merge changes of luminous to maserati (~r12676)

git-svn-id: http://xe-core.googlecode.com/svn/branches/maserati@12680 201d5d3c-b55e-5fd7-737f-ddc643e51545
2026-04-20 10:52:14 +09:00 · 2013-02-04 08:09:07 +00:00 · 2013-02-04 08:09:07 +00:00 · 0f04bd3f92
commit 0f04bd3f92
parent 507cf2ecbf 6ada9a3639
50 changed files with 784 additions and 265 deletions
--- a/classes/xml/xmlquery/DBParser.class.php
+++ b/classes/xml/xmlquery/DBParser.class.php
@ -1,33 +1,59 @@
 <?php
 /**
- * DBParser class
- * @author NHN (developers@xpressengine.com)
- * @package /classes/xml/xmlquery
+ * File containing the DBParser class
+ */
+/**
+ * Escapes query statements: <br />
+ *  - column names: member.member_srl =&gt; "member"."member_srl" <br />
+ *  - expressions: SUM(member.member_srl) =&gt; SUM("member"."member_srl") <br />
+ *
+ * @author Corina Udrescu (corina.udrescu@arnia.ro)
+ * @package classes\xml\xmlquery
 * @version 0.1
 */
 class DBParser
 {
 	/**
 	 * Character for escape target value on the left
+	 *
+	 * For example, in CUBRID left and right escape
+	 * chars are the same, the double quote - "  <br />
+	 * But for SQL Server, the escape is made with
+	 * [double brackets], so the left and right char differ
+	 *
+	 *
 	 * @var string
 	 */
 	var $escape_char_left;
+
 	/**
 	 * Character for escape target value on the right
+	 *
+	 * For example, in CUBRID left and right escape
+	 * chars are the same, the double quote - "   <br />
+	 * But for SQL Server, the escape is made with
+	 * [double brackets], so the left and right char differ
+	 *
 	 * @var string
 	 */
 	var $escape_char_right;
+
 	/**
 	 * Table prefix string
+	 *
+	 * Default is "xe_"
+	 *
 	 * @var string
 	 */
 	var $table_prefix;

 	/**
-	 * constructor
+	 * Constructor
+	 *
 	 * @param string $escape_char_left
 	 * @param string $escape_char_right
 	 * @param string $table_prefix
+	 *
 	 * @return void
 	 */
 	function DBParser($escape_char_left,  $escape_char_right = "", $table_prefix = "xe_")
@ -40,6 +66,7 @@ class DBParser

 	/**
 	 * Get escape character
+	 *
 	 * @param string $leftOrRight left or right
 	 * @return string
 	 */
@ -50,17 +77,19 @@ class DBParser
 	}

 	/**
-	 * escape the value
+	 * Escape the value
+	 *
 	 * @param mixed $name
 	 * @return string
 	 */
 	function escape($name)
 	{
 		return $this->escape_char_left . $name . $this->escape_char_right;
-	}		
+	}

 	/**
-	 * escape the string value
+	 * Escape the string value
+	 *
 	 * @param string $name
 	 * @return string
 	 */
@ -70,7 +99,8 @@ class DBParser
 	}

 	/**
-	 * escape the string value
+	 * Escape the string value
+	 *
 	 * @param string $value
 	 * @return string
 	 */
@ -83,7 +113,9 @@ class DBParser

 	/**
 	 * Return table full name
+	 *
 	 * @param string $name table name without table prefix
+	 *
 	 * @return string table full name with table prefix
 	 */
 	function parseTableName($name)
@ -92,8 +124,10 @@ class DBParser
 	}

 	/**
-	 * Return colmun name after escape
+	 * Return column name after escape
+	 *
 	 * @param string $name column name before escape
+	 *
 	 * @return string column name after escape
 	 */
 	function parseColumnName($name)
@ -102,7 +136,8 @@ class DBParser
 	}

 	/**
-	 * Escape column
+	 * Escape column name
+	 *
 	 * @param string $column_name
 	 * @return string column name with db name
 	 */
@ -120,27 +155,53 @@ class DBParser
 	}

 	/**
-	 * Column name is suitable for use in checking
+	 * Checks to see if a given column name is unqualified
+	 *
+	 * Ex: "member_srl"           -> unqualified <br />
+	 *     "member"."member_srl"  -> qualified
+	 *
 	 * @param string $column_name
 	 * @return bool
 	 */
 	function isUnqualifiedColumnName($column_name)
 	{
-		if(strpos($column_name,'.')===false && strpos($column_name,'(')===false) return true;
-		return false;	
+		if(strpos($column_name,'.')===FALSE && strpos($column_name,'(')===FALSE) return TRUE;
+		return FALSE;
 	}

 	/**
-	 * Column name is suitable for use in checking
+	 * Checks to see if a given column name is qualified
+	 *
+	 * Ex: "member_srl"           -> unqualified <br />
+	 *     "member"."member_srl"  -> qualified
+	 *
 	 * @param string $column_name
 	 * @return bool
 	 */
 	function isQualifiedColumnName($column_name)
 	{
-		if(strpos($column_name,'.')!==false && strpos($column_name,'(')===false) return true;
-		return false;		
+		if(strpos($column_name,'.')!==FALSE && strpos($column_name,'(')===FALSE) return TRUE;
+		return FALSE;
 	}

+	/**
+	 * Escapes a query expression
+	 *
+	 * An expression can be: <br />
+	 * <ul>
+	 *  <li> a column name: "member_srl" or "xe_member"."member_srl"
+	 *  <li> an expression:
+	 *     <ul>
+	 *        <li> LEFT(UPPER("content")) <br />
+	 *        <li> readed_count + voted_count <br />
+	 *        <li> CAST(regdate as DATE) </li>
+	 *     </ul>
+	 *  </li>
+	 * </ul>
+	 *
+	 * @param $column_name
+	 * @return string
+	 */
 	function parseExpression($column_name)
 	{
 		$functions = preg_split('/([\+\-\*\/\ ])/', $column_name, -1, PREG_SPLIT_DELIM_CAPTURE|PREG_SPLIT_NO_EMPTY);
@ -156,45 +217,47 @@ class DBParser
 			{
 				$match = &$matches[$i];
 				if($match == '(') {$brackets++; continue;}
-				if(strpos($match,')') !== false) continue;
+				if(strpos($match,')') !== FALSE) continue;
 				if(in_array($match, array(',', '.'))) continue;
 				if($brackets == $total_brackets)
 				{
-					if(!is_numeric($match))
+					if(!is_numeric($match) && !in_array(strtoupper($match), array('UNSIGNED', 'INTEGER', 'AS')))
 					{
 						$match = $this->escapeColumnExpression($match);	
 					}
 				}
 			}
 			$function = implode('', $matches);
-		}	
-		return implode('', $functions);				
+		}
+		return implode('', $functions);
 	}

-	/*
-	 * Checks argument is asterisk
+	/**
+	 * Checks if a given argument is an asterisk
+	 *
 	 * @param string $column_name
 	 * @return bool
 	 */
 	function isStar($column_name)
 	{
-		if(substr($column_name,-1) == '*') return true;
-		return false;
+		if(substr($column_name,-1) == '*') return TRUE;
+		return FALSE;
 	}

-	/*
+	/**
 	 * Checks to see if expression is an aggregate star function
 	 * like count(*)
+	 *
 	 * @param string $column_name
 	 * @return bool
 	 */
 	function isStarFunction($column_name)
 	{
-		if(strpos($column_name, "(*)")!==false) return true;
-		return false;
+		if(strpos($column_name, "(*)")!==FALSE) return TRUE;
+		return FALSE;
 	}

-	/*
+	/**
 	 * Return column name after escape
 	 * @param string $column_name
 	 * @return string
@ -206,9 +269,9 @@ class DBParser
 		{
 			return $column_name;
 		}
-		if(strpos(strtolower($column_name), 'distinct') !== false) return $column_name;
-		return $this->escapeColumn($column_name);			
-	}				
+		if(strpos(strtolower($column_name), 'distinct') !== FALSE) return $column_name;
+		return $this->escapeColumn($column_name);
+	}
 }
 /* End of file DBParser.class.php */
 /* Location: ./classes/xml/xmlquery/DBParser.class.php */