2 require_once "sessions.php";
3 require_once "backend-rpc.php";
5 header("Cache-Control: no-cache, must-revalidate");
6 header("Pragma: no-cache");
9 /* if ($_GET["debug"]) {
10 define('DEFAULT_ERROR_LEVEL', E_ALL);
12 define('DEFAULT_ERROR_LEVEL', E_ERROR | E_WARNING | E_PARSE);
15 error_reporting(DEFAULT_ERROR_LEVEL); */
17 $op = $_REQUEST["op"];
19 define('SCHEMA_VERSION', 8);
21 require_once "sanity_check.php";
22 require_once "config.php";
24 require_once "db.php";
25 require_once "db-prefs.php";
26 require_once "functions.php";
27 require_once "magpierss/rss_fetch.inc";
29 $err_msg = check_configuration_variables();
32 header("Content-Type: application/xml");
33 print_error_xml(9, $err_msg); die;
36 if ((!$op ||
$op == "rpc" ||
$op == "globalUpdateFeeds") && !$_REQUEST["noxml"]) {
37 header("Content-Type: application/xml");
40 if (!$_SESSION["uid"] && $op != "globalUpdateFeeds") {
43 print_error_xml(6); die;
47 <p>Error: Not logged in.</p>
48 <script type=\"text/javascript\">
49 if (parent.window != 'undefined') {
50 parent.window.location = \"login.php\";
52 window.location = \"login.php\";
62 print_error_xml(7); exit;
65 $purge_intervals = array(
74 $update_intervals = array(
76 -1 => "Disable updates",
84 $script_started = getmicrotime();
86 $link = db_connect(DB_HOST
, DB_USER
, DB_PASS
, DB_NAME
);
89 if (DB_TYPE
== "mysql") {
92 // PG seems to display its own errors just fine by default.
96 if (DB_TYPE
== "pgsql") {
97 pg_query("set client_encoding = 'utf-8'");
100 if ($_SESSION["uid"]) {
101 if (get_pref($link, "HIDE_READ_FEEDS") == "true") {
102 setcookie("ttrss_vf_hreadf", 1);
104 setcookie("ttrss_vf_hreadf", 0);
107 setcookie('ttrss_vf_refresh', FEEDS_FRAME_REFRESH
);
108 setcookie('ttrss_vf_daemon', ENABLE_UPDATE_DAEMON
);
110 if (get_pref($link, "ON_CATCHUP_SHOW_NEXT_FEED")) {
111 setcookie('ttrss_vf_catchupnext', 1);
113 setcookie('ttrss_vf_catchupnext', 0);
117 $fetch = $_GET["fetch"];
119 // setcookie("ttrss_icons_url", ICONS_URL);
121 if (!sanity_check($link)) { return; }
123 function outputFeedList($link, $tags = false) {
126 <title>Tiny Tiny RSS : Feedlist</title>
127 <link rel=\"stylesheet\" href=\"tt-rss.css\" type=\"text/css\">";
129 $user_theme = $_SESSION["theme"];
131 print "<link rel=\"stylesheet\" type=\"text/css\"
132 href=\"themes/$user_theme/theme.css\">";
135 if (get_pref($link, 'USE_COMPACT_STYLESHEET')) {
136 print "<link rel=\"stylesheet\" type=\"text/css\"
137 href=\"tt-rss_compact.css\"/>";
139 print "<link title=\"Compact Stylesheet\" rel=\"alternate stylesheet\"
140 type=\"text/css\" href=\"tt-rss_compact.css\"/>";
143 $script_dt_add = get_script_dt_add();
145 print "<script type=\"text/javascript\" src=\"functions.js?$script_dt_add\"></script>
146 <script type=\"text/javascript\" src=\"feedlist.js?$script_dt_add\"></script>
147 <meta http-equiv=\"Content-Type\" content=\"text/html; charset=utf-8\">
148 <!--[if gte IE 5.5000]>
149 <script type=\"text/javascript\" src=\"pngfix.js\"></script>
150 <link rel=\"stylesheet\" type=\"text/css\" href=\"tt-rss-ie.css\">
153 <script type=\"text/javascript\">
154 if (document.addEventListener) {
155 document.addEventListener(\"DOMContentLoaded\", init, null);
157 window.onload = init;
160 print "<ul class=\"feedList\" id=\"feedList\">\n";
162 $owner_uid = $_SESSION["uid"];
168 if (get_pref($link, 'ENABLE_FEED_CATS')) {
169 print "<li class=\"feedCat\">Special</li>";
170 print "<li id=\"feedCatHolder\"><ul class=\"feedCatList\">";
173 $result = db_query($link, "SELECT count(id) as num_starred
174 FROM ttrss_entries,ttrss_user_entries
175 WHERE marked = true AND
176 ttrss_user_entries.ref_id = ttrss_entries.id AND
177 unread = true AND owner_uid = '$owner_uid'");
178 $num_starred = db_fetch_result($result, 0, "num_starred");
182 if ($num_starred > 0) $class .= "Unread";
184 printFeedEntry(-1, $class, "Starred articles", $num_starred,
185 "images/mark_set.png", $link);
187 if (get_pref($link, 'ENABLE_FEED_CATS')) {
191 if (GLOBAL_ENABLE_LABELS
&& get_pref($link, 'ENABLE_LABELS')) {
193 $result = db_query($link, "SELECT id,sql_exp,description FROM
194 ttrss_labels WHERE owner_uid = '$owner_uid' ORDER by description");
196 if (db_num_rows($result) > 0) {
197 if (get_pref($link, 'ENABLE_FEED_CATS')) {
198 print "<li class=\"feedCat\">Labels</li>";
199 print "<li id=\"feedCatHolder\"><ul class=\"feedCatList\">";
201 print "<li><hr></li>";
205 while ($line = db_fetch_assoc($result)) {
209 $tmp_result = db_query($link, "SELECT count(id) as count
210 FROM ttrss_entries,ttrss_user_entries
211 WHERE (" . $line["sql_exp"] . ") AND unread = true AND
212 ttrss_user_entries.ref_id = ttrss_entries.id
213 AND owner_uid = '$owner_uid'");
215 $count = db_fetch_result($tmp_result, 0, "count");
223 error_reporting (DEFAULT_ERROR_LEVEL
);
225 printFeedEntry(-$line["id"]-11,
226 $class, $line["description"], $count, "images/label.png", $link);
230 if (db_num_rows($result) > 0) {
231 if (get_pref($link, 'ENABLE_FEED_CATS')) {
238 // if (!get_pref($link, 'ENABLE_FEED_CATS')) {
239 print "<li><hr></li>";
242 if (get_pref($link, 'ENABLE_FEED_CATS')) {
243 $order_by_qpart = "category,title";
245 $order_by_qpart = "title";
248 $result = db_query($link, "SELECT ttrss_feeds.*,
249 SUBSTRING(last_updated,1,19) AS last_updated_noms,
250 (SELECT COUNT(id) FROM ttrss_entries,ttrss_user_entries
251 WHERE feed_id = ttrss_feeds.id AND
252 ttrss_user_entries.ref_id = ttrss_entries.id AND
253 owner_uid = '$owner_uid') AS total,
254 (SELECT COUNT(id) FROM ttrss_entries,ttrss_user_entries
255 WHERE feed_id = ttrss_feeds.id AND unread = true
256 AND ttrss_user_entries.ref_id = ttrss_entries.id
257 AND owner_uid = '$owner_uid') as unread,
259 ttrss_feed_categories.title AS category,
260 ttrss_feed_categories.collapsed
261 FROM ttrss_feeds LEFT JOIN ttrss_feed_categories
262 ON (ttrss_feed_categories.id = cat_id)
264 ttrss_feeds.owner_uid = '$owner_uid' AND parent_feed IS NULL
265 ORDER BY $order_by_qpart");
267 $actid = $_GET["actid"];
277 $short_date = get_pref($link, 'SHORT_DATE_FORMAT');
279 while ($line = db_fetch_assoc($result)) {
281 $feed = db_unescape_string($line["title"]);
282 $feed_id = $line["id"];
284 $subop = $_GET["subop"];
286 $total = $line["total"];
287 $unread = $line["unread"];
289 if (get_pref($link, 'HEADLINES_SMART_DATE')) {
290 $last_updated = smart_date_time(strtotime($line["last_updated_noms"]));
292 $last_updated = date($short_date, strtotime($line["last_updated_noms"]));
295 $rtl_content = sql_bool_to_bool($line["rtl_content"]);
298 $rtl_tag = "dir=\"RTL\"";
303 $tmp_result = db_query($link,
304 "SELECT id,COUNT(unread) AS unread
305 FROM ttrss_feeds LEFT JOIN ttrss_user_entries
306 ON (ttrss_feeds.id = ttrss_user_entries.feed_id)
307 WHERE parent_feed = '$feed_id' AND unread = true
308 GROUP BY ttrss_feeds.id");
310 if (db_num_rows($tmp_result) > 0) {
311 while ($l = db_fetch_assoc($tmp_result)) {
312 $unread +
= $l["unread"];
316 $cat_id = $line["cat_id"];
318 $tmp_category = $line["category"];
320 if (!$tmp_category) {
321 $tmp_category = "Uncategorized";
324 // $class = ($lnum % 2) ? "even" : "odd";
326 if ($line["last_error"]) {
332 if ($unread > 0) $class .= "Unread";
334 if ($actid == $feed_id) {
335 $class .= "Selected";
338 $total_unread +
= $unread;
340 if ($category != $tmp_category && get_pref($link, 'ENABLE_FEED_CATS')) {
346 $category = $tmp_category;
348 $collapsed = $line["collapsed"];
350 // workaround for NULL category
351 if ($category == "Uncategorized") {
352 if ($_COOKIE["ttrss_vf_uclps"] == 1) {
357 if ($collapsed == "t" ||
$collapsed == "1") {
358 $holder_class = "invisible";
366 $cat_id_qpart = "cat_id = '$cat_id'";
368 $cat_id_qpart = "cat_id IS NULL";
371 $tmp_result = db_query($link, "SELECT count(int_id) AS unread
372 FROM ttrss_user_entries,ttrss_feeds WHERE
374 feed_id = ttrss_feeds.id AND $cat_id_qpart AND
375 ttrss_user_entries.owner_uid = " . $_SESSION["uid"]);
377 $cat_unread = db_fetch_result($tmp_result, 0, "unread");
379 $cat_id = sprintf("%d", $cat_id);
381 print "<li class=\"feedCat\" id=\"FCAT-$cat_id\">
382 <a href=\"javascript:toggleCollapseCat($cat_id)\">$tmp_category</a>
383 <a href=\"javascript:viewCategory($cat_id)\" id=\"FCAP-$cat_id\">
384 <span id=\"FCATCTR-$cat_id\"
385 class=\"$catctr_class\">($cat_unread unread)$ellipsis</span>
388 // !!! NO SPACE before <ul...feedCatList - breaks firstChild DOM function
389 // -> keyboard navigation, etc.
390 print "<li id=\"feedCatHolder\" class=\"$holder_class\"><ul class=\"feedCatList\" id=\"FCATLIST-$cat_id\">";
393 printFeedEntry($feed_id, $class, $feed, $unread,
394 "icons/$feed_id.ico", $link, $rtl_content,
395 $last_updated, $line["last_error"]);
404 /* $result = db_query($link, "SELECT tag_name,count(ttrss_entries.id) AS count
405 FROM ttrss_tags,ttrss_entries,ttrss_user_entries WHERE
406 post_int_id = ttrss_user_entries.int_id AND
407 unread = true AND ref_id = ttrss_entries.id
408 AND ttrss_tags.owner_uid = '$owner_uid' GROUP BY tag_name
410 select tag_name,0 as count FROM ttrss_tags WHERE owner_uid = '$owner_uid'
411 ORDER BY tag_name"); */
413 $result = db_query($link, "SELECT tag_name,SUM((SELECT COUNT(int_id)
414 FROM ttrss_user_entries WHERE int_id = post_int_id
415 AND unread = true)) AS count FROM ttrss_tags
416 WHERE owner_uid = 2 GROUP BY tag_name ORDER BY tag_name");
420 while ($line = db_fetch_assoc($result)) {
421 $tags[$line["tag_name"]] +
= $line["count"];
424 foreach (array_keys($tags) as $tag) {
426 $unread = $tags[$tag];
434 printFeedEntry($tag, $class, $tag, $unread, "images/tag.png", $link);
440 if (db_num_rows($result) == 0) {
446 print "<li>No $what to display.</li>";
452 <script type="text/javascript">
454 function statechange() {
455 if (document.readyState == "interactive") init();
458 if (document.readyState) {
459 if (document.readyState == "interactive" || document.readyState == "complete") {
462 document.onreadystatechange = statechange;
465 </script></body></html>';
470 handle_rpc_request($link);
473 if ($op == "feeds") {
475 $tags = $_GET["tags"];
477 $subop = $_GET["subop"];
479 if ($subop == "catchupAll") {
480 db_query($link, "UPDATE ttrss_user_entries SET
481 last_read = NOW(),unread = false WHERE owner_uid = " . $_SESSION["uid"]);
484 if ($subop == "collapse") {
485 $cat_id = db_escape_string($_GET["cid"]);
487 db_query($link, "UPDATE ttrss_feed_categories SET
488 collapsed = NOT collapsed WHERE id = '$cat_id' AND owner_uid = " .
493 outputFeedList($link, $tags);
499 $id = db_escape_string($_GET["id"]);
500 $feed_id = db_escape_string($_GET["feed"]);
502 $result = db_query($link, "SELECT rtl_content FROM ttrss_feeds
503 WHERE id = '$feed_id' AND owner_uid = " . $_SESSION["uid"]);
505 if (db_num_rows($result) == 1) {
506 $rtl_content = sql_bool_to_bool(db_fetch_result($result, 0, "rtl_content"));
508 $rtl_content = false;
512 $rtl_tag = "dir=\"RTL\"";
519 $result = db_query($link, "UPDATE ttrss_user_entries
520 SET unread = false,last_read = NOW()
521 WHERE ref_id = '$id' AND feed_id = '$feed_id' AND owner_uid = " . $_SESSION["uid"]);
523 $result = db_query($link, "SELECT title,link,content,feed_id,comments,int_id,
524 SUBSTRING(updated,1,16) as updated,
525 (SELECT icon_url FROM ttrss_feeds WHERE id = feed_id) as icon_url,
528 FROM ttrss_entries,ttrss_user_entries
529 WHERE id = '$id' AND ref_id = id AND owner_uid = " . $_SESSION["uid"]);
532 <title>Tiny Tiny RSS : Article $id</title>
533 <link rel=\"stylesheet\" href=\"tt-rss.css\" type=\"text/css\">";
535 $user_theme = $_SESSION["theme"];
537 print "<link rel=\"stylesheet\" type=\"text/css\"
538 href=\"themes/$user_theme/theme.css\">";
541 if (get_pref($link, 'USE_COMPACT_STYLESHEET')) {
542 print "<link rel=\"stylesheet\" type=\"text/css\"
543 href=\"tt-rss_compact.css\"/>";
545 print "<link title=\"Compact Stylesheet\" rel=\"alternate stylesheet\"
546 type=\"text/css\" href=\"tt-rss_compact.css\"/>";
549 $script_dt_add = get_script_dt_add();
551 print "<script type=\"text/javascript\" src=\"functions.js?$script_dt_add\"></script>
552 <meta http-equiv=\"Content-Type\" content=\"text/html; charset=utf-8\">
553 </head><body $rtl_tag>";
557 $line = db_fetch_assoc($result);
559 if ($line["icon_url"]) {
560 $feed_icon = "<img class=\"feedIcon\" src=\"" . $line["icon_url"] . "\">";
562 $feed_icon = " ";
565 /* if ($line["comments"] && $line["link"] != $line["comments"]) {
566 $entry_comments = "(<a href=\"".$line["comments"]."\">Comments</a>)";
568 $entry_comments = "";
571 $num_comments = $line["num_comments"];
572 $entry_comments = "";
574 if ($num_comments > 0) {
575 if ($line["comments"]) {
576 $comments_url = $line["comments"];
578 $comments_url = $line["link"];
580 $entry_comments = "<a href=\"$comments_url\">$num_comments comments</a>";
582 if ($line["comments"] && $line["link"] != $line["comments"]) {
583 $entry_comments = "<a href=\"".$line["comments"]."\">comments</a>";
587 print "<div class=\"postReply\">";
589 print "<div class=\"postHeader\"><table width=\"100%\">";
591 $entry_author = $line["author"];
594 $entry_author = " - by $entry_author";
597 print "<tr><td><a href=\"" . $line["link"] . "\">" . $line["title"] .
598 "</a>$entry_author</td>";
600 $parsed_updated = date(get_pref($link, 'LONG_DATE_FORMAT'),
601 strtotime($line["updated"]));
603 print "<td class=\"postDate$rtl_class\">$parsed_updated</td>";
607 $tmp_result = db_query($link, "SELECT DISTINCT tag_name FROM
608 ttrss_tags WHERE post_int_id = " . $line["int_id"] . "
616 while ($tmp_line = db_fetch_assoc($tmp_result)) {
618 $tag = $tmp_line["tag_name"];
619 $tag_str = "<a href=\"javascript:parent.viewfeed('$tag')\">$tag</a>, ";
621 if ($num_tags == 5) {
622 $tags_str .= "<a href=\"javascript:showBlockElement('allEntryTags')\">...</a>";
623 } else if ($num_tags < 5) {
624 $tags_str .= $tag_str;
626 $f_tags_str .= $tag_str;
629 $tags_str = preg_replace("/, $/", "", $tags_str);
630 $f_tags_str = preg_replace("/, $/", "", $f_tags_str);
632 // $truncated_link = truncate_string($line["link"], 60);
634 if ($tags_str ||
$entry_comments) {
635 print "<tr><td width='50%'>
637 <td align=\"right\">$tags_str</td></tr>";
640 print "</table></div>";
642 print "<div class=\"postIcon\">" . $feed_icon . "</div>";
643 print "<div class=\"postContent\">";
645 if (db_num_rows($tmp_result) > 5) {
646 print "<div id=\"allEntryTags\">Tags: $f_tags_str</div>";
649 if (get_pref($link, 'OPEN_LINKS_IN_NEW_WINDOW')) {
650 $line["content"] = preg_replace("/href=/i", "target=\"_new\" href=", $line["content"]);
653 print $line["content"] . "</div>";
657 print "<script type=\"text/javascript\">
658 update_all_counters('$feed_id');
662 print "</body></html>";
665 if ($op == "viewfeed") {
667 $feed = db_escape_string($_GET["feed"]);
668 $skip = db_escape_string($_GET["skip"]);
669 $subop = db_escape_string($_GET["subop"]);
670 $view_mode = db_escape_string($_GET["view"]);
671 $limit = db_escape_string($_GET["limit"]);
672 $cat_view = db_escape_string($_GET["cat"]);
673 $next_unread_feed = db_escape_string($_GET["nuf"]);
675 if (!$skip) $skip = 0;
677 if ($subop == "undefined") $subop = "";
680 <title>Tiny Tiny RSS : Feed $feed</title>
681 <link rel=\"stylesheet\" href=\"tt-rss.css\" type=\"text/css\">";
683 $user_theme = $_SESSION["theme"];
685 print "<link rel=\"stylesheet\" type=\"text/css\"
686 href=\"themes/$user_theme/theme.css\">";
689 if (get_pref($link, 'USE_COMPACT_STYLESHEET')) {
690 print "<link rel=\"stylesheet\"
691 type=\"text/css\" href=\"tt-rss_compact.css\"/>";
694 print "<link title=\"Compact Stylesheet\" rel=\"alternate stylesheet\"
695 type=\"text/css\" href=\"tt-rss_compact.css\"/>";
698 if ($subop == "ForceUpdate" && sprintf("%d", $feed) > 0) {
699 update_generic_feed($link, $feed, $cat_view);
702 if ($subop == "MarkAllRead") {
703 catchup_feed($link, $feed, $cat_view);
705 if (get_pref($link, 'ON_CATCHUP_SHOW_NEXT_FEED')) {
706 if ($next_unread_feed) {
707 $feed = $next_unread_feed;
712 if (preg_match("/^-?[0-9][0-9]*$/", $feed) != false) {
714 $result = db_query($link, "SELECT rtl_content FROM ttrss_feeds
715 WHERE id = '$feed' AND owner_uid = " . $_SESSION["uid"]);
717 if (db_num_rows($result) == 1) {
718 $rtl_content = sql_bool_to_bool(db_fetch_result($result, 0, "rtl_content"));
720 $rtl_content = false;
724 $rtl_tag = "dir=\"RTL\"";
730 $rtl_content = false;
733 $script_dt_add = get_script_dt_add();
735 print "<meta http-equiv=\"Content-Type\" content=\"text/html; charset=utf-8\">
736 <script type=\"text/javascript\" src=\"functions.js?$script_dt_add\"></script>
737 <script type=\"text/javascript\" src=\"viewfeed.js?$script_dt_add\"></script>
738 <!--[if gte IE 5.5000]>
739 <script type=\"text/javascript\" src=\"pngfix.js\"></script>
740 <link rel=\"stylesheet\" type=\"text/css\" href=\"tt-rss-ie.css\">
742 </head><body $rtl_tag>
743 <script type=\"text/javascript\">
744 if (document.addEventListener) {
745 document.addEventListener(\"DOMContentLoaded\", init, null);
747 window.onload = init;
750 $search = db_escape_string($_GET["search"]);
751 $search_mode = db_escape_string($_GET["smode"]);
754 $search_query_part = "(upper(ttrss_entries.title) LIKE upper('%$search%')
755 OR ttrss_entries.content LIKE '%$search%') AND";
757 $search_query_part = "";
760 $view_query_part = "";
762 if ($view_mode == "Adaptive") {
764 $view_query_part = " ";
765 } else if ($feed != -1) {
766 $unread = getFeedUnread($link, $feed);
768 $view_query_part = " unread = true AND ";
773 if ($view_mode == "Starred") {
774 $view_query_part = " marked = true AND ";
777 if ($view_mode == "Unread") {
778 $view_query_part = " unread = true AND ";
781 if ($limit && $limit != "All") {
782 $limit_query_part = "LIMIT " . $limit;
785 $vfeed_query_part = "";
787 // override query strategy and enable feed display when searching globally
788 if ($search && $search_mode == "All feeds") {
789 $query_strategy_part = "ttrss_entries.id > 0";
790 $vfeed_query_part = "ttrss_feeds.title AS feed_title,";
791 } else if (preg_match("/^-?[0-9][0-9]*$/", $feed) == false) {
792 $query_strategy_part = "ttrss_entries.id > 0";
793 $vfeed_query_part = "(SELECT title FROM ttrss_feeds WHERE
794 id = feed_id) as feed_title,";
795 } else if ($feed >= 0 && $search && $search_mode == "This category") {
797 $vfeed_query_part = "ttrss_feeds.title AS feed_title,";
799 $tmp_result = db_query($link, "SELECT id
800 FROM ttrss_feeds WHERE cat_id =
801 (SELECT cat_id FROM ttrss_feeds WHERE id = '$feed') AND id != '$feed'");
803 $cat_siblings = array();
805 if (db_num_rows($tmp_result) > 0) {
806 while ($p = db_fetch_assoc($tmp_result)) {
807 array_push($cat_siblings, "feed_id = " . $p["id"]);
810 $query_strategy_part = sprintf("(feed_id = %d OR %s)",
811 $feed, implode(" OR ", $cat_siblings));
814 $query_strategy_part = "ttrss_entries.id > 0";
817 } else if ($feed >= 0) {
822 $query_strategy_part = "cat_id = '$feed'";
824 $query_strategy_part = "cat_id IS NULL";
827 $vfeed_query_part = "ttrss_feeds.title AS feed_title,";
830 $tmp_result = db_query($link, "SELECT id
831 FROM ttrss_feeds WHERE parent_feed = '$feed'
832 ORDER BY cat_id,title");
834 $parent_ids = array();
836 if (db_num_rows($tmp_result) > 0) {
837 while ($p = db_fetch_assoc($tmp_result)) {
838 array_push($parent_ids, "feed_id = " . $p["id"]);
841 $query_strategy_part = sprintf("(feed_id = %d OR %s)",
842 $feed, implode(" OR ", $parent_ids));
844 $vfeed_query_part = "ttrss_feeds.title AS feed_title,";
846 $query_strategy_part = "feed_id = '$feed'";
849 } else if ($feed == -1) { // starred virtual feed
850 $query_strategy_part = "marked = true";
851 $vfeed_query_part = "ttrss_feeds.title AS feed_title,";
852 } else if ($feed <= -10) { // labels
853 $label_id = -$feed - 11;
855 $tmp_result = db_query($link, "SELECT sql_exp FROM ttrss_labels
856 WHERE id = '$label_id'");
858 $query_strategy_part = db_fetch_result($tmp_result, 0, "sql_exp");
860 $vfeed_query_part = "ttrss_feeds.title AS feed_title,";
862 $query_strategy_part = "id > 0"; // dumb
865 $order_by = "updated DESC";
867 // if ($feed < -10) {
868 // $order_by = "feed_id,updated DESC";
873 if ($search && $search_mode == "All feeds") {
874 $feed_title = "Global search results ($search)";
875 } else if ($search && preg_match('/^-?[0-9][0-9]*$/', $feed) == false) {
876 $feed_title = "Feed search results ($search, $feed)";
877 } else if (preg_match('/^-?[0-9][0-9]*$/', $feed) == false) {
879 } else if (preg_match('/^-?[0-9][0-9]*$/', $feed) != false && $feed >= 0) {
884 $result = db_query($link, "SELECT title FROM ttrss_feed_categories
885 WHERE id = '$feed' AND owner_uid = " . $_SESSION["uid"]);
886 $feed_title = db_fetch_result($result, 0, "title");
888 $feed_title = "Uncategorized";
892 $result = db_query($link, "SELECT title,site_url,last_error FROM ttrss_feeds
893 WHERE id = '$feed' AND owner_uid = " . $_SESSION["uid"]);
895 $feed_title = db_fetch_result($result, 0, "title");
896 $feed_site_url = db_fetch_result($result, 0, "site_url");
897 $last_error = db_fetch_result($result, 0, "last_error");
901 } else if ($feed == -1) {
902 $feed_title = "Starred articles";
903 } else if ($feed < -10) {
904 $label_id = -$feed - 11;
905 $result = db_query($link, "SELECT description FROM ttrss_labels
906 WHERE id = '$label_id'");
907 $feed_title = db_fetch_result($result, 0, "description");
912 $feed_title = db_unescape_string($feed_title);
914 if ($feed < -10) error_reporting (0);
916 print "<div id=\"headlinesContainer\">";
918 if (preg_match("/^-?[0-9][0-9]*$/", $feed) != false) {
921 $feed_kind = "Feeds";
923 $feed_kind = "Labels";
926 // if (!$vfeed_query_part) {
927 $content_query_part = "content as content_preview,";
929 // $content_query_part = "";
933 ttrss_entries.id,ttrss_entries.title,
934 SUBSTRING(updated,1,16) as updated,
935 unread,feed_id,marked,link,last_read,
936 SUBSTRING(last_read,1,19) as last_read_noms,
939 SUBSTRING(updated,1,19) as updated_noms
941 ttrss_entries,ttrss_user_entries,ttrss_feeds
943 ttrss_user_entries.feed_id = ttrss_feeds.id AND
944 ttrss_user_entries.ref_id = ttrss_entries.id AND
945 ttrss_user_entries.owner_uid = '".$_SESSION["uid"]."' AND
948 $query_strategy_part ORDER BY $order_by
951 $result = db_query($link, $query);
953 if ($_GET["debug"]) print $query;
960 $result = db_query($link, "SELECT
961 ttrss_entries.id as id,title,
962 SUBSTRING(updated,1,16) as updated,
964 marked,link,last_read,
965 SUBSTRING(last_read,1,19) as last_read_noms,
968 SUBSTRING(updated,1,19) as updated_noms
970 ttrss_entries,ttrss_user_entries,ttrss_tags
972 ref_id = ttrss_entries.id AND
973 ttrss_user_entries.owner_uid = '".$_SESSION["uid"]."' AND
974 post_int_id = int_id AND tag_name = '$feed' AND
977 $query_strategy_part ORDER BY $order_by
982 print "<div align='center'>
983 Could not display feed (query failed). Please check label match syntax or local configuration.</div>";
987 function print_headline_subtoolbar($link, $feed_site_url, $feed_title,
988 $bottom = false, $rtl_content = false) {
991 $class = "headlinesSubToolbar";
992 $tid = "headlineActionsTop";
994 $class = "invisible";
995 $tid = "headlineActionsBottom";
998 print "<table class=\"$class\" id=\"$tid\"
999 width=\"100%\" cellspacing=\"0\" cellpadding=\"0\"><tr>";
1007 if (!get_pref($link, 'COMBINED_DISPLAY_MODE')) {
1009 print "<td class=\"headlineActions$rtl_cpart\">
1011 <a href='#' onclick=\"javascript:selectTableRowsByIdPrefix('headlinesList', 'RROW-', 'RCHK-', true, '', true)\">All</a>,
1012 <a href='#' onclick=\"javascript:selectTableRowsByIdPrefix('headlinesList', 'RROW-', 'RCHK-', true, 'Unread', true)\">Unread</a>,
1013 <a href='#' onclick=\"javascript:selectTableRowsByIdPrefix('headlinesList', 'RROW-', 'RCHK-', false)\">None</a>
1015 Toggle: <a href='#' onclick=\"javascript:selectionToggleUnread()\">Unread</a>,
1016 <a href='#' onclick=\"javascript:selectionToggleMarked()\">Starred</a>";
1021 print "<td class=\"headlineActions$rtl_cpart\">
1023 <a href=\"#\" onclick=\"javascript:cdmSelectArticles('all')\">All</a>,
1024 <a href=\"#\" onclick=\"javascript:cdmSelectArticles('unread')\">Unread</a>,
1025 <a href=\"#\" onclick=\"javascript:cdmSelectArticles('none')\">None</a>
1027 Toggle: <a href=\"#\" onclick=\"javascript:selectionToggleUnread(true)\">Unread</a>,
1028 <a href=\"#\" onclick=\"javascript:selectionToggleMarked(true)\">Starred</a>";
1034 print "<td class=\"headlineTitle$rtl_cpart\">";
1036 if ($feed_site_url) {
1038 $target = "target=\"_blank\"";
1040 print "<a $target href=\"$feed_site_url\">$feed_title</a>";
1046 print "</tr></table>";
1050 if (db_num_rows($result) > 0) {
1052 print_headline_subtoolbar($link, $feed_site_url, $feed_title, false,
1055 if (!get_pref($link, 'COMBINED_DISPLAY_MODE')) {
1056 print "<table class=\"headlinesList\" id=\"headlinesList\"
1057 cellspacing=\"0\" width=\"100%\">";
1062 error_reporting (DEFAULT_ERROR_LEVEL
);
1066 while ($line = db_fetch_assoc($result)) {
1068 $class = ($lnum %
2) ?
"even" : "odd";
1071 $feed_id = $line["feed_id"];
1073 if ($line["last_read"] == "" &&
1074 ($line["unread"] != "t" && $line["unread"] != "1")) {
1076 $update_pic = "<img id='FUPDPIC-$id' src=\"images/updated.png\"
1079 $update_pic = "<img id='FUPDPIC-$id' src=\"images/blank_icon.gif\"
1083 if ($line["unread"] == "t" ||
$line["unread"] == "1") {
1091 if ($line["marked"] == "t" ||
$line["marked"] == "1") {
1092 $marked_pic = "<img id=\"FMARKPIC-$id\" src=\"images/mark_set.png\"
1093 alt=\"Reset mark\" onclick='javascript:toggleMark($id)'>";
1095 $marked_pic = "<img id=\"FMARKPIC-$id\" src=\"images/mark_unset.png\"
1096 alt=\"Set mark\" onclick='javascript:toggleMark($id)'>";
1099 $content_link = "<a href=\"javascript:view($id,$feed_id);\">" .
1100 $line["title"] . "</a>";
1102 if (get_pref($link, 'HEADLINES_SMART_DATE')) {
1103 $updated_fmt = smart_date_time(strtotime($line["updated"]));
1105 $short_date = get_pref($link, 'SHORT_DATE_FORMAT');
1106 $updated_fmt = date($short_date, strtotime($line["updated"]));
1109 if (get_pref($link, 'SHOW_CONTENT_PREVIEW')) {
1110 $content_preview = truncate_string(strip_tags($line["content_preview"]),
1114 if (!get_pref($link, 'COMBINED_DISPLAY_MODE')) {
1116 print "<tr class='$class' id='RROW-$id'>";
1118 print "<td class='hlUpdatePic'>$update_pic</td>";
1120 print "<td class='hlSelectRow'>
1121 <input type=\"checkbox\" onclick=\"toggleSelectRow(this)\"
1122 class=\"feedCheckBox\" id=\"RCHK-$id\">
1125 print "<td class='hlMarkedPic'>$marked_pic</td>";
1127 if ($line["feed_title"]) {
1128 print "<td class='hlContent'>$content_link</td>";
1129 print "<td class='hlFeed'>
1130 <a href='javascript:viewfeed($feed_id)'>".
1131 $line["feed_title"]."</a> </td>";
1133 print "<td class='hlContent' valign='middle'>";
1135 print "<a href=\"javascript:view($id,$feed_id);\">" .
1138 if (get_pref($link, 'SHOW_CONTENT_PREVIEW') && !$rtl_tag) {
1139 if ($content_preview) {
1140 print "<span class=\"contentPreview\"> - $content_preview</span>";
1148 print "<td class=\"hlUpdated\"><nobr>$updated_fmt </nobr></td>";
1155 $add_class = "Unread";
1160 print "<div class=\"cdmArticle$add_class\" id=\"RROW-$id\">";
1162 print "<div class=\"cdmHeader\">";
1164 print "<div style=\"float : right\">$updated_fmt,
1165 <a class=\"cdmToggleLink\"
1166 href=\"javascript:toggleUnread($id)\">Toggle unread</a>
1169 print "<a class=\"title\"
1170 onclick=\"javascript:toggleUnread($id, 0)\"
1171 target=\"new\" href=\"".$line["link"]."\">".$line["title"]."</a>";
1173 if ($line["feed_title"]) {
1174 print " (<a href='javascript:viewfeed($feed_id)'>".$line["feed_title"]."</a>)";
1179 print "<div class=\"cdmContent\">" . $line["content_preview"] . "</div>";
1181 print "<div style=\"float : right\">$marked_pic</div>
1182 <div lass=\"cdmFooter\">
1183 <input type=\"checkbox\" onclick=\"toggleSelectRowById(this,
1184 'RROW-$id')\" class=\"feedCheckBox\" id=\"RCHK-$id\"></div>";
1186 # print "<div align=\"center\"><a class=\"cdmToggleLink\"
1187 # href=\"javascript:toggleUnread($id)\">
1188 # Toggle unread</a></div>";
1197 if (!get_pref($link, 'COMBINED_DISPLAY_MODE')) {
1201 print_headline_subtoolbar($link,
1202 "javascript:catchupPage()", "Mark page as read", true, $rtl_content);
1206 print "<div width='100%' align='center'>No articles found.</div>";
1211 print "<script type=\"text/javascript\">
1212 document.onkeydown = hotkey_handler;
1213 // if (parent.daemon_enabled) parent.updateTitle('$feed_title');
1214 update_all_counters('$feed');
1218 <script type="text/javascript">
1220 function statechange() {
1221 if (document.readyState == "interactive") init();
1224 if (document.readyState) {
1225 if (document.readyState == "interactive" || document.readyState == "complete") {
1228 document.onreadystatechange = statechange;
1233 print "</body></html>";
1236 if ($op == "pref-rpc") {
1238 $subop = $_GET["subop"];
1240 if ($subop == "unread") {
1241 $ids = split(",", db_escape_string($_GET["ids"]));
1242 foreach ($ids as $id) {
1243 db_query($link, "UPDATE ttrss_user_entries SET unread = true
1244 WHERE feed_id = '$id' AND owner_uid = ".$_SESSION["uid"]);
1247 print "Marked selected feeds as unread.";
1250 if ($subop == "read") {
1251 $ids = split(",", db_escape_string($_GET["ids"]));
1252 foreach ($ids as $id) {
1253 db_query($link, "UPDATE ttrss_user_entries
1254 SET unread = false,last_read = NOW() WHERE
1255 feed_id = '$id' AND owner_uid = ".$_SESSION["uid"]);
1258 print "Marked selected feeds as read.";
1264 if ($op == "pref-feeds") {
1266 $subop = $_REQUEST["subop"];
1267 $quiet = $_REQUEST["quiet"];
1269 if ($subop == "massSubscribe") {
1270 $ids = split(",", db_escape_string($_GET["ids"]));
1272 $subscribed = array();
1274 foreach ($ids as $id) {
1275 $result = db_query($link, "SELECT feed_url,title FROM ttrss_feeds
1278 $feed_url = db_fetch_result($result, 0, "feed_url");
1279 $title = db_fetch_result($result, 0, "title");
1281 $result = db_query($link, "SELECT id FROM ttrss_feeds WHERE
1282 feed_url = '$feed_url' AND owner_uid = " . $_SESSION["uid"]);
1284 if (db_num_rows($result) == 0) {
1285 $result = db_query($link,
1286 "INSERT INTO ttrss_feeds (owner_uid,feed_url,title,cat_id)
1287 VALUES ('".$_SESSION["uid"]."', '$feed_url', '$title', NULL)");
1289 array_push($subscribed, $title);
1293 if (count($subscribed) > 0) {
1294 print "<div class=\"notice\">";
1295 print "<b>Subscribed to feeds:</b>";
1296 print "<ul class=\"nomarks\">";
1297 foreach ($subscribed as $title) {
1298 print "<li>$title</li>";
1305 if ($subop == "browse") {
1307 if (!ENABLE_FEED_BROWSER
) {
1308 print "Feed browser is administratively disabled.";
1312 print "<div id=\"infoBoxTitle\">Other feeds: Top 25</div>";
1314 print "<div class=\"infoBoxContents\">";
1316 print "<p>Showing top 25 registered feeds, sorted by popularity:</p>";
1318 $result = db_query($link, "SELECT feed_url,count(id) AS subscribers
1320 WHERE auth_login = '' AND auth_pass = '' AND private = false
1321 GROUP BY feed_url ORDER BY subscribers DESC LIMIT 25");
1323 print "<ul class='browseFeedList' id='browseFeedList'>";
1327 while ($line = db_fetch_assoc($result)) {
1328 $feed_url = $line["feed_url"];
1329 $subscribers = $line["subscribers"];
1331 $sub_result = db_query($link, "SELECT id
1332 FROM ttrss_feeds WHERE feed_url = '$feed_url' AND owner_uid =" .
1335 if (db_num_rows($sub_result) > 0) {
1336 continue; // already subscribed
1339 $det_result = db_query($link, "SELECT site_url,title,id
1340 FROM ttrss_feeds WHERE feed_url = '$feed_url' LIMIT 1");
1342 $details = db_fetch_assoc($det_result);
1344 $icon_file = ICONS_DIR
. "/" . $details["id"] . ".ico";
1346 if (file_exists($icon_file) && filesize($icon_file) > 0) {
1347 $feed_icon = "<img class=\"tinyFeedIcon\" src=\"" . ICONS_URL
.
1348 "/".$details["id"].".ico\">";
1350 $feed_icon = "<img class=\"tinyFeedIcon\" src=\"images/blank_icon.gif\">";
1353 $check_box = "<input onclick='toggleSelectListRow(this)' class='feedBrowseCB'
1354 type=\"checkbox\" id=\"FBCHK-" . $details["id"] . "\">";
1356 $class = ($feedctr %
2) ?
"even" : "odd";
1358 print "<li class='$class' id=\"FBROW-".$details["id"]."\">$check_box".
1359 "$feed_icon " . db_unescape_string($details["title"]) .
1360 " <span class='subscribers'>($subscribers)</span></li>";
1365 if ($feedctr == 0) {
1366 print "<li>No feeds found to subscribe.</li>";
1371 print "<div align='center'>
1372 <input type=\"submit\" class=\"button\"
1373 onclick=\"feedBrowserSubscribe()\" value=\"Subscribe\">
1374 <input type='submit' class='button'
1375 onclick=\"closeInfoBox()\" value=\"Cancel\"></div>";
1381 if ($subop == "editfeed") {
1382 $feed_id = db_escape_string($_GET["id"]);
1384 $result = db_query($link,
1385 "SELECT * FROM ttrss_feeds WHERE id = '$feed_id' AND
1386 owner_uid = " . $_SESSION["uid"]);
1388 $title = htmlspecialchars(db_unescape_string(db_fetch_result($result,
1391 $icon_file = ICONS_DIR
. "/$feed_id.ico";
1393 if (file_exists($icon_file) && filesize($icon_file) > 0) {
1394 $feed_icon = "<img width=\"16\" height=\"16\"
1395 src=\"" . ICONS_URL
. "/$feed_id.ico\">";
1400 print "<div id=\"infoBoxTitle\">Feed editor</div>";
1402 print "<div class=\"infoBoxContents\">";
1404 # print "<h1>$feed_icon $title</h1>";
1406 print "<table width='100%'>";
1408 # $row_class = "odd";
1410 print "<tr class='$row_class'><td>Title:</td>";
1411 print "<td><input id=\"iedit_title\" value=\"$title\"></td></tr>";
1413 $feed_url = db_fetch_result($result, 0, "feed_url");
1414 $feed_url = htmlspecialchars(db_unescape_string(db_fetch_result($result,
1416 # $row_class = toggleEvenOdd($row_class);
1418 print "<tr class='$row_class'><td>Feed URL:</td>";
1419 print "<td><input id=\"iedit_link\" value=\"$feed_url\"></td></tr>";
1421 if (get_pref($link, 'ENABLE_FEED_CATS')) {
1423 $cat_id = db_fetch_result($result, 0, "cat_id");
1425 # $row_class = toggleEvenOdd($row_class);
1427 print "<tr class='$row_class'><td>Category:</td>";
1429 print "<select id=\"iedit_fcat\">";
1430 print "<option id=\"0\">Uncategorized</option>";
1432 $tmp_result = db_query($link, "SELECT id,title FROM ttrss_feed_categories
1433 WHERE owner_uid = ".$_SESSION["uid"]." ORDER BY title");
1435 if (db_num_rows($tmp_result) > 0) {
1436 print "<option disabled>--------</option>";
1439 while ($tmp_line = db_fetch_assoc($tmp_result)) {
1440 if ($tmp_line["id"] == $cat_id) {
1441 $is_selected = "selected";
1445 printf("<option $is_selected id='%d'>%s</option>",
1446 $tmp_line["id"], $tmp_line["title"]);
1449 print "</select></td>";
1454 $update_interval = db_fetch_result($result, 0, "update_interval");
1455 # $row_class = toggleEvenOdd($row_class);
1457 print "<tr class='$row_class'><td>Update Interval:</td>";
1458 // print "<td><input id=\"iedit_updintl\"
1459 // value=\"$update_interval\"></td></tr>";
1463 print "<select id=\"iedit_updintl\">";
1465 foreach (array_keys($update_intervals) as $i) {
1467 if ($i == $update_interval) {
1468 $selected = "selected";
1472 print "<option $selected id=\"$i\">" . $update_intervals[$i] . "</option>";
1479 # $row_class = toggleEvenOdd($row_class);
1481 print "<tr class='$row_class'><td>Link to:</td><td>";
1483 $tmp_result = db_query($link, "SELECT COUNT(id) AS count
1484 FROM ttrss_feeds WHERE parent_feed = '$feed_id'");
1486 $linked_count = db_fetch_result($tmp_result, 0, "count");
1488 $parent_feed = db_fetch_result($result, 0, "parent_feed");
1490 if ($linked_count > 0) {
1491 $disabled = "disabled";
1494 print "<select $disabled id=\"iedit_parent_feed\">";
1496 print "<option id=\"0\">Not linked</option>";
1498 if (get_pref($link, 'ENABLE_FEED_CATS')) {
1500 $cat_qpart = "AND cat_id = '$cat_id'";
1502 $cat_qpart = "AND cat_id IS NULL";
1506 $tmp_result = db_query($link, "SELECT id,title FROM ttrss_feeds
1507 WHERE id != '$feed_id' AND owner_uid = ".$_SESSION["uid"]."
1508 $cat_qpart ORDER BY title");
1510 if (db_num_rows($tmp_result) > 0) {
1511 print "<option disabled>--------</option>";
1514 while ($tmp_line = db_fetch_assoc($tmp_result)) {
1515 if ($tmp_line["id"] == $parent_feed) {
1516 $is_selected = "selected";
1520 printf("<option $is_selected id='%d'>%s</option>",
1521 $tmp_line["id"], $tmp_line["title"]);
1527 $purge_interval = db_fetch_result($result, 0, "purge_interval");
1528 # $row_class = toggleEvenOdd($row_class);
1530 print "<tr class='$row_class'><td>Purge Days:</td>";
1531 // print "<td><input id=\"iedit_purgintl\"
1532 // value=\"$purge_interval\"></td></tr>";
1536 print "<select id=\"iedit_purgintl\">";
1538 foreach (array_keys($purge_intervals) as $i) {
1540 if ($i == $purge_interval) {
1541 $selected = "selected";
1545 print "<option $selected id=\"$i\">" . $purge_intervals[$i] . "</option>";
1552 // print "<tr><td colspan=\"2\"><b>Authentication</b></td></tr>";
1554 # $row_class = toggleEvenOdd($row_class);
1555 $auth_login = db_fetch_result($result, 0, "auth_login");
1557 print "<tr class='$row_class'><td>Login:</td>";
1558 print "<td><input id=\"iedit_login\"
1559 value=\"$auth_login\"></td></tr>";
1561 # $row_class = toggleEvenOdd($row_class);
1562 $auth_pass = db_fetch_result($result, 0, "auth_pass");
1564 print "<tr class='$row_class'><td>Password:</td>";
1565 print "<td><input type=\"password\" id=\"iedit_pass\"
1566 value=\"$auth_pass\"></td></tr>";
1568 # $row_class = toggleEvenOdd($row_class);
1569 $private = sql_bool_to_bool(db_fetch_result($result, 0, "private"));
1572 $checked = "checked";
1577 print "<tr class='$row_class'><td valign='top'>Options:</td>";
1578 print "<td><input type=\"checkbox\" id=\"iedit_private\"
1579 $checked><label for=\"iedit_private\">Hide from feed browser</label>";
1581 $rtl_content = sql_bool_to_bool(db_fetch_result($result, 0, "rtl_content"));
1584 $checked = "checked";
1589 print "<br><input type=\"checkbox\" id=\"iedit_rtl\"
1590 $checked><label for=\"iedit_rtl\">Right-to-left content</label>";
1597 print "<div align='center'>
1598 <input type=\"submit\" class=\"button\"
1599 onclick=\"feedEditSave()\" value=\"Save\">
1600 <input type='submit' class='button'
1601 onclick=\"feedEditCancel()\" value=\"Cancel\"></div>";
1605 if ($subop == "editSave") {
1606 $feed_title = db_escape_string($_POST["t"]);
1607 $feed_link = db_escape_string($_POST["l"]);
1608 $upd_intl = db_escape_string($_POST["ui"]);
1609 $purge_intl = db_escape_string($_POST["pi"]);
1610 $feed_id = db_escape_string($_POST["id"]);
1611 $cat_id = db_escape_string($_POST["catid"]);
1612 $auth_login = db_escape_string($_POST["login"]);
1613 $auth_pass = db_escape_string($_POST["pass"]);
1614 $parent_feed = db_escape_string($_POST["pfeed"]);
1615 $private = db_escape_string($_POST["is_pvt"]);
1616 $rtl_content = db_escape_string($_POST["is_rtl"]);
1618 if (strtoupper($upd_intl) == "DEFAULT")
1621 if (strtoupper($upd_intl) == "DISABLED")
1624 if (strtoupper($purge_intl) == "DEFAULT")
1627 if (strtoupper($purge_intl) == "DISABLED")
1631 $category_qpart = "cat_id = '$cat_id'";
1633 $category_qpart = 'cat_id = NULL';
1636 if ($parent_feed != 0) {
1637 $parent_qpart = "parent_feed = '$parent_feed'";
1639 $parent_qpart = 'parent_feed = NULL';
1642 $result = db_query($link, "UPDATE ttrss_feeds SET
1645 title = '$feed_title', feed_url = '$feed_link',
1646 update_interval = '$upd_intl',
1647 purge_interval = '$purge_intl',
1648 auth_login = '$auth_login',
1649 auth_pass = '$auth_pass',
1651 rtl_content = $rtl_content
1652 WHERE id = '$feed_id' AND owner_uid = " . $_SESSION["uid"]);
1655 if ($subop == "saveCat") {
1656 $cat_title = db_escape_string($_GET["title"]);
1657 $cat_id = db_escape_string($_GET["id"]);
1659 $result = db_query($link, "UPDATE ttrss_feed_categories SET
1660 title = '$cat_title' WHERE id = '$cat_id' AND owner_uid = ".$_SESSION["uid"]);
1664 if ($subop == "remove") {
1666 if (!WEB_DEMO_MODE
) {
1668 $ids = split(",", db_escape_string($_GET["ids"]));
1670 foreach ($ids as $id) {
1671 db_query($link, "DELETE FROM ttrss_feeds
1672 WHERE id = '$id' AND owner_uid = " . $_SESSION["uid"]);
1674 $icons_dir = ICONS_DIR
;
1676 if (file_exists($icons_dir . "/$id.ico")) {
1677 unlink($icons_dir . "/$id.ico");
1683 if ($subop == "add") {
1685 if (!WEB_DEMO_MODE
) {
1687 $feed_link = db_escape_string(trim($_GET["link"]));
1688 $cat_id = db_escape_string($_GET["cid"]);
1690 if (subscribe_to_feed($link, $feed_link, $cat_id)) {
1691 print "Added feed.";
1693 print "<div class=\"warning\">
1694 Feed <b>$feed_link</b> already exists in the database.
1700 if ($subop == "addCat") {
1702 if (!WEB_DEMO_MODE
) {
1704 $feed_cat = db_escape_string(trim($_GET["cat"]));
1706 $result = db_query($link,
1707 "SELECT id FROM ttrss_feed_categories
1708 WHERE title = '$feed_cat' AND owner_uid = ".$_SESSION["uid"]);
1710 if (db_num_rows($result) == 0) {
1712 $result = db_query($link,
1713 "INSERT INTO ttrss_feed_categories (owner_uid,title)
1714 VALUES ('".$_SESSION["uid"]."', '$feed_cat')");
1718 print "<div class=\"warning\">
1719 Category <b>$feed_cat</b> already exists in the database.
1727 if ($subop == "removeCats") {
1729 if (!WEB_DEMO_MODE
) {
1731 $ids = split(",", db_escape_string($_GET["ids"]));
1733 foreach ($ids as $id) {
1735 db_query($link, "BEGIN");
1737 $result = db_query($link,
1738 "SELECT count(id) as num_feeds FROM ttrss_feeds
1739 WHERE cat_id = '$id'");
1741 $num_feeds = db_fetch_result($result, 0, "num_feeds");
1743 if ($num_feeds == 0) {
1744 db_query($link, "DELETE FROM ttrss_feed_categories
1745 WHERE id = '$id' AND owner_uid = " . $_SESSION["uid"]);
1748 print "<div class=\"warning\">
1749 Unable to delete non empty feed categories.</div>";
1753 db_query($link, "COMMIT");
1758 if ($subop == "categorize") {
1760 if (!WEB_DEMO_MODE
) {
1762 $ids = split(",", db_escape_string($_GET["ids"]));
1764 $cat_id = db_escape_string($_GET["cat_id"]);
1767 $cat_id_qpart = 'NULL';
1769 $cat_id_qpart = "'$cat_id'";
1772 db_query($link, "BEGIN");
1774 foreach ($ids as $id) {
1776 db_query($link, "UPDATE ttrss_feeds SET cat_id = $cat_id_qpart
1777 WHERE id = '$id' AND owner_uid = " . $_SESSION["uid"]);
1780 db_query($link, "COMMIT");
1787 // print "<h3>Edit Feeds</h3>";
1789 $result = db_query($link, "SELECT id,title,feed_url,last_error
1790 FROM ttrss_feeds WHERE last_error != '' AND owner_uid = ".$_SESSION["uid"]);
1792 if (db_num_rows($result) > 0) {
1794 print "<div class=\"warning\">";
1796 // print"<img class=\"closeButton\"
1797 // onclick=\"javascript:hideParentElement(this);\" src=\"images/close.png\">";
1799 print "<a href=\"javascript:showBlockElement('feedUpdateErrors')\">
1800 <b>Some feeds have update errors (click for details)</b></a>";
1802 print "<ul id=\"feedUpdateErrors\" class=\"nomarks\">";
1804 while ($line = db_fetch_assoc($result)) {
1805 print "<li>" . $line["title"] . " (" . $line["feed_url"] . "): " .
1806 $line["last_error"];
1814 $feed_search = db_escape_string($_GET["search"]);
1816 if (array_key_exists("search", $_GET)) {
1817 $_SESSION["prefs_feed_search"] = $feed_search;
1819 $feed_search = $_SESSION["prefs_feed_search"];
1822 print "<table width='100%' class=\"prefGenericAddBox\"
1823 cellspacing='0' cellpadding='0'><tr>
1825 <input id=\"fadd_link\"
1826 onchange=\"javascript:addFeed()\"
1827 onkeyup=\"toggleSubmitNotEmpty(this, 'fadd_submit_btn')\"
1829 <input type=\"submit\" class=\"button\"
1830 disabled=\"true\" id=\"fadd_submit_btn\"
1831 onclick=\"addFeed()\" value=\"Subscribe\">";
1833 if (ENABLE_FEED_BROWSER
&& !SINGLE_USER_MODE
) {
1834 print " <input type=\"submit\" class=\"button\"
1835 onclick=\"javascript:browseFeeds()\" value=\"Top 25\">";
1838 print "</td><td align='right'>
1839 <input id=\"feed_search\" size=\"20\"
1840 onchange=\"javascript:updateFeedList()\" value=\"$feed_search\">
1841 <input type=\"submit\" class=\"button\"
1842 onclick=\"javascript:updateFeedList()\" value=\"Search\">
1846 $feeds_sort = db_escape_string($_GET["sort"]);
1848 if (!$feeds_sort ||
$feeds_sort == "undefined") {
1849 $feeds_sort = $_SESSION["pref_sort_feeds"];
1850 if (!$feeds_sort) $feeds_sort = "title";
1853 $_SESSION["pref_sort_feeds"] = $feeds_sort;
1856 $search_qpart = "(UPPER(F1.title) LIKE UPPER('%$feed_search%') OR
1857 UPPER(F1.feed_url) LIKE UPPER('%$feed_search%')) AND";
1862 $result = db_query($link, "SELECT
1866 substring(F1.last_updated,1,16) AS last_updated,
1871 F2.title AS parent_title,
1872 C1.title AS category
1875 LEFT JOIN ttrss_feeds AS F2
1876 ON (F1.parent_feed = F2.id)
1877 LEFT JOIN ttrss_feed_categories AS C1
1878 ON (F1.cat_id = C1.id)
1880 $search_qpart F1.owner_uid = '".$_SESSION["uid"]."'
1881 ORDER by category,$feeds_sort,title");
1883 if (db_num_rows($result) != 0) {
1885 print "<div id=\"infoBoxShadow\"><div id=\"infoBox\">PLACEHOLDER</div></div>";
1887 print "<p><table width=\"100%\" cellspacing=\"0\"
1888 class=\"prefFeedList\" id=\"prefFeedList\">";
1889 print "<tr><td class=\"selectPrompt\" colspan=\"8\">
1891 <a href=\"javascript:selectPrefRows('feed', true)\">All</a>,
1892 <a href=\"javascript:selectPrefRows('feed', false)\">None</a>
1895 if (!get_pref($link, 'ENABLE_FEED_CATS')) {
1896 print "<tr class=\"title\">
1897 <td width='5%' align='center'> </td>
1898 <td width='40%'><a href=\"javascript:updateFeedList('title')\">Title</a></td>
1899 <td width='45%'><a href=\"javascript:updateFeedList('feed_url')\">Feed</a></td>
1900 <td width='15%' align='right'><a href=\"javascript:updateFeedList('last_updated')\">Updated</a></td>";
1907 while ($line = db_fetch_assoc($result)) {
1909 $feed_id = $line["id"];
1910 $cat_id = $line["cat_id"];
1912 $edit_title = htmlspecialchars(db_unescape_string($line["title"]));
1913 $edit_link = htmlspecialchars(db_unescape_string($line["feed_url"]));
1914 $edit_cat = htmlspecialchars(db_unescape_string($line["category"]));
1916 if (!$edit_cat) $edit_cat = "Uncategorized";
1918 $last_updated = $line["last_updated"];
1920 if (get_pref($link, 'HEADLINES_SMART_DATE')) {
1921 $last_updated = smart_date_time(strtotime($last_updated));
1923 $short_date = get_pref($link, 'SHORT_DATE_FORMAT');
1924 $last_updated = date($short_date, strtotime($last_updated));
1927 if (get_pref($link, 'ENABLE_FEED_CATS') && $cur_cat_id != $cat_id) {
1930 print "<tr><td colspan=\"6\" class=\"feedEditCat\">$edit_cat</td></tr>";
1932 print "<tr class=\"title\">
1933 <td width='5%'> </td>";
1935 if (get_pref($link, 'ENABLE_FEED_ICONS')) {
1936 print "<td width='3%'> </td>";
1939 print "<td width='40%'><a href=\"javascript:updateFeedList('title')\">Title</a></td>
1940 <td width='45%'><a href=\"javascript:updateFeedList('feed_url')\">Feed</a></td>
1941 <td width='15%' align='right'><a href=\"javascript:updateFeedList('last_updated')\">Updated</a></td>";
1943 $cur_cat_id = $cat_id;
1946 $class = ($lnum %
2) ?
"even" : "odd";
1947 $this_row_id = "id=\"FEEDR-$feed_id\"";
1949 print "<tr class=\"$class\" $this_row_id>";
1951 $icon_file = ICONS_DIR
. "/$feed_id.ico";
1953 if (file_exists($icon_file) && filesize($icon_file) > 0) {
1954 $feed_icon = "<img class=\"tinyFeedIcon\" src=\"" . ICONS_URL
. "/$feed_id.ico\">";
1956 $feed_icon = "<img class=\"tinyFeedIcon\" src=\"images/blank_icon.gif\">";
1959 print "<td class='feedSelect'><input onclick='toggleSelectPrefRow(this, \"feed\");'
1960 type=\"checkbox\" id=\"FRCHK-".$line["id"]."\"></td>";
1962 if (get_pref($link, 'ENABLE_FEED_ICONS')) {
1963 print "<td class='feedIcon'>$feed_icon</td>";
1966 $edit_title = truncate_string($edit_title, 40);
1967 $edit_link = truncate_string($edit_link, 60);
1969 $parent_title = $line["parent_title"];
1970 if ($parent_title) {
1971 $parent_title = "<span class='groupPrompt'>(linked to
1972 $parent_title)</span>";
1975 print "<td><a href=\"javascript:editFeed($feed_id);\">" .
1976 "$edit_title $parent_title" . "</a></td>";
1978 print "<td><a href=\"javascript:editFeed($feed_id);\">" .
1979 $edit_link . "</a></td>";
1981 print "<td align='right'><a href=\"javascript:editFeed($feed_id);\">" .
1982 "$last_updated</a></td>";
1991 print "<p><span id=\"feedOpToolbar\">";
1993 if ($subop == "edit") {
1994 print "Edit feed:
1995 <input type=\"submit\" class=\"button\"
1996 onclick=\"javascript:feedEditCancel()\" value=\"Cancel\">
1997 <input type=\"submit\" class=\"button\"
1998 onclick=\"javascript:feedEditSave()\" value=\"Save\">";
2003 <input type=\"submit\" class=\"button\" disabled=\"true\"
2004 onclick=\"javascript:editSelectedFeed()\" value=\"Edit\">
2005 <input type=\"submit\" class=\"button\" disabled=\"true\"
2006 onclick=\"javascript:removeSelectedFeeds()\" value=\"Unsubscribe\">";
2008 if (get_pref($link, 'ENABLE_FEED_CATS')) {
2010 print " | ";
2012 $result = db_query($link, "SELECT title,id FROM ttrss_feed_categories
2013 WHERE owner_uid = ".$_SESSION["uid"]."
2016 print "<select id=\"sfeed_set_fcat\" disabled=\"true\">";
2017 print "<option id=\"0\">Uncategorized</option>";
2019 if (db_num_rows($result) != 0) {
2021 print "<option disabled>--------</option>";
2023 while ($line = db_fetch_assoc($result)) {
2024 printf("<option id='%d'>%s</option>",
2025 $line["id"], $line["title"]);
2031 print " <input type=\"submit\" class=\"button\" disabled=\"true\"
2032 onclick=\"javascript:categorizeSelectedFeeds()\" value=\"Recategorize\">";
2037 All feeds: <input type=\"submit\"
2038 class=\"button\" onclick=\"gotoExportOpml()\"
2039 value=\"Export OPML\">";
2043 print "<p>No feeds defined.</p>";
2047 if (get_pref($link, 'ENABLE_FEED_CATS')) {
2049 print "<h3>Edit Categories</h3>";
2051 // print "<h3>Categories</h3>";
2053 print "<div class=\"prefGenericAddBox\">
2054 <input id=\"fadd_cat\"
2055 onchange=\"javascript:addFeedCat()\"
2056 onkeyup=\"toggleSubmitNotEmpty(this, 'catadd_submit_btn')\"
2059 type=\"submit\" class=\"button\" disabled=\"true\" id=\"catadd_submit_btn\"
2060 onclick=\"javascript:addFeedCat()\" value=\"Create category\"></div>";
2062 $result = db_query($link, "SELECT title,id FROM ttrss_feed_categories
2063 WHERE owner_uid = ".$_SESSION["uid"]."
2066 if (db_num_rows($result) != 0) {
2068 print "<p><table width=\"100%\" class=\"prefFeedCatList\"
2069 cellspacing=\"0\" id=\"prefFeedCatList\">";
2071 print "<tr><td class=\"selectPrompt\" colspan=\"8\">
2073 <a href=\"javascript:selectPrefRows('fcat', true)\">All</a>,
2074 <a href=\"javascript:selectPrefRows('fcat', false)\">None</a>
2077 print "<tr class=\"title\">
2078 <td width=\"5%\"> </td><td width=\"80%\">Title</td>
2083 while ($line = db_fetch_assoc($result)) {
2085 $class = ($lnum %
2) ?
"even" : "odd";
2087 $cat_id = $line["id"];
2089 $edit_cat_id = $_GET["id"];
2091 if ($subop == "editCat" && $cat_id != $edit_cat_id) {
2095 $this_row_id = "id=\"FCATR-$cat_id\"";
2098 print "<tr class=\"$class\" $this_row_id>";
2100 $edit_title = htmlspecialchars(db_unescape_string($line["title"]));
2102 if (!$edit_cat_id ||
$subop != "editCat") {
2104 print "<td align='center'><input onclick='toggleSelectPrefRow(this, \"fcat\");'
2105 type=\"checkbox\" id=\"FCCHK-".$line["id"]."\"></td>";
2107 print "<td><a href=\"javascript:editFeedCat($cat_id);\">" .
2108 $edit_title . "</a></td>";
2110 } else if ($cat_id != $edit_cat_id) {
2112 print "<td><input disabled=\"true\" type=\"checkbox\"
2113 id=\"FRCHK-".$line["id"]."\"></td>";
2115 print "<td>$edit_title</td>";
2119 print "<td><input disabled=\"true\" type=\"checkbox\" checked></td>";
2121 print "<td><input id=\"iedit_title\" value=\"$edit_title\"></td>";
2132 print "<p id=\"catOpToolbar\">";
2134 if ($subop == "editCat") {
2135 print "Edit category:
2136 <input type=\"submit\" class=\"button\"
2137 onclick=\"javascript:feedCatEditCancel()\" value=\"Cancel\">
2138 <input type=\"submit\" class=\"button\"
2139 onclick=\"javascript:feedCatEditSave()\" value=\"Save\">";
2144 <input type=\"submit\" class=\"button\" disabled=\"true\"
2145 onclick=\"javascript:editSelectedFeedCat()\" value=\"Edit\">
2146 <input type=\"submit\" class=\"button\" disabled=\"true\"
2147 onclick=\"javascript:removeSelectedFeedCats()\" value=\"Remove\">";
2152 print "<p>No feed categories defined.</p>";
2156 print "<h3>Import OPML</h3>
2157 <form enctype=\"multipart/form-data\" method=\"POST\" action=\"opml.php\">
2158 File: <input id=\"opml_file\" name=\"opml_file\" type=\"file\">
2159 <input class=\"button\" name=\"op\" onclick=\"return validateOpmlImport();\"
2160 type=\"submit\" value=\"Import\">
2165 if ($op == "pref-filters") {
2167 $subop = $_GET["subop"];
2168 $quiet = $_GET["quiet"];
2170 if ($subop == "editSave") {
2172 $regexp = db_escape_string($_GET["r"]);
2173 $match = db_escape_string($_GET["m"]);
2174 $filter_id = db_escape_string($_GET["id"]);
2175 $feed_id = db_escape_string($_GET["fid"]);
2176 $action_id = db_escape_string($_GET["aid"]);
2181 $feed_id = sprintf("'%s'", db_escape_string($feed_id));
2184 $result = db_query($link, "UPDATE ttrss_filters SET
2185 reg_exp = '$regexp',
2187 action_id = '$action_id',
2188 filter_type = (SELECT id FROM ttrss_filter_types WHERE
2189 description = '$match')
2190 WHERE id = '$filter_id'");
2193 if ($subop == "remove") {
2195 if (!WEB_DEMO_MODE
) {
2197 $ids = split(",", db_escape_string($_GET["ids"]));
2199 foreach ($ids as $id) {
2200 db_query($link, "DELETE FROM ttrss_filters WHERE id = '$id'");
2206 if ($subop == "add") {
2208 if (!WEB_DEMO_MODE
) {
2210 $regexp = db_escape_string(trim($_GET["regexp"]));
2211 $match = db_escape_string(trim($_GET["match"]));
2212 $feed_id = db_escape_string($_GET["fid"]);
2213 $action_id = db_escape_string($_GET["aid"]);
2218 $feed_id = sprintf("'%s'", db_escape_string($feed_id));
2221 $result = db_query($link,
2222 "INSERT INTO ttrss_filters (reg_exp,filter_type,owner_uid,feed_id,
2225 ('$regexp', (SELECT id FROM ttrss_filter_types WHERE
2226 description = '$match'),'".$_SESSION["uid"]."',
2227 $feed_id, '$action_id')");
2233 print "<div id=\"infoBoxShadow\">
2234 <div id=\"infoBox\">PLACEHOLDER</div></div>";
2236 $result = db_query($link, "SELECT description
2237 FROM ttrss_filter_types ORDER BY description");
2239 $filter_types = array();
2241 while ($line = db_fetch_assoc($result)) {
2242 array_push($filter_types, $line["description"]);
2245 /* print "<div class=\"prefGenericAddBox\">
2246 <input id=\"fadd_regexp\" size=\"40\"> ";
2248 print_select("fadd_match", "Title", $filter_types);
2250 print " <select id=\"fadd_feed\">";
2252 print "<option selected id=\"0\">All feeds</option>";
2254 $result = db_query($link, "SELECT id,title FROM ttrss_feeds
2255 WHERE owner_uid = ".$_SESSION["uid"]." ORDER BY title");
2257 if (db_num_rows($result) > 0) {
2258 print "<option disabled>--------</option>";
2261 while ($line = db_fetch_assoc($result)) {
2262 printf("<option id='%d'>%s</option>", $line["id"],
2263 db_unescape_string($line["title"]));
2266 print "</select> ";
2268 print " Action: ";
2270 print "<select id=\"fadd_action\">";
2272 $result = db_query($link, "SELECT id,description FROM ttrss_filter_actions
2275 while ($line = db_fetch_assoc($result)) {
2276 printf("<option id='%d'>%s</option>", $line["id"], $line["description"]);
2279 print "</select> ";
2281 /* print "<input type=\"submit\"
2282 class=\"button\" onclick=\"javascript:testFilter()\"
2283 value=\"Test filter\"> "; */
2285 /* print "<input type=\"submit\"
2286 class=\"button\" onclick=\"javascript:addFilter()\"
2287 value=\"Create filter\">"; */
2289 print "<input type=\"submit\"
2291 onclick=\"javascript:displayDlg('quickAddFilter', false)\"
2292 value=\"Create filter\">";
2296 $result = db_query($link, "SELECT
2297 ttrss_filters.id AS id,reg_exp,
2298 ttrss_filter_types.name AS filter_type_name,
2299 ttrss_filter_types.description AS filter_type_descr,
2301 ttrss_filter_actions.description AS action_description,
2302 ttrss_feeds.title AS feed_title
2304 ttrss_filter_types,ttrss_filter_actions,ttrss_filters LEFT JOIN
2305 ttrss_feeds ON (ttrss_filters.feed_id = ttrss_feeds.id)
2307 filter_type = ttrss_filter_types.id AND
2308 ttrss_filter_actions.id = action_id AND
2309 ttrss_filters.owner_uid = ".$_SESSION["uid"]."
2312 if (db_num_rows($result) != 0) {
2314 print "<p><table width=\"100%\" cellspacing=\"0\" class=\"prefFilterList\"
2315 id=\"prefFilterList\">";
2317 print "<tr><td class=\"selectPrompt\" colspan=\"8\">
2319 <a href=\"javascript:selectPrefRows('filter', true)\">All</a>,
2320 <a href=\"javascript:selectPrefRows('filter', false)\">None</a>
2323 print "<tr class=\"title\">
2324 <td align='center' width=\"5%\"> </td>
2325 <td width=\"20%\">Filter expression</td>
2326 <td width=\"20%\">Feed</td>
2327 <td width=\"15%\">Match</td>
2328 <td width=\"15%\">Action</td>";
2332 while ($line = db_fetch_assoc($result)) {
2334 $class = ($lnum %
2) ?
"even" : "odd";
2336 $filter_id = $line["id"];
2337 $edit_filter_id = $_GET["id"];
2339 if ($subop == "edit" && $filter_id != $edit_filter_id) {
2343 $this_row_id = "id=\"FILRR-$filter_id\"";
2346 print "<tr class=\"$class\" $this_row_id>";
2348 $line["regexp"] = htmlspecialchars($line["reg_exp"]);
2350 if (!$line["feed_title"]) $line["feed_title"] = "All feeds";
2352 if (!$edit_filter_id ||
$subop != "edit") {
2354 print "<td align='center'><input onclick='toggleSelectPrefRow(this, \"filter\");'
2355 type=\"checkbox\" id=\"FICHK-".$line["id"]."\"></td>";
2357 print "<td><a href=\"javascript:editFilter($filter_id);\">" .
2358 $line["reg_exp"] . "</td>";
2360 print "<td><a href=\"javascript:editFilter($filter_id);\">" .
2361 $line["feed_title"] . "</td>";
2363 print "<td><a href=\"javascript:editFilter($filter_id);\">" .
2364 $line["filter_type_descr"] . "</td>";
2366 print "<td><a href=\"javascript:editFilter($filter_id);\">" .
2367 $line["action_description"] . "</td>";
2369 } else if ($filter_id != $edit_filter_id) {
2371 if (!$line["description"]) $line["description"] = "[No description]";
2373 print "<td align='center'><input disabled=\"true\" type=\"checkbox\"
2374 id=\"FICHK-".$line["id"]."\"></td>";
2376 print "<td>".$line["reg_exp"]."</td>";
2377 print "<td>".$line["feed_title"]."</td>";
2378 print "<td>".$line["filter_type_descr"]."</td>";
2379 print "<td>".$line["action_description"]."</td>";
2383 print "<td align='center'><input disabled=\"true\" type=\"checkbox\" checked></td>";
2385 print "<td><input id=\"iedit_regexp\" value=\"".$line["reg_exp"].
2389 print "<select id=\"iedit_feed\">";
2390 print "<option id=\"0\">All feeds</option>";
2392 $tmp_result = db_query($link, "SELECT id,title FROM ttrss_feeds
2393 WHERE owner_uid = ".$_SESSION["uid"]." ORDER BY title");
2395 if (db_num_rows($tmp_result) > 0) {
2396 print "<option disabled>--------</option>";
2399 while ($tmp_line = db_fetch_assoc($tmp_result)) {
2400 if ($tmp_line["id"] == $line["feed_id"]) {
2401 $is_selected = "selected";
2405 printf("<option $is_selected id='%d'>%s</option>",
2406 $tmp_line["id"], db_unescape_string($tmp_line["title"]));
2409 print "</select></td>";
2412 print_select("iedit_match", $line["filter_type_descr"], $filter_types);
2416 print "<select id=\"iedit_filter_action\">";
2418 $tmp_result = db_query($link, "SELECT id,description FROM ttrss_filter_actions
2419 ORDER BY description");
2421 while ($tmp_line = db_fetch_assoc($tmp_result)) {
2422 if ($tmp_line["description"] == $line["action_description"]) {
2423 $is_selected = "selected";
2427 printf("<option $is_selected id='%d'>%s</option>",
2428 $tmp_line["id"], $tmp_line["description"]);
2431 print "</select></td>";
2442 print "<tr><td colspan=\"4\" align=\"center\">No filters defined.</td></tr>";
2447 print "<p id=\"filterOpToolbar\">";
2449 if ($subop == "edit") {
2451 <input type=\"submit\" class=\"button\"
2452 onclick=\"javascript:filterEditSave()\" value=\"Save\">
2453 <input type=\"submit\" class=\"button\"
2454 onclick=\"javascript:filterEditCancel()\" value=\"Cancel\">";
2460 <input type=\"submit\" class=\"button\" disabled=\"true\"
2461 onclick=\"javascript:editSelectedFilter()\" value=\"Edit\">
2462 <input type=\"submit\" class=\"button\" disabled=\"true\"
2463 onclick=\"javascript:removeSelectedFilters()\" value=\"Remove\">";
2468 print "<p>No filters defined.</p>";
2473 // We need to accept raw SQL data in label queries, so not everything is escaped
2474 // here, this is by design. If you don't like the whole idea, disable labels
2475 // altogether with GLOBAL_ENABLE_LABELS = false
2477 if ($op == "pref-labels") {
2479 if (!GLOBAL_ENABLE_LABELS
) {
2483 $subop = $_GET["subop"];
2485 if ($subop == "test") {
2487 $expr = $_GET["expr"];
2488 $descr = $_GET["descr"];
2490 print "<div id=\"infoBoxTitle\">Test label: $descr</div>";
2492 print "<div class='infoBoxContents'>";
2494 # print "<h1>Label «$descr»</h1>";
2496 // print "<p><b>Expression</b>: $expr</p>";
2498 $result = db_query($link,
2499 "SELECT count(id) AS num_matches
2500 FROM ttrss_entries,ttrss_user_entries
2502 ttrss_user_entries.ref_id = ttrss_entries.id AND
2503 owner_uid = " . $_SESSION["uid"]);
2505 $num_matches = db_fetch_result($result, 0, "num_matches");;
2507 if ($num_matches > 0) {
2509 print "<p>Query returned <b>$num_matches</b> matches, first 5 follow:</p>";
2511 $result = db_query($link,
2513 (SELECT title FROM ttrss_feeds WHERE id = feed_id) AS feed_title
2514 FROM ttrss_entries,ttrss_user_entries
2516 ttrss_user_entries.ref_id = ttrss_entries.id
2517 AND owner_uid = " . $_SESSION["uid"] . "
2518 ORDER BY date_entered DESC LIMIT 5");
2520 print "<ul class=\"nomarks\">";
2521 while ($line = db_fetch_assoc($result)) {
2522 print "<li>".$line["title"].
2523 " <span class=\"insensitive\">(".$line["feed_title"].")</span></li>";
2528 print "<p>Query didn't return any matches.</p>";
2533 print "<div align='center'>
2534 <input type='submit' class='button'
2535 onclick=\"closeInfoBox()\" value=\"Close this window\"></div>";
2539 if ($subop == "editSave") {
2541 $sql_exp = $_GET["s"];
2542 $descr = $_GET["d"];
2543 $label_id = db_escape_string($_GET["id"]);
2545 // print "$sql_exp : $descr : $label_id";
2547 $result = db_query($link, "UPDATE ttrss_labels SET
2548 sql_exp = '$sql_exp',
2549 description = '$descr'
2550 WHERE id = '$label_id'");
2553 if ($subop == "remove") {
2555 if (!WEB_DEMO_MODE
) {
2557 $ids = split(",", db_escape_string($_GET["ids"]));
2559 foreach ($ids as $id) {
2560 db_query($link, "DELETE FROM ttrss_labels WHERE id = '$id'");
2566 if ($subop == "add") {
2568 if (!WEB_DEMO_MODE
) {
2570 // no escaping is done here on purpose
2571 $exp = trim($_GET["exp"]);
2573 $result = db_query($link,
2574 "INSERT INTO ttrss_labels (sql_exp,description,owner_uid)
2575 VALUES ('$exp', '$exp', '".$_SESSION["uid"]."')");
2579 print "<div class=\"prefGenericAddBox\">
2581 onkeyup=\"toggleSubmitNotEmpty(this, 'label_create_btn')\"
2582 id=\"ladd_expr\"> ";
2584 print"<input type=\"submit\" class=\"button\"
2585 disabled=\"true\" id=\"label_create_btn\"
2586 onclick=\"javascript:addLabel()\" value=\"Create label\"></div>";
2588 $result = db_query($link, "SELECT
2589 id,sql_exp,description
2593 owner_uid = ".$_SESSION["uid"]."
2594 ORDER by description");
2596 print "<div id=\"infoBoxShadow\"><div id=\"infoBox\">PLACEHOLDER</div></div>";
2598 if (db_num_rows($result) != 0) {
2600 print "<p><table width=\"100%\" cellspacing=\"0\"
2601 class=\"prefLabelList\" id=\"prefLabelList\">";
2603 print "<tr><td class=\"selectPrompt\" colspan=\"8\">
2605 <a href=\"javascript:selectPrefRows('label', true)\">All</a>,
2606 <a href=\"javascript:selectPrefRows('label', false)\">None</a>
2609 print "<tr class=\"title\">
2610 <td align='center' width=\"5%\"> </td>
2611 <td width=\"40%\">SQL expression
2612 <a class=\"helpLink\" href=\"javascript:displayHelpInfobox(1)\">(?)</a>
2614 <td width=\"40%\">Caption</td></tr>";
2618 while ($line = db_fetch_assoc($result)) {
2620 $class = ($lnum %
2) ?
"even" : "odd";
2622 $label_id = $line["id"];
2623 $edit_label_id = $_GET["id"];
2625 if ($subop == "edit" && $label_id != $edit_label_id) {
2629 $this_row_id = "id=\"LILRR-$label_id\"";
2632 print "<tr class=\"$class\" $this_row_id>";
2634 $line["sql_exp"] = htmlspecialchars($line["sql_exp"]);
2635 $line["description"] = htmlspecialchars($line["description"]);
2637 if (!$edit_label_id ||
$subop != "edit") {
2639 if (!$line["description"]) $line["description"] = "[No caption]";
2641 print "<td align='center'><input onclick='toggleSelectPrefRow(this, \"label\");'
2642 type=\"checkbox\" id=\"LICHK-".$line["id"]."\"></td>";
2644 print "<td><a href=\"javascript:editLabel($label_id);\">" .
2645 $line["sql_exp"] . "</td>";
2647 print "<td><a href=\"javascript:editLabel($label_id);\">" .
2648 $line["description"] . "</td>";
2650 } else if ($label_id != $edit_label_id) {
2652 if (!$line["description"]) $line["description"] = "[No description]";
2654 print "<td><input disabled=\"true\" type=\"checkbox\"
2655 id=\"LICHK-".$line["id"]."\"></td>";
2657 print "<td>".$line["sql_exp"]."</td>";
2658 print "<td>".$line["description"]."</td>";
2662 print "<td><input disabled=\"true\" type=\"checkbox\" checked></td>";
2664 print "<td><input id=\"iedit_expr\" value=\"".$line["sql_exp"].
2667 print "<td><input id=\"iedit_descr\" value=\"".$line["description"].
2678 print "<tr><td colspan=\"4\" align=\"center\">No labels defined.</td></tr>";
2683 print "<p id=\"labelOpToolbar\">";
2685 if ($subop == "edit") {
2687 <input type=\"submit\" class=\"button\"
2688 onclick=\"javascript:labelTest()\" value=\"Test\">
2689 <input type=\"submit\" class=\"button\"
2690 onclick=\"javascript:labelEditSave()\" value=\"Save\">
2691 <input type=\"submit\" class=\"button\"
2692 onclick=\"javascript:labelEditCancel()\" value=\"Cancel\">";
2697 <input type=\"submit\" class=\"button\" disabled=\"true\"
2698 onclick=\"javascript:editSelectedLabel()\" value=\"Edit\">
2699 <input type=\"submit\" class=\"button\" disabled=\"true\"
2700 onclick=\"javascript:removeSelectedLabels()\" value=\"Remove\">";
2703 print "<p>No labels defined.</p>";
2707 if ($op == "error") {
2708 print "<div width=\"100%\" align='center'>";
2709 $msg = $_GET["msg"];
2714 if ($op == "help") {
2715 if (!$_GET["noheaders"]) {
2717 <title>Tiny Tiny RSS : Help</title>
2718 <link rel=\"stylesheet\" href=\"tt-rss.css\" type=\"text/css\">
2719 <script type=\"text/javascript\" src=\"functions.js?$script_dt_add\"></script>
2720 <meta http-equiv=\"Content-Type\" content=\"text/html; charset=utf-8\">
2724 $tid = sprintf("%d", $_GET["tid"]);
2726 print "<div id=\"infoBoxTitle\">Help</div>";
2728 print "<div class='infoBoxContents'>";
2730 if (file_exists("help/$tid.php")) {
2731 include("help/$tid.php");
2733 print "<p>Help topic not found.</p>";
2738 print "<div align='center'>
2739 <input type='submit' class='button'
2740 onclick=\"closeInfoBox()\" value=\"Close this window\"></div>";
2742 if (!$_GET["noheaders"]) {
2743 print "</body></html>";
2750 $param = $_GET["param"];
2752 if ($id == "quickAddFeed") {
2754 print "<div id=\"infoBoxTitle\">Subscribe to feed</div>";
2755 print "<div class=\"infoBoxContents\">";
2757 print "<table width='100%'>
2758 <tr><td>Feed URL:</td><td>
2759 <input onblur=\"javascript:enableHotkeys()\"
2760 onkeyup=\"toggleSubmitNotEmpty(this, 'fadd_submit_btn')\"
2761 onfocus=\"javascript:disableHotkeys()\" id=\"qafInput\"></td></tr>";
2763 if (get_pref($link, 'ENABLE_FEED_CATS')) {
2764 print "<tr><td>Category:</td><td>";
2766 $result = db_query($link, "SELECT title,id FROM ttrss_feed_categories
2767 WHERE owner_uid = ".$_SESSION["uid"]."
2770 print "<select id=\"qafCat\">";
2771 print "<option id=\"0\">Uncategorized</option>";
2773 if (db_num_rows($result) != 0) {
2775 print "<option disabled>--------</option>";
2777 while ($line = db_fetch_assoc($result)) {
2778 printf("<option id='%d'>%s</option>",
2779 $line["id"], $line["title"]);
2787 print "<tr><td colspan='2' align='right'>
2788 <input class=\"button\"
2789 id=\"fadd_submit_btn\" disabled=\"true\"
2790 type=\"submit\" onclick=\"javascript:qafAdd()\" value=\"Subscribe\">
2791 <input class=\"button\"
2792 type=\"submit\" onclick=\"javascript:closeInfoBox()\"
2793 value=\"Cancel\"></td></tr></table>";
2796 if ($id == "quickDelFeed") {
2798 $param = db_escape_string($param);
2800 $result = db_query($link, "SELECT title FROM ttrss_feeds WHERE id = '$param'");
2804 $f_title = db_fetch_result($result, 0, "title");
2806 print "Remove current feed (<b>$f_title</b>)?
2807 <input class=\"button\"
2808 type=\"submit\" onclick=\"javascript:qfdDelete($param)\" value=\"Remove\">
2809 <input class=\"button\"
2810 type=\"submit\" onclick=\"javascript:closeInfoBox()\"
2813 print "Error: Feed $param not found.
2814 <input class=\"button\"
2815 type=\"submit\" onclick=\"javascript:closeInfoBox()\"
2820 if ($id == "search") {
2822 print "<div id=\"infoBoxTitle\">Search</div>";
2823 print "<div class=\"infoBoxContents\">";
2825 $active_feed_id = db_escape_string($_GET["param"]);
2827 print "<table width='100%'><tr><td>Search:</td><td>";
2829 print "<input id=\"searchbox\" class=\"extSearch\"
2830 onblur=\"javascript:enableHotkeys()\"
2831 onfocus=\"javascript:disableHotkeys()\"
2832 onkeyup=\"toggleSubmitNotEmpty(this, 'search_submit_btn')\"
2833 onchange=\"javascript:search()\">
2834 </td></tr><tr><td>Where:</td><td>
2835 <select id=\"searchmodebox\">
2836 <option selected>All feeds</option>";
2838 if ($active_feed_id) {
2839 print "<option>This feed</option>";
2841 print "<option disabled>This feed</option>";
2844 if (get_pref($link, 'ENABLE_FEED_CATS')) {
2845 print "<option>This category</option>";
2848 print "</select></td></tr>
2850 <tr><td colspan='2' align='right'>
2851 <input type=\"submit\"
2852 class=\"button\" onclick=\"javascript:search()\"
2853 id=\"search_submit_btn\" disabled=\"true\"
2855 <input class=\"button\"
2856 type=\"submit\" onclick=\"javascript:closeInfoBox()\"
2857 value=\"Cancel\"></td></tr></table>";
2861 if ($id == "quickAddFilter") {
2863 print "<div id=\"infoBoxTitle\">Create filter</div>";
2864 print "<div class=\"infoBoxContents\">";
2866 $result = db_query($link, "SELECT description
2867 FROM ttrss_filter_types ORDER BY description");
2869 $filter_types = array();
2871 while ($line = db_fetch_assoc($result)) {
2872 array_push($filter_types, $line["description"]);
2875 print "<table width='100%'>";
2877 print "<tr><td>Match:</td>
2878 <td><input onkeyup=\"toggleSubmitNotEmpty(this, 'infobox_submit')\"
2879 id=\"fadd_regexp\" size=\"30\"> ";
2881 print_select("fadd_match", "Title", $filter_types);
2884 print "<tr><td>Feed:</td><td><select id=\"fadd_feed\">";
2886 print "<option selected id=\"0\">All feeds</option>";
2888 $result = db_query($link, "SELECT id,title FROM ttrss_feeds
2889 WHERE owner_uid = ".$_SESSION["uid"]." ORDER BY title");
2891 if (db_num_rows($result) > 0) {
2892 print "<option disabled>--------</option>";
2895 while ($line = db_fetch_assoc($result)) {
2896 if ($param == $line["id"]) {
2897 $selected = "selected";
2901 printf("<option id='%d' %s>%s</option>", $line["id"], $selected, $line["title"]);
2904 print "</select></td></tr>";
2906 print "<tr><td>Action:</td>";
2908 print "<td><select id=\"fadd_action\">";
2910 $result = db_query($link, "SELECT id,description FROM ttrss_filter_actions
2913 while ($line = db_fetch_assoc($result)) {
2914 printf("<option id='%d'>%s</option>", $line["id"], $line["description"]);
2919 print "</td></tr><tr><td colspan=\"2\" align=\"right\">";
2921 print "<input type=\"submit\"
2922 id=\"infobox_submit\"
2923 class=\"button\" onclick=\"javascript:qaddFilter()\"
2924 disabled=\"true\" value=\"Create\"> ";
2926 print "<input class=\"button\"
2927 type=\"submit\" onclick=\"javascript:closeInfoBox()\"
2930 print "</td></tr></table>";
2938 // update feeds of all users, may be used anonymously
2939 if ($op == "globalUpdateFeeds") {
2941 $result = db_query($link, "SELECT id FROM ttrss_users");
2943 while ($line = db_fetch_assoc($result)) {
2944 $user_id = $line["id"];
2945 // print "<!-- updating feeds of uid $user_id -->";
2946 update_all_feeds($link, false, $user_id);
2950 <message msg=\"All feeds updated\"/>
2955 if ($op == "pref-prefs") {
2957 $subop = $_REQUEST["subop"];
2959 if ($subop == "Save configuration") {
2961 if (WEB_DEMO_MODE
) {
2962 header("Location: prefs.php");
2966 $_SESSION["prefs_op_result"] = "save-config";
2968 $_SESSION["prefs_cache"] = false;
2970 foreach (array_keys($_POST) as $pref_name) {
2972 $pref_name = db_escape_string($pref_name);
2973 $value = db_escape_string($_POST[$pref_name]);
2975 $result = db_query($link, "SELECT type_name
2976 FROM ttrss_prefs,ttrss_prefs_types
2977 WHERE pref_name = '$pref_name' AND type_id = ttrss_prefs_types.id");
2979 if (db_num_rows($result) > 0) {
2981 $type_name = db_fetch_result($result, 0, "type_name");
2983 // print "$pref_name : $type_name : $value<br>";
2985 if ($type_name == "bool") {
2986 if ($value == "1") {
2991 } else if ($type_name == "integer") {
2992 $value = sprintf("%d", $value);
2995 // print "$pref_name : $type_name : $value<br>";
2997 db_query($link, "UPDATE ttrss_user_prefs SET value = '$value'
2998 WHERE pref_name = '$pref_name' AND owner_uid = ".$_SESSION["uid"]);
3002 header("Location: prefs.php");
3006 } else if ($subop == "getHelp") {
3008 $pref_name = db_escape_string($_GET["pn"]);
3010 $result = db_query($link, "SELECT help_text FROM ttrss_prefs
3011 WHERE pref_name = '$pref_name'");
3013 if (db_num_rows($result) > 0) {
3014 $help_text = db_fetch_result($result, 0, "help_text");
3017 print "Unknown option: $pref_name";
3020 } else if ($subop == "Change e-mail") {
3022 if (WEB_DEMO_MODE
) {
3023 header("Location: prefs.php");
3027 $email = db_escape_string($_GET["email"]);
3028 $active_uid = $_SESSION["uid"];
3031 db_query($link, "UPDATE ttrss_users SET email = '$email'
3032 WHERE id = '$active_uid'");
3035 header("Location: prefs.php");
3037 } else if ($subop == "Change password") {
3039 if (WEB_DEMO_MODE
) {
3040 header("Location: prefs.php");
3044 $old_pw = $_POST["OLD_PASSWORD"];
3045 $new_pw = $_POST["OLD_PASSWORD"];
3047 $old_pw_hash = 'SHA1:' . sha1($_POST["OLD_PASSWORD"]);
3048 $new_pw_hash = 'SHA1:' . sha1($_POST["NEW_PASSWORD"]);
3050 $active_uid = $_SESSION["uid"];
3052 if ($old_pw && $new_pw) {
3054 $login = db_escape_string($_SERVER['PHP_AUTH_USER']);
3056 $result = db_query($link, "SELECT id FROM ttrss_users WHERE
3057 id = '$active_uid' AND (pwd_hash = '$old_pw' OR
3058 pwd_hash = '$old_pw_hash')");
3060 if (db_num_rows($result) == 1) {
3061 db_query($link, "UPDATE ttrss_users SET pwd_hash = '$new_pw_hash'
3062 WHERE id = '$active_uid'");
3064 $_SESSION["pwd_change_result"] = "ok";
3066 $_SESSION["pwd_change_result"] = "failed";
3070 header("Location: prefs.php");
3072 } else if ($subop == "Reset to defaults") {
3074 if (WEB_DEMO_MODE
) {
3075 header("Location: prefs.php");
3079 $_SESSION["prefs_op_result"] = "reset-to-defaults";
3081 if (DB_TYPE
== "pgsql") {
3082 db_query($link,"UPDATE ttrss_user_prefs
3083 SET value = ttrss_prefs.def_value
3084 WHERE owner_uid = '".$_SESSION["uid"]."' AND
3085 ttrss_prefs.pref_name = ttrss_user_prefs.pref_name");
3087 db_query($link, "DELETE FROM ttrss_user_prefs
3088 WHERE owner_uid = ".$_SESSION["uid"]);
3089 initialize_user_prefs($link, $_SESSION["uid"]);
3092 header("Location: prefs.php");
3094 } else if ($subop == "Change theme") {
3096 $theme = db_escape_string($_POST["theme"]);
3098 if ($theme == "Default") {
3099 $theme_qpart = 'NULL';
3101 $theme_qpart = "'$theme'";
3104 $result = db_query($link, "SELECT id,theme_path FROM ttrss_themes
3105 WHERE theme_name = '$theme'");
3107 if (db_num_rows($result) == 1) {
3108 $theme_id = db_fetch_result($result, 0, "id");
3109 $theme_path = db_fetch_result($result, 0, "theme_path");
3115 db_query($link, "UPDATE ttrss_users SET
3116 theme_id = $theme_id WHERE id = " . $_SESSION["uid"]);
3118 $_SESSION["theme"] = $theme_path;
3120 header("Location: prefs.php");
3124 if (!SINGLE_USER_MODE
) {
3126 $result = db_query($link, "SELECT id,email FROM ttrss_users
3127 WHERE id = ".$_SESSION["uid"]." AND (pwd_hash = 'password' OR
3128 pwd_hash = 'SHA1:".sha1("password")."')");
3130 if (db_num_rows($result) != 0) {
3131 print "<div class=\"warning\">
3132 Your password is at default value, please change it.
3136 if ($_SESSION["pwd_change_result"] == "failed") {
3137 print "<div class=\"warning\">
3138 There was an error while changing your password.
3142 if ($_SESSION["pwd_change_result"] == "ok") {
3143 print "<div class=\"notice\">
3144 Password changed successfully.
3148 $_SESSION["pwd_change_result"] = "";
3150 if ($_SESSION["prefs_op_result"] == "reset-to-defaults") {
3151 print "<div class=\"notice\">
3152 Your configuration was reset to defaults.
3156 if ($_SESSION["prefs_op_result"] == "save-config") {
3157 print "<div class=\"notice\">
3158 Your configuration was saved successfully.
3162 $_SESSION["prefs_op_result"] = "";
3164 print "<form action=\"backend.php\" method=\"GET\">";
3166 print "<table width=\"100%\" class=\"prefPrefsList\">";
3167 print "<tr><td colspan='3'><h3>Personal data</h3></tr></td>";
3169 $result = db_query($link, "SELECT email FROM ttrss_users
3170 WHERE id = ".$_SESSION["uid"]);
3172 $email = db_fetch_result($result, 0, "email");
3174 print "<tr><td width=\"40%\">E-mail</td>";
3175 print "<td><input class=\"editbox\" name=\"email\"
3176 value=\"$email\"></td></tr>";
3180 print "<input type=\"hidden\" name=\"op\" value=\"pref-prefs\">";
3182 print "<p><input class=\"button\" type=\"submit\"
3183 value=\"Change e-mail\" name=\"subop\">";
3187 print "<form action=\"backend.php\" method=\"POST\" name=\"changePassForm\">";
3189 print "<table width=\"100%\" class=\"prefPrefsList\">";
3190 print "<tr><td colspan='3'><h3>Authentication</h3></tr></td>";
3192 print "<tr><td width=\"40%\">Old password</td>";
3193 print "<td><input class=\"editbox\" type=\"password\"
3194 name=\"OLD_PASSWORD\"></td></tr>";
3196 print "<tr><td width=\"40%\">New password</td>";
3198 print "<td><input class=\"editbox\" type=\"password\"
3199 name=\"NEW_PASSWORD\"></td></tr>";
3203 print "<input type=\"hidden\" name=\"op\" value=\"pref-prefs\">";
3205 print "<p><input class=\"button\" type=\"submit\"
3206 onclick=\"return validateNewPassword(this.form)\"
3207 value=\"Change password\" name=\"subop\">";
3213 $result = db_query($link, "SELECT
3214 theme_id FROM ttrss_users WHERE id = " . $_SESSION["uid"]);
3216 $user_theme_id = db_fetch_result($result, 0, "theme_id");
3218 $result = db_query($link, "SELECT
3219 id,theme_name FROM ttrss_themes ORDER BY theme_name");
3221 if (db_num_rows($result) > 0) {
3223 print "<form action=\"backend.php\" method=\"POST\">";
3224 print "<table width=\"100%\" class=\"prefPrefsList\">";
3225 print "<tr><td colspan='3'><h3>Themes</h3></tr></td>";
3226 print "<tr><td width=\"40%\">Select theme</td>";
3227 print "<td><select name=\"theme\">";
3228 print "<option>Default</option>";
3229 print "<option disabled>--------</option>";
3231 while ($line = db_fetch_assoc($result)) {
3232 if ($line["id"] == $user_theme_id) {
3233 $selected = "selected";
3237 print "<option $selected>" . $line["theme_name"] . "</option>";
3239 print "</select></td></tr>";
3241 print "<input type=\"hidden\" name=\"op\" value=\"pref-prefs\">";
3242 print "<p><input class=\"button\" type=\"submit\"
3243 value=\"Change theme\" name=\"subop\">";
3247 $result = db_query($link, "SELECT
3248 ttrss_user_prefs.pref_name,short_desc,help_text,value,type_name,
3249 section_name,def_value
3250 FROM ttrss_prefs,ttrss_prefs_types,ttrss_prefs_sections,ttrss_user_prefs
3251 WHERE type_id = ttrss_prefs_types.id AND
3252 section_id = ttrss_prefs_sections.id AND
3253 ttrss_user_prefs.pref_name = ttrss_prefs.pref_name AND
3254 owner_uid = ".$_SESSION["uid"]."
3255 ORDER BY section_id,short_desc");
3257 print "<form action=\"backend.php\" method=\"POST\">";
3261 $active_section = "";
3263 while ($line = db_fetch_assoc($result)) {
3265 if ($active_section != $line["section_name"]) {
3267 if ($active_section != "") {
3271 print "<p><table width=\"100%\" class=\"prefPrefsList\">";
3273 $active_section = $line["section_name"];
3275 print "<tr><td colspan=\"3\"><h3>$active_section</h3></td></tr>";
3276 // print "<tr class=\"title\">
3277 // <td width=\"25%\">Option</td><td>Value</td></tr>";
3282 // $class = ($lnum % 2) ? "even" : "odd";
3286 $type_name = $line["type_name"];
3287 $pref_name = $line["pref_name"];
3288 $value = $line["value"];
3289 $def_value = $line["def_value"];
3290 $help_text = $line["help_text"];
3292 print "<td width=\"40%\" id=\"$pref_name\">" . $line["short_desc"];
3294 if ($help_text) print "<div class=\"prefHelp\">$help_text</div>";
3300 if ($type_name == "bool") {
3301 // print_select($pref_name, $value, array("true", "false"));
3303 if ($value == "true") {
3309 print_radio($pref_name, $value, array("Yes", "No"));
3312 print "<input class=\"editbox\" name=\"$pref_name\" value=\"$value\">";
3324 print "<input type=\"hidden\" name=\"op\" value=\"pref-prefs\">";
3326 print "<p><input class=\"button\" type=\"submit\"
3327 name=\"subop\" value=\"Save configuration\">";
3329 print " <input class=\"button\" type=\"submit\"
3330 name=\"subop\" onclick=\"return validatePrefsReset()\"
3331 value=\"Reset to defaults\"></p>";
3339 if ($op == "pref-users") {
3341 $subop = $_GET["subop"];
3343 if ($subop == "editSave") {
3345 if (!WEB_DEMO_MODE
) {
3347 $login = db_escape_string($_GET["l"]);
3348 $uid = db_escape_string($_GET["id"]);
3349 $access_level = sprintf("%d", $_GET["al"]);
3350 $email = db_escape_string($_GET["e"]);
3352 db_query($link, "UPDATE ttrss_users SET login = '$login',
3353 access_level = '$access_level', email = '$email' WHERE id = '$uid'");
3356 } else if ($subop == "remove") {
3358 if (!WEB_DEMO_MODE
&& $_SESSION["access_level"] >= 10) {
3360 $ids = split(",", db_escape_string($_GET["ids"]));
3362 foreach ($ids as $id) {
3363 db_query($link, "DELETE FROM ttrss_users WHERE id = '$id' AND id != " . $_SESSION["uid"]);
3367 } else if ($subop == "add") {
3369 if (!WEB_DEMO_MODE
&& $_SESSION["access_level"] >= 10) {
3371 $login = db_escape_string(trim($_GET["login"]));
3372 $tmp_user_pwd = make_password(8);
3373 $pwd_hash = 'SHA1:' . sha1($tmp_user_pwd);
3375 $result = db_query($link, "SELECT id FROM ttrss_users WHERE
3378 if (db_num_rows($result) == 0) {
3380 db_query($link, "INSERT INTO ttrss_users
3381 (login,pwd_hash,access_level,last_login)
3382 VALUES ('$login', '$pwd_hash', 0, NOW())");
3385 $result = db_query($link, "SELECT id FROM ttrss_users WHERE
3386 login = '$login' AND pwd_hash = '$pwd_hash'");
3388 if (db_num_rows($result) == 1) {
3390 $new_uid = db_fetch_result($result, 0, "id");
3392 print "<div class=\"notice\">Added user <b>".$_GET["login"].
3393 "</b> with password <b>$tmp_user_pwd</b>.</div>";
3395 initialize_user($link, $new_uid);
3399 print "<div class=\"warning\">Could not create user <b>".
3400 $_GET["login"]."</b></div>";
3404 print "<div class=\"warning\">User <b>".
3405 $_GET["login"]."</b> already exists.</div>";
3408 } else if ($subop == "resetPass") {
3410 if (!WEB_DEMO_MODE
&& $_SESSION["access_level"] >= 10) {
3412 $uid = db_escape_string($_GET["id"]);
3414 $result = db_query($link, "SELECT login,email
3415 FROM ttrss_users WHERE id = '$uid'");
3417 $login = db_fetch_result($result, 0, "login");
3418 $email = db_fetch_result($result, 0, "email");
3419 $tmp_user_pwd = make_password(8);
3420 $pwd_hash = 'SHA1:' . sha1($tmp_user_pwd);
3422 db_query($link, "UPDATE ttrss_users SET pwd_hash = '$pwd_hash'
3423 WHERE id = '$uid'");
3425 print "<div class=\"notice\">Changed password of
3426 user <b>$login</b> to <b>$tmp_user_pwd</b>.";
3428 if (MAIL_RESET_PASS
&& $email) {
3429 print " Notifying <b>$email</b>.";
3431 mail("$login <$email>", "Password reset notification",
3434 "Your password for this TT-RSS installation was reset by".
3435 " an administrator.\n".
3437 "Your new password is $tmp_user_pwd, please remember".
3438 " it for later reference.\n".
3440 "Sincerely, TT-RSS Mail Daemon.", "From: " . MAIL_FROM
);
3448 print "<div class=\"prefGenericAddBox\">
3449 <input id=\"uadd_box\"
3450 onkeyup=\"toggleSubmitNotEmpty(this, 'user_add_btn')\"
3451 onchange=\"javascript:addUser()\" size=\"40\"> ";
3453 print"<input type=\"submit\" class=\"button\"
3454 id=\"user_add_btn\" disabled=\"true\"
3455 onclick=\"javascript:addUser()\" value=\"Create user\"></div>";
3457 $result = db_query($link, "SELECT
3458 id,login,access_level,email,
3459 SUBSTRING(last_login,1,16) as last_login
3464 print "<div id=\"infoBoxShadow\"><div id=\"infoBox\">PLACEHOLDER</div></div>";
3466 print "<p><table width=\"100%\" cellspacing=\"0\"
3467 class=\"prefUserList\" id=\"prefUserList\">";
3469 print "<tr><td class=\"selectPrompt\" colspan=\"8\">
3471 <a href=\"javascript:selectPrefRows('user', true)\">All</a>,
3472 <a href=\"javascript:selectPrefRows('user', false)\">None</a>
3475 print "<tr class=\"title\">
3476 <td align='center' width=\"5%\"> </td>
3477 <td width='20%'>Login</td>
3478 <td width='20%'>E-mail</td>
3479 <td width='20%'>Access Level</td>
3480 <td width='20%'>Last login</td></tr>";
3484 while ($line = db_fetch_assoc($result)) {
3486 $class = ($lnum %
2) ?
"even" : "odd";
3489 $edit_uid = $_GET["id"];
3491 if ($subop == "edit" && $uid != $edit_uid) {
3495 $this_row_id = "id=\"UMRR-$uid\"";
3498 print "<tr class=\"$class\" $this_row_id>";
3500 $line["login"] = htmlspecialchars($line["login"]);
3502 $line["last_login"] = date(get_pref($link, 'SHORT_DATE_FORMAT'),
3503 strtotime($line["last_login"]));
3505 $access_level_names = array(0 => "User", 10 => "Administrator");
3507 if (!$edit_uid ||
$subop != "edit") {
3509 print "<td align='center'><input onclick='toggleSelectPrefRow(this, \"user\");'
3510 type=\"checkbox\" id=\"UMCHK-$uid\"></td>";
3512 print "<td><a href=\"javascript:editUser($uid);\">" .
3513 $line["login"] . "</td>";
3515 if (!$line["email"]) $line["email"] = " ";
3517 print "<td><a href=\"javascript:editUser($uid);\">" .
3518 $line["email"] . "</td>";
3520 print "<td><a href=\"javascript:editUser($uid);\">" .
3521 $access_level_names[$line["access_level"]] . "</td>";
3523 } else if ($uid != $edit_uid) {
3525 if (!$line["email"]) $line["email"] = " ";
3527 print "<td align='center'><input disabled=\"true\" type=\"checkbox\"
3528 id=\"UMCHK-".$line["id"]."\"></td>";
3530 print "<td>".$line["login"]."</td>";
3531 print "<td>".$line["email"]."</td>";
3532 print "<td>".$access_level_names[$line["access_level"]]."</td>";
3536 print "<td align='center'>
3537 <input disabled=\"true\" type=\"checkbox\" checked></td>";
3539 print "<td><input id=\"iedit_ulogin\" value=\"".$line["login"].
3542 print "<td><input id=\"iedit_email\" value=\"".$line["email"].
3546 print "<select id=\"iedit_ulevel\">";
3547 foreach (array_keys($access_level_names) as $al) {
3548 if ($al == $line["access_level"]) {
3549 $selected = "selected";
3553 print "<option $selected id=\"$al\">" .
3554 $access_level_names[$al] . "</option>";
3561 print "<td>".$line["last_login"]."</td>";
3570 print "<p id='userOpToolbar'>";
3572 if ($subop == "edit") {
3574 <input type=\"submit\" class=\"button\"
3575 onclick=\"javascript:userEditSave()\" value=\"Save\">
3576 <input type=\"submit\" class=\"button\"
3577 onclick=\"javascript:userEditCancel()\" value=\"Cancel\">";
3583 <input type=\"submit\" class=\"button\" disabled=\"true\"
3584 onclick=\"javascript:selectedUserDetails()\" value=\"User details\">
3585 <input type=\"submit\" class=\"button\" disabled=\"true\"
3586 onclick=\"javascript:editSelectedUser()\" value=\"Edit\">
3587 <input type=\"submit\" class=\"button\" disabled=\"true\"
3588 onclick=\"javascript:removeSelectedUsers()\" value=\"Remove\">
3589 <input type=\"submit\" class=\"button\" disabled=\"true\"
3590 onclick=\"javascript:resetSelectedUserPass()\" value=\"Reset password\">";
3595 if ($op == "user-details") {
3597 if (WEB_DEMO_MODE ||
$_SESSION["access_level"] < 10) {
3601 /* print "<html><head>
3602 <title>Tiny Tiny RSS : User Details</title>
3603 <link rel=\"stylesheet\" href=\"tt-rss.css\" type=\"text/css\">
3604 <meta http-equiv=\"Content-Type\" content=\"text/html; charset=utf-8\">
3607 $uid = sprintf("%d", $_GET["id"]);
3609 print "<div id=\"infoBoxTitle\">User details</div>";
3611 print "<div class='infoBoxContents'>";
3613 $result = db_query($link, "SELECT login,
3614 SUBSTRING(last_login,1,16) AS last_login,
3616 (SELECT COUNT(int_id) FROM ttrss_user_entries
3617 WHERE owner_uid = id) AS stored_articles
3619 WHERE id = '$uid'");
3621 if (db_num_rows($result) == 0) {
3622 print "<h1>User not found</h1>";
3626 # print "<h1>User Details</h1>";
3628 $login = db_fetch_result($result, 0, "login");
3630 print "<h1>$login</h1>";
3632 print "<table width='100%'>";
3634 $last_login = date(get_pref($link, 'LONG_DATE_FORMAT'),
3635 strtotime(db_fetch_result($result, 0, "last_login")));
3636 $access_level = db_fetch_result($result, 0, "access_level");
3637 $stored_articles = db_fetch_result($result, 0, "stored_articles");
3639 # print "<tr><td>Username</td><td>$login</td></tr>";
3640 print "<tr><td>Access level</td><td>$access_level</td></tr>";
3641 print "<tr><td>Last logged in</td><td>$last_login</td></tr>";
3642 print "<tr><td>Stored articles</td><td>$stored_articles</td></tr>";
3644 $result = db_query($link, "SELECT COUNT(id) as num_feeds FROM ttrss_feeds
3645 WHERE owner_uid = '$uid'");
3647 $num_feeds = db_fetch_result($result, 0, "num_feeds");
3649 print "<tr><td>Subscribed feeds count</td><td>$num_feeds</td></tr>";
3651 /* $result = db_query($link, "SELECT
3652 SUM(LENGTH(content)+LENGTH(title)+LENGTH(link)+LENGTH(guid)) AS db_size
3653 FROM ttrss_user_entries,ttrss_entries
3654 WHERE owner_uid = '$uid' AND ref_id = id");
3656 $db_size = round(db_fetch_result($result, 0, "db_size") / 1024);
3658 print "<tr><td>Approx. used DB size</td><td>$db_size KBytes</td></tr>"; */
3662 print "<h1>Subscribed feeds</h1>";
3664 $result = db_query($link, "SELECT id,title,site_url FROM ttrss_feeds
3665 WHERE owner_uid = '$uid' ORDER BY title");
3667 print "<ul class=\"userFeedList\">";
3671 while ($line = db_fetch_assoc($result)) {
3673 $icon_file = ICONS_URL
."/".$line["id"].".ico";
3675 if (file_exists($icon_file) && filesize($icon_file) > 0) {
3676 $feed_icon = "<img class=\"tinyFeedIcon\" src=\"$icon_file\">";
3678 $feed_icon = "<img class=\"tinyFeedIcon\" src=\"images/blank_icon.gif\">";
3681 print "<li class=\"$row_class\">$feed_icon <a href=\"".$line["site_url"]."\">".$line["title"]."</a></li>";
3683 $row_class = toggleEvenOdd($row_class);
3687 if (db_num_rows($result) < $num_feeds) {
3688 // FIXME - add link to show ALL subscribed feeds here somewhere
3690 class=\"tinyFeedIcon\" src=\"images/blank_icon.gif\"> ...</li>";
3697 print "<div align='center'>
3698 <input type='submit' class='button'
3699 onclick=\"closeInfoBox()\" value=\"Close this window\"></div>";
3701 // print "</body></html>";
3705 if ($op == "feed-details") {
3707 // $feed_id = $_GET["id"];
3709 $feed_ids = split(",", db_escape_string($_GET["id"]));
3711 print "<div id=\"infoBoxTitle\">Feed details</div>";
3712 print "<div class=\"infoBoxContents\">";
3714 foreach ($feed_ids as $feed_id) {
3716 $result = db_query($link,
3719 SUBSTRING(last_updated,1,16) as last_updated,
3721 (SELECT COUNT(int_id) FROM ttrss_user_entries
3722 WHERE feed_id = id) AS total,
3723 (SELECT COUNT(int_id) FROM ttrss_user_entries
3724 WHERE feed_id = id AND unread = true) AS unread,
3725 (SELECT COUNT(int_id) FROM ttrss_user_entries
3726 WHERE feed_id = id AND marked = true) AS marked
3728 WHERE id = '$feed_id' AND owner_uid = ".$_SESSION["uid"]);
3730 if (db_num_rows($result) == 0) return;
3732 $title = db_unescape_string(db_fetch_result($result, 0, "title"));
3733 $last_updated = date(get_pref($link, 'LONG_DATE_FORMAT'),
3734 strtotime(db_fetch_result($result, 0, "last_updated")));
3735 $feed_url = db_fetch_result($result, 0, "feed_url");
3736 $icon_url = db_fetch_result($result, 0, "icon_url");
3737 $total = db_fetch_result($result, 0, "total");
3738 $unread = db_fetch_result($result, 0, "unread");
3739 $marked = db_fetch_result($result, 0, "marked");
3740 $site_url = db_fetch_result($result, 0, "site_url");
3742 $result = db_query($link, "SELECT COUNT(id) AS subscribed
3743 FROM ttrss_feeds WHERE feed_url = '$feed_url' AND private = false");
3745 $subscribed = db_fetch_result($result, 0, "subscribed");
3747 $icon_file = ICONS_DIR
. "/$feed_id.ico";
3749 if (file_exists($icon_file) && filesize($icon_file) > 0) {
3750 $feed_icon = "<img width=\"16\" height=\"16\"
3751 src=\"" . ICONS_URL
. "/$feed_id.ico\">";
3756 print "<h1>$feed_icon $title</h1>";
3758 print "<table width='100%'>";
3761 print "<tr><td width='30%'>Link</td>
3762 <td><a href=\"$site_url\">$site_url</a>
3763 <a href=\"$feed_url\">(feed)</a></td>
3766 print "<tr><td width='30%'>Feed URL</td>
3767 <td><a href=\"$feed_url\">$feed_url</a></td></tr>";
3769 print "<tr><td>Last updated</td><td>$last_updated</td></tr>";
3770 print "<tr><td>Total articles</td><td>$total</td></tr>";
3771 print "<tr><td>Unread articles</td><td>$unread</td></tr>";
3772 print "<tr><td>Starred articles</td><td>$marked</td></tr>";
3773 print "<tr><td>Subscribed users</td><td>$subscribed</td></tr>";
3777 /* $result = db_query($link, "SELECT title,
3778 SUBSTRING(updated,1,16) AS updated,unread
3779 FROM ttrss_entries,ttrss_user_entries
3780 WHERE ref_id = id AND feed_id = '$feed_id'
3781 ORDER BY date_entered DESC LIMIT 5");
3783 if (db_num_rows($result) > 0) {
3785 print "<h1>Latest headlines</h1>";
3787 print "<ul class=\"nomarks\">";
3789 while ($line = db_fetch_assoc($result)) {
3790 if ($line["unread"] == "t" || $line["unread"] == "1") {
3791 $line["title"] = "<b>" . $line["title"] . "</b>";
3793 print "<li>" . $line["title"].
3794 " <span class=\"insensitive\">(" .
3795 date(get_pref($link, 'SHORT_DATE_FORMAT'),
3796 strtotime($line["updated"])).
3807 print "<div align='center'>
3808 <input type='submit' class='button'
3809 onclick=\"closeInfoBox()\" value=\"Close this window\"></div>";
3812 if ($op == "pref-feed-browser") {
3814 if (!ENABLE_FEED_BROWSER
) {
3815 print "Feed browser is administratively disabled.";
3819 $subop = $_REQUEST["subop"];
3821 if ($subop == "details") {
3822 $id = db_escape_string($_GET["id"]);
3824 print "<div class=\"browserFeedInfo\">";
3825 print "<b>Feed information:</b>";
3826 print "<div class=\"detailsPart\">";
3828 $result = db_query($link, "SELECT
3830 SUBSTRING(last_updated,1,19) AS last_updated
3831 FROM ttrss_feeds WHERE id = '$id'");
3833 $feed_url = db_fetch_result($result, 0, "feed_url");
3834 $site_url = db_fetch_result($result, 0, "site_url");
3835 $last_updated = db_fetch_result($result, 0, "last_updated");
3837 if (get_pref($link, 'HEADLINES_SMART_DATE')) {
3838 $last_updated = smart_date_time(strtotime($last_updated));
3840 $short_date = get_pref($link, 'SHORT_DATE_FORMAT');
3841 $last_updated = date($short_date, strtotime($last_updated));
3844 print "Site: <a href='$site_url'>$site_url</a> ".
3845 "(<a href='$feed_url'>feed</a>), ".
3846 "Last updated: $last_updated";
3850 $result = db_query($link, "SELECT
3851 ttrss_entries.title,
3853 substring(date_entered,1,19) as date_entered,
3854 substring(updated,1,19) as updated
3855 FROM ttrss_entries,ttrss_user_entries
3856 WHERE ttrss_entries.id = ref_id AND feed_id = '$id'
3857 ORDER BY updated DESC LIMIT 5");
3859 if (db_num_rows($result) > 0) {
3861 print "<b>Last headlines:</b><br>";
3863 print "<div class=\"detailsPart\">";
3864 print "<ul class=\"compact\">";
3865 while ($line = db_fetch_assoc($result)) {
3867 if (get_pref($link, 'HEADLINES_SMART_DATE')) {
3868 $entry_dt = smart_date_time(strtotime($line["updated"]));
3870 $short_date = get_pref($link, 'SHORT_DATE_FORMAT');
3871 $entry_dt = date($short_date, strtotime($line["updated"]));
3874 print "<li>" . $line["title"] .
3875 " <span class=\"insensitive\">($entry_dt)</span></li>";
3877 print "</ul></div>";
3885 print "<p>This panel shows feeds subscribed by other users of this system, just in case you are interested in some of them too.</p>";
3887 $limit = db_escape_string($_GET["limit"]);
3889 if (!$limit) $limit = 25;
3891 $result = db_query($link, "SELECT feed_url,count(id) AS subscribers
3893 WHERE auth_login = '' AND auth_pass = '' AND private = false
3894 GROUP BY feed_url ORDER BY subscribers DESC LIMIT $limit");
3896 print "<div style=\"float : right\">
3897 Top <select id=\"feedBrowserLimit\">";
3899 foreach (array(25, 50, 100) as $l) {
3900 $issel = ($l == $limit) ?
"selected" : "";
3901 print "<option $issel>$l</option>";
3905 <input type=\"submit\" class=\"button\"
3906 onclick=\"updateBigFeedBrowser()\" value=\"Show\">
3909 print "<p>Selection:
3910 <input type='submit' class='button' onclick=\"feedBrowserSubscribe()\"
3911 value=\"Subscribe\">";
3913 print "<ul class='nomarks' id='browseBigFeedList'>";
3917 while ($line = db_fetch_assoc($result)) {
3918 $feed_url = $line["feed_url"];
3919 $subscribers = $line["subscribers"];
3921 $sub_result = db_query($link, "SELECT id
3922 FROM ttrss_feeds WHERE feed_url = '$feed_url' AND owner_uid =" .
3925 if (db_num_rows($sub_result) > 0) {
3926 continue; // already subscribed
3929 $det_result = db_query($link, "SELECT site_url,title,id
3930 FROM ttrss_feeds WHERE feed_url = '$feed_url' LIMIT 1");
3932 $details = db_fetch_assoc($det_result);
3934 $icon_file = ICONS_DIR
. "/" . $details["id"] . ".ico";
3936 if (file_exists($icon_file) && filesize($icon_file) > 0) {
3937 $feed_icon = "<img class=\"tinyFeedIcon\" src=\"" . ICONS_URL
.
3938 "/".$details["id"].".ico\">";
3940 $feed_icon = "<img class=\"tinyFeedIcon\" src=\"images/blank_icon.gif\">";
3943 $check_box = "<input onclick='toggleSelectListRow(this)' class='feedBrowseCB'
3944 type=\"checkbox\" id=\"FBCHK-" . $details["id"] . "\">";
3946 $class = ($feedctr %
2) ?
"even" : "odd";
3948 print "<li class='$class' id=\"FBROW-".$details["id"]."\">$check_box".
3951 print "<a href=\"javascript:browserToggleExpand('".$details["id"]."')\">" .
3952 $details["title"] ."</a> " .
3953 "<span class='subscribers'>($subscribers)</span>";
3955 print "<div class=\"browserDetails\" id=\"BRDET-" . $details["id"] . "\">";
3963 if ($feedctr == 0) {
3964 print "<li>No feeds found to subscribe.</li>";
3973 function check_configuration_variables() {
3974 if (!defined('SESSION_EXPIRE_TIME')) {
3975 return "config: SESSION_EXPIRE_TIME is undefined";
3978 if (SESSION_EXPIRE_TIME
< 60) {
3979 return "config: SESSION_EXPIRE_TIME is too low (less than 60)";
3982 if (SESSION_EXPIRE_TIME
< SESSION_COOKIE_LIFETIME_REMEMBER
) {
3983 return "config: SESSION_EXPIRE_TIME should be greater or equal to" .
3984 "SESSION_COOKIE_LIFETIME_REMEMBER";
3987 if (defined('DISABLE_SESSIONS')) {
3988 return "config: you have enabled DISABLE_SESSIONS. Please disable this option.";
3991 if (DATABASE_BACKED_SESSIONS
&& SINGLE_USER_MODE
) {
3992 return "config: DATABASE_BACKED_SESSIONS is incompatible with SINGLE_USER_MODE";
4001 <!-- <?
= sprintf("Backend execution time: %.4f seconds", getmicrotime() - $script_started) ?
> -->