芝麻web文件管理V1.00

编辑当前文件:/home/pulsehostuk9/www/cloud.pulsehost.co.uk/vendor/afterlogic/dav/lib/DAV/FS/Backend/PDO.php
<?php /** * This code is licensed under AGPLv3 license or Afterlogic Software License * if commercial version of the product was purchased. * For full statements of the licenses see LICENSE-AFTERLOGIC and LICENSE-AGPL3 files. */ namespace Afterlogic\DAV\FS\Backend; /** * @license https://www.gnu.org/licenses/agpl-3.0.html AGPL-3.0 * @license https://afterlogic.com/products/common-licensing Afterlogic Software License * @copyright Copyright (c) 2019, Afterlogic Corp. */ use Illuminate\Database\Capsule\Manager as Capsule; class PDO { /** * @var string */ protected $dBPrefix; /** * @var \PDO */ protected $pdo; /** * @var string */ protected $sharedFilesTableName; /** * Creates the backend */ public function __construct() { $this->pdo = \Aurora\System\Api::GetPDO(); $oSettings = \Aurora\System\Api::GetSettings(); if ($oSettings) { $this->dBPrefix = \Aurora\System\Api::GetSettings()->DBPrefix; } $this->sharedFilesTableName = $this->dBPrefix.'adav_sharedfiles'; } /* @param string $principalUri * @return array */ public function getSharedFilesForUser($principalUri, $sharePath = null, $isSharedRoot = false) { $aResult = []; $fields[] = 'id'; $fields[] = 'owner'; $fields[] = 'principaluri'; $fields[] = 'storage'; $fields[] = 'path'; $fields[] = 'uid'; $fields[] = 'access'; $fields[] = 'isdir'; $fields[] = 'share_path'; $fields[] = 'group_id'; $fields[] = 'initiator'; $fields[] = 'Properties'; // Making fields a comma-delimited list $fields = implode(', ', $fields); if ($sharePath === null) { $sIsNotSharedRoot = ''; if (!$isSharedRoot) { $sIsNotSharedRoot = " AND ({$this->sharedFilesTableName}.share_path IS NULL OR {$this->sharedFilesTableName}.share_path = '')"; } $stmt = $this->pdo->prepare( <<<SQL SELECT $fields FROM {$this->sharedFilesTableName} WHERE {$this->sharedFilesTableName}.principaluri = ?$sIsNotSharedRoot SQL ); $stmt->execute([$principalUri]); } else { $stmt = $this->pdo->prepare( <<<SQL SELECT $fields FROM {$this->sharedFilesTableName} WHERE {$this->sharedFilesTableName}.principaluri = ? AND {$this->sharedFilesTableName}.share_path = ? SQL ); $stmt->execute([$principalUri, $sharePath]); } while ($row = $stmt->fetch(\PDO::FETCH_ASSOC)) { $aResult[] = [ 'id' => $row['id'], 'uid' => $row['uid'], 'owner' => $row['owner'], 'principaluri' => $row['principaluri'], 'storage' => $row['storage'], 'path' => $row['path'], 'access' => (int) $row['access'], 'isdir' => (bool) $row['isdir'], 'share_path' => $row['share_path'], 'group_id' => $row['group_id'], 'initiator' => $row['initiator'], 'properties' => $row['Properties'], ]; } return $aResult; } /* @param string $principalUri /* @param string $path * @return array */ public function getSharedFile($principalUri, $path) { $aResult = false; $fields[] = 'id'; $fields[] = 'owner'; $fields[] = 'principaluri'; $fields[] = 'storage'; $fields[] = 'path'; $fields[] = 'uid'; $fields[] = 'access'; $fields[] = 'isdir'; $fields[] = 'share_path'; $fields[] = 'group_id'; $fields[] = 'initiator'; $fields[] = 'Properties'; // Making fields a comma-delimited list $fields = implode(', ', $fields); $stmt = $this->pdo->prepare( <<<SQL SELECT $fields FROM {$this->sharedFilesTableName} WHERE {$this->sharedFilesTableName}.principaluri = ? AND path = ? SQL ); $stmt->execute([$principalUri, $path]); $row = $stmt->fetch(\PDO::FETCH_ASSOC); if ($row) { $aResult = [ 'id' => $row['id'], 'uid' => $row['uid'], 'owner' => $row['owner'], 'principaluri' => $row['principaluri'], 'storage' => $row['storage'], 'path' => $row['path'], 'access' => (int) $row['access'], 'isdir' => (bool) $row['isdir'], 'share_path' => $row['share_path'], 'group_id' => $row['group_id'], 'initiator' => $row['initiator'], 'properties' => $row['Properties'], ]; } return $aResult; } /* @param string $principalUri /* @param string $uid * @return array */ public function getSharedFileBySharePath($principalUri, $sharePath = '') { $aResult = false; $fields[] = 'id'; $fields[] = 'owner'; $fields[] = 'principaluri'; $fields[] = 'storage'; $fields[] = 'path'; $fields[] = 'uid'; $fields[] = 'access'; $fields[] = 'isdir'; $fields[] = 'share_path'; $fields[] = 'group_id'; // Making fields a comma-delimited list $fields = implode(', ', $fields); $stmt = $this->pdo->prepare( <<<SQL SELECT $fields FROM {$this->sharedFilesTableName} WHERE {$this->sharedFilesTableName}.principaluri = ? AND (share_path = ? OR share_path LIKE ?) SQL ); $stmt->execute([$principalUri, $sharePath, $sharePath . '/%']); $row = $stmt->fetch(\PDO::FETCH_ASSOC); if ($row) { $aResult = [ 'id' => 0, 'uid' => $sharePath, 'owner' => $row['owner'], 'principaluri' => $row['principaluri'], 'storage' => 'shared', 'path' => $sharePath, 'access' => 2, 'isdir' => true, 'share_path' => '', 'group_id' => $row['group_id'], ]; } return $aResult; } /* @param string $principalUri /* @param string $uid * @return array */ public function getSharedFileByUidWithPath($principalUri, $uid, $sharePath = '', $bWithoutGroup = false) { $aResult = false; $fields[] = 'id'; $fields[] = 'owner'; $fields[] = 'principaluri'; $fields[] = 'storage'; $fields[] = 'path'; $fields[] = 'uid'; $fields[] = 'access'; $fields[] = 'isdir'; $fields[] = 'share_path'; $fields[] = 'group_id'; // Making fields a comma-delimited list $fields = implode(', ', $fields); $sWithoutGroup = $bWithoutGroup ? 'AND group_id = 0' : ''; $stmt = $this->pdo->prepare( <<<SQL SELECT $fields FROM {$this->sharedFilesTableName} WHERE {$this->sharedFilesTableName}.principaluri = ? AND uid = ? AND share_path = ? {$sWithoutGroup} SQL ); $stmt->execute([$principalUri, $uid, $sharePath]); $row = $stmt->fetch(\PDO::FETCH_ASSOC); if ($row) { $aResult = [ 'id' => $row['id'], 'uid' => $row['uid'], 'owner' => $row['owner'], 'principaluri' => $row['principaluri'], 'storage' => $row['storage'], 'path' => $row['path'], 'access' => (int) $row['access'], 'isdir' => (bool) $row['isdir'], 'share_path' => $row['share_path'], 'group_id' => $row['group_id'], ]; } return $aResult; } /* @param string $principalUri /* @param string $uid * @return array */ public function getSharedFileByUid($principalUri, $uid) { $aResult = false; $fields[] = 'id'; $fields[] = 'owner'; $fields[] = 'principaluri'; $fields[] = 'storage'; $fields[] = 'path'; $fields[] = 'uid'; $fields[] = 'access'; $fields[] = 'isdir'; $fields[] = 'share_path'; $fields[] = 'group_id'; // Making fields a comma-delimited list $fields = implode(', ', $fields); $stmt = $this->pdo->prepare( <<<SQL SELECT $fields FROM {$this->sharedFilesTableName} WHERE {$this->sharedFilesTableName}.principaluri = ? AND uid = ? SQL ); $stmt->execute([$principalUri, $uid]); $row = $stmt->fetch(\PDO::FETCH_ASSOC); if ($row) { $aResult = [ 'id' => $row['id'], 'uid' => $row['uid'], 'owner' => $row['owner'], 'principaluri' => $row['principaluri'], 'storage' => $row['storage'], 'path' => $row['path'], 'access' => (int) $row['access'], 'isdir' => (bool) $row['isdir'], 'share_path' => $row['share_path'], 'group_id' => $row['group_id'], ]; } return $aResult; } /* @param string $principalUri /* @param string $uid * @return array */ public function getSharedFilesByUid($principalUri, $uid, $share_path = '') { $aResult = []; $fields[] = 'id'; $fields[] = 'owner'; $fields[] = 'principaluri'; $fields[] = 'storage'; $fields[] = 'path'; $fields[] = 'uid'; $fields[] = 'access'; $fields[] = 'isdir'; $fields[] = 'share_path'; $fields[] = 'group_id'; $fields[] = 'initiator'; $fields[] = 'Properties'; // Making fields a comma-delimited list $fields = implode(', ', $fields); $stmt = $this->pdo->prepare( <<<SQL SELECT $fields FROM {$this->sharedFilesTableName} WHERE {$this->sharedFilesTableName}.principaluri = ? AND uid = ? AND share_path = ? SQL ); $stmt->execute([$principalUri, $uid, $share_path]); $rows = $stmt->fetchAll(\PDO::FETCH_ASSOC); foreach ($rows as $row) { if ($row) { $aResult[] = [ 'id' => $row['id'], 'uid' => $row['uid'], 'owner' => $row['owner'], 'principaluri' => $row['principaluri'], 'storage' => $row['storage'], 'path' => $row['path'], 'access' => (int) $row['access'], 'isdir' => (bool) $row['isdir'], 'share_path' => $row['share_path'], 'group_id' => $row['group_id'], 'initiator' => $row['initiator'], 'properties' => $row['Properties'], ]; } } return $aResult; } /* @param string $owner * @param string $storage * @param string $path * @return array */ public function getShares($owner, $storage, $path) { $aResult = []; $fields = [ 'id', 'owner', 'storage', 'path', 'principaluri', 'access', 'share_path', 'group_id' ]; // Making fields a comma-delimited list $fields = implode(', ', $fields); $stmt = $this->pdo->prepare( <<<SQL SELECT $fields FROM {$this->sharedFilesTableName} WHERE {$this->sharedFilesTableName}.owner = ? AND {$this->sharedFilesTableName}.storage = ? AND {$this->sharedFilesTableName}.path = ? SQL ); $stmt->execute([$owner, $storage, $path]); while ($row = $stmt->fetch(\PDO::FETCH_ASSOC)) { $aResult[] = [ 'id' => (int) $row['id'], 'principaluri' => $row['principaluri'], 'access' => (int) $row['access'], 'share_path' => $row['share_path'], 'group_id' => (int) $row['group_id'], ]; } return $aResult; } /* @param string $owner * @param string $storage * @param string $path * @return array */ public function getSharesByGroupId($groupId) { $aResult = []; $fields = [ 'owner', 'storage', 'path', 'access', 'isdir', 'group_id' ]; // Making fields a comma-delimited list $fields = implode(', ', $fields); $stmt = $this->pdo->prepare( <<<SQL SELECT DISTINCT $fields FROM {$this->sharedFilesTableName} WHERE {$this->sharedFilesTableName}.group_id = ? SQL ); $stmt->execute([$groupId]); while ($row = $stmt->fetch(\PDO::FETCH_ASSOC)) { $aResult[] = [ 'owner' => $row['owner'], 'storage' => $row['storage'], 'access' => (int) $row['access'], 'path' => $row['path'], 'isdir' => (int) $row['isdir'], 'group_id' => (int) $row['group_id'], ]; } return $aResult; } public function getSharesByPrincipalUriAndGroupId($principalUri, $groupId) { $aResult = []; $stmt = $this->pdo->prepare( <<<SQL SELECT DISTINCT storage, path, owner, access, isdir, group_id, initiator FROM {$this->sharedFilesTableName} WHERE group_id = ? AND ? NOT IN (SELECT principaluri FROM {$this->sharedFilesTableName} WHERE group_id = ?) SQL ); $stmt->execute([$groupId, $principalUri, $groupId]); while ($row = $stmt->fetch(\PDO::FETCH_ASSOC)) { $aResult[] = [ 'owner' => $row['owner'], 'storage' => $row['storage'], 'access' => (int) $row['access'], 'path' => $row['path'], 'isdir' => (int) $row['isdir'], 'group_id' => (int) $row['group_id'], 'initiator' => $row['initiator'], ]; } return $aResult; } /** * * @param string $owner * @param string $storage * @param string $path * @param string $uid * @param string $principalUri * @param bool $access * @param bool $isdir * @return int */ public function createSharedFile($owner, $storage, $path, $uid, $principalUri, $access, $isdir, $share_path = '', $group_id = 0, $initiator = '') { $values = $fieldNames = []; $fieldNames[] = 'owner'; $values[':owner'] = $owner; $fieldNames[] = 'storage'; $values[':storage'] = $storage; $fieldNames[] = 'path'; $values[':path'] = $path; $fieldNames[] = 'uid'; $values[':uid'] = $uid; $fieldNames[] = 'principaluri'; $values[':principaluri'] = $principalUri; $fieldNames[] = 'access'; $values[':access'] = (int) $access; $fieldNames[] = 'isdir'; $values[':isdir'] = (int) $isdir; $fieldNames[] = 'share_path'; $values[':share_path'] = $share_path; if (isset($group_id)) { $fieldNames[] = 'group_id'; $values[':group_id'] = $group_id; } $fieldNames[] = 'initiator'; $values[':initiator'] = $initiator; $stmt = $this->pdo->prepare("INSERT INTO ".$this->sharedFilesTableName." (".implode(', ', $fieldNames).") VALUES (".implode(', ', array_keys($values)).")"); $stmt->execute($values); return $this->pdo->lastInsertId(); } public function updateSharedFile($owner, $storage, $path, $principalUri, $access, $groupId = 0, $initiator = '') { if (!empty($initiator)) { $initiator = ', initiator = ' . $this->pdo->quote($initiator); } $stmt = $this->pdo->prepare('UPDATE ' . $this->sharedFilesTableName . ' SET access = ?' . $initiator . ' WHERE owner = ? AND principaluri = ? AND storage = ? AND path = ? AND group_id = ?'); return $stmt->execute([$access, $owner, $principalUri, $storage, $path, $groupId]); } public function updateSharedFileName($principalUri, $uid, $name, $share_path = '', $group_id = 0) { $stmt = $this->pdo->prepare('UPDATE ' . $this->sharedFilesTableName . ' SET `uid` = ? WHERE principaluri = ? AND uid = ? AND share_path = ? AND group_id = ?'); return $stmt->execute([$name, $principalUri, $uid, $share_path, $group_id]); } public function updateSharedFileSharePath($principalUri, $uid, $newUid, $sharePath, $newSharePath, $group_id = 0) { $stmt = $this->pdo->prepare('UPDATE ' . $this->sharedFilesTableName . ' SET `share_path` = ?, `uid` = ? WHERE principaluri = ? AND uid = ? AND share_path = ? AND group_id = ?'); return $stmt->execute([$newSharePath, $newUid, $principalUri, $uid, $sharePath, $group_id]); } public function updateSharedFileSharePathWithLike($principalUri, $sharePath, $newSharePath, $group_id = 0) { $stmt = $this->pdo->prepare( 'UPDATE ' . $this->sharedFilesTableName . ' SET share_path = REPLACE(share_path, ?, ?) WHERE principaluri = ? AND share_path LIKE ? AND group_id = ?' ); return $stmt->execute([$sharePath, $newSharePath, $principalUri, $sharePath . '%', $group_id]); } public function updateShare($owner, $storage, $path, $newStorage, $newPath) { $stmt = $this->pdo->prepare( "UPDATE " . $this->sharedFilesTableName . " SET path = REPLACE(path, ?, ?), storage = ? WHERE path LIKE ? AND owner = ? AND storage = ?" ); return $stmt->execute([$path, $newPath, $newStorage, $path . '%', $owner, $storage]); } /** * * @param string $owner * @param string $storage * @param string $path * @return bool */ public function deleteSharedFile($owner, $storage, $path) { $result = false; $stmt = $this->pdo->prepare('DELETE FROM ' . $this->sharedFilesTableName . ' WHERE owner = ? AND storage = ? AND path = ?'); if ($stmt->execute([$owner, $storage, $path])) { $stmt = $this->pdo->prepare('DELETE FROM ' . $this->sharedFilesTableName . ' WHERE owner = ? AND storage = ? AND path LIKE ?'); $result = $stmt->execute([$owner, $storage, $path . '/%']); } return $result; } /** * * @param string $principaluri * @param string $storage * @param string $path * @return bool */ public function deleteSharedFileByPrincipalUri($principaluri, $storage, $path, $group_id = 0) { $stmt = $this->pdo->prepare('DELETE FROM '.$this->sharedFilesTableName.' WHERE principaluri = ? AND storage = ? AND path = ? AND group_id = ?'); return $stmt->execute([$principaluri, $storage, $path, $group_id]); } /** * * @param string $owner * @param string $path * @return bool */ public function deleteShare($principaluri, $uid, $share_path = '') { $stmt = $this->pdo->prepare('DELETE FROM '.$this->sharedFilesTableName.' WHERE principaluri = ? AND uid = ? AND share_path = ?'); return $stmt->execute([$principaluri, $uid, $share_path]); } /** * * @param string $principalUri * @return bool */ public function deleteSharesByPrincipal($principalUri) { $stmt = $this->pdo->prepare('DELETE FROM '.$this->sharedFilesTableName.' WHERE principaluri = ? OR owner = ?'); return $stmt->execute([$principalUri, $principalUri]); } /** * * @param string $owner * @param string $path * @param array $groupIds * @return bool */ public function deleteShareByGroupIds($principaluri, $storage, $uid, $groupIds) { $stmt = $this->pdo->prepare('DELETE FROM '.$this->sharedFilesTableName.' WHERE principaluri = ? AND storage = ? AND uid = ? AND group_id in (?)'); return $stmt->execute([$principaluri, $storage, $uid, implode(',', $groupIds)]); } /** * * @param string $owner * @param string $path * @param array $groupIds * @return bool */ public function deleteShareByPrincipaluriAndGroupId($principaluri, $groupId) { $stmt = $this->pdo->prepare('DELETE FROM ' . $this->sharedFilesTableName . ' WHERE principaluri = ? AND group_id = ?'); return $stmt->execute([$principaluri, $groupId]); } public function deleteShareNotInGroups($principaluri, $groupIds) { $stmt = $this->pdo->prepare('DELETE FROM '.$this->sharedFilesTableName.' WHERE group_id NOT IN (' . implode(', ', $groupIds) . ') AND principaluri = ? AND group_id > 0'); return $stmt->execute([$principaluri]); } public function deleteSharesByGroupId($groupId) { $stmt = $this->pdo->prepare('DELETE FROM '.$this->sharedFilesTableName.' WHERE group_id = ?'); return $stmt->execute([$groupId]); } public function renameDirectoryWithPublicLink($userPublicLink, $storage, $path, $newPath) { $query = Capsule::connection()->table('core_min_hashes') ->whereJsonContains('Data->UserId', $userPublicLink) ->whereJsonContains('Data->Type', $storage) ->whereJsonContains('Data->Path', $path) ->select('Id', 'Data'); $rows = $query->get(); foreach ($rows as $row) { $Data = \json_decode($row->Data, true); $Data['Path'] = $newPath; $name = $Data['Name']; $hashId = \Aurora\Modules\Min\Module::generateHashId([$userPublicLink, $storage, $newPath, $name]); $Data['__hash__'] = $hashId; $stmt = $this->pdo->prepare('UPDATE ' . $this->dBPrefix . 'core_min_hashes' . ' SET Data = ?, HashId = ? where Id = ?'); $stmt->execute([json_encode($Data), \md5($hashId), $row->Id]); } } }