search:
summary | log | graphiclog1 | graphiclog2 | commit | commitdiff | tree | refs | edit | fork
blame | history | raw | HEAD
Translated using Weblate (Russian)
[phpmyadmin.git] / tbl_replace.php
blob3d709a0789b7a6cf153708594c75838095cccbe4
1 <?php
2 /* vim: set expandtab sw=4 ts=4 sts=4: */
3 /**
4 * Manipulation of table data like inserting, replacing and updating
5 *
6 * Usually called as form action from tbl_change.php to insert or update table rows
7 *
8 * @todo 'edit_next' tends to not work as expected if used ...
9 * at least there is no order by it needs the original query
10 * and the row number and than replace the LIMIT clause
11 *
12 * @package PhpMyAdmin
13 */
14
15 use PhpMyAdmin\Core;
16 use PhpMyAdmin\File;
17 use PhpMyAdmin\InsertEdit;
18 use PhpMyAdmin\Message;
19 use PhpMyAdmin\Plugins\IOTransformationsPlugin;
20 use PhpMyAdmin\Relation;
21 use PhpMyAdmin\Response;
22 use PhpMyAdmin\Table;
23 use PhpMyAdmin\Transformations;
24 use PhpMyAdmin\Util;
25
26 /**
27 * Gets some core libraries
28 */
29 require_once 'libraries/common.inc.php';
30
31 // Check parameters
32 Util::checkParameters(array('db', 'table', 'goto'));
33
34 $GLOBALS['dbi']->selectDb($GLOBALS['db']);
35
36 /**
37 * Initializes some variables
38 */
39 $goto_include = false;
40
41 $response = Response::getInstance();
42 $header = $response->getHeader();
43 $scripts = $header->getScripts();
44 $scripts->addFile('makegrid.js');
45 // Needed for generation of Inline Edit anchors
46 $scripts->addFile('sql.js');
47 $scripts->addFile('indexes.js');
48 $scripts->addFile('gis_data_editor.js');
49
50 $relation = new Relation();
51
52 $insertEdit = new InsertEdit($GLOBALS['dbi']);
53
54 // check whether insert row mode, if so include tbl_change.php
55 $insertEdit->isInsertRow();
56
57 $after_insert_actions = array('new_insert', 'same_insert', 'edit_next');
58 if (isset($_POST['after_insert'])
59 && in_array($_POST['after_insert'], $after_insert_actions)
60 ) {
61 $url_params['after_insert'] = $_POST['after_insert'];
62 if (isset($_POST['where_clause'])) {
63 foreach ($_POST['where_clause'] as $one_where_clause) {
64 if ($_POST['after_insert'] == 'same_insert') {
65 $url_params['where_clause'][] = $one_where_clause;
66 } elseif ($_POST['after_insert'] == 'edit_next') {
67 $insertEdit->setSessionForEditNext($one_where_clause);
68 }
69 }
70 }
71 }
72 //get $goto_include for different cases
73 $goto_include = $insertEdit->getGotoInclude($goto_include);
74
75 // Defines the url to return in case of failure of the query
76 $err_url = $insertEdit->getErrorUrl($url_params);
77
78 /**
79 * Prepares the update/insert of a row
80 */
81 list($loop_array, $using_key, $is_insert, $is_insertignore)
82 = $insertEdit->getParamsForUpdateOrInsert();
83
84 $query = array();
85 $value_sets = array();
86 $func_no_param = array(
87 'CONNECTION_ID',
88 'CURRENT_USER',
89 'CURDATE',
90 'CURTIME',
91 'CURRENT_DATE',
92 'CURRENT_TIME',
93 'DATABASE',
94 'LAST_INSERT_ID',
95 'NOW',
96 'PI',
97 'RAND',
98 'SYSDATE',
99 'UNIX_TIMESTAMP',
100 'USER',
101 'UTC_DATE',
102 'UTC_TIME',
103 'UTC_TIMESTAMP',
104 'UUID',
105 'UUID_SHORT',
106 'VERSION',
107 );
108 $func_optional_param = array(
109 'RAND',
110 'UNIX_TIMESTAMP',
111 );
112
113 $gis_from_text_functions = array(
114 'GeomFromText',
115 'GeomCollFromText',
116 'LineFromText',
117 'MLineFromText',
118 'PointFromText',
119 'MPointFromText',
120 'PolyFromText',
121 'MPolyFromText',
122 );
123
124 $gis_from_wkb_functions = array(
125 'GeomFromWKB',
126 'GeomCollFromWKB',
127 'LineFromWKB',
128 'MLineFromWKB',
129 'PointFromWKB',
130 'MPointFromWKB',
131 'PolyFromWKB',
132 'MPolyFromWKB',
133 );
134
135 //if some posted fields need to be transformed.
136 $mime_map = Transformations::getMIME($GLOBALS['db'], $GLOBALS['table']);
137 if ($mime_map === false) {
138 $mime_map = array();
139 }
140
141 $query_fields = array();
142 $insert_errors = array();
143 $row_skipped = false;
144 $unsaved_values = array();
145 foreach ($loop_array as $rownumber => $where_clause) {
146 // skip fields to be ignored
147 if (! $using_key && isset($_POST['insert_ignore_' . $where_clause])) {
148 continue;
149 }
150
151 // Defines the SET part of the sql query
152 $query_values = array();
153
154 // Map multi-edit keys to single-level arrays, dependent on how we got the fields
155 $multi_edit_columns
156 = isset($_POST['fields']['multi_edit'][$rownumber])
157 ? $_POST['fields']['multi_edit'][$rownumber]
158 : array();
159 $multi_edit_columns_name
160 = isset($_POST['fields_name']['multi_edit'][$rownumber])
161 ? $_POST['fields_name']['multi_edit'][$rownumber]
162 : array();
163 $multi_edit_columns_prev
164 = isset($_POST['fields_prev']['multi_edit'][$rownumber])
165 ? $_POST['fields_prev']['multi_edit'][$rownumber]
166 : null;
167 $multi_edit_funcs
168 = isset($_POST['funcs']['multi_edit'][$rownumber])
169 ? $_POST['funcs']['multi_edit'][$rownumber]
170 : null;
171 $multi_edit_salt
172 = isset($_POST['salt']['multi_edit'][$rownumber])
173 ? $_POST['salt']['multi_edit'][$rownumber]
174 :null;
175 $multi_edit_columns_type
176 = isset($_POST['fields_type']['multi_edit'][$rownumber])
177 ? $_POST['fields_type']['multi_edit'][$rownumber]
178 : null;
179 $multi_edit_columns_null
180 = isset($_POST['fields_null']['multi_edit'][$rownumber])
181 ? $_POST['fields_null']['multi_edit'][$rownumber]
182 : null;
183 $multi_edit_columns_null_prev
184 = isset($_POST['fields_null_prev']['multi_edit'][$rownumber])
185 ? $_POST['fields_null_prev']['multi_edit'][$rownumber]
186 : null;
187 $multi_edit_auto_increment
188 = isset($_POST['auto_increment']['multi_edit'][$rownumber])
189 ? $_POST['auto_increment']['multi_edit'][$rownumber]
190 : null;
191 $multi_edit_virtual
192 = isset($_POST['virtual']['multi_edit'][$rownumber])
193 ? $_POST['virtual']['multi_edit'][$rownumber]
194 : null;
195
196 // When a select field is nullified, it's not present in $_POST
197 // so initialize it; this way, the foreach($multi_edit_columns) will process it
198 foreach ($multi_edit_columns_name as $key => $val) {
199 if (! isset($multi_edit_columns[$key])) {
200 $multi_edit_columns[$key] = '';
201 }
202 }
203
204 // Iterate in the order of $multi_edit_columns_name,
205 // not $multi_edit_columns, to avoid problems
206 // when inserting multiple entries
207 $insert_fail = false;
208 foreach ($multi_edit_columns_name as $key => $column_name) {
209 $current_value = $multi_edit_columns[$key];
210 // Note: $key is an md5 of the fieldname. The actual fieldname is
211 // available in $multi_edit_columns_name[$key]
212
213 $file_to_insert = new File();
214 $file_to_insert->checkTblChangeForm($key, $rownumber);
215
216 $possibly_uploaded_val = $file_to_insert->getContent();
217 if ($possibly_uploaded_val !== false) {
218 $current_value = $possibly_uploaded_val;
219 }
220 // Apply Input Transformation if defined
221 if (!empty($mime_map[$column_name])
222 && !empty($mime_map[$column_name]['input_transformation'])
223 ) {
224 $filename = 'libraries/classes/Plugins/Transformations/'
225 . $mime_map[$column_name]['input_transformation'];
226 if (is_file($filename)) {
227 $classname = Transformations::getClassName($filename);
228 if (class_exists($classname)) {
229 /** @var IOTransformationsPlugin $transformation_plugin */
230 $transformation_plugin = new $classname();
231 $transformation_options = Transformations::getOptions(
232 $mime_map[$column_name]['input_transformation_options']
233 );
234 $current_value = $transformation_plugin->applyTransformation(
235 $current_value, $transformation_options
236 );
237 // check if transformation was successful or not
238 // and accordingly set error messages & insert_fail
239 if (method_exists($transformation_plugin, 'isSuccess')
240 && !$transformation_plugin->isSuccess()
241 ) {
242 $insert_fail = true;
243 $row_skipped = true;
244 $insert_errors[] = sprintf(
245 __('Row: %1$s, Column: %2$s, Error: %3$s'),
246 $rownumber, $column_name,
247 $transformation_plugin->getError()
248 );
249 }
250 }
251 }
252 }
253
254 if ($file_to_insert->isError()) {
255 $insert_errors[] = $file_to_insert->getError();
256 }
257 // delete $file_to_insert temporary variable
258 $file_to_insert->cleanUp();
259
260 $current_value = $insertEdit->getCurrentValueForDifferentTypes(
261 $possibly_uploaded_val, $key, $multi_edit_columns_type,
262 $current_value, $multi_edit_auto_increment,
263 $rownumber, $multi_edit_columns_name, $multi_edit_columns_null,
264 $multi_edit_columns_null_prev, $is_insert,
265 $using_key, $where_clause, $table, $multi_edit_funcs
266 );
267
268 $current_value_as_an_array = $insertEdit->getCurrentValueAsAnArrayForMultipleEdit(
269 $multi_edit_funcs,
270 $multi_edit_salt, $gis_from_text_functions, $current_value,
271 $gis_from_wkb_functions, $func_optional_param, $func_no_param, $key
272 );
273
274 if (! isset($multi_edit_virtual) || ! isset($multi_edit_virtual[$key])) {
275 list($query_values, $query_fields)
276 = $insertEdit->getQueryValuesForInsertAndUpdateInMultipleEdit(
277 $multi_edit_columns_name, $multi_edit_columns_null,
278 $current_value, $multi_edit_columns_prev, $multi_edit_funcs,
279 $is_insert, $query_values, $query_fields,
280 $current_value_as_an_array, $value_sets, $key,
281 $multi_edit_columns_null_prev
282 );
283 }
284 if (isset($multi_edit_columns_null[$key])) {
285 $multi_edit_columns[$key] = null;
286 }
287 } //end of foreach
288
289 // temporarily store rows not inserted
290 // so that they can be populated again.
291 if ($insert_fail) {
292 $unsaved_values[$rownumber] = $multi_edit_columns;
293 }
294 if (!$insert_fail && count($query_values) > 0) {
295 if ($is_insert) {
296 $value_sets[] = implode(', ', $query_values);
297 } else {
298 // build update query
299 $query[] = 'UPDATE ' . Util::backquote($GLOBALS['table'])
300 . ' SET ' . implode(', ', $query_values)
301 . ' WHERE ' . $where_clause
302 . ($_POST['clause_is_unique'] ? '' : ' LIMIT 1');
303 }
304 }
305 } // end foreach ($loop_array as $where_clause)
306 unset(
307 $multi_edit_columns_name, $multi_edit_columns_prev, $multi_edit_funcs,
308 $multi_edit_columns_type, $multi_edit_columns_null, $func_no_param,
309 $multi_edit_auto_increment, $current_value_as_an_array, $key, $current_value,
310 $loop_array, $where_clause, $using_key, $multi_edit_columns_null_prev,
311 $insert_fail
312 );
313
314 // Builds the sql query
315 if ($is_insert && count($value_sets) > 0) {
316 $query = $insertEdit->buildSqlQuery($is_insertignore, $query_fields, $value_sets);
317 } elseif (empty($query) && ! isset($_POST['preview_sql']) && !$row_skipped) {
318 // No change -> move back to the calling script
319 //
320 // Note: logic passes here for inline edit
321 $message = Message::success(__('No change'));
322 // Avoid infinite recursion
323 if ($goto_include == 'tbl_replace.php') {
324 $goto_include = 'tbl_change.php';
325 }
326 $active_page = $goto_include;
327 include '' . Core::securePath($goto_include);
328 exit;
329 }
330 unset($multi_edit_columns, $is_insertignore);
331
332 // If there is a request for SQL previewing.
333 if (isset($_POST['preview_sql'])) {
334 Core::previewSQL($query);
335 }
336
337 /**
338 * Executes the sql query and get the result, then move back to the calling
339 * page
340 */
341 list ($url_params, $total_affected_rows, $last_messages, $warning_messages,
342 $error_messages, $return_to_sql_query)
343 = $insertEdit->executeSqlQuery($url_params, $query);
344
345 if ($is_insert && (count($value_sets) > 0 || $row_skipped)) {
346 $message = Message::getMessageForInsertedRows(
347 $total_affected_rows
348 );
349 $unsaved_values = array_values($unsaved_values);
350 } else {
351 $message = Message::getMessageForAffectedRows(
352 $total_affected_rows
353 );
354 }
355 if ($row_skipped) {
356 $goto_include = 'tbl_change.php';
357 $message->addMessagesString($insert_errors, '<br />');
358 $message->isError(true);
359 }
360
361 $message->addMessages($last_messages, '<br />');
362
363 if (! empty($warning_messages)) {
364 $message->addMessagesString($warning_messages, '<br />');
365 $message->isError(true);
366 }
367 if (! empty($error_messages)) {
368 $message->addMessagesString($error_messages);
369 $message->isError(true);
370 }
371 unset(
372 $error_messages, $warning_messages, $total_affected_rows,
373 $last_messages, $last_message, $row_skipped, $insert_errors
374 );
375
376 /**
377 * The following section only applies to grid editing.
378 * However, verifying isAjax() is not enough to ensure we are coming from
379 * grid editing. If we are coming from the Edit or Copy link in Browse mode,
380 * ajax_page_request is present in the POST parameters.
381 */
382 if ($response->isAjax() && ! isset($_POST['ajax_page_request'])) {
383 /**
384 * If we are in grid editing, we need to process the relational and
385 * transformed fields, if they were edited. After that, output the correct
386 * link/transformed value and exit
387 */
388 if (isset($_POST['rel_fields_list']) && $_POST['rel_fields_list'] != '') {
389
390 $map = $relation->getForeigners($db, $table, '', 'both');
391
392 $relation_fields = array();
393 parse_str($_POST['rel_fields_list'], $relation_fields);
394
395 // loop for each relation cell
396 /** @var array $relation_fields */
397 foreach ($relation_fields as $cell_index => $curr_rel_field) {
398 foreach ($curr_rel_field as $relation_field => $relation_field_value) {
399 $where_comparison = "='" . $relation_field_value . "'";
400 $dispval = $insertEdit->getDisplayValueForForeignTableColumn(
401 $where_comparison, $map, $relation_field
402 );
403
404 $extra_data['relations'][$cell_index]
405 = $insertEdit->getLinkForRelationalDisplayField(
406 $map, $relation_field, $where_comparison,
407 $dispval, $relation_field_value
408 );
409 }
410 } // end of loop for each relation cell
411 }
412 if (isset($_POST['do_transformations'])
413 && $_POST['do_transformations'] == true
414 ) {
415 $edited_values = array();
416 parse_str($_POST['transform_fields_list'], $edited_values);
417
418 if (! isset($extra_data)) {
419 $extra_data = array();
420 }
421 $transformation_types = array(
422 "input_transformation",
423 "transformation"
424 );
425 foreach ($mime_map as $transformation) {
426 $column_name = $transformation['column_name'];
427 foreach ($transformation_types as $type) {
428 $file = Core::securePath($transformation[$type]);
429 $extra_data = $insertEdit->transformEditedValues(
430 $db, $table, $transformation, $edited_values, $file,
431 $column_name, $extra_data, $type
432 );
433 }
434 } // end of loop for each $mime_map
435 }
436
437 // Need to check the inline edited value can be truncated by MySQL
438 // without informing while saving
439 $column_name = $_POST['fields_name']['multi_edit'][0][0];
440
441 $insertEdit->verifyWhetherValueCanBeTruncatedAndAppendExtraData(
442 $db, $table, $column_name, $extra_data
443 );
444
445 /**Get the total row count of the table*/
446 $_table = new Table($_POST['table'], $_POST['db']);
447 $extra_data['row_count'] = $_table->countRecords();
448
449 $extra_data['sql_query'] = Util::getMessage(
450 $message,
451 $GLOBALS['display_query']
452 );
453
454 $response->setRequestStatus($message->isSuccess());
455 $response->addJSON('message', $message);
456 $response->addJSON($extra_data);
457 exit;
458 }
459
460 if (! empty($return_to_sql_query)) {
461 $disp_query = $GLOBALS['sql_query'];
462 $disp_message = $message;
463 unset($message);
464 $GLOBALS['sql_query'] = $return_to_sql_query;
465 }
466
467 $scripts->addFile('vendor/jquery/additional-methods.js');
468 $scripts->addFile('tbl_change.js');
469
470 $active_page = $goto_include;
471
472 /**
473 * If user asked for "and then Insert another new row" we have to remove
474 * WHERE clause information so that tbl_change.php does not go back
475 * to the current record
476 */
477 if (isset($_POST['after_insert']) && 'new_insert' == $_POST['after_insert']) {
478 unset($_POST['where_clause']);
479 }
480
481 /**
482 * Load target page.
483 */
484 require '' . Core::securePath($goto_include);
485 exit;
phpMyAdmin