Halaman utama Jelajahi Bantuan
Masuk
iProspective
/
dolibarr
3
0
Fork 0
Berkas Masalah 0 Permintaan Tarik 0 Wiki
Pohon: a57a41a07d
Ranting Tag
dolibarr
/
htdocs
/
admin
/
tools
/
export.php

export.php 14 KB
Riwayat Mentahan

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399 
  1. <?php
    2. 

  2. /* Copyright (C) 2006-2014  Laurent Destailleur <eldy@users.sourceforge.net>
    3. 

  3.  * Copyright (C) 2011       Juanjo Menent       <jmenent@2byte.es>
    4. 

  4.  * Copyright (C) 2015       Raphaël Doursenaud  <rdoursenaud@gpcsolutions.fr>
    5. 

  5.  *
    6. 

  6. * This program is free software; you can redistribute it and/or modify
    7. 

  7. * it under the terms of the GNU General Public License as published by
    8. 

  8. * the Free Software Foundation; either version 3 of the License, or
    9. 

  9. * (at your option) any later version.
    10. 

  10. *
    11. 

  11. * This program is distributed in the hope that it will be useful,
    12. 

  12. * but WITHOUT ANY WARRANTY; without even the implied warranty of
    13. 

  13. * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
    14. 

  14. * GNU General Public License for more details.
    15. 

  15. *
    16. 

  16. * You should have received a copy of the GNU General Public License
    17. 

  17. * along with this program. If not, see <http://www.gnu.org/licenses/>.
    18. 

  18. */
    19. 

  19. 

  20. /**
    21. 

  21.  *		\file 		htdocs/admin/tools/export.php
    22. 

  22.  *		\brief      Page to export a database into a dump file
    23. 

  23.  */
    24. 

  24. 

  25. require '../../main.inc.php';
    26. 

  26. require_once DOL_DOCUMENT_ROOT.'/core/lib/admin.lib.php';
    27. 

  27. require_once DOL_DOCUMENT_ROOT.'/core/lib/files.lib.php';
    28. 

  28. require_once DOL_DOCUMENT_ROOT.'/core/class/utils.class.php';
    29. 

  29. require_once DOL_DOCUMENT_ROOT.'/core/class/html.formfile.class.php';
    30. 

  30. 

  31. $langs->load("admin");
    32. 

  32. 

  33. $action=GETPOST('action','alpha');
    34. 

  34. $what=GETPOST('what','alpha');
    35. 

  35. $export_type=GETPOST('export_type','alpha');
    36. 

  36. $file=GETPOST('filename_template','alpha');
    37. 

  37. 

  38. $sortfield = GETPOST('sortfield','alpha');
    39. 

  39. $sortorder = GETPOST('sortorder','alpha');
    40. 

  40. $page = GETPOST("page",'int');
    41. 

  41. if (! $sortorder) $sortorder="DESC";
    42. 

  42. if (! $sortfield) $sortfield="date";
    43. 

  43. if ($page < 0) { $page = 0; }
    44. 

  44. $limit = GETPOST('limit')?GETPOST('limit','int'):$conf->liste_limit;
    45. 

  45. $offset = $limit * $page;
    46. 

  46. 

  47. if (! $user->admin) accessforbidden();
    48. 

  48. 

  49. if ($file && ! $what)
    50. 

  50. {
    51. 

  51.     //print DOL_URL_ROOT.'/dolibarr_export.php';
    52. 

  52.     header("Location: ".DOL_URL_ROOT.'/admin/tools/dolibarr_export.php?msg='.urlencode($langs->trans("ErrorFieldRequired",$langs->transnoentities("ExportMethod"))));
    53. 

  53.     exit;
    54. 

  54. }
    55. 

  55. 

  56. $errormsg='';
    57. 

  57. 

  58. 

  59. /*
    60. 

  60.  * Actions
    61. 

  61.  */
    62. 

  62. 

  63. if ($action == 'delete')
    64. 

  64. {
    65. 

  65. 	$file=$conf->admin->dir_output.'/'.GETPOST('urlfile');
    66. 

  66. 	$ret=dol_delete_file($file, 1);
    67. 

  67. 	if ($ret) setEventMessages($langs->trans("FileWasRemoved", GETPOST('urlfile')), null, 'mesgs');
    68. 

  68. 	else setEventMessages($langs->trans("ErrorFailToDeleteFile", GETPOST('urlfile')), null, 'errors');
    69. 

  69. 	$action='';
    70. 

  70. }
    71. 

  71. 

  72. 

  73. /*
    74. 

  74.  * View
    75. 

  75.  */
    76. 

  76. 

  77. $_SESSION["commandbackuplastdone"]='';
    78. 

  78. $_SESSION["commandbackuptorun"]='';
    79. 

  79. $_SESSION["commandbackupresult"]='';
    80. 

  80. 

  81. // Increase limit of time. Works only if we are not in safe mode
    82. 

  82. $ExecTimeLimit=600;
    83. 

  83. if (!empty($ExecTimeLimit))
    84. 

  84. {
    85. 

  85.     $err=error_reporting();
    86. 

  86.     error_reporting(0);     // Disable all errors
    87. 

  87.     //error_reporting(E_ALL);
    88. 

  88.     @set_time_limit($ExecTimeLimit);   // Need more than 240 on Windows 7/64
    89. 

  89.     error_reporting($err);
    90. 

  90. }
    91. 

  91. if (!empty($MemoryLimit))
    92. 

  92. {
    93. 

  93.     @ini_set('memory_limit', $MemoryLimit);
    94. 

  94. }
    95. 

  95. 

  96. $form=new Form($db);
    97. 

  97. $formfile = new FormFile($db);
    98. 

  98. 

  99. //$help_url='EN:Backups|FR:Sauvegardes|ES:Copias_de_seguridad';
    100. 

  100. //llxHeader('','',$help_url);
    101. 

  101. 

  102. //print load_fiche_titre($langs->trans("Backup"),'','title_setup');
    103. 

  103. 

  104. 

  105. // Start with empty buffer
    106. 

  106. $dump_buffer = '';
    107. 

  107. $dump_buffer_len = 0;
    108. 

  108. 

  109. // We will send fake headers to avoid browser timeout when buffering
    110. 

  110. $time_start = time();
    111. 

  111. 

  112. 

  113. $outputdir  = $conf->admin->dir_output.'/backup';
    114. 

  114. $result=dol_mkdir($outputdir);
    115. 

  115. 

  116. 

  117. $utils = new Utils($db);
    118. 

  118. 

  119. 

  120. // MYSQL
    121. 

  121. if ($what == 'mysql')
    122. 

  122. {
    123. 

  123.     
    124. 

  124.     $cmddump=GETPOST("mysqldump");	// Do not sanitize here with 'alpha', will be sanitize later by escapeshellarg
    125. 

  125.     if (! empty($dolibarr_main_restrict_os_commands))
    126. 

  126.     {
    127. 

  127.         $arrayofallowedcommand=explode(',', $dolibarr_main_restrict_os_commands);
    128. 

  128.         $ok=0;
    129. 

  129.         dol_syslog("Command are restricted to ".$dolibarr_main_restrict_os_commands.". We check that on of this command is inside ".$cmddump);
    130. 

  130.         foreach($arrayofallowedcommand as $allowedcommand)
    131. 

  131.         {
    132. 

  132.             if (preg_match('/'.preg_quote($allowedcommand,'/').'/', $cmddump))
    133. 

  133.             {
    134. 

  134.                 $ok=1;
    135. 

  135.                 break;
    136. 

  136.             }
    137. 

  137.         }
    138. 

  138.         if (! $ok)
    139. 

  139.         {
    140. 

  140.             $errormsg=$langs->trans('CommandIsNotInsideAllowedCommands');
    141. 

  141.         }
    142. 

  142.     }
    143. 

  143.     
    144. 

  144.     if (! $errormsg && $cmddump)
    145. 

  145.     {
    146. 

  146.         dolibarr_set_const($db, 'SYSTEMTOOLS_MYSQLDUMP', $cmddump,'chaine',0,'',$conf->entity);
    147. 

  147.     }
    148. 

  148. 

  149.     if (! $errormsg) 
    150. 

  150.     {
    151. 

  151.         $utils->dumpDatabase(GETPOST('compression','alpha'), $what, 0, $file);
    152. 

  152.         $errormsg=$utils->error;
    153. 

  153.         $_SESSION["commandbackuplastdone"]=$utils->result['commandbackuplastdone'];
    154. 

  154.         $_SESSION["commandbackuptorun"]=$utils->result['commandbackuptorun'];
    155. 

  155.     }
    156. 

  156. }
    157. 

  157. 

  158. // MYSQL NO BIN
    159. 

  159. if ($what == 'mysqlnobin')
    160. 

  160. {
    161. 

  161.     $utils->dumpDatabase(GETPOST('compression','alpha'), $what, 0, $file);
    162. 

  162. 

  163.     $errormsg=$utils->error;
    164. 

  164.     $_SESSION["commandbackuplastdone"]=$utils->result['commandbackuplastdone'];
    165. 

  165.     $_SESSION["commandbackuptorun"]=$utils->result['commandbackuptorun'];
    166. 

  166. }
    167. 

  167. 

  168. // POSTGRESQL
    169. 

  169. if ($what == 'postgresql')
    170. 

  170. {
    171. 

  171.     $cmddump=GETPOST("postgresqldump");	// Do not sanitize here with 'alpha', will be sanitize later by escapeshellarg
    172. 

  172.     
    173. 

  173.     if (! $errormsg && $cmddump)
    174. 

  174.     {
    175. 

  175.         dolibarr_set_const($db, 'SYSTEMTOOLS_POSTGRESQLDUMP', $cmddump,'chaine',0,'',$conf->entity);
    176. 

  176.     }
    177. 

  177. 

  178.     if (! $errormsg) 
    179. 

  179.     {
    180. 

  180.         $utils->dumpDatabase(GETPOST('compression','alpha'), $what, 0, $file);
    181. 

  181.         $errormsg=$utils->error;
    182. 

  182.         $_SESSION["commandbackuplastdone"]=$utils->result['commandbackuplastdone'];
    183. 

  183.         $_SESSION["commandbackuptorun"]=$utils->result['commandbackuptorun'];
    184. 

  184.     }
    185. 

  185. 

  186.     $what='';   // Clear to show message to run command
    187. 

  187. }
    188. 

  188. 

  189. 

  190. 

  191. if ($errormsg)
    192. 

  192. {
    193. 

  193. 	setEventMessages($langs->trans("Error")." : ".$errormsg, null, 'errors');
    194. 

  194. 

  195. 	$resultstring='';
    196. 

  196.     $resultstring.='<div class="error">'.$langs->trans("Error")." : ".$errormsg.'</div>';
    197. 

  197. 

  198.     $_SESSION["commandbackupresult"]=$resultstring;
    199. 

  199. }
    200. 

  200. else
    201. 

  201. {
    202. 

  202. 	if ($what)
    203. 

  203. 	{
    204. 

  204.         setEventMessages($langs->trans("BackupFileSuccessfullyCreated").'.<br>'.$langs->trans("YouCanDownloadBackupFile"), null, 'mesgs');
    205. 

  205. 

  206.         $resultstring='<div class="ok">';
    207. 

  207.         $resultstring.=$langs->trans("BackupFileSuccessfullyCreated").'.<br>';
    208. 

  208.         $resultstring.=$langs->trans("YouCanDownloadBackupFile");
    209. 

  209.         $resultstring.='<div>';
    210. 

  210. 

  211.         $_SESSION["commandbackupresult"]=$resultstring;
    212. 

  212. 	}
    213. 

  213. 	else
    214. 

  214. 	{
    215. 

  215. 		setEventMessages($langs->trans("YouMustRunCommandFromCommandLineAfterLoginToUser",$dolibarr_main_db_user,$dolibarr_main_db_user), null, 'mesgs');
    216. 

  216. 	}
    217. 

  217. }
    218. 

  218. 

  219. 

  220. /*
    221. 

  221. $filearray=dol_dir_list($conf->admin->dir_output.'/backup','files',0,'','',$sortfield,(strtolower($sortorder)=='asc'?SORT_ASC:SORT_DESC),1);
    222. 

  222. $result=$formfile->list_of_documents($filearray,null,'systemtools','',1,'backup/',1,0,($langs->trans("NoBackupFileAvailable").'<br>'.$langs->trans("ToBuildBackupFileClickHere",DOL_URL_ROOT.'/admin/tools/dolibarr_export.php')),0,$langs->trans("PreviousDumpFiles"));
    223. 

  223. 

  224. print '<br>';
    225. 

  225. */
    226. 

  226. 

  227. // Redirect t backup page
    228. 

  228. header("Location: dolibarr_export.php");
    229. 

  229. 

  230. $time_end = time();
    231. 

  231. 

  232. $db->close();
    233. 

  233. 

  234. 

  235. 

  236. // MYSQL NO BINARIES (only php)
    237. 

  237. /**	Backup the db OR just a table without mysqldump binary (does not require any exec permission)
    238. 

  238.  *	Author: David Walsh (http://davidwalsh.name/backup-mysql-database-php)
    239. 

  239.  *	Updated and enhanced by Stephen Larroque (lrq3000) and by the many commentators from the blog
    240. 

  240.  *	Note about foreign keys constraints: for Dolibarr, since there are a lot of constraints and when imported the tables will be inserted in the dumped order, not in constraints order, then we ABSOLUTELY need to use SET FOREIGN_KEY_CHECKS=0; when importing the sql dump.
    241. 

  241.  *	Note2: db2SQL by Howard Yeend can be an alternative, by using SHOW FIELDS FROM and SHOW KEYS FROM we could generate a more precise dump (eg: by getting the type of the field and then precisely outputting the right formatting - in quotes, numeric or null - instead of trying to guess like we are doing now).
    242. 

  242.  *
    243. 

  243.  *	@param	string	$outputfile		Output file name
    244. 

  244.  *	@param	string	$tables			Table name or '*' for all
    245. 

  245.  *	@return	int						<0 if KO, >0 if OK
    246. 

  246.  */
    247. 

  247. function backup_tables($outputfile, $tables='*')
    248. 

  248. {
    249. 

  249.     global $db, $langs;
    250. 

  250.     global $errormsg;
    251. 

  251. 

  252.     // Set to UTF-8
    253. 

  253. 	if(is_a($db, 'DoliDBMysqli')) {
    254. 

  254. 		/** @var DoliDBMysqli $db */
    255. 

  255. 		$db->db->set_charset('utf8');
    256. 

  256. 	} else {
    257. 

  257. 		/** @var DoliDB $db */
    258. 

  258. 		$db->query('SET NAMES utf8');
    259. 

  259. 		$db->query('SET CHARACTER SET utf8');
    260. 

  260. 	}
    261. 

  261. 

  262.     //get all of the tables
    263. 

  263.     if ($tables == '*')
    264. 

  264.     {
    265. 

  265.         $tables = array();
    266. 

  266.         $result = $db->query('SHOW FULL TABLES WHERE Table_type = \'BASE TABLE\'');
    267. 

  267.         while($row = $db->fetch_row($result))
    268. 

  268.         {
    269. 

  269.             $tables[] = $row[0];
    270. 

  270.         }
    271. 

  271.     }
    272. 

  272.     else
    273. 

  273.     {
    274. 

  274.         $tables = is_array($tables) ? $tables : explode(',',$tables);
    275. 

  275.     }
    276. 

  276. 

  277.     //cycle through
    278. 

  278.     $handle = fopen($outputfile, 'w+');
    279. 

  279.     if (fwrite($handle, '') === FALSE)
    280. 

  280.     {
    281. 

  281.         $langs->load("errors");
    282. 

  282.         dol_syslog("Failed to open file ".$outputfile,LOG_ERR);
    283. 

  283.         $errormsg=$langs->trans("ErrorFailedToWriteInDir");
    284. 

  284.         return -1;
    285. 

  285.     }
    286. 

  286. 

  287.     // Print headers and global mysql config vars
    288. 

  288.     $sqlhead = '';
    289. 

  289.     $sqlhead .= "-- ".$db::LABEL." dump via php
    290. 

  290. --
    291. 

  291. -- Host: ".$db->db->host_info."    Database: ".$db->database_name."
    292. 

  292. -- ------------------------------------------------------
    293. 

  293. -- Server version	".$db->db->server_info."
    294. 

  294. 

  295. /*!40101 SET @OLD_CHARACTER_SET_CLIENT=@@CHARACTER_SET_CLIENT */;
    296. 

  296. /*!40101 SET @OLD_CHARACTER_SET_RESULTS=@@CHARACTER_SET_RESULTS */;
    297. 

  297. /*!40101 SET @OLD_COLLATION_CONNECTION=@@COLLATION_CONNECTION */;
    298. 

  298. /*!40101 SET NAMES utf8 */;
    299. 

  299. 

  300. ";
    301. 

  301. 

  302.     if (GETPOST("nobin_disable_fk")) $sqlhead .= "SET FOREIGN_KEY_CHECKS=0;\n";
    303. 

  303.     $sqlhead .= "SET SQL_MODE=\"NO_AUTO_VALUE_ON_ZERO\";\n";
    304. 

  304.     if (GETPOST("nobin_use_transaction")) $sqlhead .= "SET AUTOCOMMIT=0;\nSTART TRANSACTION;\n";
    305. 

  305. 

  306.     fwrite($handle, $sqlhead);
    307. 

  307. 

  308.     $ignore = '';
    309. 

  309.     if (GETPOST("nobin_sql_ignore")) $ignore = 'IGNORE ';
    310. 

  310.     $delayed = '';
    311. 

  311.     if (GETPOST("nobin_delayed")) $delayed = 'DELAYED ';
    312. 

  312. 

  313.     // Process each table and print their definition + their datas
    314. 

  314.     foreach($tables as $table)
    315. 

  315.     {
    316. 

  316.         // Saving the table structure
    317. 

  317.         fwrite($handle, "\n--\n-- Table structure for table `".$table."`\n--\n");
    318. 

  318. 

  319.         if (GETPOST("nobin_drop")) fwrite($handle,"DROP TABLE IF EXISTS `".$table."`;\n"); // Dropping table if exists prior to re create it
    320. 

  320.         //fwrite($handle,"/*!40101 SET @saved_cs_client     = @@character_set_client */;\n");
    321. 

  321.         //fwrite($handle,"/*!40101 SET character_set_client = utf8 */;\n");
    322. 

  322.         $resqldrop=$db->query('SHOW CREATE TABLE '.$table);
    323. 

  323.         $row2 = $db->fetch_row($resqldrop);
    324. 

  324.         if (empty($row2[1]))
    325. 

  325.         {
    326. 

  326.         	fwrite($handle, "\n-- WARNING: Show create table ".$table." return empy string when it should not.\n");
    327. 

  327.         }
    328. 

  328.         else
    329. 

  329.         {
    330. 

  330.         	fwrite($handle,$row2[1].";\n");
    331. 

  331. 	        //fwrite($handle,"/*!40101 SET character_set_client = @saved_cs_client */;\n\n");
    332. 

  332. 

  333. 	        // Dumping the data (locking the table and disabling the keys check while doing the process)
    334. 

  334. 	        fwrite($handle, "\n--\n-- Dumping data for table `".$table."`\n--\n");
    335. 

  335. 	        if (!GETPOST("nobin_nolocks")) fwrite($handle, "LOCK TABLES `".$table."` WRITE;\n"); // Lock the table before inserting data (when the data will be imported back)
    336. 

  336. 	        if (GETPOST("nobin_disable_fk")) fwrite($handle, "ALTER TABLE `".$table."` DISABLE KEYS;\n");
    337. 

  337. 

  338. 	        $sql='SELECT * FROM '.$table;
    339. 

  339. 	        $result = $db->query($sql);
    340. 

  340. 	        while($row = $db->fetch_row($result))
    341. 

  341. 	        {
    342. 

  342. 	            // For each row of data we print a line of INSERT
    343. 

  343. 	            fwrite($handle,'INSERT '.$delayed.$ignore.'INTO `'.$table.'` VALUES (');
    344. 

  344. 	            $columns = count($row);
    345. 

  345. 	            for($j=0; $j<$columns; $j++) {
    346. 

  346. 	                // Processing each columns of the row to ensure that we correctly save the value (eg: add quotes for string - in fact we add quotes for everything, it's easier)
    347. 

  347. 	                if ($row[$j] == null && !is_string($row[$j])) {
    348. 

  348. 	                    // IMPORTANT: if the field is NULL we set it NULL
    349. 

  349. 	                    $row[$j] = 'NULL';
    350. 

  350. 	                } elseif(is_string($row[$j]) && $row[$j] == '') {
    351. 

  351. 	                    // if it's an empty string, we set it as an empty string
    352. 

  352. 	                    $row[$j] = "''";
    353. 

  353. 	                } elseif(is_numeric($row[$j]) && !strcmp($row[$j], $row[$j]+0) ) { // test if it's a numeric type and the numeric version ($nb+0) == string version (eg: if we have 01, it's probably not a number but rather a string, else it would not have any leading 0)
    354. 

  354. 	                    // if it's a number, we return it as-is
    355. 

  355. //	                    $row[$j] = $row[$j];
    356. 

  356. 	                } else { // else for all other cases we escape the value and put quotes around
    357. 

  357. 	                    $row[$j] = addslashes($row[$j]);
    358. 

  358. 	                    $row[$j] = preg_replace("#\n#", "\\n", $row[$j]);
    359. 

  359. 	                    $row[$j] = "'".$row[$j]."'";
    360. 

  360. 	                }
    361. 

  361. 	            }
    362. 

  362. 	            fwrite($handle,implode(',', $row).");\n");
    363. 

  363. 	        }
    364. 

  364. 	        if (GETPOST("nobin_disable_fk")) fwrite($handle, "ALTER TABLE `".$table."` ENABLE KEYS;\n"); // Enabling back the keys/index checking
    365. 

  365. 	        if (!GETPOST("nobin_nolocks")) fwrite($handle, "UNLOCK TABLES;\n"); // Unlocking the table
    366. 

  366. 	        fwrite($handle,"\n\n\n");
    367. 

  367. 	    }
    368. 

  368.     }
    369. 

  369. 

  370.     /* Backup Procedure structure*/
    371. 

  371.     /*
    372. 

  372.      $result = $db->query('SHOW PROCEDURE STATUS');
    373. 

  373.     if ($db->num_rows($result) > 0)
    374. 

  374.     {
    375. 

  375.     while ($row = $db->fetch_row($result)) { $procedures[] = $row[1]; }
    376. 

  376.     foreach($procedures as $proc)
    377. 

  377.     {
    378. 

  378.     fwrite($handle,"DELIMITER $$\n\n");
    379. 

  379.     fwrite($handle,"DROP PROCEDURE IF EXISTS '$name'.'$proc'$$\n");
    380. 

  380.     $resqlcreateproc=$db->query("SHOW CREATE PROCEDURE '$proc'");
    381. 

  381.     $row2 = $db->fetch_row($resqlcreateproc);
    382. 

  382.     fwrite($handle,"\n".$row2[2]."$$\n\n");
    383. 

  383.     fwrite($handle,"DELIMITER ;\n\n");
    384. 

  384.     }
    385. 

  385.     }
    386. 

  386.     */
    387. 

  387.     /* Backup Procedure structure*/
    388. 

  388. 

  389.     // Write the footer (restore the previous database settings)
    390. 

  390.     $sqlfooter="\n\n";
    391. 

  391.     if (GETPOST("nobin_use_transaction")) $sqlfooter .= "COMMIT;\n";
    392. 

  392.     if (GETPOST("nobin_disable_fk")) $sqlfooter .= "SET FOREIGN_KEY_CHECKS=1;\n";
    393. 

  393.     $sqlfooter.="\n\n-- Dump completed on ".date('Y-m-d G-i-s');
    394. 

  394.     fwrite($handle, $sqlfooter);
    395. 

  395. 

  396.     fclose($handle);
    397. 

  397. 

  398.     return 1;
    399. 

  399. }
    400.