Elep

<?php
/*
 * Your installation or use of this SugarCRM file is subject to the applicable
 * terms available at
 * http://support.sugarcrm.com/Resources/Master_Subscription_Agreements/.
 * If you do not agree to all of the applicable terms or do not have the
 * authority to bind the entity as an authorized representative, then do not
 * install or use this SugarCRM file.
 *
 * Copyright (C) SugarCRM Inc. All rights reserved.
 */

use Sugarcrm\Sugarcrm\Security\InputValidation\InputValidation;

class StoreQuery
{
    /**
     * @var mixed|bool
     */
    public $populate_only;
    public $query = [];

public function addToQuery($name, $val)
    {
        $this->query[$name] = $val;
    }

/**
     * SaveQuery
     *
     * This function handles saving the query parameters to the user preferences
     * SavedSearch.php does something very similar when saving saved searches as well
     *
     * @param $name String name  to identify this query
     * @see SavedSearch
     */
    public function SaveQuery($name)
    {
        global $current_user, $timedate;
        if (isset($this->query['module'])) {
            $bean = BeanFactory::newBean($this->query['module']);
            if (!empty($bean)) {
                foreach ($this->query as $key => $value) {
                    //Filter date fields to ensure it is saved to DB format, but also avoid empty values
                    if (!empty($value) && preg_match('/^(start_range_|end_range_|range_)?(.*?)(_advanced|_basic)$/', $key, $match)) {
                        $field = $match[2];
                        if (isset($bean->field_defs[$field]['type']) && empty($bean->field_defs[$field]['disable_num_format'])) {
                            $type = $bean->field_defs[$field]['type'];

if (($type == 'date' || $type == 'datetime' || $type == 'datetimecombo') && !preg_match('/^\[.*?\]$/', $value)) {
                                $db_format = $timedate->to_db_date($value, false);
                                $this->query[$key] = $db_format;
                            } elseif ($type == 'int' || $type == 'currency' || $type == 'decimal' || $type == 'float') {
                                if (preg_match('/[^\d]/', $value)) {
                                    require_once 'modules/Currencies/Currency.php';
                                    $this->query[$key] = unformat_number($value);
                                    //Flag this value as having been unformatted
                                    $this->query[$key . '_unformatted_number'] = true;
                                    //If the type is of currency and there was a currency symbol (non-digit), save the symbol
                                    if ($type == 'currency' && preg_match('/^([^\d])/', $value, $match)) {
                                        $this->query[$key . '_currency_symbol'] = $match[1];
                                    }
                                } else {
                                    //unset any flags
                                    if (isset($this->query[$key . '_unformatted_number'])) {
                                        unset($this->query[$key . '_unformatted_number']);
                                    }

if (isset($this->query[$key . '_currency_symbol'])) {
                                        unset($this->query[$key . '_currency_symbol']);
                                    }
                                }
                            }
                        }
                    }
                }
            }
        }

$current_user->setPreference($name . 'Q', $this->query, 0, "sq_{$name}Q");
    }

public function clearQuery($name)
    {
        $this->query = [];
        $this->saveQuery($name);
    }

public function loadQuery($name)
    {
        $saveType = $this->getSaveType($name);
        if ($saveType == 'all' || $saveType == 'myitems') {
            global $current_user;
            $this->query = StoreQuery::getStoredQueryForUser($name);
            if (empty($this->query)) {
                $this->query = [];
            }
            if (!empty($this->populate_only) && !empty($this->query['query'])) {
                $this->query['query'] = 'MSI';
            }
        }
    }

public function populateRequest()
    {
        global $timedate;

if (isset($this->query['module'])) {
            $bean = BeanFactory::newBean($this->query['module']);
        }

foreach ($this->query as $key => $value) {
            // todo wp: remove this
            if ($key != 'advanced' && $key != 'module' && $key != 'lvso') {
                //Filter date fields to ensure it is saved to DB format, but also avoid empty values
                if (!empty($value) && !empty($bean) && preg_match('/^(start_range_|end_range_|range_)?(.*?)(_advanced|_basic)$/', $key, $match)) {
                    $field = $match[2];
                    if (isset($bean->field_defs[$field]['type']) && empty($bean->field_defs[$field]['disable_num_format'])) {
                        $type = $bean->field_defs[$field]['type'];

if (($type == 'date' || $type == 'datetime' || $type == 'datetimecombo') && preg_match('/^\d{4}-\d{2}-\d{2}$/', $value) && !preg_match('/^\[.*?\]$/', $value)) {
                            $value = $timedate->to_display_date($value, false);
                        } elseif (($type == 'int' || $type == 'currency' || $type == 'decimal' || $type == 'float') && isset($this->query[$key . '_unformatted_number']) && preg_match('/^\d+$/', $value)) {
                            require_once 'modules/Currencies/Currency.php';
                            $value = format_number($value);
                            if ($type == 'currency' && isset($this->query[$key . '_currency_symbol'])) {
                                $value = $this->query[$key . '_currency_symbol'] . $value;
                            }
                        }
                    }
                }

// cn: bug 6546 storequery stomps correct value for 'module' in Activities
                $_REQUEST[$key] = $value;
                $_GET[$key] = $value;
            }
        }
    }

public function getSaveType($name)
    {
        global $sugar_config;
        $save_query = empty($sugar_config['save_query']) ?
            'all' : $sugar_config['save_query'];

if (is_array($save_query)) {
            if (isset($save_query[$name])) {
                $saveType = $save_query[$name];
            } elseif (isset($save_query['default'])) {
                $saveType = $save_query['default'];
            } else {
                $saveType = 'all';
            }
        } else {
            $saveType = $save_query;
        }
        if ($saveType == 'populate_only') {
            $saveType = 'all';
            $this->populate_only = true;
        }
        return $saveType;
    }

public function saveFromRequest($name)
    {
        if (isset($_REQUEST['query'])) {
            if (!empty($_REQUEST['clear_query']) && $_REQUEST['clear_query'] == 'true') {
                $this->clearQuery($name);
                return;
            }
            $saveType = $this->getSaveType($name);

if ($saveType == 'myitems') {
                if (!empty($_REQUEST['current_user_only'])) {
                    $this->query['current_user_only'] = $_REQUEST['current_user_only'];
                    $this->query['query'] = true;
                }
                $this->saveQuery($name);
            } elseif ($saveType == 'all') {
                // Bug 39580 - Added 'EmailTreeLayout','EmailGridWidths' to the list as these are added merely as side-effects of the fact that we store the entire
                // $_REQUEST object which includes all cookies.  These are potentially quite long strings as well.
                $blockVariables = ['mass', 'uid', 'massupdate', 'delete', 'merge', 'selectCount', 'current_query_by_page', 'EmailTreeLayout', 'EmailGridWidths'];
                if (isset($_REQUEST['module'])) {
                    $_REQUEST['module'] = InputValidation::getService()->getValidInputRequest('module', 'Assert\Mvc\ModuleName');
                }
                $this->query = $_REQUEST;
                foreach ($blockVariables as $block) {
                    unset($this->query[$block]);
                }
                $this->saveQuery($name);
            }
        }
    }

public function saveFromGet($name)
    {
        if (isset($_GET['query'])) {
            if (!empty($_GET['clear_query']) && $_GET['clear_query'] == 'true') {
                $this->clearQuery($name);
                return;
            }
            $saveType = $this->getSaveType($name);

if ($saveType == 'myitems') {
                if (!empty($_GET['current_user_only'])) {
                    $this->query['current_user_only'] = $_GET['current_user_only'];
                    $this->query['query'] = true;
                }
                $this->saveQuery($name);
            } elseif ($saveType == 'all') {
                $this->query = $_GET;
                $this->saveQuery($name);
            }
        }
    }

/**
     * Static method to retrieve the user's stored query for a particular module
     *
     * @param string $module
     * @return array
     */
    public static function getStoredQueryForUser($module)
    {
        global $current_user;
        return $current_user->getPreference($module . 'Q', "sq_{$module}Q");
    }
}