upgrade.php

<?php
/**
 * Licensed to The Apereo Foundation under one or more contributor license
 * agreements. See the NOTICE file distributed with this work for
 * additional information regarding copyright ownership.

 * The Apereo Foundation licenses this file to you under the Apache License,
 * Version 2.0 (the "License"); you may not use this file except in
 * compliance with the License. You may obtain a copy of the License at:
 *
 * http://www.apache.org/licenses/LICENSE-2.0
 *
 * Unless required by applicable law or agreed to in writing, software
 * distributed under the License is distributed on an "AS IS" BASIS,
 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.

 * See the License for the specific language governing permissions and
 * limitations under the License.
 */


/**
 * Upgrade script for generic-ish MySQL database.
 *
 * Method of operation:
 *
 * 1. Creates a config table, which it'll use to store a version number within it.
 * 2. Each time this script runs, it looks to see if there is a function called 'upgrade_NN' where NN is version_number +1.
 * 3. If it finds update_NN, it will keep running all subsequent upgrade_NN functions it can find.
 *
 * This script is loosely based on a similar script in the PostfixAdmin project and one Pale Purple uses internally.
 *
 * It's been changed a little for Xerte Online Toolkits to take into consideration the table prefix stuff and that XOT only deals with MySQL.
 *
 * Error reporting could be enhanced a bit; in that the 'native' db_query*() functions we have in XOT now don't really raise any sort of
 * error messages... so it's difficult to retrieve them to show here - although perhaps a call to mysql_error() would work,
 * it's not been tested.
 *
 * For now, if someone calls this script via http://server/path/to/xot/upgrade.php?debug=yes then they'll see the queries being output,
 * but error messages will probably remain hidden. Hopefully this is sufficient to debug any problems end users/sysadmins encounter,
 * but who knows.
 * Alternatively, edit config.php, enable development mode, and see what is shown in the debug file (probably /tmp/debug.log).
 *
 * @author David Goodwin <gingerdog@gmail.com>
 *
 */
// cannot not have this.
require_once(dirname(__FILE__) . "/config.php");


function _db_field_exists($table, $field) {
    global $xerte_toolkits_site;
    $table = $xerte_toolkits_site->database_table_prefix . $table;
    $sql = "SHOW COLUMNS FROM $table LIKE '$field'";
    $r = db_query($sql);
    return !empty($r);
}

function _db_add_field($table, $field, $fieldtype, $default, $after) {
    $table = table_by_key($table);
    if(! _db_field_exists($table, $field)) {
        $fieldtype = strtoupper($fieldtype);
        $query = "ALTER TABLE $table ADD COLUMN $field $fieldtype";

        /* TEXT and BLOB types cannot have a default. */
        if ($fieldtype != 'TEXT' && $fieldtype != 'BLOB') {
            if ($fieldtype == 'INT')
            {
                $query .= " DEFAULT $default";
            }
            else {
                $query .= " DEFAULT '$default'";
            }
        }

        if ($after) {
            $query .= " AFTER $after";
        }

        return db_query($query);
    } else {
        printdebug ("field already exists: $table.$field");
        return false;
    }
}

/**
 * Fix up table name to include {$xerte_toolkits_site->database_table_prefix} if necessary.
 * If the name already contains the prefix, do not re-add it.
 * @param string $name
 * @return string $name
 */
function table_by_key($name) {
    global $xerte_toolkits_site;

    if(!preg_match("/^{$xerte_toolkits_site->database_table_prefix}/", $name)) {
        $name = $xerte_toolkits_site->database_table_prefix . $name;
    }
    return $name;
}

$_GET['debug'] = true;
function printdebug($text) {
    if (!empty($_GET['debug'])) {
        print "<p style='color:#999'>$text</p>";
    }
}

$config_table = table_by_key('config');
$mysql = "CREATE TABLE IF NOT EXISTS $config_table (
      id int(11) NOT NULL AUTO_INCREMENT,
      name varchar(20) NOT NULL,
      value varchar(20) NOT NULL,
      PRIMARY KEY (id),
      UNIQUE KEY name_idx (name)
    )
";
db_query($mysql) or die("Failed to create $config_table!");

$sql = "SELECT * FROM $config_table WHERE name = 'version'";

$r = db_query_one($sql);
if(!empty($r)) {
    $version = $r['value'];
    // Fix jump if we are not already past 32
    // Previously the messages were a bit strange with the counters.
    if ($version <= 32)
    {
        $version -= 1;
    }
    echo "Starting from $version\n";
} else {
    db_query("INSERT INTO $config_table (name, value) VALUES ('version', '0')");
    $version = 0;
}

echo "Updates are being applied to {$xerte_toolkits_site->database_name} \n";
_do_upgrade($version);
_do_cleanup();

function _do_upgrade($current_version) {
    $target_version = $current_version + 1;

    echo "<p>Current database version - $current_version</p>";
    if(!function_exists('upgrade_' . $target_version)) {
        echo "<p>Database is up to date, nothing to do</p>";
        return true;
    }

    echo "<p>Updating database:</p><p> - from version: $current_version</p>";
    echo "<div style='color:#999'>&nbsp;&nbsp; (If the update doesn't work, run setup.php?debug=1 to see the detailed error messages and SQL queries.)</div>";

    while(function_exists('upgrade_' . $target_version)) {
        $function = "upgrade_" . $target_version;
        echo " Updating to version $target_version \n";
        $ok = $function();
        if(!$ok) {
            echo "Oh dear. Something probably went wrong; exiting after trying $function\n</p>";
            return;
        }
        echo "<p> $ok </p>";
        $target_version += 1;
    }
    echo "<p><b>Upgrade complete</b></p>\n";
    // Last version is actually used is one less
    $target_version -= 1;
    // Update config table so we don't run the same query twice in the future.
    $table = table_by_key('config');
    $sql = "UPDATE $table SET value = $target_version WHERE name = 'version'";
    if(!db_query($sql)) {
        echo "<P><strong>Failed to update config table; last update may be repeated if you re-run this script!</strong></p>";
    }
}

/**
 * Wrap around db_query - so we can print out the SQL etc if necessary.
 * @param string $sql
 * @param array parameters for the SQL - if prepared statement. See db_query.
 */
function _upgrade_db_query($sql, $params = array()) {
    $result = db_query($sql, $params);
    if(!empty($_GET['debug'])) {
        echo "<p>DEBUG Query: $sql, output " . print_r($result) . "</p>";
    }
    return $result;
}

function _table_exists($table) {
    $sql = "select 1 from $table limit 1";
    $r = db_query($sql);
    return $r!==false;
}

function _do_cleanup()
{
    // Cleanup files that are really in the way of functionality, i.e. the responsivetext.css files in some of the themes prior to v3.6

    echo "Cleanup up files that are really in the way<br>";
    $filelist = array(
        'themes/Nottingham/blackround/responsivetext.css',
        'themes/Nottingham/btnTopPurple/responsivetext.css',
        'themes/Nottingham/darkgrey/responsivetext.css',
        'themes/Nottingham/flatblue/responsivetext.css',
        'themes/Nottingham/flatred/responsivetext.css',
        'themes/Nottingham/flatwhite/responsivetext.css',
        'themes/Nottingham/orangepurple/responsivetext.css',
        'themes/Nottingham/sketch/responsivetext.css',
        'modules/xerte/parent_templates/Nottingham/common_html5/mediaelement/DO NOT CHANGE THESE FILES. USE -src- FOLDER.txt',
        'USER-FILES/*/.htaccess',
        'modules/xerte/templates/*/.htaccess',
        'modules/site/templates/*/.htaccess',
        'modules/decision/templates/*/.htaccess',
        'modules/xerte/parent_templates/Nottingham/common_html5/js/xapidashboard/*',
        'modules/xerte/parent_templates/Nottingham/common_html5/js/xapidashboard/examples/',
        'modules/xerte/parent_templates/Nottingham/common_html5/js/xapidashboard/extra/',
        'modules/xerte/parent_templates/Nottingham/common_html5/js/xapidashboard/generateData/',
        'modules/xerte/parent_templates/Nottingham/common_html5/js/xapidashboard/src/',
        'modules/xerte/parent_templates/Nottingham/common_html5/js/xapidashboard/wizard/',
        'drawing.php',
        'drawingjs.php',
        'modules/xerte/engine/*',
        'modules/site/engine/*',
        'modules/decision/engine/*',
        'LTI/*',
        'play_html5.php',
        'play_site.php',
        'setup/xampp.php',
        'setup/xampp.txt',
        'setup/xampp_database.txt',
        'rloObject.js',
        'package.json',
        'package-lock.json',
        'modules/xerte/parent_templates/Nottingham/common_html5/js/jsPDF/jspdf.min.js',
    );

    foreach ($filelist as $file)
    {
        if (file_exists($file) || strpos($file, "*") !== false)
        {
            echo 'Removing ' . $file . '<br>';
            if (strpos($file, "*") === false && $file[strlen($file)-1] !==  "/")
            {
                unlink($file);
            }
            else if ($file[strlen($file)-1] !==  "/")  // wildcard
            {
                system("rm " . $file . " &");
            }
            else  // folder
            {
                system("rm -rf " . $file . " &");
            }
        }
        else
        {
            echo 'File ' . $file . ' not found (already deleted :-) )<br>';
        }
    }

    // Turn off Rss template since it has no HTML engine
    $table = table_by_key('originaltemplatesdetails');
    $ok = db_query("update `$table` SET `active` = '0' WHERE `$table`.`template_type_id` = 8");
    echo "Rss template " . ($ok ? 'set inactive' : 'already inactive :-)') . "<br>";

    echo 'Done<br>';
}

/**
 * Example code to illustrate usage:
 *
 * There must be NO gaps in the function names - i.e. sequential numbers are required.
 * The ability to go up/down could be added; but that's left as an exercise for the motivated reader.
 *
 * function upgrade_1() {
 *   // add 'field_name' to the 'logindetails' table; don't worry about making sure the table prefix is there
 *   return _db_add_field('logindetails', 'field_name');
 * }
 *
 * function upgrade_2() {
 *   // perhaps we need to run a query which reforms some data... do it like so :
 *   return _upgrade_db_query("UPDATE logindetails SET foo = bar WHERE x = y");
 * }
 */

/** Add ldap table into the schema if it's not there already */
function upgrade_1() {
    $table = table_by_key('ldap');
    return _upgrade_db_query("CREATE TABLE IF NOT EXISTS `$table` (
        `ldap_id` bigint(20) NOT NULL AUTO_INCREMENT,
        `ldap_knownname` text NOT NULL,
        `ldap_host` text NOT NULL,
        `ldap_port` text NOT NULL,
        `ldap_username` text,
        `ldap_password` text,
        `ldap_basedn` text,
        `ldap_filter` text,
        `ldap_filter_attr` text,
        PRIMARY KEY (`ldap_id`)
    ) ");
}

function upgrade_2() {

    $sdtable = table_by_key('sitedetails');
    $ldaptable = table_by_key('ldap');

    $site_details = db_query_one("SELECT * FROM {$sdtable}");
    if(empty($site_details['ldap_host']) || empty($site_details['basedn'])) {
        _debug("No ldap information to use; can't migrate");
        return "No ldap information here to use for migrating";
    }
    // some empty records may be already here?
    _upgrade_db_query("DELETE FROM {$ldaptable} WHERE ldap_host = ?", array(''));

    $rows = _upgrade_db_query("SELECT * FROM {$ldaptable} WHERE ldap_host = ?", array($site_details['ldap_host']));
    if(sizeof($rows) > 0) {
        echo "LDAP migration appears to have already taken place!";
        return true;
    }

    if(!empty($site_details['ldap_host']) && !empty($site_details['basedn'])) {
        $ldap_details = array('ldap_knownname' => $site_details['ldap_host'],
                              'ldap_host' => $site_details['ldap_host'],
                              'ldap_port' => $site_details['ldap_port'],
                              'ldap_username' => $site_details['bind_dn'],
                              'ldap_password' => $site_details['bind_pwd'],
                              'ldap_basedn' => $site_details['basedn'],
                              'ldap_filter' => $site_details['LDAP_filter'],
                              'ldap_filter_attr' => $site_details['LDAP_preference']);

        $fields = array_keys($ldap_details);
        $qmarks = '';
        $comma = '';
        $fields_sql = '';
        foreach($fields as $field) {
            $qmarks .= $comma . '?';
            $fields_sql .= $comma . $field;
            $comma = ',';
        }
        _debug("Running SQL to copy sitedetails stuff into the ldap table - " . print_r($ldap_details, true));
        $ok = _upgrade_db_query("INSERT INTO {$ldaptable} ($fields_sql) VALUES($qmarks)", array_values($ldap_details));
        return "Migrated LDAP settings from sitedetails to ldap - ok ? " . ( $ok ? 'true' : 'false' );
    }
}

/*
 function upgrade_3() {
// DO NOTHING but it seems if you ran the previous 2 steps then it wont run #3 but try to run #4
  _debug('Dummy upgrade required if not already done upgrade step 2');
}
*/

function upgrade_3() {
  _debug("Creating new lti tables");

  $table = table_by_key('lti_context');
  $error1 = _upgrade_db_query("CREATE TABLE IF NOT EXISTS `$table` (
  `lti_context_key` varchar(255) NOT NULL,
  `c_internal_id` varchar(255) NOT NULL,
  `updated_on` datetime NOT NULL,
  PRIMARY KEY (`lti_context_key`),
  KEY `c_internal_id` (`c_internal_id`) ) ");

  $table = table_by_key('lti_keys');
  $error2 = _upgrade_db_query("CREATE TABLE IF NOT EXISTS `$table` (
  `id` mediumint(9) NOT NULL AUTO_INCREMENT,
  `oauth_consumer_key` char(255) NOT NULL,
  `secret` char(255) DEFAULT NULL,
  `name` char(255) DEFAULT NULL,
  `context_id` char(255) DEFAULT NULL,
  `deleted` datetime DEFAULT NULL,
  `updated_on` datetime DEFAULT NULL,
  PRIMARY KEY (`id`),
  KEY `oauth_consumer_key` (`oauth_consumer_key`) ) ");

  $table = table_by_key('lti_resource');
  $error3 = _upgrade_db_query("CREATE TABLE IF NOT EXISTS `$table` (
  `lti_resource_key` varchar(255) NOT NULL,
  `internal_id` varchar(255) DEFAULT NULL,
  `internal_type` varchar(255) NOT NULL,
  `updated_on` datetime DEFAULT NULL,
  PRIMARY KEY (`lti_resource_key`),
  KEY `destination2` (`internal_type`),
  KEY `destination` (`internal_id`) ) ");
  $table = table_by_key('lti_user');
  $error4 = _upgrade_db_query("CREATE TABLE IF NOT EXISTS `$table` (
  `lti_user_key` varchar(255) NOT NULL DEFAULT '',
  `lti_user_equ` varchar(255) NOT NULL,
  `updated_on` datetime NOT NULL,
  PRIMARY KEY (`lti_user_key`),
  KEY `lti_user_equ` (`lti_user_equ`) ) ");

$error_returned=true;
  if (($error1 === false) or ($error2 === false) or ($error3 === false) or ($error4 === false)) {
    $error_returned=false;
   // echo "creating lti tables FAILED";
  }



        return "Creating lti tables - ok ? " . ( $error_returned ? 'true' : 'false' );

}

function upgrade_4()
{
    if (! _db_field_exists('templatedetails', 'extra_flags')) {
        $error1 = _db_add_field('templatedetails', 'extra_flags', 'varchar(45)', '', 'access_to_whom');

        $table = table_by_key('templatedetails');
        $error2 = _upgrade_db_query("UPDATE `$table`  set `extra_flags`='engine=flash'");

        $table = table_by_key('originaltemplatesdetails');
        $error3 = _upgrade_db_query("UPDATE `$table`  set `template_framework`='site' where `template_name`='site'");

        $table = table_by_key('sitedetails');
        $error4 = _upgrade_db_query("ALTER TABLE `$table` CHANGE COLUMN `site_text` `site_text` TEXT NULL DEFAULT NULL");

        $error_returned = true;
        if (($error1 === false) || ($error2 === false) || ($error3 === false) || ($error4 === false)) {
            $error_returned = false;
            // echo "creating lti tables FAILED";
        }

        return "Creating default engine flag - ok ? " . ($error_returned ? 'true' : 'false');
    }
    else
    {
        return "Default engine flag already present - ok ? true";
    }
}

function upgrade_5_step1()
{
    $table = table_by_key('configdetails');
    $error1 = _upgrade_db_query("CREATE TABLE IF NOT EXISTS `$table` (
      `config_key` char(255) NOT NULL,
      `value` text NOT NULL,
      `description_key` text DEFAULT NULL,
      `mandatory` smallint(1) DEFAULT 1,
      `category` char(255) DEFAULT NULL,
      `base64encoded`smallint(1) DEFAULT 0,
      PRIMARY KEY (`config_key`) ) ");

    return "Creating configdetails tables - ok ? " . ( $error1 ? 'true' : 'false' );
}

function upgrade_5_step2()
{
    global $xerte_toolkits_site;

    // Convert sitedetails table to configdetails
    if (!database_connect("", "")) {
        die("database.php isn't correctly configured; cannot connect to database; have you run /setup?");
    }

    $row = db_query_one("SELECT * FROM {$xerte_toolkits_site->database_table_prefix}sitedetails");

    $table = table_by_key('configdetails');
    foreach ($row as $key => $value) {
        $extraflags = "";
        if ($key == 'demonstration_page' || $key == 'news_text' || $key=='pod_one' || $key=='pod_two' || $key=='form_string' || $key=='peer_form_string' || $key == 'play_edit_preview_query')
        {
            $extraflags = ", base64encoded=1";
        }
        else if ($key == 'site_text')
        {
            $site_texts = explode("~~~", $value);
            $value = $site_texts[0];
            $tutorialkey = "tutorial_text";
            if (count($site_texts) > 1)
            {
                $tutorial = $site_texts[1];
            }
            else
            {
                $tutorial = "";
            }
            db_query("insert into " . $table . " set config_key='" . $tutorialkey . "', value='" . $tutorial . "', category='xerte', mandatory=1" . $extraflags);
        }
        db_query("insert into " . $table . " set config_key='" . $key . "', value='" . $value . "', category='xerte', mandatory=1" . $extraflags);
    }
    return true;
}

function upgrade_5()
{
    upgrade_5_step1();
    upgrade_5_step2();
    return true;
}

function upgrade_6()
{
    $table = table_by_key('originaltemplatesdetails');
    db_query_one("insert  into " . $table . " (`template_type_id`,`template_framework`,`template_name`,`description`,`date_uploaded`,`display_name`,`display_id`,`access_rights`,`active`) values (17,'decision','decision','A template for presenting a series of questions to reach a solution to a problem.','2009-01-01','Decision Tree Template',0,'*',1)");

	return true;
}

function upgrade_7()
{
    global $xerte_toolkits_site;
    if (! _db_field_exists('sitedetails', 'authentication_method')) {
        $error1 = _db_add_field('sitedetails', 'authentication_method', 'char(255)', '', 'site_session_name');
        $error_returned = true;
        $res = db_query("update {$xerte_toolkits_site->database_table_prefix}sitedetails set authentication_method = 'Guest' where site_id=1");
        if($res === false) {
            die("Error creating authentication_method field");
        }

        if (($error1 === false)) {
            $error_returned = false;
            // echo "creating authentication_method field FAILED";
        }

        return "Creating authentication_method field - ok ? " . ($error_returned ? 'true' : 'false');
    }
    else
    {
        return "authentication_method field already present - ok ? true";
    }
}

function upgrade_8()
{
    // Make template_id of templatedetails autoincrement
    global $xerte_toolkits_site;

    // Check if auto_increment is set
    $sql = "SELECT * FROM information_schema.COLUMNS where table_schema=? and table_name=? and column_name='template_id'";
    $res = db_query($sql, array($xerte_toolkits_site->database_name, $xerte_toolkits_site->database_table_prefix . 'templatedetails'));
    if ($res !== false && count($res)>0 && isset($res[0]['extra']))
    {
        if (strpos('auto_increment', $res[0]['extra']) === false)
        {
            // Add auto_increment flag to column
            $sql = "ALTER TABLE " . $xerte_toolkits_site->database_table_prefix . "templatedetails CHANGE COLUMN `template_id` `template_id` BIGINT(20) NOT NULL AUTO_INCREMENT";
            $res = db_query($sql);
            if($res === false) {
                die("Error adding auto_incement to templatedetails.template_id column.");
            }
            return "Adding auto_increment to templatedetails.template_id column - ok true";
        }
    }
    else
    {
        return "Auto_increment already set on templatedetails.template_id column - ok true";
    }
}

function upgrade_9()
{
    if (! _db_field_exists('sitedetails', 'LRS_Endpoint')) {
        $error1 = _db_add_field('sitedetails', 'LRS_Endpoint', 'char(255)', '', 'feedback_list');
        $error1_returned = true;

        $error2 = _db_add_field('sitedetails', 'LRS_Key', 'char(255)', '', 'LRS_Endpoint');
        $error2_returned = true;

        $error3 = _db_add_field('sitedetails', 'LRS_Secret', 'char(255)', '', 'LRS_Key');
        $error3_returned = true;

        if (($error1 === false)) {
            $error1_returned = false;
            // echo "creating LRS_Endpoint field FAILED";
        }

        if (($error2 === false)) {
            $error2_returned = false;
            // echo "creating LRS_Key field FAILED";
        }

        if (($error3 === false)) {
            $error3_returned = false;
            // echo "creating LRS_Secret field FAILED";
        }

        return "Creating LRS Endpoint settings fields - ok ? " . ($error1_returned && $error2_returned && $error3_returned? 'true' : 'false'). "<br>";
    }
    else
    {
        return "LRS Endpoint settings fields already present - ok ? true". "<br>";
    }
}


function upgrade_10()
{
    // Update the list of allowed MIME types.

    global $xerte_toolkits_site;

    $add_types = array();
    $new_types = array('image/jpg', 'image/bmp', 'image/svg+xml', 'application/svg', 'audio/mp3', 'video/mpeg', 'application/ogg', 'text/rtf');

    if (! _db_field_exists('sitedetails', 'mimetypes')) {
        die("Database field 'mimetypes' missing from 'sitedetails' table.");
    }

    foreach ($new_types as $new_mime_type) {
        if (!in_array($new_mime_type, $xerte_toolkits_site->mimetypes)) {
            $add_types[] = $new_mime_type;
        }
    }

    // Only update the database if there are types that were missing.
    if (!empty($add_types)) {
        $new_str = implode(",", array_merge($xerte_toolkits_site->mimetypes, $add_types));

        $table = table_by_key('sitedetails');
        $sql = "UPDATE $table SET mimetypes = ?";
        $res = db_query($sql, array($new_str));

        if ($res) {
            $new_str = implode(", ", $add_types);
            echo "<p> New file MIME types added to the allowed type list: " . $new_str . "</p>";
            return "Default allowed MIME type list updated - ok ? true";
        }
        else {
            // A failed update is not fatal, so just report it.
            return "Default allowed MIME type list updated - ok ? false";
        }
    }
    else {
        return "Default allowed MIME type list up to date - ok ? true";
    }
}

function upgrade_11()
{
    // Create, and initialize, the field for enabling MIME upload checks.

    if (! _db_field_exists('sitedetails', 'enable_mime_check')) {
        $error1 = _db_add_field('sitedetails', 'enable_mime_check', 'char(255)', '', 'apache');

        if ($error1) {
            $table = table_by_key('sitedetails');
            $sql = "UPDATE $table SET enable_mime_check = ?";
            $error2 = db_query($sql, array('false'));
        }
        else {
            $error2 = false;
        }

        return "Creating MIME checks field - ok ? " . ($error1 && $error2 ? 'true' : 'false');
    }
    else
    {
        return "MIME checks field already present - ok ? true";
    }
}

function upgrade_12()
{
    // Create the field for enabling file extension file upload checks.

    if (! _db_field_exists('sitedetails', 'enable_file_ext_check')) {
        $error1 = _db_add_field('sitedetails', 'enable_file_ext_check', 'char(255)', '', 'mimetypes');

        if ($error1) {
            $table = table_by_key('sitedetails');
            $sql = "UPDATE $table SET enable_file_ext_check = ?";
            $error2 = db_query($sql, array('false'));
        }
        else {
            $error2 = false;
        }

        return "Creating file extension check field - ok ? " . ($error1 && $error2 ? 'true' : 'false');
    }
    else
    {
        return "File extension check field already present - ok ? true";
    }
}

function upgrade_13()
{
    // Create the file_extensions blacklist field.

    $blacklist = 'php,php5,pl,cgi,exe,vbs,pif,application,gadget,msi,msp,com,scr,hta,htaccess,ini,cpl,msc,jar,bat,cmd,vb,vbe,jsp,jse,ws,wsf,wsc,wsh,ps1,ps1xml,ps2,ps2xml,psc1,psc2,msh,msh1,msh2,mshxml,msh1xml,msh2xml,scf,lnk,inf,reg,docm,dotm,xlsm,xltm,xlam,pptm,potm,ppam,ppsm,sldm';

    if (! _db_field_exists('sitedetails', 'file_extensions')) {
        $error1 = _db_add_field('sitedetails', 'file_extensions', 'text', '', 'enable_file_ext_check');

        if ($error1) {
            $table = table_by_key('sitedetails');
            $sql = "UPDATE $table SET file_extensions = ?";
            $error2 = db_query($sql, array($blacklist));
        }
        else {
            $error2 = false;
        }

        return "Creating file extension blacklist field - ok ? " . ($error1 && $error2 ? 'true' : 'false');
    }
    else
    {
        return "File extension blacklist field already present - ok ? true";
    }
}

function upgrade_14()
{
    // Create the ClamAV antivirus check settings.

    if (! _db_field_exists('sitedetails', 'enable_clamav_check') || ! _db_field_exists('sitedetails', 'clamav_cmd') || ! _db_field_exists('sitedetails', 'clamav_opts')) {
        if (! _db_field_exists('sitedetails', 'enable_clamav_check')) {
            $error1 = _db_add_field('sitedetails', 'enable_clamav_check', 'char(255)', '', 'file_extensions');

            if ($error1) {
                $table = table_by_key('sitedetails');
                $sql = "UPDATE $table SET enable_clamav_check = ?";
                $error1 = db_query($sql, array('false'));
            }
        }
        else {
            $error1 = true;
        }

        if ($error1 && ! _db_field_exists('sitedetails', 'clamav_cmd')) {
            $error2 = _db_add_field('sitedetails', 'clamav_cmd', 'char(255)', '', 'enable_clamav_check');

            if ($error2) {
                $table = table_by_key('sitedetails');
                $sql = "UPDATE $table SET clamav_cmd = ?";
                $error2 = db_query($sql, array('/usr/bin/clamscan'));
            }
        }
        else {
            $error2 = true;
        }

        if ($error1 && $error2 && ! _db_field_exists('sitedetails', 'clamav_opts')) {
            $error3 = _db_add_field('sitedetails', 'clamav_opts', 'char(255)', '', 'clamav_cmd');

            if ($error3) {
                $table = table_by_key('sitedetails');
                $sql = "UPDATE $table SET clamav_opts = ?";
                $error3 = db_query($sql, array('--no-summary'));
            }
        }
        else {
            $error3 = true;
        }

        return "Creating the ClamAV antivirus check fields - ok ? " . ($error1 && $error2 && $error3 ? 'true' : 'false');
    }
    else
    {
        return "ClamAV antivirus check fields already present - ok ? true";
    }
}

function upgrade_15()
{
    if (! _db_field_exists('sitedetails', 'tsugi_dir')) {
        $error1 = _db_add_field('sitedetails', 'tsugi_dir', 'text', '', 'LRS_Secret');
        $error1_returned = true;


        if (($error1 === false)) {
            $error1_returned = false;
        }

        return "Tsugi directory field - ok ? " . ($error1_returned ? 'true' : 'false'). "<br>";
    }
    else
    {
        return "Tsugi directory already exists - ok ? true". "<br>";
    }
}

function upgrade_16()
{
    $message = "";
    if (! _db_field_exists('templatedetails', 'tsugi_published')) {
        $error1 = _db_add_field('templatedetails', 'tsugi_published', 'int(1)', '0', 'extra_flags');
        $error1_returned = true;


        if (($error1 === false)) {
            $error1_returned = false;
        }

        $message .= "Tsugi published field added - ok ? " . ($error1_returned ? 'true' : 'false'). "<br>";
    }
    else
    {
        $message .= "Tsugi published field already exists - ok ? true". "<br>";
    }

    if (! _db_field_exists('templatedetails', 'tsugi_xapi_enabled')) {
        $error1 = _db_add_field('templatedetails', 'tsugi_xapi_enabled', 'int(1)', '0', 'tsugi_published');
        $error1_returned = true;


        if (($error1 === false)) {
            $error1_returned = false;
        }

        $message .= "Tsugi xapi enabled field added - ok ? " . ($error1_returned ? 'true' : 'false'). "<br>";
    }
    else
    {
        $message .= "Tsugi xapi enabled field already exists - ok ? true". "<br>";
    }

    if (! _db_field_exists('templatedetails', 'tsugi_xapi_endpoint')) {
        $error1 = _db_add_field('templatedetails', 'tsugi_xapi_endpoint', 'varchar(255)', '', 'tsugi_xapi_enabled');
        $error1_returned = true;


        if (($error1 === false)) {
            $error1_returned = false;
        }

        $message .= "Tsugi xapi endpoint field added - ok ? " . ($error1_returned ? 'true' : 'false'). "<br>";
    }
    else
    {
        $message .= "Tsugi xapi endpoint field already exists - ok ? true". "<br>";
    }

    if (! _db_field_exists('templatedetails', 'tsugi_xapi_key')) {
        $error1 = _db_add_field('templatedetails', 'tsugi_xapi_key', 'varchar(255)', '', 'tsugi_xapi_endpoint');
        $error1_returned = true;


        if (($error1 === false)) {
            $error1_returned = false;
        }

        $message .= "Tsugi xapi key field added - ok ? " . ($error1_returned ? 'true' : 'false'). "<br>";
    }
    else
    {
        $message .= "Tsugi xapi key field already exists - ok ? true". "<br>";
    }

    if (! _db_field_exists('templatedetails', 'tsugi_xapi_secret')) {
        $error1 = _db_add_field('templatedetails', 'tsugi_xapi_secret', 'varchar(255)', '', 'tsugi_xapi_key');
        $error1_returned = true;


        if (($error1 === false)) {
            $error1_returned = false;
        }

        $message .= "Tsugi xapi secret field added - ok ? " . ($error1_returned ? 'true' : 'false') . "<br>";
    }
    else
    {
        $message .= "Tsugi xapi secret field already exists - ok ? true <br>";
    }
    if (! _db_field_exists('templatedetails', 'tsugi_xapi_student_id_mode')) {
        $error1 = _db_add_field('templatedetails', 'tsugi_xapi_student_id_mode', 'int(1)', '0', 'tsugi_xapi_secret');
        $error1_returned = true;


        if (($error1 === false)) {
            $error1_returned = false;
        }

        $message .= "Tsugi xapi student id mode field added - ok ? " . ($error1_returned ? 'true' : 'false'). "<br>";
    }
    else
    {
        $message .= "Tsugi xapi student id mode field already exists - ok ? true <br>";
    }
    return $message;

}

function upgrade_17()
{
    $table = table_by_key('grouping');
    $ok = _upgrade_db_query("CREATE TABLE IF NOT EXISTS `$table` (
      `grouping_id` int(11) NOT NULL AUTO_INCREMENT,
      `grouping_name` char(255) DEFAULT NULL,
      PRIMARY KEY (`grouping_id`)
      ) ENGINE=MyISAM DEFAULT CHARSET=utf8 COLLATE=utf8_unicode_ci
    ");

    $message = "Creating grouping table - ok ? " . ($ok ? 'true' : 'false');

    $ok = db_query("insert  into `$table` (`grouping_id`,`grouping_name`) values (1,'Grouping 1'),(2,'Grouping 2'),(3,'Grouping 3'),(4,'Grouping 4'),(5,'Grouping 5'),(6,'Grouping 6'),(7,'Grouping 7'),(8,'Grouping 8'),(9,'Grouping 9'),(10,'Grouping 10')");

    $message .= "Filling default groupings into groupings table - ok ? " . ($ok ? 'true' : 'false');

    return $message;
}

function upgrade_18()
{
    if (! _db_field_exists('sitedetails', 'dashboard_enabled')) {
        $error1 = _db_add_field('sitedetails', 'dashboard_enabled', 'char(255)', 'true', 'LRS_Secret');
        $error1_returned = true;

        $error2 = _db_add_field('sitedetails', 'dashboard_nonanonymous', 'char(255)', 'true', 'dashboard_enabled');
        $error2_returned = true;

        $error3 = _db_add_field('sitedetails', 'xapi_dashboard_minrole', 'char(255)', 'co-author', 'dashboard_nonanonymous');
        $error3_returned = true;

        $error4 = _db_add_field('sitedetails', 'dashboard_period', 'INT', 14, 'xapi_dashboard_minrole');
        $error4_returned = true;

        if (($error1 === false)) {
            $error1_returned = false;
            // echo "creating LRS_Endpoint field FAILED";
        }

        if (($error2 === false)) {
            $error2_returned = false;
            // echo "creating LRS_Key field FAILED";
        }

        if (($error3 === false)) {
            $error3_returned = false;
            // echo "creating LRS_Secret field FAILED";
        }

        if (($error4 === false)) {
            $error4_returned = false;
            // echo "creating LRS_Secret field FAILED";
        }

        return "Creating xAPI dashboard settings fields - ok ? " . ($error1_returned && $error2_returned && $error3_returned && $error4_returned? 'true' : 'false'). "<br>";
    }
    else
    {
        return "Creating xAPI dashboard settings fields already present - ok ? true". "<br>";
    }
}

function upgrade_19()
{
    if (! _db_field_exists('originaltemplatesdetails', 'parent_template')) {
        $error1 = _db_add_field('originaltemplatesdetails', 'parent_template', 'char(255)', '', 'template_name');
        $error1_returned = true;
        if ($error1 !== false)
        {
            // Populate
            $table = table_by_key('originaltemplatesdetails');
            $sql = "UPDATE $table SET parent_template = template_name";
            $error2 = db_query($sql);
            $error2_returned = true;
        }
        else
        {
            $error2 = false;
        }
        if (($error1 === false)) {
            $error1_returned = false;
        }

        if (($error2 === false)) {
            $error2_returned = false;
        }
        return "Creating template_parent field in originaltemplatesdetails - ok ? " . ($error1_returned && $error2_returned ? 'true' : 'false'). "<br>";
    }
    else
    {
        return "Creating template_parent field in originaltemplatesdetails already present - ok ? ". "<br>";
    }

}

function upgrade_20()
{
    if (! _db_field_exists('templatedetails', 'tsugi_xapi_useglobal')) {
        $error1 = _db_add_field('templatedetails', 'tsugi_xapi_useglobal', 'int(1)', '1', 'tsugi_xapi_enabled');
        $error1_returned = true;

        if (($error1 === false)) {
            $error1_returned = false;
        }

        return "Tsugi xapi enabled field added - ok ? " . ($error1_returned ? 'true' : 'false'). "<br>";
    }
    else
    {
        return "Tsugi xapi enabled field already exists - ok ? true". "<br>";
    }
}

function upgrade_21()
{
    if (!_db_field_exists('templatedetails', 'dashboard_allowed_links')) {
        $error1 = _db_add_field('templatedetails', 'dashboard_allowed_links', 'text', '', 'tsugi_xapi_student_id_mode');
        $error1_returned = true;
        if($error1 === false)
        {
            $error1_returned = false;
        }
        if (! _db_field_exists('sitedetails', 'dashboard_allowed_links')) {
            $error2 = _db_add_field('sitedetails', 'dashboard_allowed_links', 'text', '', 'dashboard_period');
            $error2_returned = true;
            if ($error2 === false)
            {
                $error2_returned = false;
            }
        }
        return "Creating dashboard_allowed_links field in templatedetails - ok ? "  . ($error1_returned && $error2_returned ? 'true' : 'false') . "<br>";
    }
    if (! _db_field_exists('sitedetails', 'dashboard_allowed_links')) {
        $error2 = _db_add_field('sitedetails', 'dashboard_allowed_links', 'text', '', 'dashboard_period');
        $error2_returned = true;
        if ($error2 === false)
        {
            $error2_returned = false;
        }
    }
    return "Creating dashboard_allowed_links field in templatedetails already present - ok ? ". "<br>";
}

function upgrade_22()
{
    $table = table_by_key('course');
    $ok = _upgrade_db_query("CREATE TABLE IF NOT EXISTS `$table` (
      `course_id` int(11) NOT NULL AUTO_INCREMENT,
      `course_name` char(255) DEFAULT NULL,
      PRIMARY KEY (`course_id`)
      ) ENGINE=MyISAM DEFAULT CHARSET=utf8 COLLATE=utf8_unicode_ci"
    );

    $error1 = true;
    $message = "Creating course table - ok ? " . ($ok ? 'true' : 'false');
    if (!_db_field_exists('sitedetails', 'course_freetext_enabled')) {
        $error1 = _db_add_field('sitedetails', 'course_freetext_enabled', 'char(255)', 'true', 'dashboard_allowed_links');
    }
    $message .= "<br>Creating course_freetext_enabled field in sitedetails = ok ? " . ($error1 ? 'true' : 'false');
    return $message;
}

function upgrade_23()
{
    if (!_db_field_exists('templatedetails', 'dashboard_display_options')) {
        $error1 = _db_add_field('templatedetails', 'dashboard_display_options', 'text', '{}', 'dashboard_allowed_links');
        $error1_returned = true;
        if($error1 === false)
        {
            $error1_returned = false;
        }
        return "Creating dashboard_display_options field in templatedetails - ok ? "  . ($error1_returned ? 'true' : 'false') . "<br>";
    }
    return "Creating dashboard_display_options field in templatedetails already present - ok ? ". "<br>";
}

function upgrade_24()
{
    if (!_db_field_exists('originaltemplatesdetails', 'template_sub_pages')) {
        $error1 = _db_add_field('originaltemplatesdetails', 'template_sub_pages', 'text', '{}', 'active');
        $error1_returned = true;
        if($error1 === false)
        {
            $error1_returned = false;
        }
        return "Creating template_sub_pages field in originaltemplatesdetails - ok ? "  . ($error1_returned ? 'true' : 'false') . "<br>";
    }
    return "Creating template_sub_pages field in originaltemplatesdetails already present - ok ? ". "<br>";
}

function upgrade_25()
{
    if (!_db_field_exists('templatedetails', 'tsugi_usetsugikey')) {
        $error1 = _db_add_field('templatedetails', 'tsugi_usetsugikey', 'int(1)', '1', 'tsugi_published');
        $error1_returned = true;

        $error2 = _db_add_field('templatedetails', 'tsugi_privatekeyonly', 'int(1)', '0', 'tsugi_usetsugikey');
        $error2_returned = true;
        if (($error1 === false)) {
            $error1_returned = false;
            // echo "creating LRS_Endpoint field FAILED";
        }

        if (($error2 === false)) {
            $error2_returned = false;
            // echo "creating LRS_Key field FAILED";
        }
        return "Creating tsugi_usetsugikey and  tsugi_privatekeyonly field in templatedetails - ok ? " . ($error1_returned && $error2_returned ? 'true' : 'false'). "<br>";
    }
    else
    {
        return "Creating tsugi_usetsugikey and  tsugi_privatekeyonly field in templatedetails already present - ok ? ". "<br>";
    }
}

function upgrade_26()
{
    $table = table_by_key('user_groups');
    $ok = _upgrade_db_query("CREATE TABLE IF NOT EXISTS `$table` (
        `group_id` bigint(20) NOT NULL AUTO_INCREMENT,
        `group_name` char(255) DEFAULT NULL,
        PRIMARY KEY (`group_id`)
      ) ENGINE=MyISAM DEFAULT CHARSET=utf8 COLLATE=utf8_unicode_ci"
    );

    $message = "Creating user_groups table - ok ? " . ($ok ? 'true' : 'false') . "<br>";

    $table = table_by_key('user_group_members');
    $ok = _upgrade_db_query("CREATE TABLE IF NOT EXISTS `$table` (
        `id` bigint(20) NOT NULL AUTO_INCREMENT,
        `group_id` bigint(20) NOT NULL,
        `login_id` bigint(20) NOT NULL,
        PRIMARY KEY (`id`)
      ) ENGINE=MyISAM DEFAULT CHARSET=utf8 COLLATE=utf8_unicode_ci"
    );

    $message .= "Creating user_group_members - ok ? " . ($ok ? 'true' : 'false') . "<br>";

    $table = table_by_key('template_group_rights');
    $ok = _upgrade_db_query("CREATE TABLE IF NOT EXISTS `$table` (
        `id` bigint(20) NOT NULL AUTO_INCREMENT,
        `group_id` bigint(20) NOT NULL,
        `template_id` bigint(20) NOT NULL,
        `role` char(255) DEFAULT NULL,
        PRIMARY KEY (`id`)
      ) ENGINE=MyISAM DEFAULT CHARSET=utf8 COLLATE=utf8_unicode_ci"
    );

    $message .= "Creating template_group_rights - ok ? " . ($ok ? 'true' : 'false') . "<br>";

    return $message;

}


function upgrade_27()
{
    $table = table_by_key('folderrights');
    $ok = _upgrade_db_query("CREATE TABLE IF NOT EXISTS `$table` (
        `id` int(11) NOT NULL AUTO_INCREMENT,
        `folder_id` int(11) NOT NULL,
        `user_id` int(11) NOT NULL,
        `role` char(255) DEFAULT NULL,
        PRIMARY KEY (`id`)
      ) ENGINE=MyISAM DEFAULT CHARSET=utf8 COLLATE=utf8_unicode_ci"
    );

    $message = "Creating folderrights table - ok ? " . ($ok ? 'true' : 'false') . "<br>";

    $table = table_by_key('folder_group_rights');
    $ok = _upgrade_db_query("CREATE TABLE IF NOT EXISTS `$table` (
        `id` bigint(20) NOT NULL AUTO_INCREMENT,
        `folder_id` bigint(20) NOT NULL,
        `group_id` bigint(20) NOT NULL,
        `role` char(255) DEFAULT NULL,
        PRIMARY KEY (`id`)
      ) ENGINE=MyISAM DEFAULT CHARSET=utf8 COLLATE=utf8_unicode_ci"
    );

    $message .= "Creating folder_group_rights table - ok ? " . ($ok ? 'true' : 'false') . "<br>";

    return $message;

}

function upgrade_28()
{
    global $xerte_toolkits_site;

    // Create an index for templaterights
    $table = table_by_key('templaterights');

    // First check if index already exists
    $sql = "SELECT COUNT(1) as count FROM INFORMATION_SCHEMA.STATISTICS WHERE TABLE_SCHEMA = '$xerte_toolkits_site->database_name' AND TABLE_NAME='$table' AND INDEX_NAME='index1'";
    $result = db_query_one($sql);
    if ($result !== false && $result['count'] == '0') {
        $ok = _upgrade_db_query("ALTER TABLE `$table` ADD INDEX `index1` (`template_id` ASC, `user_id` ASC, `role`(10) ASC);");
        $message = "Creating index on table templaterights - ok ? " . ($ok ? 'true' : 'false') . "<br>";

        return $message;
    }
    $message = 'Index on templaterights table is already present';
    return $message;
}

function upgrade_29()
{
    $table = table_by_key('educationlevel');
    $ok = _upgrade_db_query("CREATE TABLE IF NOT EXISTS `$table` (
                `educationlevel_id` int(11) NOT NULL AUTO_INCREMENT,
                `educationlevel_name` char(255) DEFAULT NULL,
                PRIMARY KEY (`educationlevel_id`)
                ) ENGINE=MyISAM DEFAULT CHARSET=utf8 COLLATE=utf8_unicode_ci"
    );

    $message = "Creating educationlevel table - ok ? " . ($ok ? 'true' : 'false');

    $ok = db_query("insert into `$table` (`educationlevel_id`,`educationlevel_name`) values (1,'University'),(2,'College'),(3,'Secondary Education'),(4,'Primary Educaton'),(5,'Vocational Education'),(6,'Adult Education'),(7,'All')");

    $message .= "Filling default educationlevel into educationlevel table - ok ? " . ($ok ? 'true' : 'false');

    return $message;
}

function upgrade_30()
{
    // Oops, this is also done in upgrade_33... but better! So skip this one!
    return "Skip step 30 - Done by 33 - ok ? true". "<br>";
}

function upgrade_31()
{
    if (! _db_field_exists('sitedetails', 'globalhidesocial')) {
        $error1 = _db_add_field('sitedetails', 'globalhidesocial', 'char(255)', 'false', 'tsugi_dir');
        $error1_returned = true;

        $error2 = _db_add_field('sitedetails', 'globalsocialauth', 'char(255)', 'true', 'globalhidesocial');
        $error2_returned = true;

        if (($error1 === false)) {
            $error1_returned = false;
            // echo "creating LRS_Endpoint field FAILED";
        }

        if (($error2 === false)) {
            $error2_returned = false;
            // echo "creating LRS_Key field FAILED";
        }

        return "Creating Social Icon settings fields - ok ? " . ($error1_returned && $error2_returned ? 'true' : 'false'). "<br>";
    }
    else
    {
        return "Creating Social Icon settings fields already present - ok ? true". "<br>";
    }
}

function upgrade_32()
{
    // Fix corrupt or wrong folderrights table;
    $frtable = table_by_key('folderrights');
    if (_db_field_exists('folderrights', 'user_id')) {
        // change this to login_id
        $ok = db_query("alter table `$frtable` change user_id login_id int");
    }
    if (!_db_field_exists('folderrights', 'folder_parent')) {
        $error = _db_add_field('folderrights', 'folder_parent', 'int', '-1', 'login_id');

        if ($error !== false) {
            // Fill folderrights table based on folderdetails
            $fdtable = table_by_key('folderdetails');
            $folders = db_query("select * from `$fdtable`;");
            if ($folders !== false) {
                foreach ($folders as $folder) {
                    $ok = db_query("insert into `$frtable` set login_id=?, folder_id=?, folder_parent=?, role='creator'",
                        array($folder['login_id'], $folder['folder_id'], $folder['folder_parent']));
                    if ($ok === false) {
                        return "Something went wrong with migrating folderrights table!";
                    }
                }
            }
        }
        return "Creating folder_parent field in folderrights - ok ? " . ($error  ? 'true' : 'false'). "<br>";
    }
    else
    {
        return "Creating folder_parent field in folderrights already present - ok ? true". "<br>";
    }


}

function upgrade_33()
{
    global $xerte_toolkits_site;
    $table = table_by_key('templatedetails');
    if (!_db_field_exists('templatedetails', 'tsugi_manage_key_id')) {
        $error = _db_add_field('templatedetails', 'tsugi_manage_key_id', 'int', '-1', 'tsugi_usetsugikey');
        $mesg = "Creating tsugi_manage_key_id field in templatedetails - ok ? " . ($error ? 'true' : 'false'). "<br>";
        if ($error && file_exists($xerte_toolkits_site->tsugi_dir) ) {
            require_once($xerte_toolkits_site->tsugi_dir . "config.php");
            $PDOX = \Tsugi\Core\LTIX::getConnection();            // migrate key id from tsugi tables to template_id
            $p = $CFG->dbprefix;
            $templates = db_query("select * from $table;");
            foreach($templates as $template)
            {
                if ($template['tsugi_published'] === "1" && $template['tsugi_usetsugikey'] !== "1")
                {
                    // Try to get key_id from tsugi tables using old method and place it into templatedetails;
                    $rows = $PDOX->allRowsDie("SELECT k.key_id FROM {$p}lti_key k, {$p}lti_context c, {$p}lti_link l WHERE c.key_id = k.key_id and l.context_id=c.context_id and l.path = :URL",
                        array(':URL' => $xerte_toolkits_site->site_url . "lti_launch.php?template_id=" . $template['template_id']));
                    if (count($rows)>0)
                    {
                        // get the first key
                        $res = db_query("update $table set tsugi_manage_key_id=? where template_id=?",
                            array($rows[0]['key_id'], $template['template_id']));
                        if ($res === false)
                        {
                            $mesg .= "    Could not set key_id for template with id " . $template['template_id'] . "<br>";
                        }
                        else
                        {
                            $mesg .= "    Set key_id for template with id " . $template['template_id'] . " successfuly.<br>";
                        }
                    }
                }
            }
        }

        return $mesg;
    }
    else
    {
        return "Creating tsugi_manage_key_id field in templatedetails already present - ok ? true". "<br>";
    }
}

function upgrade_34(){
    global $xerte_toolkits_site;
    $table = table_by_key('sitedetails');
    $res = db_query_one("SELECT admin_password FROM $table");
    if (strlen($res['admin_password']) != 64) {
        db_query("UPDATE $table SET admin_password = ?", array(hash('sha256', $res['admin_password'])));
    }
    return "hashed password if needed";
}

function upgrade_35(){
    $table = 'oai_publish';
    $ok = _upgrade_db_query("CREATE TABLE IF NOT EXISTS `$table` (
      `audith_id` int(11) NOT NULL AUTO_INCREMENT,
      `template_id` BIGINT(20) NOT NULL,
      `login_id` BIGINT(20) NOT NULL,
      `user_type` VARCHAR(10),
      `status` VARCHAR(10),
      `timestamp` TIMESTAMP,
      PRIMARY KEY (`audith_id`)
    )
    ");

    $message = "Creating oai_publish - ok ? " . ($ok ? 'true' : 'false') . "<br>";

    return $message;
}

function upgrade_36(){
    $table = table_by_key('oai_education');
    $exists = _table_exists($table);
    if ($exists) {
        $ok = _upgrade_db_query("alter table $table add column parent_id int(11)");
        $message = "Adding parent_id column to oai_education - ok ? " . ($ok ? 'true' : 'false') . "<br>";
    }
    $exists = _table_exists($table);
    if ($exists) {
        $table = table_by_key('oai_categories');
        $ok = _upgrade_db_query("alter table $table add column parent_id int(11)");
        $message .= "Adding parent_id column to oai_categories - ok ? " . ($ok ? 'true' : 'false') . "<br>";
    }
    $table = table_by_key('educationlevel');
    $ok = _upgrade_db_query("alter table $table add column parent_id int(11)");
    $message .= "Adding parent_id column to educationlevel - ok ? " . ($ok ? 'true' : 'false') . "<br>";
    $table = table_by_key('syndicationcategories');
    $ok = _upgrade_db_query("alter table $table add column parent_id int(11)");
    $message .= "Adding parent_id column to syndicationcategories - ok ? " . ($ok ? 'true' : 'false') . "<br>";
    return $message;
}

function upgrade_37(){
    $table = table_by_key('templatedetails');
    $ok = _upgrade_db_query("ALTER TABLE $table CHANGE COLUMN `date_created` `date_created` DATETIME NULL DEFAULT NULL,CHANGE COLUMN `date_modified` `date_modified` DATETIME NULL DEFAULT NULL,CHANGE COLUMN `date_accessed` `date_accessed` DATETIME NULL DEFAULT NULL;");
    $message = "Changing date columns of templatedetails to datetime - ok ? " . ($ok ? 'true' : 'false') . "<br>";
    return $message;
}

function upgrade_38()
{
    global $xerte_toolkits_site;

    // Create an index for folderrights
    $table = table_by_key('folderrights');

    // First check if index already exists
    $sql = "SELECT COUNT(1) as count FROM INFORMATION_SCHEMA.STATISTICS WHERE TABLE_SCHEMA = '$xerte_toolkits_site->database_name' AND TABLE_NAME='$table' AND INDEX_NAME='index1'";
    $result = db_query_one($sql);
    if ($result !== false && $result['count'] == '0') {
        $ok = _upgrade_db_query("ALTER TABLE `$table` ADD INDEX `index1` (`folder_id` ASC, `login_id` ASC, `role`(10) ASC);");
        $message = "Creating index on table folderrights - ok ? " . ($ok ? 'true' : 'false') . "<br>";

        return $message;
    }
    $message = 'Index on folderrights table is already present';
    return $message;
}

function upgrade_39(){
    $table = table_by_key('logindetails');
    $ok = _upgrade_db_query("ALTER TABLE $table CHANGE COLUMN `lastlogin` `lastlogin` DATETIME NULL DEFAULT NULL;");
    $message = "Changing lastlogin column of logindetails to datetime - ok ? " . ($ok ? 'true' : 'false') . "<br>";

    $table = table_by_key('folderdetails');
    $ok = _upgrade_db_query("ALTER TABLE $table CHANGE COLUMN `date_created` `date_created` DATETIME NULL DEFAULT NULL;");
    $message .= "Changing date_created column of folderdetails to datetime - ok ? " . ($ok ? 'true' : 'false') . "<br>";

    $table = table_by_key('originaltemplatesdetails');
    $ok = _upgrade_db_query("ALTER TABLE $table CHANGE COLUMN `date_uploaded` `date_uploaded` DATETIME NULL DEFAULT NULL;");
    $message .= "Changing date_uploaded column of originaltemplatesdetails to datetime - ok ? " . ($ok ? 'true' : 'false') . "<br>";


    return $message;
}

function upgrade_40(){
    //Guarantee that the collation of logindetails.username and folderdetails.folder_name is the same utf8_unicode_ci
    $table = table_by_key('logindetails');
    $ok = _upgrade_db_query("ALTER TABLE `$table` MODIFY username CHAR(255) CHARACTER SET utf8 COLLATE utf8_unicode_ci;");
    $message = "Changing collation of username column of logindetails to utf_unicode_ci - ok ? " . ($ok ? 'true' : 'false') . "<br>";

    $table = table_by_key('folderdetails');
    $ok = _upgrade_db_query("ALTER TABLE `$table` MODIFY folder_name CHAR(255) CHARACTER SET utf8 COLLATE utf8_unicode_ci;");
    $message .= "Changing collation of folder_name column of folderdetails to utf_unicode_ci - ok ? " . ($ok ? 'true' : 'false') . "<br>";

    return $message;

}

function upgrade_41()
{
    // Add xapi_force_anonymous_lrs columns to sitedetails
    $error = _db_add_field('sitedetails', 'xapi_force_anonymous_lrs', 'char(255)', 'false', 'dashboard_nonanonymous');
    $message = "Adding xapi_force_anonymous_lrs column to sitedetails - ok ? " . ($error ? 'true' : 'false') . "<br>";

    return $message;
}

function upgrade_42()
{
    global $xerte_toolkits_site;

    // Create an index for templaterights
    $table = table_by_key('templaterights');

    // First check if index already exists
    $sql = "SELECT COUNT(1) as count FROM INFORMATION_SCHEMA.STATISTICS WHERE TABLE_SCHEMA = '$xerte_toolkits_site->database_name' AND TABLE_NAME='$table' AND INDEX_NAME='index2'";
    $result = db_query_one($sql);
    if ($result !== false && $result['count'] == '0') {
        $ok = _upgrade_db_query("ALTER TABLE `$table` ADD INDEX `index2` (`folder` ASC);");
        $message = "Creating index2 on table templaterights - ok ? " . ($ok ? 'true' : 'false') . "<br>";

        return $message;
    }
    $message = 'Index on templaterights table is already present';
    return $message;
}

function upgrade_43()
{
    global $xerte_toolkits_site;

    // Create an index for folderrights.folder_parent
    $table = table_by_key('folderrights');

    // First check if index already exists
    $sql = "SELECT COUNT(1) as count FROM INFORMATION_SCHEMA.STATISTICS WHERE TABLE_SCHEMA = '$xerte_toolkits_site->database_name' AND TABLE_NAME='$table' AND INDEX_NAME='index2'";
    $result = db_query_one($sql);
    if ($result !== false && $result['count'] == '0') {
        $ok = _upgrade_db_query("ALTER TABLE `$table` ADD INDEX `index2` (`folder_parent` ASC);");
        $message = "Creating index2 on table folderrights - ok ? " . ($ok ? 'true' : 'false') . "<br>";

        return $message;
    }
    $message = 'Index on folderrights table is already present';
    return $message;
}

function upgrade_44()
{
	if (! _db_field_exists('sitedetails', 'default_theme_xerte')) {
        $error1 = _db_add_field('sitedetails', 'default_theme_xerte', 'char(255)', 'default', null);

        if ($error1) {
            $table = table_by_key('sitedetails');
            $sql = "UPDATE $table SET default_theme_xerte = ?";
            $error2 = db_query($sql, array('default'));
        }
        else {
            $error2 = false;
        }
        $error3 = _db_add_field('sitedetails', 'default_theme_site', 'char(255)', 'default', null);

        if ($error3) {
            $table = table_by_key('sitedetails');
            $sql = "UPDATE $table SET default_theme_site = ?";
            $error4 = db_query($sql, array('default'));
        }
        else {
            $error4 = false;
        }

        return "Creating default theme xerte and site fields - ok ? " . ($error1 && $error2 && $error3 && $error4 ? 'true' : 'false');
    }
    else
    {
        return "Default theme xerte and site fields already present - ok ? true";
    }
}

function upgrade_45()
{
    $roleTable = table_by_key("role");
    $loginDetailsRoleTable = table_by_key("logindetailsrole");

    $message = '';
    if (!_table_exists($roleTable))
    {
        $ok = _upgrade_db_query("CREATE TABLE IF NOT EXISTS `$roleTable` (
        `roleid` int NOT NULL AUTO_INCREMENT,
        `name` varchar(45) NOT NULL UNIQUE,
        PRIMARY KEY (`roleid`)
      )"
        );

        $message .= "Creating role table - ok ? " . ($ok ? 'true' : 'false') . "<br>";

        $ok = db_query("insert into $roleTable(`roleid`, `name`) values
          (1, 'super'),
          (2, 'system'),
          (3, 'templateadmin'),
          (4, 'metaadmin'),
          (5, 'useradmin'),
          (6, 'projectadmin'),
          (7, 'harvestadmin');"
        );
        $message .= "Creating default roles - ok ? " . ($ok ? 'true' : 'false') . "<br>";
    }
    else{
        $message .= "Table roles already exists - ok ? true". "<br>";
    }

    if (!_table_exists($loginDetailsRoleTable)) {
        $ok = _upgrade_db_query("CREATE TABLE IF NOT EXISTS `$loginDetailsRoleTable` (
        `roleid` int NOT NULL,
        `userid` bigint(20) NOT NULL,
        PRIMARY KEY (`roleid`, `userid`)
      )"
        );

        $message .= "Creating logindetailsrole table - ok ? " . ($ok ? 'true' : 'false') . "<br>";
    }
    else{
        $message .= "Table logindetailsrole already exists - ok ? true". "<br>";
    }

	return $message;
}

function upgrade_46()
{
    // Add users_file_area_path to sitedetails
    if (! _db_field_exists('sitedetails', 'users_file_area_path')) {
        $error1 = _db_add_field('sitedetails', 'users_file_area_path', 'text', null, 'users_file_area_short');

        return "Creating users_file_area_path field - ok ? " . ($error1 ? 'true' : 'false');
    }
    else
    {
        return "Users file area path field already present - ok ? true";
    }
}

function upgrade_47()
{
    // Add fields to determin whther to publish projects in TSUGI's store
    if (! _db_field_exists('templatedetails', 'tsugi_publish_in_store')) {
        $error1 = _db_add_field('templatedetails', 'tsugi_publish_in_store', 'int', '1', 'tsugi_xapi_student_id_mode');
        $error2 = _db_add_field('templatedetails', 'tsugi_publish_dashboard_in_store', 'int', '0', 'tsugi_publish_in_store');
        return "Creating publish in store fields - ok ? " . ($error1 && $error2  ? 'true' : 'false');
    }
    else
    {
        return "Publish in store fields already present - ok ? true";
    }
}

function upgrade_48()
{
    // Correct the length of the user table password field
    $table = table_by_key('user');
    $ok = _upgrade_db_query("ALTER TABLE $table CHANGE COLUMN `password` `password` varchar(100);");
    return "Changing password column of user to varchar(100) - ok ? " . ($ok !== false ? 'true' : 'false') . "<br>";
}

function upgrade_49()
{
    if (! _db_field_exists('sitedetails', 'default_theme_decision')) {
        $error1 = _db_add_field('sitedetails', 'default_theme_decision', 'char(255)', 'default', null);

        if ($error1) {
            $table = table_by_key('sitedetails');
            $sql = "UPDATE $table SET default_theme_decision = ?";
            $error2 = db_query($sql, array('default'));
        }
        else {
            $error2 = false;
        }

        return "Creating default theme decision field - ok ? " . ($error1 && $error2 ? 'true' : 'false');
    }
    else
    {
        return "Default theme decision field already present - ok ? true";
    }
}

function upgrade_50()
{
    //Extend notes fields in database (make it text fields)
    $table = table_by_key('templaterights');
    $ok = _upgrade_db_query("ALTER TABLE $table CHANGE COLUMN `notes` `notes` TEXT;");
    $message = "Changing notes column of templaterights to text - ok ? " . ($ok ? 'true' : 'false') . "<br>";

    // Extend description and keywords field in database (make it text fields)
    $table = table_by_key('templatesyndication');
    $ok = _upgrade_db_query("ALTER TABLE $table CHANGE COLUMN `description` `description` TEXT;");
    $message .= "Changing description column of templatesyndication to text - ok ? " . ($ok ? 'true' : 'false') . "<br>";
    $ok = _upgrade_db_query("ALTER TABLE $table CHANGE COLUMN `keywords` `keywords` TEXT;");
    $message .= "Changing keywords column of templatesyndication to text - ok ? " . ($ok ? 'true' : 'false') . "<br>";

    return $message;
}