https://src.bluestatic.org / isso.git / blob
summary | shortlog | log | commit | commitdiff | tree
history | raw | HEAD
Allow strings to be returned as errors in set()-based verification
[isso.git] / api.php
1 <?php
2 /*=====================================================================*\
3 || ###################################################################
4 || # Iris Studios Shared Object Framework [#]issoversion[#]
5 || # Copyright ©2002-[#]year[#] Iris Studios, Inc.
6 || #
7 || # This program is free software; you can redistribute it and/or modify
8 || # it under the terms of the GNU General Public License as published by
9 || # the Free Software Foundation; version [#]gpl[#] of the License.
10 || #
11 || # This program is distributed in the hope that it will be useful, but
12 || # WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY
13 || # or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for
14 || # more details.
15 || #
16 || # You should have received a copy of the GNU General Public License along
17 || # with this program; if not, write to the Free Software Foundation, Inc.,
18 || # 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA
19 || ###################################################################
20 \*=====================================================================*/
21
22 /**
23 * Abstract Datamanger API
24 * api.php
25 *
26 * @package ISSO
27 */
28
29 if (!defined('REQ_AUTO'))
30 {
31 /**
32 * Auto-increasing value
33 */
34 define('REQ_AUTO', -1);
35
36 /**
37 * Set by a cusotm set_*() function
38 */
39 define('REQ_SET', 2);
40
41 /**
42 * Index for cleaning type
43 */
44 define('F_TYPE', 0);
45
46 /**
47 * Index for requirement type
48 */
49 define('F_REQ', 1);
50
51 /**
52 * Index for verification type
53 */
54 define('F_VERIFY', 2);
55
56 /**
57 * Index for relation
58 */
59 define('F_RELATION', 3);
60
61 /**
62 * Relation index for file name, relative to ISSO->apppath
63 */
64 define('F_RELATION_FILE', 0);
65
66 /**
67 * Relation index for class name
68 */
69 define('F_RELATION_CLASS', 1);
70
71 /**
72 * Relation index for field-link alternate name
73 */
74 define('F_RELATION_ALTFIELD', 2);
75 }
76
77 /**
78 * Abstract API
79 *
80 * Abstract class that is used as an API base for most common database interaction
81 * schemes. Creates a simple structure that holds data and can update, delete, and
82 * insert.
83 *
84 * @author Iris Studios, Inc.
85 * @copyright Copyright ©2002 - [#]year[#], Iris Studios, Inc.
86 * @version $Revision$
87 * @package ISSO
88 *
89 */
90 class API
91 {
92 /**
93 * Registry object
94 * @var object
95 * @access protected
96 */
97 var $registry = null;
98
99 /**
100 * Fields: used for verification and sanitization
101 * NAME => array(TYPE, REQUIRED, VERIFY METHOD (:self for self-named method), RELATION => array(FILE, CLASS IN FILE, ALTERNATE FIELD NAME))
102 * @var array
103 * @access protected
104 */
105 var $fields = array();
106
107 /**
108 * Values array: sanitized and verified field values
109 * @var array
110 * @access public
111 */
112 var $values = array();
113
114 /**
115 * Fields that were manually set with set(), not by using set_existing()
116 * @var array
117 * @access private
118 */
119 var $setfields = array();
120
121 /**
122 * An array of all of the processed relations on an object
123 * @var array
124 * @access public
125 */
126 var $relations = array();
127
128 /**
129 * WHERE condition
130 * @var string
131 * @access private
132 */
133 var $condition = '';
134
135 /**
136 * The object table row; a fetched row that represents this instance
137 * @var array
138 * @access public
139 */
140 var $objdata = array();
141
142 /**
143 * Insert ID from the insert() command
144 * @var integer
145 * @access public
146 */
147 var $insertid = 0;
148
149 /**
150 * Pre- and post-action method stoppers
151 * @var array
152 * @access public
153 */
154 var $norunners = array();
155
156 /**
157 * The relations to execute on
158 * @var array
159 * @access public
160 */
161 var $dorelations = array('fetch');
162
163 /**
164 * Error list that has been generated
165 * @var array
166 * @access private
167 */
168 var $errors = array();
169
170 // ###################################################################
171 /**
172 * Constructor: cannot instantiate class directly
173 */
174 function __construct(&$registry)
175 {
176 if (!is_subclass_of($this, 'API'))
177 {
178 trigger_error('Cannot instantiate the API module directly', E_USER_ERROR);
179 }
180
181 if (!is_object($registry))
182 {
183 trigger_error('The passed registry is not an object', E_USER_ERROR);
184 }
185
186 $this->registry =& $registry;
187 }
188
189 // ###################################################################
190 /**
191 * (PHP 4) Constructor
192 */
193 function API(&$registry)
194 {
195 $this->__construct($registry);
196 }
197
198 // ###################################################################
199 /**
200 * Constructs an error for the error handler to receive
201 *
202 * @access protected
203 *
204 * @param string Error message
205 */
206 function error($message)
207 {
208 $this->errors[] = $message;
209
210 // we want to explicitly specify silence
211 if (APIError() == 'silent')
212 {
213 return;
214 }
215
216 if (!is_callable(APIError()))
217 {
218 trigger_error('No APIError() handler has been set', E_USER_WARNING);
219 }
220
221 call_user_func(APIError(), $message);
222 }
223
224 // ###################################################################
225 /**
226 * Returns the error list. This is because we don't want people mucking
227 * with the error system. It will return an empty array if there are
228 * no errors.
229 *
230 * @access public
231 *
232 * @return array Array of errors
233 */
234 function check_errors()
235 {
236 if (sizeof($this->errors) < 1)
237 {
238 return array();
239 }
240
241 return $this->errors;
242 }
243
244 // ###################################################################
245 /**
246 * Sets a value, sanitizes it, and verifies it
247 *
248 * @access public
249 *
250 * @param string Field name
251 * @param mixed Value
252 * @param bool Do clean?
253 * @param bool Do verify?
254 */
255 function set($field, $value, $doclean = true, $doverify = true)
256 {
257 if (!isset($this->fields["$field"]))
258 {
259 trigger_error('Field `' . $field . '` is not valid', E_USER_WARNING);
260 return;
261 }
262
263 $this->values["$field"] = ($doclean ? $this->registry->clean($value, $this->fields["$field"][F_TYPE]) : $value);
264
265 $this->setfields["$field"] = $field;
266
267 if (isset($this->fields["$field"][F_VERIFY]) AND $doverify)
268 {
269 if ($this->fields["$field"][F_VERIFY] == ':self')
270 {
271 $verify = $this->{"verify_$field"}($field);
272 }
273 else
274 {
275 $verify = $this->{$this->fields["$field"][F_VERIFY]}($field);
276 }
277
278 if ($verify !== true)
279 {
280 if ($verify === false)
281 {
282 $this->error(sprintf($this->registry->modules['localize']->string('Validation of %1$s failed'), $field));
283 }
284 else
285 {
286 $this->error($verify);
287 }
288 }
289 }
290 }
291
292 // ###################################################################
293 /**
294 * Sets the condition to use in the WHERE clause; if not passed, then
295 * it calculates it from the REQ_AUTO field
296 *
297 * @access public
298 *
299 * @param string WHERE conditional bit
300 */
301 function set_condition($condition = '')
302 {
303 if ($condition != '')
304 {
305 $this->condition = $condition;
306 }
307 else
308 {
309 foreach ($this->fields AS $name => $options)
310 {
311 if ($options[F_REQ] == REQ_AUTO)
312 {
313 if (!$this->values["$name"])
314 {
315 trigger_error('Cannot determine condition from the REQ_AUTO field because it is not set', E_USER_WARNING);
316 continue;
317 }
318
319 $this->condition = "$name = " . $this->prepare_field_for_sql($name);
320 }
321 }
322
323 if ($this->condition == '')
324 {
325 trigger_error('No REQ_AUTO fields are present and therefore the condition cannot be created', E_USER_WARNING);
326 }
327 }
328 }
329
330 // ###################################################################
331 /**
332 * Sets existing data into $values where it's not already present
333 *
334 * @access public
335 */
336 function set_existing()
337 {
338 static $run;
339 if ($run)
340 {
341 return;
342 }
343
344 $this->fetch();
345
346 foreach ($this->objdata AS $field => $value)
347 {
348 if (!isset($this->values["$field"]))
349 {
350 $this->values["$field"] = $value;
351 }
352 }
353
354 $run = true;
355 }
356
357 // ###################################################################
358 /**
359 * Fetches a record based on the condition
360 *
361 * @access public
362 */
363 function fetch()
364 {
365 if ($this->condition == '')
366 {
367 trigger_error('Condition is empty: cannot fetch', E_USER_ERROR);
368 }
369
370 $this->run_action_method('pre_fetch');
371
372 $result = $this->registry->modules[ISSO_DB_LAYER]->query_first("SELECT * FROM {$this->prefix}{$this->table} WHERE {$this->condition}");
373 if (!$result)
374 {
375 $this->error($this->registry->modules['localize']->string('No records were returned'));
376 return;
377 }
378
379 $this->run_action_method('post_fetch');
380
381 $this->objdata = $result;
382
383 foreach ($this->objdata AS $key => $value)
384 {
385 if (!isset($this->values["$key"]))
386 {
387 $this->values["$key"] = $value;
388 }
389 }
390
391 $this->call_relations('fetch');
392 }
393
394 // ###################################################################
395 /**
396 * Inserts a record in the database
397 *
398 * @access public
399 */
400 function insert()
401 {
402 $this->verify();
403
404 $this->run_action_method('pre_insert');
405
406 foreach ($this->setfields AS $field)
407 {
408 $fields[] = $field;
409 $values[] = $this->prepare_field_for_sql($field);
410 }
411
412 $this->registry->modules[ISSO_DB_LAYER]->query("INSERT INTO {$this->prefix}{$this->table} (" . implode(',', $fields) . ") VALUES (" . implode(',', $values) . ")");
413
414 if (strcasecmp(ISSO_DB_LAYER, 'DB_PostgreSQL') == 0)
415 {
416 foreach ($this->fields AS $field => $info)
417 {
418 if ($info[F_REQ] == REQ_AUTO)
419 {
420 $autofield = $field;
421 break;
422 }
423 }
424
425 $this->insertid = $this->registry->modules[ISSO_DB_LAYER]->insert_id($this->prefix . $this->table, $autofield);
426 }
427 else
428 {
429 $this->insertid = $this->registry->modules[ISSO_DB_LAYER]->insert_id();
430 }
431
432 $this->run_action_method('post_insert');
433 }
434
435 // ###################################################################
436 /**
437 * Updates a record in the database using the data in $vaues
438 *
439 * @access public
440 */
441 function update()
442 {
443 if ($this->condition == '')
444 {
445 trigger_error('Condition is empty: cannot fetch', E_USER_ERROR);
446 }
447
448 $this->run_action_method('pre_update');
449
450 foreach ($this->setfields AS $field)
451 {
452 $updates[] = "$field = " . $this->prepare_field_for_sql($field);
453 }
454 $updates = implode(', ', $updates);
455
456 $this->registry->modules[ISSO_DB_LAYER]->query("UPDATE {$this->prefix}{$this->table} SET $updates WHERE {$this->condition}");
457
458 $this->run_action_method('post_update');
459 }
460
461 // ###################################################################
462 /**
463 * Deletes a record
464 *
465 * @access public
466 */
467 function delete()
468 {
469 if ($this->condition == '')
470 {
471 trigger_error('Condition is empty: cannot fetch', E_USER_ERROR);
472 }
473
474 $this->set_existing();
475
476 $this->run_action_method('pre_delete');
477
478 $this->registry->modules[ISSO_DB_LAYER]->query("DELETE FROM {$this->prefix}{$this->table} WHERE {$this->condition}");
479
480 $this->run_action_method('post_delete');
481 }
482
483 // ###################################################################
484 /**
485 * Verifies that all required fields are set
486 *
487 * @access private
488 */
489 function verify()
490 {
491 foreach ($this->fields AS $name => $options)
492 {
493 if ($options[F_REQ] == REQ_YES)
494 {
495 if (!isset($this->values["$name"]))
496 {
497 $this->error(sprintf($this->registry->modules['localize']->string('Required field %1$s was not set'), $name));
498 }
499 }
500 else if ($options[F_REQ] == REQ_SET)
501 {
502 $this->{"set_$name"}();
503 }
504 }
505 }
506
507 // ###################################################################
508 /**
509 * Runs a pre- or post-action method for database commands
510 *
511 * @access private
512 *
513 * @param string Action to run
514 */
515 function run_action_method($method)
516 {
517 if (in_array($method, $this->norunners))
518 {
519 return;
520 }
521
522 $actmethod = (method_exists($this, $method) ? $this->$method() : '');
523 }
524
525 // ###################################################################
526 /**
527 * Determines if it's safe to run a relation; if so, it will return
528 * the WHERE SQL clause
529 *
530 * @access public
531 *
532 * @param string Operation to run
533 */
534 function call_relations($method)
535 {
536 if (!in_array($method, $this->dorelations))
537 {
538 return;
539 }
540
541 foreach ($this->fields AS $field => $info)
542 {
543 $value = (isset($this->values["$field"]) ? $this->values["$field"] : $this->objdata["$field"]);
544 if ($value == null OR !is_array($info[F_RELATION]))
545 {
546 continue;
547 }
548
549 if (!file_exists($this->registry->get('apppath') . $info[F_RELATION][F_RELATION_FILE]))
550 {
551 trigger_error("Could not load the relation file for field '$field'");
552 }
553
554 require_once($this->registry->get('apppath') . $info[F_RELATION][F_RELATION_FILE]);
555
556 $this->relations["$field"] = new $info[F_RELATION][F_RELATION_CLASS]($this->registry);
557 $this->relations["$field"]->set(($info[F_RELATION][F_RELATION_ALTFIELD] ? $info[F_RELATION][F_RELATION_ALTFIELD] : $field), $value);
558 $this->relations["$field"]->set_condition();
559 $this->relations["$field"]->$method();
560 }
561 }
562
563 // ###################################################################
564 /**
565 * Prepares a value for use in a SQL query; it encases and escapes
566 * strings and string-like values
567 *
568 * @access private
569 *
570 * @param string Field name
571 *
572 * @return string Prepared value entry
573 */
574 function prepare_field_for_sql($name)
575 {
576 $type = $this->fields["$name"][F_TYPE];
577
578 if ($type == TYPE_NOCLEAN OR $type == TYPE_STR OR $type == TYPE_STRUN)
579 {
580 return "'" . $this->registry->escape($this->values["$name"]) . "'";
581 }
582 else if ($type == TYPE_BOOL)
583 {
584 return ($this->values["$name"] == true ? "'1'" : "'0'");
585 }
586 else
587 {
588 return $this->values["$name"];
589 }
590 }
591
592 // ###################################################################
593 /**
594 * Verify field: not a zero value
595 *
596 * @access protected
597 */
598 function verify_nozero($field)
599 {
600 if ($this->values["$field"] == 0)
601 {
602 return false;
603 }
604
605 return true;
606 }
607
608 // ###################################################################
609 /**
610 * Verify field: not empty
611 *
612 * @access protected
613 */
614 function verify_noempty($field)
615 {
616 if (empty($this->values["$field"]))
617 {
618 return false;
619 }
620
621 return true;
622 }
623 }
624
625 // ###################################################################
626 /**
627 * Setter and getter method for the API error reporting system. Passing
628 * a name will cause the set, no arguments will cause the get.
629 *
630 * @access public
631 *
632 * @param mixed Method name in callable form
633 *
634 * @return mixed Method name in callable form
635 */
636 function APIError($new = null)
637 {
638 static $caller, $prev;
639
640 if ($new === -1)
641 {
642 $caller = $prev;
643 }
644 else if ($new !== null)
645 {
646 $prev = $caller;
647 $caller = $new;
648 }
649
650 return $caller;
651 }
652
653 /*=====================================================================*\
654 || ###################################################################
655 || # $HeadURL$
656 || # $Id$
657 || ###################################################################
658 \*=====================================================================*/
659 ?>
The PHP framework used in Blue Static's web applications that provides common functionality through shared classes.