*
* This program is free software; you can redistribute it and/or
* modify it under the terms of the GNU General Public
* License as published by the Free Software Foundation, version 2.
*
* This program is distributed in the hope that it will be useful,
* but WITHOUT ANY WARRANTY; without even the implied warranty of
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
* General Public License for more details.
*
* You should have received a copy of the GNU General Public License
* along with this program; see the file COPYING. If not, write to
* the Free Software Foundation, Inc., 59 Temple Place - Suite 330,
* Boston, MA 02111-1307, USA.
*/
?>
prepare("SHOW TABLES FROM $DBNAME");
$tableq->execute();
while ($tr = $tableq->fetch(PDO::FETCH_NUM)) {
$table = $tr[0];
$dump .= "#TABLE: $table\n";
$columnq = $pdo->prepare("SHOW COLUMNS FROM $table");
$columnq->execute();
$str = "INSERT INTO `$table` (";
unset($fields);
$fields = array();
while ($cr = $columnq->fetch(PDO::FETCH_OBJ)) {
$str .= '`' . $cr->Field . '`,';
$fields[] = $cr->Field;
}
$str = substr($str, 0, -1);
$str .= ') VALUES (';
$dataq = $pdo->prepare("SELECT * FROM `$table` ORDER BY $fields[0]");
$dataq->execute();
while ($data = $dataq->fetch(PDO::FETCH_OBJ)) {
$insertstr = $str;
foreach ($fields AS $field) {
if (is_null($data->$field))
$insertstr .= 'NULL,';
else {
$escaped = str_replace('\\', '\\\\', $data->$field);
$escaped = str_replace("'", "''", $escaped);
$escaped = str_replace("\n", '\n', $escaped);
$escaped = str_replace("\r", '\r', $escaped);
$insertstr .= "'" . $escaped . "',";
}
}
$insertstr = substr($insertstr, 0, -1);
$insertstr .= ');';
$dump .= $insertstr . "\n";
}
}
header('Content-Type: text/sql');
header('Content-Disposition: attachment; filename=sfiab_backup_' . date('Y-m-d-H-i-s', $ts) . '.sql');
header('Content-Length: ' . strlen($dump));
// Make IE with SSL work
header('Pragma: public');
echo $dump;
} else if (get_value_from_array($_POST, 'action') == 'restore') {
echo send_header('Database Backup/Restore',
array('Committee Main' => 'committee_main.php',
'Science-ation Configuration' => 'config/index.php'),
'backup_restore');
echo i18n('Processing file: %1', array($_FILES['restore']['name'])) . "
\n";
echo "
\n";
do {
// hmm just some random filename
$tmpfilename = md5(rand() . time() . $_FILES['restore']['name']);
} while (file_exists("../data/backuprestore/$tmpfilename"));
move_uploaded_file($_FILES['restore']['tmp_name'], "../data/backuprestore/$tmpfilename");
$fp = fopen("../data/backuprestore/$tmpfilename", 'r');
for ($x = 0; $x < 4; $x++) {
$line = fgets($fp, 1024);
$hdr[$x] = split(':', trim($line), 2);
}
fclose($fp);
if (trim($hdr[0][0]) == '#SFIAB SQL BACKUP') {
echo "\n";
$now = date('r');
echo '| ' . i18n('Information') . ' | ' . i18n('Restore File') . ' | ' . i18n('Live System') . " |
|---|
\n";
if (trim($hdr[0][1]) < trim($now))
$cl = 'happy';
else {
$cl = 'error';
$err = true;
}
echo "| " . i18n('Date/Time') . ' | ' . $hdr[0][1] . " | $now |
\n";
if (version_compare(trim($hdr[1][1]), $config['version']) == 0)
$cl = 'happy';
else {
$cl = 'error';
$err = true;
}
echo "| " . i18n('SFIAB Version') . ' | ' . $hdr[1][1] . ' | ' . $config['version'] . " |
\n";
if (version_compare(trim($hdr[2][1]), $config['DBVERSION']) == 0)
$cl = 'happy';
else {
$cl = 'error';
$err = true;
}
echo "| " . i18n('Database Version') . ' | ' . $hdr[2][1] . ' | ' . $config['DBVERSION'] . " |
\n";
if (trim($hdr[3][1]) == $config['fairname'])
$cl = 'happy';
else {
$cl = 'error';
$err = true;
}
echo "| " . i18n('Fair Name') . ' | ' . $hdr[3][1] . ' | ' . $config['fairname'] . " |
\n";
echo "
\n";
echo "
\n";
if ($err) {
echo error(i18n('Warning, there are discrepencies between the restore file and your current live system. Proceed at your own risk!'));
}
echo "\n";
echo "
\n";
echo '';
echo i18n('If you are not going to proceed, please click here to clean up the temporary files which may contain confidential information!');
echo "\n";
} else {
echo error(i18n('This file is NOT a SFIAB SQL BACKUP file'));
echo i18n('Only backups created with the SFIAB Backup Creator can be used to restore from.');
echo "
\n";
}
send_footer();
} else if (get_value_from_array($_POST, 'action') == 'restoreproceed') {
echo send_header('Database Backup/Restore',
array('Committee Main' => 'committee_main.php',
'Science-ation Configuration' => 'config/index.php'),
'backup_restore');
// make sure the filename's good before we used it
if (mb_ereg('^[a-z0-9]{32}$', $_POST['realfilename']) && file_exists('../data/backuprestore/' . $_POST['realfilename'])) {
$filename = $_POST['realfilename'];
echo i18n('Proceeding with database restore from %1', array($_POST['filename'])) . '...';
$lines = file("../data/backuprestore/$filename");
$err = false;
echo '';
foreach ($lines AS $line) {
$line = trim($line);
if (mb_ereg('^#TABLE: (.*)', $line, $args)) {
// empty out the table
$sql = "TRUNCATE TABLE $args[1]";
// echo $sql."\n";
$stmt = $pdo->prepare($sql);
$stmt->execute();
} else if (mb_ereg('^#', $line)) {
// just skip it
} else {
// insert the new data
$stmt = $pdo->prepare($line);
$stmt->execute();
if ($pdo->errorInfo()) {
echo $line . "\n";
echo $pdo->errorInfo() . "\n";
$err = true;
}
}
}
echo '';
if ($err) {
echo error(i18n('An error occured while importing the restore database'));
} else
echo happy(i18n('Database successfully restored'));
unlink("../data/backuprestore/$filename");
} else
echo error(i18n('Invalid filename'));
send_footer();
} else if (get_value_from_array($_POST, 'action') == 'clean_judges') {
// select all judges
$query = $pdo->prepare('SELECT * FROM users WHERE types LIKE "judge"');
$query->execute();
show_pdo_errors_if_any($pdo);
// Go through each judge and test:
while ($judge = $query->fetch(PDO::FETCH_ASSOC)) {
// if they are deleted
if ($judge['deleted'] == 'yes') {
// Make types an array if it isn't already. Allows user_purge function to work properly
if (!is_array($judge['types'])) {
$judge['types'] = array($judge['types']);
}
user_purge($judge, 'judge');
} else {
// Find max year of judge
$max_year_query = $pdo->prepare('SELECT year FROM users WHERE uid =? ORDER BY year DESC limit 1');
$max_year_query->execute([$judge['uid']]);
$judge_max_year = $max_year_query->fetch(PDO::FETCH_ASSOC);
// Grab old judge info.
// Old judge info consists of all entries in the database that are not the most recent for the specific judge
$deletable = $pdo->prepare('SELECT * FROM users WHERE uid =? AND year NOT LIKE ?');
$deletable->execute([$judge['uid'],$judge_max_year['year']]);
// and if they have old data from previous fair years
if ($deletable->rowCount() > 0) {
// delete old data one by one
while ($old_judge_data = $deletable->fetch(PDO::FETCH_ASSOC)) {
if (!isset($old_judge_data['type']) && !is_array($old_judge_data['type'])) {
$old_judge_data['types'] = array($old_judge_data['types']);
}
user_purge($old_judge_data, 'judge');
}
}
}
}
echo send_header('Database Backup/Restore',
array('Committee Main' => 'committee_main.php',
'Science-ation Configuration' => 'config/index.php'),
'backup_restore');
$stmt = $pdo->prepare('OPTIMIZE TABLE users, users_judge');
$stmt->execute();
if ($pdo->errorInfo()[0] == 0) {
echo happy(i18n('Old judge data purged.'));
} else {
error(i18n($pdo->errorInfo()[0]));
}
} else if (get_value_from_array($_POST, 'action') == 'clean_parents') {
$query_parents = $pdo->prepare('SELECT * FROM users WHERE types LIKE "parent" AND year !=?');
$query_parents->execute([$config['FAIRYEAR']]);
while ($parent = $query_parents->fetch(PDO::FETCH_ASSOC)) {
if (!is_array($parent['types'])) {
$parent['types'] = array($parent['types']);
}
user_purge($parent, 'parent');
}
echo send_header('Database Backup/Restore',
array('Committee Main' => 'committee_main.php',
'Science-ation Configuration' => 'config/index.php'),
'backup_restore');
$stmt = $pdo->prepare('OPTIMIZE TABLE users, users_parent');
$stmt->execute();
if ($pdo->errorInfo()[0] == 0) {
echo happy(i18n('Old parent data purged.'));
} else {
error(i18n($pdo->errorInfo()[0]));
}
} else {
echo send_header('Database Backup/Restore',
array('Committee Main' => 'committee_main.php',
'Science-ation Configuration' => 'config/index.php'),
'backup_restore');
// we try to remove temp files every time we load this page, who knows, maybe they navigated away
// last time instead of clicking the link to come back here
$dh = opendir('../data/backuprestore');
$removed = false;
while ($fn = readdir($dh)) {
if (mb_ereg('[a-z0-9]{32}', $fn)) {
unlink("../data/backuprestore/$fn");
$removed = true;
}
}
closedir($dh);
if ($removed) {
echo happy(i18n('Temporary files successfully removed'));
}
echo '' . i18n('Backup Database') . "
\n";
echo '' . i18n('Create Database Backup File') . "
\n";
echo "
\n";
echo "
\n";
echo '' . i18n('Restore Database') . "
\n";
echo error(i18n('WARNING: Importing a backup will completely DESTROY all data currently in the database and replace it with what is in the backup file'));
echo "\n";
echo '
';
echo '' . i18n('Clean Database') . "
\n";
echo error(i18n('WARNING: Cleaning the database COMPLETELY DELETES old data on users'));
echo ' RECOMMENDED: Backup database before using the below buttons
';
echo " Remove Old Judge Data - All information about who has judged in past fairs will be lost
\t
- All deleted judges will be purged from the system
";
echo "
Remove Old Emergency Contact / Parent Data - All parent information or other emergency contact information from all previous fair years will be purged from the system
\t \t\t\t\t\t\t\t\t\t\t\t\t
- It will no longer be possible to email any emergency contacts from previous fair years once the button is clicked
";
echo '';
echo '| ';
echo "';
echo ' | ';
echo "';
send_footer();
}
?>
|