summaryrefslogtreecommitdiff
path: root/LedgerSMB/User.pm
blob: 914bdfb9ed0b7c820d7d49a7a7292683bb6561cb (plain) 
    

  1. #=====================================================================
    2. 

  2. # LedgerSMB
    3. 

  3. # Small Medium Business Accounting software
    4. 

  4. # http://www.ledgersmb.org/
    5. 

  5. #
    6. 

  6. # Copyright (C) 2006
    7. 

  7. # This work contains copyrighted information from a number of sources all used
    8. 

  8. # with permission.
    9. 

  9. #
    10. 

  10. # This file contains source code included with or based on SQL-Ledger which
    11. 

  11. # is Copyright Dieter Simader and DWS Systems Inc. 2000-2005 and licensed
    12. 

  12. # under the GNU General Public License version 2 or, at your option, any later
    13. 

  13. # version.  For a full list including contact information of contributors,
    14. 

  14. # maintainers, and copyright holders, see the CONTRIBUTORS file.
    15. 

  15. #
    16. 

  16. # Original Copyright Notice from SQL-Ledger 2.6.17 (before the fork):
    17. 

  17. # Copyright (C) 2000
    18. 

  18. #
    19. 

  19. #  Author: DWS Systems Inc.
    20. 

  20. #     Web: http://www.sql-ledger.org
    21. 

  21. #
    22. 

  22. #  Contributors: Jim Rawlings <jim@your-dba.com>
    23. 

  23. #
    24. 

  24. #======================================================================
    25. 

  25. #
    26. 

  26. # This file has undergone whitespace cleanup.
    27. 

  27. #
    28. 

  28. #======================================================================
    29. 

  29. #
    30. 

  30. # user related functions
    31. 

  31. #
    32. 

  32. #=====================================================================
    33. 

  33. 

  34. package LedgerSMB::User;
    35. 

  35. use LedgerSMB::Sysconfig;
    36. 

  36. use LedgerSMB::Session;
    37. 

  37. use Data::Dumper;
    38. 

  38. 

  39. sub new {
    40. 

  40. 

  41.     my ( $type, $login ) = @_;
    42. 

  42.     my $self = {};
    43. 

  43. 

  44.     if ( $login ne "" ) {
    45. 

  45. 

  46.         # use central db
    47. 

  47.         my $dbh = ${LedgerSMB::Sysconfig::GLOBALDBH};
    48. 

  48. 

  49.         # for now, this is querying the table directly... ugly
    50. 

  50.         my $fetchUserPrefs = $dbh->prepare(
    51. 

  51.             "SELECT acs, address, businessnumber,
    52. 

  52.                                                    company, countrycode, currency,
    53. 

  53.                                                    dateformat, dbdriver, dbhost, dbname, 
    54. 

  54.                                                    dboptions, dbpasswd, dbport, dbuser, 
    55. 

  55.                                                    email, fax, menuwidth, name, numberformat, 
    56. 

  56.                                                    password, print, printer, role, sid, 
    57. 

  57.                                                    signature, stylesheet, tel, templates, 
    58. 

  58.                                                    timeout, vclimit, u.username
    59. 

  59.                                               FROM users_conf as uc, users as u
    60. 

  60.                                              WHERE u.username =  ?
    61. 

  61.                                                AND u.id = uc.id;"
    62. 

  62.         );
    63. 

  63. 

  64.         $fetchUserPrefs->execute($login);
    65. 

  65. 

  66.         my $userHashRef = $fetchUserPrefs->fetchrow_hashref;
    67. 

  67. 

  68.         while ( my ( $key, $value ) = each( %{$userHashRef} ) ) {
    69. 

  69.             $self->{$key} = $value;
    70. 

  70.         }
    71. 

  71. 

  72.         chomp( $self->{dbport} );
    73. 

  73.         chomp( $self->{dbname} );
    74. 

  74.         chomp( $self->{dbhost} );
    75. 

  75. 

  76.         $self->{dbconnect} =
    77. 

  77.             'dbi:Pg:dbname='
    78. 

  78.           . $self->{dbname}
    79. 

  79.           . ';host='
    80. 

  80.           . $self->{dbhost}
    81. 

  81.           . ';port='
    82. 

  82.           . $self->{dbport};
    83. 

  83. 

  84.         if ( $self->{username} ) {
    85. 

  85.             $self->{login} = $login;
    86. 

  86.         }
    87. 

  87.     }
    88. 

  88. 

  89.     bless $self, $type;
    90. 

  90. }
    91. 

  91. 

  92. sub country_codes {
    93. 

  93.     use Locale::Country;
    94. 

  94.     use Locale::Language;
    95. 

  95. 

  96.     my %cc = ();
    97. 

  97. 

  98.     # scan the locale directory and read in the LANGUAGE files
    99. 

  99.     opendir DIR, "${LedgerSMB::Sysconfig::localepath}";
    100. 

  100. 

  101.     my @dir = grep !/^\..*$/, readdir DIR;
    102. 

  102. 

  103.     foreach my $dir (@dir) {
    104. 

  104.         $dir = substr( $dir, 0, -3 );
    105. 

  105.         $cc{$dir} = code2language( substr( $dir, 0, 2 ) );
    106. 

  106.         $cc{$dir} .= ( "/" . code2country( substr( $dir, 3, 2 ) ) )
    107. 

  107.           if length($dir) > 2;
    108. 

  108.         $cc{$dir} .= ( " " . substr( $dir, 6 ) ) if length($dir) > 5;
    109. 

  109.     }
    110. 

  110. 

  111.     closedir(DIR);
    112. 

  112. 

  113.     %cc;
    114. 

  114. 

  115. }
    116. 

  116. 

  117. sub fetch_config {
    118. 

  118. 

  119.     #I'm hoping that this function will go and is a temporary bridge
    120. 

  120.     #until we get rid of %myconfig elsewhere in the code
    121. 

  121. 

  122.     my ( $self, $login ) = @_;
    123. 

  123. 

  124.     if ( $login ne "" ) {
    125. 

  125. 

  126.         # use central db
    127. 

  127.         my $dbh = ${LedgerSMB::Sysconfig::GLOBALDBH};
    128. 

  128. 

  129.         # for now, this is querying the table directly... ugly
    130. 

  130.         my $fetchUserPrefs = $dbh->prepare(
    131. 

  131.             "SELECT acs, address, businessnumber,
    132. 

  132.                                                    company, countrycode, currency,
    133. 

  133.                                                    dateformat, dbdriver, dbhost, dbname, 
    134. 

  134.                                                    dboptions, dbpasswd, dbport, dbuser, 
    135. 

  135.                                                    email, fax, menuwidth, name, numberformat, 
    136. 

  136.                                                    password, print, printer, role, sid, 
    137. 

  137.                                                    signature, stylesheet, tel, templates, 
    138. 

  138.                                                    timeout, vclimit, u.username
    139. 

  139.                                               FROM users_conf as uc, users as u
    140. 

  140.                                              WHERE u.username =  ?
    141. 

  141.                                                AND u.id = uc.id;"
    142. 

  142.         );
    143. 

  143. 

  144.         $fetchUserPrefs->execute($login);
    145. 

  145. 

  146.         my $userHashRef = $fetchUserPrefs->fetchrow_hashref;
    147. 

  147. 

  148.         while ( my ( $key, $value ) = each( %{$userHashRef} ) ) {
    149. 

  149.             $myconfig{$key} = $value;
    150. 

  150.         }
    151. 

  151. 

  152.         chomp( $myconfig{'dbport'} );
    153. 

  153.         chomp( $myconfig{'dbname'} );
    154. 

  154.         chomp( $myconfig{'dbhost'} );
    155. 

  155. 

  156.         $myconfig{'login'} = $login;
    157. 

  157.         $myconfig{'dbconnect'} =
    158. 

  158.             'dbi:Pg:dbname='
    159. 

  159.           . $myconfig{'dbname'}
    160. 

  160.           . ';host='
    161. 

  161.           . $myconfig{'dbhost'}
    162. 

  162.           . ';port='
    163. 

  163.           . $myconfig{'dbport'};
    164. 

  164.     }
    165. 

  165. 

  166.     return \%myconfig;
    167. 

  167. }
    168. 

  168. 

  169. sub login {
    170. 

  170. 

  171.     my ( $self, $form ) = @_;
    172. 

  172. 

  173.     my $rc = -1;
    174. 

  174. 

  175.     if ( $self->{login} ne "" ) {
    176. 

  176.         if (
    177. 

  177.             !Session::password_check(
    178. 

  178.                 $form, $form->{login}, $form->{password}
    179. 

  179.             )
    180. 

  180.           )
    181. 

  181.         {
    182. 

  182.             return -1;
    183. 

  183.         }
    184. 

  184. 

  185.         #this is really dumb, but %myconfig will have to stay until 1.3
    186. 

  186.         while ( my ( $key, $value ) = each( %{$self} ) ) {
    187. 

  187.             $myconfig{$key} = $value;
    188. 

  188.         }
    189. 

  189. 

  190.         # check if database is down
    191. 

  191.         my $dbh =
    192. 

  192.           DBI->connect( $myconfig{dbconnect}, $myconfig{dbuser},
    193. 

  193.             $myconfig{dbpasswd} )
    194. 

  194.           or $self->error( __FILE__ . ':' . __LINE__ . ': ' . $DBI::errstr );
    195. 

  195. 

  196.         # we got a connection, check the version
    197. 

  197.         my $query = qq|
    198. 

  198.             SELECT value FROM defaults 
    199. 

  199.              WHERE setting_key = 'version'|;
    200. 

  200.         my $sth = $dbh->prepare($query);
    201. 

  201.         $sth->execute || $form->dberror( __FILE__ . ':' . __LINE__ . $query );
    202. 

  202. 

  203.         my ($dbversion) = $sth->fetchrow_array;
    204. 

  204.         $sth->finish;
    205. 

  205. 

  206.         # add login to employee table if it does not exist
    207. 

  207.         # no error check for employee table, ignore if it does not exist
    208. 

  208.         my $login = $self->{login};
    209. 

  209.         $login =~ s/@.*//;
    210. 

  210.         $query = qq|SELECT id FROM employees WHERE login = ?|;
    211. 

  211.         $sth   = $dbh->prepare($query);
    212. 

  212.         $sth->execute($login);
    213. 

  213. 

  214.         my ($id) = $sth->fetchrow_array;
    215. 

  215.         $sth->finish;
    216. 

  216. 

  217.         if ( !$id ) {
    218. 

  218.             my ($employeenumber) =
    219. 

  219.               $form->update_defaults( \%myconfig, "employeenumber", $dbh );
    220. 

  220. 

  221.             $query = qq|
    222. 

  222.                 INSERT INTO employees 
    223. 

  223.                             (login, employeenumber, name, 
    224. 

  224.                             workphone, role)
    225. 

  225.                      VALUES (?, ?, ?, ?, ?)|;
    226. 

  226.             $sth = $dbh->prepare($query);
    227. 

  227.             $sth->execute(
    228. 

  228.                 $login,         $employeenumber, $myconfig{name},
    229. 

  229.                 $myconfig{tel}, $myconfig{role}
    230. 

  230.             );
    231. 

  231.         }
    232. 

  232.         $dbh->disconnect;
    233. 

  233. 

  234.         $rc = 0;
    235. 

  235. 

  236.         if ( $form->{dbversion} ne $dbversion ) {
    237. 

  237.             $rc = -3;
    238. 

  238.             $dbupdate =
    239. 

  239.               ( calc_version($dbversion) < calc_version( $form->{dbversion} ) );
    240. 

  240.         }
    241. 

  241. 

  242.         if ($dbupdate) {
    243. 

  243.             $rc = -4;
    244. 

  244. 

  245.             # if DB2 bale out
    246. 

  246.             if ( $myconfig{dbdriver} eq 'DB2' ) {
    247. 

  247.                 $rc = -2;
    248. 

  248.             }
    249. 

  249.         }
    250. 

  250.     }
    251. 

  251. 

  252.     $rc;
    253. 

  253. 

  254. }
    255. 

  255. 

  256. sub check_recurring {
    257. 

  257.     my ( $self, $form ) = @_;
    258. 

  258. 

  259.     my $dbh =
    260. 

  260.       DBI->connect( $self->{dbconnect}, $self->{dbuser}, $self->{dbpasswd} )
    261. 

  261.       or $form->dberror( __FILE__ . ':' . __LINE__ );
    262. 

  262. 

  263.     my $query = qq|
    264. 

  264.         SELECT count(*) FROM recurring
    265. 

  265.          WHERE enddate >= current_date AND nextdate <= current_date|;
    266. 

  266.     ($_) = $dbh->selectrow_array($query);
    267. 

  267. 

  268.     $dbh->disconnect;
    269. 

  269. 

  270.     $_;
    271. 

  271. 

  272. }
    273. 

  273. 

  274. sub dbconnect_vars {
    275. 

  275.     my ( $form, $db ) = @_;
    276. 

  276. 

  277.     my %dboptions = (
    278. 

  278.         'Pg' => {
    279. 

  279.             'yy-mm-dd' => 'set DateStyle to \'ISO\'',
    280. 

  280.             'mm/dd/yy' => 'set DateStyle to \'SQL, US\'',
    281. 

  281.             'mm-dd-yy' => 'set DateStyle to \'POSTGRES, US\'',
    282. 

  282.             'dd/mm/yy' => 'set DateStyle to \'SQL, EUROPEAN\'',
    283. 

  283.             'dd-mm-yy' => 'set DateStyle to \'POSTGRES, EUROPEAN\'',
    284. 

  284.             'dd.mm.yy' => 'set DateStyle to \'GERMAN\''
    285. 

  285.         }
    286. 

  286.     );
    287. 

  287. 

  288.     $form->{dboptions} = $dboptions{ $form->{dbdriver} }{ $form->{dateformat} };
    289. 

  289. 

  290.     $form->{dbconnect} = "dbi:$form->{dbdriver}:dbname=$db";
    291. 

  291.     $form->{dbconnect} .= ";host=$form->{dbhost}";
    292. 

  292.     $form->{dbconnect} .= ";port=$form->{dbport}";
    293. 

  293. 

  294. }
    295. 

  295. 

  296. sub dbdrivers {
    297. 

  297. 

  298.     my @drivers = DBI->available_drivers();
    299. 

  299. 

  300.     #  return (grep { /(Pg|Oracle|DB2)/ } @drivers);
    301. 

  301.     return ( grep { /Pg$/ } @drivers );
    302. 

  302. 

  303. }
    304. 

  304. 

  305. sub dbsources {
    306. 

  306.     my ( $self, $form ) = @_;
    307. 

  307. 

  308.     my @dbsources = ();
    309. 

  309.     my ( $sth, $query );
    310. 

  310. 

  311.     $form->{dbdefault} = $form->{dbuser} unless $form->{dbdefault};
    312. 

  312.     $form->{sid} = $form->{dbdefault};
    313. 

  313.     &dbconnect_vars( $form, $form->{dbdefault} );
    314. 

  314. 

  315.     my $dbh =
    316. 

  316.       DBI->connect( $form->{dbconnect}, $form->{dbuser}, $form->{dbpasswd} )
    317. 

  317.       or $form->dberror( __FILE__ . ':' . __LINE__ );
    318. 

  318. 

  319.     if ( $form->{dbdriver} eq 'Pg' ) {
    320. 

  320. 

  321.         $query = qq|SELECT datname FROM pg_database|;
    322. 

  322.         $sth   = $dbh->prepare($query);
    323. 

  323.         $sth->execute || $form->dberror( __FILE__ . ':' . __LINE__ . $query );
    324. 

  324. 

  325.         while ( my ($db) = $sth->fetchrow_array ) {
    326. 

  326. 

  327.             if ( $form->{only_acc_db} ) {
    328. 

  328. 

  329.                 next if ( $db =~ /^template/ );
    330. 

  330. 

  331.                 &dbconnect_vars( $form, $db );
    332. 

  332.                 my $dbh =
    333. 

  333.                   DBI->connect( $form->{dbconnect}, $form->{dbuser},
    334. 

  334.                     $form->{dbpasswd} )
    335. 

  335.                   or $form->dberror( __FILE__ . ':' . __LINE__ );
    336. 

  336. 

  337.                 $query = qq|
    338. 

  338.                     SELECT tablename FROM pg_tables
    339. 

  339.                      WHERE tablename = 'defaults'
    340. 

  340.                        AND tableowner = ?|;
    341. 

  341.                 my $sth = $dbh->prepare($query);
    342. 

  342.                 $sth->execute( $form->{dbuser} )
    343. 

  343.                   || $form->dberror( __FILE__ . ':' . __LINE__ . $query );
    344. 

  344. 

  345.                 if ( $sth->fetchrow_array ) {
    346. 

  346.                     push @dbsources, $db;
    347. 

  347.                 }
    348. 

  348.                 $sth->finish;
    349. 

  349.                 $dbh->disconnect;
    350. 

  350.                 next;
    351. 

  351.             }
    352. 

  352.             push @dbsources, $db;
    353. 

  353.         }
    354. 

  354.     }
    355. 

  355. 

  356.     $sth->finish;
    357. 

  357.     $dbh->disconnect;
    358. 

  358. 

  359.     return @dbsources;
    360. 

  360. 

  361. }
    362. 

  362. 

  363. sub dbcreate {
    364. 

  364.     my ( $self, $form ) = @_;
    365. 

  365. 

  366.     my %dbcreate =
    367. 

  367.       ( 'Pg' => qq|CREATE DATABASE "$form->{db}" WITH ENCODING = 'UNICODE'| );
    368. 

  368. 

  369.     $form->{sid} = $form->{dbdefault};
    370. 

  370.     &dbconnect_vars( $form, $form->{dbdefault} );
    371. 

  371. 

  372.     # The below line connects to Template1 or another template file in order
    373. 

  373.     # to create the db.  One must disconnect and reconnect later.
    374. 

  374.     if ( $form->{dbsuperuser} ) {
    375. 

  375.         my $superdbh =
    376. 

  376.           DBI->connect( $form->{dbconnect}, $form->{dbsuperuser},
    377. 

  377.             $form->{dbsuperpasswd} )
    378. 

  378.           or $form->dberror( __FILE__ . ':' . __LINE__ );
    379. 

  379.         my $query = qq|$dbcreate{$form->{dbdriver}}|;
    380. 

  380.         $superdbh->do($query)
    381. 

  381.           || $form->dberror( __FILE__ . ':' . __LINE__ . $query );
    382. 

  382. 

  383.         $superdbh->disconnect;
    384. 

  384.     }
    385. 

  385. 

  386.     #Reassign for the work below
    387. 

  387. 

  388.     &dbconnect_vars( $form, $form->{db} );
    389. 

  389. 

  390.     my $dbh =
    391. 

  391.       DBI->connect( $form->{dbconnect}, $form->{dbuser}, $form->{dbpasswd} )
    392. 

  392.       or $form->dberror( __FILE__ . ':' . __LINE__ );
    393. 

  393.     if ( $form->{dbsuperuser} ) {
    394. 

  394.         my $superdbh =
    395. 

  395.           DBI->connect( $form->{dbconnect}, $form->{dbsuperuser},
    396. 

  396.             $form->{dbsuperpasswd} )
    397. 

  397.           or $form->dberror( __FILE__ . ':' . __LINE__ );
    398. 

  398. 

  399.         # JD: We need to check for plpgsql,
    400. 

  400.         # if it isn't there create it, if we can't error
    401. 

  401.         # Good chance I will have to do this twice as I get
    402. 

  402.         # used to the way the code is structured
    403. 

  403. 

  404.         my %langcreate = ( 'Pg' => qq|CREATE LANGUAGE plpgsql| );
    405. 

  405.         my $query = qq|$langcreate{$form->{dbdriver}}|;
    406. 

  406.         $superdbh->do($query);
    407. 

  407.         $superdbh->disconnect;
    408. 

  408.     }
    409. 

  409. 

  410.     # create the tables
    411. 

  411.     my $dbdriver =
    412. 

  412.       ( $form->{dbdriver} =~ /Pg/ )
    413. 

  413.       ? 'Pg'
    414. 

  414.       : $form->{dbdriver};
    415. 

  415. 

  416.     my $filename = qq|sql/Pg-database.sql|;
    417. 

  417.     $self->process_query( $form, $dbh, $filename );
    418. 

  418. 

  419.     # load gifi
    420. 

  420.     ($filename) = split /_/, $form->{chart};
    421. 

  421.     $filename =~ s/_//;
    422. 

  422.     $self->process_query( $form, $dbh, "sql/${filename}-gifi.sql" );
    423. 

  423. 

  424.     # load chart of accounts
    425. 

  425.     $filename = qq|sql/$form->{chart}-chart.sql|;
    426. 

  426.     $self->process_query( $form, $dbh, $filename );
    427. 

  427. 

  428.     # create custom tables and functions
    429. 

  429.     my $item;
    430. 

  430.     foreach $item (qw(tables functions)) {
    431. 

  431.         $filename = "sql/${dbdriver}-custom_${item}.sql";
    432. 

  432.         if ( -f "$filename" ) {
    433. 

  433.             $self->process_query( $form, $dbh, $filename );
    434. 

  434.         }
    435. 

  435.     }
    436. 

  436. 

  437.     $dbh->disconnect;
    438. 

  438. 

  439. }
    440. 

  440. 

  441. sub process_query {
    442. 

  442.     my ( $self, $form, $dbh, $filename ) = @_;
    443. 

  443. 

  444.     return unless ( -f $filename );
    445. 

  445. 

  446.     $ENV{PGPASSWORD} = $form->{dbpasswd};
    447. 

  447.     $ENV{PGUSER}     = $form->{dbuser};
    448. 

  448.     $ENV{PGDATABASE} = $form->{db};
    449. 

  449.     $ENV{PGHOST}     = $form->{dbhost};
    450. 

  450.     $ENV{PGPORT}     = $form->{pgport};
    451. 

  451. 

  452.     $results = `psql -f $filename 2>&1`;
    453. 

  453.     if ($?) {
    454. 

  454.         $form->error($!);
    455. 

  455.     }
    456. 

  456.     elsif ( $results =~ /error/i ) {
    457. 

  457.         $form->error($results);
    458. 

  458.     }
    459. 

  459. }
    460. 

  460. 

  461. sub dbdelete {
    462. 

  462.     my ( $self, $form ) = @_;
    463. 

  463. 

  464.     $form->{sid} = $form->{dbdefault};
    465. 

  465.     &dbconnect_vars( $form, $form->{dbdefault} );
    466. 

  466.     my $dbh =
    467. 

  467.       DBI->connect( $form->{dbconnect}, $form->{dbuser}, $form->{dbpasswd} )
    468. 

  468.       or $form->dberror( __FILE__ . ':' . __LINE__ );
    469. 

  469.     my $query = qq|DROP DATABASE "$form->{db}"|;
    470. 

  470.     $dbh->do($query) || $form->dberror( __FILE__ . ':' . __LINE__ . $query );
    471. 

  471. 

  472.     $dbh->disconnect;
    473. 

  473. 

  474. }
    475. 

  475. 

  476. sub dbsources_unused {
    477. 

  477.     my ( $self, $form, $memfile ) = @_;
    478. 

  478. 

  479.     my @dbexcl    = ();
    480. 

  480.     my @dbsources = ();
    481. 

  481. 

  482.     $form->error( __FILE__ . ':' . __LINE__ . ": $memfile locked!" )
    483. 

  483.       if ( -f "${memfile}.LCK" );
    484. 

  484. 

  485.     # open members file
    486. 

  486.     open( FH, '<', "$memfile" )
    487. 

  487.       or $form->error( __FILE__ . ':' . __LINE__ . ": $memfile : $!" );
    488. 

  488. 

  489.     while (<FH>) {
    490. 

  490.         if (/^dbname=/) {
    491. 

  491.             my ( $null, $item ) = split /=/;
    492. 

  492.             push @dbexcl, $item;
    493. 

  493.         }
    494. 

  494.     }
    495. 

  495. 

  496.     close FH;
    497. 

  497. 

  498.     $form->{only_acc_db} = 1;
    499. 

  499.     my @db = &dbsources( "", $form );
    500. 

  500. 

  501.     push @dbexcl, $form->{dbdefault};
    502. 

  502. 

  503.     foreach $item (@db) {
    504. 

  504.         unless ( grep /$item$/, @dbexcl ) {
    505. 

  505.             push @dbsources, $item;
    506. 

  506.         }
    507. 

  507.     }
    508. 

  508. 

  509.     return @dbsources;
    510. 

  510. 

  511. }
    512. 

  512. 

  513. sub dbneedsupdate {
    514. 

  514.     my ( $self, $form ) = @_;
    515. 

  515. 

  516.     my %dbsources = ();
    517. 

  517.     my $query;
    518. 

  518. 

  519.     $form->{sid} = $form->{dbdefault};
    520. 

  520.     &dbconnect_vars( $form, $form->{dbdefault} );
    521. 

  521. 

  522.     my $dbh =
    523. 

  523.       DBI->connect( $form->{dbconnect}, $form->{dbuser}, $form->{dbpasswd} )
    524. 

  524.       or $form->dberror( __FILE__ . ':' . __LINE__ );
    525. 

  525. 

  526.     if ( $form->{dbdriver} =~ /Pg/ ) {
    527. 

  527. 

  528.         $query = qq|
    529. 

  529.             SELECT d.datname 
    530. 

  530.               FROM pg_database d, pg_user u
    531. 

  531.              WHERE d.datdba = u.usesysid
    532. 

  532.                    AND u.usename = ?|;
    533. 

  533.         my $sth = $dbh->prepare($query);
    534. 

  534.         $sth->execute( $form->{dbuser} )
    535. 

  535.           || $form->dberror( __FILE__ . ':' . __LINE__ . $query );
    536. 

  536. 

  537.         while ( my ($db) = $sth->fetchrow_array ) {
    538. 

  538. 

  539.             next if ( $db =~ /^template/ );
    540. 

  540. 

  541.             &dbconnect_vars( $form, $db );
    542. 

  542. 

  543.             my $dbh =
    544. 

  544.               DBI->connect( $form->{dbconnect}, $form->{dbuser},
    545. 

  545.                 $form->{dbpasswd} )
    546. 

  546.               or $form->dberror( __FILE__ . ':' . __LINE__ );
    547. 

  547. 

  548.             $query = qq|
    549. 

  549.                 SELECT tablename 
    550. 

  550.                   FROM pg_tables
    551. 

  551.                  WHERE tablename = 'defaults'|;
    552. 

  552.             my $sth = $dbh->prepare($query);
    553. 

  553.             $sth->execute
    554. 

  554.               || $form->dberror( __FILE__ . ':' . __LINE__ . $query );
    555. 

  555. 

  556.             if ( $sth->fetchrow_array ) {
    557. 

  557.                 $query = qq|
    558. 

  558.                     SELECT value FROM defaults
    559. 

  559.                      WHERE setting_key = 'version'|;
    560. 

  560.                 my $sth = $dbh->prepare($query);
    561. 

  561.                 $sth->execute;
    562. 

  562. 

  563.                 if ( my ($version) = $sth->fetchrow_array ) {
    564. 

  564.                     $dbsources{$db} = $version;
    565. 

  565.                 }
    566. 

  566.                 $sth->finish;
    567. 

  567.             }
    568. 

  568.             $sth->finish;
    569. 

  569.             $dbh->disconnect;
    570. 

  570.         }
    571. 

  571.         $sth->finish;
    572. 

  572.     }
    573. 

  573. 

  574.     $dbh->disconnect;
    575. 

  575. 

  576.     %dbsources;
    577. 

  577. 

  578. }
    579. 

  579. 

  580. sub dbupdate {
    581. 

  581.     my ( $self, $form ) = @_;
    582. 

  582. 

  583.     $form->{sid} = $form->{dbdefault};
    584. 

  584. 

  585.     my @upgradescripts = ();
    586. 

  586.     my $query;
    587. 

  587.     my $rc = -2;
    588. 

  588. 

  589.     if ( $form->{dbupdate} ) {
    590. 

  590. 

  591.         # read update scripts into memory
    592. 

  592.         opendir SQLDIR, "sql/."
    593. 

  593.           or $form->error( __FILE__ . ':' . __LINE__ . ': ' . $! );
    594. 

  594.         @upgradescripts =
    595. 

  595.           sort script_version grep /$form->{dbdriver}-upgrade-.*?\.sql$/,
    596. 

  596.           readdir SQLDIR;
    597. 

  597.         closedir SQLDIR;
    598. 

  598.     }
    599. 

  599. 

  600.     foreach my $db ( split / /, $form->{dbupdate} ) {
    601. 

  601. 

  602.         next unless $form->{$db};
    603. 

  603. 

  604.         # strip db from dataset
    605. 

  605.         $db =~ s/^db//;
    606. 

  606.         &dbconnect_vars( $form, $db );
    607. 

  607. 

  608.         my $dbh = DBI->connect(
    609. 

  609.             $form->{dbconnect}, $form->{dbuser},
    610. 

  610.             $form->{dbpasswd}, { AutoCommit => 0 }
    611. 

  611.         ) or $form->dberror( __FILE__ . ':' . __LINE__ );
    612. 

  612. 

  613.         # check version
    614. 

  614.         $query = qq|
    615. 

  615.             SELECT value FROM defaults
    616. 

  616.              WHERE setting_key = 'version'|;
    617. 

  617.         my $sth = $dbh->prepare($query);
    618. 

  618. 

  619.         # no error check, let it fall through
    620. 

  620.         $sth->execute;
    621. 

  621. 

  622.         my $version = $sth->fetchrow_array;
    623. 

  623.         $sth->finish;
    624. 

  624. 

  625.         next unless $version;
    626. 

  626. 

  627.         $version = calc_version($version);
    628. 

  628.         my $dbversion = calc_version( $form->{dbversion} );
    629. 

  629. 

  630.         foreach my $upgradescript (@upgradescripts) {
    631. 

  631.             my $a = $upgradescript;
    632. 

  632.             $a =~ s/(^$form->{dbdriver}-upgrade-|\.sql$)//g;
    633. 

  633. 

  634.             my ( $mindb, $maxdb ) = split /-/, $a;
    635. 

  635.             $mindb = calc_version($mindb);
    636. 

  636.             $maxdb = calc_version($maxdb);
    637. 

  637. 

  638.             next if ( $version >= $maxdb );
    639. 

  639. 

  640.             # exit if there is no upgrade script or version == mindb
    641. 

  641.             last if ( $version < $mindb || $version >= $dbversion );
    642. 

  642. 

  643.             # apply upgrade
    644. 

  644.             $self->process_query( $form, $dbh, "sql/$upgradescript" );
    645. 

  645.             $dbh->commit;
    646. 

  646.             $version = $maxdb;
    647. 

  647. 

  648.         }
    649. 

  649. 

  650.         $rc = 0;
    651. 

  651.         $dbh->disconnect;
    652. 

  652. 

  653.     }
    654. 

  654. 

  655.     $rc;
    656. 

  656. 

  657. }
    658. 

  658. 

  659. sub calc_version {
    660. 

  660. 

  661.     my @v = split /\./, $_[0];
    662. 

  662.     my $version = 0;
    663. 

  663.     my $i;
    664. 

  664. 

  665.     for ( $i = 0 ; $i <= $#v ; $i++ ) {
    666. 

  666.         $version *= 1000;
    667. 

  667.         $version += $v[$i];
    668. 

  668.     }
    669. 

  669. 

  670.     return $version;
    671. 

  671. 

  672. }
    673. 

  673. 

  674. sub script_version {
    675. 

  675.     my ( $my_a, $my_b ) = ( $a, $b );
    676. 

  676. 

  677.     my ( $a_from, $a_to, $b_from, $b_to );
    678. 

  678.     my ( $res_a, $res_b, $i );
    679. 

  679. 

  680.     $my_a =~ s/.*-upgrade-//;
    681. 

  681.     $my_a =~ s/.sql$//;
    682. 

  682.     $my_b =~ s/.*-upgrade-//;
    683. 

  683.     $my_b =~ s/.sql$//;
    684. 

  684.     ( $a_from, $a_to ) = split( /-/, $my_a );
    685. 

  685.     ( $b_from, $b_to ) = split( /-/, $my_b );
    686. 

  686. 

  687.     $res_a = calc_version($a_from);
    688. 

  688.     $res_b = calc_version($b_from);
    689. 

  689. 

  690.     if ( $res_a == $res_b ) {
    691. 

  691.         $res_a = calc_version($a_to);
    692. 

  692.         $res_b = calc_version($b_to);
    693. 

  693.     }
    694. 

  694. 

  695.     return $res_a <=> $res_b;
    696. 

  696. 

  697. }
    698. 

  698. 

  699. sub save_member {
    700. 

  700. 

  701.     my ($self) = @_;
    702. 

  702. 

  703.     # replace \r\n with \n
    704. 

  704.     for (qw(address signature)) { $self->{$_} =~ s/\r?\n/\\n/g }
    705. 

  705. 

  706.     # use central db
    707. 

  707.     my $dbh = ${LedgerSMB::Sysconfig::GLOBALDBH};
    708. 

  708. 

  709.     #check to see if the user exists already
    710. 

  710.     my $userCheck = $dbh->prepare("SELECT id FROM users WHERE username = ?");
    711. 

  711.     $userCheck->execute( $self->{login} );
    712. 

  712.     my ($userID) = $userCheck->fetchrow_array;
    713. 

  713. 

  714.     if ( !$self->{dbhost} ) {
    715. 

  715.         $self->{dbhost} = 'localhost';
    716. 

  716.     }
    717. 

  717.     if ( !$self->{dbport} ) {
    718. 

  718.         $self->{dbport} = '5432';
    719. 

  719.     }
    720. 

  720. 

  721.     my $userConfExists = 0;
    722. 

  722. 

  723.     if ($userID) {
    724. 

  724. 

  725.         #got an id, check to see if it's in the users_conf table
    726. 

  726.         my $userConfCheck =
    727. 

  727.           $dbh->prepare("SELECT password, 1 FROM users_conf WHERE id = ?");
    728. 

  728.         $userConfCheck->execute($userID);
    729. 

  729. 

  730.         ( $oldPassword, $userConfExists ) = $userConfCheck->fetchrow_array;
    731. 

  731.     }
    732. 

  732.     else {
    733. 

  733.         my $userConfAdd = $dbh->prepare("SELECT create_user(?);");
    734. 

  734.         $userConfAdd->execute( $self->{login} );
    735. 

  735.         ($userID) = $userConfAdd->fetchrow_array;
    736. 

  736.     }
    737. 

  737. 

  738.     if ($userConfExists) {
    739. 

  739. 

  740.         # for now, this is updating the table directly... ugly
    741. 

  741.         my $userConfUpdate = $dbh->prepare(
    742. 

  742.             "UPDATE users_conf
    743. 

  743.                                                SET acs = ?, address = ?, businessnumber = ?,
    744. 

  744.                                                    company = ?, countrycode = ?, currency = ?,
    745. 

  745.                                                    dateformat = ?, dbdriver = ?,
    746. 

  746.                                                    dbhost = ?, dbname = ?, dboptions = ?, 
    747. 

  747.                                                    dbpasswd = ?, dbport = ?, dbuser = ?,
    748. 

  748.                                                    email = ?, fax = ?, menuwidth = ?,
    749. 

  749.                                                    name = ?, numberformat = ?,
    750. 

  750.                                                    print = ?, printer = ?, role = ?,
    751. 

  751.                                                    sid = ?, signature = ?, stylesheet = ?,
    752. 

  752.                                                    tel = ?, templates = ?, timeout = ?,
    753. 

  753.                                                    vclimit = ?
    754. 

  754.                                              WHERE id = ?;"
    755. 

  755.         );
    756. 

  756. 

  757.         $userConfUpdate->execute(
    758. 

  758.             $self->{acs},            $self->{address},
    759. 

  759.             $self->{businessnumber}, $self->{company},
    760. 

  760.             $self->{countrycode},    $self->{currency},
    761. 

  761.             $self->{dateformat},     $self->{dbdriver},
    762. 

  762.             $self->{dbhost},         $self->{dbname},
    763. 

  763.             $self->{dboptions},      $self->{dbpasswd},
    764. 

  764.             $self->{dbport},         $self->{dbuser},
    765. 

  765.             $self->{email},          $self->{fax},
    766. 

  766.             $self->{menuwidth},      $self->{name},
    767. 

  767.             $self->{numberformat},   $self->{print},
    768. 

  768.             $self->{printer},        $self->{role},
    769. 

  769.             $self->{sid},            $self->{signature},
    770. 

  770.             $self->{stylesheet},     $self->{tel},
    771. 

  771.             $self->{templates},      $self->{timeout},
    772. 

  772.             $self->{vclimit},        $userID
    773. 

  773.         );
    774. 

  774. 

  775.         if ( $oldPassword ne $self->{password} ) {
    776. 

  776. 

  777.        # if they're supplying a 32 char password that matches their old password
    778. 

  778.        # assume they don't want to change passwords
    779. 

  779. 

  780.             $userConfUpdate = $dbh->prepare(
    781. 

  781.                 "UPDATE users_conf
    782. 

  782.                                                 SET password = md5(?)
    783. 

  783.                                               WHERE id = ?"
    784. 

  784.             );
    785. 

  785. 

  786.             $userConfUpdate->execute( $self->{password}, $userID );
    787. 

  787. 

  788.         }
    789. 

  789. 

  790.     }
    791. 

  791.     else {
    792. 

  792. 

  793.         my $userConfInsert = $dbh->prepare(
    794. 

  794.             "INSERT INTO users_conf(acs, address, businessnumber,
    795. 

  795.                                                                    company, countrycode, currency,
    796. 

  796.                                                                    dateformat, dbdriver,
    797. 

  797.                                                                    dbhost, dbname, dboptions, dbpasswd,
    798. 

  798.                                                                    dbport, dbuser, email, fax, menuwidth,
    799. 

  799.                                                                    name, numberformat, print, printer, role, 
    800. 

  800.                                                                    sid, signature, stylesheet, tel, templates, 
    801. 

  801.                                                                    timeout, vclimit, id, password)
    802. 

  802.                                             VALUES(?, ?, ?, ?, ?, ?, ?, ?, ?, ?, 
    803. 

  803.                                                    ?, ?, ?, ?, ?, ?, ?, ?, ?, ?, 
    804. 

  804.                                                    ?, ?, ?, ?, ?, ?, ?, ?, ?, ?, md5(?));"
    805. 

  805.         );
    806. 

  806. 

  807.         $userConfInsert->execute(
    808. 

  808.             $self->{acs},            $self->{address},
    809. 

  809.             $self->{businessnumber}, $self->{company},
    810. 

  810.             $self->{countrycode},    $self->{currency},
    811. 

  811.             $self->{dateformat},     $self->{dbdriver},
    812. 

  812.             $self->{dbhost},         $self->{dbname},
    813. 

  813.             $self->{dboptions},      $self->{dbpasswd},
    814. 

  814.             $self->{dbport},         $self->{dbuser},
    815. 

  815.             $self->{email},          $self->{fax},
    816. 

  816.             $self->{menuwidth},      $self->{name},
    817. 

  817.             $self->{numberformat},   $self->{print},
    818. 

  818.             $self->{printer},        $self->{role},
    819. 

  819.             $self->{sid},            $self->{signature},
    820. 

  820.             $self->{stylesheet},     $self->{tel},
    821. 

  821.             $self->{templates},      $self->{timeout},
    822. 

  822.             $self->{vclimit},        $userID,
    823. 

  823.             $self->{password}
    824. 

  824.         );
    825. 

  825. 

  826.     }
    827. 

  827. 

  828.     if ( !$self->{'admin'} ) {
    829. 

  829. 

  830.         $self->{dbpasswd} =~ s/\\'/'/g;
    831. 

  831.         $self->{dbpasswd} =~ s/\\\\/\\/g;
    832. 

  832. 

  833.         # format dbconnect and dboptions string
    834. 

  834.         &dbconnect_vars( $self, $self->{dbname} );
    835. 

  835. 

  836.         # check if login is in database
    837. 

  837.         my $dbh = DBI->connect(
    838. 

  838.             $self->{dbconnect}, $self->{dbuser},
    839. 

  839.             $self->{dbpasswd}, { AutoCommit => 0 }
    840. 

  840.         ) or $self->error($DBI::errstr);
    841. 

  841. 

  842.         # add login to employees table if it does not exist
    843. 

  843.         my $login = $self->{login};
    844. 

  844.         $login =~ s/@.*//;
    845. 

  845.         my $sth = $dbh->prepare("SELECT id FROM employees WHERE login = ?;");
    846. 

  846.         $sth->execute($login);
    847. 

  847. 

  848.         my ($id) = $sth->fetchrow_array;
    849. 

  849.         $sth->finish;
    850. 

  850.         my $employeenumber;
    851. 

  851.         my @values;
    852. 

  852.         if ($id) {
    853. 

  853. 

  854.             $query = qq|UPDATE employees SET
    855. 

  855.             role = ?,
    856. 

  856.             email = ?, 
    857. 

  857.             name = ?
    858. 

  858.             WHERE login = ?|;
    859. 

  859. 

  860.             @values = ( $self->{role}, $self->{email}, $self->{name}, $login );
    861. 

  861. 

  862.         }
    863. 

  863.         else {
    864. 

  864. 

  865.             my ($employeenumber) =
    866. 

  866.               Form::update_defaults( "", \%$self, "employeenumber", $dbh );
    867. 

  867.             $query = qq|
    868. 

  868.                 INSERT INTO employees 
    869. 

  869.                             (login, employeenumber, name, 
    870. 

  870.                             workphone, role, email, sales)
    871. 

  871.                     VALUES (?, ?, ?, ?, ?, ?, '1')|;
    872. 

  872. 

  873.             @values = (
    874. 

  874.                 $login,       $employeenumber, $self->{name},
    875. 

  875.                 $self->{tel}, $self->{role},   $self->{email}
    876. 

  876.             );
    877. 

  877.         }
    878. 

  878. 

  879.         $sth = $dbh->prepare($query);
    880. 

  880.         $sth->execute(@values);
    881. 

  881.         $dbh->commit;
    882. 

  882.         $dbh->disconnect;
    883. 

  883. 

  884.     }
    885. 

  885. }
    886. 

  886. 

  887. sub delete_login {
    888. 

  888.     my ( $self, $form ) = @_;
    889. 

  889. 

  890.     my $dbh = DBI->connect(
    891. 

  891.         $form->{dbconnect}, $form->{dbuser},
    892. 

  892.         $form->{dbpasswd}, { AutoCommit => 0 }
    893. 

  893.     ) or $form->dberror( __FILE__ . ':' . __LINE__ );
    894. 

  894. 

  895.     my $login = $form->{login};
    896. 

  896.     $login =~ s/@.*//;
    897. 

  897.     my $query = qq|SELECT id FROM employees WHERE login = ?|;
    898. 

  898.     my $sth   = $dbh->prepare($query);
    899. 

  899.     $sth->execute($login)
    900. 

  900.       || $form->dberror( __FILE__ . ':' . __LINE__ . ': ' . $query );
    901. 

  901. 

  902.     my ($id) = $sth->fetchrow_array;
    903. 

  903.     $sth->finish;
    904. 

  904. 

  905.     my $query = qq|
    906. 

  906.         UPDATE employees 
    907. 

  907.            SET login = NULL,
    908. 

  908.                enddate = current_date
    909. 

  909.          WHERE login = ?|;
    910. 

  910.     $sth = $dbh->prepare($query);
    911. 

  911.     $sth->execute($login);
    912. 

  912.     $dbh->commit;
    913. 

  913.     $dbh->disconnect;
    914. 

  914. 

  915. }
    916. 

  916. 

  917. sub config_vars {
    918. 

  918. 

  919.     my @conf = qw(acs address businessnumber company countrycode
    920. 

  920.       currency dateformat dbconnect dbdriver dbhost dbname dboptions
    921. 

  921.       dbpasswd dbport dbuser email fax menuwidth name numberformat
    922. 

  922.       password printer role sid signature stylesheet tel templates
    923. 

  923.       timeout vclimit);
    924. 

  924. 

  925.     @conf;
    926. 

  926. 

  927. }
    928. 

  928. 

  929. sub error {
    930. 

  930.     my ( $self, $msg ) = @_;
    931. 

  931. 

  932.     if ( $ENV{GATEWAY_INTERFACE} ) {
    933. 

  933.         print qq|Content-Type: text/html\n\n|
    934. 

  934.           . qq|<body bgcolor=ffffff>\n\n|
    935. 

  935.           . qq|<h2><font color=red>Error!</font></h2>\n|
    936. 

  936.           . qq|<p><b>$msg</b>|;
    937. 

  937. 

  938.     }
    939. 

  939. 

  940.     die "Error: $msg\n";
    941. 

  941. 

  942. }
    943. 

  943. 

  944. 1;
    945. 

  945.
generated by cgit v1.2.3 (git 2.39.1) at 2024-06-27 17:40:41 +0000