<?php/* $Id: db_search.php,v 2.19 2006/01/25 14:23:26 lem9 Exp $ */// vim: expandtab sw=4 ts=4 sts=4:/*** Credits for this script goes to Thomas Chaumeny <chaume92 at aol.com>*/require_once('./libraries/common.lib.php');/*** Gets some core libraries and send headers*/require('./libraries/db_details_common.inc.php');// If config variable $cfg['Usedbsearch'] is on FALSE : exit.if (!$cfg['UseDbSearch']) {PMA_mysqlDie($strAccessDenied, '', FALSE, $err_url);} // end if$url_query .= '&goto=db_search.php';$url_params['goto'] = 'db_search.php';/*** Get the list of tables from the current database*/$tables = PMA_DBI_get_tables($GLOBALS['db']);$num_tables = count( $tables );/*** Displays top links*/$sub_part = '';require('./libraries/db_details_links.inc.php');/*** 1. Main search form has been submitted*/if (isset($_REQUEST['submit_search'])) {/*** Builds the SQL search query** @param string the table name* @param string the string to search* @param integer type of search (1 -> 1 word at least, 2 -> all words,* 3 -> exact string, 4 -> regexp)** @return array 3 SQL querys (for count, display and delete results)** @global string the url to return to in case of errors*/function PMA_getSearchSqls($table, $search_str, $search_option){global $err_url, $charset_connection;// Statement types$sqlstr_select = 'SELECT';$sqlstr_delete = 'DELETE';// Fields to select$res = PMA_DBI_query('SHOW ' . (PMA_MYSQL_INT_VERSION >= 40100 ? 'FULL ' : '') . 'FIELDS FROM ' . PMA_backquote($table) . ' FROM ' . PMA_backquote($GLOBALS['db']) . ';');while ($current = PMA_DBI_fetch_assoc($res)) {if (PMA_MYSQL_INT_VERSION >= 40100) {list($current['Charset']) = explode('_', $current['Collation']);}$current['Field'] = PMA_backquote($current['Field']);$tblfields[] = $current;} // whilePMA_DBI_free_result($res);unset($current, $res);$tblfields_cnt = count($tblfields);// Table to use$sqlstr_from = ' FROM ' . PMA_backquote($GLOBALS['db']) . '.' . PMA_backquote($table);// Beginning of WHERE clause$sqlstr_where = ' WHERE';$search_words = (($search_option > 2) ? array($search_str) : explode(' ', $search_str));$search_wds_cnt = count($search_words);$like_or_regex = (($search_option == 4) ? 'REGEXP' : 'LIKE');$automatic_wildcard = (($search_option <3) ? '%' : '');for ($i = 0; $i < $search_wds_cnt; $i++) {// Eliminates empty values// In MySQL 4.1, if a field has no collation we get NULL in Charset// but in MySQL 5.0.x we get ''if (!empty($search_words[$i])) {for ($j = 0; $j < $tblfields_cnt; $j++) {if (PMA_MYSQL_INT_VERSION >= 40100 && $tblfields[$j]['Charset'] != $charset_connection && $tblfields[$j]['Charset'] != 'NULL' && $tblfields[$j]['Charset'] != '') {$prefix = 'CONVERT(_utf8 ';$suffix = ' USING ' . $tblfields[$j]['Charset'] . ') COLLATE ' . $tblfields[$j]['Collation'];} else {$prefix = $suffix = '';}$thefieldlikevalue[] = $tblfields[$j]['Field']. ' ' . $like_or_regex . ' '. $prefix. '\''. $automatic_wildcard. $search_words[$i]. $automatic_wildcard . '\''. $suffix;} // end for$fieldslikevalues[] = ($search_wds_cnt > 1)? '(' . implode(' OR ', $thefieldlikevalue) . ')': implode(' OR ', $thefieldlikevalue);unset($thefieldlikevalue);} // end if} // end for$implode_str = ($search_option == 1 ? ' OR ' : ' AND ');$sqlstr_where .= ' ' . implode($implode_str, $fieldslikevalues);unset($fieldslikevalues);// Builds complete queries$sql['select_fields'] = $sqlstr_select . ' * ' . $sqlstr_from . $sqlstr_where;// here, I think we need to still use the COUNT clause, even for// VIEWs, anyway we have a WHERE clause that should limit results$sql['select_count'] = $sqlstr_select . ' COUNT(*) AS count' . $sqlstr_from . $sqlstr_where;$sql['delete'] = $sqlstr_delete . $sqlstr_from . $sqlstr_where;return $sql;} // end of the "PMA_getSearchSqls()" function/*** Displays the results*/if (!empty($_REQUEST['search_str']) && !empty($_REQUEST['search_option'])) {$original_search_str = $_REQUEST['search_str'];$search_str = PMA_sqlAddslashes($_REQUEST['search_str'], TRUE);// Get the true string to display as option's commentswitch ($_REQUEST['search_option']) {case 1:$option_str = ' (' . $strSearchOption1 . ')';$search_option = 1;break;case 2:$option_str = ' (' . $strSearchOption2 . ')';$search_option = 2;break;case 3:$option_str = ' (' . $strSearchOption3 . ')';$search_option = 3;break;case 4:$option_str = ' (' . $strSearchOption4 . ')';$search_option = 4;break;} // end switch$this_url_params = array('db' => $GLOBALS['db'],'goto' => 'db_details.php','pos' => 0,'is_js_confirmed' => 0,);// Displays search stringecho '<br />' . "\n".'<table class="data">' . "\n".'<caption class="tblHeaders">' . "\n".sprintf($strSearchResultsFor,htmlspecialchars($original_search_str), $option_str) . "\n".'</caption>' . "\n";$num_search_result_total = 0;$odd_row = true;foreach ( $_REQUEST['table_select'] as $each_table ) {// Gets the SQL statements$newsearchsqls = PMA_getSearchSqls($each_table,$search_str, $search_option);// Executes the "COUNT" statement$res_cnt = PMA_DBI_fetch_value($newsearchsqls['select_count']);$num_search_result_total += $res_cnt;echo '<tr class="' . ( $odd_row ? 'odd' : 'even' ) . '">'.'<td>' . sprintf($strNumSearchResultsInTable, $res_cnt,htmlspecialchars($each_table)) . "</td>\n";if ($res_cnt > 0) {$this_url_params['sql_query'] = $newsearchsqls['select_fields'];echo '<td>' . PMA_linkOrButton('sql.php' . PMA_generate_common_url($this_url_params),$strBrowse, '') . "</td>\n";$this_url_params['sql_query'] = $newsearchsqls['delete'];echo '<td>' . PMA_linkOrButton('sql.php' . PMA_generate_common_url($this_url_params),$strDelete, $newsearchsqls['delete']) . "</td>\n";} else {echo '<td> </td>' . "\n".'<td> </td>' . "\n";}// end if else$odd_row = ! $odd_row;echo '</tr>' . "\n";} // end forecho '</table>' . "\n";if ( count($_REQUEST['table_select']) > 1 ) {echo '<p>' . sprintf($strNumSearchResultsTotal,$num_search_result_total) . '</p>' . "\n";}} // end if (!empty($search_str) && !empty($search_option))} // end 1./*** 2. Displays the main search form*/echo "\n";$searched = (isset($original_search_str))? htmlspecialchars($original_search_str): '';if (empty($search_option)) {$search_option = 1;}?><a name="db_search"></a><form method="post" action="db_search.php" name="db_search"><?php echo PMA_generate_common_hidden_inputs($GLOBALS['db']); ?><fieldset><legend><?php echo $strSearchFormTitle; ?></legend><table class="formlayout"><tr><td><?php echo $strSearchNeedle; ?></td><td><input type="text" name="search_str" size="60"value="<?php echo $searched; ?>" /></td></tr><tr><td align="right" valign="top"><?php echo $strSearchType; ?></td><td><input type="radio" id="search_option_1" name="search_option"value="1"<?php if ($search_option == 1) echo ' checked="checked"'; ?> /><label for="search_option_1"><?php echo $strSearchOption1; ?></label><sup>1</sup><br /><input type="radio" id="search_option_2" name="search_option"value="2"<?php if ($search_option == 2) echo ' checked="checked"'; ?> /><label for="search_option_2"><?php echo $strSearchOption2; ?></label><sup>1</sup><br /><input type="radio" id="search_option_3" name="search_option"value="3"<?php if ($search_option == 3) echo ' checked="checked"'; ?> /><label for="search_option_3"><?php echo $strSearchOption3; ?></label><br /><input type="radio" id="search_option_4" name="search_option"value="4"<?php if ($search_option == 4) echo ' checked="checked"'; ?> /><label for="search_option_4"><?php echo $strSearchOption4; ?></label><?php echo PMA_showMySQLDocu('Regexp', 'Regexp'); ?><br /><br /><sup>1</sup><?php echo $strSplitWordsWithSpace; ?></td></tr><tr><td align="right" valign="top"><?php echo $strSearchInTables; ?></td><td rowspan="2"><?phpecho ' <select name="table_select[]" size="6" multiple="multiple">' . "\n";foreach ( $tables as $each_table ) {if ( isset($_REQUEST['unselectall'])) {$is_selected = '';} elseif ( ! isset($_REQUEST['table_select'])|| in_array($each_table, $_REQUEST['table_select'])|| isset($_REQUEST['selectall']) ) {$is_selected = ' selected="selected"';} else {$is_selected = '';}echo ' <option value="' . htmlspecialchars($each_table) . '"'. $is_selected . '>'. htmlspecialchars($each_table) . '</option>' . "\n";} // end whileecho ' </select>' . "\n";$strDoSelectAll = '<a href="db_search.php?' . $url_query . '&selectall=1#db_search"'. ' onclick="setSelectOptions(\'db_search\', \'table_select[]\', true); return false;">' . $strSelectAll . '</a>'. ' / '. '<a href="db_search.php?' . $url_query . '&unselectall=1#db_search"'. ' onclick="setSelectOptions(\'db_search\', \'table_select[]\', false); return false;">' . $strUnselectAll . '</a>';?></td></tr><tr><td align="right" valign="bottom"><?php echo $strDoSelectAll; ?></td></tr></tr></table></fieldset><fieldset class="tblFooters"><input type="submit" name="submit_search" value="<?php echo $strGo; ?>"id="buttonGo" /></fieldset></form><?php/*** Displays the footer*/echo "\n";require_once('./libraries/footer.inc.php');?>