199 lines
7.9 KiB
PHP
199 lines
7.9 KiB
PHP
|
<?php
|
||
|
|
||
|
namespace OC\Setup;
|
||
|
|
||
|
class OCI {
|
||
|
public static function setupDatabase($dbhost, $dbuser, $dbpass, $dbname, $dbtableprefix, $dbtablespace,
|
||
|
$username) {
|
||
|
$l = \OC_Setup::getTrans();
|
||
|
$e_host = addslashes($dbhost);
|
||
|
$e_dbname = addslashes($dbname);
|
||
|
//check if the database user has admin right
|
||
|
if ($e_host == '') {
|
||
|
$easy_connect_string = $e_dbname; // use dbname as easy connect name
|
||
|
} else {
|
||
|
$easy_connect_string = '//'.$e_host.'/'.$e_dbname;
|
||
|
}
|
||
|
\OC_Log::write('setup oracle', 'connect string: ' . $easy_connect_string, \OC_Log::DEBUG);
|
||
|
$connection = @oci_connect($dbuser, $dbpass, $easy_connect_string);
|
||
|
if(!$connection) {
|
||
|
$e = oci_error();
|
||
|
if (is_array ($e) && isset ($e['message'])) {
|
||
|
throw new DatabaseSetupException($l->t('Oracle connection could not be established'),
|
||
|
$e['message'].' Check environment: ORACLE_HOME='.getenv('ORACLE_HOME')
|
||
|
.' ORACLE_SID='.getenv('ORACLE_SID')
|
||
|
.' LD_LIBRARY_PATH='.getenv('LD_LIBRARY_PATH')
|
||
|
.' NLS_LANG='.getenv('NLS_LANG')
|
||
|
.' tnsnames.ora is '.(is_readable(getenv('ORACLE_HOME').'/network/admin/tnsnames.ora')?'':'not ').'readable');
|
||
|
}
|
||
|
throw new DatabaseSetupException($l->t($l->t('Oracle username and/or password not valid'),
|
||
|
'Check environment: ORACLE_HOME='.getenv('ORACLE_HOME')
|
||
|
.' ORACLE_SID='.getenv('ORACLE_SID')
|
||
|
.' LD_LIBRARY_PATH='.getenv('LD_LIBRARY_PATH')
|
||
|
.' NLS_LANG='.getenv('NLS_LANG')
|
||
|
.' tnsnames.ora is '.(is_readable(getenv('ORACLE_HOME').'/network/admin/tnsnames.ora')?'':'not ').'readable');
|
||
|
}
|
||
|
//check for roles creation rights in oracle
|
||
|
|
||
|
$query='SELECT count(*) FROM user_role_privs, role_sys_privs'
|
||
|
." WHERE user_role_privs.granted_role = role_sys_privs.role AND privilege = 'CREATE ROLE'";
|
||
|
$stmt = oci_parse($connection, $query);
|
||
|
if (!$stmt) {
|
||
|
$entry = $l->t('DB Error: "%s"', array(oci_last_error($connection))) . '<br />';
|
||
|
$entry .= $l->t('Offending command was: "%s"', array($query)) . '<br />';
|
||
|
\OC_Log::write('setup.oci', $entry, \OC_Log::WARN);
|
||
|
}
|
||
|
$result = oci_execute($stmt);
|
||
|
if($result) {
|
||
|
$row = oci_fetch_row($stmt);
|
||
|
}
|
||
|
if($result and $row[0] > 0) {
|
||
|
//use the admin login data for the new database user
|
||
|
|
||
|
//add prefix to the oracle user name to prevent collisions
|
||
|
$dbusername='oc_'.$username;
|
||
|
//create a new password so we don't need to store the admin config in the config file
|
||
|
$dbpassword=OC_Util::generate_random_bytes(30);
|
||
|
|
||
|
//oracle passwords are treated as identifiers:
|
||
|
// must start with aphanumeric char
|
||
|
// needs to be shortened to 30 bytes, as the two " needed to escape the identifier count towards the identifier length.
|
||
|
$dbpassword=substr($dbpassword, 0, 30);
|
||
|
|
||
|
self::createDBUser($dbusername, $dbpassword, $dbtablespace, $connection);
|
||
|
|
||
|
\OC_Config::setValue('dbuser', $dbusername);
|
||
|
\OC_Config::setValue('dbname', $dbusername);
|
||
|
\OC_Config::setValue('dbpassword', $dbpassword);
|
||
|
|
||
|
//create the database not neccessary, oracle implies user = schema
|
||
|
//self::createDatabase($dbname, $dbusername, $connection);
|
||
|
} else {
|
||
|
|
||
|
\OC_Config::setValue('dbuser', $dbuser);
|
||
|
\OC_Config::setValue('dbname', $dbname);
|
||
|
\OC_Config::setValue('dbpassword', $dbpass);
|
||
|
|
||
|
//create the database not neccessary, oracle implies user = schema
|
||
|
//self::createDatabase($dbname, $dbuser, $connection);
|
||
|
}
|
||
|
|
||
|
//FIXME check tablespace exists: select * from user_tablespaces
|
||
|
|
||
|
// the connection to dbname=oracle is not needed anymore
|
||
|
oci_close($connection);
|
||
|
|
||
|
// connect to the oracle database (schema=$dbuser) an check if the schema needs to be filled
|
||
|
$dbuser = \OC_Config::getValue('dbuser');
|
||
|
//$dbname = \OC_Config::getValue('dbname');
|
||
|
$dbpass = \OC_Config::getValue('dbpassword');
|
||
|
|
||
|
$e_host = addslashes($dbhost);
|
||
|
$e_dbname = addslashes($dbname);
|
||
|
|
||
|
if ($e_host == '') {
|
||
|
$easy_connect_string = $e_dbname; // use dbname as easy connect name
|
||
|
} else {
|
||
|
$easy_connect_string = '//'.$e_host.'/'.$e_dbname;
|
||
|
}
|
||
|
$connection = @oci_connect($dbuser, $dbpass, $easy_connect_string);
|
||
|
if(!$connection) {
|
||
|
throw new DatabaseSetupException($l->t('Oracle username and/or password not valid'),
|
||
|
$l->t('You need to enter either an existing account or the administrator.'));
|
||
|
}
|
||
|
$query = "SELECT count(*) FROM user_tables WHERE table_name = :un";
|
||
|
$stmt = oci_parse($connection, $query);
|
||
|
$un = $dbtableprefix.'users';
|
||
|
oci_bind_by_name($stmt, ':un', $un);
|
||
|
if (!$stmt) {
|
||
|
$entry = $l->t('DB Error: "%s"', array(oci_error($connection))) . '<br />';
|
||
|
$entry .= $l->t('Offending command was: "%s"', array($query)) . '<br />';
|
||
|
\OC_Log::write('setup.oci', $entry, \OC_Log::WARN);
|
||
|
}
|
||
|
$result = oci_execute($stmt);
|
||
|
|
||
|
if($result) {
|
||
|
$row = oci_fetch_row($stmt);
|
||
|
}
|
||
|
if(!$result or $row[0]==0) {
|
||
|
\OC_DB::createDbFromStructure('db_structure.xml');
|
||
|
}
|
||
|
}
|
||
|
|
||
|
/**
|
||
|
*
|
||
|
* @param String $name
|
||
|
* @param String $password
|
||
|
* @param String $tablespace
|
||
|
* @param resource $connection
|
||
|
*/
|
||
|
private static function createDBUser($name, $password, $tablespace, $connection) {
|
||
|
$l = \OC_Setup::getTrans();
|
||
|
$query = "SELECT * FROM all_users WHERE USERNAME = :un";
|
||
|
$stmt = oci_parse($connection, $query);
|
||
|
if (!$stmt) {
|
||
|
$entry = $l->t('DB Error: "%s"', array(oci_error($connection))) . '<br />';
|
||
|
$entry .= $l->t('Offending command was: "%s"', array($query)) . '<br />';
|
||
|
\OC_Log::write('setup.oci', $entry, \OC_Log::WARN);
|
||
|
}
|
||
|
oci_bind_by_name($stmt, ':un', $name);
|
||
|
$result = oci_execute($stmt);
|
||
|
if(!$result) {
|
||
|
$entry = $l->t('DB Error: "%s"', array(oci_error($connection))) . '<br />';
|
||
|
$entry .= $l->t('Offending command was: "%s"', array($query)) . '<br />';
|
||
|
\OC_Log::write('setup.oci', $entry, \OC_Log::WARN);
|
||
|
}
|
||
|
|
||
|
if(! oci_fetch_row($stmt)) {
|
||
|
//user does not exists let's create it :)
|
||
|
//password must start with alphabetic character in oracle
|
||
|
$query = 'CREATE USER '.$name.' IDENTIFIED BY "'.$password.'" DEFAULT TABLESPACE '.$tablespace; //TODO set default tablespace
|
||
|
$stmt = oci_parse($connection, $query);
|
||
|
if (!$stmt) {
|
||
|
$entry = $l->t('DB Error: "%s"', array(oci_error($connection))) . '<br />';
|
||
|
$entry .= $l->t('Offending command was: "%s"', array($query)) . '<br />';
|
||
|
\OC_Log::write('setup.oci', $entry, \OC_Log::WARN);
|
||
|
}
|
||
|
//oci_bind_by_name($stmt, ':un', $name);
|
||
|
$result = oci_execute($stmt);
|
||
|
if(!$result) {
|
||
|
$entry = $l->t('DB Error: "%s"', array(oci_error($connection))) . '<br />';
|
||
|
$entry .= $l->t('Offending command was: "%s", name: %s, password: %s',
|
||
|
array($query, $name, $password)) . '<br />';
|
||
|
\OC_Log::write('setup.oci', $entry, \OC_Log::WARN);
|
||
|
}
|
||
|
} else { // change password of the existing role
|
||
|
$query = "ALTER USER :un IDENTIFIED BY :pw";
|
||
|
$stmt = oci_parse($connection, $query);
|
||
|
if (!$stmt) {
|
||
|
$entry = $l->t('DB Error: "%s"', array(oci_error($connection))) . '<br />';
|
||
|
$entry .= $l->t('Offending command was: "%s"', array($query)) . '<br />';
|
||
|
\OC_Log::write('setup.oci', $entry, \OC_Log::WARN);
|
||
|
}
|
||
|
oci_bind_by_name($stmt, ':un', $name);
|
||
|
oci_bind_by_name($stmt, ':pw', $password);
|
||
|
$result = oci_execute($stmt);
|
||
|
if(!$result) {
|
||
|
$entry = $l->t('DB Error: "%s"', array(oci_error($connection))) . '<br />';
|
||
|
$entry .= $l->t('Offending command was: "%s"', array($query)) . '<br />';
|
||
|
\OC_Log::write('setup.oci', $entry, \OC_Log::WARN);
|
||
|
}
|
||
|
}
|
||
|
// grant necessary roles
|
||
|
$query = 'GRANT CREATE SESSION, CREATE TABLE, CREATE SEQUENCE, CREATE TRIGGER, UNLIMITED TABLESPACE TO '.$name;
|
||
|
$stmt = oci_parse($connection, $query);
|
||
|
if (!$stmt) {
|
||
|
$entry = $l->t('DB Error: "%s"', array(oci_error($connection))) . '<br />';
|
||
|
$entry .= $l->t('Offending command was: "%s"', array($query)) . '<br />';
|
||
|
\OC_Log::write('setup.oci', $entry, \OC_Log::WARN);
|
||
|
}
|
||
|
$result = oci_execute($stmt);
|
||
|
if(!$result) {
|
||
|
$entry = $l->t('DB Error: "%s"', array(oci_error($connection))) . '<br />';
|
||
|
$entry .= $l->t('Offending command was: "%s", name: %s, password: %s',
|
||
|
array($query, $name, $password)) . '<br />';
|
||
|
\OC_Log::write('setup.oci', $entry, \OC_Log::WARN);
|
||
|
}
|
||
|
}
|
||
|
}
|