blob: 64b385f80f88b4f164410eb8bf6112c0f9462854 (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
|
<?php
///////////////////////////////////////////////////////////////////////////////
//
// pgPhoneHome - Postgres Monitor for iPhone
// Copyright 2008, EnterpriseDB UK Ltd.
// Dave Page (dave.page@enterprisedb.com)
//
// query.php - Select a database, and enter a query
//
///////////////////////////////////////////////////////////////////////////////
require "global.php";
// Get the server number
if (isset($_GET['s']))
$server = intval($_GET['s']);
else
$server = -1;
// Set the display panel
$panel = "query" . $server;
if ($server == -1 || $servers[$server]["description"] == "" || $servers[$server]["connstr"] == "")
www_error("Invalid server", "The specified server number ($server) does not have a valid configuration.");
// Connect the database
$db = @pg_connect($servers[$server]["connstr"]);
if ($db === FALSE)
www_error("Couldn't connect to the database.", html_entity_decode($php_errormsg, ENT_QUOTES));
// Get the connections
$sql = "SELECT datname FROM pg_database WHERE datistemplate=false AND datallowconn=true ORDER BY datname";
$res = @pg_query($db, $sql);
if ($res === false)
www_error("Query execution error", $php_errormsg);
$message = "Databases: " . pg_num_rows($res);;
$list = "";
$divs = "";
$rownum = 0;
while ($row = pg_fetch_assoc($res)) {
// Set the sub-panel ID
$subpanel = $panel . "row" . $rownum++;
// Generate a query ID to stop queries stomping on each other
$id = md5(uniqid(rand(), true));
$list .= "<li><img src=\"images/database.png\" class=\"mi\"><a href=\"#" . $subpanel . "\">" . www_clean($row['datname']) . "</a></li>";
$divs .= "<div id=\"$subpanel\" class=\"panel\" title=\"Query tool\">";
$divs .= "<form class=\"panel\" action=\"results.php?s=" . $server . "&d=" . www_clean($row['datname']) . "&i=" . $id . "\" method=\"POST\" selected=\"true\">";
$divs .= "<div class=\"dh\">Database: " . www_clean($row['datname']) . "</div>";
$divs .= "<h2>SQL query</h2>";
$divs .= "<fieldset>";
$divs .= "<div class=\"row\">";
$divs .= "<textarea name=\"q\"></textarea>";
$divs .= "</div>";
$divs .= "</fieldset>";
$divs .= "<a class=\"grayButton\" type=\"submit\" href=\"#\">Execute</a>";
$divs .= "</form>";
$divs .= "</div>";
}
$text = <<<EOT
<ul id="$panel" title="Databases">
<li class="group">$message</li>
$list
</ul>
$divs
EOT;
echo $text;
exit();
?>
|
