4 if (!$_SESSION["uid"]) { exit; }
6 define(SCHEMA_VERSION
, 2);
8 require_once "config.php";
10 require_once "db-prefs.php";
11 require_once "functions.php";
12 require_once "magpierss/rss_fetch.inc";
14 $op = $_REQUEST["op"];
16 if ($op == "rpc" ||
$op == "updateAllFeeds") {
17 header("Content-Type: application/xml");
20 $script_started = getmicrotime();
22 $link = db_connect(DB_HOST
, DB_USER
, DB_PASS
, DB_NAME
);
25 if (DB_TYPE
== "mysql") {
28 // PG seems to display its own errors just fine by default.
32 if (DB_TYPE
== "pgsql") {
33 pg_query("set client_encoding = 'utf-8'");
37 $result = db_query($link, "SELECT schema_version FROM ttrss_version");
39 $schema_version = db_fetch_result($result, 0, "schema_version");
41 if ($schema_version != SCHEMA_VERSION) {
42 print "Error: database schema is invalid
43 (got version $schema_version; expected ".SCHEMA_VERSION.")";
48 $fetch = $_GET["fetch"];
50 /* FIXME this needs reworking */
52 function getGlobalCounters($link) {
53 $result = db_query($link, "SELECT count(id) as c_id FROM ttrss_entries
54 WHERE unread = true AND owner_uid = " . $_SESSION["uid"]);
55 $c_id = db_fetch_result($result, 0, "c_id");
56 print "<counter id='global-unread' counter='$c_id'/>";
59 function getTagCounters($link) {
60 $result = db_query($link, "SELECT tag_name,count(ttrss_entries.id) AS count
61 FROM ttrss_tags,ttrss_entries WHERE
62 ttrss_tags.owner_uid = ".$_SESSION["uid"]." AND
63 post_id = ttrss_entries.id AND unread = true GROUP BY tag_name
65 select tag_name,0 as count FROM ttrss_tags
66 WHERE ttrss_tags.owner_uid = ".$_SESSION["uid"]);
70 while ($line = db_fetch_assoc($result)) {
71 $tags[$line["tag_name"]] +
= $line["count"];
74 foreach (array_keys($tags) as $tag) {
75 $unread = $tags[$tag];
77 $tag = htmlspecialchars($tag);
78 print "<tag id=\"$tag\" counter=\"$unread\"/>";
82 function getLabelCounters($link) {
84 $result = db_query($link, "SELECT count(id) as count FROM ttrss_entries
85 WHERE marked = true AND unread = true AND owner_uid = ".$_SESSION["uid"]);
87 $count = db_fetch_result($result, 0, "count");
89 print "<label id=\"-1\" counter=\"$count\"/>";
91 $result = db_query($link, "SELECT owner_uid,id,sql_exp,description FROM
92 ttrss_labels WHERE owner_uid = ".$_SESSION["uid"]." ORDER by description");
94 while ($line = db_fetch_assoc($result)) {
96 $id = -$line["id"] - 11;
100 $tmp_result = db_query($link, "SELECT count(id) as count FROM ttrss_entries
101 WHERE (" . $line["sql_exp"] . ") AND unread = true AND
102 owner_uid = ".$_SESSION["uid"]);
104 $count = db_fetch_result($tmp_result, 0, "count");
106 print "<label id=\"$id\" counter=\"$count\"/>";
108 error_reporting (E_ERROR | E_WARNING | E_PARSE
);
113 function getFeedCounter($link, $id) {
115 $result = db_query($link, "SELECT
116 count(id) as count FROM ttrss_entries
117 WHERE feed_id = '$id' AND unread = true");
119 $count = db_fetch_result($result, 0, "count");
121 print "<feed id=\"$id\" counter=\"$count\"/>";
124 function getFeedCounters($link) {
126 $result = db_query($link, "SELECT id,
127 (SELECT count(id) FROM ttrss_entries WHERE feed_id = ttrss_feeds.id
128 AND unread = true) as count
129 FROM ttrss_feeds WHERE owner_uid = ".$_SESSION["uid"]);
131 while ($line = db_fetch_assoc($result)) {
134 $count = $line["count"];
136 print "<feed id=\"$id\" counter=\"$count\"/>";
140 function outputFeedList($link, $tags = false) {
143 <title>Tiny Tiny RSS : Feedlist</title>
144 <link rel=\"stylesheet\" href=\"tt-rss.css\" type=\"text/css\">";
146 if (get_pref($link, 'USE_COMPACT_STYLESHEET')) {
147 print "<link rel=\"stylesheet\" type=\"text/css\"
148 href=\"tt-rss_compact.css\"/>";
150 print "<link title=\"Compact Stylesheet\" rel=\"alternate stylesheet\"
151 type=\"text/css\" href=\"tt-rss_compact.css\"/>";
154 print "<script type=\"text/javascript\" src=\"functions.js\"></script>
155 <script type=\"text/javascript\" src=\"feedlist.js\"></script>
156 <meta http-equiv=\"Content-Type\" content=\"text/html; charset=utf-8\">
157 </head><body onload=\"init()\">";
159 print "<ul class=\"feedList\" id=\"feedList\">";
161 $owner_uid = $_SESSION["uid"];
167 $result = db_query($link, "SELECT count(id) as num_starred
168 FROM ttrss_entries WHERE marked = true AND unread = true AND owner_uid = '$owner_uid'");
169 $num_starred = db_fetch_result($result, 0, "num_starred");
173 if ($num_starred > 0) $class .= "Unread";
175 printFeedEntry(-1, $class, "Starred articles", $num_starred,
176 "images/mark_set.png", $link);
178 if (get_pref($link, 'ENABLE_LABELS')) {
180 $result = db_query($link, "SELECT id,sql_exp,description FROM
181 ttrss_labels WHERE owner_uid = '$owner_uid' ORDER by description");
183 if (db_num_rows($result) > 0) {
184 print "<li><hr></li>";
187 while ($line = db_fetch_assoc($result)) {
191 $tmp_result = db_query($link, "SELECT count(id) as count FROM ttrss_entries
192 WHERE (" . $line["sql_exp"] . ") AND unread = true
193 AND owner_uid = '$owner_uid'");
195 $count = db_fetch_result($tmp_result, 0, "count");
203 error_reporting (E_ERROR | E_WARNING | E_PARSE
);
205 printFeedEntry(-$line["id"]-11,
206 $class, $line["description"], $count, "images/label.png", $link);
211 print "<li><hr></li>";
213 $result = db_query($link, "SELECT *,
214 (SELECT count(id) FROM ttrss_entries
215 WHERE feed_id = ttrss_feeds.id) AS total,
216 (SELECT count(id) FROM ttrss_entries
217 WHERE feed_id = ttrss_feeds.id AND unread = true) as unread
218 FROM ttrss_feeds WHERE owner_uid = '$owner_uid' ORDER BY title");
220 $actid = $_GET["actid"];
228 while ($line = db_fetch_assoc($result)) {
230 $feed = $line["title"];
231 $feed_id = $line["id"];
233 $subop = $_GET["subop"];
235 $total = $line["total"];
236 $unread = $line["unread"];
238 // $class = ($lnum % 2) ? "even" : "odd";
242 if ($unread > 0) $class .= "Unread";
244 if ($actid == $feed_id) {
245 $class .= "Selected";
248 $total_unread +
= $unread;
250 printFeedEntry($feed_id, $class, $feed, $unread, "icons/$feed_id.ico", $link);
258 $result = db_query($link, "SELECT tag_name,count(ttrss_entries.id) AS count
259 FROM ttrss_tags,ttrss_entries WHERE
260 post_id = ttrss_entries.id AND unread = true
261 AND ttrss_tags.owner_uid = '$owner_uid' GROUP BY tag_name
263 select tag_name,0 as count FROM ttrss_tags WHERE owner_uid = '$owner_uid'");
267 while ($line = db_fetch_assoc($result)) {
268 $tags[$line["tag_name"]] +
= $line["count"];
271 foreach (array_keys($tags) as $tag) {
273 $unread = $tags[$tag];
281 printFeedEntry($tag, $class, $tag, $unread, "images/tag.png", $link);
287 if (db_num_rows($result) == 0) {
288 print "<li>No tags/feeds to display.</li>";
293 print "<div class=\"invisible\" id=\"FEEDTU\">$total_unread</div>";
300 $subop = $_GET["subop"];
302 if ($subop == "getLabelCounters") {
305 getLabelCounters($link);
307 getFeedCounter($link, $aid);
309 print "</rpc-reply>";
312 if ($subop == "getFeedCounters") {
314 getFeedCounters($link);
315 print "</rpc-reply>";
318 if ($subop == "getAllCounters") {
320 getLabelCounters($link);
321 getFeedCounters($link);
322 getTagCounters($link);
323 getGlobalCounters($link);
324 print "</rpc-reply>";
327 if ($subop == "mark") {
328 $mark = $_GET["mark"];
329 $id = db_escape_string($_GET["id"]);
337 $result = db_query($link, "UPDATE ttrss_entries SET marked = $mark
341 if ($subop == "updateFeed") {
342 $feed_id = db_escape_string($_GET["feed"]);
344 $result = db_query($link,
345 "SELECT feed_url FROM ttrss_feeds WHERE id = '$feed_id'");
347 if (db_num_rows($result) > 0) {
348 $feed_url = db_fetch_result($result, 0, "feed_url");
349 // update_rss_feed($link, $feed_url, $feed_id);
352 print "DONE-$feed_id";
357 if ($subop == "forceUpdateAllFeeds" ||
$subop == "updateAllFeeds") {
359 update_all_feeds($link, true);
361 $omode = $_GET["omode"];
363 if (!$omode) $omode = "tfl";
366 if (strchr($omode, "l")) getLabelCounters($link);
367 if (strchr($omode, "f")) getFeedCounters($link);
368 if (strchr($omode, "t")) getTagCounters($link);
369 getGlobalCounters($link);
370 print "</rpc-reply>";
373 if ($subop == "catchupPage") {
375 $ids = split(",", $_GET["ids"]);
377 foreach ($ids as $id) {
379 db_query($link, "UPDATE ttrss_entries SET unread=false,last_read = NOW()
384 print "Marked active page as read.";
387 if ($subop == "sanityCheck") {
391 $result = db_query($link, "SELECT schema_version FROM ttrss_version");
393 $schema_version = db_fetch_result($result, 0, "schema_version");
395 if ($schema_version != SCHEMA_VERSION
) {
399 print "<error code='$error_code'/>";
402 if ($subop == "globalPurge") {
405 global_purge_old_posts($link, true);
406 print "</rpc-reply>";
412 if ($op == "feeds") {
414 $tags = $_GET["tags"];
416 $subop = $_GET["subop"];
418 if ($subop == "catchupAll") {
419 db_query($link, "UPDATE ttrss_entries SET
420 last_read = NOW(),unread = false WHERE owner_uid = " . $_SESSION["uid"]);
423 outputFeedList($link, $tags);
430 $feed_id = $_GET["feed"];
432 $result = db_query($link, "UPDATE ttrss_entries SET unread = false,last_read = NOW() WHERE id = '$id'");
434 $addheader = $_GET["addheader"];
436 $result = db_query($link, "SELECT title,link,content,feed_id,comments,
437 (SELECT icon_url FROM ttrss_feeds WHERE id = feed_id) as icon_url
443 <title>Tiny Tiny RSS : Article $id</title>
444 <link rel=\"stylesheet\" href=\"tt-rss.css\" type=\"text/css\">
445 <script type=\"text/javascript\" src=\"functions.js\"></script>
446 <meta http-equiv=\"Content-Type\" content=\"text/html; charset=utf-8\">
452 $line = db_fetch_assoc($result);
454 if ($line["icon_url"]) {
455 $feed_icon = "<img class=\"feedIcon\" src=\"" . $line["icon_url"] . "\">";
457 $feed_icon = " ";
460 if ($line["comments"] && $line["link"] != $line["comments"]) {
461 $entry_comments = "(<a href=\"".$line["comments"]."\">Comments</a>)";
463 $entry_comments = "";
466 print "<div class=\"postReply\">";
468 print "<div class=\"postHeader\"><table>";
470 print "<tr><td><b>Title:</b></td>
471 <td width='100%'>" . $line["title"] . "</td></tr>";
473 print "<tr><td><b>Link:</b></td>
475 <a href=\"" . $line["link"] . "\">".$line["link"]."</a>
476 $entry_comments</td></tr>";
478 print "</table></div>";
480 print "<div class=\"postIcon\">" . $feed_icon . "</div>";
481 print "<div class=\"postContent\">" . $line["content"] . "</div>";
485 print "<script type=\"text/javascript\">
486 update_label_counters('$feed_id');
491 print "</body></html>";
495 if ($op == "viewfeed") {
497 $feed = $_GET["feed"];
498 $skip = $_GET["skip"];
499 $subop = $_GET["subop"];
500 $view_mode = $_GET["view"];
501 $addheader = $_GET["addheader"];
502 $limit = $_GET["limit"];
505 print "Error: no feed to display.";
509 if (!$skip) $skip = 0;
511 if ($subop == "undefined") $subop = "";
515 <title>Tiny Tiny RSS : Feed $feed</title>
516 <link rel=\"stylesheet\" href=\"tt-rss.css\" type=\"text/css\">";
518 if (get_pref($link, 'USE_COMPACT_STYLESHEET')) {
519 print "<link rel=\"stylesheet\"
520 type=\"text/css\" href=\"tt-rss_compact.css\"/>";
523 print "<link title=\"Compact Stylesheet\" rel=\"alternate stylesheet\"
524 type=\"text/css\" href=\"tt-rss_compact.css\"/>";
526 print "<meta http-equiv=\"Content-Type\" content=\"text/html; charset=utf-8\">
527 <script type=\"text/javascript\" src=\"functions.js\"></script>
528 <script type=\"text/javascript\" src=\"viewfeed.js\"></script>
529 </head><body onload='init()'>";
532 if ($subop == "ForceUpdate" && sprintf("%d", $feed) > 0) {
534 $tmp_result = db_query($link, "SELECT feed_url FROM ttrss_feeds
535 WHERE id = '$feed'");
537 $feed_url = db_fetch_result($tmp_result, 0, "feed_url");
539 update_rss_feed($link, $feed_url, $feed);
543 if ($subop == "MarkAllRead") {
545 if (sprintf("%d", $feed) != 0) {
548 db_query($link, "UPDATE ttrss_entries
549 SET unread = false,last_read = NOW()
550 WHERE feed_id = '$feed'");
552 } else if ($feed < 0 && $feed > -10) { // special, like starred
555 db_query($link, "UPDATE ttrss_entries
556 SET unread = false,last_read = NOW()
557 WHERE marked = true");
560 } else if ($feed < -10) { // label
562 $label_id = -$feed - 11;
564 $tmp_result = db_query($link, "SELECT sql_exp FROM ttrss_labels
565 WHERE id = '$label_id'");
568 $sql_exp = db_fetch_result($tmp_result, 0, "sql_exp");
570 db_query($link, "UPDATE ttrss_entries
571 SET unread = false,last_read = NOW()
576 // FIXME, implement catchup for tags
581 print "<table class=\"headlinesList\" id=\"headlinesList\" width=\"100%\">";
583 $search = $_GET["search"];
585 $search_mode = $_GET["smode"];
588 $search_query_part = "(upper(title) LIKE upper('%$search%')
589 OR content LIKE '%$search%') AND";
591 $search_query_part = "";
594 $view_query_part = "";
596 if ($view_mode == "Starred") {
597 $view_query_part = " marked = true AND ";
600 if ($view_mode == "Unread") {
601 $view_query_part = " unread = true AND ";
604 if ($view_mode == "Unread or Starred") {
605 $view_query_part = " (unread = true OR marked = true) AND ";
608 if ($view_mode == "Unread or Updated") {
609 $view_query_part = " (unread = true OR last_read is NULL) AND ";
612 /* $result = db_query($link, "SELECT count(id) AS total_entries
613 FROM ttrss_entries WHERE
617 $total_entries = db_fetch_result($result, 0, "total_entries"); */
619 /* $result = db_query("SELECT count(id) AS unread_entries
620 FROM ttrss_entries WHERE
625 $unread_entries = db_fetch_result($result, 0, "unread_entries"); */
627 if ($limit && $limit != "All") {
628 $limit_query_part = "LIMIT " . $limit;
631 $vfeed_query_part = "";
633 // override query strategy and enable feed display when searching globally
634 if ($search_mode == "All feeds") {
635 $query_strategy_part = "id > 0";
636 $vfeed_query_part = "(SELECT title FROM ttrss_feeds WHERE
637 id = feed_id) as feed_title,";
638 } else if (sprintf("%d", $feed) == 0) {
639 $query_strategy_part = "ttrss_entries.id > 0";
640 $vfeed_query_part = "(SELECT title FROM ttrss_feeds WHERE
641 id = feed_id) as feed_title,";
642 } else if ($feed >= 0) {
643 $query_strategy_part = "feed_id = '$feed'";
644 } else if ($feed == -1) { // starred virtual feed
645 $query_strategy_part = "marked = true";
646 $vfeed_query_part = "(SELECT title FROM ttrss_feeds WHERE
647 id = feed_id) as feed_title,";
648 } else if ($feed <= -10) { // labels
649 $label_id = -$feed - 11;
651 $tmp_result = db_query($link, "SELECT sql_exp FROM ttrss_labels
652 WHERE id = '$label_id'");
654 $query_strategy_part = db_fetch_result($tmp_result, 0, "sql_exp");
656 $vfeed_query_part = "(SELECT title FROM ttrss_feeds WHERE
657 id = feed_id) as feed_title,";
659 $query_strategy_part = "id > 0"; // dumb
663 $order_by = "updated DESC";
665 // if ($feed < -10) {
666 // $order_by = "feed_id,updated DESC";
669 if ($feed < -10) error_reporting (0);
671 if (sprintf("%d", $feed) != 0) {
673 $result = db_query($link, "SELECT
674 id,title,updated,unread,feed_id,marked,link,last_read,
675 SUBSTRING(last_read,1,19) as last_read_noms,
677 SUBSTRING(updated,1,19) as updated_noms
681 owner_uid = '".$_SESSION["uid"]."' AND
684 $query_strategy_part ORDER BY $order_by
690 $result = db_query($link, "SELECT
691 ttrss_entries.id as id,title,updated,unread,feed_id,
692 marked,link,last_read,
693 SUBSTRING(last_read,1,19) as last_read_noms,
695 SUBSTRING(updated,1,19) as updated_noms
697 ttrss_entries,ttrss_tags
699 ttrss_entries.owner_uid = '".$_SESSION["uid"]."' AND
700 post_id = ttrss_entries.id AND tag_name = '$feed' AND
703 $query_strategy_part ORDER BY $order_by
708 print "<tr><td colspan='4' align='center'>
709 Could not display feed (query failed). Please check match syntax or local configuration.</td></tr>";
715 error_reporting (E_ERROR | E_WARNING | E_PARSE
);
719 while ($line = db_fetch_assoc($result)) {
721 $class = ($lnum %
2) ?
"even" : "odd";
724 $feed_id = $line["feed_id"];
726 // printf("L %d (%s) > U %d (%s) = %d<br>",
727 // strtotime($line["last_read_noms"]), $line["last_read_noms"],
728 // strtotime($line["updated"]), $line["updated"],
729 // strtotime($line["last_read"]) >= strtotime($line["updated"]));
731 /* if ($line["last_read"] != "" && $line["updated"] != "" &&
732 strtotime($line["last_read_noms"]) < strtotime($line["updated_noms"])) {
734 $update_pic = "<img id='FUPDPIC-$id' src=\"images/updated.png\"
739 $update_pic = "<img id='FUPDPIC-$id' src=\"images/blank_icon.gif\"
744 if ($line["last_read"] == "" &&
745 ($line["unread"] != "t" && $line["unread"] != "1")) {
747 $update_pic = "<img id='FUPDPIC-$id' src=\"images/updated.png\"
750 $update_pic = "<img id='FUPDPIC-$id' src=\"images/blank_icon.gif\"
754 if ($line["unread"] == "t" ||
$line["unread"] == "1") {
759 if ($line["marked"] == "t" ||
$line["marked"] == "1") {
760 $marked_pic = "<img id=\"FMARKPIC-$id\" src=\"images/mark_set.png\"
761 alt=\"Reset mark\" onclick='javascript:toggleMark($id, false)'>";
763 $marked_pic = "<img id=\"FMARKPIC-$id\" src=\"images/mark_unset.png\"
764 alt=\"Set mark\" onclick='javascript:toggleMark($id, true)'>";
767 $content_link = "<a id=\"FTITLE-$id\" href=\"javascript:view($id,$feed_id);\">" .
768 $line["title"] . "</a>";
770 print "<tr class='$class' id='RROW-$id'>";
771 // onclick=\"javascript:view($id,$feed_id)\">
773 print "<td valign='center' align='center'>$update_pic</td>";
774 print "<td valign='center' align='center'>$marked_pic</td>";
776 print "<td width='25%'>
777 <a href=\"javascript:view($id,$feed_id);\">".$line["updated"]."</a></td>";
779 if ($line["feed_title"]) {
780 print "<td width='50%'>$content_link</td>";
781 print "<td width='20%'>
782 <a href='javascript:viewfeed($feed_id)'>".$line["feed_title"]."</a></td>";
784 print "<td width='70%'>$content_link</td>";
793 print "<tr><td align='center'>No articles found.</td></tr>";
798 print "<script type=\"text/javascript\">
799 document.onkeydown = hotkey_handler;
800 update_label_counters('$feed');
804 print "</body></html>";
809 if ($op == "pref-rpc") {
811 $subop = $_GET["subop"];
813 if ($subop == "unread") {
814 $ids = split(",", $_GET["ids"]);
815 foreach ($ids as $id) {
816 db_query($link, "UPDATE ttrss_entries SET unread = true WHERE feed_id = '$id'");
819 print "Marked selected feeds as read.";
822 if ($subop == "read") {
823 $ids = split(",", $_GET["ids"]);
824 foreach ($ids as $id) {
825 db_query($link, "UPDATE ttrss_entries
826 SET unread = false,last_read = NOW() WHERE feed_id = '$id'");
829 print "Marked selected feeds as unread.";
835 if ($op == "pref-feeds") {
837 $subop = $_GET["subop"];
839 if ($subop == "editSave") {
840 $feed_title = db_escape_string($_GET["t"]);
841 $feed_link = db_escape_string($_GET["l"]);
842 $upd_intl = db_escape_string($_GET["ui"]);
843 $purge_intl = db_escape_string($_GET["pi"]);
844 $feed_id = $_GET["id"];
846 if (strtoupper($upd_intl) == "DEFAULT")
849 if (strtoupper($purge_intl) == "DEFAULT")
852 if (strtoupper($purge_intl) == "DISABLED")
855 $result = db_query($link, "UPDATE ttrss_feeds SET
856 title = '$feed_title', feed_url = '$feed_link',
857 update_interval = '$upd_intl',
858 purge_interval = '$purge_intl'
859 WHERE id = '$feed_id'");
863 if ($subop == "remove") {
865 if (!WEB_DEMO_MODE
) {
867 $ids = split(",", $_GET["ids"]);
869 foreach ($ids as $id) {
870 db_query($link, "DELETE FROM ttrss_feeds WHERE id = '$id'");
872 $icons_dir = ICONS_DIR
;
874 if (file_exists($icons_dir . "/$id.ico")) {
875 unlink($icons_dir . "/$id.ico");
881 if ($subop == "add") {
883 if (!WEB_DEMO_MODE
) {
885 $feed_link = db_escape_string($_GET["link"]);
887 $result = db_query($link,
888 "INSERT INTO ttrss_feeds (owner_uid,feed_url,title) VALUES ('".$_SESSION["uid"]."', '$feed_link', '')");
890 $result = db_query($link,
891 "SELECT id FROM ttrss_feeds WHERE feed_url = '$feed_link'");
893 $feed_id = db_fetch_result($result, 0, "id");
896 update_rss_feed($link, $feed_link, $feed_id);
901 $result = db_query($link, "SELECT id,title,feed_url,last_error
902 FROM ttrss_feeds WHERE last_error != ''");
904 if (db_num_rows($result) > 0) {
906 print "<div class=\"warning\">";
908 print "<b>Feeds with update errors:</b>";
910 print "<ul class=\"nomarks\">";
912 while ($line = db_fetch_assoc($result)) {
913 print "<li>" . $line["title"] . " (" . $line["feed_url"] . "): " .
922 print "<table class=\"prefAddFeed\"><tr>
923 <td><input id=\"fadd_link\"></td>
924 <td colspan=\"4\" align=\"right\">
925 <a class=\"button\" href=\"javascript:addFeed()\">Add feed</a></td></tr>
928 $result = db_query($link, "SELECT
929 id,title,feed_url,substring(last_updated,1,16) as last_updated,
930 update_interval,purge_interval
932 ttrss_feeds WHERE owner_uid = '".$_SESSION["uid"]."' ORDER by title");
934 print "<p><table width=\"100%\" class=\"prefFeedList\" id=\"prefFeedList\">";
935 print "<tr class=\"title\">
936 <td> </td><td>Select</td><td width=\"30%\">Title</td>
937 <td width=\"30%\">Link</td>
938 <td width=\"10%\">Update Interval</td>
939 <td width=\"10%\">Purge Days</td>
940 <td>Last updated</td></tr>";
944 while ($line = db_fetch_assoc($result)) {
946 $class = ($lnum %
2) ?
"even" : "odd";
948 $feed_id = $line["id"];
950 $edit_feed_id = $_GET["id"];
952 if ($subop == "edit" && $feed_id != $edit_feed_id) {
956 print "<tr class=\"$class\" id=\"FEEDR-$feed_id\">";
958 $icon_file = ICONS_DIR
. "/$feed_id.ico";
960 if (file_exists($icon_file) && filesize($icon_file) > 0) {
961 $feed_icon = "<img width=\"16\" height=\"16\"
962 src=\"" . ICONS_URL
. "/$feed_id.ico\">";
964 $feed_icon = " ";
966 print "<td align='center'>$feed_icon</td>";
968 $edit_title = htmlspecialchars(db_unescape_string($line["title"]));
969 $edit_link = htmlspecialchars(db_unescape_string($line["feed_url"]));
971 if (!$edit_feed_id ||
$subop != "edit") {
973 print "<td><input onclick='toggleSelectRow(this);'
974 type=\"checkbox\" id=\"FRCHK-".$line["id"]."\"></td>";
976 print "<td><a href=\"javascript:editFeed($feed_id);\">" .
977 $edit_title . "</a></td>";
978 print "<td><a href=\"javascript:editFeed($feed_id);\">" .
979 $edit_link . "</a></td>";
981 if ($line["update_interval"] == "0")
982 $line["update_interval"] = "Default";
984 print "<td><a href=\"javascript:editFeed($feed_id);\">" .
985 $line["update_interval"] . "</a></td>";
987 if ($line["purge_interval"] == "0")
988 $line["purge_interval"] = "Default";
990 if ($line["purge_interval"] < 0)
991 $line["purge_interval"] = "Disabled";
993 print "<td><a href=\"javascript:editFeed($feed_id);\">" .
994 $line["purge_interval"] . "</a></td>";
996 } else if ($feed_id != $edit_feed_id) {
998 print "<td><input disabled=\"true\" type=\"checkbox\"
999 id=\"FRCHK-".$line["id"]."\"></td>";
1001 print "<td>$edit_title</td>";
1002 print "<td>$edit_link</td>";
1004 if ($line["update_interval"] == "0")
1005 $line["update_interval"] = "Default";
1007 print "<td>" . $line["update_interval"] . "</td>";
1009 if ($line["purge_interval"] == "0")
1010 $line["purge_interval"] = "Default";
1012 if ($line["purge_interval"] < 0)
1013 $line["purge_interval"] = "Disabled";
1015 print "<td>" . $line["purge_interval"] . "</td>";
1019 print "<td><input disabled=\"true\" type=\"checkbox\" checked></td>";
1021 print "<td><input id=\"iedit_title\" value=\"$edit_title\"></td>";
1022 print "<td><input id=\"iedit_link\" value=\"$edit_link\"></td>";
1023 print "<td><input id=\"iedit_updintl\" value=\"".$line["update_interval"]."\"></td>";
1024 print "<td><input id=\"iedit_purgintl\" value=\"".$line["purge_interval"]."\"></td>";
1028 if (!$line["last_updated"]) $line["last_updated"] = "Never";
1030 print "<td>" . $line["last_updated"] . "</td>";
1038 print "<tr><td colspan=\"5\" align=\"center\">No feeds defined.</td></tr>";
1045 if ($subop == "edit") {
1046 print "Edit feed:
1047 <input type=\"submit\" class=\"button\"
1048 onclick=\"javascript:feedEditCancel()\" value=\"Cancel\">
1049 <input type=\"submit\" class=\"button\"
1050 onclick=\"javascript:feedEditSave()\" value=\"Save\">";
1055 <input type=\"submit\" class=\"button\"
1056 onclick=\"javascript:editSelectedFeed()\" value=\"Edit\">
1057 <input type=\"submit\" class=\"button\"
1058 onclick=\"javascript:removeSelectedFeeds()\" value=\"Remove\">";
1060 if (get_pref($link, 'ENABLE_PREFS_CATCHUP_UNCATCHUP')) {
1062 <input type=\"submit\" class=\"button\"
1063 onclick=\"javascript:readSelectedFeeds()\" value=\"Mark as read\">
1064 <input type=\"submit\" class=\"button\"
1065 onclick=\"javascript:unreadSelectedFeeds()\" value=\"Mark as unread\"> ";
1069 <input type=\"submit\"
1070 class=\"button\" onclick=\"gotoExportOpml()\" value=\"Export OPML\">";
1074 print "<h3>OPML Import</h3>
1075 <form enctype=\"multipart/form-data\" method=\"POST\" action=\"opml.php\">
1076 File: <input id=\"opml_file\" name=\"opml_file\" type=\"file\">
1077 <input class=\"button\" name=\"op\" onclick=\"return validateOpmlImport();\"
1078 type=\"submit\" value=\"Import\">
1083 if ($op == "pref-filters") {
1085 $subop = $_GET["subop"];
1087 if ($subop == "editSave") {
1089 $regexp = db_escape_string($_GET["r"]);
1090 $descr = db_escape_string($_GET["d"]);
1091 $match = db_escape_string($_GET["m"]);
1092 $filter_id = db_escape_string($_GET["id"]);
1094 $result = db_query($link, "UPDATE ttrss_filters SET
1095 reg_exp = '$regexp',
1096 description = '$descr',
1097 filter_type = (SELECT id FROM ttrss_filter_types WHERE
1098 description = '$match')
1099 WHERE id = '$filter_id'");
1102 if ($subop == "remove") {
1104 if (!WEB_DEMO_MODE
) {
1106 $ids = split(",", $_GET["ids"]);
1108 foreach ($ids as $id) {
1109 db_query($link, "DELETE FROM ttrss_filters WHERE id = '$id'");
1115 if ($subop == "add") {
1117 if (!WEB_DEMO_MODE
) {
1119 $regexp = db_escape_string($_GET["regexp"]);
1120 $match = db_escape_string($_GET["match"]);
1122 $result = db_query($link,
1123 "INSERT INTO ttrss_filters (reg_exp,filter_type,owner_uid) VALUES
1124 ('$regexp', (SELECT id FROM ttrss_filter_types WHERE
1125 description = '$match'),'".$_SESSION["uid"]."')");
1129 $result = db_query($link, "SELECT description
1130 FROM ttrss_filter_types ORDER BY description");
1132 $filter_types = array();
1134 while ($line = db_fetch_assoc($result)) {
1135 array_push($filter_types, $line["description"]);
1138 print "<table class=\"prefAddFeed\"><tr>
1139 <td><input id=\"fadd_regexp\"></td>
1141 print_select("fadd_match", "Title", $filter_types);
1143 print"</td><td colspan=\"4\" align=\"right\">
1144 <a class=\"button\" href=\"javascript:addFilter()\">Add filter</a></td></tr>
1147 $result = db_query($link, "SELECT
1148 id,reg_exp,description,
1149 (SELECT name FROM ttrss_filter_types WHERE
1150 id = filter_type) as filter_type_name,
1151 (SELECT description FROM ttrss_filter_types
1152 WHERE id = filter_type) as filter_type_descr
1156 owner_uid = ".$_SESSION["uid"]."
1159 print "<p><table width=\"100%\" class=\"prefFilterList\" id=\"prefFilterList\">";
1161 print "<tr class=\"title\">
1162 <td width=\"5%\">Select</td><td width=\"40%\">Filter expression</td>
1163 <td width=\"40%\">Description</td><td width=\"10%\">Match</td></tr>";
1167 while ($line = db_fetch_assoc($result)) {
1169 $class = ($lnum %
2) ?
"even" : "odd";
1171 $filter_id = $line["id"];
1172 $edit_filter_id = $_GET["id"];
1174 if ($subop == "edit" && $filter_id != $edit_filter_id) {
1178 print "<tr class=\"$class\" id=\"FILRR-$filter_id\">";
1180 $line["regexp"] = htmlspecialchars($line["reg_exp"]);
1181 $line["description"] = htmlspecialchars($line["description"]);
1183 if (!$edit_filter_id ||
$subop != "edit") {
1185 if (!$line["description"]) $line["description"] = "[No description]";
1187 print "<td><input onclick='toggleSelectRow(this);'
1188 type=\"checkbox\" id=\"FICHK-".$line["id"]."\"></td>";
1190 print "<td><a href=\"javascript:editFilter($filter_id);\">" .
1191 $line["reg_exp"] . "</td>";
1193 print "<td><a href=\"javascript:editFilter($filter_id);\">" .
1194 $line["description"] . "</td>";
1196 print "<td>".$line["filter_type_descr"]."</td>";
1198 } else if ($filter_id != $edit_filter_id) {
1200 if (!$line["description"]) $line["description"] = "[No description]";
1202 print "<td><input disabled=\"true\" type=\"checkbox\"
1203 id=\"FICHK-".$line["id"]."\"></td>";
1205 print "<td>".$line["reg_exp"]."</td>";
1206 print "<td>".$line["description"]."</td>";
1207 print "<td>".$line["filter_type_descr"]."</td>";
1211 print "<td><input disabled=\"true\" type=\"checkbox\" checked></td>";
1213 print "<td><input id=\"iedit_regexp\" value=\"".$line["reg_exp"].
1216 print "<td><input id=\"iedit_descr\" value=\"".$line["description"].
1220 print_select("iedit_match", $line["filter_type_descr"], $filter_types);
1232 print "<tr><td colspan=\"4\" align=\"center\">No filters defined.</td></tr>";
1239 if ($subop == "edit") {
1241 <input type=\"submit\" class=\"button\"
1242 onclick=\"javascript:filterEditCancel()\" value=\"Cancel\">
1243 <input type=\"submit\" class=\"button\"
1244 onclick=\"javascript:filterEditSave()\" value=\"Save\">";
1250 <input type=\"submit\" class=\"button\"
1251 onclick=\"javascript:editSelectedFilter()\" value=\"Edit\">
1252 <input type=\"submit\" class=\"button\"
1253 onclick=\"javascript:removeSelectedFilters()\" value=\"Remove\">";
1257 if ($op == "pref-labels") {
1259 $subop = $_GET["subop"];
1261 if ($subop == "editSave") {
1263 $sql_exp = $_GET["s"];
1264 $descr = $_GET["d"];
1265 $label_id = db_escape_string($_GET["id"]);
1267 // print "$sql_exp : $descr : $label_id";
1269 $result = db_query($link, "UPDATE ttrss_labels SET
1270 sql_exp = '$sql_exp',
1271 description = '$descr'
1272 WHERE id = '$label_id'");
1275 if ($subop == "remove") {
1277 if (!WEB_DEMO_MODE
) {
1279 $ids = split(",", $_GET["ids"]);
1281 foreach ($ids as $id) {
1282 db_query($link, "DELETE FROM ttrss_labels WHERE id = '$id'");
1288 if ($subop == "add") {
1290 if (!WEB_DEMO_MODE
) {
1292 $exp = $_GET["exp"];
1294 $result = db_query($link,
1295 "INSERT INTO ttrss_labels (sql_exp,description,owner_uid)
1296 VALUES ('$exp', '$exp', '".$_SESSION["uid"]."')");
1300 print "<table class=\"prefAddFeed\"><tr>
1301 <td><input id=\"ladd_expr\"></td>";
1303 print"<td colspan=\"4\" align=\"right\">
1304 <a class=\"button\" href=\"javascript:addLabel()\">Add label</a></td></tr>
1307 $result = db_query($link, "SELECT
1308 id,sql_exp,description
1312 owner_uid = ".$_SESSION["uid"]."
1313 ORDER by description");
1315 print "<p><table width=\"100%\" class=\"prefLabelList\" id=\"prefLabelList\">";
1317 print "<tr class=\"title\">
1318 <td width=\"5%\">Select</td><td width=\"40%\">SQL expression
1319 <a class=\"helpLink\" href=\"javascript:popupHelp(1)\">(?)</a>
1321 <td width=\"40%\">Caption</td></tr>";
1325 while ($line = db_fetch_assoc($result)) {
1327 $class = ($lnum %
2) ?
"even" : "odd";
1329 $label_id = $line["id"];
1330 $edit_label_id = $_GET["id"];
1332 if ($subop == "edit" && $label_id != $edit_label_id) {
1336 print "<tr class=\"$class\" id=\"LILRR-$label_id\">";
1338 $line["sql_exp"] = htmlspecialchars($line["sql_exp"]);
1339 $line["description"] = htmlspecialchars($line["description"]);
1341 if (!$edit_label_id ||
$subop != "edit") {
1343 if (!$line["description"]) $line["description"] = "[No caption]";
1345 print "<td><input onclick='toggleSelectRow(this);'
1346 type=\"checkbox\" id=\"LICHK-".$line["id"]."\"></td>";
1348 print "<td><a href=\"javascript:editLabel($label_id);\">" .
1349 $line["sql_exp"] . "</td>";
1351 print "<td><a href=\"javascript:editLabel($label_id);\">" .
1352 $line["description"] . "</td>";
1354 } else if ($label_id != $edit_label_id) {
1356 if (!$line["description"]) $line["description"] = "[No description]";
1358 print "<td><input disabled=\"true\" type=\"checkbox\"
1359 id=\"LICHK-".$line["id"]."\"></td>";
1361 print "<td>".$line["sql_exp"]."</td>";
1362 print "<td>".$line["description"]."</td>";
1366 print "<td><input disabled=\"true\" type=\"checkbox\" checked></td>";
1368 print "<td><input id=\"iedit_expr\" value=\"".$line["sql_exp"].
1371 print "<td><input id=\"iedit_descr\" value=\"".$line["description"].
1383 print "<tr><td colspan=\"4\" align=\"center\">No labels defined.</td></tr>";
1390 if ($subop == "edit") {
1392 <input type=\"submit\" class=\"button\"
1393 onclick=\"javascript:labelEditCancel()\" value=\"Cancel\">
1394 <input type=\"submit\" class=\"button\"
1395 onclick=\"javascript:labelEditSave()\" value=\"Save\">";
1401 <input type=\"submit\" class=\"button\"
1402 onclick=\"javascript:editSelectedLabel()\" value=\"Edit\">
1403 <input type=\"submit\" class=\"button\"
1404 onclick=\"javascript:removeSelectedLabels()\" value=\"Remove\">";
1408 if ($op == "error") {
1409 print "<div width=\"100%\" align='center'>";
1410 $msg = $_GET["msg"];
1415 if ($op == "help") {
1417 <title>Tiny Tiny RSS : Help</title>
1418 <link rel=\"stylesheet\" href=\"tt-rss.css\" type=\"text/css\">
1419 <script type=\"text/javascript\" src=\"functions.js\"></script>
1420 <meta http-equiv=\"Content-Type\" content=\"text/html; charset=utf-8\">
1423 $tid = sprintf("%d", $_GET["tid"]);
1425 /* FIXME this badly needs real implementation */
1427 print "<div class='helpResponse'>";
1431 <h1
>Help
for SQL expressions
</h1
>
1433 <h2
>Description
</h2
>
1435 <p
>The
«
;SQL expression
»
; is added to WHERE clause of
1436 view feed query
. You can match on ttrss_entries table fields
1437 and even
use subselect to query additional information
. This
1438 functionality is considered to be advanced
and requires basic
1439 understanding of SQL
.</p
>
1443 <pre
>unread
= true</pre
>
1445 Matches all unread articles
1447 <pre
>title like
'%Linux%'</pre
>
1449 Matches all articles which mention Linux in the title
. You get the idea
.
1451 <p
>See the database schema included in the distribution package
for gruesome
1456 print "<div align='center'>
1457 <a class=\"helpLink\"
1458 href=\"javascript:window.close()\">(Close this window)</a></div>";
1462 print "</body></html>";
1468 $param = $_GET["param"];
1470 if ($id == "quickAddFeed") {
1471 print "Feed URL: <input
1472 onblur=\"javascript:enableHotkeys()\" onfocus=\"javascript:disableHotkeys()\"
1474 <input class=\"button\"
1475 type=\"submit\" onclick=\"javascript:qafAdd()\" value=\"Add feed\">
1476 <input class=\"button\"
1477 type=\"submit\" onclick=\"javascript:closeDlg()\"
1481 if ($id == "quickDelFeed") {
1483 $param = db_escape_string($param);
1485 $result = db_query($link, "SELECT title FROM ttrss_feeds WHERE id = '$param'");
1489 $f_title = db_fetch_result($result, 0, "title");
1491 print "Remove current feed ($f_title)?
1492 <input class=\"button\"
1493 type=\"submit\" onclick=\"javascript:qfdDelete($param)\" value=\"Remove\">
1494 <input class=\"button\"
1495 type=\"submit\" onclick=\"javascript:closeDlg()\"
1498 print "Error: Feed $param not found.
1499 <input class=\"button\"
1500 type=\"submit\" onclick=\"javascript:closeDlg()\"
1505 if ($id == "search") {
1507 print "<input id=\"searchbox\" class=\"extSearch\"
1508 onblur=\"javascript:enableHotkeys()\" onfocus=\"javascript:disableHotkeys()\"
1509 onchange=\"javascript:search()\">
1510 <select id=\"searchmodebox\">
1511 <option selected>All feeds</option>
1512 <option>This feed</option>
1514 <input type=\"submit\"
1515 class=\"button\" onclick=\"javascript:search()\" value=\"Search\">
1516 <input class=\"button\"
1517 type=\"submit\" onclick=\"javascript:closeDlg()\"
1524 if ($op == "updateAllFeeds") {
1525 update_all_feeds($link, true);
1527 print "<rpc-reply>";
1528 getLabelCounters($link);
1529 getFeedCounters($link);
1530 getTagCounters($link);
1531 getGlobalCounters($link);
1532 print "</rpc-reply>";
1536 if ($op == "pref-prefs") {
1538 $subop = $_REQUEST["subop"];
1540 if ($subop == "Save configuration") {
1542 if (WEB_DEMO_MODE
) return;
1544 foreach (array_keys($_POST) as $pref_name) {
1546 $pref_name = db_escape_string($pref_name);
1547 $value = db_escape_string($_POST[$pref_name]);
1549 $result = db_query($link, "SELECT type_name
1550 FROM ttrss_prefs,ttrss_prefs_types
1551 WHERE pref_name = '$pref_name' AND type_id = ttrss_prefs_types.id");
1553 if (db_num_rows($result) > 0) {
1555 $type_name = db_fetch_result($result, 0, "type_name");
1557 // print "$pref_name : $type_name : $value<br>";
1559 if ($type_name == "bool") {
1560 if ($value == "1") {
1565 } else if ($type_name == "integer") {
1566 $value = sprintf("%d", $value);
1569 // print "$pref_name : $type_name : $value<br>";
1571 db_query($link, "UPDATE ttrss_user_prefs SET value = '$value'
1572 WHERE pref_name = '$pref_name' AND owner_uid = ".$_SESSION["uid"]);
1576 header("Location: prefs.php");
1580 } else if ($subop == "getHelp") {
1582 $pref_name = db_escape_string($_GET["pn"]);
1584 $result = db_query($link, "SELECT help_text FROM ttrss_prefs
1585 WHERE pref_name = '$pref_name'");
1587 if (db_num_rows($result) > 0) {
1588 $help_text = db_fetch_result($result, 0, "help_text");
1591 print "Unknown option: $pref_name";
1594 } else if ($subop == "Change password") {
1596 if (WEB_DEMO_MODE
) return;
1598 $old_pw = $_POST["OLD_PASSWORD"];
1599 $new_pw = $_POST["OLD_PASSWORD"];
1601 $old_pw_hash = 'SHA1:' . sha1($_POST["OLD_PASSWORD"]);
1602 $new_pw_hash = 'SHA1:' . sha1($_POST["NEW_PASSWORD"]);
1604 $active_uid = $_SESSION["uid"];
1606 if ($old_pw && $new_pw) {
1608 $login = db_escape_string($_SERVER['PHP_AUTH_USER']);
1610 $result = db_query($link, "SELECT id FROM ttrss_users WHERE
1611 id = '$active_uid' AND (pwd_hash = '$old_pw' OR
1612 pwd_hash = '$old_pw_hash')");
1614 if (db_num_rows($result) == 1) {
1615 db_query($link, "UPDATE ttrss_users SET pwd_hash = '$new_pw_hash'
1616 WHERE id = '$active_uid'");
1620 header("Location: prefs.php");
1622 } else if ($subop == "Reset to defaults") {
1624 if (WEB_DEMO_MODE
) return;
1626 if (DB_TYPE
== "pgsql") {
1627 db_query($link,"UPDATE ttrss_user_prefs
1628 SET value = ttrss_prefs.def_value
1629 WHERE owner_uid = '".$_SESSION["uid"]."' AND
1630 ttrss_prefs.pref_name = ttrss_user_prefs.pref_name");
1632 db_query($link, "DELETE FROM ttrss_user_prefs
1633 WHERE owner_uid = ".$_SESSION["uid"]);
1634 initialize_user_prefs($link, $_SESSION["uid"]);
1637 header("Location: prefs.php");
1641 if (!SINGLE_USER_MODE
) {
1643 print "<form action=\"backend.php\" method=\"POST\">";
1645 print "<table width=\"100%\" class=\"prefPrefsList\">";
1646 print "<tr><td colspan='3'><h3>Authentication</h3></tr></td>";
1648 print "<tr><td width=\"40%\">Old password</td>";
1649 print "<td><input class=\"editbox\" type=\"password\"
1650 name=\"OLD_PASSWORD\"></td></tr>";
1652 print "<tr><td width=\"40%\">New password</td>";
1654 print "<td><input class=\"editbox\" type=\"password\"
1655 name=\"NEW_PASSWORD\"></td></tr>";
1659 print "<input type=\"hidden\" name=\"op\" value=\"pref-prefs\">";
1661 print "<p><input class=\"button\" type=\"submit\"
1662 value=\"Change password\" name=\"subop\">";
1668 $result = db_query($link, "SELECT
1669 ttrss_user_prefs.pref_name,short_desc,help_text,value,type_name,
1670 section_name,def_value
1671 FROM ttrss_prefs,ttrss_prefs_types,ttrss_prefs_sections,ttrss_user_prefs
1672 WHERE type_id = ttrss_prefs_types.id AND
1673 section_id = ttrss_prefs_sections.id AND
1674 ttrss_user_prefs.pref_name = ttrss_prefs.pref_name AND
1675 owner_uid = ".$_SESSION["uid"]."
1676 ORDER BY section_id,short_desc");
1678 print "<form action=\"backend.php\" method=\"POST\">";
1682 $active_section = "";
1684 while ($line = db_fetch_assoc($result)) {
1686 if ($active_section != $line["section_name"]) {
1688 if ($active_section != "") {
1692 print "<p><table width=\"100%\" class=\"prefPrefsList\">";
1694 $active_section = $line["section_name"];
1696 print "<tr><td colspan=\"3\"><h3>$active_section</h3></td></tr>";
1697 // print "<tr class=\"title\">
1698 // <td width=\"25%\">Option</td><td>Value</td></tr>";
1703 // $class = ($lnum % 2) ? "even" : "odd";
1707 $type_name = $line["type_name"];
1708 $pref_name = $line["pref_name"];
1709 $value = $line["value"];
1710 $def_value = $line["def_value"];
1711 $help_text = $line["help_text"];
1713 print "<td width=\"40%\" id=\"$pref_name\">" . $line["short_desc"];
1715 if ($help_text) print "<div class=\"prefHelp\">$help_text</div>";
1721 if ($type_name == "bool") {
1722 // print_select($pref_name, $value, array("true", "false"));
1724 if ($value == "true") {
1730 print_radio($pref_name, $value, array("Yes", "No"));
1733 print "<input class=\"editbox\" name=\"$pref_name\" value=\"$value\">";
1745 print "<input type=\"hidden\" name=\"op\" value=\"pref-prefs\">";
1747 print "<p><input class=\"button\" type=\"submit\"
1748 name=\"subop\" value=\"Save configuration\">";
1750 print " <input class=\"button\" type=\"submit\"
1751 name=\"subop\" value=\"Reset to defaults\"></p>";
1759 if ($op == "pref-users") {
1761 $subop = $_GET["subop"];
1763 if ($subop == "editSave") {
1765 if (!WEB_DEMO_MODE
) {
1767 $login = db_escape_string($_GET["l"]);
1768 $uid = db_escape_string($_GET["id"]);
1769 $access_level = sprintf("%d", $_GET["al"]);
1771 db_query($link, "UPDATE ttrss_users SET login = '$login', access_level = '$access_level' WHERE id = '$uid'");
1774 } else if ($subop == "remove") {
1776 if (!WEB_DEMO_MODE
&& $_SESSION["access_level"] >= 10) {
1778 $ids = split(",", $_GET["ids"]);
1780 foreach ($ids as $id) {
1781 db_query($link, "DELETE FROM ttrss_users WHERE id = '$id' AND id != " . $_SESSION["uid"]);
1785 } else if ($subop == "add") {
1787 if (!WEB_DEMO_MODE
&& $_SESSION["access_level"] >= 10) {
1789 $login = db_escape_string($_GET["login"]);
1790 $tmp_user_pwd = make_password(8);
1791 $pwd_hash = 'SHA1:' . sha1($tmp_user_pwd);
1793 db_query($link, "INSERT INTO ttrss_users (login,pwd_hash,access_level)
1794 VALUES ('$login', '$pwd_hash', 0)");
1797 $result = db_query($link, "SELECT id FROM ttrss_users WHERE
1798 login = '$login' AND pwd_hash = '$pwd_hash'");
1800 if (db_num_rows($result) == 1) {
1802 $new_uid = db_fetch_result($result, 0, "id");
1804 print "<div class=\"notice\">Added user <b>".$_GET["login"].
1805 "</b> with password <b>$tmp_user_pwd</b>.</div>";
1807 initialize_user($link, $new_uid);
1811 print "<div class=\"warning\">Error while adding user <b>".
1812 $_GET["login"].".</b></div>";
1816 } else if ($subop == "resetPass") {
1818 if (!WEB_DEMO_MODE
&& $_SESSION["access_level"] >= 10) {
1820 $uid = db_escape_string($_GET["id"]);
1822 $result = db_query($link, "SELECT login FROM ttrss_users WHERE id = '$uid'");
1824 $login = db_fetch_result($result, 0, "login");
1825 $tmp_user_pwd = make_password(8);
1826 $pwd_hash = 'SHA1:' . sha1($tmp_user_pwd);
1828 db_query($link, "UPDATE ttrss_users SET pwd_hash = '$pwd_hash'
1829 WHERE id = '$uid'");
1831 print "<div class=\"notice\">Changed password of
1832 user <b>$login</b> to <b>$tmp_user_pwd</b>.</div>";
1837 print "<table class=\"prefAddFeed\"><tr>
1838 <td><input id=\"uadd_box\"></td>";
1840 print"<td colspan=\"4\" align=\"right\">
1841 <a class=\"button\" href=\"javascript:addUser()\">Add user</a></td></tr>
1844 $result = db_query($link, "SELECT
1845 id,login,access_level,last_login
1850 print "<p><table width=\"100%\" class=\"prefUserList\" id=\"prefUserList\">";
1852 print "<tr class=\"title\">
1853 <td width=\"5%\">Select</td>
1854 <td width='30%'>Username</td>
1855 <td width='30%'>Access Level</td>
1856 <td width='30%'>Last login</td></tr>";
1860 while ($line = db_fetch_assoc($result)) {
1862 $class = ($lnum %
2) ?
"even" : "odd";
1865 $edit_uid = $_GET["id"];
1867 if ($uid == $_SESSION["uid"] ||
($subop == "edit" && $uid != $edit_uid)) {
1871 print "<tr class=\"$class\" id=\"UMRR-$uid\">";
1873 $line["login"] = htmlspecialchars($line["login"]);
1875 if ($uid == $_SESSION["uid"]) {
1877 print "<td><input disabled=\"true\" type=\"checkbox\"
1878 id=\"UMCHK-".$line["id"]."\"></td>";
1880 print "<td>".$line["login"]."</td>";
1881 print "<td>".$line["access_level"]."</td>";
1883 } else if (!$edit_uid ||
$subop != "edit") {
1885 print "<td><input onclick='toggleSelectRow(this);'
1886 type=\"checkbox\" id=\"UMCHK-".$line["id"]."\"></td>";
1888 print "<td><a href=\"javascript:editUser($uid);\">" .
1889 $line["login"] . "</td>";
1891 print "<td><a href=\"javascript:editUser($uid);\">" .
1892 $line["access_level"] . "</td>";
1894 } else if ($uid != $edit_uid) {
1896 print "<td><input disabled=\"true\" type=\"checkbox\"
1897 id=\"UMCHK-".$line["id"]."\"></td>";
1899 print "<td>".$line["login"]."</td>";
1900 print "<td>".$line["access_level"]."</td>";
1904 print "<td><input disabled=\"true\" type=\"checkbox\" checked></td>";
1906 print "<td><input id=\"iedit_ulogin\" value=\"".$line["login"].
1909 print "<td><input id=\"iedit_ulevel\" value=\"".$line["access_level"].
1914 print "<td>".$line["last_login"]."</td>";
1925 if ($subop == "edit") {
1927 <input type=\"submit\" class=\"button\"
1928 onclick=\"javascript:userEditCancel()\" value=\"Cancel\">
1929 <input type=\"submit\" class=\"button\"
1930 onclick=\"javascript:userEditSave()\" value=\"Save\">";
1936 <input type=\"submit\" class=\"button\"
1937 onclick=\"javascript:selectedUserDetails()\" value=\"User details\">
1938 <input type=\"submit\" class=\"button\"
1939 onclick=\"javascript:editSelectedUser()\" value=\"Edit\">
1940 <input type=\"submit\" class=\"button\"
1941 onclick=\"javascript:removeSelectedUsers()\" value=\"Remove\">
1942 <input type=\"submit\" class=\"button\"
1943 onclick=\"javascript:resetSelectedUserPass()\" value=\"Reset password\">";
1948 if ($op == "user-details") {
1950 if (WEB_DEMO_MODE ||
$_SESSION["access_level"] < 10) {
1955 <title>Tiny Tiny RSS : User Details</title>
1956 <link rel=\"stylesheet\" href=\"tt-rss.css\" type=\"text/css\">
1957 <meta http-equiv=\"Content-Type\" content=\"text/html; charset=utf-8\">
1960 $uid = sprintf("%d", $_GET["id"]);
1962 /* FIXME this badly needs real implementation */
1964 print "<div class='userDetails'>";
1966 $result = db_query($link, "SELECT login,last_login,access_level
1968 WHERE id = '$uid'");
1970 if (db_num_rows($result) == 0) {
1971 print "<h1>User not found</h1>";
1975 print "<h1>User Details</h1>";
1977 print "<table width='100%'>";
1979 $login = db_fetch_result($result, 0, "login");
1980 $last_login = db_fetch_result($result, 0, "last_login");
1981 $access_level = db_fetch_result($result, 0, "access_level");
1983 print "<tr><td>Username</td><td>$login</td></tr>";
1984 print "<tr><td>Access level</td><td>$access_level</td></tr>";
1985 print "<tr><td>Last logged in</td><td>$last_login</td></tr>";
1987 $result = db_query($link, "SELECT COUNT(id) as num_feeds FROM ttrss_feeds
1988 WHERE owner_uid = '$uid'");
1990 $num_feeds = db_fetch_result($result, 0, "num_feeds");
1992 print "<tr><td>Subscribed feeds count</td><td>$num_feeds</td></tr>";
1994 $result = db_query($link, "SELECT
1995 SUM(LENGTH(content)+LENGTH(title)+LENGTH(link)+LENGTH(guid)) AS db_size
1996 FROM ttrss_entries WHERE owner_uid = '$uid'");
1998 $db_size = db_fetch_result($result, 0, "db_size");
2000 print "<tr><td>Approx. DB size</td><td>$db_size bytes</td></tr>";
2004 print "<h1>Subscribed feeds</h1>";
2006 $result = db_query($link, "SELECT id,title,feed_url FROM ttrss_feeds
2007 WHERE owner_uid = '$uid'");
2009 print "<ul class=\"nomarks\">";
2011 while ($line = db_fetch_assoc($result)) {
2013 $icon_file = ICONS_URL
."/".$line["id"].".ico";
2015 if (file_exists($icon_file) && filesize($icon_file) > 0) {
2016 $feed_icon = "<img class=\"feedIcon\" src=\"$icon_file\">";
2018 $feed_icon = "<img class=\"feedIcon\" src=\"images/blank_icon.gif\">";
2021 print "<li>$feed_icon <a href=\"".$line["feed_url"]."\">".$line["title"]."</a></li>";
2026 print "<p align='center'>
2027 <a href=\"javascript:window.close()\">(Close this window)</a></p>";
2031 print "</body></html>";
2038 <!-- <?
= sprintf("Backend execution time: %.4f seconds", getmicrotime() - $script_started) ?
> -->