full_report.php is not reachable via the user interface, and does not check any ACLs...
[openemr.git] / phpmyadmin / libraries / sqlvalidator.lib.php
blob4c75f3d0ec06d62c5e792f237aa7b791248e4f4d
1 <?php
2 /* vim: set expandtab sw=4 ts=4 sts=4: */
3 /**
4 * SQL Validator interface for phpMyAdmin
6 * Copyright 2002 Robin Johnson <robbat2@users.sourceforge.net>
7 * http://www.orbis-terrarum.net/?l=people.robbat2
9 * This function uses the Mimer SQL Validator service
10 * <http://developer.mimer.com/validator/index.htm> from phpMyAdmin
12 * Copyright for Server side validator systems:
13 * "All SQL statements are stored anonymously for statistical purposes.
14 * Mimer SQL Validator, Copyright 2002 Upright Database Technology.
15 * All rights reserved."
17 * All data is transported over HTTP-SOAP
18 * And uses the PEAR SOAP Module
20 * Install instructions for PEAR SOAP
21 * Make sure you have a really recent PHP with PEAR support
22 * run this: "pear install Mail_Mime Net_DIME SOAP"
24 * Enable the SQL Validator options in the configuration file
25 * $cfg['SQLQuery']['Validate'] = TRUE;
26 * $cfg['SQLValidator']['use'] = FALSE;
28 * Also set a username and password if you have a private one
30 * @version $Id$
32 if (! defined('PHPMYADMIN')) {
33 exit;
36 /**
37 * We need the PEAR libraries, so do a minimum version check first
38 * I'm not sure if PEAR was available before this point
39 * For now we actually use a configuration flag
41 if ($cfg['SQLValidator']['use'] == TRUE) {
42 require_once './libraries/sqlvalidator.class.php';
43 } // if ($cfg['SQLValidator']['use'] == TRUE)
46 /**
47 * This function utilizes the Mimer SQL Validator service
48 * to validate an SQL query
50 * <http://developer.mimer.com/validator/index.htm>
52 * @param string SQL query to validate
54 * @return string Validator result string
56 * @global array The PMA configuration array
58 function PMA_validateSQL($sql)
60 global $cfg;
62 $str = '';
64 if ($cfg['SQLValidator']['use']) {
65 if (isset($GLOBALS['sqlvalidator_error'])
66 && $GLOBALS['sqlvalidator_error']) {
67 $str = sprintf($GLOBALS['strValidatorError'], '<a href="./Documentation.html#faqsqlvalidator" target="documentation">', '</a>');
68 } else {
69 // create new class instance
70 $srv = new PMA_SQLValidator();
72 // Checks for username settings
73 // The class defaults to anonymous with an empty password
74 // automatically
75 if ($cfg['SQLValidator']['username'] != '') {
76 $srv->setCredentials($cfg['SQLValidator']['username'], $cfg['SQLValidator']['password']);
79 // Identify ourselves to the server properly...
80 $srv->appendCallingProgram('phpMyAdmin', PMA_VERSION);
82 // ... and specify what database system we are using
83 $srv->setTargetDbms('MySQL', PMA_MYSQL_STR_VERSION);
85 // Log on to service
86 $srv->start();
88 // Do service validation
89 $str = $srv->validationString($sql);
92 } // end if
94 // Gives string back to caller
95 return $str;
96 } // end of the "PMA_validateSQL()" function