| Server IP : 80.87.202.40 / Your IP : 216.73.216.169 Web Server : Apache System : Linux rospirotorg.ru 5.14.0-539.el9.x86_64 #1 SMP PREEMPT_DYNAMIC Thu Dec 5 22:26:13 UTC 2024 x86_64 User : bitrix ( 600) PHP Version : 8.2.27 Disable Function : NONE MySQL : OFF | cURL : ON | WGET : ON | Perl : ON | Python : OFF | Sudo : ON | Pkexec : ON Directory : /home/bitrix/ext_www/rospirotorg.ru/bitrix/modules/main/admin/ |
Upload File : |
<?php
/**
* @global CUser $USER
* @global CMain $APPLICATION
* @global CDatabase $DB
*/
use Bitrix\Main\Application;
use Bitrix\Main\DB\SqlQueryException;
require_once(__DIR__."/../include/prolog_admin_before.php");
define("HELP_FILE", "utilities/sql.php");
if(!$USER->CanDoOperation('view_other_settings'))
$APPLICATION->AuthForm(GetMessage("ACCESS_DENIED"));
$isAdmin = $USER->CanDoOperation('edit_php');
IncludeModuleLangFile(__FILE__);
$sTableID = "tbl_sql";
$message = null;
CPageOption::SetOptionString("main", "nav_page_in_session", "N");
$lAdmin = new CAdminList($sTableID);
if($_SERVER["REQUEST_METHOD"] == "POST" && !empty($query) && $isAdmin && check_bitrix_sessid())
{
$dbr = null;
$first = microtime(true);
$arErrors = array();
$arQuery = $DB->ParseSQLBatch(str_replace("\r", "", $query));
$db = Application::getConnection();
$db->stopTracker();
foreach($arQuery as $i => $sql)
{
try
{
$dbr = Application::getConnection()->query($sql);
}
catch (SqlQueryException $e)
{
$arErrors[$i] = $e->getMessage();
}
}
if(empty($arErrors))
{
if (isset($_POST['execute_and_download']) && $_POST['execute_and_download'] === 'Y')
{
header('Content-Type: text/csv');
header('Content-Description: SQL result');
header('Content-Disposition: attachment; filename=result.csv');
set_time_limit(300);
$fileHandler = new SplFileObject('php://output', 'w');
$firstRow = $dbr->fetchRaw();
if (empty($firstRow))
{
$fileHandler->fwrite('empty');
}
else
{
$fileHandler->fputcsv(array_keys($firstRow));
$fileHandler->fputcsv($firstRow);
foreach ($dbr as $row)
{
$fileHandler->fputcsv($row);
}
}
die();
}
else
{
$exec_time = round(microtime(true)-$first, 5);
$rsData = new CAdminResult($dbr, $sTableID);
$message = new CAdminMessage(array(
"MESSAGE" => GetMessage("SQL_SUCCESS_EXECUTE"),
"DETAILS" => GetMessage("SQL_EXEC_TIME")."<b>".$exec_time."</b> ".GetMessage("SQL_SEC"),
"TYPE" => "OK",
"HTML" => true,
));
$rsData = new CAdminResult($rsData, $sTableID);
$rsData->bPostNavigation = true;
$rsData->NavStart();
$lAdmin->NavText($rsData->GetNavPrint(GetMessage("SQL_PAGES")));
$intNumFields = $rsData->FieldsCount();
$i = 0;
$header = Array();
$arFieldName = Array();
while ($i<$intNumFields)
{
$fieldName = htmlspecialcharsbx($rsData->FieldName($i));
$header[] =
array("id"=>$fieldName, "content"=>$fieldName, "sort"=>$fieldName, "default"=>true, "align"=>"left", "valign" => "top");
$arFieldName[] = $fieldName;
$i++;
}
$lAdmin->AddHeaders($header);
$j = 0;
while ($db_res = $rsData->Fetch())
{
$row = $lAdmin->AddRow("ID", $db_res);
foreach ($arFieldName as $field_name)
{
if ($db_res[$field_name] !== null)
{
$value = TxtToHtml($db_res[$field_name]);
}
else
{
$value = '<span style="color: darkgray">NULL</span>';
}
$row->AddViewField($field_name, $value);
}
}
}
}
else
{
foreach($arErrors as $i => $strError)
{
$lAdmin->AddFilterError(GetMessage("SQL_QUERY_ERROR_1")."<br>".$strError);
}
}
}
if($message != null)
{
$lAdmin->BeginPrologContent();
echo $message->Show();
$lAdmin->EndPrologContent();
}
$lAdmin->BeginEpilogContent();
?>
<input type="hidden" name="query" id="query" value="<?=htmlspecialcharsbx($query ?? '')?>">
<?
$lAdmin->EndEpilogContent();
$lAdmin->CheckListMode();
$APPLICATION->SetTitle(GetMessage("SQL_PAGE_TITLE"));
require($_SERVER["DOCUMENT_ROOT"].BX_ROOT."/modules/main/include/prolog_admin_after.php");
?>
<script>
function __FSQLSubmit()
{
if(confirm('<?echo GetMessage("SQL_CONFIRM_EXECUTE")?>'))
{
document.getElementById('query').value = document.getElementById('sql').value;
window.scrollTo(0, 500);
<?=$lAdmin->ActionPost(CUtil::JSEscape($APPLICATION->GetCurPageParam("mode=frame", Array("mode", "PAGEN_1"))))?>
}
}
function __FSQLSaveToFileSubmit()
{
if(confirm('<?echo GetMessage("SQL_CONFIRM_EXECUTE_AND_DOWNLOAD")?>'))
{
document.getElementById('query').value = document.getElementById('sql').value;
<?= $lAdmin->ActionPost(false, 'execute_and_download') ?>
setTimeout(() => {
BX.closeWait('#tbl_sql_result_div');
}, 500);
}
}
</script>
<?
$aTabs = array(
array("DIV"=>"tab1", "TAB"=>GetMessage("SQL_TAB"), "TITLE"=>GetMessage("SQL_TAB_TITLE")),
);
$editTab = new CAdminTabControl("editTab", $aTabs);
?>
<form name="form1" action="<?echo $APPLICATION->GetCurPage()?>?lang=<?=LANG?>" method="POST">
<?=bitrix_sessid_post()?>
<?
$editTab->Begin();
$editTab->BeginNextTab();
?>
<tr valign="top">
<td width="100%" colspan="2">
<input type="hidden" name="lang" value="<?=LANG?>">
<textarea cols="60" name="sql" id="sql" rows="15" wrap="OFF" style="width:100%;"><? echo htmlspecialcharsbx($query ?? ''); ?></textarea><br /> </td>
</tr>
<?$editTab->Buttons();?>
<input <?if (!$isAdmin) echo "disabled"?> type="button" accesskey="x" name="execute" value="<?echo GetMessage("SQL_EXECUTE")?>" onclick="return __FSQLSubmit();" class="adm-btn-save">
<input <?if (!$isAdmin) echo "disabled"?> type="button" value="<?echo GetMessage("SQL_EXECUTE_AND_DOWNLOAD")?>" onclick="return __FSQLSaveToFileSubmit();">
<input type="reset" value="<?echo GetMessage("SQL_RESET")?>">
<?
$editTab->End();
?>
</form>
<?
if(COption::GetOptionString('fileman', "use_code_editor", "Y") == "Y" && CModule::IncludeModule('fileman'))
CCodeEditor::Show(array('textareaId' => 'sql', 'height' => 350, 'forceSyntax' => 'sql'));
$lAdmin->DisplayList();
require($_SERVER["DOCUMENT_ROOT"].BX_ROOT."/modules/main/include/epilog_admin.php");?>