--- /dev/null
+<?php
+
+namespace Drush\Commands\core;
+
+use Drupal\Component\Utility\Random;
+use Drupal\Core\Database\Database;
+use Drush\Commands\DrushCommands;
+
+/**
+ * Class SanitizeCommands
+ * @package Drush\Commands\core
+ */
+class SanitizeCommands {
+
+ /**
+ * @var bool
+ * Whether database table names should be wrapped in brackets for prefixing.
+ */
+ protected $wrap;
+
+ /**
+ * Sets $this->wrap to TRUE if a db-prefix is set with drush.
+ */
+ protected function setWrap() {
+ $this->wrap = $wrap_table_name = (bool) drush_get_option('db-prefix');
+ }
+
+
+ /**
+ * Sanitize the database by removed and obfuscating user data.
+ *
+ * @command sql-sanitize
+ *
+ * @todo "drush dependencies" array('sqlsync')
+ *
+ * @bootstrap DRUSH_BOOTSTRAP_NONE
+ * @description Run sanitization operations on the current database.
+ * @option db-prefix Enable replacement of braces in sanitize queries.
+ * @option db-url A Drupal 6 style database URL. E.g.,
+ * mysql://root:pass@127.0.0.1/db
+ * @option sanitize-email The pattern for test email addresses in the
+ * sanitization operation, or "no" to keep email addresses unchanged. May
+ * contain replacement patterns %uid, %mail or %name. Example value:
+ * user+%uid@localhost
+ * @option sanitize-password The password to assign to all accounts in the
+ * sanitization operation, or "no" to keep passwords unchanged. Example
+ * value: password
+ * @option whitelist-fields A comma delimited list of fields exempt from sanitization.
+ * @aliases sqlsan
+ * @usage drush sql-sanitize --sanitize-password=no
+ * Sanitize database without modifying any passwords.
+ * @usage drush sql-sanitize --whitelist-fields=field_biography,field_phone_number
+ * Sanitizes database but exempts two user fields from modification.
+ * @see hook_drush_sql_sync_sanitize() for adding custom sanitize routines.
+ */
+ public function sqlSanitize($options = [
+ 'db-prefix' => FALSE,
+ 'db-url' => '',
+ 'sanitize-email' => '',
+ 'sanitize-password' => '',
+ 'whitelist-fields' => '',
+ ]) {
+ drush_sql_bootstrap_further();
+ if ($options['db-prefix']) {
+ drush_bootstrap_max(DRUSH_BOOTSTRAP_DRUPAL_DATABASE);
+ }
+
+ // Drush itself implements this via sql_drush_sql_sync_sanitize().
+ drush_command_invoke_all('drush_sql_sync_sanitize', 'default');
+ $operations = drush_get_context('post-sync-ops');
+ if (!empty($operations)) {
+ if (!drush_get_context('DRUSH_SIMULATE')) {
+ $messages = _drush_sql_get_post_sync_messages();
+ if ($messages) {
+ drush_print();
+ drush_print($messages);
+ }
+ }
+ $queries = array_column($operations, 'query');
+ $sanitize_query = implode(" ", $queries);
+ }
+ if (!drush_confirm(dt('Do you really want to sanitize the current database?'))) {
+ return drush_user_abort();
+ }
+
+ if ($sanitize_query) {
+ $sql = drush_sql_get_class();
+ $sanitize_query = $sql->query_prefix($sanitize_query);
+ $result = $sql->query($sanitize_query);
+ if (!$result) {
+ throw new \Exception(dt('Sanitize query failed.'));
+ }
+ }
+ }
+
+ /**
+ * Performs database sanitization.
+ *
+ * @param int $major_version
+ * E.g., 6, 7, or 8.
+ */
+ public function doSanitize($major_version) {
+ $this->setWrap();
+ $this->sanitizeSessions();
+
+ if ($major_version == 8) {
+ $this->sanitizeComments();
+ $this->sanitizeUserFields();
+ }
+ }
+
+ /**
+ * Sanitize string fields associated with the user.
+ *
+ * We've got to do a good bit of SQL-foo here because Drupal services are
+ * not yet available.
+ */
+ public function sanitizeUserFields() {
+ /** @var SqlBase $sql_class */
+ $sql_class = drush_sql_get_class();
+ $tables = $sql_class->listTables();
+ $whitelist_fields = (array) explode(',', drush_get_option('whitelist-fields'));
+
+ foreach ($tables as $table) {
+ if (strpos($table, 'user__field_') === 0) {
+ $field_name = substr($table, 6, strlen($table));
+ if (in_array($field_name, $whitelist_fields)) {
+ continue;
+ }
+
+ $output = $this->query("SELECT data FROM config WHERE name = 'field.field.user.user.$field_name';");
+ $field_config = unserialize($output[0]);
+ $field_type = $field_config['field_type'];
+ $randomizer = new Random();
+
+ switch ($field_type) {
+
+ case 'email':
+ $this->sanitizeTableColumn($table, $field_name . '_value', $randomizer->name(10) . '@example.com');
+ break;
+
+ case 'string':
+ $this->sanitizeTableColumn($table, $field_name . '_value', $randomizer->name(255));
+ break;
+
+ case 'string_long':
+ $this->sanitizeTableColumn($table, $field_name . '_value', $randomizer->sentences(1));
+ break;
+
+ case 'telephone':
+ $this->sanitizeTableColumn($table, $field_name . '_value', '15555555555');
+ break;
+
+ case 'text':
+ $this->sanitizeTableColumn($table, $field_name . '_value', $randomizer->paragraphs(2));
+ break;
+
+ case 'text_long':
+ $this->sanitizeTableColumn($table, $field_name . '_value', $randomizer->paragraphs(10));
+ break;
+
+ case 'text_with_summary':
+ $this->sanitizeTableColumn($table, $field_name . '_value', $randomizer->paragraphs(2));
+ $this->sanitizeTableColumn($table, $field_name . '_summary', $randomizer->name(255));
+ break;
+ }
+ }
+ }
+ }
+
+ /**
+ * Replaces all values in given table column with the specified value.
+ *
+ * @param string $table
+ * The database table name.
+ * @param string $column
+ * The database column to be updated.
+ * @param $value
+ * The new value.
+ */
+ public function sanitizeTableColumn($table, $column, $value) {
+ $table_name_wrapped = $this->wrapTableName($table);
+ $sql = "UPDATE $table_name_wrapped SET $column='$value';";
+ drush_sql_register_post_sync_op($table.$column, dt("Replaces all values in $table table with the same random long string."), $sql);
+ }
+
+ /**
+ * Truncates the session table.
+ */
+ public function sanitizeSessions() {
+ // Seems quite portable (SQLite?) - http://en.wikipedia.org/wiki/Truncate_(SQL)
+ $table_name = $this->wrapTableName('sessions');
+ $sql_sessions = "TRUNCATE TABLE $table_name;";
+ drush_sql_register_post_sync_op('sessions', dt('Truncate Drupal\'s sessions table'), $sql_sessions);
+ }
+
+ /**
+ * Sanitizes comments_field_data table.
+ */
+ public function sanitizeComments() {
+
+ $comments_enabled = $this->query("SHOW TABLES LIKE 'comment_field_data';");
+ if (!$comments_enabled) {
+ return;
+ }
+
+ $comments_table = $this->wrapTableName('comment_field_data');
+ $sql_comments = "UPDATE $comments_table SET name='Anonymous', mail='', homepage='http://example.com' WHERE uid = 0;";
+ drush_sql_register_post_sync_op('anon_comments', dt('Remove names and email addresses from anonymous user comments.'), $sql_comments);
+
+ $sql_comments = "UPDATE $comments_table SET name=CONCAT('User', `uid`), mail=CONCAT('user+', `uid`, '@example.com'), homepage='http://example.com' WHERE uid <> 0;";
+ drush_sql_register_post_sync_op('auth_comments', dt('Replace names and email addresses from authenticated user comments.'), $sql_comments);
+ }
+
+ /**
+ * Wraps a table name in brackets if a database prefix is being used.
+ *
+ * @param string $table_name
+ * The name of the database table.
+ *
+ * @return string
+ * The (possibly wrapped) table name.
+ */
+ public function wrapTableName($table_name) {
+ if ($this->wrap) {
+ $processed = '{' . $table_name . '}';
+ }
+ else {
+ $processed = $table_name;
+ }
+
+ return $processed;
+ }
+
+ /**
+ * Executes a sql command using drush sqlq and returns the output.
+ *
+ * @param string $query
+ * The SQL query to execute. Must end in a semicolon!
+ *
+ * @return string
+ * The output of the query.
+ */
+ protected function query($query) {
+ $current = drush_get_context('DRUSH_SIMULATE');
+ drush_set_context('DRUSH_SIMULATE', FALSE);
+ $sql = drush_sql_get_class();
+ $success = $sql->query($query);
+ $output = drush_shell_exec_output();
+ drush_set_context('DRUSH_SIMULATE', $current);
+
+ return $output;
+ }
+
+}
+