nextcloud-server.git - Nextcloud server, a safe home for all your data: https://github.com/nextcloud/server

	Commit message (Expand)	Author	Age	Files	Lines
*	fix(psalm): Fix @throws annotationsfix/psalm/throws-annotations	provokateurin	2024-09-17	1	-1/+1
*	style: update codestyle for coding-standard 1.2.3	Daniel Kesselberg	2024-08-25	1	-1/+1
*	chore: Add SPDX header	Andy Scherzinger	2024-05-24	1	-19/+4
*	fix(OCP): Add since tag for all constants	Joas Schilling	2024-02-14	1	-0/+15
*	Fix typos in lib/public subdirectory	Simon L	2023-05-10	1	-1/+1
*	Document all getIncomplete implementations as returning string\|false	Côme Chilliet	2022-08-02	1	-1/+1
*	Remove some mentions of ownCloud from our api documentation	Carl Schwan	2021-07-29	1	-3/+3
*	use searchoperation for storage filter instead of db expression	Robin Appelman	2021-06-14	1	-6/+4
*	rework search api to allow searching on multiple caches at once	Robin Appelman	2021-06-14	1	-0/+29
*	Update php licenses	John Molakvoæ (skjnldsv)	2021-06-04	1	-1/+0
*	add ICopyFromCache trait to expose existing implementation	Robin Appelman	2021-03-12	1	-0/+11
*	Update license headers for 19	Christoph Wurst	2020-04-29	1	-0/+1
*	Add visibility to all constants	Christoph Wurst	2020-04-10	1	-4/+4
*	Use exactly one empty line after the namespace declaration	Christoph Wurst	2020-04-09	1	-0/+1
*	Update license headers	Christoph Wurst	2019-12-05	1	-1/+1
*	Remove deprecated searchByTag	Roeland Jago Douma	2019-07-26	1	-13/+0
*	Remove unused use statements	Morris Jobke	2017-04-22	1	-1/+0
*	Implement webdav SEARCH	Robin Appelman	2017-03-01	1	-0/+12
*	Update with robin	Joas Schilling	2016-07-21	1	-1/+1
*	Fix others	Joas Schilling	2016-07-21	1	-1/+2
*	Move \OCP\Files to PSR-4	Roeland Jago Douma	2016-05-18	1	-0/+256

<?php namespace OC\Setup; class OCI extends AbstractDatabase { public $dbprettyname = 'Oracle'; protected $dbtablespace; public function initialize($config) { parent::initialize($config); if (array_key_exists('dbtablespace', $config)) { $this->dbtablespace = $config['dbtablespace']; } else { $this->dbtablespace = 'USERS'; } \OC_Config::setValue('dbtablespace', $this->dbtablespace); } public function setupDatabase($username) { $e_host = addslashes($this->dbhost); $e_dbname = addslashes($this->dbname); //check if the database user has admin right if ($e_host == '') { $easy_connect_string = $e_dbname; // use dbname as easy connect name } else { $easy_connect_string = '//'.$e_host.'/'.$e_dbname; } \OC_Log::write('setup oracle', 'connect string: ' . $easy_connect_string, \OC_Log::DEBUG); $connection = @oci_connect($this->dbuser, $this->dbpassword, $easy_connect_string); if(!$connection) { $e = oci_error(); if (is_array ($e) && isset ($e['message'])) { throw new \DatabaseSetupException($this->trans->t('Oracle connection could not be established'), $e['message'].' Check environment: ORACLE_HOME='.getenv('ORACLE_HOME') .' ORACLE_SID='.getenv('ORACLE_SID') .' LD_LIBRARY_PATH='.getenv('LD_LIBRARY_PATH') .' NLS_LANG='.getenv('NLS_LANG') .' tnsnames.ora is '.(is_readable(getenv('ORACLE_HOME').'/network/admin/tnsnames.ora')?'':'not ').'readable'); } throw new \DatabaseSetupException($this->trans->t('Oracle username and/or password not valid'), 'Check environment: ORACLE_HOME='.getenv('ORACLE_HOME') .' ORACLE_SID='.getenv('ORACLE_SID') .' LD_LIBRARY_PATH='.getenv('LD_LIBRARY_PATH') .' NLS_LANG='.getenv('NLS_LANG') .' tnsnames.ora is '.(is_readable(getenv('ORACLE_HOME').'/network/admin/tnsnames.ora')?'':'not ').'readable'); } //check for roles creation rights in oracle $query='SELECT count(*) FROM user_role_privs, role_sys_privs' ." WHERE user_role_privs.granted_role = role_sys_privs.role AND privilege = 'CREATE ROLE'"; $stmt = oci_parse($connection, $query); if (!$stmt) { $entry = $this->trans->t('DB Error: "%s"', array(oci_last_error($connection))) . ' '; $entry .= $this->trans->t('Offending command was: "%s"', array($query)) . ' '; \OC_Log::write('setup.oci', $entry, \OC_Log::WARN); } $result = oci_execute($stmt); if($result) { $row = oci_fetch_row($stmt); } if($result and $row[0] > 0) { //use the admin login data for the new database user //add prefix to the oracle user name to prevent collisions $this->dbuser='oc_'.$username; //create a new password so we don't need to store the admin config in the config file $this->dbpassword=\OC_Util::generateRandomBytes(30); //oracle passwords are treated as identifiers: // must start with aphanumeric char // needs to be shortened to 30 bytes, as the two " needed to escape the identifier count towards the identifier length. $this->dbpassword=substr($this->dbpassword, 0, 30); $this->createDBUser($connection); \OC_Config::setValue('dbuser', $this->dbusername); \OC_Config::setValue('dbname', $this->dbusername); \OC_Config::setValue('dbpassword', $this->dbpassword); //create the database not neccessary, oracle implies user = schema //$this->createDatabase($this->dbname, $this->dbusername, $connection); } else { \OC_Config::setValue('dbuser', $this->dbuser); \OC_Config::setValue('dbname', $this->dbname); \OC_Config::setValue('dbpassword', $this->dbpassword); //create the database not neccessary, oracle implies user = schema //$this->createDatabase($this->dbname, $this->dbuser, $connection); } //FIXME check tablespace exists: select * from user_tablespaces // the connection to dbname=oracle is not needed anymore oci_close($connection); // connect to the oracle database (schema=$this->dbuser) an check if the schema needs to be filled $this->dbuser = \OC_Config::getValue('dbuser'); //$this->dbname = \OC_Config::getValue('dbname'); $this->dbpassword = \OC_Config::getValue('dbpassword'); $e_host = addslashes($this->dbhost); $e_dbname = addslashes($this->dbname); if ($e_host == '') { $easy_connect_string = $e_dbname; // use dbname as easy connect name } else { $easy_connect_string = '//'.$e_host.'/'.$e_dbname; } $connection = @oci_connect($this->dbuser, $this->dbpassword, $easy_connect_string); if(!$connection) { throw new \DatabaseSetupException($this->trans->t('Oracle username and/or password not valid'), $this->trans->t('You need to enter either an existing account or the administrator.')); } $query = "SELECT count(*) FROM user_tables WHERE table_name = :un"; $stmt = oci_parse($connection, $query); $un = $this->dbtableprefix.'users'; oci_bind_by_name($stmt, ':un', $un); if (!$stmt) { $entry = $this->trans->t('DB Error: "%s"', array(oci_error($connection))) . ' '; $entry .= $this->trans->t('Offending command was: "%s"', array($query)) . ' '; \OC_Log::write('setup.oci', $entry, \OC_Log::WARN); } $result = oci_execute($stmt); if($result) { $row = oci_fetch_row($stmt); } if(!$result or $row[0]==0) { \OC_DB::createDbFromStructure($this->dbDefinitionFile); } } /** * * @param String $name * @param String $password * @param resource $connection */ private function createDBUser($connection) { $name = $this->dbuser; $password = $this->password; $query = "SELECT * FROM all_users WHERE USERNAME = :un"; $stmt = oci_parse($connection, $query); if (!$stmt) { $entry = $this->trans->t('DB Error: "%s"', array(oci_error($connection))) . ' '; $entry .= $this->trans->t('Offending command was: "%s"', array($query)) . ' '; \OC_Log::write('setup.oci', $entry, \OC_Log::WARN); } oci_bind_by_name($stmt, ':un', $name); $result = oci_execute($stmt); if(!$result) { $entry = $this->trans->t('DB Error: "%s"', array(oci_error($connection))) . ' '; $entry .= $this->trans->t('Offending command was: "%s"', array($query)) . ' '; \OC_Log::write('setup.oci', $entry, \OC_Log::WARN); } if(! oci_fetch_row($stmt)) { //user does not exists let's create it :) //password must start with alphabetic character in oracle $query = 'CREATE USER '.$name.' IDENTIFIED BY "'.$password.'" DEFAULT TABLESPACE '.$this->dbtablespace; $stmt = oci_parse($connection, $query); if (!$stmt) { $entry = $this->trans->t('DB Error: "%s"', array(oci_error($connection))) . ' '; $entry .= $this->trans->t('Offending command was: "%s"', array($query)) . ' '; \OC_Log::write('setup.oci', $entry, \OC_Log::WARN); } //oci_bind_by_name($stmt, ':un', $name); $result = oci_execute($stmt); if(!$result) { $entry = $this->trans->t('DB Error: "%s"', array(oci_error($connection))) . ' '; $entry .= $this->trans->t('Offending command was: "%s", name: %s, password: %s', array($query, $name, $password)) . ' '; \OC_Log::write('setup.oci', $entry, \OC_Log::WARN); } } else { // change password of the existing role $query = "ALTER USER :un IDENTIFIED BY :pw"; $stmt = oci_parse($connection, $query); if (!$stmt) { $entry = $this->trans->t('DB Error: "%s"', array(oci_error($connection))) . ' '; $entry .= $this->trans->t('Offending command was: "%s"', array($query)) . ' '; \OC_Log::write('setup.oci', $entry, \OC_Log::WARN); } oci_bind_by_name($stmt, ':un', $name); oci_bind_by_name($stmt, ':pw', $password); $result = oci_execute($stmt); if(!$result) { $entry = $this->trans->t('DB Error: "%s"', array(oci_error($connection))) . ' '; $entry .= $this->trans->t('Offending command was: "%s"', array($query)) . ' '; \OC_Log::write('setup.oci', $entry, \OC_Log::WARN); } } // grant necessary roles $query = 'GRANT CREATE SESSION, CREATE TABLE, CREATE SEQUENCE, CREATE TRIGGER, UNLIMITED TABLESPACE TO '.$name; $stmt = oci_parse($connection, $query); if (!$stmt) { $entry = $this->trans->t('DB Error: "%s"', array(oci_error($connection))) . ' '; $entry .= $this->trans->t('Offending command was: "%s"', array($query)) . ' '; \OC_Log::write('setup.oci', $entry, \OC_Log::WARN); } $result = oci_execute($stmt); if(!$result) { $entry = $this->trans->t('DB Error: "%s"', array(oci_error($connection))) . ' '; $entry .= $this->trans->t('Offending command was: "%s", name: %s, password: %s', array($query, $name, $password)) . ' '; \OC_Log::write('setup.oci', $entry, \OC_Log::WARN); } } }