PageRenderTime 47ms CodeModel.GetById 9ms RepoModel.GetById 0ms app.codeStats 0ms

/phpshop1/WEB-INF/modules/product/lib/ps_csv.inc

http://phpshop.googlecode.com/
PHP | 328 lines | 211 code | 38 blank | 79 comment | 23 complexity | 85da7afad7a508ffc753dcd9f507b59c MD5 | raw file
Possible License(s): GPL-2.0, LGPL-2.1 
    

  1. <?php
    2. 

  2. /*
    3. 

  3.  * The ps_csv class
    4. 

  4.  *
    5. 

  5.  * By John Syben
    6. 

  6.  * webme.co.nz
    7. 

  7.  *
    8. 

  8.  * This class allows for the adding of multiple
    9. 

  9.  * products and categories from a csv file
    10. 

  10.  *************************************************************************/
    11. 

  11. 

  12. class ps_csv {
    13. 

  13.   var $classname = "ps_csv";
    14. 

  14. 

  15.   /**************************************************************************
    16. 

  16.   ** name: upload_csv()
    17. 

  17.   ** created by: John Syben
    18. 

  18.   ** modified by: nhyde
    19. 

  19.   ** A db table named 'csv' must exist with the product fields
    20. 

  20.   ** allocated their relative positions in the csv line
    21. 

  21.   ***************************************************************************/
    22. 

  22. 

  23.   function upload_csv(&$d) {
    24. 

  24.   	// handle the upload here
    25. 

  25.  	/* fix by heiko 05.04.2005 */
    26. 

  26.  	global $_FILES;
    27. 

  27.  	$d["file_name"] = $_FILES["file"]["name"];
    28. 

  28.  	$d["file_type"] = $_FILES["file"]["type"];
    29. 

  29.  	$d["file_tmp_name"] = $_FILES["file"]["tmp_name"];
    30. 

  30.  	$d["file"] =$_FILES["file"]["tmp_name"];
    31. 

  31.  	$d["file_size"] =$_FILES["file"]["size"];
    32. 

  32.  	/* end fix by heiko 05.04.2005 */
    33. 

  33. 

  34.  	// handle the upload here
    35. 

  35.  	if (False == $this->handle_csv_upload($d) ) {
    36. 

  36.  		return False;
    37. 

  37.  	}
    38. 

  38. 

  39.     // Get row positions of each element as set in csv table
    40. 

  40.     $db = new ps_DB;
    41. 

  41.     $q = "SELECT * FROM csv ";
    42. 

  42.     $db->query($q);
    43. 

  43.     $db->next_record();
    44. 

  44. 

  45.     // Open csv file
    46. 

  46.     $file = $d["file"]; 
    47. 

  47.     $fp = fopen ($file,"r");
    48. 

  48.     $error="";
    49. 

  49.     $line=1;
    50. 

  50.       // Run through each line of file
    51. 

  51.       while ($data = fgetcsv ($fp, 1000, ",")) {
    52. 

  52. 

  53.           // Check for SKU - required
    54. 

  54.           if (!$data[$db->f("csv_product_sku")-1]) 
    55. 

  55.             $this_error .= "No SKU, ";
    56. 

  56.           else 
    57. 

  57.             $product_sku = $data[$db->f("csv_product_sku")-1];
    58. 

  58. 

  59.           // Check for Product Name - required
    60. 

  60.           if (!$data[$db->f("csv_product_name")-1]) 
    61. 

  61.             $this_error .= "No Product Name, ";
    62. 

  62.           else 
    63. 

  63.             $product_name = $data[$db->f("csv_product_name")-1];
    64. 

  64. 

  65.           // Check for Price - required
    66. 

  66.           if (!$data[$db->f("csv_product_price")-1]) 
    67. 

  67.             $this_error .= "No Price, ";
    68. 

  68.           else 
    69. 

  69.             $product_price = $data[$db->f("csv_product_price")-1];
    70. 

  70. 

  71.           // Check for Category Path - required
    72. 

  72.           if (!$data[$db->f("csv_category_path")-1]) 
    73. 

  73.             $this_error .= "No Category Path, ";
    74. 

  74.           else 
    75. 

  75.             $category_path = $data[$db->f("csv_category_path")-1];
    76. 

  76. 

  77.           // If a required field was missing, add to error to main message and start next line
    78. 

  78.           // Otherwise add or update product
    79. 

  79.           if ($this_error) {
    80. 

  80.             $d["message"] .= "Line $line $this_error<br />";
    81. 

  81.             $this_error = "";
    82. 

  82.           }
    83. 

  83.           else { 
    84. 

  84.             $timestamp = time();
    85. 

  85. 

  86.             // See if sku exists. If so, update product - otherwise add product
    87. 

  87.             $dbp = new ps_DB;
    88. 

  88.             $q = "SELECT * FROM product ";
    89. 

  89.             $q .= "WHERE product_sku='$product_sku'";
    90. 

  90.             $dbp->query($q);
    91. 

  91.               if ($dbp->next_record()) { // SKU exists - update product
    92. 

  92.                 // Update product information
    93. 

  93.                 $q = "UPDATE product SET ";
    94. 

  94.                 $q .= "product_s_desc='" . $data[$db->f("csv_product_s_desc")-1] . "',";
    95. 

  95.                 $q .= "product_desc='" . $data[$db->f("csv_product_desc")-1] . "',";
    96. 

  96.                 $q .= "product_thumb_image='" . $data[$db->f("csv_product_thumb_image")-1] . "',";
    97. 

  97.                 $q .= "product_full_image='" . $data[$db->f("csv_product_full_image")-1] . "',";
    98. 

  98.                 $q .= "product_weight='" . $data[$db->f("csv_product_weight")-1] . "',";
    99. 

  99.                 $q .= "product_weight_uom='" . $data[$db->f("csv_product_weight_uom")-1] . "',";
    100. 

  100.                 $q .= "product_length='" . $data[$db->f("csv_product_length")-1] . "',";
    101. 

  101.                 $q .= "product_width='" . $data[$db->f("csv_product_width")-1] . "',";
    102. 

  102.                 $q .= "product_height='" . $data[$db->f("csv_product_height")-1] . "',";
    103. 

  103.                 $q .= "product_lwh_uom='" . $data[$db->f("csv_product_lwh_uom")-1] . "',";
    104. 

  104.                 $q .= "product_in_stock='" . $data[$db->f("csv_product_in_stock")-1] . "',";
    105. 

  105.                 $q .= "product_available_date='" . $data[$db->f("csv_product_available_date")-1] . "',";
    106. 

  106.                 $q .= "product_special='" . $data[$db->f("csv_product_special")-1] . "',";
    107. 

  107.                 $q .= "product_discount_id='" . $data[$db->f("csv_product_discount_id")-1] . "',";
    108. 

  108.                 $q .= "product_name='" . $product_name . "', ";
    109. 

  109.                 $q .= "mdate='" . $timestamp . "' ";
    110. 

  110.                 $q .= "WHERE product_sku='" . $product_sku . "'";
    111. 

  111.                 $dbu = new ps_DB;
    112. 

  112.                 $dbu->query($q);
    113. 

  113. 

  114.                 // Get default shopper group ID
    115. 

  115.                 $q = "SELECT shopper_group_id FROM shopper_group ";
    116. 

  116.                 $q .= "WHERE shopper_group_name='-default-'";
    117. 

  117.                 $dbsg = new ps_DB;
    118. 

  118.                 $dbsg->query($q);
    119. 

  119.                 $dbsg->next_record();
    120. 

  120. 

  121.                 // Update product price for default shopper group   
    122. 

  122.                 $q = "UPDATE product_price SET ";
    123. 

  123.                 $q .= "product_price='" . $product_price . "',";
    124. 

  124.                 $q .= "shopper_group_id='" . $dbsg->f("shopper_group_id") . "', ";
    125. 

  125.                 $q .= "mdate='" . $timestamp . "' ";
    126. 

  126.                 $q .= "WHERE product_id='" . $dbp->f("product_id") . "'";
    127. 

  127.                 $dbpp = new ps_DB;
    128. 

  128.                 $dbpp->query($q);
    129. 

  129. 

  130.                 // Add report for this line to message
    131. 

  131.                 $d["message"] .= "Line: $line Updated Product SKU: $product_sku<br />";
    132. 

  132.               }
    133. 

  133.               else { // SKU does not exist - add new product
    134. 

  134.                 // Add product information
    135. 

  135.                 $q  = "INSERT INTO product (vendor_id,product_parent_id,product_sku,";
    136. 

  136.                 $q .= "product_name,product_desc,product_s_desc,";
    137. 

  137.                 $q .= "product_thumb_image,product_full_image,";
    138. 

  138.                 $q .= "product_publish,product_weight,product_weight_uom,";
    139. 

  139.                 $q .= "product_length,product_width,product_height,product_lwh_uom,";
    140. 

  140.                 $q .= "product_in_stock,";
    141. 

  141.                 $q .= "product_available_date,product_special,product_discount_id,";
    142. 

  142.                 $q .= "cdate,mdate) ";
    143. 

  143.                 $q .= "VALUES ('1','0','";
    144. 

  144.                 $q .= $data[$db->f("csv_product_sku")-1] . "','" . $data[$db->f("csv_product_name")-1] . "','";
    145. 

  145.                 $q .= $data[$db->f("csv_product_desc")-1] . "','" . $data[$db->f("csv_product_s_desc")-1] . "','";
    146. 

  146.                 $q .= $data[$db->f("csv_product_thumb_image")-1] . "','";
    147. 

  147.                 $q .= $data[$db->f("csv_product_full_image")-1] . "','Y','";
    148. 

  148.                 $q .= $data[$db->f("csv_product_weight")-1] . "','" . $data[$db->f("csv_product_weight_uom")-1] . "','";
    149. 

  149.                 $q .= $data[$db->f("csv_product_length")-1] . "','" . $data[$db->f("csv_product_width")-1] . "','";
    150. 

  150.                 $q .= $data[$db->f("csv_product_height")-1] . "','" . $data[$db->f("csv_product_lwh_uom")-1] . "','";
    151. 

  151.                 $q .= $data[$db->f("csv_product_in_stock")-1] . "','";
    152. 

  152.                 $q .= $data[$db->f("csv_product_available_date")-1] . "','";
    153. 

  153.                 $q .= $data[$db->f("csv_product_special")-1] . "','";
    154. 

  154.                 $q .= $data[$db->f("csv_product_discount_id")-1] . "','$timestamp','$timestamp')";
    155. 

  155.                 $dbu = new ps_DB;
    156. 

  156.                 $dbu->query($q);
    157. 

  157. 

  158.                 // Get the product ID we just created
    159. 

  159.                 $q  = "SELECT product_id FROM product ";
    160. 

  160.                 $q .= "WHERE product_sku = '" . $product_sku . "' ";
    161. 

  161.                 $q .= "AND vendor_id = '1' ";
    162. 

  162.                 $q .= "AND cdate = $timestamp";
    163. 

  163.                 $dbpi = new ps_DB;
    164. 

  164.                 $dbpi->query($q);
    165. 

  165.                 $dbpi->next_record();
    166. 

  166.                 $product_id = $dbpi->f("product_id");
    167. 

  167. 

  168.                 // Use csv_category() method to confirm/add category tree for this product
    169. 

  169.                 $category_id = $this->csv_category($data[$db->f("csv_category_path")-1]);
    170. 

  170. 

  171.                 // Create product/category xref
    172. 

  172.                 $q  = "INSERT INTO product_category_xref ";
    173. 

  173.                 $q .= "(category_id,product_id) ";
    174. 

  174.                 $q .= "VALUES ('" . $category_id . "','";
    175. 

  175.                 $q .=  $product_id . "')";
    176. 

  176.                 $dbcat = new ps_DB;
    177. 

  177.                 $dbcat->query($q);
    178. 

  178. 

  179.                 // Get default shopper group ID
    180. 

  180.                 $q = "SELECT shopper_group_id FROM shopper_group ";
    181. 

  181.                 $q .= "WHERE shopper_group_name='-default-'";
    182. 

  182.                 $dbsg = new ps_DB;
    183. 

  183.                 $dbsg->query($q);
    184. 

  184.                 $dbsg->next_record();
    185. 

  185. 

  186.                 // Add  product price for default shopper group
    187. 

  187.                 $q = "INSERT INTO product_price ";
    188. 

  188.                 $q .= "(product_price,product_id,shopper_group_id,mdate) ";
    189. 

  189.                 $q .= "VALUES ('";
    190. 

  190.                 $q .= $product_price . "','";
    191. 

  191.                 $q .= $product_id . "','";
    192. 

  192.                 $q .= $dbsg->f("shopper_group_id") . "','";
    193. 

  193.                 $q .= $timestamp . "') ";
    194. 

  194.                 $dbpp = new ps_DB;
    195. 

  195.                 $dbpp->query($q);
    196. 

  196. 

  197.                 // Add report for this line to message
    198. 

  198.                 $d["message"] .= "Line: $line Added Product SKU: $product_sku<br />";
    199. 

  199.               }
    200. 

  200.           }
    201. 

  201.         $line++;
    202. 

  202.       } // End while
    203. 

  203.     fclose ($fp);
    204. 

  204.     return True;
    205. 

  205. 

  206.   } //End function upload_csv
    207. 

  207. 

  208. 

  209.   /**************************************************************************
    210. 

  210.   ** name: csv_category()
    211. 

  211.   ** created by: John Syben
    212. 

  212.   ** Creates categories from slash delimited line
    213. 

  213.   ***************************************************************************/
    214. 

  214.   function csv_category($line) {
    215. 

  215.     // Explode slash delimited category tree into array
    216. 

  216.     $category_list = explode("/", $line);
    217. 

  217.     $category_count = count($category_list);
    218. 

  218. 

  219.     $db = new ps_DB;
    220. 

  220.     $category_parent_id = '0';
    221. 

  221. 

  222.       // For each category in array
    223. 

  223.       for($i = 0; $i < $category_count; $i++) {
    224. 

  224.         // See if this category exists with it's parent in xref
    225. 

  225.         $q = "SELECT category.category_id FROM category,category_xref ";
    226. 

  226.         $q .= "WHERE category.category_name='" . $category_list[$i] . "' ";
    227. 

  227.         $q .= "AND category_xref.category_child_id=category.category_id ";
    228. 

  228.         $q .= "AND category_xref.category_parent_id='$category_parent_id'";
    229. 

  229.         $db->query($q);
    230. 

  230.           // If it does not exist, create it
    231. 

  231.           if ($db->next_record()) { // Category exists
    232. 

  232.             $category_id = $db->f("category_id");
    233. 

  233.           }
    234. 

  234.           else { // Category does not exist - create it
    235. 

  235.             $hash_secret="PHPShopIsCool";
    236. 

  236.             $category_id = md5(uniqid($hash_secret));
    237. 

  237.             $timestamp = time();
    238. 

  238. 

  239. 		   $cat_url = strtolower($category_list[$i]);
    240. 

  240. 		   $cat_url = str_replace(" ", "",$cat_url);
    241. 

  241. 

  242.             // Add category
    243. 

  243.             $q = "INSERT INTO category ";
    244. 

  244.             $q .= "(category_id,vendor_id,category_name,category_url,category_publish,cdate,mdate) ";
    245. 

  245.             $q .= "VALUES ('";
    246. 

  246.             $q .= $category_id . "','";
    247. 

  247.             $q .= "1', '";
    248. 

  248.             $q .= $category_list[$i] . "', '";
    249. 

  249.             $q .= "$cat_url', '";
    250. 

  250.             $q .= "Y', '";
    251. 

  251.             $q .= $timestamp . "', '";
    252. 

  252.             $q .= $timestamp . "')";
    253. 

  253.             $db->query($q);
    254. 

  254. 

  255.             // Create xref with parent
    256. 

  256.             $q = "INSERT INTO category_xref ";
    257. 

  257.             $q .= "(category_parent_id, category_child_id) ";
    258. 

  258.             $q .= "VALUES ('";
    259. 

  259.             $q .= $category_parent_id . "', '";
    260. 

  260.             $q .= $category_id . "')";
    261. 

  261.             $db->query($q);
    262. 

  262.           }
    263. 

  263.         // Set this category as parent of next in line
    264. 

  264.         $category_parent_id = $category_id;
    265. 

  265.       } // end for
    266. 

  266. 

  267.     // Return the last category_id which is where the product goes
    268. 

  268.     return $category_id;
    269. 

  269. 

  270.   } // End function csv_category
    271. 

  271. 	
    272. 

  272. 	/**
    273. 

  273. 	  * Handle the upload of file "file".
    274. 

  274. 	  *
    275. 

  275. 	  * Longer, multi-line description here.
    276. 

  276. 	  * 
    277. 

  277. 	  * @name handle_csv_upload
    278. 

  278. 	  * @author Nathan Hyde <nhyde@bigdrift.com>
    279. 

  279. 	  * @param array d posted items crammed into 1 arr
    280. 

  280. 	  * @returns boolean True of False
    281. 

  281. 	  */
    282. 

  282. 	function handle_csv_upload(&$d) {
    283. 

  283. 		$allowed_suffixes_arr = array(
    284. 

  284. 			0=> 'csv'
    285. 

  285. 			,1 => 'txt'
    286. 

  286. 			// add more here if needed
    287. 

  287. 		);
    288. 

  288. 		
    289. 

  289. 		$allowed_mime_types_arr = array(
    290. 

  290. 			0=> 'text/html'
    291. 

  291. 			,1 => 'text/plain'
    292. 

  292.    ,2 => 'application/octet-stream'
    293. 

  293. 			// add more here if needed
    294. 

  294. 		);
    295. 

  295. 		
    296. 

  296.   $error = ""; 
    297. 

  297.   $strs = explode(".",$d["file_name"]); 
    298. 

  298.   $count= count($strs); 
    299. 

  299.   $extension = $strs[$count-1]; 
    300. 

  300. 

  301. 		if (False == in_array($extension, $allowed_suffixes_arr) ) {
    302. 

  302. 			$d["error"] = "Suffix not allowed. Valid suffixes are: " . join(", ",$allowed_suffixes_arr);
    303. 

  303. 	return False;
    304. 

  304. 		}
    305. 

  305. 		// test the mime type here
    306. 

  306. 		if (False == in_array($d["file_type"], $allowed_mime_types_arr) ) {
    307. 

  307. 			$d["error"] = "Mime type not accepted. Type for file uploaded: ".$d["file_type"];
    308. 

  308. 	return False;
    309. 

  309. 		}
    310. 

  310. 		
    311. 

  311. 		// do the moovin here :)
    312. 

  312. 		// not necessary for us to do cause it's a temporary file, right?
    313. 

  313. 		/** 
    314. 

  314. 		if (is_uploaded_file($d['file_tmp_name']) ) {
    315. 

  315. 			copy($d['file_tmp_name'], "/place/to/put/uploaded/file");
    316. 

  316. 		} else {
    317. 

  317. 			echo "Possible file upload attack. Filename: " . $_FILES['userfile']['name'];
    318. 

  318. 		}
    319. 

  319. 		// ...or... 
    320. 

  320. 		move_uploaded_file($d["file_tmp_name"], "/place/to/put/uploaded/file");
    321. 

  321. 		
    322. 

  322. 		**/
    323. 

  323. 		
    324. 

  324. 

  325. 	return True;
    326. 

  326. 	}
    327. 

  327. }
    328. 

  328. ?>
    329.