optimized the test for super user privileges

2001-08-28 18:11:00 +00:00
parent 2e702f6f11
commit 252b3d3d80
5 changed files with 16 additions and 19 deletions
--- a/2
+++ b/2
@@ -26,6 +26,8 @@ $Source$
 	* tbl_change.php3; tbl_replace.php3: fixed bugs in function field name with
 	  special characters and no-parameter functions.
 	* config.inc.php3: added the "UNIX_TIMESTAMP" function.
+	* sql.php3; main.php3; db_readdump.php3; db_details.php3: optimized the
+	  test for super user privileges.

 2001-08-28  Olivier M<>ller  <om@omnis.ch>
 	* db_stats.php3: fixed the sql query so that the script won't die, even if
--- a/db_details.php3
+++ b/db_details.php3
@@ -546,10 +546,9 @@ echo '        ' . '&nbsp;<input type="submit" value="' . $strGo . '" />' . "\n";
 <?php
 // Check if the user is a Superuser
 // TODO: set a global variable with this information
-$result       = mysql_query('SELECT * FROM mysql.user');
-$rows         = @mysql_num_rows($result);
-// loic1: empry <> 0 with ceratin php3 releases
-$is_superuser = (!empty($rows) || $rows != 0);
+// loic1: optimized query
+$result       = @mysql_query('USE mysql');
+$is_superuser = (!mysql_error());
  
 // Display the DROP DATABASE link only if allowed to do so
 if ($cfgAllowUserDropDatabase || $is_superuser) {
--- a/db_readdump.php3
+++ b/db_readdump.php3
@@ -75,10 +75,9 @@ if (!$cfgAllowUserDropDatabase
    && eregi('DROP[[:space:]]+(IF EXISTS[[:space:]]+)?DATABASE ', $sql_query)) {
    // Checks if the user is a Superuser
    // TODO: set a global variable with this information
-    $result = mysql_query('SELECT * FROM mysql.user');
-    $rows   = @mysql_num_rows($result);
-    // empty <> 0 for certain php3 releases
-    if (empty($rows) || $rows == 0) {
+    // loic1: optimized query
+    $result = @mysql_query('USE mysql');
+    if (mysql_error()) {
        include('./header.inc.php3');
        mysql_die($strNoDropDatabases);
    }
--- a/main.php3
+++ b/main.php3
@@ -275,9 +275,8 @@ if ($server > 0
            echo "\n";
        }

-        $result = mysql_query('SELECT * FROM mysql.user');
-        $rows   = @mysql_num_rows($result);
-        if (!empty($rows)) {
+        $result = @mysql_query('USE mysql');
+        if (!mysql_error()) {
            ?>
        <tr>
            <td valign="baseline"><img src="images/item.gif" width="7" height="7" alt="item" /></td>
@@ -367,9 +366,8 @@ if ($server > 0
            </td>
        </tr>
        <?php
-        $result = mysql_query('SELECT * FROM mysql.user');
-        $rows   = @mysql_num_rows($result);
-        if (!empty($rows)) {
+        $result = @mysql_query('USE mysql');
+        if (!mysql_error()) {
            echo "\n";
            ?>
        <tr>
--- a/sql.php3
+++ b/sql.php3
@@ -17,10 +17,9 @@ if (!defined('PMA_CHK_DROP')
    && eregi('DROP[[:space:]]+(IF EXISTS[[:space:]]+)?DATABASE ', $sql_query)) {
    // Checks if the user is a Superuser
    // TODO: set a global variable with this information
-    $result = mysql_query('SELECT * FROM mysql.user');
-    $rows   = @mysql_num_rows($result);
-    // empty <> 0 for certain php3 releases
-    if (empty($rows) || $rows == 0) {
+    // loic1: optimized query
+    $result = @mysql_query('USE mysql');
+    if (mysql_error()) {
        include('./header.inc.php3');
        mysql_die($strNoDropDatabases);
    } // end if