Changeset 3197

Timestamp:

08/14/12 11:44:43 (10 months ago)

Author:

squidly

Message:

Continuing on sql modification for consistency + Bugfixes

Location:

alternc/trunk

Files:

• bureau/admin/sql_bck.php (modified) (1 diff)
• bureau/admin/sql_restore.php (modified) (1 diff)
• bureau/admin/sql_users_add.php (modified) (1 diff)
• bureau/admin/sql_users_rights.php (modified) (1 diff)
• bureau/class/m_mysql.php (modified) (10 diffs)
• debian/alternc.config (modified) (1 diff)
• debian/changelog (modified) (1 diff)
• install/mysql.sql (modified) (1 diff)

alternc/trunk/bureau/admin/sql_bck.php

@@ -50 +50 @@
 <br />
 <?php
-        if ($error) {
+        if (isset($error) && $error) {
                 echo "<p class=\"error\">$error</p><p>&nbsp;</p>";
         }

alternc/trunk/bureau/admin/sql_restore.php

@@ -45 +45 @@
 <br />
 <?php
-        if ($error) {
+        if (isset($error) && $error) {
                 echo "<p class=\"error\">$error</p><p>&nbsp;</p>";
         }

alternc/trunk/bureau/admin/sql_users_add.php

@@ -50 +50 @@
         if (isset($error) && $error) {
                 echo "<p class=\"error\">$error</p>";
-                if ($fatal) {
+                if (isset($fatal) && $fatal) {
 ?>
 <?php include_once("foot.php"); ?>

alternc/trunk/bureau/admin/sql_users_rights.php

@@ -49 +49 @@
 if ($r) {
 
-echo "<p>"._("help_sql_users_rights_ok")."</p>";
 ?>
 

alternc/trunk/bureau/class/m_mysql.php

@@ -132 +132 @@
    *  "db" => database name "bck" => backup mode for this db 
    *  "dir" => Backup folder.
-   *  Returns FALSE if the user has no database.
+   *  Returns an array (empty) if no databases
    */
   function get_dblist() {
     global $db,$err,$bro,$cuid;
     $err->log("mysql","get_dblist");
+    $db->free();
     $db->query("SELECT login,pass,db, bck_mode, bck_dir FROM db WHERE uid='$cuid' ORDER BY db;");
-    if (!$db->num_rows()) {
-      $err->raise("mysql",11);
-      return false;
-    }
     $c=array();
     while ($db->next_record()) {
@@ -248 +245 @@
       // Ok, database does not exist, quota is ok and dbname is compliant. Let's proceed
       $db->query("INSERT INTO db (uid,login,pass,db,bck_mode) VALUES ('$cuid','$myadm','$password','$dbname',0);");
-       #TODO escape dbname to avoid wildcard '_'
-die();
-      print_r("GRANT ALL PRIVILEGES ON `".$dbname."`.* TO '".$myadm."'@".$this->dbus->Host." IDENTIFIED BY '".addslashes($password)."'");
-      $this->dbus->query("GRANT ALL PRIVILEGES ON `".addslashes($dbname)."`.* TO '".$myadm."'@".$this->dbus->Host." IDENTIFIED BY '".addslashes($password)."'");
+      $dbname=str_replace('_','\_',$dbname);
+      $this->grant($dbname,$myadm,"ALL PRIVILEGES",$password);
       $this->dbus->query("FLUSH PRIVILEGES;");
       return true;
@@ -370 +365 @@
   }
 
-
+/**
+* Function used to grant SQL rights to users:
+* @base :database 
+* @user : database user
+* @rights : rights to apply ( optional, every rights apply given if missing
+* @pass : user password ( optional, if not given the pass stays the same, else it takes the new value )
+* @table : sql tables to apply rights
+**/
+  function grant($base,$user,$rights=null,$pass=null,$table='*'){
+    global $err,$db;
+    $err->log("mysql","grant");
+    if(!preg_match("#^[0-9a-z\_]*$#",$base)){
+      $err->raise("mysql",2);
+      return false;
+    }elseif(!$db->query("select db from db where db='$base';")){
+      $err->raise("mysql",10);
+      return false; 
+    }
+
+    if($rights==null){
+      $rights='ALL PRIVILEGES';
+    }elseif(!preg_match("#^[a-zA-Z\,]*$#",$rights)){
+      $err->raise("mysql",3);
+      return false;
+    }
+
+    if(!preg_match("#^[0-9a-z\_]*$#",$user)) {
+      $err->raise("mysql",5);
+      return false;
+    }
+    if(!$db->query("select name from dbusers where name='".$user."' ;")){
+      $err->raise("mysql",6);
+      return false; 
+    }
+
+    $grant="grant ".$rights." on `".$base."`.".$table." to '".$user."'@'".$this->dbus->Host."'" ;
+
+    if($pass){
+      $grant .= " identified by '".$pass."';";
+    }else{
+      $grant .= ";";
+    }
+   if(!$this->dbus->query($grant)){
+      $err->raise("mysql",6);
+      return false;
+   }
+    return true;
+
+  }
 
 
@@ -510 +553 @@
 
     // We create the user account (the "file" right is the only one we need globally to be able to use load data into outfile)
-    $this->dbus->query("GRANT file ON *.* TO '$user'@".$this->dbus->Host." IDENTIFIED BY '$pass';");
+    $this->grant("*",$user,"FILE",$pass);
     // We add him to the user table 
     $db->query("INSERT INTO dbusers (uid,name,enable) VALUES($cuid,'$user','ACTIVATED');");
@@ -526 +569 @@
   function change_user_password($usern,$password,$passconf) {
     global $db,$err,$quota,$mem,$cuid,$admin;
-    $err->log("mysql","add_user",$usern);
+    $err->log("mysql","change_user_pass",$usern);
 
     $usern=trim($usern);
@@ -542 +585 @@
       }
     }
-    $this->dbus->query("SET PASSWORD FOR ".$user."@".$this->dbus->Host." = PASSWORD(".$pass.")");
+    $this->dbus->query("SET PASSWORD FOR ".$user."@".$this->dbus->Host." = PASSWORD('".$pass."')");
     return true;
   }
@@ -590 +633 @@
 
     $r=array();
+    $db->free();
     $dblist=$this->get_dblist();
-
     for ( $i=0 ; $i<count($dblist) ; $i++ ) {
       $this->dbus->query("SELECT Db, Select_priv, Insert_priv, Update_priv, Delete_priv, Create_priv, Drop_priv, References_priv, Index_priv, Alter_priv, Create_tmp_table_priv, Lock_tables_priv FROM mysql.db WHERE User='".$mem->user["login"].($user?"_":"").$user."' AND Host='".$this->dbus->Host."' AND Db='".$dblist[$i]["db"]."';");
@@ -663 +706 @@
     if( $strrights ){
       $strrights=substr($strrights,0,strlen($strrights)-1);
-      $this->dbus->query("GRANT $strrights ON $dbname.* TO '$usern'@'".$this->dbus->Host."';");      
+      $this->grant($dbname,$usern,$strrights);
     }
     $this->dbus->query("FLUSH PRIVILEGES");
@@ -696 +739 @@
     } else return false;
   }
-  
+
   /* ----------------------------------------------------------------- */
   /** Hook function called when a user is created.
@@ -712 +755 @@
     }else{
       $myadm=$mem->user["login"]."_myadm";
-      $password="kikoulol";
+      $chars = "234567890abcdefghijkmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ";
+      $i = 0;
+      $password = "";
+      while ($i <= 8) {
+        $password .= $chars{mt_rand(0,strlen($chars))};
+        $i++;
+      } 
       $db->query("INSERT INTO dbusers (uid,name,password,enable) VALUES ('$cuid','$myadm','$password','ADMIN');");
     }
     return true;
   }
+
+
+
   
   /* ----------------------------------------------------------------- */

alternc/trunk/debian/alternc.config

@@ -95 +95 @@
         db_input critical alternc/quotauninstalled || true
         db_go
-    db_reset alternc/puotauninstalled || true
+    db_reset alternc/quotauninstalled || true
     db_fset alternc/quotauninstalled "seen" "false" || true
 fi

alternc/trunk/debian/changelog

@@ +1 @@
+alternc (1.1+nmu4) stable; urgency=low
+
+  * SQL Modification
+    * MySQL tables used for Alternc users databases modified (mysql.sql)
+    * Adding a special phpmyadmin user.
+    * Users can now create databases en databases users independently 
+      ( no need to create a first database to create a user anymore)
+  * Bugfixes in installation process
+ 
+
+ -- squidly <squidly@nnx.com>  Tue, 14 Aug 2012 11:21:14 +0200
+
 alternc (1.1+nmu3) stable; urgency=low
 

alternc/trunk/install/mysql.sql

@@ -107 +107 @@
   bck_gzip tinyint(3) unsigned NOT NULL default '0',    # Faut-il compresser les backups ?
   bck_dir varchar(255) NOT NULL default '',             # O stocke-t-on les backups sql ?
-  PRIMARY KEY uid (uid)
+  PRIMARY KEY id (id)
 ) TYPE=MyISAM COMMENT='Bases MySQL des membres';