[github/wallabag/wallabag.git] / inc / poche / Database.class.php

<?php
/**
 * poche, a read it later open source system
 *
 * @category   poche
 * @author     Nicolas Lœuillet <support@inthepoche.com>
 * @copyright  2013
 * @license    http://www.wtfpl.net/ see COPYING file
 */

class Database {
    var $handle;

    function __construct()
    {
        switch (STORAGE) {
            case 'sqlite':
                $db_path = 'sqlite:' . STORAGE_SQLITE;
                $this->handle = new PDO($db_path);
                break;
            case 'mysql':
                $db_path = 'mysql:host=' . STORAGE_SERVER . ';dbname=' . STORAGE_DB;
                $this->handle = new PDO($db_path, STORAGE_USER, STORAGE_PASSWORD); 
                break;
            case 'postgres':
                $db_path = 'pgsql:host=' . STORAGE_SERVER . ';dbname=' . STORAGE_DB;
                $this->handle = new PDO($db_path, STORAGE_USER, STORAGE_PASSWORD); 
                break;
        }

        $this->handle->setAttribute(PDO::ATTR_ERRMODE, PDO::ERRMODE_EXCEPTION);
        Tools::logm('storage type ' . STORAGE);
    }

    private function getHandle() {
        return $this->handle;
    }

    public function isInstalled() {
        $sql = "SELECT username FROM users";
        $query = $this->executeQuery($sql, array());
        $hasAdmin = count($query->fetchAll());

        if ($hasAdmin == 0) 
            return FALSE;

        return TRUE;
    }

    public function install($login, $password) {
        $sql = 'INSERT INTO users ( username, password, name, email) VALUES (?, ?, ?, ?)';
        $params = array($login, $password, $login, ' ');
        $query = $this->executeQuery($sql, $params);

        $sequence = '';
        if (STORAGE == 'postgres') {
            $sequence = 'users_id_seq';
        }

        $id_user = intval($this->getLastId($sequence));

        $sql = 'INSERT INTO users_config ( user_id, name, value ) VALUES (?, ?, ?)';
        $params = array($id_user, 'pager', '10');
        $query = $this->executeQuery($sql, $params);

        $sql = 'INSERT INTO users_config ( user_id, name, value ) VALUES (?, ?, ?)';
        $params = array($id_user, 'language', 'en_EN.UTF8');
        $query = $this->executeQuery($sql, $params);

        return TRUE;
    }

    private function getConfigUser($id) {
        $sql = "SELECT * FROM users_config WHERE user_id = ?";
        $query = $this->executeQuery($sql, array($id));
        $result = $query->fetchAll();
        $user_config = array();
        
        foreach ($result as $key => $value) {
            $user_config[$value['name']] = $value['value'];
        }

        return $user_config;
    }

    public function login($username, $password) {
        $sql = "SELECT * FROM users WHERE username=? AND password=?";
        $query = $this->executeQuery($sql, array($username, $password));
        $login = $query->fetchAll();

        $user = array();
        if (isset($login[0])) {
            $user['id'] = $login[0]['id'];
            $user['username'] = $login[0]['username'];
            $user['password'] = $login[0]['password'];
            $user['name'] = $login[0]['name'];
            $user['email'] = $login[0]['email'];
            $user['config'] = $this->getConfigUser($login[0]['id']);
        }

        return $user;
    }

    public function updatePassword($id, $password)
    {
        $sql_update = "UPDATE users SET password=? WHERE id=?";
        $params_update = array($password, $id);
        $query = $this->executeQuery($sql_update, $params_update);
    }

    private function executeQuery($sql, $params) {
        try
        {
            $query = $this->getHandle()->prepare($sql);
            $query->execute($params);
            return $query;
        }
        catch (Exception $e)
        {
            Tools::logm('execute query error : '.$e->getMessage());
            return FALSE;
        }
    }

    public function retrieveAll($user_id) {
        $sql        = "SELECT * FROM entries WHERE user_id=? ORDER BY id";
        $query      = $this->executeQuery($sql, array($user_id));
        $entries    = $query->fetchAll();

        return $entries;
    }

    public function retrieveOneById($id, $user_id) {
        $entry  = NULL;
        $sql    = "SELECT * FROM entries WHERE id=? AND user_id=?";
        $params = array(intval($id), $user_id);
        $query  = $this->executeQuery($sql, $params);
        $entry  = $query->fetchAll();

        return $entry[0];
    }

    public function getEntriesByView($view, $user_id, $limit = '') {
        switch ($_SESSION['sort'])
        {
            case 'ia':
                $order = 'ORDER BY id';
                break;
            case 'id':
                $order = 'ORDER BY id DESC';
                break;
            case 'ta':
                $order = 'ORDER BY lower(title)';
                break;
            case 'td':
                $order = 'ORDER BY lower(title) DESC';
                break;
            default:
                $order = 'ORDER BY id';
                break;
        }

        switch ($view)
        {
            case 'archive':
                $sql    = "SELECT * FROM entries WHERE user_id=? AND is_read=? " . $order;
                $params = array($user_id, 1);
                break;
            case 'fav' :
                $sql    = "SELECT * FROM entries WHERE user_id=? AND is_fav=? " . $order;
                $params = array($user_id, 1);
                break;
            default:
                $sql    = "SELECT * FROM entries WHERE user_id=? AND is_read=? " . $order;
                $params = array($user_id, 0);
                break;
        }

        $sql .= ' ' . $limit;

        $query = $this->executeQuery($sql, $params);
        $entries = $query->fetchAll();

        return $entries;
    }

    public function updateContent($id, $content, $user_id) {
        $sql_action = 'UPDATE entries SET content = ? WHERE id=? AND user_id=?';
        $params_action = array($content, $id, $user_id);
        $query = $this->executeQuery($sql_action, $params_action);
        return $query;
    }

    public function add($url, $title, $content, $user_id) {
        $sql_action = 'INSERT INTO entries ( url, title, content, user_id ) VALUES (?, ?, ?, ?)';
        $params_action = array($url, $title, $content, $user_id);
        $query = $this->executeQuery($sql_action, $params_action);
        return $query;
    }

    public function deleteById($id, $user_id) {
        $sql_action     = "DELETE FROM entries WHERE id=? AND user_id=?";
        $params_action  = array($id, $user_id);
        $query          = $this->executeQuery($sql_action, $params_action);
        return $query;
    }

    public function favoriteById($id, $user_id) {
        $sql_action     = "UPDATE entries SET is_fav=NOT is_fav WHERE id=? AND user_id=?";
        $params_action  = array($id, $user_id);
        $query          = $this->executeQuery($sql_action, $params_action);
    }

    public function archiveById($id, $user_id) {
        $sql_action     = "UPDATE entries SET is_read=NOT is_read WHERE id=? AND user_id=?";
        $params_action  = array($id, $user_id);
        $query          = $this->executeQuery($sql_action, $params_action);
    }

    public function getLastId($column = '') {
        return $this->getHandle()->lastInsertId($column);
    }
}
Commit	Line	Data
14890de3	1	<?php
	2	/**
	3	* poche, a read it later open source system
	4	*
	5	* @category poche
	6	* @author Nicolas Lœuillet <support@inthepoche.com>
	7	* @copyright 2013
	8	* @license http://www.wtfpl.net/ see COPYING file
	9	*/
	10
bc1ee852	11	class Database {
14890de3	12	var $handle;
14890de3	13
68857cea NL	14	function __construct()
	15	{
	16	switch (STORAGE) {
	17	case 'sqlite':
	18	$db_path = 'sqlite:' . STORAGE_SQLITE;
	19	$this->handle = new PDO($db_path);
	20	break;
	21	case 'mysql':
	22	$db_path = 'mysql:host=' . STORAGE_SERVER . ';dbname=' . STORAGE_DB;
	23	$this->handle = new PDO($db_path, STORAGE_USER, STORAGE_PASSWORD);
	24	break;
	25	case 'postgres':
	26	$db_path = 'pgsql:host=' . STORAGE_SERVER . ';dbname=' . STORAGE_DB;
	27	$this->handle = new PDO($db_path, STORAGE_USER, STORAGE_PASSWORD);
	28	break;
	29	}
	30
14890de3	31	$this->handle->setAttribute(PDO::ATTR_ERRMODE, PDO::ERRMODE_EXCEPTION);
580d60b9	32	Tools::logm('storage type ' . STORAGE);
14890de3	33	}
	34
	35	private function getHandle() {
	36	return $this->handle;
	37	}
	38
aa8c9f2a	39	public function isInstalled() {
b916bcfc NL	40	$sql = "SELECT username FROM users";
	41	$query = $this->executeQuery($sql, array());
	42	$hasAdmin = count($query->fetchAll());
aa8c9f2a	43
b916bcfc	44	if ($hasAdmin == 0)
aa8c9f2a NL	45	return FALSE;
	46
	47	return TRUE;
	48	}
	49
	50	public function install($login, $password) {
b916bcfc NL	51	$sql = 'INSERT INTO users ( username, password, name, email) VALUES (?, ?, ?, ?)';
	52	$params = array($login, $password, $login, ' ');
	53	$query = $this->executeQuery($sql, $params);
	54
	55	$sequence = '';
	56	if (STORAGE == 'postgres') {
	57	$sequence = 'users_id_seq';
	58	}
	59
	60	$id_user = intval($this->getLastId($sequence));
	61
	62	$sql = 'INSERT INTO users_config ( user_id, name, value ) VALUES (?, ?, ?)';
	63	$params = array($id_user, 'pager', '10');
	64	$query = $this->executeQuery($sql, $params);
	65
	66	$sql = 'INSERT INTO users_config ( user_id, name, value ) VALUES (?, ?, ?)';
	67	$params = array($id_user, 'language', 'en_EN.UTF8');
7ce7ec4c	68	$query = $this->executeQuery($sql, $params);
aa8c9f2a	69
7ce7ec4c NL	70	return TRUE;
7ce7ec4c NL	71	}
aa8c9f2a	72
7ce7ec4c NL	73	private function getConfigUser($id) {
	74	$sql = "SELECT * FROM users_config WHERE user_id = ?";
	75	$query = $this->executeQuery($sql, array($id));
	76	$result = $query->fetchAll();
	77	$user_config = array();
	78
	79	foreach ($result as $key => $value) {
	80	$user_config[$value['name']] = $value['value'];
aa8c9f2a NL	81	}
aa8c9f2a NL	82
7ce7ec4c	83	return $user_config;
aa8c9f2a NL	84	}
aa8c9f2a NL	85
7ce7ec4c	86	public function login($username, $password) {
8d3275be NL	87	$sql = "SELECT * FROM users WHERE username=? AND password=?";
	88	$query = $this->executeQuery($sql, array($username, $password));
	89	$login = $query->fetchAll();
aa8c9f2a	90
7ce7ec4c NL	91	$user = array();
	92	if (isset($login[0])) {
	93	$user['id'] = $login[0]['id'];
	94	$user['username'] = $login[0]['username'];
	95	$user['password'] = $login[0]['password'];
	96	$user['name'] = $login[0]['name'];
	97	$user['email'] = $login[0]['email'];
	98	$user['config'] = $this->getConfigUser($login[0]['id']);
	99	}
aa8c9f2a	100
7ce7ec4c	101	return $user;
aa8c9f2a NL	102	}
aa8c9f2a NL	103
7ce7ec4c	104	public function updatePassword($id, $password)
6499b26a	105	{
8d3275be NL	106	$sql_update = "UPDATE users SET password=? WHERE id=?";
	107	$params_update = array($password, $id);
	108	$query = $this->executeQuery($sql_update, $params_update);
6499b26a NL	109	}
6499b26a NL	110
14890de3	111	private function executeQuery($sql, $params) {
	112	try
	113	{
	114	$query = $this->getHandle()->prepare($sql);
	115	$query->execute($params);
	116	return $query;
	117	}
	118	catch (Exception $e)
	119	{
eb1af592	120	Tools::logm('execute query error : '.$e->getMessage());
bc1ee852	121	return FALSE;
14890de3	122	}
	123	}
	124
8d3275be NL	125	public function retrieveAll($user_id) {
	126	$sql = "SELECT * FROM entries WHERE user_id=? ORDER BY id";
	127	$query = $this->executeQuery($sql, array($user_id));
44e77bfa	128	$entries = $query->fetchAll();
	129
	130	return $entries;
	131	}
	132
8d3275be	133	public function retrieveOneById($id, $user_id) {
14890de3	134	$entry = NULL;
8d3275be NL	135	$sql = "SELECT * FROM entries WHERE id=? AND user_id=?";
8d3275be NL	136	$params = array(intval($id), $user_id);
14890de3	137	$query = $this->executeQuery($sql, $params);
	138	$entry = $query->fetchAll();
	139
	140	return $entry[0];
	141	}
	142
8d3275be	143	public function getEntriesByView($view, $user_id, $limit = '') {
14890de3	144	switch ($_SESSION['sort'])
	145	{
	146	case 'ia':
	147	$order = 'ORDER BY id';
	148	break;
	149	case 'id':
	150	$order = 'ORDER BY id DESC';
	151	break;
	152	case 'ta':
	153	$order = 'ORDER BY lower(title)';
	154	break;
	155	case 'td':
	156	$order = 'ORDER BY lower(title) DESC';
	157	break;
	158	default:
	159	$order = 'ORDER BY id';
	160	break;
	161	}
	162
	163	switch ($view)
	164	{
	165	case 'archive':
8d3275be	166	$sql = "SELECT * FROM entries WHERE user_id=? AND is_read=? " . $order;
bc1ee852	167	$params = array($user_id, 1);
14890de3	168	break;
14890de3	169	case 'fav' :
8d3275be	170	$sql = "SELECT * FROM entries WHERE user_id=? AND is_fav=? " . $order;
bc1ee852	171	$params = array($user_id, 1);
14890de3	172	break;
14890de3	173	default:
8d3275be NL	174	$sql = "SELECT * FROM entries WHERE user_id=? AND is_read=? " . $order;
8d3275be NL	175	$params = array($user_id, 0);
14890de3	176	break;
	177	}
	178
6a361945 NL	179	$sql .= ' ' . $limit;
6a361945 NL	180
8d3275be NL	181	$query = $this->executeQuery($sql, $params);
8d3275be NL	182	$entries = $query->fetchAll();
14890de3	183
	184	return $entries;
	185	}
	186
b58e261d NL	187	public function updateContent($id, $content, $user_id) {
	188	$sql_action = 'UPDATE entries SET content = ? WHERE id=? AND user_id=?';
	189	$params_action = array($content, $id, $user_id);
	190	$query = $this->executeQuery($sql_action, $params_action);
	191	return $query;
	192	}
	193
8d3275be	194	public function add($url, $title, $content, $user_id) {
8d3275be NL	195	$sql_action = 'INSERT INTO entries ( url, title, content, user_id ) VALUES (?, ?, ?, ?)';
	196	$params_action = array($url, $title, $content, $user_id);
	197	$query = $this->executeQuery($sql_action, $params_action);
29c6fd46	198	return $query;
14890de3	199	}
14890de3	200
8d3275be	201	public function deleteById($id, $user_id) {
8d3275be NL	202	$sql_action = "DELETE FROM entries WHERE id=? AND user_id=?";
8d3275be NL	203	$params_action = array($id, $user_id);
14890de3	204	$query = $this->executeQuery($sql_action, $params_action);
29c6fd46	205	return $query;
14890de3	206	}
14890de3	207
8d3275be	208	public function favoriteById($id, $user_id) {
bc1ee852	209	$sql_action = "UPDATE entries SET is_fav=NOT is_fav WHERE id=? AND user_id=?";
8d3275be	210	$params_action = array($id, $user_id);
14890de3	211	$query = $this->executeQuery($sql_action, $params_action);
	212	}
	213
8d3275be	214	public function archiveById($id, $user_id) {
bc1ee852	215	$sql_action = "UPDATE entries SET is_read=NOT is_read WHERE id=? AND user_id=?";
8d3275be	216	$params_action = array($id, $user_id);
14890de3	217	$query = $this->executeQuery($sql_action, $params_action);
	218	}
	219
b916bcfc NL	220	public function getLastId($column = '') {
b916bcfc NL	221	return $this->getHandle()->lastInsertId($column);
14890de3	222	}
2cd263e0	223	}