X-Git-Url: http://andersk.mit.edu/gitweb/sql-web.git/blobdiff_plain/8ef0d58a738d3732d356c8386fe1125b13972652..69e08b46941eaaeb91e1bb8c3f02df47ef20a745:/lib/security.lib.php

diff --git a/lib/security.lib.php b/lib/security.lib.php
index 32532bc..2084e53 100644
--- a/lib/security.lib.php
+++ b/lib/security.lib.php
@@ -337,6 +337,7 @@ function addDB($dbname,$userid) {
 	global $_NEW_DB, $_NEW_DBQUOTA, $_NEW_DBOWNER;
 
 	DBCreate(sprintf('CREATE DATABASE `%s`', mysql_escape_string($dbname)));
+	if (mysql_error()) return false;
 
 	$newdb['Name'] = $dbname;
 	$arr = array_merge($newdb, $_NEW_DB);
@@ -358,23 +359,25 @@ function addDB($dbname,$userid) {
 						buildSQLSet($arr),
 						$DBId);
 		DBUpdate($sql);
-		return $DBId;
-	} else {
-		$arr = $_NEW_DBQUOTA;
-		$arr['DatabaseId'] = $DBId;
-		$sql = sprintf("INSERT IGNORE INTO DBQuota %s",
-						buildSQLInsert($arr));
-		DBInsert($sql);
-
-		$arr = $_NEW_DBOWNER;
-		$arr['DatabaseId'] = $DBId;
-		$arr['UserId'] = $userid;
-		$sql = sprintf("INSERT IGNORE INTO DBOwner %s",
-						buildSQLInsert($arr));
-		DBInsert($sql);
-
-		return $DBId;
 	}
+
+	DBDelete(sprintf("DELETE FROM DBOwner WHERE DatabaseId = '%s'", mysql_escape_string($DBId)));
+	DBDelete(sprintf("DELETE FROM DBQuota WHERE DatabaseId = '%s'", mysql_escape_string($DBId)));
+	
+	$arr = $_NEW_DBQUOTA;
+	$arr['DatabaseId'] = $DBId;
+	$sql = sprintf("INSERT IGNORE INTO DBQuota %s",
+					buildSQLInsert($arr));
+	DBInsert($sql);
+
+	$arr = $_NEW_DBOWNER;
+	$arr['DatabaseId'] = $DBId;
+	$arr['UserId'] = $userid;
+	$sql = sprintf("INSERT IGNORE INTO DBOwner %s",
+					buildSQLInsert($arr));
+	DBInsert($sql);
+
+	return $DBId;
 }
 
 function delDB($dbname) {