mirror of
https://github.com/cytopia/devilbox.git
synced 2025-01-15 09:19:47 +00:00
438 lines
13 KiB
PHP
438 lines
13 KiB
PHP
|
<?php
|
||
|
/* vim: set expandtab sw=4 ts=4 sts=4: */
|
||
|
/**
|
||
|
* Displays form for editing and inserting new table rows
|
||
|
*
|
||
|
* register_globals_save (mark this file save for disabling register globals)
|
||
|
*
|
||
|
* @package PhpMyAdmin
|
||
|
*/
|
||
|
|
||
|
/**
|
||
|
* Gets the variables sent or posted to this script and displays the header
|
||
|
*/
|
||
|
require_once 'libraries/common.inc.php';
|
||
|
|
||
|
/**
|
||
|
* Ensures db and table are valid, else moves to the "parent" script
|
||
|
*/
|
||
|
require_once 'libraries/db_table_exists.lib.php';
|
||
|
|
||
|
/**
|
||
|
* functions implementation for this script
|
||
|
*/
|
||
|
require_once 'libraries/insert_edit.lib.php';
|
||
|
|
||
|
/**
|
||
|
* Sets global variables.
|
||
|
* Here it's better to use a if, instead of the '?' operator
|
||
|
* to avoid setting a variable to '' when it's not present in $_REQUEST
|
||
|
*/
|
||
|
|
||
|
if (isset($_REQUEST['where_clause'])) {
|
||
|
$where_clause = $_REQUEST['where_clause'];
|
||
|
}
|
||
|
if (isset($_SESSION['edit_next'])) {
|
||
|
$where_clause = $_SESSION['edit_next'];
|
||
|
unset($_SESSION['edit_next']);
|
||
|
$after_insert = 'edit_next';
|
||
|
}
|
||
|
if (isset($_REQUEST['ShowFunctionFields'])) {
|
||
|
$cfg['ShowFunctionFields'] = $_REQUEST['ShowFunctionFields'];
|
||
|
}
|
||
|
if (isset($_REQUEST['ShowFieldTypesInDataEditView'])) {
|
||
|
$cfg['ShowFieldTypesInDataEditView'] = $_REQUEST['ShowFieldTypesInDataEditView'];
|
||
|
}
|
||
|
if (isset($_REQUEST['after_insert'])) {
|
||
|
$after_insert = $_REQUEST['after_insert'];
|
||
|
}
|
||
|
/**
|
||
|
* file listing
|
||
|
*/
|
||
|
require_once 'libraries/file_listing.lib.php';
|
||
|
|
||
|
|
||
|
/**
|
||
|
* Defines the url to return to in case of error in a sql statement
|
||
|
* (at this point, $GLOBALS['goto'] will be set but could be empty)
|
||
|
*/
|
||
|
if (empty($GLOBALS['goto'])) {
|
||
|
if (strlen($table)) {
|
||
|
// avoid a problem (see bug #2202709)
|
||
|
$GLOBALS['goto'] = 'tbl_sql.php';
|
||
|
} else {
|
||
|
$GLOBALS['goto'] = 'db_sql.php';
|
||
|
}
|
||
|
}
|
||
|
/**
|
||
|
* @todo check if we could replace by "db_|tbl_" - please clarify!?
|
||
|
*/
|
||
|
$_url_params = array(
|
||
|
'db' => $db,
|
||
|
'sql_query' => $_REQUEST['sql_query']
|
||
|
);
|
||
|
|
||
|
if (preg_match('@^tbl_@', $GLOBALS['goto'])) {
|
||
|
$_url_params['table'] = $table;
|
||
|
}
|
||
|
|
||
|
$err_url = $GLOBALS['goto'] . PMA_generate_common_url($_url_params);
|
||
|
unset($_url_params);
|
||
|
|
||
|
|
||
|
/**
|
||
|
* Sets parameters for links
|
||
|
* where is this variable used?
|
||
|
* replace by PMA_generate_common_url($url_params);
|
||
|
*/
|
||
|
$url_query = PMA_generate_common_url($url_params, 'html', '');
|
||
|
|
||
|
/**
|
||
|
* get table information
|
||
|
* @todo should be done by a Table object
|
||
|
*/
|
||
|
require_once 'libraries/tbl_info.inc.php';
|
||
|
|
||
|
/**
|
||
|
* Get comments for table fileds/columns
|
||
|
*/
|
||
|
$comments_map = array();
|
||
|
|
||
|
if ($GLOBALS['cfg']['ShowPropertyComments']) {
|
||
|
$comments_map = PMA_getComments($db, $table);
|
||
|
}
|
||
|
|
||
|
/**
|
||
|
* START REGULAR OUTPUT
|
||
|
*/
|
||
|
|
||
|
/**
|
||
|
* Load JavaScript files
|
||
|
*/
|
||
|
$response = PMA_Response::getInstance();
|
||
|
$header = $response->getHeader();
|
||
|
$scripts = $header->getScripts();
|
||
|
$scripts->addFile('functions.js');
|
||
|
$scripts->addFile('tbl_change.js');
|
||
|
$scripts->addFile('jquery/jquery-ui-timepicker-addon.js');
|
||
|
$scripts->addFile('gis_data_editor.js');
|
||
|
|
||
|
/**
|
||
|
* Displays the query submitted and its result
|
||
|
*
|
||
|
* @todo where does $disp_message and $disp_query come from???
|
||
|
*/
|
||
|
if (! empty($disp_message)) {
|
||
|
if (! isset($disp_query)) {
|
||
|
$disp_query = null;
|
||
|
}
|
||
|
$response->addHTML(PMA_Util::getMessage($disp_message, $disp_query));
|
||
|
}
|
||
|
|
||
|
/**
|
||
|
* Get the analysis of SHOW CREATE TABLE for this table
|
||
|
*/
|
||
|
$analyzed_sql = PMA_Table::analyzeStructure($db, $table);
|
||
|
|
||
|
/**
|
||
|
* Get the list of the fields of the current table
|
||
|
*/
|
||
|
PMA_DBI_select_db($db);
|
||
|
$table_fields = array_values(PMA_DBI_get_columns($db, $table));
|
||
|
|
||
|
$paramTableDbArray = array($table, $db);
|
||
|
|
||
|
/**
|
||
|
* Determine what to do, edit or insert?
|
||
|
*/
|
||
|
if (isset($where_clause)) {
|
||
|
// we are editing
|
||
|
$insert_mode = false;
|
||
|
$where_clause_array = PMA_getWhereClauseArray($where_clause);
|
||
|
list($where_clauses, $result, $rows, $found_unique_key)
|
||
|
= PMA_analyzeWhereClauses($where_clause_array, $table, $db);
|
||
|
} else {
|
||
|
// we are inserting
|
||
|
$insert_mode = true;
|
||
|
$where_clause = null;
|
||
|
list($result, $rows) = PMA_loadFirstRow($table, $db);
|
||
|
$where_clauses = null;
|
||
|
$where_clause_array = null;
|
||
|
$found_unique_key = false;
|
||
|
}
|
||
|
|
||
|
// Copying a row - fetched data will be inserted as a new row,
|
||
|
// therefore the where clause is needless.
|
||
|
if (isset($_REQUEST['default_action']) && $_REQUEST['default_action'] === 'insert') {
|
||
|
$where_clause = $where_clauses = null;
|
||
|
}
|
||
|
|
||
|
// retrieve keys into foreign fields, if any
|
||
|
$foreigners = PMA_getForeigners($db, $table);
|
||
|
|
||
|
// Retrieve form parameters for insert/edit form
|
||
|
$_form_params = PMA_getFormParametersForInsertForm(
|
||
|
$db, $table, $where_clauses, $where_clause_array, $err_url
|
||
|
);
|
||
|
|
||
|
/**
|
||
|
* Displays the form
|
||
|
*/
|
||
|
// autocomplete feature of IE kills the "onchange" event handler and it
|
||
|
// must be replaced by the "onpropertychange" one in this case
|
||
|
$chg_evt_handler = (PMA_USR_BROWSER_AGENT == 'IE'
|
||
|
&& PMA_USR_BROWSER_VER >= 5
|
||
|
&& PMA_USR_BROWSER_VER < 7
|
||
|
)
|
||
|
? 'onpropertychange'
|
||
|
: 'onchange';
|
||
|
// Had to put the URI because when hosted on an https server,
|
||
|
// some browsers send wrongly this form to the http server.
|
||
|
|
||
|
$html_output = '';
|
||
|
// Set if we passed the first timestamp field
|
||
|
$timestamp_seen = false;
|
||
|
$columns_cnt = count($table_fields);
|
||
|
|
||
|
$tabindex = 0;
|
||
|
$tabindex_for_function = +3000;
|
||
|
$tabindex_for_null = +6000;
|
||
|
$tabindex_for_value = 0;
|
||
|
$o_rows = 0;
|
||
|
$biggest_max_file_size = 0;
|
||
|
|
||
|
$url_params['db'] = $db;
|
||
|
$url_params['table'] = $table;
|
||
|
$url_params = PMA_urlParamsInEditMode(
|
||
|
$url_params, $where_clause_array, $where_clause
|
||
|
);
|
||
|
|
||
|
//Insert/Edit form
|
||
|
//If table has blob fields we have to disable ajax.
|
||
|
$has_blob_field = false;
|
||
|
foreach ($table_fields as $column) {
|
||
|
if (PMA_isColumnBlob($column)) {
|
||
|
$has_blob_field = true;
|
||
|
break;
|
||
|
}
|
||
|
}
|
||
|
$html_output .='<form id="insertForm" ';
|
||
|
if ($has_blob_field && $is_upload) {
|
||
|
$html_output .='class="disableAjax" ';
|
||
|
}
|
||
|
$html_output .='method="post" action="tbl_replace.php" name="insertForm" ';
|
||
|
if ($is_upload) {
|
||
|
$html_output .= ' enctype="multipart/form-data"';
|
||
|
}
|
||
|
$html_output .= '>';
|
||
|
$html_output .= PMA_generate_common_hidden_inputs($_form_params);
|
||
|
|
||
|
$titles['Browse'] = PMA_Util::getIcon('b_browse.png', __('Browse foreign values'));
|
||
|
|
||
|
// user can toggle the display of Function column and column types
|
||
|
// (currently does not work for multi-edits)
|
||
|
if (! $cfg['ShowFunctionFields'] || ! $cfg['ShowFieldTypesInDataEditView']) {
|
||
|
$html_output .= __('Show');
|
||
|
}
|
||
|
|
||
|
if (! $cfg['ShowFunctionFields']) {
|
||
|
$html_output .= PMA_showFunctionFieldsInEditMode($url_params, false);
|
||
|
}
|
||
|
|
||
|
if (! $cfg['ShowFieldTypesInDataEditView']) {
|
||
|
$html_output .= PMA_showColumnTypesInDataEditView($url_params, false);
|
||
|
}
|
||
|
|
||
|
foreach ($rows as $row_id => $current_row) {
|
||
|
if ($current_row === false) {
|
||
|
unset($current_row);
|
||
|
}
|
||
|
|
||
|
$jsvkey = $row_id;
|
||
|
$rownumber_param = '&rownumber=' . $row_id;
|
||
|
$vkey = '[multi_edit][' . $jsvkey . ']';
|
||
|
|
||
|
$current_result = (isset($result) && is_array($result) && isset($result[$row_id])
|
||
|
? $result[$row_id]
|
||
|
: $result);
|
||
|
if ($insert_mode && $row_id > 0) {
|
||
|
$html_output .= '<input type="checkbox" checked="checked"'
|
||
|
. ' name="insert_ignore_' . $row_id . '"'
|
||
|
. ' id="insert_ignore_' . $row_id . '" />'
|
||
|
.'<label for="insert_ignore_' . $row_id . '">'
|
||
|
. __('Ignore')
|
||
|
. '</label><br />' . "\n";
|
||
|
}
|
||
|
|
||
|
$html_output .= PMA_getHeadAndFootOfInsertRowTable($url_params)
|
||
|
. '<tbody>';
|
||
|
|
||
|
// Sets a multiplier used for input-field counts
|
||
|
// (as zero cannot be used, advance the counter plus one)
|
||
|
$m_rows = $o_rows + 1;
|
||
|
//store the default value for CharEditing
|
||
|
$default_char_editing = $cfg['CharEditing'];
|
||
|
|
||
|
$odd_row = true;
|
||
|
for ($i = 0; $i < $columns_cnt; $i++) {
|
||
|
if (! isset($table_fields[$i]['processed'])) {
|
||
|
$column = $table_fields[$i];
|
||
|
$column = PMA_analyzeTableColumnsArray(
|
||
|
$column, $comments_map, $timestamp_seen
|
||
|
);
|
||
|
}
|
||
|
|
||
|
$extracted_columnspec
|
||
|
= PMA_Util::extractColumnSpec($column['Type']);
|
||
|
|
||
|
if (-1 === $column['len']) {
|
||
|
$column['len'] = PMA_DBI_field_len($current_result, $i);
|
||
|
// length is unknown for geometry fields,
|
||
|
// make enough space to edit very simple WKTs
|
||
|
if (-1 === $column['len']) {
|
||
|
$column['len'] = 30;
|
||
|
}
|
||
|
}
|
||
|
//Call validation when the form submited...
|
||
|
$unnullify_trigger = $chg_evt_handler
|
||
|
. "=\"return verificationsAfterFieldChange('"
|
||
|
. PMA_escapeJsString($column['Field_md5']) . "', '"
|
||
|
. PMA_escapeJsString($jsvkey) . "','".$column['pma_type'] . "')\"";
|
||
|
|
||
|
// Use an MD5 as an array index to avoid having special characters
|
||
|
// in the name atttibute (see bug #1746964 )
|
||
|
$column_name_appendix = $vkey . '[' . $column['Field_md5'] . ']';
|
||
|
|
||
|
if ($column['Type'] == 'datetime'
|
||
|
&& ! isset($column['Default'])
|
||
|
&& ! is_null($column['Default'])
|
||
|
&& ($insert_mode || ! isset($current_row[$column['Field']]))
|
||
|
) {
|
||
|
// INSERT case or
|
||
|
// UPDATE case with an NULL value
|
||
|
$current_row[$column['Field']] = date('Y-m-d H:i:s', time());
|
||
|
}
|
||
|
|
||
|
$html_output .= '<tr class="noclick ' . ($odd_row ? 'odd' : 'even' ) . '">'
|
||
|
. '<td ' . ($cfg['LongtextDoubleTextarea'] && strstr($column['True_Type'], 'longtext') ? 'rowspan="2"' : '') . 'class="center">'
|
||
|
. $column['Field_title']
|
||
|
. '<input type="hidden" name="fields_name' . $column_name_appendix . '" value="' . $column['Field_html'] . '"/>'
|
||
|
. '</td>';
|
||
|
if ($cfg['ShowFieldTypesInDataEditView']) {
|
||
|
$html_output .= '<td class="center' . $column['wrap'] . '">'
|
||
|
. '<span class="column_type">' . $column['pma_type'] . '</span>'
|
||
|
. '</td>';
|
||
|
} //End if
|
||
|
|
||
|
// Get a list of GIS data types.
|
||
|
$gis_data_types = PMA_Util::getGISDatatypes();
|
||
|
|
||
|
// Prepares the field value
|
||
|
$real_null_value = false;
|
||
|
$special_chars_encoded = '';
|
||
|
if (isset($current_row)) {
|
||
|
// (we are editing)
|
||
|
list(
|
||
|
$real_null_value, $special_chars_encoded, $special_chars,
|
||
|
$data, $backup_field
|
||
|
)
|
||
|
= PMA_getSpecialCharsAndBackupFieldForExistingRow(
|
||
|
$current_row, $column, $extracted_columnspec,
|
||
|
$real_null_value, $gis_data_types, $column_name_appendix
|
||
|
);
|
||
|
} else {
|
||
|
// (we are inserting)
|
||
|
// display default values
|
||
|
list($real_null_value, $data, $special_chars, $backup_field, $special_chars_encoded)
|
||
|
= PMA_getSpecialCharsAndBackupFieldForInsertingMode($column, $real_null_value);
|
||
|
}
|
||
|
|
||
|
$idindex = ($o_rows * $columns_cnt) + $i + 1;
|
||
|
$tabindex = $idindex;
|
||
|
|
||
|
// Get a list of data types that are not yet supported.
|
||
|
$no_support_types = PMA_Util::unsupportedDatatypes();
|
||
|
|
||
|
// The function column
|
||
|
// -------------------
|
||
|
if ($cfg['ShowFunctionFields']) {
|
||
|
$html_output .= PMA_getFunctionColumn(
|
||
|
$column, $is_upload, $column_name_appendix,
|
||
|
$unnullify_trigger, $no_support_types, $tabindex_for_function,
|
||
|
$tabindex, $idindex, $insert_mode
|
||
|
);
|
||
|
}
|
||
|
|
||
|
// The null column
|
||
|
// ---------------
|
||
|
$foreignData = PMA_getForeignData(
|
||
|
$foreigners, $column['Field'], false, '', ''
|
||
|
);
|
||
|
$html_output .= PMA_getNullColumn(
|
||
|
$column, $column_name_appendix, $real_null_value,
|
||
|
$tabindex, $tabindex_for_null, $idindex, $vkey, $foreigners,
|
||
|
$foreignData
|
||
|
);
|
||
|
|
||
|
// The value column (depends on type)
|
||
|
// ----------------
|
||
|
// See bug #1667887 for the reason why we don't use the maxlength
|
||
|
// HTML attribute
|
||
|
$html_output .= ' <td>' . "\n";
|
||
|
// Will be used by js/tbl_change.js to set the default value
|
||
|
// for the "Continue insertion" feature
|
||
|
$html_output .= '<span class="default_value hide">'
|
||
|
. $special_chars . '</span>';
|
||
|
|
||
|
$html_output .= PMA_getValueColumn(
|
||
|
$column, $backup_field, $column_name_appendix, $unnullify_trigger,
|
||
|
$tabindex, $tabindex_for_value, $idindex, $data, $special_chars,
|
||
|
$foreignData, $odd_row, $paramTableDbArray, $rownumber_param, $titles,
|
||
|
$text_dir, $special_chars_encoded, $vkey, $is_upload,
|
||
|
$biggest_max_file_size, $default_char_editing,
|
||
|
$no_support_types, $gis_data_types, $extracted_columnspec
|
||
|
);
|
||
|
|
||
|
$html_output .= '</td>'
|
||
|
. '</tr>';
|
||
|
|
||
|
$odd_row = !$odd_row;
|
||
|
} // end for
|
||
|
$o_rows++;
|
||
|
$html_output .= ' </tbody>'
|
||
|
. '</table><br />';
|
||
|
} // end foreach on multi-edit
|
||
|
|
||
|
$html_output .='<div id="gis_editor"></div>'
|
||
|
. '<div id="popup_background"></div>'
|
||
|
. '<br />';
|
||
|
|
||
|
if (! isset($after_insert)) {
|
||
|
$after_insert = 'back';
|
||
|
}
|
||
|
|
||
|
//action panel
|
||
|
$html_output .= PMA_getActionsPanel(
|
||
|
$where_clause, $after_insert, $tabindex,
|
||
|
$tabindex_for_value, $found_unique_key
|
||
|
);
|
||
|
|
||
|
if ($biggest_max_file_size > 0) {
|
||
|
$html_output .= ' '
|
||
|
. PMA_Util::generateHiddenMaxFileSize(
|
||
|
$biggest_max_file_size
|
||
|
) . "\n";
|
||
|
}
|
||
|
$html_output .= '</form>';
|
||
|
// end Insert/Edit form
|
||
|
|
||
|
if ($insert_mode) {
|
||
|
//Continue insertion form
|
||
|
$html_output .= PMA_getContinueInsertionForm(
|
||
|
$table, $db, $where_clause_array, $err_url
|
||
|
);
|
||
|
}
|
||
|
$response->addHTML($html_output);
|
||
|
|
||
|
?>
|