Issues in JsonDbStructure.php (master) - Issues in master - Samshal/Scripd - Measure and Improve Code Quality continuously with Scrutinizer

Issues (15)

Security Analysis no request data

Cross-Site Scripting

Cross-Site Scripting enables an attacker to inject code into the response of a web-request that is viewed by other users. It can for example be used to bypass access controls, or even to take over other users' accounts.

File Exposure

File Exposure allows an attacker to gain access to local files that he should not be able to access. These files can for example include database credentials, or other configuration files.

File Manipulation

File Manipulation enables an attacker to write custom data to files. This potentially leads to injection of arbitrary code on the server.

Object Injection

Object Injection enables an attacker to inject an object into PHP code, and can lead to arbitrary code execution, file exposure, or file manipulation attacks.

Code Injection

Code Injection enables an attacker to execute arbitrary code on the server.

Response Splitting

Response Splitting can be used to send arbitrary responses.

File Inclusion

File Inclusion enables an attacker to inject custom files into PHP's file loading mechanism, either explicitly passed to include, or for example via PHP's auto-loading mechanism.

Command Injection

Command Injection enables an attacker to inject a shell command that is execute with the privileges of the web-server. This can be used to expose sensitive data, or gain access of your server.

SQL Injection

SQL Injection enables an attacker to execute arbitrary SQL code on your database server gaining access to user data, or manipulating user data.

XPath Injection

XPath Injection enables an attacker to modify the parts of XML document that are read. If that XML document is for example used for authentication, this can lead to further vulnerabilities similar to SQL Injection.

LDAP Injection

LDAP Injection enables an attacker to inject LDAP statements potentially granting permission to run unauthorized queries, or modify content inside the LDAP tree.

Header Injection

Other Vulnerability

This category comprises other attack vectors such as manipulating the PHP runtime, loading custom extensions, freezing the runtime, or similar.

Regex Injection

Regex Injection enables an attacker to execute arbitrary code in your PHP process.

XML Injection

XML Injection enables an attacker to read files on your local filesystem including configuration files, or can be abused to freeze your web-server process.

Variable Injection

Variable Injection enables an attacker to overwrite program variables with custom data, and can lead to further vulnerabilities.

Unfortunately, the security analysis is currently not available for your project. If you are a non-commercial open-source project, please contact support to gain access.

src/JsonDbStructure.php (5 issues)

Labels

Severity

Major 5

Upgrade to new PHP Analysis Engine

These results are based on our legacy PHP analysis, consider migrating to our new PHP analysis engine instead. Learn more

<?php

/*
 * This file is part of the samshal/scripd package.
 *
 * (c) Samuel Adeshina <[email protected]>
 *
 * For the full copyright and license information, please view the LICENSE
 * file that was distributed with this source code.
 */

namespace Samshal\Scripd;

/**
 * A robust SQL Generator. Parses database structures defined in json based on the
 * jsyn file format and generates corresponding sql queries.
 *
 * @since  1.0
 *
 * @author Samuel Adeshina <[email protected]>
 */
final class JsonDbStructure
{
    /**
     * @var array
     *
     * Names of database objects that can be manipulated
     * using major DDL keywords such as 'create', 'alter'
     * and 'drop'
     */
    private $topLevelObjects = [
        ':database',
        ':table',
        ':table-group',
        ':view',
        ':index',
        ':trigger',
        ':function',
        ':stored-procedure',
        ':storage',
        ':security',
    ];

    /**
     * @var array
     *            An array of object definers.
     *
     * Object Definers are Special keywords that accepts array values
     * in a json structure file definition
     */
    private $objectDefiners = [
        'columns',
        'add-column',
        'foreign-key',
    ];

    /**
     * @var array
     *            Special Characters used in jsyn files.
     *
     * Characters which have a special meaning such as braces and
     * square brackets are listed in this array
     */
    private $specialCharacters = [
        'left-curly-brace'     => '{',
        'right-curly-brace'    => '}',
        'left-square-bracket'  => '[',
        'right-square-bracket' => ']',
        'left-bracket'         => '(',
        'right-bracket'        => ')',
    ];

    /**
     * @var string
     */
    private $crudActionKeyword = ':crud-action';

    /**
     * @var string
     */
    private $objectGroupKeyword = '-group';

    /**
     * @var string
     */
    private $jsynExtension = '.jsyn';

    /**
     * @var string
     */
    private $jsynDirectory = __DIR__.'/bin/';

    /**
     * @var null | array
     */
    private $jsonStructure;

    /**
     * @var null | string
     */
    private $sqlVendor;

    /**
     * @var array
     */
    private $generatedSql = [];

    /**
     * @param $jsonStructureFile PathUtil | string | Array
     * @param $sqlVendor string
     */
    public function __construct($jsonStructureFile, $sqlVendor = 'default')
    {
        if (is_array($jsonStructureFile)) {
            $this->jsonStructure = $jsonStructureFile;

        } else {
            $this->jsonStructure = self::getObjectFromJsonFile($jsonStructureFile);

        }
        $this->sqlVendor = $sqlVendor;

    }

    /**
     * @param $jsynDirectory string
     *
     * @return void
     */
    public function setJsynDirectory($jsynDirectory)
    {
        $this->jsynDirectory = $jsynDirectory;
    }

    /**
     * @param $sqlVendor string
     *
     * @return void
     */
    public function setSqlVendor($sqlVendor)
    {
        $this->sqlVendor = $sqlVendor;
    }

    /**
     * @param $topLevelObject string
     * @param $crudAction string
     *
     * Based on the values provided in the $topLevelObject and $crudAction
     * variables, this method tries to derive the name of the jsyn file to use
     * for parsing.
     *
     * @return string | bool
     */
    private function guessJsynFileName($topLevelObject, $crudAction)
    {
        if (in_array($topLevelObject, $this->topLevelObjects)) {
            $this->crudAction = strtolower($crudAction);

            return $this->crudAction.'-'.self::objectIdentifierToString($topLevelObject).$this->jsynExtension;
        }

        return false;
    }

    /**
     * @param $jsonFile PathUtil | string
     *
     * Gets the content of a json file, decodes it and
     * returns an array of the decoded json.
     *
     * @return array
     */
    private function getObjectFromJsonFile($jsonFile)
    {
        $jsonStructure = file_get_contents($jsonFile);

        return json_decode($jsonStructure, JSON_FORCE_OBJECT);
    }

    /**
     * @param $jsonStructure array
     *
     * Tries to get the top level object from an array of
     * a json structure, returns false if no top level object
     * is found.
     *
     * @return string | bool
     */
    private function getProvidedTopLevelObject($jsonStructure)
    {
        foreach ($this->topLevelObjects as $topLevelObject) {
            if (isset($jsonStructure[$topLevelObject])) {
                return $topLevelObject;
            }
        }

        return false;
    }

    /**
     * @param $jsonStructure array
     *
     * Determines if a top level object is a valid one by checking
     * the $topLevelObjects array to see if its present.
     *
     * @return bool
     */
    private function isValidTopLevelObject($jsonStructure)
    {
        foreach ($this->topLevelObjects as $topLevelObject) {
            if (isset($jsonStructure[$topLevelObject])) {
                return true;
            }
        }

        return false;
    }

    /**
     * @param $objectIdentifier string
     *
     * Strips a supplied $objectIdentifier string variable of
     * special characters and returns a new string with only alphanumeric
     * characters.
     *
     * @return string
     */
    private function objectIdentifierToString($objectIdentifier)
    {
        return substr($objectIdentifier, 1, strlen($objectIdentifier) - 1);
    }

    /**
     * @param $jsonStructure array
     *
     * Converts a $jsonStructure array into a string containing valid
     * sql statements.
     *
     * @return string
     */
    public function generateSqlFromStructure($jsonStructure)
    {
        $topLevelObject = self::getProvidedTopLevelObject($jsonStructure);
        $crudAction = $jsonStructure[$topLevelObject][$this->crudActionKeyword];

        $jsynFileName = self::guessJsynFileName($topLevelObject, $crudAction);

        $jsynExtractor = new JsynExtractor($this->jsynDirectory.$jsynFileName, $this->sqlVendor);
        $jsynExtractor->formatJsyn();
        $jsyn = $jsynExtractor->getJsyn();

        $count = count($jsyn);
        for ($i = 0; $i < $count; ++$i) {
            $string = $jsyn[$i];
            $toSetValue = false;
            $isConstant = false;

            if (self::enclosed($this->specialCharacters['left-square-bracket'], $this->specialCharacters['right-square-bracket'], $string)) {
                $string = str_replace($this->specialCharacters['left-square-bracket'], null, str_replace($this->specialCharacters['right-square-bracket'], null, $string));
                if (self::enclosed($this->specialCharacters['left-curly-brace'], $this->specialCharacters['right-curly-brace'], $string)) {
                    $string = str_replace($this->specialCharacters['left-curly-brace'], null, str_replace($this->specialCharacters['right-curly-brace'], null, $string));
                    $toSetValue = true;
                }
            } elseif (self::enclosed($this->specialCharacters['left-curly-brace'], $this->specialCharacters['right-curly-brace'], $string)) {
                $string = str_replace($this->specialCharacters['left-curly-brace'], null, str_replace($this->specialCharacters['right-curly-brace'], null, $string));
                $toSetValue = true;
            } else {
                $isConstant = true;
            }

            $_string = str_replace(' ', '-', $string);
            if (isset($jsonStructure[$topLevelObject][$_string])) {
                if ($toSetValue && !is_bool($jsonStructure[$topLevelObject][$_string])) {
                    if (in_array($_string, $this->objectDefiners)) {
                        $_str = [];
                        foreach ($jsonStructure[$topLevelObject][$_string] as $jsonStructures) {
                            $_str[] = self::generateSqlFromObjectDefiner([$_string => $jsonStructures], $_string);
                        }
                        $jsonStructure[$topLevelObject][$_string] = '('.implode(', ', $_str).')';
                    }
                    $jsyn[$i] = $jsonStructure[$topLevelObject][$_string];
                } else {
                    $jsyn[$i] = (isset($jsonStructure[$topLevelObject][$_string]) && $jsonStructure[$topLevelObject][$_string] == true) ? strtoupper($string) : null;
                }
            } else {
                if (!$isConstant) {
                    if (isset($jsyn[$i - 1]) && $jsyn[$i - 1] == '=') {
                        unset($jsyn[$i - 1]);
                    }
                    unset($jsyn[$i]);
                }
            }
        }

        return implode(' ', $jsyn);
    }

    /**
     * @param $jsonStructures array
     * @param $objectDefiner string
     *
     * While the {@link generateSqlFromStructure()} method above generates sql string
     * from only valid top level objects, this method generates sql statements from valid
     * object definers. Accepts an $objectDefiner and a $jsonStructure array as parameters.
     *
     * @return string
     */
    public function generateSqlFromObjectDefiner($jsonStructures, $objectDefiner)
    {
        $topLevelObject = $objectDefiner;
        $jsynFileName = $objectDefiner.'.jsyn';

        $jsynExtractor = new JsynExtractor($this->jsynDirectory.$jsynFileName, $this->sqlVendor);
        $jsynExtractor->formatJsyn();
        $jsyn = $jsynExtractor->getJsyn();

        $count = count($jsyn);
        foreach ($jsonStructures as $jsonStructure) {
            $jsonStructure = [$topLevelObject => $jsonStructure];
            for ($i = 0; $i < $count; ++$i) {
                $string = $jsyn[$i];
                $toSetValue = false;
                $isConstant = false;
                $replaceWithComma = false;

                if (self::enclosed($this->specialCharacters['left-square-bracket'], $this->specialCharacters['right-square-bracket'], $string)) {
                    $string = str_replace($this->specialCharacters['left-square-bracket'], null, str_replace($this->specialCharacters['right-square-bracket'], null, $string));
                    if (self::enclosed($this->specialCharacters['left-curly-brace'], $this->specialCharacters['right-curly-brace'], $string)) {
                        $string = str_replace($this->specialCharacters['left-curly-brace'], null, str_replace($this->specialCharacters['right-curly-brace'], null, $string));
                        $toSetValue = true;
                    } elseif (self::enclosed($this->specialCharacters['left-bracket'], $this->specialCharacters['right-bracket'], $string)) {
                        $string = str_replace($this->specialCharacters['left-bracket'], null, str_replace($this->specialCharacters['right-bracket'], null, $string));
                        $toSetValue = false;
                        $replaceWithComma = true;
                    }
                } elseif (self::enclosed($this->specialCharacters['left-curly-brace'], $this->specialCharacters['right-curly-brace'], $string)) {
                    $string = str_replace($this->specialCharacters['left-curly-brace'], null, str_replace($this->specialCharacters['right-curly-brace'], null, $string));
                    $toSetValue = true;
                } else {
                    $isConstant = true;
                }

                $_string = str_replace(' ', '-', $string);
                if (isset($jsonStructure[$topLevelObject][$_string])) {
                    if ($toSetValue && !is_bool($jsonStructure[$topLevelObject][$_string])) {
                        $jsyn[$i] = $jsonStructure[$topLevelObject][$_string];
                    } else {
                        if ($replaceWithComma) {
                            $string = ", $string";
                        }
                        $jsyn[$i] = (isset($jsonStructure[$topLevelObject][$_string]) && $jsonStructure[$topLevelObject][$_string] == true) ? strtoupper($string) : null;
                    }
                } else {
                    if (!$isConstant) {
                        if (isset($jsyn[$i - 1]) && $jsyn[$i - 1] == '=') {
                            unset($jsyn[$i - 1]);
                        }
                        unset($jsyn[$i]);
                    }
                }
            }
        }

        return implode(' ', $jsyn);
    }

    /**
     * @param $encloserPre string
     * @param $encloserPost string
     * @param $enclosee string
     *
     * Checks to see if a string ($enclosee) is enclosed by special characters
     * such as '{' and '}' and '[' and ']'.
     *
     * @return bool
     */
    private function enclosed($encloserPre, $encloserPost, $enclosee)
    {
        if (substr($enclosee, 0, 1) == $encloserPre && substr($enclosee, strlen($enclosee) - 1) == $encloserPost) {
            return true;
        } else {
            return false;
        }
    }

    /**
     * Parses a jsonStructure in global scope and assigns
     * a generated array to either of the sql string generator methods
     * depending on the top level objects or object definers.
     *
     * @return bool
     */
    public function parseStructure()
    {
        foreach ($this->jsonStructure as $object => $jsonStructure) {
            if (!strpos($object, $this->objectGroupKeyword)) {
                $jsonStructure = [$object => $jsonStructure];
                if (self::isValidTopLevelObject($jsonStructure)) {
                    $this->generatedSql[] = self::generateSqlFromStructure($jsonStructure);
                }

                $topLevelObject = self::isAnotherObjectPresent($jsonStructure[$object]);
                while ($topLevelObject) {
                    if (strtolower($object) == ':database') {
                        $dbname = ($jsonStructure[$object]['name']);
                        $this->generatedSql[] = "USE $dbname";
                    }
                    $this->jsonStructure = [$topLevelObject => $jsonStructure[$object][$topLevelObject]];

                    $topLevelObject = self::isAnotherObjectPresent($jsonStructure[$object][$topLevelObject]);
                    self::parseStructure();
                }
            } else {
                foreach ($jsonStructure as $_jsonStructure) {
                    $object = substr($object, 0, strlen($object) - strpos($object, $this->objectGroupKeyword));
                    $_jsonStructure = [$object => $_jsonStructure];
                    if (self::isValidTopLevelObject($_jsonStructure)) {
                        $this->generatedSql[] = self::generateSqlFromStructure($_jsonStructure);
                    }

                    $topLevelObject = self::isAnotherObjectPresent($_jsonStructure[$object]);
                    while ($topLevelObject) {
                        $this->jsonStructure = [$topLevelObject => $_jsonStructure[$object][$topLevelObject]];

                        $topLevelObject = self::isAnotherObjectPresent($_jsonStructure[$object][$topLevelObject]);
                        self::parseStructure();
                    }
                }
            }
        }

        return true;
    }

    /**
     * @param $jsonStructure array
     *
     * Determines if another top level object or object definer is
     * present within the supplied json structure.
     * Returns the name of the object if found and false if not found.
     *
     * @return string
     */
    public function isAnotherObjectPresent($jsonStructure)
    {
        foreach ($this->topLevelObjects as $topLevelObject) {
            if (isset($jsonStructure[$topLevelObject])) {
                return $topLevelObject;
            }
        }
    }

    /**
     * @param $delimiter string
     *
     * Returns the parsed and generated string containing the sql
     * statement delimited by a value supplied in the $delimiter
     * parameter.
     *
     * @return string
     */
    public function getGeneratedSql($delimiter = ";\n")
    {
        return implode($delimiter, $this->generatedSql);
    }
}


1		<?php
2
3		/*
4		* This file is part of the samshal/scripd package.
5		*
6		* (c) Samuel Adeshina <[email protected]>
7		*
8		* For the full copyright and license information, please view the LICENSE
9		* file that was distributed with this source code.
10		*/
11
12		namespace Samshal\Scripd;
13
14		/**
15		* A robust SQL Generator. Parses database structures defined in json based on the
16		* jsyn file format and generates corresponding sql queries.
17		*
18		* @since 1.0
19		*
20		* @author Samuel Adeshina <[email protected]>
21		*/
22		final class JsonDbStructure
23		{
24		/**
25		* @var array
26		*
27		* Names of database objects that can be manipulated
28		* using major DDL keywords such as 'create', 'alter'
29		* and 'drop'
30		*/
31		private $topLevelObjects = [
32		':database',
33		':table',
34		':table-group',
35		':view',
36		':index',
37		':trigger',
38		':function',
39		':stored-procedure',
40		':storage',
41		':security',
42		];
43
44		/**
45		* @var array
46		* An array of object definers.
47		*
48		* Object Definers are Special keywords that accepts array values
49		* in a json structure file definition
50		*/
51		private $objectDefiners = [
52		'columns',
53		'add-column',
54		'foreign-key',
55		];
56
57		/**
58		* @var array
59		* Special Characters used in jsyn files.
60		*
61		* Characters which have a special meaning such as braces and
62		* square brackets are listed in this array
63		*/
64		private $specialCharacters = [
65		'left-curly-brace' => '{',
66		'right-curly-brace' => '}',
67		'left-square-bracket' => '[',
68		'right-square-bracket' => ']',
69		'left-bracket' => '(',
70		'right-bracket' => ')',
71		];
72
73		/**
74		* @var string
75		*/
76		private $crudActionKeyword = ':crud-action';
77
78		/**
79		* @var string
80		*/
81		private $objectGroupKeyword = '-group';
82
83		/**
84		* @var string
85		*/
86		private $jsynExtension = '.jsyn';
87
88		/**
89		* @var string
90		*/
91		private $jsynDirectory = __DIR__.'/bin/';
92
93		/**
94		* @var null \| array
95		*/
96		private $jsonStructure;
97
98		/**
99		* @var null \| string
100		*/
101		private $sqlVendor;
102
103		/**
104		* @var array
105		*/
106		private $generatedSql = [];
107
108		/**
109		* @param $jsonStructureFile PathUtil \| string \| Array
110		* @param $sqlVendor string
111		*/
112		public function __construct($jsonStructureFile, $sqlVendor = 'default')
113		{
114		if (is_array($jsonStructureFile)) {
115		$this->jsonStructure = $jsonStructureFile;
		0 ignored issues – show Documentation Bug introduced 2016-05-04 20:39 UTC by Report Bug Copy Issue Report Show Similar Issues like this It seems like `$jsonStructureFile` of type `array` is incompatible with the declared type `null` of property `$jsonStructure`. Our type inference engine has found an assignment to a property that is incompatible with the declared type of that property. Either this assignment is in error or the assigned type should be added to the documentation/type hint for that property.. Loading history...
116		} else {
117		$this->jsonStructure = self::getObjectFromJsonFile($jsonStructureFile);
		0 ignored issues – show Documentation Bug introduced 2016-04-29 18:29 UTC by Report Bug Copy Issue Report Show Similar Issues like this It seems like `self::getObjectFromJsonFile($jsonStructureFile)` of type `array` is incompatible with the declared type `null` of property `$jsonStructure`. Our type inference engine has found an assignment to a property that is incompatible with the declared type of that property. Either this assignment is in error or the assigned type should be added to the documentation/type hint for that property.. Loading history...
118		}
119		$this->sqlVendor = $sqlVendor;
		0 ignored issues – show Documentation Bug introduced 2016-05-20 21:54 UTC by Report Bug Copy Issue Report Show Similar Issues like this It seems like `$sqlVendor` of type `string` is incompatible with the declared type `null` of property `$sqlVendor`. Our type inference engine has found an assignment to a property that is incompatible with the declared type of that property. Either this assignment is in error or the assigned type should be added to the documentation/type hint for that property.. Loading history...
120		}
121
122		/**
123		* @param $jsynDirectory string
124		*
125		* @return void
126		*/
127		public function setJsynDirectory($jsynDirectory)
128		{
129		$this->jsynDirectory = $jsynDirectory;
130		}
131
132		/**
133		* @param $sqlVendor string
134		*
135		* @return void
136		*/
137		public function setSqlVendor($sqlVendor)
138		{
139		$this->sqlVendor = $sqlVendor;
140		}
141
142		/**
143		* @param $topLevelObject string
144		* @param $crudAction string
145		*
146		* Based on the values provided in the $topLevelObject and $crudAction
147		* variables, this method tries to derive the name of the jsyn file to use
148		* for parsing.
149		*
150		* @return string \| bool
151		*/
152		private function guessJsynFileName($topLevelObject, $crudAction)
153		{
154		if (in_array($topLevelObject, $this->topLevelObjects)) {
155		$this->crudAction = strtolower($crudAction);
156
157		return $this->crudAction.'-'.self::objectIdentifierToString($topLevelObject).$this->jsynExtension;
158		}
159
160		return false;
161		}
162
163		/**
164		* @param $jsonFile PathUtil \| string
165		*
166		* Gets the content of a json file, decodes it and
167		* returns an array of the decoded json.
168		*
169		* @return array
170		*/
171		private function getObjectFromJsonFile($jsonFile)
172		{
173		$jsonStructure = file_get_contents($jsonFile);
174
175		return json_decode($jsonStructure, JSON_FORCE_OBJECT);
176		}
177
178		/**
179		* @param $jsonStructure array
180		*
181		* Tries to get the top level object from an array of
182		* a json structure, returns false if no top level object
183		* is found.
184		*
185		* @return string \| bool
186		*/
187		private function getProvidedTopLevelObject($jsonStructure)
188		{
189		foreach ($this->topLevelObjects as $topLevelObject) {
190		if (isset($jsonStructure[$topLevelObject])) {
191		return $topLevelObject;
192		}
193		}
194
195		return false;
196		}
197
198		/**
199		* @param $jsonStructure array
200		*
201		* Determines if a top level object is a valid one by checking
202		* the $topLevelObjects array to see if its present.
203		*
204		* @return bool
205		*/
206		private function isValidTopLevelObject($jsonStructure)
207		{
208		foreach ($this->topLevelObjects as $topLevelObject) {
209		if (isset($jsonStructure[$topLevelObject])) {
210		return true;
211		}
212		}
213
214		return false;
215		}
216
217		/**
218		* @param $objectIdentifier string
219		*
220		* Strips a supplied $objectIdentifier string variable of
221		* special characters and returns a new string with only alphanumeric
222		* characters.
223		*
224		* @return string
225		*/
226		private function objectIdentifierToString($objectIdentifier)
227		{
228		return substr($objectIdentifier, 1, strlen($objectIdentifier) - 1);
229		}
230
231		/**
232		* @param $jsonStructure array
233		*
234		* Converts a $jsonStructure array into a string containing valid
235		* sql statements.
236		*
237		* @return string
238		*/
239		public function generateSqlFromStructure($jsonStructure)
240		{
241		$topLevelObject = self::getProvidedTopLevelObject($jsonStructure);
242		$crudAction = $jsonStructure[$topLevelObject][$this->crudActionKeyword];
243
244		$jsynFileName = self::guessJsynFileName($topLevelObject, $crudAction);
245
246		$jsynExtractor = new JsynExtractor($this->jsynDirectory.$jsynFileName, $this->sqlVendor);
247		$jsynExtractor->formatJsyn();
248		$jsyn = $jsynExtractor->getJsyn();
249
250		$count = count($jsyn);
251		for ($i = 0; $i < $count; ++$i) {
252		$string = $jsyn[$i];
253		$toSetValue = false;
254		$isConstant = false;
255
256		if (self::enclosed($this->specialCharacters['left-square-bracket'], $this->specialCharacters['right-square-bracket'], $string)) {
257		$string = str_replace($this->specialCharacters['left-square-bracket'], null, str_replace($this->specialCharacters['right-square-bracket'], null, $string));
258	View Code Duplication	if (self::enclosed($this->specialCharacters['left-curly-brace'], $this->specialCharacters['right-curly-brace'], $string)) {
259		$string = str_replace($this->specialCharacters['left-curly-brace'], null, str_replace($this->specialCharacters['right-curly-brace'], null, $string));
260		$toSetValue = true;
261		}
262	View Code Duplication	} elseif (self::enclosed($this->specialCharacters['left-curly-brace'], $this->specialCharacters['right-curly-brace'], $string)) {
263		$string = str_replace($this->specialCharacters['left-curly-brace'], null, str_replace($this->specialCharacters['right-curly-brace'], null, $string));
264		$toSetValue = true;
265		} else {
266		$isConstant = true;
267		}
268
269		$_string = str_replace(' ', '-', $string);
270		if (isset($jsonStructure[$topLevelObject][$_string])) {
271		if ($toSetValue && !is_bool($jsonStructure[$topLevelObject][$_string])) {
272		if (in_array($_string, $this->objectDefiners)) {
273		$_str = [];
274		foreach ($jsonStructure[$topLevelObject][$_string] as $jsonStructures) {
275		$_str[] = self::generateSqlFromObjectDefiner([$_string => $jsonStructures], $_string);
276		}
277		$jsonStructure[$topLevelObject][$_string] = '('.implode(', ', $_str).')';
278		}
279		$jsyn[$i] = $jsonStructure[$topLevelObject][$_string];
280		} else {
281		$jsyn[$i] = (isset($jsonStructure[$topLevelObject][$_string]) && $jsonStructure[$topLevelObject][$_string] == true) ? strtoupper($string) : null;
282		}
283	View Code Duplication	} else {
284		if (!$isConstant) {
285		if (isset($jsyn[$i - 1]) && $jsyn[$i - 1] == '=') {
286		unset($jsyn[$i - 1]);
287		}
288		unset($jsyn[$i]);
289		}
290		}
291		}
292
293		return implode(' ', $jsyn);
294		}
295
296		/**
297		* @param $jsonStructures array
298		* @param $objectDefiner string
299		*
300		* While the {@link generateSqlFromStructure()} method above generates sql string
301		* from only valid top level objects, this method generates sql statements from valid
302		* object definers. Accepts an $objectDefiner and a $jsonStructure array as parameters.
303		*
304		* @return string
305		*/
306		public function generateSqlFromObjectDefiner($jsonStructures, $objectDefiner)
307		{
308		$topLevelObject = $objectDefiner;
309		$jsynFileName = $objectDefiner.'.jsyn';
310
311		$jsynExtractor = new JsynExtractor($this->jsynDirectory.$jsynFileName, $this->sqlVendor);
312		$jsynExtractor->formatJsyn();
313		$jsyn = $jsynExtractor->getJsyn();
314
315		$count = count($jsyn);
316		foreach ($jsonStructures as $jsonStructure) {
317		$jsonStructure = [$topLevelObject => $jsonStructure];
318		for ($i = 0; $i < $count; ++$i) {
319		$string = $jsyn[$i];
320		$toSetValue = false;
321		$isConstant = false;
322		$replaceWithComma = false;
323
324		if (self::enclosed($this->specialCharacters['left-square-bracket'], $this->specialCharacters['right-square-bracket'], $string)) {
325		$string = str_replace($this->specialCharacters['left-square-bracket'], null, str_replace($this->specialCharacters['right-square-bracket'], null, $string));
326		if (self::enclosed($this->specialCharacters['left-curly-brace'], $this->specialCharacters['right-curly-brace'], $string)) {
327		$string = str_replace($this->specialCharacters['left-curly-brace'], null, str_replace($this->specialCharacters['right-curly-brace'], null, $string));
328		$toSetValue = true;
329	View Code Duplication	} elseif (self::enclosed($this->specialCharacters['left-bracket'], $this->specialCharacters['right-bracket'], $string)) {
330		$string = str_replace($this->specialCharacters['left-bracket'], null, str_replace($this->specialCharacters['right-bracket'], null, $string));
331		$toSetValue = false;
332		$replaceWithComma = true;
333		}
334		} elseif (self::enclosed($this->specialCharacters['left-curly-brace'], $this->specialCharacters['right-curly-brace'], $string)) {
335		$string = str_replace($this->specialCharacters['left-curly-brace'], null, str_replace($this->specialCharacters['right-curly-brace'], null, $string));
336		$toSetValue = true;
337		} else {
338		$isConstant = true;
339		}
340
341		$_string = str_replace(' ', '-', $string);
342		if (isset($jsonStructure[$topLevelObject][$_string])) {
343		if ($toSetValue && !is_bool($jsonStructure[$topLevelObject][$_string])) {
344		$jsyn[$i] = $jsonStructure[$topLevelObject][$_string];
345		} else {
346		if ($replaceWithComma) {
347		$string = ", $string";
348		}
349		$jsyn[$i] = (isset($jsonStructure[$topLevelObject][$_string]) && $jsonStructure[$topLevelObject][$_string] == true) ? strtoupper($string) : null;
350		}
351	View Code Duplication	} else {
352		if (!$isConstant) {
353		if (isset($jsyn[$i - 1]) && $jsyn[$i - 1] == '=') {
354		unset($jsyn[$i - 1]);
355		}
356		unset($jsyn[$i]);
357		}
358		}
359		}
360		}
361
362		return implode(' ', $jsyn);
363		}
364
365		/**
366		* @param $encloserPre string
367		* @param $encloserPost string
368		* @param $enclosee string
369		*
370		* Checks to see if a string ($enclosee) is enclosed by special characters
371		* such as '{' and '}' and '[' and ']'.
372		*
373		* @return bool
374		*/
375		private function enclosed($encloserPre, $encloserPost, $enclosee)
376		{
377		if (substr($enclosee, 0, 1) == $encloserPre && substr($enclosee, strlen($enclosee) - 1) == $encloserPost) {
378		return true;
379		} else {
380		return false;
381		}
382		}
383
384		/**
385		* Parses a jsonStructure in global scope and assigns
386		* a generated array to either of the sql string generator methods
387		* depending on the top level objects or object definers.
388		*
389		* @return bool
390		*/
391		public function parseStructure()
392		{
393		foreach ($this->jsonStructure as $object => $jsonStructure) {
394		if (!strpos($object, $this->objectGroupKeyword)) {
395		$jsonStructure = [$object => $jsonStructure];
396		if (self::isValidTopLevelObject($jsonStructure)) {
397		$this->generatedSql[] = self::generateSqlFromStructure($jsonStructure);
398		}
399
400		$topLevelObject = self::isAnotherObjectPresent($jsonStructure[$object]);
401		while ($topLevelObject) {
402		if (strtolower($object) == ':database') {
403		$dbname = ($jsonStructure[$object]['name']);
404		$this->generatedSql[] = "USE $dbname";
405		}
406		$this->jsonStructure = [$topLevelObject => $jsonStructure[$object][$topLevelObject]];
		0 ignored issues – show Documentation Bug introduced 2016-04-29 18:29 UTC by Report Bug Copy Issue Report Show Similar Issues like this It seems like `array($topLevelObject =>...ject][$topLevelObject])` of type `array<string,?>` is incompatible with the declared type `null` of property `$jsonStructure`. Our type inference engine has found an assignment to a property that is incompatible with the declared type of that property. Either this assignment is in error or the assigned type should be added to the documentation/type hint for that property.. Loading history...
407		$topLevelObject = self::isAnotherObjectPresent($jsonStructure[$object][$topLevelObject]);
408		self::parseStructure();
409		}
410		} else {
411		foreach ($jsonStructure as $_jsonStructure) {
412		$object = substr($object, 0, strlen($object) - strpos($object, $this->objectGroupKeyword));
413		$_jsonStructure = [$object => $_jsonStructure];
414		if (self::isValidTopLevelObject($_jsonStructure)) {
415		$this->generatedSql[] = self::generateSqlFromStructure($_jsonStructure);
416		}
417
418		$topLevelObject = self::isAnotherObjectPresent($_jsonStructure[$object]);
419		while ($topLevelObject) {
420		$this->jsonStructure = [$topLevelObject => $_jsonStructure[$object][$topLevelObject]];
		0 ignored issues – show Documentation Bug introduced 2016-04-29 18:29 UTC by Report Bug Copy Issue Report Show Similar Issues like this It seems like `array($topLevelObject =>...ject][$topLevelObject])` of type `array<string,?>` is incompatible with the declared type `null` of property `$jsonStructure`. Our type inference engine has found an assignment to a property that is incompatible with the declared type of that property. Either this assignment is in error or the assigned type should be added to the documentation/type hint for that property.. Loading history...
421		$topLevelObject = self::isAnotherObjectPresent($_jsonStructure[$object][$topLevelObject]);
422		self::parseStructure();
423		}
424		}
425		}
426		}
427
428		return true;
429		}
430
431		/**
432		* @param $jsonStructure array
433		*
434		* Determines if another top level object or object definer is
435		* present within the supplied json structure.
436		* Returns the name of the object if found and false if not found.
437		*
438		* @return string
439		*/
440		public function isAnotherObjectPresent($jsonStructure)
441		{
442		foreach ($this->topLevelObjects as $topLevelObject) {
443		if (isset($jsonStructure[$topLevelObject])) {
444		return $topLevelObject;
445		}
446		}
447		}
448
449		/**
450		* @param $delimiter string
451		*
452		* Returns the parsed and generated string containing the sql
453		* statement delimited by a value supplied in the $delimiter
454		* parameter.
455		*
456		* @return string
457		*/
458		public function getGeneratedSql($delimiter = ";\n")
459		{
460		return implode($delimiter, $this->generatedSql);
461		}
462		}
463

Samshal / Scripd

Issues (15)

Security Analysis no request data

src/JsonDbStructure.php (5 issues)

Labels

Severity

Introduced By

Upgrade to new PHP Analysis Engine

Duplication Side-by-Side

Filter issues like