| Current File : //etc/zpanel/panel/dryden/db/driver.class.php |
<?php
/**
* @copyright 2014-2015 Sentora Project (http://www.sentora.org/)
* Sentora is a GPL fork of the ZPanel Project whose original header follows:
*
* Database access class, enables PDO database access.
* @package zpanelx
* @subpackage dryden -> db
* @version 1.0.0
* @author Bobby Allen (ballen@bobbyallen.me)
* @copyright ZPanel Project (http://www.zpanelcp.com/)
* @link http://www.zpanelcp.com/
* @license GPL (http://www.gnu.org/licenses/gpl.html)
*/
class db_driver extends PDO {
/**
*
* @var \PDOStatement
*/
private $_prepared = null;
/**
*
* @var \PDOStatement
*/
private $_executed = null;
/**
*
* @var array
*/
private $_result = null;
/**
*
*/
private $queriesExecuted = array();
/**
*
* @param type $prepared
*/
private function setPrepared($prepared) {
$this->_prepared = $prepared;
}
/**
*
* @param type $executed
*/
private function setExecuted($executed) {
$this->_executed = $executed;
}
/**
*
* @return \PDOStatement
*/
private function getPrepared() {
return $this->_prepared;
}
/**
*
* @return \PDOStatement
*/
private function getExecuted() {
return $this->_executed;
}
/**
*
* @param String $dsn
* @param String $username
* @param String $password
* @param $driver_options [optional]
*/
public function __construct($dsn, $username = null, $password = null, $driver_options = null) {
parent::__construct($dsn, $username, $password, $driver_options);
}
var $css = "<style type=\"text/css\"><!--
.dbwarning {
font-family: Verdana, Geneva, sans-serif;
font-size: 14px;
color: #C00;
background-color: #FCC;
padding: 30px;
border: 1px solid #C00;
}
p {
font-size: 12px;
color: #000;
white-space: pre-wrap;
}
pre {
color: #666;
}
</style>";
/**
*
* @param String $exception
* @return String
*/
private function cleanexpmessage($exception) {
$res = strstr($exception, "]: ", false);
$res1 = str_replace(']: ', '', $res);
$res2 = strstr($res1, 'Stack', true);
$stack = strstr($exception, 'Stack trace:', false);
$stack1 = strstr($stack, '}', true);
$stack2 = str_replace("Stack trace:", "", $stack1);
return $res2 . $stack2 . "}";
}
/**
*
* @param String $query
* @return type
*/
public function query($query) {
try {
$result = parent::query($query);
return($result);
} catch (PDOException $e) {
$errormessage = $this->errorInfo();
$clean = $this->cleanexpmessage($e);
if (!runtime_controller::IsCLI()) {
$error_html = $this->css . "<div class=\"dbwarning\"><strong>Critical Error:</strong> [0144] - Sentora database 'query' error (" . $this->errorCode() . ").<p>A database query has caused an error, the details of which can be found below.</p><p><strong>Error message:</strong></p><pre> " . $errormessage[2] . "</pre><p><strong>SQL Executed:</strong></p><pre>" . $query . "</pre><p><strong>Stack trace: </strong></p><pre>" . $clean . "</pre></div>";
} else {
$error_html = "SQL Error: " . $errormessage[2] . "\n";
}
die($error_html);
}
}
/**
*
* @param String $query
* @deprecated since version 10.0.1
* @return type
*/
public function exec($query) {
try {
$result = parent::exec($query);
return($result);
} catch (PDOException $e) {
$errormessage = $this->errorInfo();
$clean = $this->cleanexpmessage($e);
if (!runtime_controller::IsCLI()) {
$error_html = $this->css . "<div class=\"dbwarning\"><strong>Critical Error:</strong> [0144] - Sentora database 'exec' error (" . $this->errorCode() . ").<p>A database query has caused an error, the details of which can be found below.</p><p><strong>Error message:</strong></p><pre> " . $errormessage[2] . "</pre><p><strong>SQL Executed:</strong></p><pre>" . $query . "</pre><p><strong>Stack trace: </strong></p><pre>" . $clean . "</pre></div>";
} else {
$error_html = "SQL Error: " . $errormessage[2] . "\n";
}
die($error_html);
}
}
public function last_insert_id()
{
return parent::lastInsertId();
}
/**
* The main query function using bind variables for SQL injection protection.
* Returns an array of results.
* @author Kevin Andrews (kandrews@zpanelcp.com)
* @param String $sqlString
* @param Array $bindArray
* @param Array $driver_options [optional]
* @return \PDOStatement
*/
public function bindQuery($sqlString, array $bindArray, $driver_options = array()) {
$sqlPrepare = $this->prepare($sqlString, $driver_options);
$this->setPrepared($sqlPrepare);
$this->bindParams($sqlPrepare, $bindArray);
$sqlPrepare->execute();
$this->setExecuted($sqlPrepare);
return $sqlPrepare;
}
/**
*
* @param String $query
* @param Array $driver_options
* @return type
*/
public function prepare($query, $driver_options = array()) {
try {
$result = parent::prepare($query, $driver_options);
$this->queriesExecuted[] = $query;
return($result);
} catch (PDOException $e) {
$errormessage = $this->errorInfo();
$clean = $this->cleanexpmessage($e);
if (!runtime_controller::IsCLI()) {
$error_html = $this->css . "<div class=\"dbwarning\"><strong>Critical Error:</strong> [0144] - Sentora database 'prepare' error (" . $this->errorCode() . ").<p>A database query has caused an error, the details of which can be found below.</p><p><strong>Error message:</strong></p><pre> " . $errormessage[2] . "</pre><p><strong>SQL Executed:</strong></p><pre>" . $query . "</pre><p><strong>Stack trace: </strong></p><pre>" . $clean . "</pre></div>";
} else {
$error_html = "SQL Error: " . $errormessage[2] . "\n";
}
die($error_html);
}
}
/**
* Binding an array of bind variable pairs to a prepared sql statement.
* @author Kevin Andrews (kandrews@zpanelcp.com)
* @param PDOStatement $sqlPrepare
* @param array $bindArray
* @return \PDOStatement
*/
public function bindParams(PDOStatement $sqlPrepare, array $bindArray) {
foreach ($bindArray as $bindKey => &$bindValue) {
$sqlPrepare->bindParam($bindKey, $bindValue);
}
}
/**
* Returns the first result or next result if previously called.
* @return array
*/
public function returnRow() {
return $this->getExecuted()->fetch(PDO::FETCH_ASSOC);
}
/**
* Returns a multidimensional array of results.
* @return array
*/
public function returnRows() {
return $this->getExecuted()->fetchAll();
}
/**
* Returns the rows affected by any query.
* @return int
*/
public function returnResult() {
return $this->getExecuted()->rowCount();
}
/**
* The function is the equilivent to mysql_real_escape_string needed due to PDO issues with `
* @author Sam Mottley (smottley@zpanelcp.com)
* @param String $string string to be cleaned
* @return String Clean version of the string
*/
public function mysqlRealEscapeString($string) {
$search = array("\\", "\0", "\n", "\r", "\x1a", "'", '"', "`"); //`
$replace = array("\\\\", "\\0", "\\n", "\\r", "\Z", "\'", '\"', ""); //`
$cleanString = str_replace($search, $replace, $string);
return $cleanString;
}
/**
* Returns a list of all the current queries executed. (Implemented for the Debug/Execution class!)
* @author Bobby Allen (ballen@bobbyallen.me)
* @return array List of executed SQL queries.
*/
public function getExecutedQueries() {
return $this->queriesExecuted;
}
}
?>