'; if ($cfg['MainPageIconic']) { $str_iconic_list .= "%1\$s" . "\"%3\$s\"" . "%4\$s"; $str_iconic_colspan .= ' colspan="2"'; } else { $str_iconic_list = ''; $str_iconic_colspan = ' colspan="2"'; } // Handles some variables that may have been sent by the calling script if (isset($db)) { unset($db); } if (isset($table)) { unset($table); } $show_query = '1'; require_once('./header.inc.php'); echo "\n"; /** * Displays the welcome message and the server informations */ // note: for proper display of RTL languages, I removed the // align="left" in the next tag ?> ' . "\n"; echo ' phpMyAdmin - Logo' . "\n"; echo ' '; } ?>

0) { // robbat2: Use the verbose name of the server instead of the hostname // if a value is set if (!empty($cfg['Server']['verbose'])) { $server_info = $cfg['Server']['verbose']; } else { $server_info = $cfg['Server']['host']; $server_info .= (empty($cfg['Server']['port']) ? '' : ':' . $cfg['Server']['port']); } // loic1: skip this because it's not a so good idea to display sockets // used to everybody // if (!empty($cfg['Server']['socket']) && PMA_PHP_INT_VERSION >= 30010) { // $server_info .= ':' . $cfg['Server']['socket']; // } $res = PMA_DBI_query('SELECT USER();'); list($mysql_cur_user_and_host) = PMA_DBI_fetch_row($res); $mysql_cur_user = substr($mysql_cur_user_and_host, 0, strrpos($mysql_cur_user_and_host, '@')); PMA_DBI_free_result($res); unset($res, $row); $full_string = str_replace('%pma_s1%', PMA_MYSQL_STR_VERSION, $strMySQLServerProcess); $full_string = str_replace('%pma_s2%', $server_info, $full_string); $full_string = str_replace('%pma_s3%', $mysql_cur_user_and_host, $full_string); echo '

' . $full_string . '

' . "\n"; } // end if // Any message to display? if (isset($message)) { PMA_showMessage($message); unset($message); } /** * Reload mysql (flush privileges) */ if (($server > 0) && isset($mode) && ($mode == 'reload')) { $result = PMA_DBI_query('FLUSH PRIVILEGES'); echo '

'; if ($result != 0) { echo $strMySQLReloaded; } else { echo $strReloadFailed; } unset($result); echo '

' . "\n\n"; } ?>
0) { // Get user's global privileges ($dbh and $userlink are links to MySQL // defined in the "common.lib.php" library) // Note: if no controluser is defined, $dbh contains $userlink $is_create_priv = FALSE; $is_process_priv = TRUE; $is_reload_priv = FALSE; $db_to_create = ''; // We were trying to find if user if superuser with 'USE mysql' // but users with the global priv CREATE TEMPORARY TABLES or LOCK TABLES // can do a 'USE mysql' (even if they cannot see the tables) $is_superuser = PMA_DBI_try_query('SELECT COUNT(*) FROM mysql.user', $userlink, PMA_DBI_QUERY_STORE); function PMA_analyseShowGrant($rs_usr, &$is_create_priv, &$db_to_create, &$is_reload_priv) { $re0 = '(^|(\\\\\\\\)+|[^\])'; // non-escaped wildcards $re1 = '(^|[^\])(\\\)+'; // escaped wildcards while ($row = PMA_DBI_fetch_row($rs_usr)) { $show_grants_dbname = substr($row[0], strpos($row[0], ' ON ') + 4,(strpos($row[0], '.', strpos($row[0], ' ON ')) - strpos($row[0], ' ON ') - 4)); $show_grants_dbname = ereg_replace('^`(.*)`','\\1', $show_grants_dbname); $show_grants_str = substr($row[0],6,(strpos($row[0],' ON ')-6)); if (($show_grants_str == 'ALL') || ($show_grants_str == 'ALL PRIVILEGES') || ($show_grants_str == 'CREATE') || strpos($show_grants_str, 'CREATE')) { if ($show_grants_dbname == '*') { $is_create_priv = TRUE; $is_reload_priv = TRUE; $db_to_create = ''; break; } // end if else if ( (ereg($re0 . '%|_', $show_grants_dbname) && !ereg('\\\\%|\\\\_', $show_grants_dbname)) || (!PMA_DBI_try_query('USE ' . ereg_replace($re1 .'(%|_)', '\\1\\3', $show_grants_dbname)) && substr(PMA_DBI_getError(), 1, 4) != 1044) ) { $db_to_create = ereg_replace($re0 . '%', '\\1...', ereg_replace($re0 . '_', '\\1?', $show_grants_dbname)); $db_to_create = ereg_replace($re1 . '(%|_)', '\\1\\3', $db_to_create); $is_create_priv = TRUE; break; } // end elseif } // end if } // end while } // end function // Detection for some CREATE privilege. // Since MySQL 4.1.2, we can easily detect current user's grants // using $userlink (no control user needed) // and we don't have to try any other method for detection if (PMA_MYSQL_INT_VERSION >= 40102) { $rs_usr = PMA_DBI_try_query('SHOW GRANTS', $userlink, PMA_DBI_QUERY_STORE); if ($rs_usr) { PMA_analyseShowGrant($rs_usr,$is_create_priv, $db_to_create, $is_reload_priv); PMA_DBI_free_result($rs_usr); unset($rs_usr); } } else { // Before MySQL 4.1.2, we first try to find a priv in mysql.user. Hopefuly // the controluser is correctly defined; but here, $dbh could contain // $userlink so maybe the SELECT will fail if (!$is_create_priv) { $local_query = 'SELECT Create_priv, Reload_priv FROM mysql.user WHERE ' . PMA_convert_using('User') . ' = ' . PMA_convert_using(PMA_sqlAddslashes($mysql_cur_user), 'quoted') . ' OR ' . PMA_convert_using('User') . ' = ' . PMA_convert_using('', 'quoted') . ';'; $rs_usr = PMA_DBI_try_query($local_query, $dbh); // Debug: or PMA_mysqlDie('', $local_query, FALSE); if ($rs_usr) { while ($result_usr = PMA_DBI_fetch_assoc($rs_usr)) { if (!$is_create_priv) { $is_create_priv = ($result_usr['Create_priv'] == 'Y'); } if (!$is_reload_priv) { $is_reload_priv = ($result_usr['Reload_priv'] == 'Y'); } } // end while PMA_DBI_free_result($rs_usr); unset($rs_usr, $result_usr); } // end if } // end if // If the user has Create priv on a inexistant db, show him in the dialog // the first inexistant db name that we find, in most cases it's probably // the one he just dropped :) if (!$is_create_priv) { $local_query = 'SELECT DISTINCT Db FROM mysql.db WHERE ' . PMA_convert_using('Create_priv') . ' = ' . PMA_convert_using('Y', 'quoted') . ' AND (' . PMA_convert_using('User') . ' = ' .PMA_convert_using(PMA_sqlAddslashes($mysql_cur_user), 'quoted') . ' OR ' . PMA_convert_using('User') . ' = ' . PMA_convert_using('', 'quoted') . ');'; $rs_usr = PMA_DBI_try_query($local_query, $dbh, PMA_DBI_QUERY_STORE); if ($rs_usr) { $re0 = '(^|(\\\\\\\\)+|[^\])'; // non-escaped wildcards $re1 = '(^|[^\])(\\\)+'; // escaped wildcards while ($row = PMA_DBI_fetch_assoc($rs_usr)) { if (ereg($re0 . '(%|_)', $row['Db']) || (!PMA_DBI_try_query('USE ' . ereg_replace($re1 . '(%|_)', '\\1\\3', $row['Db'])) && substr(PMA_DBI_getError(), 1, 4) != 1044)) { $db_to_create = ereg_replace($re0 . '%', '\\1...', ereg_replace($re0 . '_', '\\1?', $row['Db'])); $db_to_create = ereg_replace($re1 . '(%|_)', '\\1\\3', $db_to_create); $is_create_priv = TRUE; break; } // end if } // end while PMA_DBI_free_result($rs_usr); unset($rs_usr, $row, $re0, $re1); } // end if else { // Finally, let's try to get the user's privileges by using SHOW // GRANTS... // Maybe we'll find a little CREATE priv there :) $rs_usr = PMA_DBI_try_query('SHOW GRANTS FOR ' . $mysql_cur_user_and_host . ';', $dbh, PMA_DBI_QUERY_STORE); if (!$rs_usr) { // OK, now we'd have to guess the user's hostname, but we // only try out the 'username'@'%' case. $rs_usr = PMA_DBI_try_query('SHOW GRANTS FOR ' . $mysql_cur_user . ';', $dbh, PMA_DBI_QUERY_STORE); } unset($local_query); if ($rs_usr) { PMA_analyseShowGrant($rs_usr,$is_create_priv, $db_to_create, $is_reload_priv); PMA_DBI_free_result($rs_usr); unset($rs_usr); } // end if } // end elseif } // end if } // end else (MySQL < 4.1.2) if (!$cfg['SuggestDBName']) { $db_to_create = ''; } $common_url_query = PMA_generate_common_url(); if ($is_superuser) { $cfg['ShowMysqlInfo'] = TRUE; $cfg['ShowMysqlVars'] = TRUE; $cfg['ShowChgPassword'] = TRUE; } if ($cfg['Server']['auth_type'] == 'config') { $cfg['ShowChgPassword'] = FALSE; } // loic1: Displays the MySQL column only if at least one feature has to be // displayed if ($is_superuser || $is_create_priv || $is_process_priv || $is_reload_priv || $cfg['ShowMysqlInfo'] || $cfg['ShowMysqlVars'] || $cfg['ShowChgPassword'] || $cfg['Server']['auth_type'] != 'config') { ?> ','s_status.png',$strMySQLShowStatus,'') : $str_normal_list); ?> ','s_vars.png',$strMySQLShowVars,'') : $str_normal_list); ?> ','s_process.png',$strMySQLShowProcess,'') : $str_normal_list); ?> = 40100) { echo "\n"; ?> ','s_asci.png',$strCharsetsAndCollations,'') : $str_normal_list); ?> ','b_engine.png',$strStorageEngines,'') : $str_normal_list); ?> ','s_reload.png',$strReloadMySQL,'') : $str_normal_list); ?> ','s_rights.png',$strPrivileges,'') : $str_normal_list); ?> 0) { ?> ','s_tbl.png',$strBinaryLog,'') : $str_normal_list); ?> ','s_db.png',$strDatabases,'') : $str_normal_list); ?> ','b_export.png',$strExport,'') : $str_normal_list); ?> ','s_passwd.png',$strChangePassword,'') : $str_normal_list); ?> ' . ($cfg['ReplaceHelpImg'] ? 'Info' : '(*)') . '' : ''; echo "\n"; ?> ','s_loggoff.png',$strLogout,'') : $str_normal_list); ?>
>  MySQL

= 40101) { require_once('./libraries/mysql_charsets.lib.php'); echo PMA_generateCharsetDropdownBox(PMA_CSDROPDOWN_COLLATION, 'db_collation', NULL, NULL, TRUE, 5); } ?>

' . ($cfg['ErrorIconic'] ? '' : '') . '' . $strNoPrivileges .''; } // end create db form or message ?>
 
 
 
 
 
 
 
 
0) echo "\n"; ?> 		  ','s_lang.png','Language','') : $str_normal_list); ?> = 40100) { echo ' ' . "\n" . ' ' . "\n" .' ' . ($str_iconic_list != '' ? sprintf($str_iconic_list,'','s_asci.png',$strMySQLCharset,'') : $str_normal_list) . "\n" . ' ' . "\n" . ' ' . "\n" . ' ' . "\n" . ' ' . "\n" .' ' . ($str_iconic_list != '' ? sprintf($str_iconic_list,'','s_asci.png',$strMySQLCharset,'') : $str_normal_list) . "\n" . ' ' . "\n" . ' ' . "\n"; } echo "\n"; // added by Michael Keck // ThemeManager if available if (isset($available_themes_choices) && $available_themes_choices > 1) { $theme_selected = FALSE; $theme_preview_path= './themes.php'; $theme_preview_href = ''; ?> ') : $str_normal_list) . "\n"; ?> ','b_docs.png',$strPmaDocumentation,'') : $str_normal_list); ?> ','php_sym.png',$strShowPHPInfo,'') : $str_normal_list); ?> ','b_home.png',$strHomepageOfficial,'') : $str_normal_list); ?> '; ?>
>  phpMyAdmin
Language '; }else{ echo '(*)'; } ?>:
:
' . "\n" . ' ' . $strMySQLCharset . ': ' . ' ' . ' ' . $mysql_charsets_descriptions[$mysql_charset_map[strtolower($charset)]] . "\n" . ' (' . $mysql_charset_map[strtolower($charset)] . ')' . "\n" . ' ' . "\n" . '
' . "\n" . '
' . "\n" . PMA_generate_common_hidden_inputs(NULL, NULL, 4, 'collation_connection') . ' ' . "\n" . PMA_generateCharsetDropdownBox(PMA_CSDROPDOWN_COLLATION, 'collation_connection', 'select_collation_connection', $collation_connection, TRUE, 4, TRUE) . ' ' . "\n" // put the doc link in the form so that it appears on the same line . PMA_showMySQLDocu('MySQL_Database_Administration', 'Charset-connection') . "\n" . '
' . "\n" . '
:' . "\n"; ?>
[ChangeLog]    [CVS]    [Lists]
' . $strPmaUriError . '' . "\n"; } /** * Warning if using the default MySQL privileged account * modified: 2004-05-05 mkkeck */ if ($server != 0 && $cfg['Server']['user'] == 'root' && $cfg['Server']['password'] == '') { echo '
' . $strInsecureMySQL . '
' . "\n"; } /** * Warning for PHP 4.2.3 * modified: 2004-05-05 mkkeck */ if (PMA_PHP_INT_VERSION == 40203 && @extension_loaded('mbstring')) { echo '
' . $strPHP40203 . '
' . "\n"; } /** * Nijel: As we try to hadle charsets by ourself, mbstring overloads just * break it, see bug 1063821. */ if (@extension_loaded('mbstring') && @ini_get('mbstring.func_overload') > 1) { echo '
' . $strMbOverloadWarning . '
' . "\n"; } /** * Nijel: mbstring is used for handling multibyte inside parser, so it is good * to tell user something might be broken without it, see bug #1063149. */ if ($GLOBALS['using_mb_charset'] && !@extension_loaded('mbstring')) { echo '
' . $strMbExtensionMissing . '
' . "\n"; } /** * Warning for old PHP version * modified: 2004-05-05 mkkeck */ if (PMA_PHP_INT_VERSION < 40100) { echo '
' . sprintf($strUpgrade, 'PHP', '4.1.0') . '
' . "\n"; } /** * Warning for old MySQL version * modified: 2004-05-05 mkkeck */ // not yet defined before the server choice if (defined('PMA_MYSQL_INT_VERSION') && PMA_MYSQL_INT_VERSION < 32332) { echo '
' . sprintf($strUpgrade, 'MySQL', '3.23.32') . '
' . "\n"; } /** * Displays the footer */ echo "\n"; require_once('./footer.inc.php'); ?>