DedeBIZ
/
DedeV6
Watch 2
Star 0
Fork 0
Code Pull Requests 0 Releases 31 Activity
国内流行的内容管理系统(CMS)多端全媒体解决方案 https://www.dedebiz.com
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
459 Commits
3 Branches
93MB
Tree: 06a2e875cd
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '06a2e875cd'
${ noResults }
DedeV6/public/admin/sys_sql_query.php

146 lines
4.5KB
Raw Blame History 

  1. <?php

  2. /**

  3.  * SQL命令执行器

  4.  *

  5.  * @version        $Id: sys_sql_query.php 1 22:28 2010年7月20日Z tianya $

  6.  * @package        DedeBIZ.Administrator

  7.  * @copyright      Copyright (c) 2022, DedeBIZ.COM

  8.  * @license        https://www.dedebiz.com/license

  9.  * @link           https://www.dedebiz.com

  10.  */

  11. require(dirname(__FILE__)."/config.php");

  12. CheckPurview('sys_Data');

  13. if (empty($dopost)) $dopost = "";

  14. 

  15. //查看表结构

  16. if ($dopost == "viewinfo") {

  17.     CheckCSRF();

  18.     if (empty($tablename)) {

  19.         echo "没有指定表名";

  20.     } else {

  21.         $dsql->SetQuery("SHOW CREATE TABLE ".$dsql->dbName.".".$tablename);

  22.         $dsql->Execute('me');

  23.         $row2 = $dsql->GetArray('me', MYSQL_BOTH);

  24.         $ctinfo = $row2[1];

  25.         echo "<xmp>".trim($ctinfo)."</xmp>";

  26.     }

  27.     exit();

  28. }

  29. //优化表

  30. else if ($dopost == "opimize") {

  31.     CheckCSRF();

  32.     if (empty($tablename)) {

  33.         echo "没有指定表名";

  34.     } else {

  35.         $rs = $dsql->ExecuteNoneQuery("OPTIMIZE TABLE `$tablename` ");

  36.         if ($rs)  echo "执行优化表:$tablename  OK";

  37.         else echo "执行优化表:$tablename  失败,原因是:".$dsql->GetError();

  38.     }

  39.     exit();

  40. }

  41. //优化全部表

  42. else if ($dopost == "opimizeAll") {

  43.     CheckCSRF();

  44.     $dsql->SetQuery("SHOW TABLES");

  45.     $dsql->Execute('t');

  46.     while ($row = $dsql->GetArray('t', MYSQL_BOTH)) {

  47.         $rs = $dsql->ExecuteNoneQuery("OPTIMIZE TABLE `{$row[0]}` ");

  48.         if ($rs) {

  49.             echo "优化表: {$row[0]} ok!<br>\r\n";

  50.         } else {

  51.             echo "优化表: {$row[0]} 失败! 原因是: ".$dsql->GetError()."<br>\r\n";

  52.         }

  53.     }

  54.     exit();

  55. }

  56. //修复表

  57. else if ($dopost == "repair") {

  58.     CheckCSRF();

  59.     if (empty($tablename)) {

  60.         echo "没有指定表名";

  61.     } else {

  62.         $rs = $dsql->ExecuteNoneQuery("REPAIR TABLE `$tablename` ");

  63.         if ($rs) echo "修复表:$tablename  OK";

  64.         else echo "修复表:$tablename  失败,原因是:".$dsql->GetError();

  65.     }

  66.     exit();

  67. }

  68. //修复全部表

  69. else if ($dopost == "repairAll") {

  70.     CheckCSRF();

  71.     $dsql->SetQuery("Show Tables");

  72.     $dsql->Execute('t');

  73.     while ($row = $dsql->GetArray('t', MYSQL_BOTH)) {

  74.         $rs = $dsql->ExecuteNoneQuery("REPAIR TABLE `{$row[0]}` ");

  75.         if ($rs) {

  76.             echo "修复表: {$row[0]} ok!<br>\r\n";

  77.         } else {

  78.             echo "修复表: {$row[0]} 失败! 原因是: ".$dsql->GetError()."<br>\r\n";

  79.         }

  80.     }

  81.     exit();

  82. }

  83. //执行SQL语句

  84. else if ($dopost == "query") {

  85.     CheckCSRF();

  86.     $sqlquery = trim(stripslashes($sqlquery));

  87.     if (preg_match("#drop(.*)table#i", $sqlquery) || preg_match("#drop(.*)database#", $sqlquery)) {

  88.         echo "<span style='font-size:10pt'>删除'数据表'或'数据库'的语句不允许在这里执行</span>";

  89.         exit();

  90.     }

  91.     //运行查询语句

  92.     if (preg_match("#^select #i", $sqlquery)) {

  93.         $dsql->SetQuery($sqlquery);

  94.         $dsql->Execute();

  95.         if ($dsql->GetTotalRow() <= 0) {

  96.             echo "运行SQL:{$sqlquery},无返回记录";

  97.         } else {

  98.             echo "运行SQL:{$sqlquery},共有".$dsql->GetTotalRow()."条记录,最大返回100条";

  99.         }

  100.         $j = 0;

  101.         while ($row = $dsql->GetArray()) {

  102.             $j++;

  103.             if ($j > 100) {

  104.                 break;

  105.             }

  106.             echo "<hr size=1 width='100%'/>";

  107.             echo "记录:$j";

  108.             echo "<hr size=1 width='100%'/>";

  109.             foreach ($row as $k => $v) {

  110.                 echo "<span style='color:#dc3545'>{$k}:</span>{$v}<br>\r\n";

  111.             }

  112.         }

  113.         exit();

  114.     }

  115.     if ($querytype == 2) {

  116.         //普通的SQL语句

  117.         $sqlquery = str_replace("\r", "", $sqlquery);

  118.         $sqls = preg_split("#;[ \t]{0,}\n#", $sqlquery);

  119.         $nerrCode = "";

  120.         $i = 0;

  121.         foreach ($sqls as $q) {

  122.             $q = trim($q);

  123.             if ($q == "") {

  124.                 continue;

  125.             }

  126.             $dsql->ExecuteNoneQuery($q);

  127.             $errCode = trim($dsql->GetError());

  128.             if ($errCode == "") {

  129.                 $i++;

  130.             } else {

  131.                 $nerrCode .= "执行:<span style='color:#007bff'>$q</span> 出错,错误提示:<span style='color:#dc3545'>".$errCode."</span><br>";

  132.             }

  133.         }

  134.         echo "成功执行{$i}个SQL语句<br><br>";

  135.         echo $nerrCode;

  136.     } else {

  137.         $dsql->ExecuteNoneQuery($sqlquery);

  138.         $nerrCode = trim($dsql->GetError());

  139.         echo "成功执行1个SQL语句<br><br>";

  140.         echo $nerrCode;

  141.     }

  142.     exit();

  143. }

  144. make_hash();

  145. include DedeInclude('templets/sys_sql_query.htm');