You can not select more than 25 topics
Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
61 lines
1.7 KiB
61 lines
1.7 KiB
<?php |
|
/** |
|
* Represents the interface between the linter and the query editor. |
|
*/ |
|
|
|
declare(strict_types=1); |
|
|
|
namespace PhpMyAdmin\Controllers; |
|
|
|
use PhpMyAdmin\Core; |
|
use PhpMyAdmin\Linter; |
|
|
|
use function json_encode; |
|
|
|
/** |
|
* Represents the interface between the linter and the query editor. |
|
*/ |
|
class LintController extends AbstractController |
|
{ |
|
public function __invoke(): void |
|
{ |
|
$params = [ |
|
'sql_query' => $_POST['sql_query'] ?? null, |
|
'options' => $_POST['options'] ?? null, |
|
]; |
|
|
|
/** |
|
* The SQL query to be analyzed. |
|
* |
|
* This does not need to be checked again XSS or MySQL injections because it is |
|
* never executed, just parsed. |
|
* |
|
* The client, which will receive the JSON response will decode the message and |
|
* and any HTML fragments that are displayed to the user will be encoded anyway. |
|
* |
|
* @var string |
|
*/ |
|
$sqlQuery = ! empty($params['sql_query']) ? $params['sql_query'] : ''; |
|
|
|
$this->response->setAjax(true); |
|
|
|
// Disabling standard response. |
|
$this->response->disable(); |
|
|
|
Core::headerJSON(); |
|
|
|
if (! empty($params['options'])) { |
|
$options = $params['options']; |
|
|
|
if (! empty($options['routineEditor'])) { |
|
$sqlQuery = 'CREATE PROCEDURE `a`() ' . $sqlQuery; |
|
} elseif (! empty($options['triggerEditor'])) { |
|
$sqlQuery = 'CREATE TRIGGER `a` AFTER INSERT ON `b` FOR EACH ROW ' . $sqlQuery; |
|
} elseif (! empty($options['eventEditor'])) { |
|
$sqlQuery = 'CREATE EVENT `a` ON SCHEDULE EVERY MINUTE DO ' . $sqlQuery; |
|
} |
|
} |
|
|
|
echo json_encode(Linter::lint($sqlQuery)); |
|
} |
|
}
|
|
|