githubFork/roundcubemail.git

			@@ -5,8 +5,11 @@
			\| program/include/rcube_contacts.php \|
			\| \|
			\| This file is part of the Roundcube Webmail client \|
			\| Copyright (C) 2006-2011, The Roundcube Dev Team \|
			\| Licensed under the GNU GPL \|
			\| Copyright (C) 2006-2012, The Roundcube Dev Team \|
			\| \|
			\| Licensed under the GNU General Public License version 3 or \|
			\| any later version with exceptions for skins & plugins. \|
			\| See the README file for a full license statement. \|
			\| \|
			\| PURPOSE: \|
			\| Interface to the local address book database \|
			@@ -14,9 +17,6 @@
			+-----------------------------------------------------------------------+
			\| Author: Thomas Bruederli <roundcube@gmail.com> \|
			+-----------------------------------------------------------------------+

			$Id$

			*/


			@@ -31,11 +31,12 @@
			protected $db_name = 'contacts';
			protected $db_groups = 'contactgroups';
			protected $db_groupmembers = 'contactgroupmembers';
			protected $vcard_fieldmap = array();

			/**
			* Store database connection.
			*
			* @var rcube_mdb2
			* @var rcube_db
			*/
			private $db = null;
			private $user_id = 0;
			@@ -49,8 +50,10 @@

			// public properties
			public $primary_key = 'contact_id';
			public $name;
			public $readonly = false;
			public $groups = true;
			public $undelete = true;
			public $list_page = 1;
			public $page_size = 10;
			public $group_id = 0;
			@@ -59,6 +62,8 @@
			'jobtitle', 'organization', 'department', 'assistant', 'manager',
			'gender', 'maidenname', 'spouse', 'email', 'phone', 'address',
			'birthday', 'anniversary', 'website', 'im', 'notes', 'photo');

			const SEPARATOR = ',';


			/**
			@@ -76,9 +81,18 @@


			/**
			* Returns addressbook name
			*/
			function get_name()
			{
			return $this->name;
			}


			/**
			* Save a search string for future listings
			*
			* @param string SQL params to use in listing method
			* @param string SQL params to use in listing method
			*/
			function set_search_set($filter)
			{
			@@ -136,7 +150,7 @@
			$sql_filter = $search ? " AND " . $this->db->ilike('name', '%'.$search.'%') : '';

			$sql_result = $this->db->query(
			"SELECT * FROM ".get_table_name($this->db_groups).
			"SELECT * FROM ".$this->db->table_name($this->db_groups).
			" WHERE del<>1".
			" AND user_id=?".
			$sql_filter.
			@@ -151,6 +165,29 @@
			return $results;
			}


			/**
			* Get group properties such as name and email address(es)
			*
			* @param string Group identifier
			* @return array Group properties as hash array
			*/
			function get_group($group_id)
			{
			$sql_result = $this->db->query(
			"SELECT * FROM ".$this->db->table_name($this->db_groups).
			" WHERE del<>1".
			" AND contactgroup_id=?".
			" AND user_id=?",
			$group_id, $this->user_id);

			if ($sql_result && ($sql_arr = $this->db->fetch_assoc($sql_result))) {
			$sql_arr['ID'] = $sql_arr['contactgroup_id'];
			return $sql_arr;
			}

			return null;
			}

			/**
			* List the current set of contact records
			@@ -174,17 +211,28 @@
			$length = $subset != 0 ? abs($subset) : $this->page_size;

			if ($this->group_id)
			$join = " LEFT JOIN ".get_table_name($this->db_groupmembers)." AS m".
			$join = " LEFT JOIN ".$this->db->table_name($this->db_groupmembers)." AS m".
			" ON (m.contact_id = c.".$this->primary_key.")";

			$order_col = (in_array($this->sort_col, $this->table_cols) ? $this->sort_col : 'name');
			$order_cols = array('c.'.$order_col);
			if ($order_col == 'firstname')
			$order_cols[] = 'c.surname';
			else if ($order_col == 'surname')
			$order_cols[] = 'c.firstname';
			if ($order_col != 'name')
			$order_cols[] = 'c.name';
			$order_cols[] = 'c.email';

			$sql_result = $this->db->limitquery(
			"SELECT * FROM ".get_table_name($this->db_name)." AS c" .
			"SELECT * FROM ".$this->db->table_name($this->db_name)." AS c" .
			$join .
			" WHERE c.del<>1" .
			" AND c.user_id=?" .
			($this->group_id ? " AND m.contactgroup_id=?" : "").
			($this->filter ? " AND (".$this->filter.")" : "") .
			" ORDER BY c.name, c.email",
			" ORDER BY ". $this->db->concat($order_cols) .
			" " . $this->sort_order,
			$start_row,
			$length,
			$this->user_id,
			@@ -192,18 +240,16 @@

			// determine whether we have to parse the vcard or if only db cols are requested
			$read_vcard = !$cols \|\| count(array_intersect($cols, $this->table_cols)) < count($cols);


			while ($sql_result && ($sql_arr = $this->db->fetch_assoc($sql_result))) {
			$sql_arr['ID'] = $sql_arr[$this->primary_key];

			if ($read_vcard)
			$sql_arr = $this->convert_db_data($sql_arr);
			else
			$sql_arr['email'] = preg_split('/,\s*/', $sql_arr['email']);

			// make sure we have a name to display
			if (empty($sql_arr['name']))
			$sql_arr['name'] = $sql_arr['email'][0];
			else {
			$sql_arr['email'] = explode(self::SEPARATOR, $sql_arr['email']);
			$sql_arr['email'] = array_map('trim', $sql_arr['email']);
			}

			$this->result->add($sql_arr);
			}
			@@ -229,15 +275,19 @@
			/**
			* Search contacts
			*
			* @param array List of fields to search in
			* @param string Search value
			* @param boolean True for strict (=), False for partial (LIKE) matching
			* @param boolean True if results are requested, False if count only
			* @param boolean True to skip the count query (select only)
			* @param array List of fields that cannot be empty
			* @param mixed $fields The field name of array of field names to search in
			* @param mixed $value Search value (or array of values when $fields is array)
			* @param int $mode Matching mode:
			* 0 - partial (abc),
			* 1 - strict (=),
			* 2 - prefix (abc*)
			* @param boolean $select True if results are requested, False if count only
			* @param boolean $nocount True to skip the count query (select only)
			* @param array $required List of fields that cannot be empty
			*
			* @return object rcube_result_set Contact records and 'count' value
			*/
			function search($fields, $value, $strict=false, $select=true, $nocount=false, $required=array())
			function search($fields, $value, $mode=0, $select=true, $nocount=false, $required=array())
			{
			if (!is_array($fields))
			$fields = array($fields);
			@@ -245,35 +295,162 @@
			$required = array($required);

			$where = $and_where = array();
			$mode = intval($mode);
			$WS = ' ';
			$AS = self::SEPARATOR;

			foreach ($fields as $col) {
			foreach ($fields as $idx => $col) {
			// direct ID search
			if ($col == 'ID' \|\| $col == $this->primary_key) {
			$ids = !is_array($value) ? explode(',', $value) : $value;
			$ids = !is_array($value) ? explode(self::SEPARATOR, $value) : $value;
			$ids = $this->db->array2list($ids, 'integer');
			$where[] = 'c.' . $this->primary_key.' IN ('.$ids.')';
			continue;
			}
			else if ($strict) {
			$where[] = $this->db->quoteIdentifier($col).' = '.$this->db->quote($value);
			}
			// fulltext search in all fields
			else if ($col == '*') {
			$words = array();
			foreach(explode(" ", self::normalize_string($value)) as $word)
			$words[] = $this->db->ilike('words', '%'.$word.'%');
			foreach (explode($WS, rcube_utils::normalize_string($value)) as $word) {
			switch ($mode) {
			case 1: // strict
			$words[] = '(' . $this->db->ilike('words', $word . '%')
			. ' OR ' . $this->db->ilike('words', '%' . $WS . $word . $WS . '%')
			. ' OR ' . $this->db->ilike('words', '%' . $WS . $word) . ')';
			break;
			case 2: // prefix
			$words[] = '(' . $this->db->ilike('words', $word . '%')
			. ' OR ' . $this->db->ilike('words', '%' . $WS . $word . '%') . ')';
			break;
			default: // partial
			$words[] = $this->db->ilike('words', '%' . $word . '%');
			}
			}
			$where[] = '(' . join(' AND ', $words) . ')';
			}
			else
			$where[] = $this->db->ilike($col, '%'.$value.'%');
			}
			else {
			$val = is_array($value) ? $value[$idx] : $value;
			// table column
			if (in_array($col, $this->table_cols)) {
			switch ($mode) {
			case 1: // strict
			$where[] = '(' . $this->db->quoteIdentifier($col) . ' = ' . $this->db->quote($val)
			. ' OR ' . $this->db->ilike($col, $val . $AS . '%')
			. ' OR ' . $this->db->ilike($col, '%' . $AS . $val . $AS . '%')
			. ' OR ' . $this->db->ilike($col, '%' . $AS . $val) . ')';
			break;
			case 2: // prefix
			$where[] = '(' . $this->db->ilike($col, $val . '%')
			. ' OR ' . $this->db->ilike($col, $AS . $val . '%') . ')';
			break;
			default: // partial
			$where[] = $this->db->ilike($col, '%' . $val . '%');
			}
			}
			// vCard field
			else {
			if (in_array($col, $this->fulltext_cols)) {
			foreach (rcube_utils::normalize_string($val, true) as $word) {
			switch ($mode) {
			case 1: // strict
			$words[] = '(' . $this->db->ilike('words', $word . $WS . '%')
			. ' OR ' . $this->db->ilike('words', '%' . $AS . $word . $WS .'%')
			. ' OR ' . $this->db->ilike('words', '%' . $AS . $word) . ')';
			break;
			case 2: // prefix
			$words[] = '(' . $this->db->ilike('words', $word . '%')
			. ' OR ' . $this->db->ilike('words', $AS . $word . '%') . ')';
			break;
			default: // partial
			$words[] = $this->db->ilike('words', '%' . $word . '%');
			}
			}
			$where[] = '(' . join(' AND ', $words) . ')';
			}
			if (is_array($value))
			$post_search[$col] = mb_strtolower($val);
			}
			}
			}

			foreach ($required as $col) {
			foreach (array_intersect($required, $this->table_cols) as $col) {
			$and_where[] = $this->db->quoteIdentifier($col).' <> '.$this->db->quote('');
			}

			if (!empty($where))
			$where = join(' OR ', $where);
			if (!empty($where)) {
			// use AND operator for advanced searches
			$where = join(is_array($value) ? ' AND ' : ' OR ', $where);
			}

			if (!empty($and_where))
			$where = ($where ? "($where) AND " : '') . join(' AND ', $and_where);

			// Post-searching in vCard data fields
			// we will search in all records and then build a where clause for their IDs
			if (!empty($post_search)) {
			$ids = array(0);
			// build key name regexp
			$regexp = '/^(' . implode(array_keys($post_search), '\|') . ')(?:.*)$/';
			// use initial WHERE clause, to limit records number if possible
			if (!empty($where))
			$this->set_search_set($where);

			// count result pages
			$cnt = $this->count();
			$pages = ceil($cnt / $this->page_size);
			$scnt = count($post_search);

			// get (paged) result
			for ($i=0; $i<$pages; $i++) {
			$this->list_records(null, $i, true);
			while ($row = $this->result->next()) {
			$id = $row[$this->primary_key];
			$found = array();
			foreach (preg_grep($regexp, array_keys($row)) as $col) {
			$pos = strpos($col, ':');
			$colname = $pos ? substr($col, 0, $pos) : $col;
			$search = $post_search[$colname];
			foreach ((array)$row[$col] as $value) {
			// composite field, e.g. address
			foreach ((array)$value as $val) {
			$val = mb_strtolower($val);
			switch ($mode) {
			case 1:
			$got = ($val == $search);
			break;
			case 2:
			$got = ($search == substr($val, 0, strlen($search)));
			break;
			default:
			$got = (strpos($val, $search) !== false);
			break;
			}

			if ($got) {
			$found[$colname] = true;
			break 2;
			}
			}
			}
			}
			// all fields match
			if (count($found) >= $scnt) {
			$ids[] = $id;
			}
			}
			}

			// build WHERE clause
			$ids = $this->db->array2list($ids, 'integer');
			$where = 'c.' . $this->primary_key.' IN ('.$ids.')';
			// reset counter
			unset($this->cache['count']);

			// when we know we have an empty result
			if ($ids == '0') {
			$this->set_search_set($where);
			return ($this->result = new rcube_result_set(0, 0));
			}
			}

			if (!empty($where)) {
			$this->set_search_set($where);
			@@ -283,7 +460,7 @@
			$this->result = $this->count();
			}

			return $this->result;
			return $this->result;
			}


			@@ -308,13 +485,13 @@
			private function _count()
			{
			if ($this->group_id)
			$join = " LEFT JOIN ".get_table_name($this->db_groupmembers)." AS m".
			$join = " LEFT JOIN ".$this->db->table_name($this->db_groupmembers)." AS m".
			" ON (m.contact_id=c.".$this->primary_key.")";

			// count contacts for this user
			$sql_result = $this->db->query(
			"SELECT COUNT(c.contact_id) AS rows".
			" FROM ".get_table_name($this->db_name)." AS c".
			" FROM ".$this->db->table_name($this->db_name)." AS c".
			$join.
			" WHERE c.del<>1".
			" AND c.user_id=?".
			@@ -356,7 +533,7 @@
			return $assoc ? $first : $this->result;

			$this->db->query(
			"SELECT * FROM ".get_table_name($this->db_name).
			"SELECT * FROM ".$this->db->table_name($this->db_name).
			" WHERE contact_id=?".
			" AND user_id=?".
			" AND del<>1",
			@@ -388,8 +565,8 @@
			return $results;

			$sql_result = $this->db->query(
			"SELECT cgm.contactgroup_id, cg.name FROM " . get_table_name($this->db_groupmembers) . " AS cgm" .
			" LEFT JOIN " . get_table_name($this->db_groups) . " AS cg ON (cgm.contactgroup_id = cg.contactgroup_id AND cg.del<>1)" .
			"SELECT cgm.contactgroup_id, cg.name FROM " . $this->db->table_name($this->db_groupmembers) . " AS cgm" .
			" LEFT JOIN " . $this->db->table_name($this->db_groups) . " AS cg ON (cgm.contactgroup_id = cg.contactgroup_id AND cg.del<>1)" .
			" WHERE cgm.contact_id=?",
			$id
			);
			@@ -406,16 +583,17 @@
			* If input not valid, the message to display can be fetched using get_error()
			*
			* @param array Assoziative array with data to save
			* @param boolean Try to fix/complete record automatically
			* @return boolean True if input is valid, False if not.
			*/
			public function validate($save_data)
			public function validate(&$save_data, $autofix = false)
			{
			// validate e-mail addresses
			$valid = parent::validate($save_data);
			$valid = parent::validate($save_data, $autofix);

			// require at least one e-mail address (syntax check is already done)
			if ($valid && !array_filter($this->get_col_values('email', $save_data, true))) {
			$this->set_error('warning', 'noemailwarning');
			$this->set_error(self::ERROR_VALIDATE, 'noemailwarning');
			$valid = false;
			}

			@@ -457,7 +635,7 @@

			if (!$existing->count && !empty($a_insert_cols)) {
			$this->db->query(
			"INSERT INTO ".get_table_name($this->db_name).
			"INSERT INTO ".$this->db->table_name($this->db_name).
			" (user_id, changed, del, ".join(', ', $a_insert_cols).")".
			" VALUES (".intval($this->user_id).", ".$this->db->now().", 0, ".join(', ', $a_insert_values).")"
			);
			@@ -495,7 +673,7 @@

			if (!empty($write_sql)) {
			$this->db->query(
			"UPDATE ".get_table_name($this->db_name).
			"UPDATE ".$this->db->table_name($this->db_name).
			" SET changed=".$this->db->now().", ".join(', ', $write_sql).
			" WHERE contact_id=?".
			" AND user_id=?".
			@@ -510,23 +688,24 @@

			return $updated;
			}




			private function convert_db_data($sql_arr)
			{
			$record = array();
			$record['ID'] = $sql_arr[$this->primary_key];


			if ($sql_arr['vcard']) {
			unset($sql_arr['email']);
			$vcard = new rcube_vcard($sql_arr['vcard']);
			$vcard = new rcube_vcard($sql_arr['vcard'], RCMAIL_CHARSET, false, $this->vcard_fieldmap);
			$record += $vcard->get_assoc() + $sql_arr;
			}
			else {
			$record += $sql_arr;
			$record['email'] = preg_split('/,\s*/', $record['email']);
			$record['email'] = explode(self::SEPARATOR, $record['email']);
			$record['email'] = array_map('trim', $record['email']);
			}


			return $record;
			}

			@@ -537,7 +716,7 @@
			$words = '';

			// copy values into vcard object
			$vcard = new rcube_vcard($record['vcard'] ? $record['vcard'] : $save_data['vcard']);
			$vcard = new rcube_vcard($record['vcard'] ? $record['vcard'] : $save_data['vcard'], RCMAIL_CHARSET, false, $this->vcard_fieldmap);
			$vcard->reset();
			foreach ($save_data as $key => $values) {
			list($field, $section) = explode(':', $key);
			@@ -546,9 +725,9 @@
			if (isset($value))
			$vcard->set($field, $value, $section);
			if ($fulltext && is_array($value))
			$words .= ' ' . self::normalize_string(join(" ", $value));
			$words .= ' ' . rcube_utils::normalize_string(join(" ", $value));
			else if ($fulltext && strlen($value) >= 3)
			$words .= ' ' . self::normalize_string($value);
			$words .= ' ' . rcube_utils::normalize_string($value);
			}
			}
			$out['vcard'] = $vcard->export(false);
			@@ -557,12 +736,16 @@
			$key = $col;
			if (!isset($save_data[$key]))
			$key .= ':home';
			if (isset($save_data[$key]))
			$out[$col] = is_array($save_data[$key]) ? join(',', $save_data[$key]) : $save_data[$key];
			if (isset($save_data[$key])) {
			if (is_array($save_data[$key]))
			$out[$col] = join(self::SEPARATOR, $save_data[$key]);
			else
			$out[$col] = $save_data[$key];
			}
			}

			// save all e-mails in database column
			$out['email'] = join(", ", $vcard->email);
			$out['email'] = join(self::SEPARATOR, $vcard->email);

			// join words for fulltext search
			$out['words'] = join(" ", array_unique(explode(" ", $words)));
			@@ -574,19 +757,47 @@
			/**
			* Mark one or more contact records as deleted
			*
			* @param array Record identifiers
			* @param array Record identifiers
			* @param boolean Remove record(s) irreversible (unsupported)
			*/
			function delete($ids)
			function delete($ids, $force=true)
			{
			if (!is_array($ids))
			$ids = explode(',', $ids);
			$ids = explode(self::SEPARATOR, $ids);

			$ids = $this->db->array2list($ids, 'integer');

			// flag record as deleted
			// flag record as deleted (always)
			$this->db->query(
			"UPDATE ".get_table_name($this->db_name).
			"UPDATE ".$this->db->table_name($this->db_name).
			" SET del=1, changed=".$this->db->now().
			" WHERE user_id=?".
			" AND contact_id IN ($ids)",
			$this->user_id
			);

			$this->cache = null;

			return $this->db->affected_rows();
			}


			/**
			* Undelete one or more contact records
			*
			* @param array Record identifiers
			*/
			function undelete($ids)
			{
			if (!is_array($ids))
			$ids = explode(self::SEPARATOR, $ids);

			$ids = $this->db->array2list($ids, 'integer');

			// clear deleted flag
			$this->db->query(
			"UPDATE ".$this->db->table_name($this->db_name).
			" SET del=0, changed=".$this->db->now().
			" WHERE user_id=?".
			" AND contact_id IN ($ids)",
			$this->user_id
			@@ -603,8 +814,12 @@
			*/
			function delete_all()
			{
			$this->db->query("DELETE FROM ".get_table_name($this->db_name)." WHERE user_id = ?", $this->user_id);
			$this->cache = null;

			$this->db->query("UPDATE ".$this->db->table_name($this->db_name).
			" SET del=1, changed=".$this->db->now().
			" WHERE user_id = ?", $this->user_id);

			return $this->db->affected_rows();
			}

			@@ -623,7 +838,7 @@
			$name = $this->unique_groupname($name);

			$this->db->query(
			"INSERT INTO ".get_table_name($this->db_groups).
			"INSERT INTO ".$this->db->table_name($this->db_groups).
			" (user_id, changed, name)".
			" VALUES (".intval($this->user_id).", ".$this->db->now().", ".$this->db->quote($name).")"
			);
			@@ -645,10 +860,11 @@
			{
			// flag group record as deleted
			$sql_result = $this->db->query(
			"UPDATE ".get_table_name($this->db_groups).
			"UPDATE ".$this->db->table_name($this->db_groups).
			" SET del=1, changed=".$this->db->now().
			" WHERE contactgroup_id=?",
			$gid
			" WHERE contactgroup_id=?".
			" AND user_id=?",
			$gid, $this->user_id
			);

			$this->cache = null;
			@@ -664,16 +880,17 @@
			* @param string New name to set for this group
			* @return boolean New name on success, false if no data was changed
			*/
			function rename_group($gid, $newname)
			function rename_group($gid, $newname, &$new_gid)
			{
			// make sure we have a unique name
			$name = $this->unique_groupname($newname);

			$sql_result = $this->db->query(
			"UPDATE ".get_table_name($this->db_groups).
			"UPDATE ".$this->db->table_name($this->db_groups).
			" SET name=?, changed=".$this->db->now().
			" WHERE contactgroup_id=?",
			$name, $gid
			" WHERE contactgroup_id=?".
			" AND user_id=?",
			$name, $gid, $this->user_id
			);

			return $this->db->affected_rows() ? $name : false;
			@@ -690,14 +907,14 @@
			function add_to_group($group_id, $ids)
			{
			if (!is_array($ids))
			$ids = explode(',', $ids);
			$ids = explode(self::SEPARATOR, $ids);

			$added = 0;
			$exists = array();

			// get existing assignments ...
			$sql_result = $this->db->query(
			"SELECT contact_id FROM ".get_table_name($this->db_groupmembers).
			"SELECT contact_id FROM ".$this->db->table_name($this->db_groupmembers).
			" WHERE contactgroup_id=?".
			" AND contact_id IN (".$this->db->array2list($ids, 'integer').")",
			$group_id
			@@ -710,14 +927,16 @@

			foreach ($ids as $contact_id) {
			$this->db->query(
			"INSERT INTO ".get_table_name($this->db_groupmembers).
			"INSERT INTO ".$this->db->table_name($this->db_groupmembers).
			" (contactgroup_id, contact_id, created)".
			" VALUES (?, ?, ".$this->db->now().")",
			$group_id,
			$contact_id
			);

			if (!$this->db->db_error)
			if ($error = $this->db->is_error())
			$this->set_error(self::ERROR_SAVING, $error);
			else
			$added++;
			}

			@@ -735,12 +954,12 @@
			function remove_from_group($group_id, $ids)
			{
			if (!is_array($ids))
			$ids = explode(',', $ids);
			$ids = explode(self::SEPARATOR, $ids);

			$ids = $this->db->array2list($ids, 'integer');

			$sql_result = $this->db->query(
			"DELETE FROM ".get_table_name($this->db_groupmembers).
			"DELETE FROM ".$this->db->table_name($this->db_groupmembers).
			" WHERE contactgroup_id=?".
			" AND contact_id IN ($ids)",
			$group_id
			@@ -763,7 +982,7 @@

			do {
			$sql_result = $this->db->query(
			"SELECT 1 FROM ".get_table_name($this->db_groups).
			"SELECT 1 FROM ".$this->db->table_name($this->db_groups).
			" WHERE del<>1".
			" AND user_id=?".
			" AND name=?",
			@@ -771,9 +990,10 @@
			$checkname);

			// append number to make name unique
			if ($hit = $this->db->num_rows($sql_result))
			if ($hit = $this->db->fetch_array($sql_result)) {
			$checkname = $name . ' ' . $num++;
			} while ($hit > 0);
			}
			} while ($hit);

			return $checkname;
			}