From e8101d5fbeaf8f4f3dd41d62837dcc9113f2b987 Mon Sep 17 00:00:00 2001
From: Regis Houssin <regis@dolibarr.fr>
Date: Sat, 27 Jun 2009 07:43:15 +0000
Subject: [PATCH] Experimental: add function to encrypt sensitive data in
 database

---
 htdocs/admin/const.php | 26 +++++++++++---------------
 1 file changed, 11 insertions(+), 15 deletions(-)

diff --git a/htdocs/admin/const.php b/htdocs/admin/const.php
index 83f9bf5e16b..820738630f6 100644
--- a/htdocs/admin/const.php
+++ b/htdocs/admin/const.php
@@ -105,21 +105,17 @@ print '</form>';
 
 
 # Affiche lignes des constantes
-if ($all==1)
-{
-	$sql = "SELECT rowid, name, value, note, entity ";
-	$sql.= "FROM llx_const ";
-	$sql.= "WHERE entity IN (0,".$conf->entity.") ";
-	$sql.= "ORDER BY name ASC";
-}
-else
-{
-	$sql = "SELECT rowid, name, value, note, entity ";
-	$sql.= "FROM llx_const ";
-	$sql.= "WHERE visible = 1 ";
-	$sql.= "AND entity IN (0,".$conf->entity.") ";
-	$sql.= "ORDER BY name ASC";
-}
+$sql = "SELECT";
+$sql.= " rowid";
+$sql.= ", ".$db->decrypt('name',$conf->db->dolibarr_main_db_encryption,$conf->db->dolibarr_main_db_cryptkey)." as name";
+$sql.= ", ".$db->decrypt('value',$conf->db->dolibarr_main_db_encryption,$conf->db->dolibarr_main_db_cryptkey)." as value";
+$sql.= ", note";
+$sql.= ", entity";
+$sql.= " FROM ".MAIN_DB_PREFIX."const";
+$sql.= " WHERE entity IN (0,".$conf->entity.")";
+if (!isset($all)) $sql.= " AND visible = 1";
+$sql.= " ORDER BY name ASC";
+
 dol_syslog("Const::listConstant sql=".$sql);
 $result = $db->query($sql);
 if ($result)