Changeset 692

Timestamp:

02/22/06 01:32:23 (7 years ago)

Author:

anarcat

Message:

[project @ alternc: changeset 2005-05-27 20:10:18 by arnaud-lb]
baser les logins mysql sur l'id des utilisateurs Mantis bug: 464

Original author: arnaud-lb
Date: 2005-05-27 20:10:19

Location:

bureau

Files:

• admin/sql_getparam.php (modified) (2 diffs)
• class/m_mysql.php (modified) (10 diffs)
• locales/en_US/LC_MESSAGES/mysql.po (modified) (2 diffs)
• locales/fr_FR/LC_MESSAGES/sql_manual.po (modified) (2 diffs)
• locales/sql_manual.po (modified) (2 diffs)

bureau/admin/sql_getparam.php

@@ -1 +1 @@
 <?php
 /*
- $Id: sql_getparam.php,v 1.3 2003/06/10 11:18:27 root Exp $
+ $Id: sql_getparam.php,v 1.4 2005/05/27 20:10:18 arnaud-lb Exp $
  ----------------------------------------------------------------------
  AlternC - Web Hosting System
@@ -47 +47 @@
 <p><?php __("Your current settings are"); ?> : </p>
 <table cellspacing="0" cellpadding="4">
-                <tr class="lst2"><th><?php __("Username"); ?></th><td><code><?php echo $mem->user["login"]; ?></code></td></tr>
+                <tr class="lst2"><th><?php __("Username"); ?></th><td><code><?php echo $r[0]["login"]; ?></code></td></tr>
                 <tr class="lst1"><th><?php __("Password"); ?></th><td><code><?php echo $r[0]["pass"]; ?></code></td></tr>
                 <tr class="lst2"><th><?php __("SQL Server"); ?></th><td><code><?php echo $mysql->server; ?></code></td></tr>
-                <tr class="lst1"><th><?php __("Database"); ?></th><td><code><?php echo $mem->user["login"]; ?></code></td></tr>
+                <tr class="lst1"><th><?php __("Database"); ?></th><td><code><?php echo $r[0]["db"]; ?></code></td></tr>
 </table>
 

bureau/class/m_mysql.php

@@ -1 +1 @@
 <?php
 /*
- $Id: m_mysql.php,v 1.30 2005/05/16 19:52:38 arnaud-lb Exp $
+ $Id: m_mysql.php,v 1.31 2005/05/27 20:10:18 arnaud-lb Exp $
  ----------------------------------------------------------------------
  AlternC - Web Hosting System
@@ -137 +137 @@
     }
     $dbname=$mem->user["login"].($dbn?"_":"").$dbn;
+    if (strlen($dbname) > 64) {
+      $err->raise("mysql",12);
+      return false;
+    }
     $db->query("SELECT * FROM db WHERE db='$dbname';");
     if ($db->num_rows()) {
@@ -145 +149 @@
     $db->query("SELECT login,pass FROM db WHERE uid='$cuid' LIMIT 0,1;");
     if (!$db->num_rows()) {
-      $lo=$mem->user["login"];
+      $lo=$mem->user["uid"];
       $pa="";
     } else {
@@ -156 +160 @@
     // give everything but GRANT on db.*
     // we assume there's already a user
-    $db->query("GRANT ALL PRIVILEGES ON `".$dbname."`.* TO '".$mem->user["login"]."'@'localhost'");
+    $db->query("GRANT ALL PRIVILEGES ON `".$dbname."`.* TO '".$lo."'@'localhost'");
     $db->query("CREATE DATABASE $dbname;");
     exec("/usr/lib/alternc/db_create $cuid /var/alternc/db/$dbname");
@@ -170 +174 @@
   function del_db($dbn) {
     global $db,$err,$mem,$cuid;
-    $login=$mem->user["login"];
     $err->log("mysql","del_db",$dbn);
     if (!ereg("^[0-9a-z]*$",$dbn)) {
@@ -177 +180 @@
     }
     $dbname=$mem->user["login"].($dbn?"_":"").$dbn;
-    $db->query("SELECT * FROM db WHERE db='$dbname';");
+    $db->query("SELECT login FROM db WHERE db='$dbname';");
     if (!$db->num_rows()) {
       $err->raise("mysql",4);
       return false;
     }
+    $db->next_record();
+    $login=$db->f("login");
+
     // Ok, database exists and dbname is compliant. Let's proceed
     $db->query("DELETE FROM db WHERE uid='$cuid' AND db='$dbname';");
@@ -187 +193 @@
     $db->query("SELECT COUNT(*) AS cnt FROM db WHERE uid='$cuid';");
     $db->next_record();
-    $db->query("REVOKE ALL PRIVILEGES ON `".str_replace('_', '\_', $dbname)."`.* FROM '".$mem->user["login"]."'@'localhost'");
+    $db->query("REVOKE ALL PRIVILEGES ON `".$dbname."`.* FROM '".$login."'@'localhost'");
     if ($db->f("cnt")==0) {
-      $db->query("DELETE FROM mysql.user WHERE User='".$mem->user["login"]."';");
+      $db->query("DELETE FROM mysql.user WHERE User='".$login."';");
       $db->query("FLUSH PRIVILEGES;");
     }
@@ -218 +224 @@
     }
     $db->next_record();
-    $login=$db->f("login");
     $bck_mode=intval($bck_mode);
     $bck_history=intval($bck_history);
@@ -252 +257 @@
       return false;
     }
+    $db->next_result();
+    $login=$db->f("login");
+
     if (strlen($password)>16) {
       $err->raise("mysql",8);
       return false;
     }
-    $login=$mem->user["login"];
     // Update all the "pass" fields for this user : 
     $db->query("UPDATE db SET pass='$password' WHERE uid='$cuid';");
@@ -280 +287 @@
       return false;
     }
-    $login=$mem->user["login"];
+    $login=$mem->user["uid"];
+    $dbname=$mem->user["login"];
     // OK, creation now...
-    $db->query("INSERT INTO db (uid,login,pass,db) VALUES ('$cuid','".$mem->user["login"]."','$password','".$mem->user["login"]."');");
+    $db->query("INSERT INTO db (uid,login,pass,db) VALUES ('$cuid','".$login."','$password','".$dbname."');");
     // give everything but GRANT on $user.*
-    $db->query("GRANT ALL PRIVILEGES ON `".$mem->user["login"]."`.* TO '".$mem->user["login"]."'@'localhost' IDENTIFIED BY '".$password."'");
-    $db->query("CREATE DATABASE ".$mem->user["login"].";");
-    exec("/usr/lib/alternc/db_create $cuid /var/alternc/db/".$mem->user["login"]);
+    $db->query("GRANT ALL PRIVILEGES ON `".$dbname."`.* TO '".$login."'@'localhost' IDENTIFIED BY '".$password."'");
+    $db->query("CREATE DATABASE ".$dbname.";");
+    exec("/usr/lib/alternc/db_create $cuid /var/alternc/db/".$dbname);
     return true;
   }

bureau/locales/en_US/LC_MESSAGES/mysql.po

@@ -2 +2 @@
 # Copyright (c) 2002 the AlternC Development Team
 # <tech@alternc.org>
-# $Id: mysql.po,v 1.8 2005/05/16 19:52:38 arnaud-lb Exp $
+# $Id: mysql.po,v 1.9 2005/05/27 20:10:18 arnaud-lb Exp $
 msgid ""
 msgstr ""
-"Project-Id-Version: $Id: mysql.po,v 1.8 2005/05/16 19:52:38 arnaud-lb Exp $\n"
+"Project-Id-Version: $Id: mysql.po,v 1.9 2005/05/27 20:10:18 arnaud-lb Exp $\n"
 "POT-Creation-Date: 2002-06-12 19:00CEST\n"
 "PO-Revision-Date: 2002-06-16 13:50CEST\n"
@@ -49 +49 @@
 
 msgid "err_mysql_11"
-msgstr "You have no database, vlick on 'Databases' to create the first one"
+msgstr "You have no database, click on 'Databases' to create the first one"
+
+msgid "err_mysql_12"
+msgstr "The data base name is too long (64 chars max)"
 
 msgid "help_sql_list_ok"

bureau/locales/fr_FR/LC_MESSAGES/sql_manual.po

@@ -2 +2 @@
 # Copyright (c) 2002 the AlternC Development Team
 # <tech@alternc.org>
-# $Id: sql_manual.po,v 1.1 2004/05/24 20:01:36 anonymous Exp $
+# $Id: sql_manual.po,v 1.2 2005/05/27 20:10:19 arnaud-lb Exp $
 msgid ""
 msgstr ""
-"Project-Id-Version: $Id: sql_manual.po,v 1.1 2004/05/24 20:01:36 anonymous Exp $\n"
+"Project-Id-Version: $Id: sql_manual.po,v 1.2 2005/05/27 20:10:19 arnaud-lb Exp $\n"
 "Report-Msgid-Bugs-To: i18n@alternc.org\n"
 "POT-Creation-Date: 2004-05-24 19:34+0200\n"
@@ -55 +55 @@
 "en créer une"
 
+msgid "err_mysql_12"
+msgstr "Le nom de la base de données est trop long (64 caractères maximum)"
+
 msgid "General SQL Admin"
 msgstr "Admin SQL Général"

bureau/locales/sql_manual.po

@@ -2 +2 @@
 # Copyright (c) 2002 the AlternC Development Team
 # <tech@alternc.org>
-# $Id: sql_manual.po,v 1.2 2004/11/10 22:14:54 anonymous Exp $
+# $Id: sql_manual.po,v 1.3 2005/05/27 20:10:18 arnaud-lb Exp $
 msgid ""
 msgstr ""
-"Project-Id-Version: $Id: sql_manual.po,v 1.2 2004/11/10 22:14:54 anonymous Exp $\n"
+"Project-Id-Version: $Id: sql_manual.po,v 1.3 2005/05/27 20:10:18 arnaud-lb Exp $\n"
 "Report-Msgid-Bugs-To: i18n@alternc.org\n"
 "POT-Creation-Date: 2004-05-24 19:34+0200\n"
@@ -55 +55 @@
 "en créer une"
 
+msgid "err_mysql_12"
+msgstr "Le nom de la base de données est trop long (64 caractères maximum)"
+
 msgid "General SQL Admin"
 msgstr "Admin SQL Général"