Refbase
/
Refbase2X
1
0
Fork 0
Code Issues 0 Pull Requests 0 Projects 0 Releases 0 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
10 Commits
1 Branch
1.9 MiB
Branch: master
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'master'
${ noResults }
Refbase2X/duplicate_modify.php

200 lines
9.4 KiB
Raw Permalink Normal View History

Refbase update_2021-01-28_15_58
4 years ago
Drush_Update_2021-01-28_17_01
4 years ago
Refbase update_2021-01-28_15_58
4 years ago
 
  1. <?php
  2.         // turn  on warnings and notice during  developement

  3.         include('initialize/PhpErrorSettings.inc.php'); 
  4. 	// Project:    Web Reference Database (refbase) <http://www.refbase.net>

  5. 	// Copyright:  Matthias Steffens <mailto:refbase@extracts.de> and the file's

  6. 	//             original author(s).

  7. 	//

  8. 	//             This code is distributed in the hope that it will be useful,

  9. 	//             but WITHOUT ANY WARRANTY. Please see the GNU General Public

  10. 	//             License for more details.

  11. 	//

  12. 	// File:       ./duplicate_modify.php

  13. 	// Repository: $HeadURL: file:///svn/p/refbase/code/branches/bleeding-edge/duplicate_modify.php $

  14. 	// Author(s):  Matthias Steffens <mailto:refbase@extracts.de>

  15. 	//

  16. 	// Created:    27-Jan-07, 23:22

  17. 	// Modified:   $Date: 2017-04-13 02:00:18 +0000 (Thu, 13 Apr 2017) $

  18. 	//             $Author: karnesky $

  19. 	//             $Revision: 1416 $

  20. 

  21. 	// This php script will flag records as original and duplicate records.

  22. 	// It then displays the affected records using 'search.php' so that the user

  23. 	// can verify the changes.

  24. 	// TODO: I18n

  25. 

  26. 

  27. 	// Incorporate some include files:

  28. 	include 'initialize/db.inc.php'; // 'db.inc.php' is included to hide username and password

  29. 	include 'includes/include.inc.php'; // include common functions

  30. 	include 'initialize/ini.inc.php'; // include common variables

  31. 

  32. 	// --------------------------------------------------------------------

  33. 

  34. 	// START A SESSION:

  35. 	// call the 'start_session()' function (from 'include.inc.php') which will also read out available session variables:

  36. 	start_session(true);
  37. 

  38. 	// --------------------------------------------------------------------

  39. 

  40. 	// Initialize preferred display language:

  41. 	// (note that 'locales.inc.php' has to be included *after* the call to the 'start_session()' function)

  42. 	include 'includes/locales.inc.php'; // include the locales

  43. 

  44. 	// --------------------------------------------------------------------

  45. 

  46. 	// Clear any errors that might have been found previously:

  47. 	$errors = array();
  48. 	
  49. 	// Write the form variables into an array:

  50. 	foreach($_REQUEST as $varname => $value)
  51. 		$formVars[$varname] = trim($value); // remove any leading or trailing whitespace from the field's contents & copy the trimmed string to the '$formVars' array

  52. //		$formVars[$varname] = trim(clean($value, 50)); // the use of the clean function would be more secure!

  53. 

  54. 	// --------------------------------------------------------------------

  55. 

  56. 	// Extract form variables:

  57. 	// Note: Although we could use the '$formVars' array directly below (e.g.: $formVars['origRecord'] etc., like in 'user_validation.php'), we'll read out

  58. 	//       all variables individually again. This is done to enhance readability. (A smarter way of doing so seems be the use of the 'extract()' function, but that

  59. 	//       may expose yet another security hole...)

  60. 

  61. 	// First of all, check if this script was called by something else than 'duplicate_manager.php':

  62. 	if (!preg_match("#/duplicate_manager\.php#i", $referer)) // variable '$referer' is globally defined in function 'start_session()' in 'include.inc.php'

  63. 	{
  64. 		// return an appropriate error message:

  65. 		$HeaderString = returnMsg($loc["Warning_InvalidCallToScript"] . " '" . scriptURL() . "'!", "warning", "strong", "HeaderString"); // functions 'returnMsg()' and 'scriptURL()' are defined in 'include.inc.php'

  66. 		
  67. 		header("Location: " . $referer); // redirect to calling page

  68. 

  69. 		exit; // >>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>> !EXIT! <<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<

  70. 	}
  71. 

  72. 	// Extract the form used by the user:

  73. 	$formType = $formVars['formType'];
  74. 

  75. 	// Extract the view type requested by the user (either 'Mobile', 'Print', 'Web' or ''):

  76. 	// ('' will produce the default 'Web' output style)

  77. 	if (isset($formVars['viewType']))
  78. 		$viewType = $formVars['viewType'];
  79. 	else
  80. 		$viewType = "";
  81. 

  82. 	// Extract other form values provided by 'duplicate_manager.php':

  83. 	if (isset($formVars['origRecord']))
  84. 		$origRecord = $formVars['origRecord'];
  85. 	else
  86. 		$origRecord = "";
  87. 

  88. 	if (isset($formVars['dupRecords']))
  89. 		$dupRecords = $formVars['dupRecords'];
  90. 	else
  91. 		$dupRecords = "";
  92. 

  93. 	// Extract serial numbers (i.e. discard any non-digit characters from the original user input):

  94. 	$origRecordSerial = preg_replace("/\D*(\d+).*/", "\\1", $origRecord); // extract the first number given

  95. 	$dupRecordSerialsArray = preg_split("/\D+/", $dupRecords, -1, PREG_SPLIT_NO_EMPTY); // extract all given serial numbers (the 'PREG_SPLIT_NO_EMPTY' flag causes only non-empty pieces to be returned)

  96. 

  97. 	// --------------------------------------------------------------------

  98. 

  99. 	// (1) OPEN CONNECTION, (2) SELECT DATABASE

  100. 	connectToMySQLDatabase(); // function 'connectToMySQLDatabase()' is defined in 'include.inc.php'

  101. 

  102. 	// --------------------------------------------------------------------

  103. 

  104. 	// VALIDATE data fields:

  105. 

  106. 	// NOTE: for all fields that are validated here must exist error parsing code (of the form: " . fieldError("origRecord", $errors) . ")

  107. 	//       in front of the respective <input> form field in 'duplicate_manager.php'! Otherwise the generated error won't be displayed!

  108. 

  109. 	// Validate the 'Original' field:

  110. 	if (empty($origRecord) OR !preg_match("/\d/", $origRecord))
  111. 		$errors["origRecord"] = "You must specify a serial number for the original record:"; // 'origRecord' must not be empty and must contain a number

  112. 

  113. 	elseif (preg_match("/\d\D+\d/", $origRecord))
  114. 		$errors["origRecord"] = "You can only specify a single record as original entry:"; // only one serial number must be given

  115. 	
  116. 	elseif (in_array($origRecordSerial, $dupRecordSerialsArray))
  117. 		$errors["origRecord"] = "The original record cannot be one of the duplicate records:"; // the serial number of the original record must not be given within the list of duplicate serial numbers

  118. 	
  119. 	// Validate the 'Duplicates' field:

  120. 	if (empty($dupRecords) OR !preg_match("/\d/", $dupRecords))
  121. 		$errors["dupRecords"] = "You must specify at least one serial number that identifies a duplicate record:"; // 'dupRecords' must not be empty and at least one serial number must be given

  122. 	
  123. 	// --------------------------------------------------------------------

  124. 

  125. 	// Now the script has finished the validation, check if there were any errors:

  126. 	if (count($errors) > 0)
  127. 	{
  128. 		// Write back session variables:

  129. 		saveSessionVariable("errors", $errors); // function 'saveSessionVariable()' is defined in 'include.inc.php'

  130. 		saveSessionVariable("formVars", $formVars);
  131. 

  132. 		// There are errors. Relocate back to the 'Flag Duplicates' form (script 'duplicate_manager.php'):

  133. 		header("Location: " . $referer);
  134. 

  135. 		exit; // >>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>> !EXIT! <<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<

  136. 	}
  137. 

  138. 	// --------------------------------------------------------------------

  139. 

  140. 	// If we made it here, then the data is considered valid!

  141. 

  142. 	// CONSTRUCT SQL QUERY:

  143. 

  144. 	// UPDATE field 'orig_record' in table 'refs':

  145. 	// original record:

  146. 	$queryArray[] = "UPDATE $tableRefs SET "
  147. 					. "orig_record = -" . $origRecordSerial
  148. 					. " WHERE serial = " . $origRecordSerial;
  149. 

  150. 	// duplicate record(s):

  151. 	$queryArray[] = "UPDATE $tableRefs SET "
  152. 					. "orig_record = " . $origRecordSerial
  153. 					. " WHERE serial RLIKE \"^(" . implode("|", $dupRecordSerialsArray) . ")$\"";

  154. 

  155. 	// --------------------------------------------------------------------

  156. 

  157. 	// (3) RUN QUERY, (4) DISPLAY HEADER & RESULTS

  158. 

  159. 	// (3) RUN the queries on the database through the connection:

  160. 	foreach($queryArray as $query)
  161. 		$result = queryMySQLDatabase($query); // function 'queryMySQLDatabase()' is defined in 'include.inc.php'

  162. 

  163. 	$affectedRows = ($result ? mysqli_affected_rows ($connection) : 0); // get the number of rows that were modified (or return 0 if an error occurred)

  164. 

  165. 	if ($affectedRows == 0) // no rows were affected by the update

  166. 	{
  167. 		// we'll file this additional error element here so that the 'errors' session variable isn't empty causing 'duplicate_manager.php' to re-load the form data that were submitted by the user

  168. 		$errors["ignoredRecords"] = "all";
  169. 

  170. 		// return an appropriate error message:

  171. 		$HeaderString = returnMsg("Nothing was changed by your query!", "warning", "strong", "HeaderString"); // function 'returnMsg()' is defined in 'include.inc.php'

  172. 

  173. 		// Write back session variables:

  174. 		saveSessionVariable("errors", $errors); // function 'saveSessionVariable()' is defined in 'include.inc.php'

  175. 		saveSessionVariable("formVars", $formVars);
  176. 		
  177. 		// Relocate back to the 'Flag Duplicates' form (script 'duplicate_manager.php'):

  178. 		header("Location: " . $referer);
  179. 

  180. 		exit; // >>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>> !EXIT! <<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<

  181. 	}
  182. 

  183. 	// Build correct header message:

  184. 	$HeaderString = returnMsg("The records below have been successfully flagged as original/duplicate records:", "", "", "HeaderString"); // function 'returnMsg()' is defined in 'include.inc.php'

  185. 

  186. 

  187. 	// Merge all given record serial numbers:

  188. 	$allRecordSerialsString = $origRecordSerial . "," . implode(",", $dupRecordSerialsArray);
  189. 

  190. 	// (4) Call 'show.php' which will display all affected records along with the header message

  191. 	//     (routing feedback output to a different script page will avoid any reload problems effectively!)

  192. 	header("Location: show.php?records=" . $allRecordSerialsString);
  193. 

  194. 	// --------------------------------------------------------------------

  195. 

  196. 	// (5) CLOSE CONNECTION

  197. 	disconnectFromMySQLDatabase(); // function 'disconnectFromMySQLDatabase()' is defined in 'include.inc.php'

  198. 

  199. 	// --------------------------------------------------------------------

  200. ?>