PageRenderTime 49ms CodeModel.GetById 21ms RepoModel.GetById 0ms app.codeStats 1ms

/sys/modules/options/database_sqlpatches.php

http://simpleinvoices.googlecode.com/
PHP | 395 lines | 249 code | 99 blank | 47 comment | 28 complexity | d60162368b8ecd39578c466e40e011ef MD5 | raw file
Possible License(s): GPL-3.0, LGPL-2.1, GPL-2.0, LGPL-3.0 
    

  1. <?php
    2. 

  2. 

  3. //stop the direct browsing to this file - let index.php handle which files get displayed
    4. 

  4. //checkLogin();
    5. 

  5. 

  6. require($include_dir . 'sys/include/sql_patches.php');
    7. 

  7. 

  8. // Made it into 2 functions to get rid of the old defaults table
    9. 

  9. 

  10. $db = new db();
    11. 

  11. function getNumberOfDonePatches() {
    12. 

  12. 

  13. 	global $dbh;
    14. 

  14. 

  15.   $db = new db();
    16. 

  16. 	$check_patches_sql = "SELECT max(sql_patch_ref) AS count FROM ".TB_PREFIX."sql_patchmanager ";
    17. 

  17. 	$sth = $db->query($check_patches_sql) or die(htmlsafe(end($dbh->errorInfo())));
    18. 

  18. 

  19. 	$patches = $sth->fetch();
    20. 

  20. 

  21. 	//Returns number of patches applied
    22. 

  22. 	return $patches['count'];
    23. 

  23. }
    24. 

  24. 

  25. function getNumberOfPatches() {
    26. 

  26. 	global $patch;
    27. 

  27. 	#Max patches applied - start
    28. 

  28. 

  29. 	$patches = getNumberOfDonePatches();
    30. 

  30. 

  31. 	//$patch_count = count($patch);
    32. 

  32.     $patch_count = max( array_keys( $patch ) );
    33. 

  33. 

  34. 	//Returns number of patches to be applied
    35. 

  35. 	return $patch_count - $patches;
    36. 

  36. }
    37. 

  37. 

  38. 

  39. function runPatches() {
    40. 

  40. 	global $patch;
    41. 

  41. 	global $db_server;
    42. 

  42. 	global $dbh;
    43. 

  43.     $db = new db();
    44. 

  44. 	#DEFINE SQL PATCH
    45. 

  45. 

  46. 	$display_block = "";
    47. 

  47. 

  48. 	$sql = "SHOW TABLES LIKE '".TB_PREFIX."sql_patchmanager'";
    49. 

  49. 	if ($db_server == 'pgsql') {
    50. 

  50. 		$sql = "SELECT 1 FROM pg_tables WHERE tablename ='".TB_PREFIX."sql_patchmanager'";
    51. 

  51. 	}
    52. 

  52. 	$sth = $db->query($sql);
    53. 

  53. 	$rows = $sth->fetchAll();
    54. 

  54. 	$display_block .= <<<EOD
    55. 

  55. 		<br />
    56. 

  56. 		<b>Simple Invoices :: Database Upgrade Manager</b><br />
    57. 

  57. 		<hr />
    58. 

  58. 		<br />The database patches have now been applied. You can now start working with Simple Invoices.<br />
    59. 

  59. 		<p align=middle><br /><a href="index.php"><font color="green">HOME</font></a></p>
    60. 

  60. <table align='center'>
    61. 

  61. EOD;
    62. 

  62. 

  63. 	if(count($rows) == 1) {
    64. 

  64. 

  65. 

  66. 		if ($db_server == 'pgsql') {
    67. 

  67. 			// Yay!  Transactional DDL
    68. 

  68. 			$dbh->beginTransaction();
    69. 

  69. 		}
    70. 

  70. 		for($i=0;$i < count($patch);$i++) {
    71. 

  71. //			run_sql_patch($i,$patch[$i]); // use instead of following line if patch application status display is to be suppressed
    72. 

  72. 			$display_block .= run_sql_patch($i,$patch[$i]);
    73. 

  73. 		}
    74. 

  74. 		if ($db_server == 'pgsql') {
    75. 

  75. 			// Yay!  Transactional DDL
    76. 

  76. 			$dbh->commit();
    77. 

  77. 		}
    78. 

  78. 

  79. 		$display_block .= "\n</table>";
    80. 

  80. 

  81. 	//exit();
    82. 

  82. 	$refresh = '<meta http-equiv="refresh" content="5;url=index.php">';
    83. 

  83. 

  84. 	} else {
    85. 

  85. 

  86. 		$display_block .= "\n<tr><td><br /><br />Step 1 - This is the first time Database Updates has been run<br /></td></tr>";
    87. 

  87. 

  88. 		initialise_sql_patch();
    89. 

  89. 

  90. 		$display_block .= "\n<tr><td><br />Now that the Database upgrade table has been initialised, please go back to the Database Upgrade Manger page by clicking <a href='index.php?module=options&amp;view=database_sqlpatches'>HERE</a> to run the remaining patches</td></tr>";
    91. 

  91. 		$display_block .= "\n</table>";
    92. 

  92. 

  93. 	}
    94. 

  94. 

  95. 	global $smarty;
    96. 

  96. 	$smarty-> assign("display_block",$display_block);
    97. 

  97. 	$smarty-> assign("refresh",$refresh);
    98. 

  98. 

  99. }
    100. 

  100. 

  101. function donePatches() {
    102. 

  102. 		$display_block = "<table align='center'>";
    103. 

  103. 		$display_block .= <<<EOD
    104. 

  104. 		<br />
    105. 

  105. 		<b>Simple Invoices :: Database Upgrade Manager</b><br />
    106. 

  106. 		<hr />
    107. 

  107. 		<tr><td><br />The database patches are uptodate. You can continue working with Simple Invoices.<br /><p align=middle><br /><a href="index.php"><font color="green">HOME</font></a></p></tr>
    108. 

  108. 		</table>
    109. 

  109. 

  110. EOD;
    111. 

  111. 	//exit();
    112. 

  112. 	$refresh = '<meta http-equiv="refresh" content="2;url=index.php">';
    113. 

  113. 	global $smarty;
    114. 

  114. 	$smarty-> assign("display_block",$display_block);
    115. 

  115. 	$smarty-> assign("refresh",$refresh);
    116. 

  116. }
    117. 

  117. 

  118. function listPatches() {
    119. 

  119. 		global $patch;
    120. 

  120. 		global $include_dir;
    121. 

  121. 

  122. 		$display_block = <<<EOD
    123. 

  123. 		<b>Simple Invoices :: Database Upgrade Manager</b><br /><br />
    124. 

  124. 

  125. 		Your version of Simple Invoices has been upgraded<br /><br />
    126. 

  126. 		With this new release there are database patches that need to be applied<br /><br />
    127. 

  127. 

  128. 		<hr />
    129. 

  129. 

  130. 		<table align="center">
    131. 

  131. 			<tr>
    132. 

  132. 				<td>
    133. 

  133. 					<br />
    134. 

  134. 						The list below describes which patches have and have not been applied to the database, the aim is to have them all applied.  If there are patches that have not been applied to the Simple Invoices database, please run the Update database by clicking update
    135. 

  135. 				</td>
    136. 

  136. 			</tr>
    137. 

  137. 		</table>
    138. 

  138. 

  139. 

  140. 		<table class="buttons" align="center">
    141. 

  141. 	<tr>
    142. 

  142. 

  143. 		<td>
    144. 

  144. 

  145.             <a href="./index.php?case=run" class="positive">
    146. 

  146.                 <img src="{$include_dir}images/common/tick.png" alt="" />
    147. 

  147.                 Update
    148. 

  148.             </a>
    149. 

  149. 

  150.         </td>
    151. 

  151.     </tr>
    152. 

  152. </table>
    153. 

  153. 

  154. 

  155. 		<br />
    156. 

  156. 		<img src="{$include_dir}images/common/important.png" alt="" /><font color="red">Warning: Please backup your database before upgrading!</font>
    157. 

  157. 		<br />
    158. 

  158. 		<br />
    159. 

  159. <table align="center">
    160. 

  160. EOD;
    161. 

  161. 

  162. 

  163. 		for($p = 0; $p < count($patch);$p++) {
    164. 

  164. 			$patch_name = htmlsafe($patch[$p]['name']);
    165. 

  165. 			$patch_date = htmlsafe($patch[$p]['date']);
    166. 

  166. 			if(check_sql_patch($p,$patch[$p]['name'])) {
    167. 

  167. 				$display_block .= "\n<tr><td>SQL patch $p, $patch_name <i>has</i> already been applied in release $patch_date</td></tr>";
    168. 

  168. 			}
    169. 

  169. 			else {
    170. 

  170. 				$display_block .= "\n<tr><td>SQL patch $p, $patch_name <b>has not</b> been applied to the database</td></tr>";
    171. 

  171. 			}
    172. 

  172. 		}
    173. 

  173. 

  174. 		$display_block .= "\n</table>";
    175. 

  175. 	global $smarty;
    176. 

  176. 	$smarty-> assign("display_block",$display_block);
    177. 

  177. }
    178. 

  178. 

  179. 

  180. 

  181. function check_sql_patch($check_sql_patch_ref, $check_sql_patch_field) {
    182. 

  182. 		global $dbh;
    183. 

  183.     $db = new db();
    184. 

  184.    	$sql = "SELECT * FROM ".TB_PREFIX."sql_patchmanager WHERE sql_patch_ref = :patch" ;
    185. 

  185. 

  186. 	$sth = $db->query($sql, ':patch', $check_sql_patch_ref) or die(htmlsafe(end($dbh->errorInfo())));
    187. 

  187. 

  188. 	if(count($sth->fetchAll()) > 0) {
    189. 

  189. 		return true;
    190. 

  190. 	}
    191. 

  191. 

  192. 	return false;
    193. 

  193. }
    194. 

  194. 

  195. 

  196. 

  197. 

  198. function run_sql_patch($id, $patch) {
    199. 

  199. 	global $dbh;
    200. 

  200. 	global $db_server;
    201. 

  201.     $db = new db();
    202. 

  202. 	$display_block = "";
    203. 

  203. 

  204. 	$sql = "SELECT * FROM ".TB_PREFIX."sql_patchmanager WHERE sql_patch_ref = :id" ;
    205. 

  205. 	$sth = $db->query($sql, ':id', $id) or die(htmlsafe(end($dbh->errorInfo())));
    206. 

  206. 

  207. 	//echo $sql;
    208. 

  208. 	$escaped_id = htmlsafe($id);
    209. 

  209. 	$patch_name = htmlsafe($patch['name']);
    210. 

  210. 	#forget about it!! the patch as its already been run
    211. 

  211. 	if (count($sth->fetchAll()) != 0)  {
    212. 

  212. 

  213. 		$display_block .= "\n	<tr><td>Skipping SQL patch $escaped_id, $patch_name as it <i>has</i> already been applied</td></tr>";
    214. 

  214. 	}
    215. 

  215. 	else {
    216. 

  216. 

  217. 		//patch hasn't been run
    218. 

  218. 		#so do the bloody patch
    219. 

  219.         try {
    220. 

  220. 		  $db->query($patch['patch']); // or die(htmlsafe(end($dbh->errorInfo())));
    221. 

  221.           $display_block  = "\n    <tr><td>SQL patch $escaped_id, $patch_name <i>has</i> been applied to the database</td></tr>";
    222. 

  222.         } catch (Exception $e){
    223. 

  223.           $display_block  = "\n    <tr><td>SQL patch $escaped_id, $patch_name <i>has</i>><b> NOT </b>been applied to the database due to $e </td></tr>";
    224. 

  224.         }
    225. 

  225. 

  226. 

  227. 

  228. 		# now update the ".TB_PREFIX."sql_patchmanager table
    229. 

  229. 

  230. 

  231. 		$sql_update = "INSERT INTO ".TB_PREFIX."sql_patchmanager ( sql_patch_ref , sql_patch , sql_release , sql_statement ) VALUES (:id, :name, :date, :patch)";
    232. 

  232. 

  233. 		/*echo $sql_update;*/
    234. 

  234. 

  235. 		$db->query($sql_update, ':id', $id, ':name', $patch['name'], ':date', $patch['date'], ':patch', $patch['patch']) or die(htmlsafe(end($dbh->errorInfo())));
    236. 

  236. 

  237. 		if($id == 126) {
    238. 

  238. 			patch126();
    239. 

  239. 		}
    240. 

  240. 

  241. 		/*
    242. 

  242. 		 * cusom_fields to new customFields patch - commented out till future
    243. 

  243. 		 */
    244. 

  244. 			/*
    245. 

  245. 		 	elseif($id == 137) {
    246. 

  246. 				convertInitCustomFields();
    247. 

  247. 			}
    248. 

  248. 			*/
    249. 

  249. 

  250. 		$display_block .= "\n	<tr><td>SQL patch $escaped_id, $patch_name <b>has</b> been applied</td></tr>";
    251. 

  251. 	}
    252. 

  252. 	return $display_block;
    253. 

  253. }
    254. 

  254. 

  255. 

  256. function initialise_sql_patch() {
    257. 

  257. 	//SC: MySQL-only function, not porting to PostgreSQL
    258. 

  258. 	global $dbh;
    259. 

  259.     $db = new db();
    260. 

  260. 

  261. 	#check sql patch 1
    262. 

  262. 	$sql_patch_init = "CREATE TABLE ".TB_PREFIX."sql_patchmanager (sql_id INT NOT NULL AUTO_INCREMENT PRIMARY KEY ,sql_patch_ref VARCHAR( 50 ) NOT NULL ,sql_patch VARCHAR( 255 ) NOT NULL ,sql_release VARCHAR( 25 ) NOT NULL ,sql_statement TEXT NOT NULL) TYPE = MYISAM ";
    263. 

  263. 	dbQuery($sql_patch_init) or die(end($dbh->errorInfo()));
    264. 

  264. 

  265. 	$display_block = "<tr><td>Step 2 - The SQL patch table has been created<br /></td></tr>";
    266. 

  266. 

  267. 	echo $display_block;
    268. 

  268. 

  269. 	$sql_insert = "INSERT INTO ".TB_PREFIX."sql_patchmanager
    270. 

  270.  ( sql_id  ,sql_patch_ref , sql_patch , sql_release , sql_statement )
    271. 

  271. VALUES ('','1','Create ".TB_PREFIX."sql_patchmanger table','20060514', :patch)";
    272. 

  272. 	$db->query($sql_insert, ':patch', $sql_patch_init) or die(end($dbh->errorInfo()));
    273. 

  273. 

  274. 	$display_block2 = "<tr><td>Step 3 - The SQL patch has been inserted into the SQL patch table<br /></td></tr>";
    275. 

  275. 

  276. 	echo $display_block2;
    277. 

  277. }
    278. 

  278. 

  279. function patch126() {
    280. 

  280. 	//SC: MySQL-only function, not porting to PostgreSQL
    281. 

  281.     $db = new db();
    282. 

  282. 	$sql = "SELECT * FROM ".TB_PREFIX."invoice_items WHERE product_id = 0";
    283. 

  283. 	$sth = $db->query($sql);
    284. 

  284. 

  285. 	while($res = $sth->fetch()) {
    286. 

  286. 		$sql = "INSERT INTO ".TB_PREFIX."products (id, description, unit_price, enabled, visible)
    287. 

  287. 			VALUES (NULL, :description, :gross_total, '0',  '0')";
    288. 

  288. 		$db->query($sql, ':description', $res[description], ':total', $res[gross_total]);
    289. 

  289. 		$id = lastInsertId();
    290. 

  290. 

  291. 		$sql = "UPDATE  ".TB_PREFIX."invoice_items SET product_id = :id, unit_price = :price WHERE ".TB_PREFIX."invoice_items.id = :item";
    292. 

  292. 

  293. 		$db->query($sql,
    294. 

  294. 			':id', $id[0],
    295. 

  295. 			':price', $res[gross_total],
    296. 

  296. 			':item', $res[id]
    297. 

  297. 			);
    298. 

  298. 	}
    299. 

  299. }
    300. 

  300. 

  301. 

  302. 

  303. function convertInitCustomFields() {
    304. 

  304. // This function is exactly the same as convertCustomFields() in ./sys/include/customFieldConversion.php but without the print_r and echo output while storing
    305. 

  305. 	/* check if any value set -> keeps all data for sure */
    306. 

  306. 	global $dbh;
    307. 

  307.     $db = new db();
    308. 

  308. 	$sql = "SELECT * FROM ".TB_PREFIX."custom_fields";
    309. 

  309. 	$sth = $dbh->prepare($sql);
    310. 

  310. 	$sth->execute();
    311. 

  311. 

  312. 	while($custom = $sth->fetch()) {
    313. 

  313. 		if(preg_match("/(.+)_cf([1-4])/",$custom['cf_custom_field'],$match)) {
    314. 

  314. 			//print_r($match);
    315. 

  315. 

  316. 			switch($match[1]) {
    317. 

  317. 				case "biller": $cat = 1;	break;
    318. 

  318. 				case "customer": $cat = 2;	break;
    319. 

  319. 				case "product": $cat = 3;	break;
    320. 

  320. 				case "invoice": $cat = 4;	break;
    321. 

  321. 				default: $case = 0;
    322. 

  322. 			}
    323. 

  323. 

  324. 			$cf_field = "custom_field".$match[2];
    325. 

  325. 			if($match[1] != "biller") {
    326. 

  326. 				$sql = "SELECT id, :field FROM :table";
    327. 

  327. 				$tablename = TB_PREFIX.$match[1]."s";
    328. 

  328. 			}
    329. 

  329. 			else {
    330. 

  330. 				$sql = "SELECT id, :field FROM :table";
    331. 

  331. 				$tablename = TB_PREFIX.$match[1];
    332. 

  332. 			}
    333. 

  333. 

  334. 

  335. 			$store = false;
    336. 

  336. 

  337. 			/*
    338. 

  338. 			 * If custom field name is set
    339. 

  339. 			 */
    340. 

  340. 			if($custom['cf_custom_label'] != NULL) {
    341. 

  341. 				$store = true;
    342. 

  342. 			}
    343. 

  343. 

  344. 

  345. 			//error_log($sql);
    346. 

  346. 			$tth = $dbh->prepare($sql);
    347. 

  347. 			$tth->bindValue(':table', $tablename);
    348. 

  348. 			$tth->bindValue(':field', $cf_field);
    349. 

  349. 			$tth->execute();
    350. 

  350. 

  351. 			/*
    352. 

  352. 			 * If any field is set, create custom field
    353. 

  353. 			 */
    354. 

  354. 			while($res = $tth->fetch()) {
    355. 

  355. 				if($res[1] != NULL) {
    356. 

  356. 					$store = true;
    357. 

  357. 					break;
    358. 

  358. 				}
    359. 

  359. 				//echo($res[0]."<br />");
    360. 

  360. 			}
    361. 

  361. 

  362. 			if($store) {
    363. 

  363. //				print_r($res);
    364. 

  364. //				echo "<br />".$sql."   ".$res['id'];
    365. 

  365. 

  366. 				//create new text custom field
    367. 

  367. 				saveInitCustomField(3,$cat,$custom['cf_custom_field'],$custom['cf_custom_label']);
    368. 

  368. 				$id = lastInsertId();
    369. 

  369. 				error_log($id);
    370. 

  370. 

  371. 				$plugin = getPluginById(3);
    372. 

  372. 				$plugin->setFieldId($id);
    373. 

  373. 

  374. 				//insert all data
    375. 

  375. 				$uth = $dbh->prepare($sql);
    376. 

  376. 				$uth->bindValue(':table', $tablename);
    377. 

  377. 				$uth->bindValue(':field', $cf_field);
    378. 

  378. 				$uth->execute();
    379. 

  379. 				while($res2 = $uth->fetch()) {
    380. 

  380. 					$plugin->saveInput($res2[$cf_field], $res2['id']);
    381. 

  381. 				}
    382. 

  382. 

  383. 			}
    384. 

  384. 		}
    385. 

  385. 	}
    386. 

  386. }
    387. 

  387. 

  388. function saveInitCustomField($id, $category, $name, $description) {
    389. 

  389. // This function is exactly same as saveCustomField() in ./sys/include/manageCustomFields.php but without the final echo output
    390. 

  390.     $db = new db();
    391. 

  391. 	$sql = "INSERT INTO ".TB_PREFIX."customFields  (pluginId, categorieId, name, description)
    392. 

  392. 		VALUES (:id, :category, :name, :description)";
    393. 

  393. 	$db->query($sql, ':id', $id, ':category', $category, ':name', $name, ':description', $description);
    394. 

  394. //	echo "SAVED<br />";
    395. 

  395. }
    396. 

  396.