xref: /webtrees/app/Http/Middleware/UseDatabase.php (revision 89f7189b61a494347591c99bdb92afb7d8b66e1b)
16ccdf4f0SGreg Roach<?php
23976b470SGreg Roach
36ccdf4f0SGreg Roach/**
46ccdf4f0SGreg Roach * webtrees: online genealogy
5*89f7189bSGreg Roach * Copyright (C) 2021 webtrees development team
66ccdf4f0SGreg Roach * This program is free software: you can redistribute it and/or modify
76ccdf4f0SGreg Roach * it under the terms of the GNU General Public License as published by
86ccdf4f0SGreg Roach * the Free Software Foundation, either version 3 of the License, or
96ccdf4f0SGreg Roach * (at your option) any later version.
106ccdf4f0SGreg Roach * This program is distributed in the hope that it will be useful,
116ccdf4f0SGreg Roach * but WITHOUT ANY WARRANTY; without even the implied warranty of
126ccdf4f0SGreg Roach * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
136ccdf4f0SGreg Roach * GNU General Public License for more details.
146ccdf4f0SGreg Roach * You should have received a copy of the GNU General Public License
15*89f7189bSGreg Roach * along with this program. If not, see <https://www.gnu.org/licenses/>.
166ccdf4f0SGreg Roach */
17fcfa147eSGreg Roach
186ccdf4f0SGreg Roachdeclare(strict_types=1);
196ccdf4f0SGreg Roach
206ccdf4f0SGreg Roachnamespace Fisharebest\Webtrees\Http\Middleware;
216ccdf4f0SGreg Roach
226ccdf4f0SGreg Roachuse Fisharebest\Webtrees\Webtrees;
23e16a1bfdSGreg Roachuse Illuminate\Database\Capsule\Manager as DB;
24e16a1bfdSGreg Roachuse Illuminate\Database\Query\Builder;
2560a0fc35SGreg Roachuse PDO;
26b8d46257SGreg Roachuse PDOException;
276ccdf4f0SGreg Roachuse Psr\Http\Message\ResponseInterface;
286ccdf4f0SGreg Roachuse Psr\Http\Message\ServerRequestInterface;
296ccdf4f0SGreg Roachuse Psr\Http\Server\MiddlewareInterface;
306ccdf4f0SGreg Roachuse Psr\Http\Server\RequestHandlerInterface;
316e9f3eb9SGreg Roachuse RuntimeException;
326ccdf4f0SGreg Roach
33b5961194SGreg Roachuse function addcslashes;
34b5961194SGreg Roachuse function trigger_error;
35b5961194SGreg Roach
36b5961194SGreg Roachuse const E_USER_DEPRECATED;
37b5961194SGreg Roach
386ccdf4f0SGreg Roach/**
396ccdf4f0SGreg Roach * Middleware to connect to the database.
406ccdf4f0SGreg Roach */
416ccdf4f0SGreg Roachclass UseDatabase implements MiddlewareInterface
426ccdf4f0SGreg Roach{
436ccdf4f0SGreg Roach    /**
446ccdf4f0SGreg Roach     * @param ServerRequestInterface  $request
456ccdf4f0SGreg Roach     * @param RequestHandlerInterface $handler
466ccdf4f0SGreg Roach     *
476ccdf4f0SGreg Roach     * @return ResponseInterface
486ccdf4f0SGreg Roach     */
496ccdf4f0SGreg Roach    public function process(ServerRequestInterface $request, RequestHandlerInterface $handler): ResponseInterface
506ccdf4f0SGreg Roach    {
51e16a1bfdSGreg Roach        // Earlier versions of webtrees did not have a dbtype config option.  They always used mysql.
52e16a1bfdSGreg Roach        $driver = $request->getAttribute('dbtype', 'mysql');
536ccdf4f0SGreg Roach
54e16a1bfdSGreg Roach        $dbname = $request->getAttribute('dbname');
556ccdf4f0SGreg Roach
56e16a1bfdSGreg Roach        if ($driver === 'sqlite') {
57e16a1bfdSGreg Roach            $dbname = Webtrees::ROOT_DIR . 'data/' . $dbname . '.sqlite';
586ccdf4f0SGreg Roach        }
596ccdf4f0SGreg Roach
60e16a1bfdSGreg Roach        $capsule = new DB();
61e16a1bfdSGreg Roach
62b5961194SGreg Roach        // Newer versions of webtrees support utf8mb4.  Older ones only support 3-byte utf8
63b5961194SGreg Roach        if ($driver === 'mysql' && $request->getAttribute('mysql_utf8mb4') === '1') {
64b5961194SGreg Roach            $charset   = 'utf8mb4';
65b5961194SGreg Roach            $collation = 'utf8mb4_unicode_ci';
66b5961194SGreg Roach        } else {
67b5961194SGreg Roach            $charset   = 'utf8';
68b5961194SGreg Roach            $collation = 'utf8_unicode_ci';
69b5961194SGreg Roach        }
70b5961194SGreg Roach
71e16a1bfdSGreg Roach        $capsule->addConnection([
72e16a1bfdSGreg Roach            'driver'                  => $driver,
73e16a1bfdSGreg Roach            'host'                    => $request->getAttribute('dbhost'),
74e16a1bfdSGreg Roach            'port'                    => $request->getAttribute('dbport'),
75e16a1bfdSGreg Roach            'database'                => $dbname,
76e16a1bfdSGreg Roach            'username'                => $request->getAttribute('dbuser'),
77e16a1bfdSGreg Roach            'password'                => $request->getAttribute('dbpass'),
78e16a1bfdSGreg Roach            'prefix'                  => $request->getAttribute('tblpfx'),
79e16a1bfdSGreg Roach            'prefix_indexes'          => true,
8060a0fc35SGreg Roach            'options'                 => [
8160a0fc35SGreg Roach                // Some drivers do this and some don't.  Make them consistent.
8260a0fc35SGreg Roach                PDO::ATTR_STRINGIFY_FETCHES => true,
8360a0fc35SGreg Roach            ],
84e16a1bfdSGreg Roach            // For MySQL
85b5961194SGreg Roach            'charset'                 => $charset,
86b5961194SGreg Roach            'collation'               => $collation,
87e16a1bfdSGreg Roach            'timezone'                => '+00:00',
88e16a1bfdSGreg Roach            'engine'                  => 'InnoDB',
89e16a1bfdSGreg Roach            'modes'                   => [
90e16a1bfdSGreg Roach                'ANSI',
919d1d823fSGreg Roach                'STRICT_ALL_TABLES',
926c7933f4SGreg Roach                // Use SQL injection(!) to override MAX_JOIN_SIZE and GROUP_CONCAT_MAX_LEN settings.
936c7933f4SGreg Roach                "', SQL_BIG_SELECTS=1, GROUP_CONCAT_MAX_LEN=1048576, @foobar='"
94e16a1bfdSGreg Roach            ],
95e16a1bfdSGreg Roach            // For SQLite
96e16a1bfdSGreg Roach            'foreign_key_constraints' => true,
97e16a1bfdSGreg Roach        ]);
98e16a1bfdSGreg Roach
99e16a1bfdSGreg Roach        $capsule->setAsGlobal();
100e16a1bfdSGreg Roach
101e16a1bfdSGreg Roach        Builder::macro('whereContains', function ($column, string $search, string $boolean = 'and'): Builder {
1025c98992aSGreg Roach            // Assertion helps static analysis tools understand where we will be using this closure.
10352664097SGreg Roach            assert($this instanceof Builder);
1045c98992aSGreg Roach
105b5961194SGreg Roach            trigger_error('Builder::whereContains() is deprecated. Use LIKE.', E_USER_DEPRECATED);
106e16a1bfdSGreg Roach
107b5961194SGreg Roach            return $this->where($column, 'LIKE', '%' . addcslashes($search, '\\%_') . '%', $boolean);
108e16a1bfdSGreg Roach        });
109e16a1bfdSGreg Roach
110b8d46257SGreg Roach        try {
111ff020ee8SGreg Roach            // Eager-load the connection, to prevent database credentials appearing in error logs.
112ff020ee8SGreg Roach            DB::connection()->getPdo();
113b8d46257SGreg Roach        } catch (PDOException $exception) {
1146e9f3eb9SGreg Roach            throw new RuntimeException($exception->getMessage());
115b8d46257SGreg Roach        }
116b8d46257SGreg Roach
117ff020ee8SGreg Roach        return $handler->handle($request);
1186ccdf4f0SGreg Roach    }
1196ccdf4f0SGreg Roach}
120