mirror of
https://github.com/Froxlor/Froxlor.git
synced 2024-09-21 10:27:29 +00:00
9907afe630
'reverted' old-style update-process; removed billing-classes, -functions and -templates; some sql-fixes;
252 lines
9.7 KiB
PHP
252 lines
9.7 KiB
PHP
<?php
|
|
|
|
/**
|
|
* This file is part of the SysCP project.
|
|
* Copyright (c) 2003-2009 the SysCP Team (see authors).
|
|
*
|
|
* For the full copyright and license information, please view the COPYING
|
|
* file that was distributed with this source code. You can also view the
|
|
* COPYING file online at http://files.syscp.org/misc/COPYING.txt
|
|
*
|
|
* @copyright (c) the authors
|
|
* @author Florian Lippert <flo@syscp.org>
|
|
* @license GPLv2 http://files.syscp.org/misc/COPYING.txt
|
|
* @package Panel
|
|
* @version $Id: customer_mysql.php 2732 2009-10-30 16:24:48Z flo $
|
|
*/
|
|
|
|
define('AREA', 'customer');
|
|
|
|
/**
|
|
* Include our init.php, which manages Sessions, Language etc.
|
|
*/
|
|
|
|
$need_root_db_sql_data = true;
|
|
require ("./lib/init.php");
|
|
|
|
if(isset($_POST['id']))
|
|
{
|
|
$id = intval($_POST['id']);
|
|
}
|
|
elseif(isset($_GET['id']))
|
|
{
|
|
$id = intval($_GET['id']);
|
|
}
|
|
|
|
if($page == 'overview')
|
|
{
|
|
$log->logAction(USR_ACTION, LOG_NOTICE, "viewed customer_mysql");
|
|
$lng['mysql']['description'] = str_replace('<SQL_HOST>', $sql['host'], $lng['mysql']['description']);
|
|
eval("echo \"" . getTemplate("mysql/mysql") . "\";");
|
|
}
|
|
elseif($page == 'mysqls')
|
|
{
|
|
if($action == '')
|
|
{
|
|
$log->logAction(USR_ACTION, LOG_NOTICE, "viewed customer_mysql::mysqls");
|
|
$fields = array(
|
|
'databasename' => $lng['mysql']['databasename'],
|
|
'description' => $lng['mysql']['databasedescription']
|
|
);
|
|
$paging = new paging($userinfo, $db, TABLE_PANEL_DATABASES, $fields, $settings['panel']['paging'], $settings['panel']['natsorting']);
|
|
$result = $db->query("SELECT `id`, `databasename`, `description`, `dbserver` FROM `" . TABLE_PANEL_DATABASES . "` WHERE `customerid`='" . (int)$userinfo['customerid'] . "' " . $paging->getSqlWhere(true) . " " . $paging->getSqlOrderBy() . " " . $paging->getSqlLimit());
|
|
$paging->setEntries($db->num_rows($result));
|
|
$sortcode = $paging->getHtmlSortCode($lng);
|
|
$arrowcode = $paging->getHtmlArrowCode($filename . '?page=' . $page . '&s=' . $s);
|
|
$searchcode = $paging->getHtmlSearchCode($lng);
|
|
$pagingcode = $paging->getHtmlPagingCode($filename . '?page=' . $page . '&s=' . $s);
|
|
$i = 0;
|
|
$count = 0;
|
|
$mysqls = '';
|
|
|
|
while($row = $db->fetch_array($result))
|
|
{
|
|
if($paging->checkDisplay($i))
|
|
{
|
|
$row = htmlentities_array($row);
|
|
eval("\$mysqls.=\"" . getTemplate("mysql/mysqls_database") . "\";");
|
|
$count++;
|
|
}
|
|
|
|
$i++;
|
|
}
|
|
|
|
$mysqls_count = $db->num_rows($result);
|
|
eval("echo \"" . getTemplate("mysql/mysqls") . "\";");
|
|
}
|
|
elseif($action == 'delete'
|
|
&& $id != 0)
|
|
{
|
|
$result = $db->query_first('SELECT `id`, `databasename`, `dbserver` FROM `' . TABLE_PANEL_DATABASES . '` WHERE `customerid`="' . (int)$userinfo['customerid'] . '" AND `id`="' . (int)$id . '"');
|
|
|
|
if(isset($result['databasename'])
|
|
&& $result['databasename'] != '')
|
|
{
|
|
if(!isset($sql_root[$result['dbserver']]) || !is_array($sql_root[$result['dbserver']]))
|
|
{
|
|
$result['dbserver'] = 0;
|
|
}
|
|
|
|
if(isset($_POST['send'])
|
|
&& $_POST['send'] == 'send')
|
|
{
|
|
// Begin root-session
|
|
|
|
$db_root = new db($sql_root[$result['dbserver']]['host'], $sql_root[$result['dbserver']]['user'], $sql_root[$result['dbserver']]['password'], '');
|
|
unset($db_root->password);
|
|
foreach(array_map('trim', array_unique(explode(',', $settings['system']['mysql_access_host']))) as $mysql_access_host)
|
|
{
|
|
$db_root->query('REVOKE ALL PRIVILEGES ON * . * FROM `' . $db_root->escape($result['databasename']) . '`@`' . $db_root->escape($mysql_access_host) . '`');
|
|
$db_root->query('REVOKE ALL PRIVILEGES ON `' . str_replace('_', '\_', $db_root->escape($result['databasename'])) . '` . * FROM `' . $db_root->escape($result['databasename']) . '`@`' . $db_root->escape($mysql_access_host) . '`');
|
|
$db_root->query('DELETE FROM `mysql`.`user` WHERE `User` = "' . $db_root->escape($result['databasename']) . '" AND `Host` = "' . $db_root->escape($mysql_access_host) . '"');
|
|
}
|
|
|
|
$db_root->query('DROP DATABASE IF EXISTS `' . $db_root->escape($result['databasename']) . '`');
|
|
$db_root->query('FLUSH PRIVILEGES');
|
|
$db_root->close();
|
|
|
|
// End root-session
|
|
|
|
$db->query('DELETE FROM `' . TABLE_PANEL_DATABASES . '` WHERE `customerid`="' . (int)$userinfo['customerid'] . '" AND `id`="' . (int)$id . '"');
|
|
|
|
if($userinfo['mysqls_used'] == '1')
|
|
{
|
|
$resetaccnumber = " , `mysql_lastaccountnumber`='0' ";
|
|
}
|
|
else
|
|
{
|
|
$resetaccnumber = '';
|
|
}
|
|
|
|
$result = $db->query('UPDATE `' . TABLE_PANEL_CUSTOMERS . '` SET `mysqls_used`=`mysqls_used`-1 ' . $resetaccnumber . 'WHERE `customerid`="' . (int)$userinfo['customerid'] . '"');
|
|
redirectTo($filename, Array('page' => $page, 's' => $s));
|
|
}
|
|
else
|
|
{
|
|
ask_yesno('mysql_reallydelete', $filename, array('id' => $id, 'page' => $page, 'action' => $action), $result['databasename']);
|
|
}
|
|
}
|
|
}
|
|
elseif($action == 'add')
|
|
{
|
|
if($userinfo['mysqls_used'] < $userinfo['mysqls']
|
|
|| $userinfo['mysqls'] == '-1')
|
|
{
|
|
if(isset($_POST['send'])
|
|
&& $_POST['send'] == 'send')
|
|
{
|
|
$password = validate($_POST['mysql_password'], 'password');
|
|
|
|
if($password == '')
|
|
{
|
|
standard_error(array('stringisempty', 'mypassword'));
|
|
}
|
|
else
|
|
{
|
|
$username = $userinfo['loginname'] . $settings['customer']['mysqlprefix'] . (intval($userinfo['mysql_lastaccountnumber']) + 1);
|
|
|
|
if(count($sql_root) > 1)
|
|
{
|
|
$dbserver = validate($_POST['mysql_server'], html_entity_decode($lng['mysql']['mysql_server']), '', '', 0);
|
|
|
|
if(!isset($sql_root[$dbserver]) || !is_array($sql_root[$dbserver]))
|
|
{
|
|
$dbserver = 0;
|
|
}
|
|
}
|
|
else
|
|
{
|
|
$dbserver = 0;
|
|
}
|
|
|
|
// Begin root-session
|
|
|
|
$db_root = new db($sql_root[$dbserver]['host'], $sql_root[$dbserver]['user'], $sql_root[$dbserver]['password'], '');
|
|
unset($db_root->password);
|
|
$db_root->query('CREATE DATABASE `' . $db_root->escape($username) . '`');
|
|
$log->logAction(USR_ACTION, LOG_INFO, "created database '" . $username . "'");
|
|
foreach(array_map('trim', explode(',', $settings['system']['mysql_access_host'])) as $mysql_access_host)
|
|
{
|
|
$db_root->query('GRANT ALL PRIVILEGES ON `' . str_replace('_', '\_', $db_root->escape($username)) . '`.* TO `' . $db_root->escape($username) . '`@`' . $db_root->escape($mysql_access_host) . '` IDENTIFIED BY \'password\'');
|
|
$db_root->query('SET PASSWORD FOR `' . $db_root->escape($username) . '`@`' . $db_root->escape($mysql_access_host) . '` = PASSWORD(\'' . $db_root->escape($password) . '\')');
|
|
$log->logAction(USR_ACTION, LOG_NOTICE, "grant all privileges for '" . $username . "'@'" . $mysql_access_host . "'");
|
|
}
|
|
|
|
$db_root->query('FLUSH PRIVILEGES');
|
|
$db_root->close();
|
|
|
|
// End root-session
|
|
// Statement modifyed for Database description -- PH 2004-11-29
|
|
|
|
$databasedescription = validate($_POST['description'], 'description');
|
|
$result = $db->query('INSERT INTO `' . TABLE_PANEL_DATABASES . '` (`customerid`, `databasename`, `description`, `dbserver`) VALUES ("' . (int)$userinfo['customerid'] . '", "' . $db->escape($username) . '", "' . $db->escape($databasedescription) . '", "' . $db->escape($dbserver) . '")');
|
|
$result = $db->query('UPDATE `' . TABLE_PANEL_CUSTOMERS . '` SET `mysqls_used`=`mysqls_used`+1, `mysql_lastaccountnumber`=`mysql_lastaccountnumber`+1 WHERE `customerid`="' . (int)$userinfo['customerid'] . '"');
|
|
redirectTo($filename, Array('page' => $page, 's' => $s));
|
|
}
|
|
}
|
|
else
|
|
{
|
|
$mysql_servers = '';
|
|
|
|
foreach($sql_root as $mysql_server => $mysql_server_details)
|
|
{
|
|
$mysql_servers .= makeoption($mysql_server_details['caption'], $mysql_server);
|
|
}
|
|
|
|
eval("echo \"" . getTemplate("mysql/mysqls_add") . "\";");
|
|
}
|
|
}
|
|
}
|
|
elseif($action == 'edit'
|
|
&& $id != 0)
|
|
{
|
|
$result = $db->query_first('SELECT `id`, `databasename`, `description`, `dbserver` FROM `' . TABLE_PANEL_DATABASES . '` WHERE `customerid`="' . $userinfo['customerid'] . '" AND `id`="' . $id . '"');
|
|
|
|
if(isset($result['databasename'])
|
|
&& $result['databasename'] != '')
|
|
{
|
|
if(!isset($sql_root[$result['dbserver']]) || !is_array($sql_root[$result['dbserver']]))
|
|
{
|
|
$result['dbserver'] = 0;
|
|
}
|
|
|
|
if(isset($_POST['send'])
|
|
&& $_POST['send'] == 'send')
|
|
{
|
|
// Only change Password if it is set, do nothing if it is empty! -- PH 2004-11-29
|
|
|
|
$password = validate($_POST['mysql_password'], 'password');
|
|
|
|
if($password != '')
|
|
{
|
|
// Begin root-session
|
|
|
|
$db_root = new db($sql_root[$result['dbserver']]['host'], $sql_root[$result['dbserver']]['user'], $sql_root[$result['dbserver']]['password'], '');
|
|
unset($db_root->password);
|
|
foreach(array_map('trim', explode(',', $settings['system']['mysql_access_host'])) as $mysql_access_host)
|
|
{
|
|
$db_root->query('SET PASSWORD FOR `' . $db_root->escape($result['databasename']) . '`@`' . $db_root->escape($mysql_access_host) . '` = PASSWORD(\'' . $db_root->escape($password) . '\')');
|
|
}
|
|
|
|
$db_root->query('FLUSH PRIVILEGES');
|
|
$db_root->close();
|
|
|
|
// End root-session
|
|
}
|
|
|
|
// Update the Database description -- PH 2004-11-29
|
|
|
|
$log->logAction(USR_ACTION, LOG_INFO, "edited database '" . $result['databasename'] . "'");
|
|
$databasedescription = validate($_POST['description'], 'description');
|
|
$result = $db->query('UPDATE `' . TABLE_PANEL_DATABASES . '` SET `description`="' . $db->escape($databasedescription) . '" WHERE `customerid`="' . (int)$userinfo['customerid'] . '" AND `id`="' . (int)$id . '"');
|
|
redirectTo($filename, Array('page' => $page, 's' => $s));
|
|
}
|
|
else
|
|
{
|
|
eval("echo \"" . getTemplate("mysql/mysqls_edit") . "\";");
|
|
}
|
|
}
|
|
}
|
|
}
|
|
|
|
?>
|