CasperSecurity
<?php
declare(strict_types=1);
namespace PhpMyAdmin;
use mysqli_result;
use function count;
use function sprintf;
class SystemDatabase
{
/** @var DatabaseInterface */
protected $dbi;
/** @var Relation */
private $relation;
/**
* Get instance of SystemDatabase
*
* @param DatabaseInterface $dbi Database interface for the system database
*/
public function __construct(DatabaseInterface $dbi)
{
$this->dbi = $dbi;
$this->relation = new Relation($this->dbi);
}
/**
* Get existing data on transformations applied for
* columns in a particular table
*
* @param string $db Database name looking for
*
* @return mysqli_result|false Result of executed SQL query
*/
public function getExistingTransformationData($db)
{
$cfgRelation = $this->relation->getRelationsParam();
if (! $cfgRelation['mimework']) {
return false;
}
// Get the existing transformation details of the same database
// from pma__column_info table
$pma_transformation_sql = sprintf(
"SELECT * FROM %s.%s WHERE `db_name` = '%s'",
Util::backquote($cfgRelation['db']),
Util::backquote($cfgRelation['column_info']),
$this->dbi->escapeString($db)
);
return $this->dbi->tryQuery($pma_transformation_sql);
}
/**
* Get SQL query for store new transformation details of a VIEW
*
* @param object $pma_transformation_data Result set of SQL execution
* @param array $column_map Details of VIEW columns
* @param string $view_name Name of the VIEW
* @param string $db Database name of the VIEW
*
* @return string SQL query for new transformations
*/
public function getNewTransformationDataSql(
$pma_transformation_data,
array $column_map,
$view_name,
$db
) {
$cfgRelation = $this->relation->getRelationsParam();
// Need to store new transformation details for VIEW
$new_transformations_sql = sprintf(
'INSERT INTO %s.%s ('
. '`db_name`, `table_name`, `column_name`, '
. '`comment`, `mimetype`, `transformation`, '
. '`transformation_options`) VALUES',
Util::backquote($cfgRelation['db']),
Util::backquote($cfgRelation['column_info'])
);
$column_count = 0;
$add_comma = false;
while ($data_row = $this->dbi->fetchAssoc($pma_transformation_data)) {
foreach ($column_map as $column) {
if ($data_row['table_name'] != $column['table_name']
|| $data_row['column_name'] != $column['refering_column']
) {
continue;
}
$new_transformations_sql .= sprintf(
"%s ('%s', '%s', '%s', '%s', '%s', '%s', '%s')",
$add_comma ? ', ' : '',
$db,
$view_name,
$column['real_column'] ?? $column['refering_column'],
$data_row['comment'],
$data_row['mimetype'],
$data_row['transformation'],
$GLOBALS['dbi']->escapeString(
$data_row['transformation_options']
)
);
$add_comma = true;
$column_count++;
break;
}
if ($column_count == count($column_map)) {
break;
}
}
return $column_count > 0 ? $new_transformations_sql : '';
}
}