[squirrelmail.git] / functions / abook_database.php

<?php

/**
 * abook_database.php
 *
 * Supported database schema
 * <pre>
 *  owner varchar(128) NOT NULL
 *  nickname varchar(16) NOT NULL
 *  firstname varchar(128) 
 *  lastname varchar(128)
 *  email varchar(128) NOT NULL
 *  label varchar(255)
 *  PRIMARY KEY (owner,nickname)
 * </pre>
 *
 * @copyright 1999-2016 The SquirrelMail Project Team
 * @license http://opensource.org/licenses/gpl-license.php GNU Public License
 * @version $Id$
 * @package squirrelmail
 * @subpackage addressbook
 */

/**
 * Needs the DB functions
 * Don't display errors here. Error will be set in class constructor function.
 */
@include_once('DB.php');

/**
 * Address book in a database backend
 *
 * Backend for personal/shared address book stored in a database,
 * accessed using the DB-classes in PEAR.
 *
 * IMPORTANT:  The PEAR modules must be in the include path
 * for this class to work.
 *
 * An array with the following elements must be passed to
 * the class constructor (elements marked ? are optional):
 * <pre>
 *   dsn       => database DNS (see PEAR for syntax)
 *   table     => table to store addresses in (must exist)
 *   owner     => current user (owner of address data)
 * ? name      => name of address book
 * ? writeable => set writeable flag (true/false)
 * ? listing   => enable/disable listing
 * </pre>
 * The table used should have the following columns:
 * owner, nickname, firstname, lastname, email, label
 * The pair (owner,nickname) should be unique (primary key).
 *
 *  NOTE. This class should not be used directly. Use the
 *        "AddressBook" class instead.
 * @package squirrelmail
 * @subpackage addressbook
 */
class abook_database extends addressbook_backend {
    /**
     * Backend type
     * @var string
     */
    var $btype = 'local';
    /**
     * Backend name
     * @var string
     */
    var $bname = 'database';

    /**
     * Data Source Name (connection description)
     * @var string
     */
    var $dsn       = '';
    /**
     * Table that stores addresses
     * @var string
     */
    var $table     = '';
    /**
     * Owner name
     *
     * Limits list of database entries visible to end user
     * @var string
     */
    var $owner     = '';
    /**
     * Database Handle
     * @var resource
     */
    var $dbh       = false;
    /**
     * Enable/disable writing into address book
     * @var bool
     */
    var $writeable = true;
    /**
     * Enable/disable address book listing
     * @var bool
     */
    var $listing = true;

    /* ========================== Private ======================= */

    /**
     * Constructor
     * @param array $param address book backend options
     */
    function abook_database($param) {
        $this->sname = _("Personal Address Book");

        /* test if Pear DB class is available and freak out if it is not */
        if (! class_exists('DB')) {
            // same error also in db_prefs.php
            $error  = _("Could not include PEAR database functions required for the database backend.") . "\n";
            $error .= sprintf(_("Is PEAR installed, and is the include path set correctly to find %s?"),
                              'DB.php') . "\n";
            $error .= _("Please contact your system administrator and report this error.");
            return $this->set_error($error);
        }

        if (is_array($param)) {
            if (empty($param['dsn']) ||
                empty($param['table']) ||
                empty($param['owner'])) {
                return $this->set_error('Invalid parameters');
            }

            $this->dsn   = $param['dsn'];
            $this->table = $param['table'];
            $this->owner = $param['owner'];

            if (!empty($param['name'])) {
               $this->sname = $param['name'];
            }

            if (isset($param['writeable'])) {
               $this->writeable = $param['writeable'];
            }

            if (isset($param['listing'])) {
               $this->listing = $param['listing'];
            }

            $this->open(true);
        }
        else {
            return $this->set_error('Invalid argument to constructor');
        }
    }


    /**
     * Open the database.
     * @param bool $new new connection if it is true
     * @return bool
     */
    function open($new = false) {
        $this->error = '';

        /* Return true is file is open and $new is unset */
        if ($this->dbh && !$new) {
            return true;
        }

        /* Close old file, if any */
        if ($this->dbh) {
            $this->close();
        }

        $dbh = DB::connect($this->dsn, true);

        if (DB::isError($dbh)) {
            return $this->set_error(sprintf(_("Database error: %s"),
                                            DB::errorMessage($dbh)));
        }

        $this->dbh = $dbh;

        /**
         * field names are lowercased.
         * We use unquoted identifiers and they use upper case in Oracle
         */
        $this->dbh->setOption('portability', DB_PORTABILITY_LOWERCASE);

        return true;
    }

    /**
     * Close the file and forget the filehandle
     */
    function close() {
        $this->dbh->disconnect();
        $this->dbh = false;
    }

    /**
     * Determine internal database field name given one of
     * the SquirrelMail SM_ABOOK_FIELD_* constants
     *
     * @param integer $field The SM_ABOOK_FIELD_* contant to look up
     *
     * @return string The desired field name, or the string "ERROR"
     *                if the $field is not understood (the caller
     *                is responsible for handing errors)
     *
     */
    function get_field_name($field) {
        switch ($field) {
            case SM_ABOOK_FIELD_NICKNAME:
                return 'nickname';
            case SM_ABOOK_FIELD_FIRSTNAME:
                return 'firstname';
            case SM_ABOOK_FIELD_LASTNAME:
                return 'lastname';
            case SM_ABOOK_FIELD_EMAIL:
                return 'email';
            case SM_ABOOK_FIELD_LABEL:
                return 'label';
            default:
                return 'ERROR';
        }
    }

    /* ========================== Public ======================== */

    /**
     * Search the database
     *
     * Backend supports only * and ? wildcards. Complex eregs are not supported.
     * Search is case insensitive.
     * @param string $expr search expression
     * @return array search results. boolean false on error
     */
    function search($expr) {
        $ret = array();
        if(!$this->open()) {
            return false;
        }

        /* To be replaced by advanded search expression parsing */
        if (is_array($expr)) {
            return;
        }

        // don't allow wide search when listing is disabled.
        if ($expr=='*' && ! $this->listing)
            return array();

        /* lowercase expression in order to make it case insensitive */
        $expr = strtolower($expr);

        /* escape SQL wildcards */
        $expr = str_replace('_', '\\_', $expr);
        $expr = str_replace('%', '\\%', $expr);

        /* Convert wildcards to SQL syntax  */
        $expr = str_replace('?', '_', $expr);
        $expr = str_replace('*', '%', $expr);
        $expr = $this->dbh->quoteString($expr);
        $expr = "%$expr%";

        /* create escape expression */
        $escape = 'ESCAPE \'' . $this->dbh->quoteString('\\') . '\'';
    
        $query = sprintf("SELECT * FROM %s WHERE owner='%s' AND " .
                         "(LOWER(firstname) LIKE '%s' %s " .
                         "OR LOWER(lastname) LIKE '%s' %s " .
                         "OR LOWER(email) LIKE '%s' %s " .
                         "OR LOWER(nickname) LIKE '%s' %s)",
                         $this->table, $this->owner, $expr, $escape, $expr, $escape,
                                                     $expr, $escape, $expr, $escape);

        $res = $this->dbh->query($query);

        if (DB::isError($res)) {
            return $this->set_error(sprintf(_("Database error: %s"),
                                            DB::errorMessage($res)));
        }

        while ($row = $res->fetchRow(DB_FETCHMODE_ASSOC)) {
            array_push($ret, array('nickname'  => $row['nickname'],
                                   'name'      => $this->fullname($row['firstname'], $row['lastname']),
                                   'firstname' => $row['firstname'],
                                   'lastname'  => $row['lastname'],
                                   'email'     => $row['email'],
                                   'label'     => $row['label'],
                                   'backend'   => $this->bnum,
                                   'source'    => &$this->sname));
        }
        return $ret;
    }

    /**
     * Lookup an address by the indicated field.
     *
     * @param string  $value The value to look up
     * @param integer $field The field to look in, should be one
     *                       of the SM_ABOOK_FIELD_* constants
     *                       defined in include/constants.php
     *                       (OPTIONAL; defaults to nickname field)
     *                       NOTE: uniqueness is only guaranteed
     *                       when the nickname field is used here;
     *                       otherwise, the first matching address
     *                       is returned.
     *
     * @return array Array with lookup results when the value
     *               was found, an empty array if the value was
     *               not found.
     *
     */
    function lookup($value, $field=SM_ABOOK_FIELD_NICKNAME) {
        if (empty($value)) {
            return array();
        }

        $value = strtolower($value);

        if (!$this->open()) {
            return false;
        }

        $db_field = $this->get_field_name($field);
        if ($db_field == 'ERROR') {
            return $this->set_error(sprintf(_("Unknown field name: %s"), $field));
        }

        $query = sprintf("SELECT * FROM %s WHERE owner = '%s' AND LOWER(%s) = '%s'",
                         $this->table, $this->owner, $db_field, 
                         $this->dbh->quoteString($value));

        $res = $this->dbh->query($query);

        if (DB::isError($res)) {
            return $this->set_error(sprintf(_("Database error: %s"),
                                            DB::errorMessage($res)));
        }

        if ($row = $res->fetchRow(DB_FETCHMODE_ASSOC)) {
            return array('nickname'  => $row['nickname'],
                         'name'      => $this->fullname($row['firstname'], $row['lastname']),
                         'firstname' => $row['firstname'],
                         'lastname'  => $row['lastname'],
                         'email'     => $row['email'],
                         'label'     => $row['label'],
                         'backend'   => $this->bnum,
                         'source'    => &$this->sname);
        }
        return array();
    }

    /**
     * List all addresses
     * @return array search results
     */
    function list_addr() {
        $ret = array();
        if (!$this->open()) {
            return false;
        }

        if(isset($this->listing) && !$this->listing) {
            return array();
        }


        $query = sprintf("SELECT * FROM %s WHERE owner='%s'",
                         $this->table, $this->owner);

        $res = $this->dbh->query($query);

        if (DB::isError($res)) {
            return $this->set_error(sprintf(_("Database error: %s"),
                                            DB::errorMessage($res)));
        }

        while ($row = $res->fetchRow(DB_FETCHMODE_ASSOC)) {
            array_push($ret, array('nickname'  => $row['nickname'],
                                   'name'      => $this->fullname($row['firstname'], $row['lastname']),
                                   'firstname' => $row['firstname'],
                                   'lastname'  => $row['lastname'],
                                   'email'     => $row['email'],
                                   'label'     => $row['label'],
                                   'backend'   => $this->bnum,
                                   'source'    => &$this->sname));
        }
        return $ret;
    }

    /**
     * Add address
     * @param array $userdata added data
     * @return bool
     */
    function add($userdata) {
        if (!$this->writeable) {
            return $this->set_error(_("Address book is read-only"));
        }

        if (!$this->open()) {
            return false;
        }

        /* See if user exist already */
        $ret = $this->lookup($userdata['nickname']);
        if (!empty($ret)) {
            return $this->set_error(sprintf(_("User \"%s\" already exists"),$ret['nickname']));
        }

        /* Create query */
        $query = sprintf("INSERT INTO %s (owner, nickname, firstname, " .
                         "lastname, email, label) VALUES('%s','%s','%s'," .
                         "'%s','%s','%s')",
                         $this->table, $this->owner,
                         $this->dbh->quoteString($userdata['nickname']),
                         $this->dbh->quoteString($userdata['firstname']),
                         $this->dbh->quoteString((!empty($userdata['lastname'])?$userdata['lastname']:'')),
                         $this->dbh->quoteString($userdata['email']),
                         $this->dbh->quoteString((!empty($userdata['label'])?$userdata['label']:'')) );

         /* Do the insert */
         $r = $this->dbh->simpleQuery($query);
 
         /* Check for errors */
         if (DB::isError($r)) {
             return $this->set_error(sprintf(_("Database error: %s"),
                                             DB::errorMessage($r)));
         }
         return true;
    }

    /**
     * Deletes address book entries
     * @param array $alias aliases that have to be deleted. numerical 
     *  array with nickname values
     * @return bool
     */
    function remove($alias) {
        if (!$this->writeable) {
            return $this->set_error(_("Address book is read-only"));
        }

        if (!$this->open()) {
            return false;
        }

        /* Create query */
        $query = sprintf("DELETE FROM %s WHERE owner='%s' AND (",
                         $this->table, $this->owner);

        $sepstr = '';
        while (list($undef, $nickname) = each($alias)) {
            $query .= sprintf("%s nickname='%s' ", $sepstr,
                              $this->dbh->quoteString($nickname));
            $sepstr = 'OR';
        }
        $query .= ')';

        /* Delete entry */
        $r = $this->dbh->simpleQuery($query);

        /* Check for errors */
        if (DB::isError($r)) {
            return $this->set_error(sprintf(_("Database error: %s"),
                                            DB::errorMessage($r)));
        }
        return true;
    }

    /**
     * Modify address
     * @param string $alias modified alias
     * @param array $userdata new data
     * @return bool
     */
    function modify($alias, $userdata) {
        if (!$this->writeable) {
            return $this->set_error(_("Address book is read-only"));
        }

        if (!$this->open()) {
            return false;
        }

         /* See if user exist */
        $ret = $this->lookup($alias);
        if (empty($ret)) {
            return $this->set_error(sprintf(_("User \"%s\" does not exist"),$alias));
        }

        /* make sure that new nickname is not used */
        if (strtolower($alias) != strtolower($userdata['nickname'])) {
            /* same check as in add() */
            $ret = $this->lookup($userdata['nickname']);
            if (!empty($ret)) {
                $error = sprintf(_("User '%s' already exist."), $ret['nickname']);
                return $this->set_error($error);
            }
        }

        /* Create query */
        $query = sprintf("UPDATE %s SET nickname='%s', firstname='%s', ".
                         "lastname='%s', email='%s', label='%s' ".
                         "WHERE owner='%s' AND nickname='%s'",
                         $this->table,
                         $this->dbh->quoteString($userdata['nickname']),
                         $this->dbh->quoteString($userdata['firstname']),
                         $this->dbh->quoteString((!empty($userdata['lastname'])?$userdata['lastname']:'')),
                         $this->dbh->quoteString($userdata['email']),
                         $this->dbh->quoteString((!empty($userdata['label'])?$userdata['label']:'')),
                         $this->owner,
                         $this->dbh->quoteString($alias) );

        /* Do the insert */
        $r = $this->dbh->simpleQuery($query);

        /* Check for errors */
        if (DB::isError($r)) {
            return $this->set_error(sprintf(_("Database error: %s"),
                                            DB::errorMessage($r)));
        }
        return true;
    }
} /* End of class abook_database */

// vim: et ts=4
Commit	Line	Data
9b9474d6	1	<?php
4b4abf93	2
35586184	3	/**
	4	* abook_database.php
	5	*
46956d06	6	* Supported database schema
	7	* <pre>
	8	* owner varchar(128) NOT NULL
	9	* nickname varchar(16) NOT NULL
	10	* firstname varchar(128)
	11	* lastname varchar(128)
	12	* email varchar(128) NOT NULL
	13	* label varchar(255)
	14	* PRIMARY KEY (owner,nickname)
	15	* </pre>
	16	*
f197ec88	17	* @copyright 1999-2016 The SquirrelMail Project Team
4b4abf93	18	* @license http://opensource.org/licenses/gpl-license.php GNU Public License
a9d318b0	19	* @version $Id$
d6c32258	20	* @package squirrelmail
a9d318b0	21	* @subpackage addressbook
35586184	22	*/
d6c32258	23
6d429ce6	24	/**
	25	* Needs the DB functions
	26	* Don't display errors here. Error will be set in class constructor function.
	27	*/
	28	@include_once('DB.php');
d6c32258	29
d6c32258	30	/**
0541c5ae	31	* Address book in a database backend
	32	*
	33	* Backend for personal/shared address book stored in a database,
	34	* accessed using the DB-classes in PEAR.
	35	*
	36	* IMPORTANT: The PEAR modules must be in the include path
	37	* for this class to work.
	38	*
	39	* An array with the following elements must be passed to
	40	* the class constructor (elements marked ? are optional):
	41	* <pre>
	42	* dsn => database DNS (see PEAR for syntax)
	43	* table => table to store addresses in (must exist)
	44	* owner => current user (owner of address data)
	45	* ? name => name of address book
	46	* ? writeable => set writeable flag (true/false)
	47	* ? listing => enable/disable listing
	48	* </pre>
	49	* The table used should have the following columns:
	50	* owner, nickname, firstname, lastname, email, label
	51	* The pair (owner,nickname) should be unique (primary key).
	52	*
	53	* NOTE. This class should not be used directly. Use the
	54	* "AddressBook" class instead.
d6c32258	55	* @package squirrelmail
0541c5ae	56	* @subpackage addressbook
d6c32258	57	*/
9b9474d6	58	class abook_database extends addressbook_backend {
0541c5ae	59	/**
	60	* Backend type
	61	* @var string
	62	*/
9b9474d6	63	var $btype = 'local';
0541c5ae	64	/**
	65	* Backend name
	66	* @var string
	67	*/
9b9474d6	68	var $bname = 'database';
62f7daa5	69
0541c5ae	70	/**
	71	* Data Source Name (connection description)
	72	* @var string
	73	*/
9b9474d6	74	var $dsn = '';
0541c5ae	75	/**
	76	* Table that stores addresses
	77	* @var string
	78	*/
9b9474d6	79	var $table = '';
0541c5ae	80	/**
	81	* Owner name
	82	*
	83	* Limits list of database entries visible to end user
	84	* @var string
	85	*/
9b9474d6	86	var $owner = '';
0541c5ae	87	/**
	88	* Database Handle
	89	* @var resource
	90	*/
9b9474d6	91	var $dbh = false;
0541c5ae	92	/**
	93	* Enable/disable writing into address book
	94	* @var bool
	95	*/
9b9474d6	96	var $writeable = true;
0541c5ae	97	/**
	98	* Enable/disable address book listing
	99	* @var bool
	100	*/
	101	var $listing = true;
62f7daa5	102
9b9474d6	103	/* ========================== Private ======================= */
62f7daa5	104
0541c5ae	105	/**
	106	* Constructor
	107	* @param array $param address book backend options
	108	*/
9b9474d6	109	function abook_database($param) {
232fb714	110	$this->sname = _("Personal Address Book");
62f7daa5	111
6d429ce6	112	/* test if Pear DB class is available and freak out if it is not */
	113	if (! class_exists('DB')) {
	114	// same error also in db_prefs.php
35235328	115	$error = _("Could not include PEAR database functions required for the database backend.") . "\n";
6d429ce6	116	$error .= sprintf(_("Is PEAR installed, and is the include path set correctly to find %s?"),
35235328	117	'DB.php') . "\n";
6d429ce6	118	$error .= _("Please contact your system administrator and report this error.");
	119	return $this->set_error($error);
	120	}
	121
9b9474d6	122	if (is_array($param)) {
62f7daa5	123	if (empty($param['dsn']) \|\|
62f7daa5	124	empty($param['table']) \|\|
9b9474d6	125	empty($param['owner'])) {
	126	return $this->set_error('Invalid parameters');
	127	}
62f7daa5	128
91be2362	129	$this->dsn = $param['dsn'];
	130	$this->table = $param['table'];
	131	$this->owner = $param['owner'];
62f7daa5	132
9b9474d6	133	if (!empty($param['name'])) {
91be2362	134	$this->sname = $param['name'];
9b9474d6	135	}
7902aca2	136
9b9474d6	137	if (isset($param['writeable'])) {
91be2362	138	$this->writeable = $param['writeable'];
9b9474d6	139	}
7902aca2	140
30e9932c	141	if (isset($param['listing'])) {
	142	$this->listing = $param['listing'];
	143	}
	144
7902aca2	145	$this->open(true);
9b9474d6	146	}
9b9474d6	147	else {
91be2362	148	return $this->set_error('Invalid argument to constructor');
9b9474d6	149	}
9b9474d6	150	}
62f7daa5	151
62f7daa5	152
0541c5ae	153	/**
e50f5ac2	154	* Open the database.
0541c5ae	155	* @param bool $new new connection if it is true
	156	* @return bool
	157	*/
9b9474d6	158	function open($new = false) {
9b9474d6	159	$this->error = '';
62f7daa5	160
9b9474d6	161	/* Return true is file is open and $new is unset */
9b9474d6	162	if ($this->dbh && !$new) {
7902aca2	163	return true;
9b9474d6	164	}
62f7daa5	165
9b9474d6	166	/* Close old file, if any */
	167	if ($this->dbh) {
	168	$this->close();
	169	}
62f7daa5	170
9b9474d6	171	$dbh = DB::connect($this->dsn, true);
62f7daa5	172
286fe80b	173	if (DB::isError($dbh)) {
701c9c6b	174	return $this->set_error(sprintf(_("Database error: %s"),
7902aca2	175	DB::errorMessage($dbh)));
9b9474d6	176	}
62f7daa5	177
9b9474d6	178	$this->dbh = $dbh;
46956d06	179
	180	/**
	181	* field names are lowercased.
	182	* We use unquoted identifiers and they use upper case in Oracle
	183	*/
	184	$this->dbh->setOption('portability', DB_PORTABILITY_LOWERCASE);
	185
9b9474d6	186	return true;
9b9474d6	187	}
7902aca2	188
0541c5ae	189	/**
	190	* Close the file and forget the filehandle
	191	*/
9b9474d6	192	function close() {
	193	$this->dbh->disconnect();
	194	$this->dbh = false;
	195	}
7902aca2	196
503c7650	197	/**
	198	* Determine internal database field name given one of
	199	* the SquirrelMail SM_ABOOK_FIELD_* constants
	200	*
	201	* @param integer $field The SM_ABOOK_FIELD_* contant to look up
	202	*
	203	* @return string The desired field name, or the string "ERROR"
	204	* if the $field is not understood (the caller
	205	* is responsible for handing errors)
	206	*
	207	*/
	208	function get_field_name($field) {
	209	switch ($field) {
	210	case SM_ABOOK_FIELD_NICKNAME:
	211	return 'nickname';
	212	case SM_ABOOK_FIELD_FIRSTNAME:
	213	return 'firstname';
	214	case SM_ABOOK_FIELD_LASTNAME:
	215	return 'lastname';
	216	case SM_ABOOK_FIELD_EMAIL:
	217	return 'email';
	218	case SM_ABOOK_FIELD_LABEL:
	219	return 'label';
	220	default:
	221	return 'ERROR';
	222	}
	223	}
	224
9b9474d6	225	/* ========================== Public ======================== */
62f7daa5	226
0541c5ae	227	/**
0541c5ae	228	* Search the database
46956d06	229	*
	230	* Backend supports only * and ? wildcards. Complex eregs are not supported.
	231	* Search is case insensitive.
0541c5ae	232	* @param string $expr search expression
46956d06	233	* @return array search results. boolean false on error
0541c5ae	234	*/
aa8c4265	235	function search($expr) {
9b9474d6	236	$ret = array();
9b9474d6	237	if(!$this->open()) {
7902aca2	238	return false;
9b9474d6	239	}
30e9932c	240
9b9474d6	241	/* To be replaced by advanded search expression parsing */
	242	if (is_array($expr)) {
	243	return;
	244	}
	245
327e2d96	246	// don't allow wide search when listing is disabled.
	247	if ($expr=='*' && ! $this->listing)
	248	return array();
	249
46956d06	250	/* lowercase expression in order to make it case insensitive */
	251	$expr = strtolower($expr);
	252
	253	/* escape SQL wildcards */
	254	$expr = str_replace('_', '\\_', $expr);
	255	$expr = str_replace('%', '\\%', $expr);
	256
	257	/* Convert wildcards to SQL syntax */
9b9474d6	258	$expr = str_replace('?', '_', $expr);
	259	$expr = str_replace('*', '%', $expr);
	260	$expr = $this->dbh->quoteString($expr);
	261	$expr = "%$expr%";
	262
46956d06	263	/* create escape expression */
	264	$escape = 'ESCAPE \'' . $this->dbh->quoteString('\\') . '\'';
	265
9b9474d6	266	$query = sprintf("SELECT * FROM %s WHERE owner='%s' AND " .
63389330	267	"(LOWER(firstname) LIKE '%s' %s " .
	268	"OR LOWER(lastname) LIKE '%s' %s " .
	269	"OR LOWER(email) LIKE '%s' %s " .
	270	"OR LOWER(nickname) LIKE '%s' %s)",
	271	$this->table, $this->owner, $expr, $escape, $expr, $escape,
	272	$expr, $escape, $expr, $escape);
46956d06	273
9b9474d6	274	$res = $this->dbh->query($query);
	275
	276	if (DB::isError($res)) {
701c9c6b	277	return $this->set_error(sprintf(_("Database error: %s"),
7902aca2	278	DB::errorMessage($res)));
9b9474d6	279	}
7902aca2	280
9b9474d6	281	while ($row = $res->fetchRow(DB_FETCHMODE_ASSOC)) {
91be2362	282	array_push($ret, array('nickname' => $row['nickname'],
35235328	283	'name' => $this->fullname($row['firstname'], $row['lastname']),
91be2362	284	'firstname' => $row['firstname'],
	285	'lastname' => $row['lastname'],
	286	'email' => $row['email'],
	287	'label' => $row['label'],
	288	'backend' => $this->bnum,
	289	'source' => &$this->sname));
9b9474d6	290	}
	291	return $ret;
	292	}
62f7daa5	293
0541c5ae	294	/**
503c7650	295	* Lookup an address by the indicated field.
	296	*
	297	* @param string $value The value to look up
	298	* @param integer $field The field to look in, should be one
	299	* of the SM_ABOOK_FIELD_* constants
	300	* defined in include/constants.php
	301	* (OPTIONAL; defaults to nickname field)
bf55ebab	302	* NOTE: uniqueness is only guaranteed
	303	* when the nickname field is used here;
	304	* otherwise, the first matching address
	305	* is returned.
503c7650	306	*
	307	* @return array Array with lookup results when the value
	308	* was found, an empty array if the value was
	309	* not found.
	310	*
0541c5ae	311	*/
503c7650	312	function lookup($value, $field=SM_ABOOK_FIELD_NICKNAME) {
503c7650	313	if (empty($value)) {
7902aca2	314	return array();
9b9474d6	315	}
62f7daa5	316
503c7650	317	$value = strtolower($value);
7902aca2	318
9b9474d6	319	if (!$this->open()) {
7902aca2	320	return false;
9b9474d6	321	}
62f7daa5	322
26bd3897	323	$db_field = $this->get_field_name($field);
	324	if ($db_field == 'ERROR') {
	325	return $this->set_error(sprintf(_("Unknown field name: %s"), $field));
	326	}
	327
503c7650	328	$query = sprintf("SELECT * FROM %s WHERE owner = '%s' AND LOWER(%s) = '%s'",
26bd3897	329	$this->table, $this->owner, $db_field,
503c7650	330	$this->dbh->quoteString($value));
7902aca2	331
9b9474d6	332	$res = $this->dbh->query($query);
7902aca2	333
9b9474d6	334	if (DB::isError($res)) {
701c9c6b	335	return $this->set_error(sprintf(_("Database error: %s"),
7902aca2	336	DB::errorMessage($res)));
9b9474d6	337	}
7902aca2	338
9b9474d6	339	if ($row = $res->fetchRow(DB_FETCHMODE_ASSOC)) {
91be2362	340	return array('nickname' => $row['nickname'],
35235328	341	'name' => $this->fullname($row['firstname'], $row['lastname']),
91be2362	342	'firstname' => $row['firstname'],
	343	'lastname' => $row['lastname'],
	344	'email' => $row['email'],
	345	'label' => $row['label'],
	346	'backend' => $this->bnum,
	347	'source' => &$this->sname);
9b9474d6	348	}
	349	return array();
	350	}
	351
0541c5ae	352	/**
e50f5ac2	353	* List all addresses
0541c5ae	354	* @return array search results
0541c5ae	355	*/
aa8c4265	356	function list_addr() {
9b9474d6	357	$ret = array();
9b9474d6	358	if (!$this->open()) {
7902aca2	359	return false;
9b9474d6	360	}
62f7daa5	361
91e0dccc	362	if(isset($this->listing) && !$this->listing) {
	363	return array();
	364	}
30e9932c	365
7902aca2	366
9b9474d6	367	$query = sprintf("SELECT * FROM %s WHERE owner='%s'",
9b9474d6	368	$this->table, $this->owner);
7902aca2	369
9b9474d6	370	$res = $this->dbh->query($query);
62f7daa5	371
9b9474d6	372	if (DB::isError($res)) {
701c9c6b	373	return $this->set_error(sprintf(_("Database error: %s"),
7902aca2	374	DB::errorMessage($res)));
9b9474d6	375	}
7902aca2	376
9b9474d6	377	while ($row = $res->fetchRow(DB_FETCHMODE_ASSOC)) {
91be2362	378	array_push($ret, array('nickname' => $row['nickname'],
35235328	379	'name' => $this->fullname($row['firstname'], $row['lastname']),
91be2362	380	'firstname' => $row['firstname'],
	381	'lastname' => $row['lastname'],
	382	'email' => $row['email'],
	383	'label' => $row['label'],
	384	'backend' => $this->bnum,
	385	'source' => &$this->sname));
9b9474d6	386	}
	387	return $ret;
	388	}
7902aca2	389
0541c5ae	390	/**
	391	* Add address
	392	* @param array $userdata added data
	393	* @return bool
	394	*/
9b9474d6	395	function add($userdata) {
9b9474d6	396	if (!$this->writeable) {
35235328	397	return $this->set_error(_("Address book is read-only"));
9b9474d6	398	}
7902aca2	399
9b9474d6	400	if (!$this->open()) {
7902aca2	401	return false;
9b9474d6	402	}
62f7daa5	403
9b9474d6	404	/* See if user exist already */
	405	$ret = $this->lookup($userdata['nickname']);
	406	if (!empty($ret)) {
2706a0b1	407	return $this->set_error(sprintf(_("User \"%s\" already exists"),$ret['nickname']));
9b9474d6	408	}
	409
	410	/* Create query */
	411	$query = sprintf("INSERT INTO %s (owner, nickname, firstname, " .
	412	"lastname, email, label) VALUES('%s','%s','%s'," .
	413	"'%s','%s','%s')",
	414	$this->table, $this->owner,
	415	$this->dbh->quoteString($userdata['nickname']),
62f7daa5	416	$this->dbh->quoteString($userdata['firstname']),
8419c13b	417	$this->dbh->quoteString((!empty($userdata['lastname'])?$userdata['lastname']:'')),
62f7daa5	418	$this->dbh->quoteString($userdata['email']),
8419c13b	419	$this->dbh->quoteString((!empty($userdata['label'])?$userdata['label']:'')) );
9b9474d6	420
9b9474d6	421	/* Do the insert */
7902aca2	422	$r = $this->dbh->simpleQuery($query);
46956d06	423
	424	/* Check for errors */
	425	if (DB::isError($r)) {
	426	return $this->set_error(sprintf(_("Database error: %s"),
	427	DB::errorMessage($r)));
9b9474d6	428	}
46956d06	429	return true;
9b9474d6	430	}
7902aca2	431
0541c5ae	432	/**
eee5aa69	433	* Deletes address book entries
	434	* @param array $alias aliases that have to be deleted. numerical
	435	* array with nickname values
0541c5ae	436	* @return bool
0541c5ae	437	*/
9b9474d6	438	function remove($alias) {
9b9474d6	439	if (!$this->writeable) {
35235328	440	return $this->set_error(_("Address book is read-only"));
9b9474d6	441	}
7902aca2	442
9b9474d6	443	if (!$this->open()) {
7902aca2	444	return false;
9b9474d6	445	}
62f7daa5	446
9b9474d6	447	/* Create query */
	448	$query = sprintf("DELETE FROM %s WHERE owner='%s' AND (",
	449	$this->table, $this->owner);
7902aca2	450
9b9474d6	451	$sepstr = '';
9b9474d6	452	while (list($undef, $nickname) = each($alias)) {
16a973d7	453	$query .= sprintf("%s nickname='%s' ", $sepstr,
7902aca2	454	$this->dbh->quoteString($nickname));
91be2362	455	$sepstr = 'OR';
9b9474d6	456	}
9b9474d6	457	$query .= ')';
7902aca2	458
9b9474d6	459	/* Delete entry */
9b9474d6	460	$r = $this->dbh->simpleQuery($query);
7902aca2	461
46956d06	462	/* Check for errors */
	463	if (DB::isError($r)) {
	464	return $this->set_error(sprintf(_("Database error: %s"),
	465	DB::errorMessage($r)));
	466	}
	467	return true;
9b9474d6	468	}
7902aca2	469
0541c5ae	470	/**
	471	* Modify address
	472	* @param string $alias modified alias
	473	* @param array $userdata new data
	474	* @return bool
	475	*/
9b9474d6	476	function modify($alias, $userdata) {
9b9474d6	477	if (!$this->writeable) {
35235328	478	return $this->set_error(_("Address book is read-only"));
9b9474d6	479	}
7902aca2	480
9b9474d6	481	if (!$this->open()) {
7902aca2	482	return false;
9b9474d6	483	}
62f7daa5	484
9b9474d6	485	/* See if user exist */
	486	$ret = $this->lookup($alias);
	487	if (empty($ret)) {
2706a0b1	488	return $this->set_error(sprintf(_("User \"%s\" does not exist"),$alias));
9b9474d6	489	}
9b9474d6	490
46956d06	491	/* make sure that new nickname is not used */
	492	if (strtolower($alias) != strtolower($userdata['nickname'])) {
	493	/* same check as in add() */
	494	$ret = $this->lookup($userdata['nickname']);
	495	if (!empty($ret)) {
	496	$error = sprintf(_("User '%s' already exist."), $ret['nickname']);
	497	return $this->set_error($error);
	498	}
	499	}
	500
9b9474d6	501	/* Create query */
	502	$query = sprintf("UPDATE %s SET nickname='%s', firstname='%s', ".
	503	"lastname='%s', email='%s', label='%s' ".
	504	"WHERE owner='%s' AND nickname='%s'",
62f7daa5	505	$this->table,
9b9474d6	506	$this->dbh->quoteString($userdata['nickname']),
62f7daa5	507	$this->dbh->quoteString($userdata['firstname']),
8419c13b	508	$this->dbh->quoteString((!empty($userdata['lastname'])?$userdata['lastname']:'')),
62f7daa5	509	$this->dbh->quoteString($userdata['email']),
8419c13b	510	$this->dbh->quoteString((!empty($userdata['label'])?$userdata['label']:'')),
9b9474d6	511	$this->owner,
	512	$this->dbh->quoteString($alias) );
	513
	514	/* Do the insert */
	515	$r = $this->dbh->simpleQuery($query);
7902aca2	516
46956d06	517	/* Check for errors */
	518	if (DB::isError($r)) {
	519	return $this->set_error(sprintf(_("Database error: %s"),
	520	DB::errorMessage($r)));
	521	}
	522	return true;
9b9474d6	523	}
9b9474d6	524	} /* End of class abook_database */
7902aca2	525
c9fcea56	526	// vim: et ts=4