329 lines
8.1 KiB
PHP
329 lines
8.1 KiB
PHP
<?php
|
|
class rev_db_class{
|
|
public static $wpdb;
|
|
public $sdsdb;
|
|
public $mysqli;
|
|
public $prefix;
|
|
public function __construct() {
|
|
$this->sdsdb = JFactory::getDbo();
|
|
$this->prefix = DB_PREFIX;
|
|
}
|
|
public function _real_escape( $string ) {
|
|
return $this->sdsdb->escape($string);
|
|
}
|
|
public function _escape( $data ) {
|
|
if ( is_array( $data ) ) {
|
|
|
|
foreach ( $data as $k => $v ) {
|
|
|
|
if (is_array($v))
|
|
|
|
$data[$k] = $this->sdsdb->quoteName($v);
|
|
|
|
else
|
|
|
|
$data[$k] = $this->escape( $v );
|
|
|
|
}
|
|
|
|
} else {
|
|
|
|
$data = $this->sdsdb->escape( $data );
|
|
|
|
}
|
|
|
|
|
|
|
|
return $data;
|
|
|
|
}
|
|
public function runSql($query){
|
|
//global $wpdb;
|
|
$this->query($query);
|
|
$this->checkForErrors("Regular query error");
|
|
}
|
|
private function throwError($message,$code=-1){
|
|
RevSliderFunctions::throwError($message,$code);
|
|
}
|
|
|
|
public function fetch($tableName,$where="",$orderField="",$groupByField="",$sqlAddon=""){
|
|
|
|
//global $wpdb;
|
|
$wpdb = $this->sdsdb;
|
|
$query = "select * from $tableName";
|
|
if($where) $query .= " where $where";
|
|
if($orderField) $query .= " order by $orderField";
|
|
if($groupByField) $query .= " group by $groupByField";
|
|
if($sqlAddon) $query .= " ".$sqlAddon;
|
|
|
|
$response = $this->get_results($query,ARRAY_A);
|
|
|
|
$this->checkForErrors("fetch");
|
|
|
|
return($response);
|
|
}
|
|
private function checkForErrors($prefix = ""){
|
|
|
|
$errno = '';
|
|
|
|
if(!empty($errno)){
|
|
|
|
$message = '';
|
|
|
|
$message = '';
|
|
|
|
$this->throwError($message);
|
|
|
|
}
|
|
|
|
}
|
|
/**
|
|
*
|
|
* fetch only one item. if not found - throw error
|
|
*/
|
|
public function fetchSingle($tableName,$where="",$orderField="",$groupByField="",$sqlAddon=""){
|
|
$response = $this->fetch($tableName, $where, $orderField, $groupByField, $sqlAddon);
|
|
|
|
if(empty($response))
|
|
$this->throwError("Record not found");
|
|
$record = $response[0];
|
|
return($record);
|
|
}
|
|
|
|
|
|
/**
|
|
* prepare statement to avoid sql injections
|
|
*/
|
|
|
|
public function query($sql){
|
|
|
|
$this->sdsdb->setQuery($sql);
|
|
if($this->sdsdb->query())
|
|
return true;
|
|
|
|
return FALSE;
|
|
|
|
}
|
|
|
|
public function getLastInsertID(){
|
|
return $this->sdsdb->insertid();
|
|
}
|
|
|
|
public function delete($table,$where){
|
|
//global $wpdb;
|
|
RevSliderFunctions::validateNotEmpty($table,"table name");
|
|
RevSliderFunctions::validateNotEmpty($where,"where");
|
|
$where_string="";
|
|
if(!empty($where) && is_array($where)){
|
|
$where_string .= " ";
|
|
$wherestr = '';
|
|
$c = 0;
|
|
foreach($where as $k => $val){
|
|
if($c > 0)
|
|
$wherestr .= " AND ";
|
|
|
|
$wherestr .= "{$k}=";
|
|
if(is_string($val))
|
|
$wherestr .= '"'.$this->_escape($val).'"';
|
|
else
|
|
$wherestr .= $val;
|
|
|
|
$c++;
|
|
}
|
|
$where_string .= $wherestr;
|
|
|
|
}else{
|
|
$where_string = $where;
|
|
}
|
|
$query = "delete from $table where $where_string";
|
|
|
|
$this->query($query);
|
|
|
|
$this->checkForErrors("Delete query error");
|
|
}
|
|
public function update($table, $data, $where = '', $limit = 0, $null_values = false, $use_cache = true, $add_prefix = false){
|
|
|
|
$wherestr = '';
|
|
$c = 0;
|
|
|
|
$sql = "UPDATE {$table} SET ";
|
|
|
|
if(!empty($data))
|
|
foreach ($data as $k=>$d){
|
|
if($c > 0)
|
|
$sql .= ', ';
|
|
|
|
if(is_string($d))
|
|
$sql .= "$k=\"".addslashes($d)."\"";
|
|
else {
|
|
$sql .= "$k=$d";
|
|
}
|
|
|
|
$c++;
|
|
}
|
|
|
|
$sql .= " ";
|
|
|
|
$c = 0;
|
|
|
|
if(!empty($where) && is_array($where)){
|
|
$sql .= "WHERE ";
|
|
|
|
foreach($where as $k => $val){
|
|
if($c > 0)
|
|
$wherestr .= " AND ";
|
|
|
|
$wherestr .= "{$k}=";
|
|
if(is_string($val))
|
|
$wherestr .= '"'.$this->_escape($val).'"';
|
|
else
|
|
$wherestr .= $val;
|
|
|
|
$c++;
|
|
}
|
|
$sql .= $wherestr;
|
|
|
|
}
|
|
$this->sdsdb->setQuery($sql);
|
|
if($this->sdsdb->query())
|
|
return true;
|
|
|
|
return false;
|
|
|
|
}
|
|
|
|
|
|
public function insert($table, $data, $null_values = false, $use_cache = true, $type = 1, $add_prefix = false){
|
|
|
|
$c = 0;
|
|
|
|
$cols = '';
|
|
$vals = '';
|
|
|
|
$sql = "INSERT INTO {$table}";
|
|
|
|
if(!empty($data)){
|
|
$cols .= '(';
|
|
$vals .= ' VALUES(';
|
|
foreach ($data as $k=>$d){
|
|
if($c > 0){
|
|
$cols .= ', ';
|
|
$vals .= ', ';
|
|
}
|
|
$cols .= $k;
|
|
|
|
if(is_string($d))
|
|
//$vals .= "\"".addslashes($d)."\"";
|
|
$vals .= "'".addslashes($d)."'";
|
|
else {
|
|
$vals .= $d;
|
|
}
|
|
|
|
$c++;
|
|
}
|
|
$cols .= ')';
|
|
$vals .= ')';
|
|
}
|
|
|
|
$sql .= "{$cols} {$vals}";
|
|
$this->sdsdb->setQuery($sql);
|
|
if($this->sdsdb->query())
|
|
return $this->sdsdb->insertid();
|
|
|
|
return false;
|
|
|
|
}
|
|
|
|
public function Insert_ID(){
|
|
return $this->sdsdb->insertid();
|
|
}
|
|
|
|
|
|
public function get_var($sql){
|
|
$sql .= ' LIMIT 1';
|
|
$this->sdsdb->setQuery($sql);
|
|
|
|
|
|
|
|
if(!empty($this->sdsdb->loadAssoc()))
|
|
{
|
|
$tobeshifted = $this->sdsdb->loadAssoc();
|
|
|
|
return array_shift($tobeshifted);
|
|
}
|
|
return false;
|
|
|
|
}
|
|
|
|
public function get_row($sql){
|
|
$sql .= ' LIMIT 1';
|
|
// $query = $this->sdsdb->query($sql);
|
|
// if($query->row)
|
|
// return $query->row;
|
|
// return false;
|
|
|
|
$this->sdsdb = JFactory::getDBO();
|
|
$this->sdsdb->setQuery($sql);
|
|
if($this->sdsdb->loadAssoc())
|
|
return $this->sdsdb->loadAssoc();
|
|
|
|
return false;
|
|
}
|
|
|
|
public function get_results($sql){
|
|
|
|
$this->sdsdb->setQuery($sql);
|
|
|
|
// var_dump($this->sdsdb->loadObjectList());die();
|
|
if(!empty($this->sdsdb->loadAssocList()))
|
|
return $this->sdsdb->loadAssocList();
|
|
return false;
|
|
}
|
|
public function runSqlR($query){
|
|
//global $wpdb;
|
|
|
|
$return = $this->get_results($query, ARRAY_A);
|
|
|
|
return $return;
|
|
}
|
|
public function prepare( $query, $args ) {
|
|
if ( is_null( $query ) )
|
|
return;
|
|
|
|
// This is not meant to be foolproof -- but it will catch obviously incorrect usage.
|
|
|
|
|
|
$args = func_get_args();
|
|
array_shift( $args );
|
|
// If args were passed as an array (as in vsprintf), move them up
|
|
if ( isset( $args[0] ) && is_array($args[0]) )
|
|
$args = $args[0];
|
|
$query = str_replace( "'%s'", '%s', $query ); // in case someone mistakenly already singlequoted it
|
|
$query = str_replace( '"%s"', '%s', $query ); // doublequote unquoting
|
|
$query = preg_replace( '|(?<!%)%f|' , '%F', $query ); // Force floats to be locale unaware
|
|
$query = preg_replace( '|(?<!%)%s|', "'%s'", $query ); // quote the strings, avoiding escaped strings like %%s
|
|
array_walk( $args, array( $this, 'escape_by_ref' ) );
|
|
return @vsprintf( $query, $args );
|
|
}
|
|
public function escape_by_ref( &$string ) {
|
|
if ( ! is_float( $string ) )
|
|
$string = $this->_real_escape( $string );
|
|
}
|
|
public static function rev_db_instance(){
|
|
if(!self::$wpdb instanceof rev_db_class){
|
|
return self::$wpdb = new rev_db_class();
|
|
}
|
|
return self::$wpdb;
|
|
}
|
|
|
|
|
|
|
|
}
|
|
|
|
class RevSliderDB extends rev_db_class{
|
|
|
|
}
|
|
|
|
|
|
|