/system/database/sqlsrv.php

https://github.com/ichraffsnicht/ClanSphere-Enhanced · PHP · 270 lines · 225 code · 43 blank · 2 comment · 38 complexity · 4fcb8fc3230770dc2a1fb6b267d19da9 MD5 · raw file 

    

  1. <?php
    2. 

  2. // ClanSphere 2010 - www.clansphere.net
    3. 

  3. // $Id$
    4. 

  4. 

  5. function cs_sql_connect($cs_db, $test = 0) {
    6. 

  6. 

  7.   $error = '';
    8. 

  8.   if(!extension_loaded('sqlsrv')) {
    9. 

  9.     $error = 'PHP extension sqlsrv must be activated!';
    10. 

  10.   }
    11. 

  11.   else {
    12. 

  12.     $cn_info = array('UID' => $cs_db['user'], 'PWD' => $cs_db['pwd'], 'Database' => $cs_db['name']);
    13. 

  13.     $connect = sqlsrv_connect($cs_db['place'], $cn_info) OR $error = cs_sql_error();
    14. 

  14.   }
    15. 

  15. 

  16.   if(empty($test) AND empty($error)) {
    17. 

  17.     return $connect;
    18. 

  18.   }
    19. 

  19.   elseif(empty($test)) {
    20. 

  20.     cs_error_sql(__FILE__, 'cs_sql_connect', $error, 1);
    21. 

  21.   }
    22. 

  22.   else {
    23. 

  23.     return $error;
    24. 

  24.   }
    25. 

  25. }
    26. 

  26. 

  27. function cs_sql_count($cs_file,$sql_table,$sql_where = 0, $distinct = 0) {
    28. 

  28. 

  29.   global $cs_db;
    30. 

  30.   $row = empty($distinct) ? '*' : 'DISTINCT ' . $distinct;
    31. 

  31. 

  32.   $sql_query = 'SELECT COUNT(' . $row . ') FROM ' . $cs_db['prefix'] . '_' . $sql_table;
    33. 

  33.   $sql_query .= empty($sql_where) ? '' : ' WHERE ' . $sql_where;
    34. 

  34. 

  35.   $sql_query = str_replace('{pre}',$cs_db['prefix'],$sql_query);
    36. 

  36.   if (!$sql_data = sqlsrv_query($cs_db['con'], $sql_query)) {
    37. 

  37.     cs_error_sql($cs_file, 'cs_sql_count', cs_sql_error(0, $sql_query));
    38. 

  38.     return NULL;
    39. 

  39.   }
    40. 

  40.   sqlsrv_fetch($sql_data);
    41. 

  41.   $sql_result = sqlsrv_get_field($sql_data, 0);
    42. 

  42.   sqlsrv_free_stmt($sql_data);
    43. 

  43.   cs_log_sql($cs_file, $sql_query);
    44. 

  44.   return $sql_result;
    45. 

  45. }
    46. 

  46. 

  47. function cs_sql_delete($cs_file,$sql_table,$sql_id,$sql_field = 0) {
    48. 

  48. 

  49.   global $cs_db;
    50. 

  50.   settype($sql_id,'integer');
    51. 

  51.   if (empty($sql_field)) {
    52. 

  52.     $sql_field = $sql_table . '_id';
    53. 

  53.   }
    54. 

  54.   $sql_delete = 'DELETE FROM ' . $cs_db['prefix'] . '_' . $sql_table;
    55. 

  55.   $sql_delete .= ' WHERE ' . $sql_field . ' = ' . $sql_id;
    56. 

  56.   sqlsrv_query($cs_db['con'], $sql_delete) or cs_error_sql($cs_file, 'cs_sql_delete', cs_sql_error(0, $sql_delete));
    57. 

  57.   cs_log_sql($cs_file, $sql_delete,1);
    58. 

  58. }
    59. 

  59. 

  60. function cs_sql_escape($string) {
    61. 

  61. 

  62.   return str_replace("'","''",(string) $string);
    63. 

  63. }
    64. 

  64. 

  65. function cs_sql_insert($cs_file, $sql_table, $sql_cells, $sql_content) {
    66. 

  66. 

  67.   global $cs_db;
    68. 

  68.   $max = count($sql_cells);
    69. 

  69.   $set = " (";
    70. 

  70.   for ($run = 0; $run < $max; $run++) {
    71. 

  71.     $set .= $sql_cells[$run];
    72. 

  72.     if ($run != $max - 1) {
    73. 

  73.       $set .= ",";
    74. 

  74.     }
    75. 

  75.   }
    76. 

  76.   $set .= ") VALUES ('";
    77. 

  77.   for ($run = 0; $run < $max; $run++) {
    78. 

  78.     $set .= str_replace("'","''",(string) $sql_content[$run]);
    79. 

  79.     if ($run != $max - 1) {
    80. 

  80.       $set .= "','";
    81. 

  81.     }
    82. 

  82.   }
    83. 

  83.   $set .= "')";
    84. 

  84. 

  85.   $sql_insert = 'INSERT INTO ' . $cs_db['prefix'] . '_' . $sql_table . $set;
    86. 

  86.   sqlsrv_query($cs_db['con'], $sql_insert) or cs_error_sql($cs_file, 'cs_sql_insert', cs_sql_error(0, $sql_insert));
    87. 

  87.   cs_log_sql($cs_file, $sql_insert);
    88. 

  88. }
    89. 

  89. 

  90. function cs_sql_insertid($cs_file) {
    91. 

  91. 

  92.   $found = cs_sql_query($cs_file, 'SELECT @@IDENTITY AS lastval', 1);
    93. 

  93.   $lastval = isset($found['more'][0]['lastval']) ? $found['more'][0]['lastval'] : NULL;
    94. 

  94.   return $lastval;
    95. 

  95. }
    96. 

  96. 

  97. function cs_sql_option($cs_file, $mod) {
    98. 

  98. 

  99.   global $cs_db, $cs_template;
    100. 

  100.   static $options = array();
    101. 

  101. 

  102.   if (empty($options[$mod])) {
    103. 

  103. 

  104.     if (!$options[$mod] = cs_cache_load('op_' . $mod)) {
    105. 

  105. 

  106.       $sql_query = 'SELECT options_name, options_value FROM  ' . $cs_db['prefix'] . '_' . 'options';
    107. 

  107.       $sql_query .= " WHERE options_mod = '" . $mod . "'";
    108. 

  108.       $sql_data = sqlsrv_query($cs_db['con'], $sql_query) or cs_error_sql($cs_file, 'cs_sql_option', cs_sql_error(0, $sql_query), 1);
    109. 

  109. 

  110.       while ($sql_result = sqlsrv_fetch_array($sql_data, SQLSRV_FETCH_ASSOC)) {
    111. 

  111.         $name = $sql_result['options_name'];
    112. 

  112.         $new_result[$name] = $sql_result['options_value'];
    113. 

  113.       }
    114. 

  114.       sqlsrv_free_stmt($sql_data);
    115. 

  115.       cs_log_sql($cs_file, $sql_query);
    116. 

  116.       if(count($cs_template)) {
    117. 

  117.         foreach($cs_template AS $navlist => $value) {
    118. 

  118.         if($navlist == $mod) {
    119. 

  119.           $new_result = array_merge($new_result,$value);
    120. 

  120.         }
    121. 

  121.         }
    122. 

  122.       }
    123. 

  123.       $options[$mod] = isset($new_result) ? $new_result : 0;
    124. 

  124. 

  125.       cs_cache_save('op_' . $mod, $options[$mod]);
    126. 

  126.     }
    127. 

  127.   }
    128. 

  128. 

  129.   return $options[$mod];
    130. 

  130. }
    131. 

  131. 

  132. function cs_sql_query($cs_file, $sql_query, $more = 0) {
    133. 

  133. 

  134.   global $cs_db;
    135. 

  135.   $sql_query = str_replace('{pre}', $cs_db['prefix'], $sql_query);
    136. 

  136.   if ($sql_data = sqlsrv_query($cs_db['con'], $sql_query)) {
    137. 

  137.     $result = array('affected_rows' => sqlsrv_rows_affected($sql_data));
    138. 

  138.     if(!empty($more)) {
    139. 

  139.       while ($sql_result = sqlsrv_fetch_array($sql_data, SQLSRV_FETCH_ASSOC)) {
    140. 

  140.         $result['more'][] = $sql_result;
    141. 

  141.       }
    142. 

  142.       sqlsrv_free_stmt($sql_data);
    143. 

  143.     }
    144. 

  144.   }
    145. 

  145.   else {
    146. 

  146.     cs_error_sql($cs_file, 'cs_sql_query', cs_sql_error(0, $sql_query));
    147. 

  147.     $result = 0;
    148. 

  148.   }
    149. 

  149.   cs_log_sql($cs_file, $sql_query);
    150. 

  150.   return $result;
    151. 

  151. }
    152. 

  152. 

  153. function cs_sql_replace($replace) {
    154. 

  154. 

  155.   $replace = preg_replace("={optimize}(.*?[;])=si",'',$replace);
    156. 

  156.   $replace = str_replace('{serial}','int IDENTITY(1,1)',$replace);
    157. 

  157.   $replace = str_replace('{engine}','',$replace);
    158. 

  158.   return preg_replace("=int\((.*?)\)=si",'int',$replace);
    159. 

  159. }
    160. 

  160. 

  161. function cs_sql_select($cs_file, $sql_table, $sql_select, $sql_where = 0, $sql_order = 0, $first = 0, $max = 1, $cache = 0) {
    162. 

  162. 

  163.   if (!empty($cache) && $return = cs_cache_load($cache)) {
    164. 

  164.     return $return;
    165. 

  165.   }
    166. 

  166. 

  167.   global $cs_db;
    168. 

  168.   $first = ($first < 0) ? 0 : (int) $first;
    169. 

  169.   $max = ($max < 0) ? 20 : (int) $max;
    170. 

  170.   $run = 0;
    171. 

  171. 

  172.   if(!empty($max) OR $sql_order == '{random}') {
    173. 

  173.     $sql_select = ' TOP ' . $max . ' ' . $sql_select;
    174. 

  174.     if(!empty($first)) {
    175. 

  175.       $cell = explode(' ',$sql_table);
    176. 

  176.       $same_qry = ' ' . $cell[0] . '_id FROM ' . $cs_db['prefix'] . '_' . $sql_table;
    177. 

  177.       $same_qry .= empty($sql_where) ? '' : ' WHERE ' . $sql_where;
    178. 

  178.       $same_qry .= empty($sql_order) ? '' : ' ORDER BY ' . $sql_order;
    179. 

  179.       $sql_notin = '(' . $cell[0] . '_id NOT IN (SELECT TOP ' . $first . ' ' . $same_qry . '))';
    180. 

  180.       $sql_where = empty($sql_where) ? $sql_notin : $sql_notin . ' AND ';
    181. 

  181.     }
    182. 

  182.   }
    183. 

  183.   $sql_query = 'SELECT ' . $sql_select . ' FROM ' . $cs_db['prefix'] . '_' . $sql_table;
    184. 

  184.   if (!empty($sql_where)) {
    185. 

  185.     $sql_query .= ' WHERE ' . $sql_where;
    186. 

  186.   }
    187. 

  187.   if (!empty($sql_order)) {
    188. 

  188.     $sql_query .= ' ORDER BY ' . str_replace('{random}', 'NEWID()', $sql_order);
    189. 

  189.   }
    190. 

  190. 

  191.   $sql_query = str_replace('{pre}', $cs_db['prefix'], $sql_query);
    192. 

  192. 

  193.   if (!$sql_data = sqlsrv_query($cs_db['con'], $sql_query)) {
    194. 

  194.     cs_error_sql($cs_file, 'cs_sql_select', cs_sql_error(0, $sql_query));
    195. 

  195.     return NULL;
    196. 

  196.   }
    197. 

  197.   if ($max == 1) {
    198. 

  198.     $new_result = sqlsrv_fetch_array($sql_data, SQLSRV_FETCH_ASSOC);
    199. 

  199.   }
    200. 

  200.   else {
    201. 

  201.     while ($sql_result = sqlsrv_fetch_array($sql_data, SQLSRV_FETCH_ASSOC)) {
    202. 

  202.       $new_result[$run] = $sql_result;
    203. 

  203.       $run++;
    204. 

  204.     }
    205. 

  205.   }
    206. 

  206.   sqlsrv_free_stmt($sql_data);
    207. 

  207.   cs_log_sql($cs_file, $sql_query);
    208. 

  208. 

  209.   if (!empty($new_result)) {
    210. 

  210.     if (!empty($cache))
    211. 

  211.     cs_cache_save($cache, $new_result);
    212. 

  212. 

  213.     return $new_result;
    214. 

  214.   }
    215. 

  215.   return NULL;
    216. 

  216. }
    217. 

  217. 

  218. function cs_sql_update($cs_file, $sql_table, $sql_cells, $sql_content, $sql_id, $sql_where = 0, $sql_log = 1) {
    219. 

  219. 

  220.   global $cs_db;
    221. 

  221.   settype($sql_id, 'integer');
    222. 

  222.   $max = count($sql_cells);
    223. 

  223.   $set = ' SET ';
    224. 

  224.   for ($run = 0; $run < $max; $run++) {
    225. 

  225.     $set .= $sql_cells[$run] . "='" . str_replace("'","''",(string) $sql_content[$run]);
    226. 

  226.     if ($run != $max - 1) {
    227. 

  227.       $set .= "', ";
    228. 

  228.     }
    229. 

  229.   }
    230. 

  230.   $set .= "' ";
    231. 

  231. 

  232.   $sql_update = 'UPDATE ' . $cs_db['prefix'] . '_' . $sql_table . $set . ' WHERE ';
    233. 

  233.   if (empty($sql_where)) {
    234. 

  234.     $sql_update .= $sql_table . '_id = ' . $sql_id;
    235. 

  235.   }
    236. 

  236.   else {
    237. 

  237.     $sql_update .= $sql_where;
    238. 

  238.   }
    239. 

  239.   sqlsrv_query($cs_db['con'], $sql_update) or cs_error_sql($cs_file, 'cs_sql_update', cs_sql_error(0, $sql_update));
    240. 

  240. 

  241.   cs_log_sql($cs_file, $sql_update, $sql_log);
    242. 

  242. }
    243. 

  243. 

  244. function cs_sql_version($cs_file) {
    245. 

  245. 

  246.   global $cs_db;
    247. 

  247.   $sql_infos = array('data_free' => 0, 'data_size' => 0, 'index_size' => 0, 'tables' => 0, 'names' => array());
    248. 

  248.   $client = sqlsrv_client_info($cs_db['con']);
    249. 

  249.   $server = sqlsrv_server_info($cs_db['con']);
    250. 

  250. 

  251.   $sql_infos['encoding'] = 'default';
    252. 

  252.   $sql_infos['type'] = 'Microsoft SQL Server (sqlsrv)';
    253. 

  253.   $sql_infos['client'] = $client['DriverVer'] . ' - ODBC ' . $client['DriverODBCVer'];
    254. 

  254.   $sql_infos['host'] = $server['SQLServerName'];
    255. 

  255.   $sql_infos['server'] = $server['SQLServerVersion'];
    256. 

  256.   return $sql_infos;
    257. 

  257. }
    258. 

  258. 

  259. function cs_sql_error($object = 0, $query = 0) {
    260. 

  260. 

  261.   global $cs_db;
    262. 

  262.   $errors_array = sqlsrv_errors();
    263. 

  263.   $code = isset($errors_array[0]['code']) ? $errors_array[0]['code'] : 0;
    264. 

  264.   $error_string = isset($errors_array[0]['message']) ? $errors_array[0]['message'] : '';
    265. 

  265.   if(!empty($code))
    266. 

  266.     $error_string = $code . ' - ' . $error_string;
    267. 

  267.   if(!empty($query))
    268. 

  268.     $error_string .= ' --Query: ' . $query;
    269. 

  269.   return $error_string;
    270. 

  270. }
    271.