/** * Update any requests to limit the results to the current site */ public function augmentSQL(SQLSelect $query, DataQuery $dataQuery = NULL) { if (Subsite::$disable_subsite_filter) { return; } if ($dataQuery->getQueryParam('Subsite.filter') === false) { return; } // If you're querying by ID, ignore the sub-site - this is a bit ugly... // if(!$query->where || (strpos($query->where[0], ".\"ID\" = ") === false && strpos($query->where[0], ".`ID` = ") === false && strpos($query->where[0], ".ID = ") === false && strpos($query->where[0], "ID = ") !== 0)) { if ($query->filtersOnID()) { return; } if (Subsite::$force_subsite) { $subsiteID = Subsite::$force_subsite; } else { /*if($context = DataObject::context_obj()) $subsiteID = (int)$context->SubsiteID; else */ $subsiteID = (int) Subsite::currentSubsiteID(); } // The foreach is an ugly way of getting the first key :-) foreach ($query->getFrom() as $tableName => $info) { // The tableName should be SiteTree or SiteTree_Live... if (strpos($tableName, 'SiteTree') === false) { break; } $query->addWhere("\"{$tableName}\".\"SubsiteID\" IN ({$subsiteID})"); break; } }
/** * Update any requests to limit the results to the current site */ public function augmentSQL(SQLSelect $query) { if (Subsite::$disable_subsite_filter) { return; } // If you're querying by ID, ignore the sub-site - this is a bit ugly... if ($query->filtersOnID()) { return; } $regexp = '/^(.*\\.)?("|`)?SubsiteID("|`)?\\s?=/'; foreach ($query->getWhereParameterised($parameters) as $predicate) { if (preg_match($regexp, $predicate)) { return; } } /*if($context = DataObject::context_obj()) $subsiteID = (int)$context->SubsiteID; else */ $subsiteID = (int) Subsite::currentSubsiteID(); $froms = $query->getFrom(); $froms = array_keys($froms); $tableName = array_shift($froms); if ($tableName != 'SiteConfig') { return; } $query->addWhere("\"{$tableName}\".\"SubsiteID\" IN ({$subsiteID})"); }
/** * Update any requests to limit the results to the current site */ public function augmentSQL(SQLSelect $query, DataQuery $dataQuery = NULL) { if (Subsite::$disable_subsite_filter) { return; } // If you're querying by ID, ignore the sub-site - this is a bit ugly... if ($query->filtersOnID()) { return; } $regexp = '/^(.*\\.)?("|`)?SubsiteID("|`)?\\s?=/'; foreach ($query->getWhereParameterised($parameters) as $predicate) { if (preg_match($regexp, $predicate)) { return; } } try { $subsiteID = (int) Subsite::currentSubsiteID(); $froms = $query->getFrom(); $froms = array_keys($froms); $tableName = array_shift($froms); if ($tableName != 'SiteConfig') { return; } $query->addWhere("\"{$tableName}\".\"SubsiteID\" IN ({$subsiteID})"); } catch (UnexpectedValueException $e) { // No subsites exist yet } }
/** * Update any requests to limit the results to the current site */ public function augmentSQL(SQLSelect $query) { if (Subsite::$disable_subsite_filter) { return; } // If you're querying by ID, ignore the sub-site - this is a bit ugly... (but it was WAYYYYYYYYY worse) //@TODO I don't think excluding if SiteTree_ImageTracking is a good idea however because of the SS 3.0 api and ManyManyList::removeAll() changing the from table after this function is called there isn't much of a choice $from = $query->getFrom(); if (isset($from['SiteTree_ImageTracking']) || $query->filtersOnID()) { return; } $subsiteID = (int) Subsite::currentSubsiteID(); // The foreach is an ugly way of getting the first key :-) foreach ($query->getFrom() as $tableName => $info) { $where = "\"{$tableName}\".\"SubsiteID\" IN (0, {$subsiteID})"; $query->addWhere($where); break; } $sect = array_values($query->getSelect()); $isCounting = strpos($sect[0], 'COUNT') !== false; // Ordering when deleting or counting doesn't apply if (!$isCounting) { $query->addOrderBy("\"SubsiteID\""); } }
public function testFiltersOnID() { $query = new SQLSelect(); $query->setWhere("ID = 5"); $this->assertTrue($query->filtersOnID(), "filtersOnID() is true with simple unquoted column name"); $query = new SQLSelect(); $query->setWhere("ID=5"); $this->assertTrue($query->filtersOnID(), "filtersOnID() is true with simple unquoted column name and no spaces in equals sign"); $query = new SQLSelect(); $query->setWhere("Identifier = 5"); $this->assertFalse($query->filtersOnID(), "filtersOnID() is false with custom column name (starting with 'id')"); $query = new SQLSelect(); $query->setWhere("ParentID = 5"); $this->assertFalse($query->filtersOnID(), "filtersOnID() is false with column name ending in 'ID'"); $query = new SQLSelect(); $query->setWhere("MyTable.ID = 5"); $this->assertTrue($query->filtersOnID(), "filtersOnID() is true with table and column name"); $query = new SQLSelect(); $query->setWhere("MyTable.ID = 5"); $this->assertTrue($query->filtersOnID(), "filtersOnID() is true with table and quoted column name "); }
/** * Update any requests to limit the results to the current site */ public function augmentSQL(SQLSelect $query, DataQuery $dataQuery = null) { if (Subsite::$disable_subsite_filter) { return; } if (Cookie::get('noSubsiteFilter') == 'true') { return; } // If you're querying by ID, ignore the sub-site - this is a bit ugly... if (!$query->filtersOnID()) { /*if($context = DataObject::context_obj()) $subsiteID = (int)$context->SubsiteID; else */ $subsiteID = (int) Subsite::currentSubsiteID(); // Don't filter by Group_Subsites if we've already done that $hasGroupSubsites = false; foreach ($query->getFrom() as $item) { if (is_array($item) && strpos($item['table'], 'Group_Subsites') !== false || !is_array($item) && strpos($item, 'Group_Subsites') !== false) { $hasGroupSubsites = true; break; } } if (!$hasGroupSubsites) { if ($subsiteID) { $query->addLeftJoin("Group_Subsites", "\"Group_Subsites\".\"GroupID\" \n\t\t\t\t\t\t= \"Group\".\"ID\" AND \"Group_Subsites\".\"SubsiteID\" = {$subsiteID}"); $query->addWhere("(\"Group_Subsites\".\"SubsiteID\" IS NOT NULL OR\n\t\t\t\t\t\t\"Group\".\"AccessAllSubsites\" = 1)"); } else { $query->addWhere("\"Group\".\"AccessAllSubsites\" = 1"); } } // WORKAROUND for databases that complain about an ORDER BY when the column wasn't selected (e.g. SQL Server) $select = $query->getSelect(); if (isset($select[0]) && !$select[0] == 'COUNT(*)') { $query->orderby = "\"AccessAllSubsites\" DESC" . ($query->orderby ? ', ' : '') . $query->orderby; } } }
/** * Changes any SELECT query thats not filtering on an ID * to limit by the current language defined in {@link get_current_locale()}. * It falls back to "Locale='' OR Lang IS NULL" and assumes that * this implies querying for the default language. * * Use {@link disable_locale_filter()} to temporarily disable this "auto-filtering". */ public function augmentSQL(SQLSelect $query, DataQuery $dataQuery = null) { // If the record is saved (and not a singleton), and has a locale, // limit the current call to its locale. This fixes a lot of problems // with other extensions like Versioned if ($this->owner->ID && !empty($this->owner->Locale)) { $locale = $this->owner->Locale; } else { $locale = Translatable::get_current_locale(); } $baseTable = ClassInfo::baseDataClass($this->owner->class); if ($locale && self::locale_filter_enabled() && $dataQuery->getQueryParam(self::QUERY_LOCALE_FILTER_ENABLED) && !$query->filtersOnID() && array_search($baseTable, array_keys($query->getFrom())) !== false) { // Or we're already filtering by Lang (either from an earlier augmentSQL() // call or through custom SQL filters) $filtersOnLocale = array_filter($query->getWhere(), function ($predicates) { foreach ($predicates as $predicate => $params) { if (preg_match('/("|\'|`)Locale("|\'|`)/', $predicate)) { return true; } } }); if (!$filtersOnLocale) { $qry = sprintf('"%s"."Locale" = \'%s\'', $baseTable, Convert::raw2sql($locale)); $query->addWhere($qry); } } }