server/lib/setup/oci.php

211 lines
8.4 KiB
PHP
Raw Normal View History

<?php
namespace OC\Setup;
2013-04-02 20:01:23 +00:00
class OCI extends AbstractDatabase {
public $dbprettyname = 'Oracle';
2013-04-02 20:01:23 +00:00
protected $dbtablespace;
public function initialize($config) {
parent::initialize($config);
if (array_key_exists('dbtablespace', $options)) {
$this->dbtablespace = $options['dbtablespace'];
} else {
$this->dbtablespace = 'USERS';
}
\OC_Config::setValue('dbtablespace', $this->dbtablespace);
}
2013-04-10 18:03:54 +00:00
public function setupDatabase($username) {
2013-04-02 20:01:23 +00:00
$e_host = addslashes($this->dbhost);
$e_dbname = addslashes($this->dbname);
//check if the database user has admin right
if ($e_host == '') {
$easy_connect_string = $e_dbname; // use dbname as easy connect name
} else {
$easy_connect_string = '//'.$e_host.'/'.$e_dbname;
}
\OC_Log::write('setup oracle', 'connect string: ' . $easy_connect_string, \OC_Log::DEBUG);
2013-04-02 20:01:23 +00:00
$connection = @oci_connect($this->dbuser, $this->dbpassword, $easy_connect_string);
if(!$connection) {
$e = oci_error();
if (is_array ($e) && isset ($e['message'])) {
throw new DatabaseSetupException($l->t('Oracle connection could not be established'),
$e['message'].' Check environment: ORACLE_HOME='.getenv('ORACLE_HOME')
.' ORACLE_SID='.getenv('ORACLE_SID')
.' LD_LIBRARY_PATH='.getenv('LD_LIBRARY_PATH')
.' NLS_LANG='.getenv('NLS_LANG')
.' tnsnames.ora is '.(is_readable(getenv('ORACLE_HOME').'/network/admin/tnsnames.ora')?'':'not ').'readable');
}
2013-04-02 20:01:23 +00:00
throw new DatabaseSetupException($l->t('Oracle username and/or password not valid'),
'Check environment: ORACLE_HOME='.getenv('ORACLE_HOME')
.' ORACLE_SID='.getenv('ORACLE_SID')
.' LD_LIBRARY_PATH='.getenv('LD_LIBRARY_PATH')
.' NLS_LANG='.getenv('NLS_LANG')
.' tnsnames.ora is '.(is_readable(getenv('ORACLE_HOME').'/network/admin/tnsnames.ora')?'':'not ').'readable');
}
//check for roles creation rights in oracle
$query='SELECT count(*) FROM user_role_privs, role_sys_privs'
." WHERE user_role_privs.granted_role = role_sys_privs.role AND privilege = 'CREATE ROLE'";
$stmt = oci_parse($connection, $query);
if (!$stmt) {
2013-04-02 20:01:23 +00:00
$entry = $this->trans->t('DB Error: "%s"', array(oci_last_error($connection))) . '<br />';
$entry .= $this->trans->t('Offending command was: "%s"', array($query)) . '<br />';
\OC_Log::write('setup.oci', $entry, \OC_Log::WARN);
}
$result = oci_execute($stmt);
if($result) {
$row = oci_fetch_row($stmt);
}
if($result and $row[0] > 0) {
//use the admin login data for the new database user
//add prefix to the oracle user name to prevent collisions
2013-04-02 20:01:23 +00:00
$this->dbuser='oc_'.$username;
//create a new password so we don't need to store the admin config in the config file
2013-04-10 22:08:53 +00:00
$this->dbpassword=\OC_Util::generate_random_bytes(30);
//oracle passwords are treated as identifiers:
// must start with aphanumeric char
// needs to be shortened to 30 bytes, as the two " needed to escape the identifier count towards the identifier length.
2013-04-02 20:01:23 +00:00
$this->dbpassword=substr($this->dbpassword, 0, 30);
2013-04-10 22:08:53 +00:00
$this->createDBUser($connection);
2013-04-02 20:01:23 +00:00
\OC_Config::setValue('dbuser', $this->dbusername);
\OC_Config::setValue('dbname', $this->dbusername);
\OC_Config::setValue('dbpassword', $this->dbpassword);
//create the database not neccessary, oracle implies user = schema
2013-04-02 20:01:23 +00:00
//$this->createDatabase($this->dbname, $this->dbusername, $connection);
} else {
2013-04-02 20:01:23 +00:00
\OC_Config::setValue('dbuser', $this->dbuser);
\OC_Config::setValue('dbname', $this->dbname);
\OC_Config::setValue('dbpassword', $this->dbpassword);
//create the database not neccessary, oracle implies user = schema
2013-04-02 20:01:23 +00:00
//$this->createDatabase($this->dbname, $this->dbuser, $connection);
}
//FIXME check tablespace exists: select * from user_tablespaces
// the connection to dbname=oracle is not needed anymore
oci_close($connection);
2013-04-02 20:01:23 +00:00
// connect to the oracle database (schema=$this->dbuser) an check if the schema needs to be filled
$this->dbuser = \OC_Config::getValue('dbuser');
//$this->dbname = \OC_Config::getValue('dbname');
$this->dbpassword = \OC_Config::getValue('dbpassword');
2013-04-02 20:01:23 +00:00
$e_host = addslashes($this->dbhost);
$e_dbname = addslashes($this->dbname);
if ($e_host == '') {
$easy_connect_string = $e_dbname; // use dbname as easy connect name
} else {
$easy_connect_string = '//'.$e_host.'/'.$e_dbname;
}
2013-04-02 20:01:23 +00:00
$connection = @oci_connect($this->dbuser, $this->dbpassword, $easy_connect_string);
if(!$connection) {
2013-04-02 20:01:23 +00:00
throw new \DatabaseSetupException($this->trans->t('Oracle username and/or password not valid'),
$this->trans->t('You need to enter either an existing account or the administrator.'));
}
$query = "SELECT count(*) FROM user_tables WHERE table_name = :un";
$stmt = oci_parse($connection, $query);
2013-04-02 20:01:23 +00:00
$un = $this->dbtableprefix.'users';
oci_bind_by_name($stmt, ':un', $un);
if (!$stmt) {
2013-04-02 20:01:23 +00:00
$entry = $this->trans->t('DB Error: "%s"', array(oci_error($connection))) . '<br />';
$entry .= $this->trans->t('Offending command was: "%s"', array($query)) . '<br />';
\OC_Log::write('setup.oci', $entry, \OC_Log::WARN);
}
$result = oci_execute($stmt);
if($result) {
$row = oci_fetch_row($stmt);
}
if(!$result or $row[0]==0) {
\OC_DB::createDbFromStructure('db_structure.xml');
}
}
/**
*
* @param String $name
* @param String $password
* @param resource $connection
*/
2013-04-10 22:08:53 +00:00
private function createDBUser($connection) {
2013-04-02 20:01:23 +00:00
$name = $this->dbuser;
$password = $this->password;
$query = "SELECT * FROM all_users WHERE USERNAME = :un";
$stmt = oci_parse($connection, $query);
if (!$stmt) {
2013-04-02 20:01:23 +00:00
$entry = $this->trans->t('DB Error: "%s"', array(oci_error($connection))) . '<br />';
$entry .= $this->trans->t('Offending command was: "%s"', array($query)) . '<br />';
\OC_Log::write('setup.oci', $entry, \OC_Log::WARN);
}
oci_bind_by_name($stmt, ':un', $name);
$result = oci_execute($stmt);
if(!$result) {
2013-04-02 20:01:23 +00:00
$entry = $this->trans->t('DB Error: "%s"', array(oci_error($connection))) . '<br />';
$entry .= $this->trans->t('Offending command was: "%s"', array($query)) . '<br />';
\OC_Log::write('setup.oci', $entry, \OC_Log::WARN);
}
if(! oci_fetch_row($stmt)) {
//user does not exists let's create it :)
//password must start with alphabetic character in oracle
2013-04-02 20:01:23 +00:00
$query = 'CREATE USER '.$name.' IDENTIFIED BY "'.$password.'" DEFAULT TABLESPACE '.$this->dbtablespace;
$stmt = oci_parse($connection, $query);
if (!$stmt) {
2013-04-02 20:01:23 +00:00
$entry = $this->trans->t('DB Error: "%s"', array(oci_error($connection))) . '<br />';
$entry .= $this->trans->t('Offending command was: "%s"', array($query)) . '<br />';
\OC_Log::write('setup.oci', $entry, \OC_Log::WARN);
}
//oci_bind_by_name($stmt, ':un', $name);
$result = oci_execute($stmt);
if(!$result) {
2013-04-02 20:01:23 +00:00
$entry = $this->trans->t('DB Error: "%s"', array(oci_error($connection))) . '<br />';
$entry .= $this->trans->t('Offending command was: "%s", name: %s, password: %s',
array($query, $name, $password)) . '<br />';
\OC_Log::write('setup.oci', $entry, \OC_Log::WARN);
}
} else { // change password of the existing role
$query = "ALTER USER :un IDENTIFIED BY :pw";
$stmt = oci_parse($connection, $query);
if (!$stmt) {
2013-04-02 20:01:23 +00:00
$entry = $this->trans->t('DB Error: "%s"', array(oci_error($connection))) . '<br />';
$entry .= $this->trans->t('Offending command was: "%s"', array($query)) . '<br />';
\OC_Log::write('setup.oci', $entry, \OC_Log::WARN);
}
oci_bind_by_name($stmt, ':un', $name);
oci_bind_by_name($stmt, ':pw', $password);
$result = oci_execute($stmt);
if(!$result) {
2013-04-02 20:01:23 +00:00
$entry = $this->trans->t('DB Error: "%s"', array(oci_error($connection))) . '<br />';
$entry .= $this->trans->t('Offending command was: "%s"', array($query)) . '<br />';
\OC_Log::write('setup.oci', $entry, \OC_Log::WARN);
}
}
// grant necessary roles
$query = 'GRANT CREATE SESSION, CREATE TABLE, CREATE SEQUENCE, CREATE TRIGGER, UNLIMITED TABLESPACE TO '.$name;
$stmt = oci_parse($connection, $query);
if (!$stmt) {
2013-04-02 20:01:23 +00:00
$entry = $this->trans->t('DB Error: "%s"', array(oci_error($connection))) . '<br />';
$entry .= $this->trans->t('Offending command was: "%s"', array($query)) . '<br />';
\OC_Log::write('setup.oci', $entry, \OC_Log::WARN);
}
$result = oci_execute($stmt);
if(!$result) {
2013-04-02 20:01:23 +00:00
$entry = $this->trans->t('DB Error: "%s"', array(oci_error($connection))) . '<br />';
$entry .= $this->trans->t('Offending command was: "%s", name: %s, password: %s',
array($query, $name, $password)) . '<br />';
\OC_Log::write('setup.oci', $entry, \OC_Log::WARN);
}
}
}