mbk-lab
/
nextcloud
2
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity

Merge pull request #23971 from nextcloud/backport/23936/stable20 

[stable20] Use query builder instead of OC_DB in trashbin
This commit is contained in:
Morris Jobke 2020-11-09 10:27:29 +01:00 committed by GitHub
parent 40c4d24e31 f28c436fd5
commit 20885847c8
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
4 changed files with 64 additions and 23 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

77
apps/files_trashbin/lib/Trashbin.php
View File

@ -128,17 +128,20 @@ class Trashbin {
* @return array (filename => array (timestamp => original location)) * @return array (filename => array (timestamp => original location))
*/ */
public static function getLocations($user) { public static function getLocations($user) {
$query = \OC_DB::prepare('SELECT `id`, `timestamp`, `location`' $query = \OC::$server->getDatabaseConnection()->getQueryBuilder();
. ' FROM `*PREFIX*files_trash` WHERE `user`=?'); $query->select('id', 'timestamp', 'location')
$result = $query->execute([$user]); ->from('files_trash')
->where($query->expr()->eq('user', $query->createNamedParameter($user)));
$result = $query->execute();
$array = []; $array = [];
while ($row = $result->fetchRow()) { while ($row = $result->fetch()) {
if (isset($array[$row['id']])) { if (isset($array[$row['id']])) {
$array[$row['id']][$row['timestamp']] = $row['location']; $array[$row['id']][$row['timestamp']] = $row['location'];
} else { } else {
$array[$row['id']] = [$row['timestamp'] => $row['location']]; $array[$row['id']] = [$row['timestamp'] => $row['location']];
} }
} }
$result->closeCursor();
return $array; return $array;
} }
@ -151,11 +154,19 @@ class Trashbin {
* @return string original location * @return string original location
*/ */
public static function getLocation($user, $filename, $timestamp) { public static function getLocation($user, $filename, $timestamp) {
$query = \OC_DB::prepare('SELECT `location` FROM `*PREFIX*files_trash`' $query = \OC::$server->getDatabaseConnection()->getQueryBuilder();
. ' WHERE `user`=? AND `id`=? AND `timestamp`=?'); $query->select('location')
$result = $query->execute([$user, $filename, $timestamp])->fetchAll(); ->from('files_trash')
if (isset($result[0]['location'])) { ->where($query->expr()->eq('user', $query->createNamedParameter($user)))
return $result[0]['location']; ->andWhere($query->expr()->eq('id', $query->createNamedParameter($filename)))
->andWhere($query->expr()->eq('timestamp', $query->createNamedParameter($timestamp)));
$result = $query->execute();
$row = $result->fetch();
$result->closeCursor();
if (isset($row['location'])) {
return $row['location'];
} else { } else {
return false; return false;
} }
@ -208,8 +219,13 @@ class Trashbin {
if ($view->file_exists($target)) { if ($view->file_exists($target)) {
$query = \OC_DB::prepare("INSERT INTO `*PREFIX*files_trash` (`id`,`timestamp`,`location`,`user`) VALUES (?,?,?,?)"); $query = \OC::$server->getDatabaseConnection()->getQueryBuilder();
$result = $query->execute([$targetFilename, $timestamp, $targetLocation, $user]); $query->insert('files_trash')
->setValue('id', $query->createNamedParameter($targetFilename))
->setValue('timestamp', $query->createNamedParameter($timestamp))
->setValue('location', $query->createNamedParameter($targetLocation))
->setValue('user', $query->createNamedParameter($user));
$result = $query->execute();
if (!$result) { if (!$result) {
\OC::$server->getLogger()->error('trash bin database couldn\'t be updated for the files owner', ['app' => 'files_trashbin']); \OC::$server->getLogger()->error('trash bin database couldn\'t be updated for the files owner', ['app' => 'files_trashbin']);
} }
@ -322,8 +338,13 @@ class Trashbin {
} }
if ($moveSuccessful) { if ($moveSuccessful) {
$query = \OC_DB::prepare("INSERT INTO `*PREFIX*files_trash` (`id`,`timestamp`,`location`,`user`) VALUES (?,?,?,?)"); $query = \OC::$server->getDatabaseConnection()->getQueryBuilder();
$result = $query->execute([$filename, $timestamp, $location, $owner]); $query->insert('files_trash')
->setValue('id', $query->createNamedParameter($filename))
->setValue('timestamp', $query->createNamedParameter($timestamp))
->setValue('location', $query->createNamedParameter($location))
->setValue('user', $query->createNamedParameter($owner));
$result = $query->execute();
if (!$result) { if (!$result) {
\OC::$server->getLogger()->error('trash bin database couldn\'t be updated', ['app' => 'files_trashbin']); \OC::$server->getLogger()->error('trash bin database couldn\'t be updated', ['app' => 'files_trashbin']);
} }
@ -481,8 +502,12 @@ class Trashbin {
self::restoreVersions($view, $file, $filename, $uniqueFilename, $location, $timestamp); self::restoreVersions($view, $file, $filename, $uniqueFilename, $location, $timestamp);
if ($timestamp) { if ($timestamp) {
$query = \OC_DB::prepare('DELETE FROM `*PREFIX*files_trash` WHERE `user`=? AND `id`=? AND `timestamp`=?'); $query = \OC::$server->getDatabaseConnection()->getQueryBuilder();
$query->execute([$user, $filename, $timestamp]); $query->delete('files_trash')
->where($query->expr()->eq('user', $query->createNamedParameter($user)))
->andWhere($query->expr()->eq('id', $query->createNamedParameter($filename)))
->andWhere($query->expr()->eq('timestamp', $query->createNamedParameter($timestamp)));
$query->execute();
} }
return true; return true;
@ -568,8 +593,11 @@ class Trashbin {
// actual file deletion // actual file deletion
$trash->delete(); $trash->delete();
$query = \OC_DB::prepare('DELETE FROM `*PREFIX*files_trash` WHERE `user`=?');
$query->execute([$user]); $query = \OC::$server->getDatabaseConnection()->getQueryBuilder();
$query->delete('files_trash')
->where($query->expr()->eq('user', $query->createNamedParameter($user)));
$query->execute();
// Bulk PostDelete-Hook // Bulk PostDelete-Hook
\OC_Hook::emit('\OCP\Trashbin', 'deleteAll', ['paths' => $filePaths]); \OC_Hook::emit('\OCP\Trashbin', 'deleteAll', ['paths' => $filePaths]);
@ -618,8 +646,13 @@ class Trashbin {
$size = 0; $size = 0;
if ($timestamp) { if ($timestamp) {
$query = \OC_DB::prepare('DELETE FROM `*PREFIX*files_trash` WHERE `user`=? AND `id`=? AND `timestamp`=?'); $query = \OC::$server->getDatabaseConnection()->getQueryBuilder();
$query->execute([$user, $filename, $timestamp]); $query->delete('files_trash')
->where($query->expr()->eq('user', $query->createNamedParameter($user)))
->andWhere($query->expr()->eq('id', $query->createNamedParameter($filename)))
->andWhere($query->expr()->eq('timestamp', $query->createNamedParameter($timestamp)));
$query->execute();
$file = $filename . '.d' . $timestamp; $file = $filename . '.d' . $timestamp;
} else { } else {
$file = $filename; $file = $filename;
@ -701,8 +734,10 @@ class Trashbin {
* @return bool result of db delete operation * @return bool result of db delete operation
*/ */
public static function deleteUser($uid) { public static function deleteUser($uid) {
$query = \OC_DB::prepare('DELETE FROM `*PREFIX*files_trash` WHERE `user`=?'); $query = \OC::$server->getDatabaseConnection()->getQueryBuilder();
return $query->execute([$uid]); $query->delete('files_trash')
->where($query->expr()->eq('user', $query->createNamedParameter($uid)));
return (bool) $query->execute();
} }
/** /**

6
build/psalm-baseline.xml
View File

@ -3904,6 +3904,9 @@
</InvalidScalarArgument> </InvalidScalarArgument>
</file> </file>
<file src="lib/private/DB/QueryBuilder/ExpressionBuilder/OCIExpressionBuilder.php"> <file src="lib/private/DB/QueryBuilder/ExpressionBuilder/OCIExpressionBuilder.php">
<ImplicitToStringCast occurrences="1">
<code>$this-&gt;functionBuilder-&gt;lower($x)</code>
</ImplicitToStringCast>
<InvalidReturnStatement occurrences="1"> <InvalidReturnStatement occurrences="1">
<code>parent::castColumn($column, $type)</code> <code>parent::castColumn($column, $type)</code>
</InvalidReturnStatement> </InvalidReturnStatement>
@ -3917,6 +3920,9 @@
</ImplicitToStringCast> </ImplicitToStringCast>
</file> </file>
<file src="lib/private/DB/QueryBuilder/QueryBuilder.php"> <file src="lib/private/DB/QueryBuilder/QueryBuilder.php">
<ImplicitToStringCast occurrences="1">
<code>$value</code>
</ImplicitToStringCast>
<InvalidArgument occurrences="1"> <InvalidArgument occurrences="1">
<code>$this-&gt;connection</code> <code>$this-&gt;connection</code>
</InvalidArgument> </InvalidArgument>

2
lib/private/DB/QueryBuilder/QueryBuilder.php
View File

@ -868,7 +868,7 @@ class QueryBuilder implements IQueryBuilder {
* </code> * </code>
* *
* @param string $column The column into which the value should be inserted. * @param string $column The column into which the value should be inserted.
* @param string $value The value that should be inserted into the column. * @param IParameter|string $value The value that should be inserted into the column.
* *
* @return $this This QueryBuilder instance. * @return $this This QueryBuilder instance.
*/ */

2
lib/public/DB/QueryBuilder/IQueryBuilder.php
View File

@ -651,7 +651,7 @@ interface IQueryBuilder {
* </code> * </code>
* *
* @param string $column The column into which the value should be inserted. * @param string $column The column into which the value should be inserted.
* @param string $value The value that should be inserted into the column. * @param IParameter|string $value The value that should be inserted into the column.
* *
* @return $this This QueryBuilder instance. * @return $this This QueryBuilder instance.
* @since 8.2.0 * @since 8.2.0