PDO::ERRMODE_EXCEPTION, PDO::ATTR_DEFAULT_FETCH_MODE => PDO::FETCH_ASSOC ]); $this->pdo = $pdo; $this->dbConnected = true; $this->dbError = ''; $this->dbConfig = ['host'=>$host,'user'=>$user,'password'=>$pass,'name'=>$db,'port'=>$port]; return ['success' => true, 'pdo' => $pdo]; } catch (PDOException $e) { $this->pdo = null; $this->dbConnected = false; $this->dbError = $e->getMessage(); return ['success' => false, 'message' => $e->getMessage()]; } } public function connectDB($host = null, $user = null, $pass = null, $db = null, $port = 3306) { $host = $host ?? ($this->dbConfig['host'] ?? 'localhost'); $user = $user ?? ($this->dbConfig['user'] ?? ''); $pass = $pass ?? ($this->dbConfig['password'] ?? ''); $db = $db ?? ($this->dbConfig['name'] ?? ''); $port = $port ?? ($this->dbConfig['port'] ?? 3306); return $this->connectDynamicDB($host, $db, $user, $pass, $port); } public function getPDO() { return $this->pdo; } public function isDbConnected() { return $this->dbConnected; } public function getDbError() { return $this->dbError; } // Files explorer public function scanFiles($dir = null, $level = 0, $maxDepth = 8, $includeHidden = false, $excludeDirs = []) { if ($dir === null) $dir = MG_BASE_DIR; $files = []; if ($level > $maxDepth) return $files; $dir = rtrim($dir, '/'); $real = realpath($dir); if ($real === false) return $files; $baseReal = realpath(MG_BASE_DIR); if ($baseReal === false) return $files; if (strpos($real, $baseReal) !== 0) return $files; if (!is_dir($real) || !is_readable($real)) return $files; $items = @scandir($real); if (!$items) return $files; $defaultExcludes = ['vendor', '.git', 'node_modules', 'backups', 'tmp', 'log', 'logs', 'mg_backups', 'mg_logs']; $excludeDirs = array_merge($defaultExcludes, $excludeDirs); foreach ($items as $item) { if ($item === '.' || $item === '..') continue; if (!$includeHidden && substr($item, 0, 1) === '.') continue; if (in_array($item, $excludeDirs)) continue; $fullPath = $real . '/' . $item; $relativePath = ltrim(str_replace($baseReal, '', $fullPath), '/'); if (is_dir($fullPath)) { $files[] = [ 'type' => 'folder', 'name' => $item, 'path' => $relativePath, 'children' => $this->scanFiles($fullPath, $level + 1, $maxDepth, $includeHidden, $excludeDirs) ]; } else { $ext = pathinfo($item, PATHINFO_EXTENSION); $files[] = [ 'type' => 'file','name' => $item,'path' => $relativePath, 'ext' => $ext,'size' => @filesize($fullPath),'modified' => @filemtime($fullPath), 'writable' => is_writable($fullPath) ]; } } return $files; } public function readFile($filepath) { $fullPath = realpath(MG_BASE_DIR . '/' . ltrim((string)$filepath, '/')); $baseReal = realpath(MG_BASE_DIR); if ($fullPath === false || $baseReal === false || strpos($fullPath, $baseReal) !== 0) { return ['success'=>false,'message'=>'Ruta no permitida']; } if (!file_exists($fullPath) || !is_file($fullPath)) { return ['success'=>false,'message'=>'Archivo no encontrado','filepath'=>$filepath]; } $content = @file_get_contents($fullPath); if ($content === false) return ['success'=>false,'message'=>'No se pudo leer el archivo']; return ['success'=>true,'content'=>$content,'filepath'=>ltrim(str_replace($baseReal, '', $fullPath), '/'), 'filename'=>basename($fullPath),'size'=>filesize($fullPath),'modified'=>date('Y-m-d H:i:s', filemtime($fullPath)), 'writable'=>is_writable($fullPath)]; } public function saveFile($filepath, $content) { $fullPath = realpath(MG_BASE_DIR . '/' . ltrim((string)$filepath, '/')); $baseReal = realpath(MG_BASE_DIR); if ($fullPath === false || $baseReal === false || strpos($fullPath, $baseReal) !== 0) { return ['success'=>false,'message'=>'Ruta no permitida']; } if (!file_exists($fullPath)) return ['success'=>false,'message'=>'El archivo no existe']; if (!is_writable($fullPath)) return ['success'=>false,'message'=>'Sin permisos de escritura']; $backupDir = MG_BASE_DIR . '/backups'; if (!is_dir($backupDir)) @mkdir($backupDir, 0755, true); $backupFile = $backupDir . '/' . str_replace(['/', '\\'], '_', $filepath) . '.' . time() . '.backup'; @copy($fullPath, $backupFile); if (file_put_contents($fullPath, $content) !== false) { return ['success'=>true,'message'=>'Guardado correctamente','size'=>filesize($fullPath)]; } return ['success'=>false,'message'=>'Error al guardar']; } public function getProjectStats($dir = null) { $files = $this->scanFiles($dir); $stats = ['total_files'=>0,'total_folders'=>0,'total_size'=>0,'php'=>0,'css'=>0,'js'=>0,'other'=>0]; $this->countItems($files, $stats); return $stats; } private function countItems($items, &$stats) { foreach ($items as $item) { if ($item['type'] === 'folder') { $stats['total_folders']++; if (!empty($item['children'])) $this->countItems($item['children'], $stats); } else { $stats['total_files']++; $stats['total_size'] += $item['size'] ?? 0; switch (strtolower($item['ext'])) { case 'php': $stats['php']++; break; case 'css': $stats['css']++; break; case 'js': $stats['js']++; break; default: $stats['other']++; } } } } public function log($action, $details = '') { $logDir = MG_BASE_DIR . '/logs'; if (!is_dir($logDir)) @mkdir($logDir, 0755, true); $logFile = $logDir . '/massolaguard.log'; $entry = sprintf("[%s] [%s] %s%s\n", date('Y-m-d H:i:s'), $_SESSION['mg_user'] ?? 'system', $action, $details ? " - $details" : ''); @file_put_contents($logFile, $entry, FILE_APPEND); } } // ---------------- INSTANTIATE ---------------- $mg = new MassolGuard(); // auto connect principal if set if (defined('MG_DB_AUTO_CONNECT') && MG_DB_AUTO_CONNECT) { $dbRes = $mg->connectDynamicDB(MG_DB_HOST, MG_DB_NAME, MG_DB_USER, MG_DB_PASS, MG_DB_PORT); if (empty($dbRes['success'])) $mg->log('DB_CONNECT_FAIL', $dbRes['message'] ?? 'Unknown'); } // ---------------- HELPERS for handlers ---------------- $getPdoWithFallback = function() use ($mg) { $pdo = $mg->getPDO(); if ($pdo) return $pdo; $host = $_POST['host'] ?? null; $user = $_POST['user'] ?? null; $pass = $_POST['pass'] ?? null; $port = intval($_POST['port'] ?? MG_DB_PORT); $dbtmp = $_POST['database'] ?? 'information_schema'; if ($host && $user) { $tmp = $mg->connectDynamicDB($host, $dbtmp, $user, $pass, $port); if (!empty($tmp['success'])) return $tmp['pdo']; } return null; }; $useDatabaseIfProvided = function($pdo) { $db = $_POST['database'] ?? null; if (!$db) return true; if (!preg_match('/^[a-zA-Z0-9_\-]+$/', $db)) return false; try { $pdo->exec("USE `{$db}`"); return true; } catch (Exception $e) { return false; } }; function appendSqlHistoryLine($line) { @file_put_contents(SQL_HISTORY_FILE, $line . PHP_EOL, FILE_APPEND | LOCK_EX); } function appendSqlErrorLine($line) { @file_put_contents(SQL_ERROR_FILE, $line . PHP_EOL, FILE_APPEND | LOCK_EX); } // ---------------- POST HANDLERS (API) ---------------- if ($_SERVER['REQUEST_METHOD'] === 'POST' && isset($_POST['action'])) { header('Content-Type: application/json; charset=utf-8'); $action = $_POST['action']; // sanitize path $sanitizePath = function($path) { $p = trim((string)$path); $p = ltrim($p, "/\\"); if ($p === '') return ''; $real = realpath(MG_BASE_DIR . '/' . $p); if ($real === false) return false; $baseReal = realpath(MG_BASE_DIR); if ($baseReal === false) return false; if (strpos($real, $baseReal) !== 0) return false; return ltrim(str_replace($baseReal, '', $real), '/'); }; // ---- Files: scan/read/save ---- if ($action === 'files_scan') { $path = $_POST['path'] ?? ''; $rel = $path ? $sanitizePath($path) : ''; if ($path && $rel === false) { echo json_encode(['success'=>false,'message'=>'Ruta no permitida']); exit; } $start = $rel !== '' ? MG_BASE_DIR . '/' . $rel : MG_BASE_DIR; $maxDepth = intval($_POST['maxDepth'] ?? MG_SCAN_MAX_DEPTH); $result = $mg->scanFiles($start, 0, $maxDepth); echo json_encode(['success'=>true,'files'=>$result]); exit; } if ($action === 'files_read') { $filepath = $_POST['filepath'] ?? ''; $rel = $sanitizePath($filepath); if ($rel === false) { echo json_encode(['success'=>false,'message'=>'Ruta no permitida']); exit; } $res = $mg->readFile($rel); echo json_encode($res); exit; } if ($action === 'files_save') { $filepath = $_POST['filepath'] ?? ''; $content = $_POST['content'] ?? ''; $rel = $sanitizePath($filepath); if ($rel === false) { echo json_encode(['success'=>false,'message'=>'Ruta no permitida']); exit; } $res = $mg->saveFile($rel, $content); echo json_encode($res); exit; } if ($action === 'project_stats') { $stats = $mg->getProjectStats(); echo json_encode(['success'=>true,'stats'=>$stats]); exit; } // ---- DB handlers: list/tables/describe/select/insert/update/delete/execute ---- if ($action === 'db_list') { $pdo = $getPdoWithFallback(); if (!$pdo) { echo json_encode(['success'=>false,'message'=>'Sin conexión a BD']); exit; } try { $stmt = $pdo->query("SHOW DATABASES"); $dbs = $stmt->fetchAll(PDO::FETCH_COLUMN); echo json_encode(['success'=>true,'databases'=>$dbs]); exit; } catch (Exception $e) { echo json_encode(['success'=>false,'message'=>$e->getMessage()]); exit; } } if ($action === 'db_tables') { $db = $_POST['database'] ?? ''; if (!preg_match('/^[a-zA-Z0-9_\-]+$/', $db)) { echo json_encode(['success'=>false,'message'=>'Nombre BD inválido']); exit; } $pdo = $getPdoWithFallback(); if (!$pdo) { echo json_encode(['success'=>false,'message'=>'Sin conexión a BD']); exit; } try { $pdo->exec("USE `{$db}`"); $stmt = $pdo->query("SHOW TABLES"); $tables = $stmt->fetchAll(PDO::FETCH_COLUMN); echo json_encode(['success'=>true,'tables'=>$tables]); exit; } catch (Exception $e) { echo json_encode(['success'=>false,'message'=>$e->getMessage()]); exit; } } if ($action === 'db_describe') { $table = $_POST['table'] ?? ''; if (!preg_match('/^[a-zA-Z0-9_]+$/', $table)) { echo json_encode(['success'=>false,'message'=>'Nombre de tabla inválido']); exit; } $pdo = $getPdoWithFallback(); if (!$pdo) { echo json_encode(['success'=>false,'message'=>'Sin conexión a BD']); exit; } if (!($useDatabaseIfProvided)($pdo)) { echo json_encode(['success'=>false,'message'=>'Nombre de BD inválido o no accesible']); exit; } try { $stmt = $pdo->query("DESCRIBE `{$table}`"); $desc = $stmt->fetchAll(PDO::FETCH_ASSOC); echo json_encode(['success'=>true,'describe'=>$desc]); exit; } catch (Exception $e) { echo json_encode(['success'=>false,'message'=>$e->getMessage()]); exit; } } if ($action === 'db_select') { $table = $_POST['table'] ?? ''; $limit = intval($_POST['limit'] ?? 100); $offset = intval($_POST['offset'] ?? 0); if (!preg_match('/^[a-zA-Z0-9_]+$/', $table)) { echo json_encode(['success'=>false,'message'=>'Nombre de tabla inválido']); exit; } $pdo = $getPdoWithFallback(); if (!$pdo) { echo json_encode(['success'=>false,'message'=>'Sin conexión a BD']); exit; } if (!($useDatabaseIfProvided)($pdo)) { echo json_encode(['success'=>false,'message'=>'Nombre de BD inválido o no accesible']); exit; } try { $stmt = $pdo->prepare("SELECT * FROM `{$table}` LIMIT :lim OFFSET :off"); $stmt->bindValue(':lim',$limit,PDO::PARAM_INT); $stmt->bindValue(':off',$offset,PDO::PARAM_INT); $stmt->execute(); $rows = $stmt->fetchAll(PDO::FETCH_ASSOC); echo json_encode(['success'=>true,'rows'=>$rows,'count'=>count($rows)]); exit; } catch (Exception $e) { echo json_encode(['success'=>false,'message'=>$e->getMessage()]); exit; } } if ($action === 'db_get_row') { $table = $_POST['table'] ?? ''; $pk = $_POST['pk'] ?? ''; $pk_value = $_POST['pk_value'] ?? null; if (!preg_match('/^[a-zA-Z0-9_]+$/', $table) || !preg_match('/^[a-zA-Z0-9_]+$/', $pk)) { echo json_encode(['success'=>false,'message'=>'Datos inválidos']); exit; } $pdo = $getPdoWithFallback(); if (!$pdo) { echo json_encode(['success'=>false,'message'=>'Sin conexión a BD']); exit; } if (!($useDatabaseIfProvided)($pdo)) { echo json_encode(['success'=>false,'message'=>'Nombre de BD inválido o no accesible']); exit; } try { $stmt = $pdo->prepare("SELECT * FROM `{$table}` WHERE `{$pk}` = :v LIMIT 1"); $stmt->execute([':v'=>$pk_value]); $row = $stmt->fetch(PDO::FETCH_ASSOC); if ($row === false) echo json_encode(['success'=>false,'message'=>'Fila no encontrada']); else echo json_encode(['success'=>true,'row'=>$row]); exit; } catch (Exception $e) { echo json_encode(['success'=>false,'message'=>$e->getMessage()]); exit; } } if ($action === 'db_update_row') { $table = $_POST['table'] ?? ''; $pk = $_POST['pk'] ?? ''; $pk_value = $_POST['pk_value'] ?? null; $data = $_POST['data'] ?? null; if (!preg_match('/^[a-zA-Z0-9_]+$/', $table) || !preg_match('/^[a-zA-Z0-9_]+$/', $pk)) { echo json_encode(['success'=>false,'message'=>'Datos inválidos']); exit; } $pdo = $getPdoWithFallback(); if (!$pdo) { echo json_encode(['success'=>false,'message'=>'Sin conexión a BD']); exit; } if (!($useDatabaseIfProvided)($pdo)) { echo json_encode(['success'=>false,'message'=>'Nombre de BD inválido o no accesible']); exit; } $assoc = is_string($data) ? json_decode($data, true) : $data; if (!is_array($assoc)) { echo json_encode(['success'=>false,'message'=>'Datos inválidos']); exit; } $set=[]; $params=[]; foreach($assoc as $col=>$val){ if(!preg_match('/^[a-zA-Z0-9_]+$/',$col)) continue; $ph=':col_'.$col; $set[]="`{$col}`={$ph}"; $params[$ph]=$val; } if (empty($set)) { echo json_encode(['success'=>false,'message'=>'Sin columnas para actualizar']); exit; } $params[':pk_val'] = $pk_value; $sql = "UPDATE `{$table}` SET ".implode(', ',$set)." WHERE `{$pk}` = :pk_val"; try { $stmt = $pdo->prepare($sql); $stmt->execute($params); echo json_encode(['success'=>true,'affected'=>$stmt->rowCount()]); exit; } catch (Exception $e) { echo json_encode(['success'=>false,'message'=>$e->getMessage()]); exit; } } if ($action === 'db_insert_row') { $table = $_POST['table'] ?? ''; $data = $_POST['data'] ?? null; if (!preg_match('/^[a-zA-Z0-9_]+$/', $table)) { echo json_encode(['success'=>false,'message'=>'Nombre de tabla inválido']); exit; } $pdo = $getPdoWithFallback(); if (!$pdo) { echo json_encode(['success'=>false,'message'=>'Sin conexión a BD']); exit; } if (!($useDatabaseIfProvided)($pdo)) { echo json_encode(['success'=>false,'message'=>'Nombre de BD inválido o no accesible']); exit; } $assoc = is_string($data) ? json_decode($data, true) : $data; if (!is_array($assoc)) { echo json_encode(['success'=>false,'message'=>'Datos inválidos']); exit; } $cols=[]; $place=[]; $params=[]; foreach($assoc as $col=>$val){ if(!preg_match('/^[a-zA-Z0-9_]+$/',$col)) continue; $cols[]="`{$col}`"; $ph=":col_".$col; $place[]=$ph; $params[$ph]=$val; } if(empty($cols)){ echo json_encode(['success'=>false,'message'=>'Sin columnas para insertar']); exit; } $sql = "INSERT INTO `{$table}` (".implode(',', $cols).") VALUES (".implode(',', $place).")"; try { $stmt=$pdo->prepare($sql); $stmt->execute($params); echo json_encode(['success'=>true,'insert_id'=>$pdo->lastInsertId()]); exit; } catch (Exception $e){ echo json_encode(['success'=>false,'message'=>$e->getMessage()]); exit; } } if ($action === 'db_delete_row') { $table = $_POST['table'] ?? ''; $pk = $_POST['pk'] ?? ''; $pk_value = $_POST['pk_value'] ?? null; if (!preg_match('/^[a-zA-Z0-9_]+$/', $table) || !preg_match('/^[a-zA-Z0-9_]+$/', $pk)) { echo json_encode(['success'=>false,'message'=>'Datos inválidos']); exit; } $pdo = $getPdoWithFallback(); if (!$pdo) { echo json_encode(['success'=>false,'message'=>'Sin conexión a BD']); exit; } if (!($useDatabaseIfProvided)($pdo)) { echo json_encode(['success'=>false,'message'=>'Nombre de BD inválido o no accesible']); exit; } try { $stmt = $pdo->prepare("DELETE FROM `{$table}` WHERE `{$pk}` = :v"); $stmt->execute([':v'=>$pk_value]); echo json_encode(['success'=>true,'affected'=>$stmt->rowCount()]); exit; } catch (Exception $e) { echo json_encode(['success'=>false,'message'=>$e->getMessage()]); exit; } } // ---- SQL console / history ---- if ($action === 'sql_execute') { $sql = $_POST['sql'] ?? ''; if (!is_string($sql) || trim($sql) === '') { echo json_encode(['success'=>false,'message'=>'SQL vacío']); exit; } $pdo = $getPdoWithFallback(); if (!$pdo) { echo json_encode(['success'=>false,'message'=>'Sin conexión a BD']); exit; } if (!($useDatabaseIfProvided)($pdo)) { echo json_encode(['success'=>false,'message'=>'Nombre de BD inválido o no accesible']); exit; } $line = date("Y-m-d H:i:s") . " | " . trim($sql); appendSqlHistoryLine($line); try { $trim = ltrim($sql); if (preg_match('/^SELECT/i', $trim)) { $stmt=$pdo->query($sql); $rows=$stmt->fetchAll(PDO::FETCH_ASSOC); echo json_encode(['success'=>true,'type'=>'select','rows'=>$rows,'count'=>count($rows)]); exit; } else { $affected = $pdo->exec($sql); echo json_encode(['success'=>true,'type'=>'exec','affected'=>$affected]); exit; } } catch (Exception $e) { $err = date("Y-m-d H:i:s") . " | ERROR: " . $e->getMessage() . " | SQL: " . trim($sql); appendSqlErrorLine($err); echo json_encode(['success'=>false,'message'=>$e->getMessage()]); exit; } } if ($action === 'sql_history_read') { $content = is_file(SQL_HISTORY_FILE) ? file_get_contents(SQL_HISTORY_FILE) : ''; $lines = $content === '' ? [] : explode("\n", trim($content)); echo json_encode(['success'=>true,'history'=>$lines]); exit; } if ($action === 'sql_errors_read') { $content = is_file(SQL_ERROR_FILE) ? file_get_contents(SQL_ERROR_FILE) : ''; $lines = $content === '' ? [] : explode("\n", trim($content)); echo json_encode(['success'=>true,'errors'=>$lines]); exit; } // ---- Create Project (handler) ---- if ($action === 'create_project') { $proyectoRaw = $_POST['proyecto'] ?? ''; $carpetasRaw = $_POST['carpetas'] ?? ''; $archivosRaw = $_POST['archivos'] ?? ''; $proyecto = trim($proyectoRaw); $proyecto = trim($proyecto, "/\\"); if ($proyecto === '' || strpos($proyecto, '..') !== false) { echo json_encode(['success'=>false,'message'=>'Nombre de proyecto inválido']); exit; } $projectDir = rtrim(MG_BASE_DIR, '/\\') . DIRECTORY_SEPARATOR . $proyecto; $results = ['created_dirs'=>[], 'created_files'=>[], 'errors'=>[]]; if (!is_dir($projectDir)) { if (!@mkdir($projectDir, 0755, true)) { $results['errors'][]="No se pudo crear la carpeta principal: {$projectDir}"; echo json_encode(['success'=>false,'result'=>$results]); exit; } } $normalize = function($line) { $s=trim((string)$line); $s=trim($s,"/\\"); if($s===''||strpos($s,'..')!==false) return ''; return $s; }; if (trim($carpetasRaw) !== '') { $lines = preg_split('/\r\n|\r|\n/', $carpetasRaw); foreach ($lines as $line) { $seg = $normalize($line); if($seg==='') continue; $rutaRel = str_replace(['/','\\'], DIRECTORY_SEPARATOR, $seg); $ruta = $projectDir . DIRECTORY_SEPARATOR . $rutaRel; if (!is_dir($ruta)) { if (@mkdir($ruta, 0755, true)) $results['created_dirs'][] = $rutaRel; else $results['errors'][] = "Error creando carpeta: {$rutaRel}"; } else $results['created_dirs'][] = $rutaRel . ' (ya existía)'; } } if (trim($archivosRaw) !== '') { $lines = preg_split('/\r\n|\r|\n/', $archivosRaw); foreach ($lines as $line) { $seg = $normalize($line); if ($seg==='') continue; $rutaRel = str_replace(['/','\\'], DIRECTORY_SEPARATOR, $seg); $fullpath = $projectDir . DIRECTORY_SEPARATOR . $rutaRel; $dir = dirname($fullpath); if (!is_dir($dir)) @mkdir($dir, 0755, true); if (@file_put_contents($fullpath, "") !== false) { @chmod($fullpath, 0644); $results['created_files'][] = $rutaRel; } else { $results['errors'][] = "No se pudo crear archivo: {$rutaRel}"; } } } echo json_encode(['success'=>empty($results['errors']),'result'=>$results]); exit; } // ---- DB config generator + test connection + write file ---- if ($action === 'test_db_connection') { $host = $_POST['host'] ?? 'localhost'; $user = $_POST['user'] ?? ''; $pass = $_POST['pass'] ?? ''; $base = $_POST['base'] ?? ''; $port = intval($_POST['port'] ?? MG_DB_PORT); $result = ['success'=>false]; // Use mysqli for testing $mysqli = @new mysqli($host, $user, $pass, $base, $port); if ($mysqli->connect_errno) { $result['message'] = $mysqli->connect_error; echo json_encode($result); exit; } $mysqli->set_charset("utf8"); $result['success'] = true; $result['message'] = 'Conexión OK'; echo json_encode($result); $mysqli->close(); exit; } if ($action === 'generate_db_file') { $variant = $_POST['variant'] ?? 'simple'; // simple,function,class,silent $host = $_POST['host'] ?? 'localhost'; $user = $_POST['user'] ?? ''; $pass = $_POST['pass'] ?? ''; $base = $_POST['base'] ?? ''; $filename = trim($_POST['filename'] ?? 'generated/database.php'); // sanitize filename to be inside generated dir $targetBase = realpath(MG_BASE_DIR) . DIRECTORY_SEPARATOR . 'generated'; if (!is_dir($targetBase)) @mkdir($targetBase, 0755, true); $filename = str_replace(['..','\\'], '', $filename); $target = $targetBase . DIRECTORY_SEPARATOR . ltrim($filename, "/\\"); $dir = dirname($target); if (!is_dir($dir)) @mkdir($dir, 0755, true); // Build content $content = "connect_errno) { die("Error de conexión: " . \$mysqli->connect_error); } \$mysqli->set_charset("utf8"); PHP; } elseif ($variant === 'function') { $content .= <<connect_errno) { die("Error de conexión: " . \$mysqli->connect_error); } \$mysqli->set_charset("utf8"); return \$mysqli; } PHP; } elseif ($variant === 'class') { $content .= <<connect_errno) { die("Error DB: " . \$cn->connect_error); } \$cn->set_charset("utf8"); return \$cn; } } PHP; } else { // silent $content .= <<set_charset("utf8"); PHP; } // write file $written = @file_put_contents($target, $content); if ($written === false) { echo json_encode(['success'=>false,'message'=>'No se pudo escribir el archivo: '.$target]); exit; } echo json_encode(['success'=>true,'path'=>str_replace(MG_BASE_DIR.'/', '', $target)]); exit; } // ---- Manejador de consultas (simple wrapper de sql_execute) ---- // Use existing sql_execute endpoint for arbitrary query execution. // default fallback echo json_encode(['success'=>false,'message'=>'Acción no reconocida']); exit; } // ---------------- AUTH UI ---------------- if (isset($_GET['logout'])) { $mg->log('LOGOUT'); session_destroy(); header('Location: ' . $_SERVER['PHP_SELF']); exit; } if (!isset($_SESSION['mg_auth'])) { if ($_SERVER['REQUEST_METHOD'] === 'POST' && isset($_POST['mg_password'])) { if ($_POST['mg_password'] === MG_PASSWORD) { $_SESSION['mg_auth'] = true; $_SESSION['mg_login_time'] = time(); $_SESSION['mg_user'] = 'admin'; $mg->log('LOGIN','Acceso correcto'); header('Location: ' . $_SERVER['PHP_SELF']); exit; } else { $loginError = 'Contraseña incorrecta'; } } ?> Login Massolaguard - Centro
MASSOLAGUARD v — Usuario:

Formulario INSERT

Formulario UPDATE (cargar por PK)

Eliminar fila

Filas (vista rápida)

🛠 Crear estructura de proyecto

⚙️ Generador database.php

Guía y Snippets

Snippets SQL esenciales 
-- Crear DB
CREATE DATABASE nombre_basedatos;
-- Usar DB
USE nombre_basedatos;
-- Crear tabla ejemplo
CREATE TABLE usuarios (
  id INT AUTO_INCREMENT PRIMARY KEY,
  nombre VARCHAR(100),
  correo VARCHAR(150),
  fecha_registro DATETIME
);
-- Insertar
INSERT INTO usuarios (nombre, correo, fecha_registro) VALUES ('Alexis', 'alexis@mail.com', NOW());
-- Update/Delete/Drop/Alter ... (ver la guía en la UI)

Áreas y módulos (visión)

  • Inteligencia del proyecto: análisis de archivos, seguridad, rendimiento
  • Automatización: generador de proyectos, módulos y CRUD
  • Gestión de archivos: búsqueda, diff, historial
  • Base de datos avanzada: diseñador visual, ER diagram, export/import
  • Monitoreo y logs, seguridad empresarial, pruebas y más
Esta herramienta es extensible: añade módulos en el código server-side y paneles en la UI.
Listo