sql = "SELECT count(*) FROM entries WHERE user_id=? AND is_fav=? ";
bc1ee852	361	$params = array($user_id, 1);
14890de3	362	break;
53e3158d NL	363	case 'tag' :
	364	$sql = "SELECT count(*) FROM entries
	365	LEFT JOIN tags_entries ON tags_entries.entry_id=entries.id
182faf26	366	WHERE entries.user_id=? AND tags_entries.tag_id = ? ";
53e3158d NL	367	$params = array($user_id, $tag_id);
53e3158d NL	368	break;
14890de3	369	default:
182faf26	370	$sql = "SELECT count(*) FROM entries WHERE user_id=? AND is_read=? ";
8d3275be	371	$params = array($user_id, 0);
14890de3	372	break;
	373	}
	374
8d3275be	375	$query = $this->executeQuery($sql, $params);
032e0ca1	376	list($count) = $query->fetch();
14890de3	377
53e3158d	378	return $count;
14890de3	379	}
14890de3	380
b58e261d NL	381	public function updateContent($id, $content, $user_id) {
	382	$sql_action = 'UPDATE entries SET content = ? WHERE id=? AND user_id=?';
	383	$params_action = array($content, $id, $user_id);
	384	$query = $this->executeQuery($sql_action, $params_action);
	385	return $query;
	386	}
	387
182faf26 MR	388	/**
	389	*
	390	* @param string $url
	391	* @param string $title
	392	* @param string $content
	393	* @param integer $user_id
	394	* @return integer $id of inserted record
	395	*/
	396	public function add($url, $title, $content, $user_id, $isFavorite=0, $isRead=0) {
6400371f NL	397	$sql_action = 'INSERT INTO entries ( url, title, content, user_id, is_fav, is_read ) VALUES (?, ?, ?, ?, ?, ?)';
6400371f NL	398	$params_action = array($url, $title, $content, $user_id, $isFavorite, $isRead);
5425b0dd	399
182faf26 MR	400	if ( !$this->executeQuery($sql_action, $params_action) ) {
	401	$id = null;
	402	}
	403	else {
1bcbe8be	404	$id = intval($this->getLastId( (STORAGE == 'postgres') ? 'entries_id_seq' : '') );
182faf26 MR	405	}
182faf26 MR	406	return $id;
14890de3	407	}
14890de3	408
8d3275be	409	public function deleteById($id, $user_id) {
8d3275be NL	410	$sql_action = "DELETE FROM entries WHERE id=? AND user_id=?";
8d3275be NL	411	$params_action = array($id, $user_id);
14890de3	412	$query = $this->executeQuery($sql_action, $params_action);
29c6fd46	413	return $query;
14890de3	414	}
14890de3	415
8d3275be	416	public function favoriteById($id, $user_id) {
bc1ee852	417	$sql_action = "UPDATE entries SET is_fav=NOT is_fav WHERE id=? AND user_id=?";
8d3275be	418	$params_action = array($id, $user_id);
14890de3	419	$query = $this->executeQuery($sql_action, $params_action);
	420	}
	421
8d3275be	422	public function archiveById($id, $user_id) {
bc1ee852	423	$sql_action = "UPDATE entries SET is_read=NOT is_read WHERE id=? AND user_id=?";
8d3275be	424	$params_action = array($id, $user_id);
14890de3	425	$query = $this->executeQuery($sql_action, $params_action);
	426	}
	427
f14807de NL	428	public function archiveAll($user_id) {
	429	$sql_action = "UPDATE entries SET is_read=? WHERE user_id=? AND is_read=?";
	430	$params_action = array($user_id, 1, 0);
	431	$query = $this->executeQuery($sql_action, $params_action);
	432	}
	433
b916bcfc NL	434	public function getLastId($column = '') {
b916bcfc NL	435	return $this->getHandle()->lastInsertId($column);
14890de3	436	}
5ce39784	437
a4585f7e MR	438	public function search($term, $user_id, $limit = '') {
	439	$search = '%'.$term.'%';
	440	$sql_action = "SELECT * FROM entries WHERE user_id=? AND (content LIKE ? OR title LIKE ? OR url LIKE ?) "; //searches in content, title and URL
	441	$sql_action .= $this->getEntriesOrder().' ' . $limit;
	442	$params_action = array($user_id, $search, $search, $search);
	443	$query = $this->executeQuery($sql_action, $params_action);
	444	return $query->fetchAll();
	445	}
5bea1a4d	446
fb26cc93 MR	447	public function retrieveAllTags($user_id, $term = null) {
fb26cc93 MR	448	$sql = "SELECT DISTINCT tags.*, count(entries.id) AS entriescount FROM tags
b89d5a2b NL	449	LEFT JOIN tags_entries ON tags_entries.tag_id=tags.id
b89d5a2b NL	450	LEFT JOIN entries ON tags_entries.entry_id=entries.id
182faf26	451	WHERE entries.user_id=?
fb26cc93 MR	452	". (($term) ? "AND lower(tags.value) LIKE ?" : '') ."
	453	GROUP BY tags.id, tags.value
	454	ORDER BY tags.value";
	455	$query = $this->executeQuery($sql, (($term)? array($user_id, strtolower('%'.$term.'%')) : array($user_id) ));
2e2ebe5e NL	456	$tags = $query->fetchAll();
	457
	458	return $tags;
	459	}
	460
b89d5a2b	461	public function retrieveTag($id, $user_id) {
4886ed6d	462	$tag = NULL;
e83cf5a7	463	$sql = "SELECT DISTINCT tags.* FROM tags
b89d5a2b NL	464	LEFT JOIN tags_entries ON tags_entries.tag_id=tags.id
b89d5a2b NL	465	LEFT JOIN entries ON tags_entries.entry_id=entries.id
182faf26	466	WHERE tags.id=? AND entries.user_id=?";
b89d5a2b	467	$params = array(intval($id), $user_id);
4886ed6d NL	468	$query = $this->executeQuery($sql, $params);
	469	$tag = $query->fetchAll();
	470
	471	return isset($tag[0]) ? $tag[0] : null;
	472	}
	473
b89d5a2b	474	public function retrieveEntriesByTag($tag_id, $user_id) {
182faf26	475	$sql =
9de34d4e	476	"SELECT entries.* FROM entries
4886ed6d	477	LEFT JOIN tags_entries ON tags_entries.entry_id=entries.id
25052a76	478	WHERE tags_entries.tag_id = ? AND entries.user_id=? ORDER by entries.id DESC";
b89d5a2b	479	$query = $this->executeQuery($sql, array($tag_id, $user_id));
4886ed6d NL	480	$entries = $query->fetchAll();
	481
	482	return $entries;
	483	}
	484
5bea1a4d	485	public function retrieveTagsByEntry($entry_id) {
182faf26	486	$sql =
9de34d4e	487	"SELECT tags.* FROM tags
5bea1a4d NL	488	LEFT JOIN tags_entries ON tags_entries.tag_id=tags.id
5bea1a4d NL	489	WHERE tags_entries.entry_id = ?";
2e2ebe5e NL	490	$query = $this->executeQuery($sql, array($entry_id));
2e2ebe5e NL	491	$tags = $query->fetchAll();
5bea1a4d NL	492
	493	return $tags;
	494	}
c432fa16 NL	495
	496	public function removeTagForEntry($entry_id, $tag_id) {
	497	$sql_action = "DELETE FROM tags_entries WHERE tag_id=? AND entry_id=?";
	498	$params_action = array($tag_id, $entry_id);
	499	$query = $this->executeQuery($sql_action, $params_action);
	500	return $query;
	501	}
9c743ab9	502
24696800	503	public function cleanUnusedTag($tag_id) {
	504	$sql_action = "SELECT tags.* FROM tags JOIN tags_entries ON tags_entries.tag_id=tags.id WHERE tags.id=?";
	505	$query = $this->executeQuery($sql_action,array($tag_id));
9c743ab9	506	$tagstokeep = $query->fetchAll();
24696800	507	$sql_action = "SELECT tags.* FROM tags LEFT JOIN tags_entries ON tags_entries.tag_id=tags.id WHERE tags.id=?";
24696800	508	$query = $this->executeQuery($sql_action,array($tag_id));
9c743ab9	509	$alltags = $query->fetchAll();
24696800	510
9c743ab9	511	foreach ($alltags as $tag) {
9c743ab9	512	if ($tag && !in_array($tag,$tagstokeep)) {
9c743ab9	513	$sql_action = "DELETE FROM tags WHERE id=?";
9c743ab9	514	$params_action = array($tag[0]);
24696800	515	$this->executeQuery($sql_action, $params_action);
24696800	516	return true;
9c743ab9	517	}
9c743ab9	518	}
24696800	519
9c743ab9	520	}
c432fa16 NL	521
	522	public function retrieveTagByValue($value) {
	523	$tag = NULL;
	524	$sql = "SELECT * FROM tags WHERE value=?";
	525	$params = array($value);
	526	$query = $this->executeQuery($sql, $params);
	527	$tag = $query->fetchAll();
	528
	529	return isset($tag[0]) ? $tag[0] : null;
	530	}
	531
	532	public function createTag($value) {
	533	$sql_action = 'INSERT INTO tags ( value ) VALUES (?)';
	534	$params_action = array($value);
	535	$query = $this->executeQuery($sql_action, $params_action);
	536	return $query;
	537	}
	538
	539	public function setTagToEntry($tag_id, $entry_id) {
	540	$sql_action = 'INSERT INTO tags_entries ( tag_id, entry_id ) VALUES (?, ?)';
	541	$params_action = array($tag_id, $entry_id);
	542	$query = $this->executeQuery($sql_action, $params_action);
	543	return $query;
	544	}
032e0ca1 MR	545
	546	private function getEntriesOrder() {
	547	if (isset($_SESSION['sort']) and array_key_exists($_SESSION['sort'], $this->order)) {
	548	return $this->order[$_SESSION['sort']];
	549	}
	550	else {
	551	return $this->order['default'];
	552	}
	553	}
	554
2cd263e0	555	}