<?php
+/**********************************************************************
+ Copyright (C) FrontAccounting, LLC.
+ Released under the terms of the GNU General Public License, GPL,
+ as published by the Free Software Foundation, either version 3
+ of the License, or (at your option) any later version.
+ This program is distributed in the hope that it will be useful,
+ but WITHOUT ANY WARRANTY; without even the implied warranty of
+ MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.
+ See the License here <http://www.gnu.org/licenses/gpl-3.0.html>.
+***********************************************************************/
+
+function set_global_connection($company=-1)
+{
+ global $db, $transaction_level, $db_connections;
-set_global_connection();
+ cancel_transaction(); // cancel all aborted transactions if any
+ $transaction_level = 0;
-function set_global_connection()
-{
- global $db;
+ if ($company == -1)
+ $company = $_SESSION["wa_current_user"]->company;
+
+ $_SESSION["wa_current_user"]->cur_con = $company;
+
+ $connection = $db_connections[$company];
- if (isset($_SESSION["wa_current_user"]) && $_SESSION["wa_current_user"]->company !='')
- $db = $_SESSION["wa_current_user"]->get_db_connection();
- else
- $db = null;
+ $db = mysql_connect($connection["host"], $connection["dbuser"], $connection["dbpassword"]);
+ mysql_select_db($connection["dbname"], $db);
+ return $db;
}
$db_duplicate_error_code = 1062;
function db_query($sql, $err_msg=null)
{
- global $db, $show_sql;
+ global $db, $show_sql, $sql_trail, $select_trail, $go_debug, $sql_queries, $Ajax,
+ $db_connections, $db_last_inserted_id;
+
+ // set current db prefix
+ $cur_prefix = $db_connections[$_SESSION["wa_current_user"]->cur_con]['tbpref'];
+ $sql = str_replace(TB_PREF, $cur_prefix, $sql);
- //echo "<br>$sql<br>";
if ($show_sql)
{
- echo "<font face=arial size=2 color=000099><b>SQL..</b></font>";
- echo "<pre>";
- echo $sql;
- echo "</pre>\n";
+ $Ajax->activate('footer_debug');
+ $sql_queries .= "<pre>$sql</pre>\n<hr>";
}
-
$result = mysql_query($sql, $db);
+
+ if($sql_trail) {
+ $db_last_inserted_id = mysql_insert_id($db); // preserve in case trail insert is done
+ if ($select_trail || (strstr($sql, 'SELECT') === false)) {
+ mysql_query(
+ "INSERT INTO ".$cur_prefix."sql_trail
+ (`sql`, `result`, `msg`)
+ VALUES(".db_escape($sql).",".($result ? 1 : 0).",
+ ".db_escape($err_msg).")", $db);
+ }
+ }
- if ($err_msg != null)
- check_db_error($err_msg, $sql);
-
+ if ($err_msg != null || $go_debug) {
+ $exit = $err_msg != null;
+ if (function_exists('xdebug_call_file'))
+ check_db_error('<br>At file '.xdebug_call_file().':'.xdebug_call_line().':<br>'.$err_msg, $sql, $exit);
+ else
+ check_db_error($err_msg, $sql, $exit);
+ }
return $result;
}
return mysql_fetch_row($result);
}
+function db_fetch_assoc ($result)
+{
+
+ return mysql_fetch_assoc($result);
+}
+
function db_fetch ($result)
{
function db_seek (&$result,$record)
{
- mysql_data_seek($result, $record);
+ return mysql_data_seek($result, $record);
}
function db_free_result ($result)
mysql_free_result($result);
}
-function db_num_rows (&$result)
+function db_num_rows ($result)
{
return mysql_num_rows($result);
}
return mysql_num_fields($result);
}
-function db_escape ($result)
+function db_escape($value = "", $nullify = false)
{
- return mysql_escape_string($result);
+ $value = @html_entity_decode($value, ENT_QUOTES, $_SESSION['language']->encoding);
+ $value = @htmlspecialchars($value, ENT_QUOTES, $_SESSION['language']->encoding);
+
+ //reset default if second parameter is skipped
+ $nullify = ($nullify === null) ? (false) : ($nullify);
+
+ //check for null/unset/empty strings
+ if ((!isset($value)) || (is_null($value)) || ($value === "")) {
+ $value = ($nullify) ? ("NULL") : ("''");
+ } else {
+ if (is_string($value)) {
+ //value is a string and should be quoted; determine best method based on available extensions
+ if (function_exists('mysql_real_escape_string')) {
+ $value = "'" . mysql_real_escape_string($value) . "'";
+ } else {
+ $value = "'" . mysql_escape_string($value) . "'";
+ }
+ } else if (!is_numeric($value)) {
+ //value is not a string nor numeric
+ display_error("ERROR: incorrect data type send to sql query");
+ echo '<br><br>';
+ exit();
+ }
+ }
+ return $value;
}
function db_error_no ()
function db_insert_id()
{
- global $db;
- return mysql_insert_id($db);
+ global $db_last_inserted_id, $sql_trail, $db;
+
+ return $sql_trail ? $db_last_inserted_id : mysql_insert_id($db);
}
function db_num_affected_rows()
return mysql_affected_rows($db);
}
-?>
+function db_field_name($result, $n)
+{
+ return mysql_field_name($result, $n);
+}
+
+function db_create_db($connection)
+{
+ $db = mysql_connect($connection["host"] ,
+ $connection["dbuser"], $connection["dbpassword"]);
+ if (!mysql_select_db($connection["dbname"], $db))
+ {
+ $sql = "CREATE DATABASE IF NOT EXISTS " . $connection["dbname"] . "";
+ if (!mysql_query($sql) || !mysql_select_db($connection["dbname"], $db))
+ return 0;
+ }
+ return $db;
+}
+
+function db_drop_db($connection)
+{
+
+ if ($connection["tbpref"] == "")
+ {
+ $sql = "DROP DATABASE IF EXISTS " . $connection["dbname"] . "";
+ return mysql_query($sql);
+ }
+ else
+ {
+ $res = db_query("show table status");
+ $all_tables = array();
+ while($row = db_fetch($res))
+ $all_tables[] = $row;
+ // get table structures
+ foreach ($all_tables as $table)
+ {
+ if (strpos($table['Name'], $connection["tbpref"]) === 0)
+ db_query("DROP TABLE `".$table['Name'] . "`");
+ }
+ //deleting the tables, how??
+ return true;
+ }
+}
+
+function db_close($dbase = null)
+{
+ global $db;
+
+ if (!$dbase)
+ $dbase = $db;
+ return mysql_close($dbase);
+}
+
+?>
\ No newline at end of file
projects / fa-stable.git / blobdiff