Find this useful? Enter your email to receive occasional updates for securing PHP code.
Signing you up...
Thank you for signing up!
PHP Decode
<?php /* +-----------------------------------------------------------------------+ | Th..
Decoded Output download
<?php
/*
+-----------------------------------------------------------------------+
| This file is part of the Roundcube Webmail client |
| |
| Copyright (C) The Roundcube Dev Team |
| |
| Licensed under the GNU General Public License version 3 or |
| any later version with exceptions for skins & plugins. |
| See the README file for a full license statement. |
| |
| PURPOSE: |
| Interface to the local address book database |
+-----------------------------------------------------------------------+
| Author: Thomas Bruederli <[email protected]> |
+-----------------------------------------------------------------------+
*/
/**
* Model class for the local address book database
*/
class rcube_contacts extends rcube_addressbook
{
// protected for backward compat. with some plugins
protected $db_name = 'contacts';
protected $db_groups = 'contactgroups';
protected $db_groupmembers = 'contactgroupmembers';
protected $vcard_fieldmap = [];
/**
* Store database connection.
*
* @var rcube_db
*/
protected $db;
protected $user_id = 0;
protected $filter;
protected $result;
protected $cache;
protected $table_cols = ['name', 'email', 'firstname', 'surname'];
protected $fulltext_cols = ['name', 'firstname', 'surname', 'middlename', 'nickname',
'jobtitle', 'organization', 'department', 'maidenname', 'email', 'phone',
'address', 'street', 'locality', 'zipcode', 'region', 'country', 'website', 'im', 'notes'];
// public properties
public $primary_key = 'contact_id';
public $name;
public $readonly = false;
public $groups = true;
public $undelete = true;
public $list_page = 1;
public $page_size = 10;
public $group_id = 0;
public $ready = false;
public $coltypes = ['name', 'firstname', 'surname', 'middlename', 'prefix', 'suffix', 'nickname',
'jobtitle', 'organization', 'department', 'assistant', 'manager',
'gender', 'maidenname', 'spouse', 'email', 'phone', 'address',
'birthday', 'anniversary', 'website', 'im', 'notes', 'photo'];
public $date_cols = ['birthday', 'anniversary'];
public const SEPARATOR = ',';
/**
* Object constructor
*
* @param rcube_db $dbconn Instance of the rcube_db class
* @param int $user User-ID
*/
public function __construct($dbconn, $user)
{
$this->db = $dbconn;
$this->user_id = $user;
$this->ready = !$this->db->is_error();
}
/**
* Returns addressbook name
*
* @return string
*/
#[Override]
public function get_name()
{
return $this->name;
}
/**
* Save a search string for future listings
*
* @param mixed $filter SQL params to use in listing method
*/
#[Override]
public function set_search_set($filter): void
{
$this->filter = $filter;
$this->cache = null;
}
/**
* Getter for saved search properties
*
* @return mixed Search properties used by this class
*/
#[Override]
public function get_search_set()
{
return $this->filter;
}
/**
* Setter for the current group
* (empty, has to be re-implemented by extending class)
*/
#[Override]
public function set_group($gid)
{
$this->group_id = $gid;
$this->cache = null;
}
/**
* Reset all saved results and search parameters
*/
#[Override]
public function reset(): void
{
$this->result = null;
$this->filter = null;
$this->cache = null;
}
/**
* List all active contact groups of this source
*
* @param ?string $search Search string to match group name
* @param int $mode Matching mode. Sum of rcube_addressbook::SEARCH_*
*
* @return array Indexed list of contact groups, each a hash array
*/
#[Override]
public function list_groups($search = null, $mode = 0)
{
$results = [];
if (!$this->groups) {
return $results;
}
$sql_filter = '';
if ($search) {
if ($mode & rcube_addressbook::SEARCH_STRICT) {
$sql_filter = $this->db->ilike('name', $search);
} elseif ($mode & rcube_addressbook::SEARCH_PREFIX) {
$sql_filter = $this->db->ilike('name', $search . '%');
} else {
$sql_filter = $this->db->ilike('name', '%' . $search . '%');
}
$sql_filter = " AND {$sql_filter}";
}
$sql_result = $this->db->query(
'SELECT * FROM ' . $this->db->table_name($this->db_groups, true)
. ' WHERE `del` <> 1 AND `user_id` = ?' . $sql_filter
. ' ORDER BY `name`',
$this->user_id
);
while ($sql_result && ($sql_arr = $this->db->fetch_assoc($sql_result))) {
$sql_arr['ID'] = $sql_arr['contactgroup_id'];
$results[] = $sql_arr;
}
return $results;
}
/**
* Get group properties such as name and email address(es)
*
* @param string $group_id Group identifier
*
* @return ?array group properties as hash array, null in case of error
*/
#[Override]
public function get_group($group_id)
{
$sql_result = $this->db->query(
'SELECT * FROM ' . $this->db->table_name($this->db_groups, true)
. ' WHERE `del` <> 1 AND `contactgroup_id` = ? AND `user_id` = ?',
$group_id, $this->user_id
);
if ($sql_result && ($sql_arr = $this->db->fetch_assoc($sql_result))) {
$sql_arr['ID'] = $sql_arr['contactgroup_id'];
return $sql_arr;
}
return null;
}
/**
* List the current set of contact records
*
* @param ?array $cols List of cols to show, Null means all
* @param int $subset Only return this number of records, use negative values for tail
* @param bool $nocount True to skip the count query (select only)
*
* @return rcube_result_set Indexed list of contact records, each a hash array
*/
#[Override]
public function list_records($cols = null, $subset = 0, $nocount = false)
{
if ($nocount || $this->list_page <= 1) {
// create dummy result, we don't need a count now
$this->result = new rcube_result_set();
} else {
// count all records
$this->result = $this->count();
}
$start_row = $subset < 0 ? $this->result->first + $this->page_size + $subset : $this->result->first;
$length = $subset != 0 ? abs($subset) : $this->page_size;
$join = '';
if ($this->group_id) {
$join = ' LEFT JOIN ' . $this->db->table_name($this->db_groupmembers, true) . ' AS m' .
' ON (m.`contact_id` = c.`' . $this->primary_key . '`)';
}
$order_col = in_array($this->sort_col, $this->table_cols) ? $this->sort_col : 'name';
$order_cols = ["c.`{$order_col}`"];
if ($order_col == 'firstname') {
$order_cols[] = 'c.`surname`';
} elseif ($order_col == 'surname') {
$order_cols[] = 'c.`firstname`';
}
if ($order_col != 'name') {
$order_cols[] = 'c.`name`';
}
$order_cols[] = 'c.`email`';
$sql_result = $this->db->limitquery(
'SELECT * FROM ' . $this->db->table_name($this->db_name, true) . ' AS c' .
$join .
' WHERE c.`del` <> 1' .
' AND c.`user_id` = ?' .
($this->group_id ? ' AND m.`contactgroup_id` = ?' : '') .
($this->filter ? ' AND ' . $this->filter : '') .
' ORDER BY ' . $this->db->concat($order_cols) . ' ' . $this->sort_order,
$start_row,
$length,
$this->user_id,
$this->group_id
);
// determine whether we have to parse the vcard or if only db cols are requested
$read_vcard = !$cols || count(array_intersect($cols, $this->table_cols)) < count($cols);
while ($sql_result && ($sql_arr = $this->db->fetch_assoc($sql_result))) {
$sql_arr['ID'] = $sql_arr[$this->primary_key];
if ($read_vcard) {
$sql_arr = $this->convert_db_data($sql_arr);
} else {
$sql_arr['email'] = $sql_arr['email'] ? explode(self::SEPARATOR, $sql_arr['email']) : [];
$sql_arr['email'] = array_map('trim', $sql_arr['email']);
}
$this->result->add($sql_arr);
}
$cnt = count($this->result->records);
// update counter
if ($nocount) {
$this->result->count = $cnt;
} elseif ($this->list_page <= 1) {
if ($cnt < $this->page_size && $subset == 0) {
$this->result->count = $cnt;
} elseif (isset($this->cache['count'])) {
$this->result->count = $this->cache['count'];
} else {
$this->result->count = $this->_count();
}
}
return $this->result;
}
/**
* Search contacts
*
* @param mixed $fields The field name or array of field names to search in
* @param mixed $value Search value (or array of values when $fields is array)
* @param int $mode Search mode. Sum of rcube_addressbook::SEARCH_*
* @param bool $select True if results are requested, False if count only
* @param bool $nocount True to skip the count query (select only)
* @param string|array $required List of fields that cannot be empty
*
* @return rcube_result_set Contact records and 'count' value
*/
#[Override]
public function search($fields, $value, $mode = 0, $select = true, $nocount = false, $required = [])
{
if (!is_array($required) && !empty($required)) {
$required = [$required];
}
$where = $post_search = [];
$mode = intval($mode);
// direct ID search
if ($fields == 'ID' || $fields == $this->primary_key) {
$ids = !is_array($value) ? explode(self::SEPARATOR, $value) : $value;
$ids = $this->db->array2list($ids, 'integer');
$where[] = 'c.' . $this->primary_key . ' IN (' . $ids . ')';
} elseif (is_array($value)) {
foreach ((array) $fields as $idx => $col) {
$val = $value[$idx];
if (!strlen($val)) {
continue;
}
// table column
if (in_array($col, $this->table_cols)) {
$where[] = $this->fulltext_sql_where($val, $mode, $col);
}
// vCard field
else {
if (in_array($col, $this->fulltext_cols)) {
$where[] = $this->fulltext_sql_where($val, $mode, 'words');
}
$post_search[$col] = mb_strtolower($val);
}
}
}
// fulltext search in all fields
elseif ($fields == '*') {
$where[] = $this->fulltext_sql_where($value, $mode, 'words');
} else {
// require each word in to be present in one of the fields
$words = ($mode & rcube_addressbook::SEARCH_STRICT) ? [$value] : rcube_utils::tokenize_string($value, 1);
foreach ($words as $word) {
$groups = [];
foreach ((array) $fields as $idx => $col) {
$groups[] = $this->fulltext_sql_where($word, $mode, $col);
}
$where[] = '(' . implode(' OR ', $groups) . ')';
}
}
foreach (array_intersect($required, $this->table_cols) as $col) {
$where[] = $this->db->quote_identifier($col) . ' <> ' . $this->db->quote('');
}
$required = array_diff($required, $this->table_cols);
if (!empty($where)) {
// use AND operator for advanced searches
$where = implode(' AND ', $where);
}
// Post-searching in vCard data fields
// we will search in all records and then build a where clause for their IDs
if (!empty($post_search) || !empty($required)) {
$ids = [0];
// build key name regexp
$regexp = '/^(' . implode('|', array_keys($post_search)) . ')(?:.*)$/';
// use initial WHERE clause, to limit records number if possible
if (!empty($where)) {
$this->set_search_set($where);
}
// count result pages
$cnt = $this->count()->count;
$pages = ceil($cnt / $this->page_size);
$scnt = !empty($post_search) ? count($post_search) : 0;
// get (paged) result
for ($i = 0; $i < $pages; $i++) {
$this->list_records(null, $i, true);
foreach ($this->result as $row) {
$id = $row[$this->primary_key];
$found = [];
if (!empty($post_search)) {
foreach (preg_grep($regexp, array_keys($row)) as $col) {
$pos = strpos($col, ':');
$colname = $pos ? substr($col, 0, $pos) : $col;
$search = $post_search[$colname];
foreach ((array) $row[$col] as $_value) {
if ($this->compare_search_value($colname, $_value, $search, $mode)) {
$found[$colname] = true;
break;
}
}
}
}
// check if required fields are present
if (!empty($required)) {
foreach ($required as $req) {
$hit = false;
foreach (array_keys($row) as $c) {
if ($c === $req || strpos($c, $req . ':') === 0) {
if ((is_string($row[$c]) && strlen($row[$c])) || !empty($row[$c])) {
$hit = true;
break;
}
}
}
if (!$hit) {
continue 2;
}
}
}
// all fields match
if (count($found) >= $scnt) {
$ids[] = $id;
}
}
}
// build WHERE clause
$ids = $this->db->array2list($ids, 'integer');
$where = 'c.`' . $this->primary_key . '` IN (' . $ids . ')';
// reset counter
unset($this->cache['count']);
// when we know we have an empty result
if ($ids == '0') {
$this->set_search_set($where);
return $this->result = new rcube_result_set();
}
}
if (!empty($where)) {
$this->set_search_set($where);
if ($select) {
$this->list_records(null, 0, $nocount);
} else {
$this->result = $this->count();
}
} else {
return $this->result = new rcube_result_set();
}
return $this->result;
}
/**
* Helper method to compose SQL where statements for fulltext searching
*/
protected function fulltext_sql_where($value, $mode, $col = 'words', $bool = 'AND')
{
$AS = $col == 'words' ? ' ' : self::SEPARATOR;
$words = $col == 'words' ? rcube_utils::normalize_string($value, true, 1) : [$value];
$where = [];
foreach ($words as $word) {
if ($mode & rcube_addressbook::SEARCH_STRICT) {
$where[] = '(' . $this->db->ilike($col, $word)
. ' OR ' . $this->db->ilike($col, $word . $AS . '%')
. ' OR ' . $this->db->ilike($col, '%' . $AS . $word . $AS . '%')
. ' OR ' . $this->db->ilike($col, '%' . $AS . $word) . ')';
} elseif ($mode & rcube_addressbook::SEARCH_PREFIX) {
$where[] = '(' . $this->db->ilike($col, $word . '%')
. ' OR ' . $this->db->ilike($col, '%' . $AS . $word . '%') . ')';
} else {
$where[] = $this->db->ilike($col, '%' . $word . '%');
}
}
return count($where) ? '(' . implode(" {$bool} ", $where) . ')' : '';
}
/**
* Count number of available contacts in database
*
* @return rcube_result_set Result object
*/
#[Override]
public function count()
{
$count = $this->cache['count'] ?? $this->_count();
return new rcube_result_set($count, ($this->list_page - 1) * $this->page_size);
}
/**
* Count number of available contacts in database
*
* @return int Contacts count
*/
protected function _count()
{
$join = null;
if ($this->group_id) {
$join = ' LEFT JOIN ' . $this->db->table_name($this->db_groupmembers, true) . ' AS m' .
' ON (m.`contact_id` = c.`' . $this->primary_key . '`)';
}
// count contacts for this user
$sql_result = $this->db->query(
'SELECT COUNT(c.`contact_id`) AS cnt' .
' FROM ' . $this->db->table_name($this->db_name, true) . ' AS c' .
$join .
' WHERE c.`del` <> 1' .
' AND c.`user_id` = ?' .
($this->group_id ? ' AND m.`contactgroup_id` = ?' : '') .
($this->filter ? ' AND (' . $this->filter . ')' : ''),
$this->user_id,
$this->group_id
);
$sql_arr = $this->db->fetch_assoc($sql_result);
$this->cache['count'] = !empty($sql_arr) ? (int) $sql_arr['cnt'] : 0;
return $this->cache['count'];
}
/**
* Return the last result set
*
* @return rcube_result_set|null Result array or NULL if nothing selected yet
*/
#[Override]
public function get_result()
{
return $this->result;
}
/**
* Get a specific contact record
*
* @param mixed $id Record identifier(s)
* @param bool $assoc Enables returning associative array
*
* @return rcube_result_set|array|null Result object with all record fields
*/
#[Override]
public function get_record($id, $assoc = false)
{
// return cached result
if ($this->result && ($first = $this->result->first()) && $first[$this->primary_key] == $id) {
return $assoc ? $first : $this->result;
}
$this->db->query(
'SELECT * FROM ' . $this->db->table_name($this->db_name, true) .
' WHERE `contact_id` = ?' .
' AND `user_id` = ?' .
' AND `del` <> 1',
$id,
$this->user_id
);
$this->result = null;
if ($sql_arr = $this->db->fetch_assoc()) {
$record = $this->convert_db_data($sql_arr);
$this->result = new rcube_result_set(1);
$this->result->add($record);
}
return $assoc && !empty($record) ? $record : $this->result;
}
/**
* Get group assignments of a specific contact record
*
* @param mixed $id Record identifier
*
* @return array List of assigned groups, indexed by a group ID
*/
#[Override]
public function get_record_groups($id)
{
$results = [];
if (!$this->groups) {
return $results;
}
$sql_result = $this->db->query(
'SELECT cgm.`contactgroup_id`, cg.`name` '
. ' FROM ' . $this->db->table_name($this->db_groupmembers, true) . ' AS cgm'
. ' LEFT JOIN ' . $this->db->table_name($this->db_groups, true) . ' AS cg'
. ' ON (cgm.`contactgroup_id` = cg.`contactgroup_id` AND cg.`del` <> 1)'
. ' WHERE cgm.`contact_id` = ?',
$id
);
while ($sql_result && ($sql_arr = $this->db->fetch_assoc($sql_result))) {
$results[$sql_arr['contactgroup_id']] = $sql_arr['name'];
}
return $results;
}
/**
* Check the given data before saving.
* If input not valid, the message to display can be fetched using get_error()
*
* @param array &$save_data Associative array with data to save
* @param bool $autofix Try to fix/complete record automatically
*
* @return bool true if input is valid, False if not
*/
#[Override]
public function validate(&$save_data, $autofix = false)
{
// validate e-mail addresses
$valid = parent::validate($save_data, $autofix);
// require at least some name or email
if ($valid) {
$name = ($save_data['firstname'] ?? '')
. ($save_data['surname'] ?? '')
. ($save_data['name'] ?? '');
if (!strlen($name) && !count(array_filter($this->get_col_values('email', $save_data, true)))) {
$this->set_error(self::ERROR_VALIDATE, 'nonamewarning');
$valid = false;
}
}
return $valid;
}
/**
* Create a new contact record
*
* @param array $save_data Associative array with save data
* @param bool $check Enables validity checks
*
* @return mixed The created record ID on success, False on error
*/
#[Override]
public function insert($save_data, $check = false)
{
$insert_id = $existing = false;
if ($check) {
foreach ($save_data as $col => $values) {
if (strpos($col, 'email') === 0) {
foreach ((array) $values as $email) {
$existing = $this->search('email', $email, false, false);
if ($existing->count) {
break 2;
}
}
}
}
}
$save_data = $this->convert_save_data($save_data);
$a_insert_cols = $a_insert_values = [];
foreach ($save_data as $col => $value) {
$a_insert_cols[] = $this->db->quote_identifier($col);
$a_insert_values[] = $this->db->quote($value);
}
if ((empty($existing) || empty($existing->count)) && !empty($a_insert_cols)) {
$this->db->query(
'INSERT INTO ' . $this->db->table_name($this->db_name, true)
. ' (`user_id`, `changed`, `del`, ' . implode(', ', $a_insert_cols) . ')'
. ' VALUES (' . intval($this->user_id) . ', ' . $this->db->now() . ', 0, ' . implode(', ', $a_insert_values) . ')'
);
$insert_id = $this->db->insert_id($this->db_name);
}
$this->cache = null;
return $insert_id;
}
/**
* Update a specific contact record
*
* @param mixed $id Record identifier
* @param array $save_cols Associative array with save data
*
* @return bool True on success, False on error
*/
#[Override]
public function update($id, $save_cols)
{
$updated = false;
$write_sql = [];
$record = $this->get_record($id, true);
$save_cols = $this->convert_save_data($save_cols, $record);
foreach ($save_cols as $col => $value) {
$write_sql[] = sprintf('%s=%s', $this->db->quote_identifier($col), $this->db->quote($value));
}
if (!empty($write_sql)) {
$this->db->query(
'UPDATE ' . $this->db->table_name($this->db_name, true)
. ' SET `changed` = ' . $this->db->now() . ', ' . implode(', ', $write_sql)
. ' WHERE `contact_id` = ?'
. ' AND `user_id` = ?'
. ' AND `del` <> 1',
$id,
$this->user_id
);
$updated = $this->db->affected_rows();
$this->result = null; // clear current result (from get_record())
}
return !empty($updated);
}
/**
* Convert data stored in the database into output format
*/
private function convert_db_data($sql_arr)
{
$record = [
'ID' => $sql_arr[$this->primary_key],
];
if ($sql_arr['vcard']) {
unset($sql_arr['email']);
$vcard = new rcube_vcard($sql_arr['vcard'], RCUBE_CHARSET, false, $this->vcard_fieldmap);
$record += $vcard->get_assoc() + $sql_arr;
} else {
$record += $sql_arr;
$record['email'] = explode(self::SEPARATOR, $record['email']);
$record['email'] = array_map('trim', $record['email']);
}
return $record;
}
/**
* Convert input data for storing in the database
*/
private function convert_save_data($save_data, $record = [])
{
$out = [];
$words = '';
if (!empty($record['vcard'])) {
$vcard = $record['vcard'];
} elseif (!empty($save_data['vcard'])) {
$vcard = $save_data['vcard'];
} else {
$vcard = '';
}
// copy values into vcard object
$vcard = new rcube_vcard($vcard, RCUBE_CHARSET, false, $this->vcard_fieldmap);
$vcard->reset();
// don't store groups in vCard (#1490277)
$vcard->set('groups', null);
unset($save_data['groups']);
foreach ($save_data as $key => $values) {
[$field, $section] = rcube_utils::explode(':', $key);
$fulltext = in_array($field, $this->fulltext_cols);
// avoid casting DateTime objects to array
if (is_object($values) && is_a($values, 'DateTime')) {
$values = [$values];
}
foreach ((array) $values as $value) {
if (isset($value)) {
$vcard->set($field, $value, $section);
}
if ($fulltext && is_array($value)) {
$words .= ' ' . rcube_utils::normalize_string(implode(' ', $value));
} elseif ($fulltext && strlen($value) >= 3) {
$words .= ' ' . rcube_utils::normalize_string($value);
}
}
}
$out['vcard'] = $vcard->export(false);
foreach ($this->table_cols as $col) {
$key = $col;
if (!isset($save_data[$key])) {
$key .= ':home';
}
if (isset($save_data[$key])) {
if (is_array($save_data[$key])) {
$out[$col] = implode(self::SEPARATOR, $save_data[$key]);
} else {
$out[$col] = $save_data[$key];
}
}
}
// save all e-mails in the database column
if (!empty($vcard->email)) {
$out['email'] = implode(self::SEPARATOR, $vcard->email);
} else {
$out['email'] = $save_data['email'] ?? '';
}
// join words for fulltext search
$out['words'] = implode(' ', array_unique(explode(' ', $words)));
return $out;
}
/**
* Mark one or more contact records as deleted
*
* @param array|string $ids Record identifiers array or string separated with self::SEPARATOR
* @param bool $force Remove record(s) irreversible (unsupported)
*
* @return int|false Number of removed records, False on failure
*/
#[Override]
public function delete($ids, $force = true)
{
if (!is_array($ids)) {
$ids = explode(self::SEPARATOR, $ids);
}
$ids = $this->db->array2list($ids, 'integer');
// flag record as deleted (always)
$this->db->query(
'UPDATE ' . $this->db->table_name($this->db_name, true) .
' SET `del` = 1, `changed` = ' . $this->db->now() .
' WHERE `user_id` = ?' .
" AND `contact_id` IN ({$ids})",
$this->user_id
);
$this->cache = null;
return $this->db->affected_rows();
}
/**
* Undelete one or more contact records
*
* @param array|string $ids Record identifiers array or string separated with self::SEPARATOR
*
* @return int Number of undeleted contact records
*/
#[Override]
public function undelete($ids)
{
if (!is_array($ids)) {
$ids = explode(self::SEPARATOR, $ids);
}
$ids = $this->db->array2list($ids, 'integer');
// clear deleted flag
$this->db->query(
'UPDATE ' . $this->db->table_name($this->db_name, true) .
' SET `del` = 0, `changed` = ' . $this->db->now() .
' WHERE `user_id` = ?' .
" AND `contact_id` IN ({$ids})",
$this->user_id
);
$this->cache = null;
return $this->db->affected_rows();
}
/**
* Remove all records from the database
*
* @param bool $with_groups Remove also groups
*
* @return int Number of removed records
*/
#[Override]
public function delete_all($with_groups = false)
{
$this->cache = null;
$now = $this->db->now();
$this->db->query('UPDATE ' . $this->db->table_name($this->db_name, true)
. " SET `del` = 1, `changed` = {$now}"
. ' WHERE `user_id` = ?', $this->user_id);
$count = $this->db->affected_rows();
if ($with_groups) {
$this->db->query('UPDATE ' . $this->db->table_name($this->db_groups, true)
. " SET `del` = 1, `changed` = {$now}"
. ' WHERE `user_id` = ?', $this->user_id);
$count += $this->db->affected_rows();
}
return $count;
}
/**
* Create a contact group with the given name
*
* @param string $name The group name
*
* @return array|false False on error, array with record props in success
*/
#[Override]
public function create_group($name)
{
$result = false;
// make sure we have a unique name
$name = $this->unique_groupname($name);
$this->db->query(
'INSERT INTO ' . $this->db->table_name($this->db_groups, true) .
' (`user_id`, `changed`, `name`)' .
' VALUES (' . intval($this->user_id) . ', ' . $this->db->now() . ', ' . $this->db->quote($name) . ')'
);
if ($insert_id = $this->db->insert_id($this->db_groups)) {
$result = ['id' => $insert_id, 'name' => $name];
}
return $result;
}
/**
* Delete the given group (and all linked group members)
*
* @param string $gid Group identifier
*
* @return bool True on success, false if no data was changed
*/
#[Override]
public function delete_group($gid)
{
// flag group record as deleted
$sql_result = $this->db->query(
'UPDATE ' . $this->db->table_name($this->db_groups, true)
. ' SET `del` = 1, `changed` = ' . $this->db->now()
. ' WHERE `contactgroup_id` = ?'
. ' AND `user_id` = ?',
$gid, $this->user_id
);
$this->cache = null;
return $this->db->affected_rows($sql_result) > 0;
}
/**
* Rename a specific contact group
*
* @param string $gid Group identifier
* @param string $name New name to set for this group
* @param string $new_gid (not used)
*
* @return string|false New name on success, false if no data was changed
*/
#[Override]
public function rename_group($gid, $name, &$new_gid)
{
// make sure we have a unique name
$name = $this->unique_groupname($name);
$sql_result = $this->db->query(
'UPDATE ' . $this->db->table_name($this->db_groups, true) .
' SET `name` = ?, `changed` = ' . $this->db->now() .
' WHERE `contactgroup_id` = ?' .
' AND `user_id` = ?',
$name, $gid, $this->user_id
);
return $this->db->affected_rows($sql_result) ? $name : false;
}
/**
* Add the given contact records the a certain group
*
* @param string $group_id Group identifier
* @param array|string $ids List of contact identifiers to be added
*
* @return int Number of contacts added
*/
#[Override]
public function add_to_group($group_id, $ids)
{
if (!is_array($ids)) {
$ids = explode(self::SEPARATOR, $ids);
}
$added = 0;
$exists = [];
// get existing assignments ...
$sql_result = $this->db->query(
'SELECT `contact_id` FROM ' . $this->db->table_name($this->db_groupmembers, true) .
' WHERE `contactgroup_id` = ?' .
' AND `contact_id` IN (' . $this->db->array2list($ids, 'integer') . ')',
$group_id
);
while ($sql_result && ($sql_arr = $this->db->fetch_assoc($sql_result))) {
$exists[] = $sql_arr['contact_id'];
}
// ... and remove them from the list
$ids = array_diff($ids, $exists);
foreach ($ids as $contact_id) {
$this->db->query(
'INSERT INTO ' . $this->db->table_name($this->db_groupmembers, true) .
' (`contactgroup_id`, `contact_id`, `created`)' .
' VALUES (?, ?, ' . $this->db->now() . ')',
$group_id,
$contact_id
);
if ($error = $this->db->is_error()) {
$this->set_error(self::ERROR_SAVING, $error);
} else {
$added++;
}
}
return $added;
}
/**
* Remove the given contact records from a certain group
*
* @param string $group_id Group identifier
* @param array|string $ids List of contact identifiers to be removed
*
* @return int Number of deleted group members
*/
#[Override]
public function remove_from_group($group_id, $ids)
{
if (!is_array($ids)) {
$ids = explode(self::SEPARATOR, $ids);
}
$ids = $this->db->array2list($ids, 'integer');
$sql_result = $this->db->query(
'DELETE FROM ' . $this->db->table_name($this->db_groupmembers, true) .
' WHERE `contactgroup_id` = ?' .
" AND `contact_id` IN ({$ids})",
$group_id
);
return $this->db->affected_rows($sql_result);
}
/**
* Check for existing groups with the same name
*
* @param string $name Name to check
*
* @return string A group name which is unique for the current use
*/
private function unique_groupname($name)
{
$checkname = $name;
$num = 2;
$hit = false;
do {
$sql_result = $this->db->query(
'SELECT 1 FROM ' . $this->db->table_name($this->db_groups, true) .
' WHERE `del` <> 1' .
' AND `user_id` = ?' .
' AND `name` = ?',
$this->user_id,
$checkname);
// append number to make name unique
if ($hit = $this->db->fetch_array($sql_result)) {
$checkname = $name . ' ' . $num++;
}
} while ($hit);
return $checkname;
}
}
?>Did this file decode correctly?
Original Code
<?php
/*
+-----------------------------------------------------------------------+
| This file is part of the Roundcube Webmail client |
| |
| Copyright (C) The Roundcube Dev Team |
| |
| Licensed under the GNU General Public License version 3 or |
| any later version with exceptions for skins & plugins. |
| See the README file for a full license statement. |
| |
| PURPOSE: |
| Interface to the local address book database |
+-----------------------------------------------------------------------+
| Author: Thomas Bruederli <[email protected]> |
+-----------------------------------------------------------------------+
*/
/**
* Model class for the local address book database
*/
class rcube_contacts extends rcube_addressbook
{
// protected for backward compat. with some plugins
protected $db_name = 'contacts';
protected $db_groups = 'contactgroups';
protected $db_groupmembers = 'contactgroupmembers';
protected $vcard_fieldmap = [];
/**
* Store database connection.
*
* @var rcube_db
*/
protected $db;
protected $user_id = 0;
protected $filter;
protected $result;
protected $cache;
protected $table_cols = ['name', 'email', 'firstname', 'surname'];
protected $fulltext_cols = ['name', 'firstname', 'surname', 'middlename', 'nickname',
'jobtitle', 'organization', 'department', 'maidenname', 'email', 'phone',
'address', 'street', 'locality', 'zipcode', 'region', 'country', 'website', 'im', 'notes'];
// public properties
public $primary_key = 'contact_id';
public $name;
public $readonly = false;
public $groups = true;
public $undelete = true;
public $list_page = 1;
public $page_size = 10;
public $group_id = 0;
public $ready = false;
public $coltypes = ['name', 'firstname', 'surname', 'middlename', 'prefix', 'suffix', 'nickname',
'jobtitle', 'organization', 'department', 'assistant', 'manager',
'gender', 'maidenname', 'spouse', 'email', 'phone', 'address',
'birthday', 'anniversary', 'website', 'im', 'notes', 'photo'];
public $date_cols = ['birthday', 'anniversary'];
public const SEPARATOR = ',';
/**
* Object constructor
*
* @param rcube_db $dbconn Instance of the rcube_db class
* @param int $user User-ID
*/
public function __construct($dbconn, $user)
{
$this->db = $dbconn;
$this->user_id = $user;
$this->ready = !$this->db->is_error();
}
/**
* Returns addressbook name
*
* @return string
*/
#[Override]
public function get_name()
{
return $this->name;
}
/**
* Save a search string for future listings
*
* @param mixed $filter SQL params to use in listing method
*/
#[Override]
public function set_search_set($filter): void
{
$this->filter = $filter;
$this->cache = null;
}
/**
* Getter for saved search properties
*
* @return mixed Search properties used by this class
*/
#[Override]
public function get_search_set()
{
return $this->filter;
}
/**
* Setter for the current group
* (empty, has to be re-implemented by extending class)
*/
#[Override]
public function set_group($gid)
{
$this->group_id = $gid;
$this->cache = null;
}
/**
* Reset all saved results and search parameters
*/
#[Override]
public function reset(): void
{
$this->result = null;
$this->filter = null;
$this->cache = null;
}
/**
* List all active contact groups of this source
*
* @param ?string $search Search string to match group name
* @param int $mode Matching mode. Sum of rcube_addressbook::SEARCH_*
*
* @return array Indexed list of contact groups, each a hash array
*/
#[Override]
public function list_groups($search = null, $mode = 0)
{
$results = [];
if (!$this->groups) {
return $results;
}
$sql_filter = '';
if ($search) {
if ($mode & rcube_addressbook::SEARCH_STRICT) {
$sql_filter = $this->db->ilike('name', $search);
} elseif ($mode & rcube_addressbook::SEARCH_PREFIX) {
$sql_filter = $this->db->ilike('name', $search . '%');
} else {
$sql_filter = $this->db->ilike('name', '%' . $search . '%');
}
$sql_filter = " AND {$sql_filter}";
}
$sql_result = $this->db->query(
'SELECT * FROM ' . $this->db->table_name($this->db_groups, true)
. ' WHERE `del` <> 1 AND `user_id` = ?' . $sql_filter
. ' ORDER BY `name`',
$this->user_id
);
while ($sql_result && ($sql_arr = $this->db->fetch_assoc($sql_result))) {
$sql_arr['ID'] = $sql_arr['contactgroup_id'];
$results[] = $sql_arr;
}
return $results;
}
/**
* Get group properties such as name and email address(es)
*
* @param string $group_id Group identifier
*
* @return ?array group properties as hash array, null in case of error
*/
#[Override]
public function get_group($group_id)
{
$sql_result = $this->db->query(
'SELECT * FROM ' . $this->db->table_name($this->db_groups, true)
. ' WHERE `del` <> 1 AND `contactgroup_id` = ? AND `user_id` = ?',
$group_id, $this->user_id
);
if ($sql_result && ($sql_arr = $this->db->fetch_assoc($sql_result))) {
$sql_arr['ID'] = $sql_arr['contactgroup_id'];
return $sql_arr;
}
return null;
}
/**
* List the current set of contact records
*
* @param ?array $cols List of cols to show, Null means all
* @param int $subset Only return this number of records, use negative values for tail
* @param bool $nocount True to skip the count query (select only)
*
* @return rcube_result_set Indexed list of contact records, each a hash array
*/
#[Override]
public function list_records($cols = null, $subset = 0, $nocount = false)
{
if ($nocount || $this->list_page <= 1) {
// create dummy result, we don't need a count now
$this->result = new rcube_result_set();
} else {
// count all records
$this->result = $this->count();
}
$start_row = $subset < 0 ? $this->result->first + $this->page_size + $subset : $this->result->first;
$length = $subset != 0 ? abs($subset) : $this->page_size;
$join = '';
if ($this->group_id) {
$join = ' LEFT JOIN ' . $this->db->table_name($this->db_groupmembers, true) . ' AS m' .
' ON (m.`contact_id` = c.`' . $this->primary_key . '`)';
}
$order_col = in_array($this->sort_col, $this->table_cols) ? $this->sort_col : 'name';
$order_cols = ["c.`{$order_col}`"];
if ($order_col == 'firstname') {
$order_cols[] = 'c.`surname`';
} elseif ($order_col == 'surname') {
$order_cols[] = 'c.`firstname`';
}
if ($order_col != 'name') {
$order_cols[] = 'c.`name`';
}
$order_cols[] = 'c.`email`';
$sql_result = $this->db->limitquery(
'SELECT * FROM ' . $this->db->table_name($this->db_name, true) . ' AS c' .
$join .
' WHERE c.`del` <> 1' .
' AND c.`user_id` = ?' .
($this->group_id ? ' AND m.`contactgroup_id` = ?' : '') .
($this->filter ? ' AND ' . $this->filter : '') .
' ORDER BY ' . $this->db->concat($order_cols) . ' ' . $this->sort_order,
$start_row,
$length,
$this->user_id,
$this->group_id
);
// determine whether we have to parse the vcard or if only db cols are requested
$read_vcard = !$cols || count(array_intersect($cols, $this->table_cols)) < count($cols);
while ($sql_result && ($sql_arr = $this->db->fetch_assoc($sql_result))) {
$sql_arr['ID'] = $sql_arr[$this->primary_key];
if ($read_vcard) {
$sql_arr = $this->convert_db_data($sql_arr);
} else {
$sql_arr['email'] = $sql_arr['email'] ? explode(self::SEPARATOR, $sql_arr['email']) : [];
$sql_arr['email'] = array_map('trim', $sql_arr['email']);
}
$this->result->add($sql_arr);
}
$cnt = count($this->result->records);
// update counter
if ($nocount) {
$this->result->count = $cnt;
} elseif ($this->list_page <= 1) {
if ($cnt < $this->page_size && $subset == 0) {
$this->result->count = $cnt;
} elseif (isset($this->cache['count'])) {
$this->result->count = $this->cache['count'];
} else {
$this->result->count = $this->_count();
}
}
return $this->result;
}
/**
* Search contacts
*
* @param mixed $fields The field name or array of field names to search in
* @param mixed $value Search value (or array of values when $fields is array)
* @param int $mode Search mode. Sum of rcube_addressbook::SEARCH_*
* @param bool $select True if results are requested, False if count only
* @param bool $nocount True to skip the count query (select only)
* @param string|array $required List of fields that cannot be empty
*
* @return rcube_result_set Contact records and 'count' value
*/
#[Override]
public function search($fields, $value, $mode = 0, $select = true, $nocount = false, $required = [])
{
if (!is_array($required) && !empty($required)) {
$required = [$required];
}
$where = $post_search = [];
$mode = intval($mode);
// direct ID search
if ($fields == 'ID' || $fields == $this->primary_key) {
$ids = !is_array($value) ? explode(self::SEPARATOR, $value) : $value;
$ids = $this->db->array2list($ids, 'integer');
$where[] = 'c.' . $this->primary_key . ' IN (' . $ids . ')';
} elseif (is_array($value)) {
foreach ((array) $fields as $idx => $col) {
$val = $value[$idx];
if (!strlen($val)) {
continue;
}
// table column
if (in_array($col, $this->table_cols)) {
$where[] = $this->fulltext_sql_where($val, $mode, $col);
}
// vCard field
else {
if (in_array($col, $this->fulltext_cols)) {
$where[] = $this->fulltext_sql_where($val, $mode, 'words');
}
$post_search[$col] = mb_strtolower($val);
}
}
}
// fulltext search in all fields
elseif ($fields == '*') {
$where[] = $this->fulltext_sql_where($value, $mode, 'words');
} else {
// require each word in to be present in one of the fields
$words = ($mode & rcube_addressbook::SEARCH_STRICT) ? [$value] : rcube_utils::tokenize_string($value, 1);
foreach ($words as $word) {
$groups = [];
foreach ((array) $fields as $idx => $col) {
$groups[] = $this->fulltext_sql_where($word, $mode, $col);
}
$where[] = '(' . implode(' OR ', $groups) . ')';
}
}
foreach (array_intersect($required, $this->table_cols) as $col) {
$where[] = $this->db->quote_identifier($col) . ' <> ' . $this->db->quote('');
}
$required = array_diff($required, $this->table_cols);
if (!empty($where)) {
// use AND operator for advanced searches
$where = implode(' AND ', $where);
}
// Post-searching in vCard data fields
// we will search in all records and then build a where clause for their IDs
if (!empty($post_search) || !empty($required)) {
$ids = [0];
// build key name regexp
$regexp = '/^(' . implode('|', array_keys($post_search)) . ')(?:.*)$/';
// use initial WHERE clause, to limit records number if possible
if (!empty($where)) {
$this->set_search_set($where);
}
// count result pages
$cnt = $this->count()->count;
$pages = ceil($cnt / $this->page_size);
$scnt = !empty($post_search) ? count($post_search) : 0;
// get (paged) result
for ($i = 0; $i < $pages; $i++) {
$this->list_records(null, $i, true);
foreach ($this->result as $row) {
$id = $row[$this->primary_key];
$found = [];
if (!empty($post_search)) {
foreach (preg_grep($regexp, array_keys($row)) as $col) {
$pos = strpos($col, ':');
$colname = $pos ? substr($col, 0, $pos) : $col;
$search = $post_search[$colname];
foreach ((array) $row[$col] as $_value) {
if ($this->compare_search_value($colname, $_value, $search, $mode)) {
$found[$colname] = true;
break;
}
}
}
}
// check if required fields are present
if (!empty($required)) {
foreach ($required as $req) {
$hit = false;
foreach (array_keys($row) as $c) {
if ($c === $req || strpos($c, $req . ':') === 0) {
if ((is_string($row[$c]) && strlen($row[$c])) || !empty($row[$c])) {
$hit = true;
break;
}
}
}
if (!$hit) {
continue 2;
}
}
}
// all fields match
if (count($found) >= $scnt) {
$ids[] = $id;
}
}
}
// build WHERE clause
$ids = $this->db->array2list($ids, 'integer');
$where = 'c.`' . $this->primary_key . '` IN (' . $ids . ')';
// reset counter
unset($this->cache['count']);
// when we know we have an empty result
if ($ids == '0') {
$this->set_search_set($where);
return $this->result = new rcube_result_set();
}
}
if (!empty($where)) {
$this->set_search_set($where);
if ($select) {
$this->list_records(null, 0, $nocount);
} else {
$this->result = $this->count();
}
} else {
return $this->result = new rcube_result_set();
}
return $this->result;
}
/**
* Helper method to compose SQL where statements for fulltext searching
*/
protected function fulltext_sql_where($value, $mode, $col = 'words', $bool = 'AND')
{
$AS = $col == 'words' ? ' ' : self::SEPARATOR;
$words = $col == 'words' ? rcube_utils::normalize_string($value, true, 1) : [$value];
$where = [];
foreach ($words as $word) {
if ($mode & rcube_addressbook::SEARCH_STRICT) {
$where[] = '(' . $this->db->ilike($col, $word)
. ' OR ' . $this->db->ilike($col, $word . $AS . '%')
. ' OR ' . $this->db->ilike($col, '%' . $AS . $word . $AS . '%')
. ' OR ' . $this->db->ilike($col, '%' . $AS . $word) . ')';
} elseif ($mode & rcube_addressbook::SEARCH_PREFIX) {
$where[] = '(' . $this->db->ilike($col, $word . '%')
. ' OR ' . $this->db->ilike($col, '%' . $AS . $word . '%') . ')';
} else {
$where[] = $this->db->ilike($col, '%' . $word . '%');
}
}
return count($where) ? '(' . implode(" {$bool} ", $where) . ')' : '';
}
/**
* Count number of available contacts in database
*
* @return rcube_result_set Result object
*/
#[Override]
public function count()
{
$count = $this->cache['count'] ?? $this->_count();
return new rcube_result_set($count, ($this->list_page - 1) * $this->page_size);
}
/**
* Count number of available contacts in database
*
* @return int Contacts count
*/
protected function _count()
{
$join = null;
if ($this->group_id) {
$join = ' LEFT JOIN ' . $this->db->table_name($this->db_groupmembers, true) . ' AS m' .
' ON (m.`contact_id` = c.`' . $this->primary_key . '`)';
}
// count contacts for this user
$sql_result = $this->db->query(
'SELECT COUNT(c.`contact_id`) AS cnt' .
' FROM ' . $this->db->table_name($this->db_name, true) . ' AS c' .
$join .
' WHERE c.`del` <> 1' .
' AND c.`user_id` = ?' .
($this->group_id ? ' AND m.`contactgroup_id` = ?' : '') .
($this->filter ? ' AND (' . $this->filter . ')' : ''),
$this->user_id,
$this->group_id
);
$sql_arr = $this->db->fetch_assoc($sql_result);
$this->cache['count'] = !empty($sql_arr) ? (int) $sql_arr['cnt'] : 0;
return $this->cache['count'];
}
/**
* Return the last result set
*
* @return rcube_result_set|null Result array or NULL if nothing selected yet
*/
#[Override]
public function get_result()
{
return $this->result;
}
/**
* Get a specific contact record
*
* @param mixed $id Record identifier(s)
* @param bool $assoc Enables returning associative array
*
* @return rcube_result_set|array|null Result object with all record fields
*/
#[Override]
public function get_record($id, $assoc = false)
{
// return cached result
if ($this->result && ($first = $this->result->first()) && $first[$this->primary_key] == $id) {
return $assoc ? $first : $this->result;
}
$this->db->query(
'SELECT * FROM ' . $this->db->table_name($this->db_name, true) .
' WHERE `contact_id` = ?' .
' AND `user_id` = ?' .
' AND `del` <> 1',
$id,
$this->user_id
);
$this->result = null;
if ($sql_arr = $this->db->fetch_assoc()) {
$record = $this->convert_db_data($sql_arr);
$this->result = new rcube_result_set(1);
$this->result->add($record);
}
return $assoc && !empty($record) ? $record : $this->result;
}
/**
* Get group assignments of a specific contact record
*
* @param mixed $id Record identifier
*
* @return array List of assigned groups, indexed by a group ID
*/
#[Override]
public function get_record_groups($id)
{
$results = [];
if (!$this->groups) {
return $results;
}
$sql_result = $this->db->query(
'SELECT cgm.`contactgroup_id`, cg.`name` '
. ' FROM ' . $this->db->table_name($this->db_groupmembers, true) . ' AS cgm'
. ' LEFT JOIN ' . $this->db->table_name($this->db_groups, true) . ' AS cg'
. ' ON (cgm.`contactgroup_id` = cg.`contactgroup_id` AND cg.`del` <> 1)'
. ' WHERE cgm.`contact_id` = ?',
$id
);
while ($sql_result && ($sql_arr = $this->db->fetch_assoc($sql_result))) {
$results[$sql_arr['contactgroup_id']] = $sql_arr['name'];
}
return $results;
}
/**
* Check the given data before saving.
* If input not valid, the message to display can be fetched using get_error()
*
* @param array &$save_data Associative array with data to save
* @param bool $autofix Try to fix/complete record automatically
*
* @return bool true if input is valid, False if not
*/
#[Override]
public function validate(&$save_data, $autofix = false)
{
// validate e-mail addresses
$valid = parent::validate($save_data, $autofix);
// require at least some name or email
if ($valid) {
$name = ($save_data['firstname'] ?? '')
. ($save_data['surname'] ?? '')
. ($save_data['name'] ?? '');
if (!strlen($name) && !count(array_filter($this->get_col_values('email', $save_data, true)))) {
$this->set_error(self::ERROR_VALIDATE, 'nonamewarning');
$valid = false;
}
}
return $valid;
}
/**
* Create a new contact record
*
* @param array $save_data Associative array with save data
* @param bool $check Enables validity checks
*
* @return mixed The created record ID on success, False on error
*/
#[Override]
public function insert($save_data, $check = false)
{
$insert_id = $existing = false;
if ($check) {
foreach ($save_data as $col => $values) {
if (strpos($col, 'email') === 0) {
foreach ((array) $values as $email) {
$existing = $this->search('email', $email, false, false);
if ($existing->count) {
break 2;
}
}
}
}
}
$save_data = $this->convert_save_data($save_data);
$a_insert_cols = $a_insert_values = [];
foreach ($save_data as $col => $value) {
$a_insert_cols[] = $this->db->quote_identifier($col);
$a_insert_values[] = $this->db->quote($value);
}
if ((empty($existing) || empty($existing->count)) && !empty($a_insert_cols)) {
$this->db->query(
'INSERT INTO ' . $this->db->table_name($this->db_name, true)
. ' (`user_id`, `changed`, `del`, ' . implode(', ', $a_insert_cols) . ')'
. ' VALUES (' . intval($this->user_id) . ', ' . $this->db->now() . ', 0, ' . implode(', ', $a_insert_values) . ')'
);
$insert_id = $this->db->insert_id($this->db_name);
}
$this->cache = null;
return $insert_id;
}
/**
* Update a specific contact record
*
* @param mixed $id Record identifier
* @param array $save_cols Associative array with save data
*
* @return bool True on success, False on error
*/
#[Override]
public function update($id, $save_cols)
{
$updated = false;
$write_sql = [];
$record = $this->get_record($id, true);
$save_cols = $this->convert_save_data($save_cols, $record);
foreach ($save_cols as $col => $value) {
$write_sql[] = sprintf('%s=%s', $this->db->quote_identifier($col), $this->db->quote($value));
}
if (!empty($write_sql)) {
$this->db->query(
'UPDATE ' . $this->db->table_name($this->db_name, true)
. ' SET `changed` = ' . $this->db->now() . ', ' . implode(', ', $write_sql)
. ' WHERE `contact_id` = ?'
. ' AND `user_id` = ?'
. ' AND `del` <> 1',
$id,
$this->user_id
);
$updated = $this->db->affected_rows();
$this->result = null; // clear current result (from get_record())
}
return !empty($updated);
}
/**
* Convert data stored in the database into output format
*/
private function convert_db_data($sql_arr)
{
$record = [
'ID' => $sql_arr[$this->primary_key],
];
if ($sql_arr['vcard']) {
unset($sql_arr['email']);
$vcard = new rcube_vcard($sql_arr['vcard'], RCUBE_CHARSET, false, $this->vcard_fieldmap);
$record += $vcard->get_assoc() + $sql_arr;
} else {
$record += $sql_arr;
$record['email'] = explode(self::SEPARATOR, $record['email']);
$record['email'] = array_map('trim', $record['email']);
}
return $record;
}
/**
* Convert input data for storing in the database
*/
private function convert_save_data($save_data, $record = [])
{
$out = [];
$words = '';
if (!empty($record['vcard'])) {
$vcard = $record['vcard'];
} elseif (!empty($save_data['vcard'])) {
$vcard = $save_data['vcard'];
} else {
$vcard = '';
}
// copy values into vcard object
$vcard = new rcube_vcard($vcard, RCUBE_CHARSET, false, $this->vcard_fieldmap);
$vcard->reset();
// don't store groups in vCard (#1490277)
$vcard->set('groups', null);
unset($save_data['groups']);
foreach ($save_data as $key => $values) {
[$field, $section] = rcube_utils::explode(':', $key);
$fulltext = in_array($field, $this->fulltext_cols);
// avoid casting DateTime objects to array
if (is_object($values) && is_a($values, 'DateTime')) {
$values = [$values];
}
foreach ((array) $values as $value) {
if (isset($value)) {
$vcard->set($field, $value, $section);
}
if ($fulltext && is_array($value)) {
$words .= ' ' . rcube_utils::normalize_string(implode(' ', $value));
} elseif ($fulltext && strlen($value) >= 3) {
$words .= ' ' . rcube_utils::normalize_string($value);
}
}
}
$out['vcard'] = $vcard->export(false);
foreach ($this->table_cols as $col) {
$key = $col;
if (!isset($save_data[$key])) {
$key .= ':home';
}
if (isset($save_data[$key])) {
if (is_array($save_data[$key])) {
$out[$col] = implode(self::SEPARATOR, $save_data[$key]);
} else {
$out[$col] = $save_data[$key];
}
}
}
// save all e-mails in the database column
if (!empty($vcard->email)) {
$out['email'] = implode(self::SEPARATOR, $vcard->email);
} else {
$out['email'] = $save_data['email'] ?? '';
}
// join words for fulltext search
$out['words'] = implode(' ', array_unique(explode(' ', $words)));
return $out;
}
/**
* Mark one or more contact records as deleted
*
* @param array|string $ids Record identifiers array or string separated with self::SEPARATOR
* @param bool $force Remove record(s) irreversible (unsupported)
*
* @return int|false Number of removed records, False on failure
*/
#[Override]
public function delete($ids, $force = true)
{
if (!is_array($ids)) {
$ids = explode(self::SEPARATOR, $ids);
}
$ids = $this->db->array2list($ids, 'integer');
// flag record as deleted (always)
$this->db->query(
'UPDATE ' . $this->db->table_name($this->db_name, true) .
' SET `del` = 1, `changed` = ' . $this->db->now() .
' WHERE `user_id` = ?' .
" AND `contact_id` IN ({$ids})",
$this->user_id
);
$this->cache = null;
return $this->db->affected_rows();
}
/**
* Undelete one or more contact records
*
* @param array|string $ids Record identifiers array or string separated with self::SEPARATOR
*
* @return int Number of undeleted contact records
*/
#[Override]
public function undelete($ids)
{
if (!is_array($ids)) {
$ids = explode(self::SEPARATOR, $ids);
}
$ids = $this->db->array2list($ids, 'integer');
// clear deleted flag
$this->db->query(
'UPDATE ' . $this->db->table_name($this->db_name, true) .
' SET `del` = 0, `changed` = ' . $this->db->now() .
' WHERE `user_id` = ?' .
" AND `contact_id` IN ({$ids})",
$this->user_id
);
$this->cache = null;
return $this->db->affected_rows();
}
/**
* Remove all records from the database
*
* @param bool $with_groups Remove also groups
*
* @return int Number of removed records
*/
#[Override]
public function delete_all($with_groups = false)
{
$this->cache = null;
$now = $this->db->now();
$this->db->query('UPDATE ' . $this->db->table_name($this->db_name, true)
. " SET `del` = 1, `changed` = {$now}"
. ' WHERE `user_id` = ?', $this->user_id);
$count = $this->db->affected_rows();
if ($with_groups) {
$this->db->query('UPDATE ' . $this->db->table_name($this->db_groups, true)
. " SET `del` = 1, `changed` = {$now}"
. ' WHERE `user_id` = ?', $this->user_id);
$count += $this->db->affected_rows();
}
return $count;
}
/**
* Create a contact group with the given name
*
* @param string $name The group name
*
* @return array|false False on error, array with record props in success
*/
#[Override]
public function create_group($name)
{
$result = false;
// make sure we have a unique name
$name = $this->unique_groupname($name);
$this->db->query(
'INSERT INTO ' . $this->db->table_name($this->db_groups, true) .
' (`user_id`, `changed`, `name`)' .
' VALUES (' . intval($this->user_id) . ', ' . $this->db->now() . ', ' . $this->db->quote($name) . ')'
);
if ($insert_id = $this->db->insert_id($this->db_groups)) {
$result = ['id' => $insert_id, 'name' => $name];
}
return $result;
}
/**
* Delete the given group (and all linked group members)
*
* @param string $gid Group identifier
*
* @return bool True on success, false if no data was changed
*/
#[Override]
public function delete_group($gid)
{
// flag group record as deleted
$sql_result = $this->db->query(
'UPDATE ' . $this->db->table_name($this->db_groups, true)
. ' SET `del` = 1, `changed` = ' . $this->db->now()
. ' WHERE `contactgroup_id` = ?'
. ' AND `user_id` = ?',
$gid, $this->user_id
);
$this->cache = null;
return $this->db->affected_rows($sql_result) > 0;
}
/**
* Rename a specific contact group
*
* @param string $gid Group identifier
* @param string $name New name to set for this group
* @param string $new_gid (not used)
*
* @return string|false New name on success, false if no data was changed
*/
#[Override]
public function rename_group($gid, $name, &$new_gid)
{
// make sure we have a unique name
$name = $this->unique_groupname($name);
$sql_result = $this->db->query(
'UPDATE ' . $this->db->table_name($this->db_groups, true) .
' SET `name` = ?, `changed` = ' . $this->db->now() .
' WHERE `contactgroup_id` = ?' .
' AND `user_id` = ?',
$name, $gid, $this->user_id
);
return $this->db->affected_rows($sql_result) ? $name : false;
}
/**
* Add the given contact records the a certain group
*
* @param string $group_id Group identifier
* @param array|string $ids List of contact identifiers to be added
*
* @return int Number of contacts added
*/
#[Override]
public function add_to_group($group_id, $ids)
{
if (!is_array($ids)) {
$ids = explode(self::SEPARATOR, $ids);
}
$added = 0;
$exists = [];
// get existing assignments ...
$sql_result = $this->db->query(
'SELECT `contact_id` FROM ' . $this->db->table_name($this->db_groupmembers, true) .
' WHERE `contactgroup_id` = ?' .
' AND `contact_id` IN (' . $this->db->array2list($ids, 'integer') . ')',
$group_id
);
while ($sql_result && ($sql_arr = $this->db->fetch_assoc($sql_result))) {
$exists[] = $sql_arr['contact_id'];
}
// ... and remove them from the list
$ids = array_diff($ids, $exists);
foreach ($ids as $contact_id) {
$this->db->query(
'INSERT INTO ' . $this->db->table_name($this->db_groupmembers, true) .
' (`contactgroup_id`, `contact_id`, `created`)' .
' VALUES (?, ?, ' . $this->db->now() . ')',
$group_id,
$contact_id
);
if ($error = $this->db->is_error()) {
$this->set_error(self::ERROR_SAVING, $error);
} else {
$added++;
}
}
return $added;
}
/**
* Remove the given contact records from a certain group
*
* @param string $group_id Group identifier
* @param array|string $ids List of contact identifiers to be removed
*
* @return int Number of deleted group members
*/
#[Override]
public function remove_from_group($group_id, $ids)
{
if (!is_array($ids)) {
$ids = explode(self::SEPARATOR, $ids);
}
$ids = $this->db->array2list($ids, 'integer');
$sql_result = $this->db->query(
'DELETE FROM ' . $this->db->table_name($this->db_groupmembers, true) .
' WHERE `contactgroup_id` = ?' .
" AND `contact_id` IN ({$ids})",
$group_id
);
return $this->db->affected_rows($sql_result);
}
/**
* Check for existing groups with the same name
*
* @param string $name Name to check
*
* @return string A group name which is unique for the current use
*/
private function unique_groupname($name)
{
$checkname = $name;
$num = 2;
$hit = false;
do {
$sql_result = $this->db->query(
'SELECT 1 FROM ' . $this->db->table_name($this->db_groups, true) .
' WHERE `del` <> 1' .
' AND `user_id` = ?' .
' AND `name` = ?',
$this->user_id,
$checkname);
// append number to make name unique
if ($hit = $this->db->fetch_array($sql_result)) {
$checkname = $name . ' ' . $num++;
}
} while ($hit);
return $checkname;
}
}
Function Calls
| None |
Stats
| MD5 | 478bd117b91f7a2d43af9aa83dd6466a |
| Eval Count | 0 |
| Decode Time | 98 ms |