lint.php

   1 <?php
   2 /* vim: set expandtab sw=4 ts=4 sts=4: */
   3 /**
   4  * Represents the interface between the linter and  the query editor.
   5  *
   6  * @package PhpMyAdmin
   7  */
   8 use PMA\libraries\Linter;
   9
  10 /**
  11  * Loading common files. Used to check for authorization, localization and to
  12  * load the parsing library.
  13  */
  14 require_once 'libraries/common.inc.php';
  15
  16 /**
  17  * The SQL query to be analyzed.
  18  *
  19  * This does not need to be checked again XSS or MySQL injections because it is
  20  * never executed, just parsed.
  21  *
  22  * The client, which will recieve the JSON response will decode the message and
  23  * and any HTML fragments that are displayed to the user will be encoded anyway.
  24  *
  25  * @var string
  26  */
  27 $sql_query = !empty($_POST['sql_query']) ? $_POST['sql_query'] : '';
  28
  29 // Disabling standard response.
  30 $response = PMA\libraries\Response::getInstance();
  31 $response->disable();
  32
  33 echo json_encode(Linter::lint($sql_query));