2 require_once "sessions.php";
3 require_once "backend-rpc.php";
5 header("Cache-Control: no-cache, must-revalidate");
6 header("Pragma: no-cache");
9 /* if ($_GET["debug"]) {
10 define('DEFAULT_ERROR_LEVEL', E_ALL);
12 define('DEFAULT_ERROR_LEVEL', E_ERROR | E_WARNING | E_PARSE);
15 error_reporting(DEFAULT_ERROR_LEVEL); */
17 $op = $_REQUEST["op"];
19 define('SCHEMA_VERSION', 11);
21 require_once "sanity_check.php";
22 require_once "config.php";
24 require_once "db.php";
25 require_once "db-prefs.php";
26 require_once "functions.php";
28 $err_msg = check_configuration_variables();
30 $print_exec_time = true;
33 header("Content-Type: application/xml");
34 print_error_xml(9, $err_msg); die;
37 if ((!$op ||
$op == "rpc" ||
$op == "rss" ||
$op == "digestSend" ||
38 $op == "globalUpdateFeeds") && !$_REQUEST["noxml"]) {
39 header("Content-Type: application/xml");
43 header("Content-Type: application/xml");
44 print_error_xml(7); exit;
47 if (!$_SESSION["uid"] && $op != "globalUpdateFeeds" && $op != "rss" && $op != "getUnread") {
50 print_error_xml(6); die;
54 <p>Error: Not logged in.</p>
55 <script type=\"text/javascript\">
56 if (parent.window != 'undefined') {
57 parent.window.location = \"login.php\";
59 window.location = \"login.php\";
68 $purge_intervals = array(
75 90 => "3 months old");
77 $update_intervals = array(
79 -1 => "Disable updates",
80 30 => "Each 30 minutes",
82 240 => "Each 4 hours",
83 720 => "Each 12 hours",
87 $access_level_names = array(
89 10 => "Administrator");
91 $script_started = getmicrotime();
93 $link = db_connect(DB_HOST
, DB_USER
, DB_PASS
, DB_NAME
);
96 if (DB_TYPE
== "mysql") {
99 // PG seems to display its own errors just fine by default.
103 if (DB_TYPE
== "pgsql") {
104 pg_query("set client_encoding = 'utf-8'");
107 if ($_SESSION["uid"]) {
109 // setcookie('ttrss_vf_refresh', FEEDS_FRAME_REFRESH);
110 // setcookie('ttrss_vf_daemon', ENABLE_UPDATE_DAEMON);
112 /* if (get_pref($link, "ON_CATCHUP_SHOW_NEXT_FEED")) {
113 setcookie('ttrss_vf_catchupnext', 1);
115 setcookie('ttrss_vf_catchupnext', 0);
119 $fetch = $_GET["fetch"];
121 // setcookie("ttrss_icons_url", ICONS_URL);
123 if (!sanity_check($link)) { return; }
125 function outputFeedList($link, $tags = false) {
127 print "<ul class=\"feedList\" id=\"feedList\">\n";
129 $owner_uid = $_SESSION["uid"];
135 if (get_pref($link, 'ENABLE_FEED_CATS')) {
136 print "<li class=\"feedCat\">Special</li>";
137 print "<li id=\"feedCatHolder\"><ul class=\"feedCatList\">";
140 $num_starred = getFeedUnread($link, -1);
144 if ($num_starred > 0) $class .= "Unread";
146 printFeedEntry(-1, $class, "Starred articles", $num_starred,
147 "images/mark_set.png", $link);
149 if (get_pref($link, 'ENABLE_FEED_CATS')) {
153 if (GLOBAL_ENABLE_LABELS
&& get_pref($link, 'ENABLE_LABELS')) {
155 $result = db_query($link, "SELECT id,sql_exp,description FROM
156 ttrss_labels WHERE owner_uid = '$owner_uid' ORDER by description");
158 if (db_num_rows($result) > 0) {
159 if (get_pref($link, 'ENABLE_FEED_CATS')) {
160 print "<li class=\"feedCat\">Labels</li>";
161 print "<li id=\"feedCatHolder\"><ul class=\"feedCatList\">";
163 print "<li><hr></li>";
167 while ($line = db_fetch_assoc($result)) {
171 $label_id = -$line['id'] - 11;
172 $count = getFeedUnread($link, $label_id);
180 error_reporting (DEFAULT_ERROR_LEVEL
);
182 printFeedEntry($label_id,
183 $class, db_unescape_string($line["description"]),
184 $count, "images/label.png", $link);
188 if (db_num_rows($result) > 0) {
189 if (get_pref($link, 'ENABLE_FEED_CATS')) {
196 if (!get_pref($link, 'ENABLE_FEED_CATS')) {
197 print "<li><hr></li>";
200 if (get_pref($link, 'ENABLE_FEED_CATS')) {
201 if (get_pref($link, "FEEDS_SORT_BY_UNREAD")) {
202 $order_by_qpart = "category,unread DESC,title";
204 $order_by_qpart = "category,title";
207 if (get_pref($link, "FEEDS_SORT_BY_UNREAD")) {
208 $order_by_qpart = "unread DESC,title";
210 $order_by_qpart = "title";
214 $result = db_query($link, "SELECT ttrss_feeds.*,
215 SUBSTRING(last_updated,1,19) AS last_updated_noms,
216 (SELECT COUNT(id) FROM ttrss_entries,ttrss_user_entries
217 WHERE feed_id = ttrss_feeds.id AND unread = true
218 AND ttrss_user_entries.ref_id = ttrss_entries.id
219 AND owner_uid = '$owner_uid') as unread,
221 ttrss_feed_categories.title AS category,
222 ttrss_feed_categories.collapsed
223 FROM ttrss_feeds LEFT JOIN ttrss_feed_categories
224 ON (ttrss_feed_categories.id = cat_id)
226 ttrss_feeds.hidden = false AND
227 ttrss_feeds.owner_uid = '$owner_uid' AND parent_feed IS NULL
228 ORDER BY $order_by_qpart");
230 $actid = $_GET["actid"];
240 $short_date = get_pref($link, 'SHORT_DATE_FORMAT');
242 while ($line = db_fetch_assoc($result)) {
244 $feed = db_unescape_string($line["title"]);
245 $feed_id = $line["id"];
247 $subop = $_GET["subop"];
249 $unread = $line["unread"];
251 if (get_pref($link, 'HEADLINES_SMART_DATE')) {
252 $last_updated = smart_date_time(strtotime($line["last_updated_noms"]));
254 $last_updated = date($short_date, strtotime($line["last_updated_noms"]));
257 $rtl_content = sql_bool_to_bool($line["rtl_content"]);
260 $rtl_tag = "dir=\"RTL\"";
265 $tmp_result = db_query($link,
266 "SELECT id,COUNT(unread) AS unread
267 FROM ttrss_feeds LEFT JOIN ttrss_user_entries
268 ON (ttrss_feeds.id = ttrss_user_entries.feed_id)
269 WHERE parent_feed = '$feed_id' AND unread = true
270 GROUP BY ttrss_feeds.id");
272 if (db_num_rows($tmp_result) > 0) {
273 while ($l = db_fetch_assoc($tmp_result)) {
274 $unread +
= $l["unread"];
278 $cat_id = $line["cat_id"];
280 $tmp_category = $line["category"];
282 if (!$tmp_category) {
283 $tmp_category = "Uncategorized";
286 // $class = ($lnum % 2) ? "even" : "odd";
288 if ($line["last_error"]) {
294 if ($unread > 0) $class .= "Unread";
296 if ($actid == $feed_id) {
297 $class .= "Selected";
300 $total_unread +
= $unread;
302 if ($category != $tmp_category && get_pref($link, 'ENABLE_FEED_CATS')) {
308 $category = $tmp_category;
310 $collapsed = $line["collapsed"];
312 // workaround for NULL category
313 if ($category == "Uncategorized") {
314 if ($_COOKIE["ttrss_vf_uclps"] == 1) {
319 if ($collapsed == "t" ||
$collapsed == "1") {
320 $holder_class = "invisible";
327 $cat_id = sprintf("%d", $cat_id);
329 $cat_unread = getCategoryUnread($link, $cat_id);
331 print "<li class=\"feedCat\" id=\"FCAT-$cat_id\">
332 <a id=\"FCATN-$cat_id\" href=\"javascript:toggleCollapseCat($cat_id)\">$tmp_category</a>
333 <a href=\"javascript:viewCategory($cat_id)\" id=\"FCAP-$cat_id\">
334 <span id=\"FCATCTR-$cat_id\"
335 class=\"$catctr_class\">($cat_unread unread)$ellipsis</span>
338 // !!! NO SPACE before <ul...feedCatList - breaks firstChild DOM function
339 // -> keyboard navigation, etc.
340 print "<li id=\"feedCatHolder\" class=\"$holder_class\"><ul class=\"feedCatList\" id=\"FCATLIST-$cat_id\">";
343 printFeedEntry($feed_id, $class, $feed, $unread,
344 "icons/$feed_id.ico", $link, $rtl_content,
345 $last_updated, $line["last_error"]);
350 if (db_num_rows($result) == 0) {
351 print "<li>No feeds to display.</li>";
358 /* $result = db_query($link, "SELECT tag_name,count(ttrss_entries.id) AS count
359 FROM ttrss_tags,ttrss_entries,ttrss_user_entries WHERE
360 post_int_id = ttrss_user_entries.int_id AND
361 unread = true AND ref_id = ttrss_entries.id
362 AND ttrss_tags.owner_uid = '$owner_uid' GROUP BY tag_name
364 select tag_name,0 as count FROM ttrss_tags WHERE owner_uid = '$owner_uid'
365 ORDER BY tag_name"); */
367 if (get_pref($link, 'ENABLE_FEED_CATS')) {
368 print "<li class=\"feedCat\">Tags</li>";
369 print "<li id=\"feedCatHolder\"><ul class=\"feedCatList\">";
372 $result = db_query($link, "SELECT tag_name,SUM((SELECT COUNT(int_id)
373 FROM ttrss_user_entries WHERE int_id = post_int_id
374 AND unread = true)) AS count FROM ttrss_tags
375 WHERE owner_uid = 2 GROUP BY tag_name ORDER BY tag_name");
379 while ($line = db_fetch_assoc($result)) {
380 $tags[$line["tag_name"]] +
= $line["count"];
383 foreach (array_keys($tags) as $tag) {
385 $unread = $tags[$tag];
393 printFeedEntry($tag, $class, $tag, $unread, "images/tag.png", $link);
397 if (db_num_rows($result) == 0) {
398 print "<li>No tags to display.</li>";
401 if (get_pref($link, 'ENABLE_FEED_CATS')) {
413 handle_rpc_request($link);
416 if ($op == "feeds") {
418 $tags = $_GET["tags"];
420 $subop = $_GET["subop"];
422 if ($subop == "catchupAll") {
423 db_query($link, "UPDATE ttrss_user_entries SET
424 last_read = NOW(),unread = false WHERE owner_uid = " . $_SESSION["uid"]);
427 if ($subop == "collapse") {
428 $cat_id = db_escape_string($_GET["cid"]);
430 db_query($link, "UPDATE ttrss_feed_categories SET
431 collapsed = NOT collapsed WHERE id = '$cat_id' AND owner_uid = " .
436 outputFeedList($link, $tags);
442 $id = db_escape_string($_GET["id"]);
443 $feed_id = db_escape_string($_GET["feed"]);
445 $result = db_query($link, "SELECT rtl_content FROM ttrss_feeds
446 WHERE id = '$feed_id' AND owner_uid = " . $_SESSION["uid"]);
448 if (db_num_rows($result) == 1) {
449 $rtl_content = sql_bool_to_bool(db_fetch_result($result, 0, "rtl_content"));
451 $rtl_content = false;
455 $rtl_tag = "dir=\"RTL\"";
462 $result = db_query($link, "UPDATE ttrss_user_entries
463 SET unread = false,last_read = NOW()
464 WHERE ref_id = '$id' AND feed_id = '$feed_id' AND owner_uid = " . $_SESSION["uid"]);
466 $result = db_query($link, "SELECT title,link,content,feed_id,comments,int_id,
467 SUBSTRING(updated,1,16) as updated,
468 (SELECT icon_url FROM ttrss_feeds WHERE id = feed_id) as icon_url,
471 FROM ttrss_entries,ttrss_user_entries
472 WHERE id = '$id' AND ref_id = id AND owner_uid = " . $_SESSION["uid"]);
478 if (get_pref($link, 'OPEN_LINKS_IN_NEW_WINDOW')) {
479 $link_target = "target=\"_new\"";
482 $line = db_fetch_assoc($result);
484 if ($line["icon_url"]) {
485 $feed_icon = "<img class=\"feedIcon\" src=\"" . $line["icon_url"] . "\">";
487 $feed_icon = " ";
490 /* if ($line["comments"] && $line["link"] != $line["comments"]) {
491 $entry_comments = "(<a href=\"".$line["comments"]."\">Comments</a>)";
493 $entry_comments = "";
496 $num_comments = $line["num_comments"];
497 $entry_comments = "";
499 if ($num_comments > 0) {
500 if ($line["comments"]) {
501 $comments_url = $line["comments"];
503 $comments_url = $line["link"];
505 $entry_comments = "<a $link_target href=\"$comments_url\">$num_comments comments</a>";
507 if ($line["comments"] && $line["link"] != $line["comments"]) {
508 $entry_comments = "<a $link_target href=\"".$line["comments"]."\">comments</a>";
512 print "<div class=\"postReply\">";
514 print "<div class=\"postHeader\"><table width=\"100%\">";
516 $entry_author = $line["author"];
519 $entry_author = " - by $entry_author";
523 print "<tr><td width='70%'><a $link_target href=\"" . $line["link"] . "\">" .
524 $line["title"] . "</a>$entry_author</td>";
526 print "<tr><td width='30%'>" . $line["title"] . "$entry_author</td>";
529 $parsed_updated = date(get_pref($link, 'LONG_DATE_FORMAT'),
530 strtotime($line["updated"]));
532 print "<td class=\"postDate$rtl_class\">$parsed_updated</td>";
536 $tmp_result = db_query($link, "SELECT DISTINCT tag_name FROM
537 ttrss_tags WHERE post_int_id = " . $line["int_id"] . "
545 while ($tmp_line = db_fetch_assoc($tmp_result)) {
547 $tag = $tmp_line["tag_name"];
548 $tag_str = "<a href=\"javascript:parent.viewfeed('$tag')\">$tag</a>, ";
550 if ($num_tags == 5) {
551 $tags_str .= "<a href=\"javascript:showBlockElement('allEntryTags')\">...</a>";
552 } else if ($num_tags < 5) {
553 $tags_str .= $tag_str;
555 $f_tags_str .= $tag_str;
558 $tags_str = preg_replace("/, $/", "", $tags_str);
559 $f_tags_str = preg_replace("/, $/", "", $f_tags_str);
561 // $truncated_link = truncate_string($line["link"], 60);
563 if ($tags_str ||
$entry_comments) {
564 print "<tr><td width='50%'>
566 <td align=\"right\">$tags_str</td></tr>";
569 print "</table></div>";
571 print "<div class=\"postIcon\">" . $feed_icon . "</div>";
572 print "<div class=\"postContent\">";
574 if (db_num_rows($tmp_result) > 5) {
575 print "<div id=\"allEntryTags\">Tags: $f_tags_str</div>";
578 if (get_pref($link, 'OPEN_LINKS_IN_NEW_WINDOW')) {
579 $line["content"] = preg_replace("/href=/i", "target=\"_new\" href=", $line["content"]);
582 $line["content"] = sanitize_rss($line["content"]);
584 print $line["content"] . "</div>";
591 if ($op == "viewfeed") {
593 $feed = db_escape_string($_GET["feed"]);
594 $subop = db_escape_string($_GET["subop"]);
595 $view_mode = db_escape_string($_GET["view_mode"]);
596 $limit = db_escape_string($_GET["limit"]);
597 $cat_view = db_escape_string($_GET["cat"]);
598 $next_unread_feed = db_escape_string($_GET["nuf"]);
600 if ($subop == "undefined") $subop = "";
602 if ($subop == "CatchupSelected") {
603 $ids = split(",", db_escape_string($_GET["ids"]));
604 $cmode = sprintf("%d", $_GET["cmode"]);
606 catchupArticlesById($link, $ids, $cmode);
609 if ($subop == "ForceUpdate" && sprintf("%d", $feed) > 0) {
610 update_generic_feed($link, $feed, $cat_view);
613 if ($subop == "MarkAllRead") {
614 catchup_feed($link, $feed, $cat_view);
616 if (get_pref($link, 'ON_CATCHUP_SHOW_NEXT_FEED')) {
617 if ($next_unread_feed) {
618 $feed = $next_unread_feed;
624 $result = db_query($link,
625 "SELECT id FROM ttrss_feeds WHERE id = '$feed' LIMIT 1");
627 if (db_num_rows($result) == 0) {
628 print "<div align='center'>
629 Feed not found.</div>";
634 if (preg_match("/^-?[0-9][0-9]*$/", $feed) != false) {
636 $result = db_query($link, "SELECT rtl_content FROM ttrss_feeds
637 WHERE id = '$feed' AND owner_uid = " . $_SESSION["uid"]);
639 if (db_num_rows($result) == 1) {
640 $rtl_content = sql_bool_to_bool(db_fetch_result($result, 0, "rtl_content"));
642 $rtl_content = false;
646 $rtl_tag = "dir=\"RTL\"";
652 $rtl_content = false;
655 $script_dt_add = get_script_dt_add();
657 /* print "<meta http-equiv=\"Content-Type\" content=\"text/html; charset=utf-8\">
658 <script type=\"text/javascript\" src=\"prototype.js\"></script>
659 <script type=\"text/javascript\" src=\"functions.js?$script_dt_add\"></script>
660 <script type=\"text/javascript\" src=\"viewfeed.js?$script_dt_add\"></script>
661 <!--[if gte IE 5.5000]>
662 <script type=\"text/javascript\" src=\"pngfix.js\"></script>
663 <link rel=\"stylesheet\" type=\"text/css\" href=\"tt-rss-ie.css\">
665 </head><body $rtl_tag>
666 <script type=\"text/javascript\">
667 if (document.addEventListener) {
668 document.addEventListener(\"DOMContentLoaded\", init, null);
670 window.onload = init;
673 /// START /////////////////////////////////////////////////////////////////////////////////
675 $search = db_escape_string($_GET["query"]);
676 $search_mode = db_escape_string($_GET["search_mode"]);
677 $match_on = db_escape_string($_GET["match_on"]);
683 $qfh_ret = queryFeedHeadlines($link, $feed, $limit, $view_mode, $cat_view, $search, $search_mode, $match_on);
685 $result = $qfh_ret[0];
686 $feed_title = $qfh_ret[1];
687 $feed_site_url = $qfh_ret[2];
688 $last_error = $qfh_ret[3];
690 /// STOP //////////////////////////////////////////////////////////////////////////////////
692 print "<div id=\"headlinesContainer\" $rtl_tag>";
695 print "<div align='center'>
696 Could not display feed (query failed). Please check label match syntax or local configuration.</div>";
700 if (db_num_rows($result) > 0) {
702 print_headline_subtoolbar($link, $feed_site_url, $feed_title, false,
703 $rtl_content, $feed, $cat_view, $search, $match_on, $search_mode);
705 print "<div id=\"headlinesInnerContainer\">";
707 if (!get_pref($link, 'COMBINED_DISPLAY_MODE')) {
708 print "<table class=\"headlinesList\" id=\"headlinesList\"
709 cellspacing=\"0\" width=\"100%\">";
714 error_reporting (DEFAULT_ERROR_LEVEL
);
718 while ($line = db_fetch_assoc($result)) {
720 $class = ($lnum %
2) ?
"even" : "odd";
723 $feed_id = $line["feed_id"];
725 if ($line["last_read"] == "" &&
726 ($line["unread"] != "t" && $line["unread"] != "1")) {
728 $update_pic = "<img id='FUPDPIC-$id' src=\"images/updated.png\"
731 $update_pic = "<img id='FUPDPIC-$id' src=\"images/blank_icon.gif\"
735 if ($line["unread"] == "t" ||
$line["unread"] == "1") {
743 if ($line["marked"] == "t" ||
$line["marked"] == "1") {
744 $marked_pic = "<img id=\"FMARKPIC-$id\" src=\"images/mark_set.png\"
745 alt=\"Reset mark\" onclick='javascript:toggleMark($id)'>";
747 $marked_pic = "<img id=\"FMARKPIC-$id\" src=\"images/mark_unset.png\"
748 alt=\"Set mark\" onclick='javascript:toggleMark($id)'>";
751 # $content_link = "<a target=\"_new\" href=\"".$line["link"]."\">" .
752 # $line["title"] . "</a>";
754 $content_link = "<a href=\"javascript:view($id,$feed_id);\">" .
755 $line["title"] . "</a>";
757 # $content_link = "<a href=\"javascript:viewContentUrl('".$line["link"]."');\">" .
758 # $line["title"] . "</a>";
760 if (get_pref($link, 'HEADLINES_SMART_DATE')) {
761 $updated_fmt = smart_date_time(strtotime($line["updated"]));
763 $short_date = get_pref($link, 'SHORT_DATE_FORMAT');
764 $updated_fmt = date($short_date, strtotime($line["updated"]));
767 if (get_pref($link, 'SHOW_CONTENT_PREVIEW')) {
768 $content_preview = truncate_string(strip_tags($line["content_preview"]),
772 if (!get_pref($link, 'COMBINED_DISPLAY_MODE')) {
774 print "<tr class='$class' id='RROW-$id'>";
776 print "<td class='hlUpdatePic'>$update_pic</td>";
778 print "<td class='hlSelectRow'>
779 <input type=\"checkbox\" onclick=\"toggleSelectRow(this)\"
780 class=\"feedCheckBox\" id=\"RCHK-$id\">
783 print "<td class='hlMarkedPic'>$marked_pic</td>";
785 if ($line["feed_title"]) {
786 print "<td class='hlContent'>$content_link</td>";
787 print "<td class='hlFeed'>
788 <a href='javascript:viewfeed($feed_id)'>".
789 $line["feed_title"]."</a> </td>";
791 print "<td class='hlContent' valign='middle'>";
793 print "<a href=\"javascript:view($id,$feed_id);\">" .
796 if (get_pref($link, 'SHOW_CONTENT_PREVIEW') && !$rtl_tag) {
797 if ($content_preview) {
798 print "<span class=\"contentPreview\"> - $content_preview</span>";
806 print "<td class=\"hlUpdated\"><nobr>$updated_fmt </nobr></td>";
813 $add_class = "Unread";
818 print "<div class=\"cdmArticle$add_class\" id=\"RROW-$id\">";
820 print "<div class=\"cdmHeader\">";
822 print "<div style=\"float : right\">$updated_fmt,
823 <a class=\"cdmToggleLink\"
824 href=\"javascript:toggleUnread($id)\">Toggle unread</a>
827 print "<a class=\"title\"
828 onclick=\"javascript:toggleUnread($id, 0)\"
829 target=\"new\" href=\"".$line["link"]."\">".$line["title"]."</a>";
831 if ($line["feed_title"]) {
832 print " (<a href='javascript:viewfeed($feed_id)'>".$line["feed_title"]."</a>)";
837 print "<div class=\"cdmContent\">" . $line["content_preview"] . "</div><br clear=\"all\">";
839 print "<div style=\"float : right\">$marked_pic</div>
840 <div lass=\"cdmFooter\">
841 <input type=\"checkbox\" onclick=\"toggleSelectRowById(this,
842 'RROW-$id')\" class=\"feedCheckBox\" id=\"RCHK-$id\"></div>";
844 # print "<div align=\"center\"><a class=\"cdmToggleLink\"
845 # href=\"javascript:toggleUnread($id)\">
846 # Toggle unread</a></div>";
855 if (!get_pref($link, 'COMBINED_DISPLAY_MODE')) {
861 // print_headline_subtoolbar($link,
862 // "javascript:catchupPage()", "Mark page as read", true, $rtl_content);
866 print "<div class='whiteBox'>No articles found.</div>";
872 if ($op == "pref-feeds") {
874 $subop = $_REQUEST["subop"];
875 $quiet = $_REQUEST["quiet"];
877 if ($subop == "massSubscribe") {
878 $ids = split(",", db_escape_string($_GET["ids"]));
880 $subscribed = array();
882 foreach ($ids as $id) {
883 $result = db_query($link, "SELECT feed_url,title FROM ttrss_feeds
886 $feed_url = db_escape_string(db_fetch_result($result, 0, "feed_url"));
887 $title = db_escape_string(db_fetch_result($result, 0, "title"));
889 $title_orig = db_fetch_result($result, 0, "title");
891 $result = db_query($link, "SELECT id FROM ttrss_feeds WHERE
892 feed_url = '$feed_url' AND owner_uid = " . $_SESSION["uid"]);
894 if (db_num_rows($result) == 0) {
895 $result = db_query($link,
896 "INSERT INTO ttrss_feeds (owner_uid,feed_url,title,cat_id)
897 VALUES ('".$_SESSION["uid"]."', '$feed_url', '$title', NULL)");
899 array_push($subscribed, $title_orig);
903 if (count($subscribed) > 0) {
904 print "<div class=\"notice\">";
905 print "<b>Subscribed to feeds:</b>";
906 print "<ul class=\"nomarks\">";
907 foreach ($subscribed as $title) {
908 print "<li>$title</li>";
915 if ($subop == "browse") {
917 if (!ENABLE_FEED_BROWSER
) {
918 print "Feed browser is administratively disabled.";
922 print "<div id=\"infoBoxTitle\">Other feeds: Top 25</div>";
924 print "<div class=\"infoBoxContents\">";
926 print "<p>Showing top 25 registered feeds, sorted by popularity:</p>";
928 # $result = db_query($link, "SELECT feed_url,count(id) AS subscribers
930 # WHERE auth_login = '' AND auth_pass = '' AND private = false
931 # GROUP BY feed_url ORDER BY subscribers DESC LIMIT 25");
933 $owner_uid = $_SESSION["uid"];
935 $result = db_query($link, "SELECT feed_url,COUNT(id) AS subscribers
936 FROM ttrss_feeds WHERE (SELECT COUNT(id) = 0 FROM ttrss_feeds AS tf
937 WHERE tf.feed_url = ttrss_feeds.feed_url
938 AND owner_uid = '$owner_uid') GROUP BY feed_url
939 ORDER BY subscribers DESC LIMIT 25");
941 print "<ul class='browseFeedList' id='browseFeedList'>";
945 while ($line = db_fetch_assoc($result)) {
946 $feed_url = $line["feed_url"];
947 $subscribers = $line["subscribers"];
949 $det_result = db_query($link, "SELECT site_url,title,id
950 FROM ttrss_feeds WHERE feed_url = '$feed_url' LIMIT 1");
952 $details = db_fetch_assoc($det_result);
954 $icon_file = ICONS_DIR
. "/" . $details["id"] . ".ico";
956 if (file_exists($icon_file) && filesize($icon_file) > 0) {
957 $feed_icon = "<img class=\"tinyFeedIcon\" src=\"" . ICONS_URL
.
958 "/".$details["id"].".ico\">";
960 $feed_icon = "<img class=\"tinyFeedIcon\" src=\"images/blank_icon.gif\">";
963 $check_box = "<input onclick='toggleSelectListRow(this)' class='feedBrowseCB'
964 type=\"checkbox\" id=\"FBCHK-" . $details["id"] . "\">";
966 $class = ($feedctr %
2) ?
"even" : "odd";
968 print "<li class='$class' id=\"FBROW-".$details["id"]."\">$check_box".
969 "$feed_icon " . db_unescape_string($details["title"]) .
970 " <span class='subscribers'>($subscribers)</span></li>";
976 print "<li>No feeds found to subscribe.</li>";
981 print "<div align='center'>
982 <input type=\"submit\" class=\"button\"
983 onclick=\"feedBrowserSubscribe()\" value=\"Subscribe\">
984 <input type='submit' class='button'
985 onclick=\"closeInfoBox()\" value=\"Cancel\"></div>";
991 if ($subop == "editfeed") {
992 $feed_id = db_escape_string($_REQUEST["id"]);
994 $result = db_query($link,
995 "SELECT * FROM ttrss_feeds WHERE id = '$feed_id' AND
996 owner_uid = " . $_SESSION["uid"]);
998 $title = htmlspecialchars(db_unescape_string(db_fetch_result($result,
1001 $icon_file = ICONS_DIR
. "/$feed_id.ico";
1003 if (file_exists($icon_file) && filesize($icon_file) > 0) {
1004 $feed_icon = "<img width=\"16\" height=\"16\"
1005 src=\"" . ICONS_URL
. "/$feed_id.ico\">";
1010 print "<div id=\"infoBoxTitle\">Feed editor</div>";
1012 print "<div class=\"infoBoxContents\">";
1014 print "<form id=\"edit_feed_form\">";
1016 print "<input type=\"hidden\" name=\"id\" value=\"$feed_id\">";
1017 print "<input type=\"hidden\" name=\"op\" value=\"pref-feeds\">";
1018 print "<input type=\"hidden\" name=\"subop\" value=\"editSave\">";
1020 print "<table width='100%'>";
1022 print "<tr><td>Title:</td>";
1023 print "<td><input class=\"iedit\" onkeypress=\"return filterCR(event)\"
1024 name=\"title\" value=\"$title\"></td></tr>";
1026 $feed_url = db_fetch_result($result, 0, "feed_url");
1027 $feed_url = htmlspecialchars(db_unescape_string(db_fetch_result($result,
1030 print "<tr><td>Feed URL:</td>";
1031 print "<td><input class=\"iedit\" onkeypress=\"return filterCR(event)\"
1032 name=\"feed_url\" value=\"$feed_url\"></td></tr>";
1034 if (get_pref($link, 'ENABLE_FEED_CATS')) {
1036 $cat_id = db_fetch_result($result, 0, "cat_id");
1038 print "<tr><td>Category:</td>";
1041 $parent_feed = db_fetch_result($result, 0, "parent_feed");
1043 if (sprintf("%d", $parent_feed) > 0) {
1044 $disabled = "disabled";
1049 print_feed_cat_select($link, "cat_id", $cat_id, "class=\"iedit\" $disabled");
1056 $update_interval = db_fetch_result($result, 0, "update_interval");
1058 print "<tr><td>Update Interval:</td>";
1062 print_select_hash("update_interval", $update_interval, $update_intervals,
1067 print "<tr><td>Link to:</td><td>";
1069 $tmp_result = db_query($link, "SELECT COUNT(id) AS count
1070 FROM ttrss_feeds WHERE parent_feed = '$feed_id'");
1072 $linked_count = db_fetch_result($tmp_result, 0, "count");
1074 $parent_feed = db_fetch_result($result, 0, "parent_feed");
1076 if ($linked_count > 0) {
1077 $disabled = "disabled";
1082 print "<select class=\"iedit\" $disabled name=\"parent_feed\">";
1084 print "<option value=\"0\">Not linked</option>";
1086 if (get_pref($link, 'ENABLE_FEED_CATS')) {
1088 $cat_qpart = "AND cat_id = '$cat_id'";
1090 $cat_qpart = "AND cat_id IS NULL";
1094 $tmp_result = db_query($link, "SELECT id,title FROM ttrss_feeds
1095 WHERE id != '$feed_id' AND owner_uid = ".$_SESSION["uid"]." AND
1096 (SELECT COUNT(id) FROM ttrss_feeds AS T2 WHERE T2.id = ttrss_feeds.parent_feed) = 0
1097 $cat_qpart ORDER BY title");
1099 if (db_num_rows($tmp_result) > 0) {
1100 print "<option disabled>--------</option>";
1103 while ($tmp_line = db_fetch_assoc($tmp_result)) {
1104 if ($tmp_line["id"] == $parent_feed) {
1105 $is_selected = "selected";
1109 printf("<option $is_selected value='%d'>%s</option>",
1110 $tmp_line["id"], $tmp_line["title"]);
1116 $purge_interval = db_fetch_result($result, 0, "purge_interval");
1118 print "<tr><td>Article purging:</td>";
1122 print_select_hash("purge_interval", $purge_interval, $purge_intervals,
1127 $auth_login = escape_for_form(db_fetch_result($result, 0, "auth_login"));
1129 print "<tr><td>Login:</td>";
1130 print "<td><input class=\"iedit\" onkeypress=\"return filterCR(event)\"
1131 name=\"auth_login\" value=\"$auth_login\"></td></tr>";
1133 $auth_pass = escape_for_form(db_fetch_result($result, 0, "auth_pass"));
1135 print "<tr><td>Password:</td>";
1136 print "<td><input class=\"iedit\" type=\"password\" name=\"auth_pass\"
1137 onkeypress=\"return filterCR(event)\"
1138 value=\"$auth_pass\"></td></tr>";
1140 $private = sql_bool_to_bool(db_fetch_result($result, 0, "private"));
1143 $checked = "checked";
1148 print "<tr><td valign='top'>Options:</td>";
1149 print "<td><input type=\"checkbox\" name=\"private\" id=\"private\"
1150 $checked><label for=\"private\">Hide from \"Other Feeds\"</label>";
1152 $rtl_content = sql_bool_to_bool(db_fetch_result($result, 0, "rtl_content"));
1155 $checked = "checked";
1160 print "<br><input type=\"checkbox\" id=\"rtl_content\" name=\"rtl_content\"
1161 $checked><label for=\"rtl_content\">Right-to-left content</label>";
1163 $hidden = sql_bool_to_bool(db_fetch_result($result, 0, "hidden"));
1166 $checked = "checked";
1171 print "<br><input type=\"checkbox\" id=\"hidden\" name=\"hidden\"
1172 $checked><label for=\"hidden\">Hide from my feed list</label>";
1174 $include_in_digest = sql_bool_to_bool(db_fetch_result($result, 0, "include_in_digest"));
1176 if ($include_in_digest) {
1177 $checked = "checked";
1182 print "<br><input type=\"checkbox\" id=\"include_in_digest\"
1183 name=\"include_in_digest\"
1184 $checked><label for=\"include_in_digest\">Include in e-mail digest</label>";
1192 print "<div align='right'>
1193 <input type=\"submit\" class=\"button\"
1194 onclick=\"return feedEditSave()\" value=\"Save\">
1195 <input type='submit' class='button'
1196 onclick=\"return feedEditCancel()\" value=\"Cancel\"></div>";
1203 if ($subop == "editSave") {
1205 $feed_title = db_escape_string(trim($_POST["title"]));
1206 $feed_link = db_escape_string(trim($_POST["feed_url"]));
1207 $upd_intl = db_escape_string($_POST["update_interval"]);
1208 $purge_intl = db_escape_string($_POST["purge_interval"]);
1209 $feed_id = db_escape_string($_POST["id"]);
1210 $cat_id = db_escape_string($_POST["cat_id"]);
1211 $auth_login = db_escape_string(trim($_POST["auth_login"]));
1212 $auth_pass = db_escape_string(trim($_POST["auth_pass"]));
1213 $parent_feed = db_escape_string($_POST["parent_feed"]);
1214 $private = checkbox_to_sql_bool(db_escape_string($_POST["private"]));
1215 $rtl_content = checkbox_to_sql_bool(db_escape_string($_POST["rtl_content"]));
1216 $hidden = checkbox_to_sql_bool(db_escape_string($_POST["hidden"]));
1217 $include_in_digest = checkbox_to_sql_bool(
1218 db_escape_string($_POST["include_in_digest"]));
1220 if (get_pref($link, 'ENABLE_FEED_CATS')) {
1221 if ($cat_id && $cat_id != 0) {
1222 $category_qpart = "cat_id = '$cat_id',";
1223 $category_qpart_nocomma = "cat_id = '$cat_id'";
1225 $category_qpart = 'cat_id = NULL,';
1226 $category_qpart_nocomma = 'cat_id = NULL';
1229 $category_qpart = "";
1230 $category_qpart_nocomma = "";
1233 if ($parent_feed && $parent_feed != 0) {
1234 $parent_qpart = "parent_feed = '$parent_feed'";
1236 $parent_qpart = 'parent_feed = NULL';
1239 $result = db_query($link, "UPDATE ttrss_feeds SET
1240 $category_qpart $parent_qpart,
1241 title = '$feed_title', feed_url = '$feed_link',
1242 update_interval = '$upd_intl',
1243 purge_interval = '$purge_intl',
1244 auth_login = '$auth_login',
1245 auth_pass = '$auth_pass',
1247 rtl_content = $rtl_content,
1249 include_in_digest = $include_in_digest
1250 WHERE id = '$feed_id' AND owner_uid = " . $_SESSION["uid"]);
1252 if (get_pref($link, 'ENABLE_FEED_CATS')) {
1253 # update linked feed categories
1254 $result = db_query($link, "UPDATE ttrss_feeds SET
1255 $category_qpart_nocomma WHERE parent_feed = '$feed_id' AND
1256 owner_uid = " . $_SESSION["uid"]);
1260 if ($subop == "saveCat") {
1261 $cat_title = db_escape_string(trim($_GET["title"]));
1262 $cat_id = db_escape_string($_GET["id"]);
1264 $result = db_query($link, "UPDATE ttrss_feed_categories SET
1265 title = '$cat_title' WHERE id = '$cat_id' AND owner_uid = ".$_SESSION["uid"]);
1269 if ($subop == "remove") {
1271 if (!WEB_DEMO_MODE
) {
1273 $ids = split(",", db_escape_string($_GET["ids"]));
1275 foreach ($ids as $id) {
1279 db_query($link, "DELETE FROM ttrss_feeds
1280 WHERE id = '$id' AND owner_uid = " . $_SESSION["uid"]);
1282 $icons_dir = ICONS_DIR
;
1284 if (file_exists($icons_dir . "/$id.ico")) {
1285 unlink($icons_dir . "/$id.ico");
1287 } else if ($id < -10) {
1289 $label_id = -$id - 11;
1291 db_query($link, "DELETE FROM ttrss_labels
1292 WHERE id = '$label_id' AND owner_uid = " . $_SESSION["uid"]);
1298 if ($subop == "add") {
1300 if (!WEB_DEMO_MODE
) {
1302 $feed_url = db_escape_string(trim($_GET["feed_url"]));
1303 $cat_id = db_escape_string($_GET["cat_id"]);
1305 if (subscribe_to_feed($link, $feed_url, $cat_id)) {
1306 print "Added feed.";
1308 print "<div class=\"warning\">
1309 Feed <b>$feed_url</b> already exists in the database.
1315 if ($subop == "addCat") {
1317 if (!WEB_DEMO_MODE
) {
1319 $feed_cat = db_escape_string(trim($_GET["cat"]));
1321 $result = db_query($link,
1322 "SELECT id FROM ttrss_feed_categories
1323 WHERE title = '$feed_cat' AND owner_uid = ".$_SESSION["uid"]);
1325 if (db_num_rows($result) == 0) {
1327 $result = db_query($link,
1328 "INSERT INTO ttrss_feed_categories (owner_uid,title)
1329 VALUES ('".$_SESSION["uid"]."', '$feed_cat')");
1333 print "<div class=\"warning\">
1334 Category <b>$feed_cat</b> already exists in the database.
1342 if ($subop == "removeCats") {
1344 if (!WEB_DEMO_MODE
) {
1346 $ids = split(",", db_escape_string($_GET["ids"]));
1348 foreach ($ids as $id) {
1350 db_query($link, "BEGIN");
1352 $result = db_query($link,
1353 "SELECT count(id) as num_feeds FROM ttrss_feeds
1354 WHERE cat_id = '$id'");
1356 $num_feeds = db_fetch_result($result, 0, "num_feeds");
1358 if ($num_feeds == 0) {
1359 db_query($link, "DELETE FROM ttrss_feed_categories
1360 WHERE id = '$id' AND owner_uid = " . $_SESSION["uid"]);
1363 print "<div class=\"warning\">
1364 Unable to delete non empty feed categories.</div>";
1368 db_query($link, "COMMIT");
1373 if ($subop == "categorize") {
1375 if (!WEB_DEMO_MODE
) {
1377 $ids = split(",", db_escape_string($_GET["ids"]));
1379 $cat_id = db_escape_string($_GET["cat_id"]);
1382 $cat_id_qpart = 'NULL';
1384 $cat_id_qpart = "'$cat_id'";
1387 db_query($link, "BEGIN");
1389 foreach ($ids as $id) {
1391 db_query($link, "UPDATE ttrss_feeds SET cat_id = $cat_id_qpart
1392 WHERE id = '$id' AND parent_feed IS NULL
1393 AND owner_uid = " . $_SESSION["uid"]);
1395 # update linked feed categories
1396 db_query($link, "UPDATE ttrss_feeds SET
1397 cat_id = $cat_id_qpart WHERE parent_feed = '$id' AND
1398 owner_uid = " . $_SESSION["uid"]);
1402 db_query($link, "COMMIT");
1409 // print "<h3>Edit Feeds</h3>";
1411 $result = db_query($link, "SELECT id,title,feed_url,last_error
1412 FROM ttrss_feeds WHERE last_error != '' AND owner_uid = ".$_SESSION["uid"]);
1414 if (db_num_rows($result) > 0) {
1416 print "<div class=\"warning\">";
1418 // print"<img class=\"closeButton\"
1419 // onclick=\"javascript:hideParentElement(this);\" src=\"images/close.png\">";
1421 print "<a href=\"javascript:showBlockElement('feedUpdateErrors')\">
1422 <b>Some feeds have update errors (click for details)</b></a>";
1424 print "<ul id=\"feedUpdateErrors\" class=\"nomarks\">";
1426 while ($line = db_fetch_assoc($result)) {
1427 print "<li>" . $line["title"] . " (" . $line["feed_url"] . "): " .
1428 $line["last_error"];
1436 $feed_search = db_escape_string($_GET["search"]);
1438 if (array_key_exists("search", $_GET)) {
1439 $_SESSION["prefs_feed_search"] = $feed_search;
1441 $feed_search = $_SESSION["prefs_feed_search"];
1444 print "<table width='100%' class=\"prefGenericAddBox\"
1445 cellspacing='0' cellpadding='0'><tr>
1447 <input id=\"fadd_link\"
1448 onkeyup=\"toggleSubmitNotEmpty(this, 'fadd_submit_btn')\"
1450 <input type=\"submit\" class=\"button\"
1451 disabled=\"true\" id=\"fadd_submit_btn\"
1452 onclick=\"addFeed()\" value=\"Subscribe\">";
1454 if (ENABLE_FEED_BROWSER
&& !SINGLE_USER_MODE
) {
1455 print " <input type=\"submit\" class=\"button\"
1456 onclick=\"javascript:browseFeeds()\" value=\"Top 25\">";
1459 print "</td><td align='right'>
1460 <input id=\"feed_search\" size=\"20\"
1461 onchange=\"javascript:updateFeedList()\" value=\"$feed_search\">
1462 <input type=\"submit\" class=\"button\"
1463 onclick=\"javascript:updateFeedList()\" value=\"Search\">
1467 $feeds_sort = db_escape_string($_GET["sort"]);
1469 if (!$feeds_sort ||
$feeds_sort == "undefined") {
1470 $feeds_sort = $_SESSION["pref_sort_feeds"];
1471 if (!$feeds_sort) $feeds_sort = "title";
1474 $_SESSION["pref_sort_feeds"] = $feeds_sort;
1477 $search_qpart = "(UPPER(F1.title) LIKE UPPER('%$feed_search%') OR
1478 UPPER(F1.feed_url) LIKE UPPER('%$feed_search%')) AND";
1483 if (get_pref($link, 'ENABLE_FEED_CATS')) {
1484 $order_by_qpart = "category,$feeds_sort,title";
1486 $order_by_qpart = "$feeds_sort,title";
1489 $result = db_query($link, "SELECT
1493 substring(F1.last_updated,1,16) AS last_updated,
1498 F2.title AS parent_title,
1499 C1.title AS category,
1501 F1.include_in_digest,
1502 (SELECT SUBSTRING(MAX(updated),1,16) FROM ttrss_user_entries,
1503 ttrss_entries WHERE ref_id = ttrss_entries.id
1504 AND feed_id = F1.id) AS last_article
1507 LEFT JOIN ttrss_feeds AS F2
1508 ON (F1.parent_feed = F2.id)
1509 LEFT JOIN ttrss_feed_categories AS C1
1510 ON (F1.cat_id = C1.id)
1512 $search_qpart F1.owner_uid = '".$_SESSION["uid"]."'
1513 ORDER by $order_by_qpart");
1515 if (db_num_rows($result) != 0) {
1517 // print "<div id=\"infoBoxShadow\"><div id=\"infoBox\">PLACEHOLDER</div></div>";
1519 print "<p><table width=\"100%\" cellspacing=\"0\"
1520 class=\"prefFeedList\" id=\"prefFeedList\">";
1521 print "<tr><td class=\"selectPrompt\" colspan=\"8\">
1523 <a href=\"javascript:selectPrefRows('feed', true)\">All</a>,
1524 <a href=\"javascript:selectPrefRows('feed', false)\">None</a>
1527 if (!get_pref($link, 'ENABLE_FEED_CATS')) {
1528 print "<tr class=\"title\">
1529 <td width='5%' align='center'> </td>";
1531 if (get_pref($link, 'ENABLE_FEED_ICONS')) {
1532 print "<td width='3%'> </td>";
1536 <td width='35%'><a href=\"javascript:updateFeedList('title')\">Title</a></td>
1537 <td width='35%'><a href=\"javascript:updateFeedList('feed_url')\">Feed</a></td>
1538 <td width='15%'><a href=\"javascript:updateFeedList('last_article')\">Last Article</a></td>
1539 <td width='15%' align='right'><a href=\"javascript:updateFeedList('last_updated')\">Updated</a></td>";
1546 while ($line = db_fetch_assoc($result)) {
1548 $feed_id = $line["id"];
1549 $cat_id = $line["cat_id"];
1551 $edit_title = htmlspecialchars(db_unescape_string($line["title"]));
1552 $edit_link = htmlspecialchars(db_unescape_string($line["feed_url"]));
1553 $edit_cat = htmlspecialchars(db_unescape_string($line["category"]));
1555 $hidden = sql_bool_to_bool($line["hidden"]);
1557 if (!$edit_cat) $edit_cat = "Uncategorized";
1559 $last_updated = $line["last_updated"];
1561 if (get_pref($link, 'HEADLINES_SMART_DATE')) {
1562 $last_updated = smart_date_time(strtotime($last_updated));
1564 $short_date = get_pref($link, 'SHORT_DATE_FORMAT');
1565 $last_updated = date($short_date, strtotime($last_updated));
1568 $last_article = $line["last_article"];
1570 if (get_pref($link, 'HEADLINES_SMART_DATE')) {
1571 $last_article = smart_date_time(strtotime($last_article));
1573 $short_date = get_pref($link, 'SHORT_DATE_FORMAT');
1574 $last_article = date($short_date, strtotime($last_article));
1577 if (get_pref($link, 'ENABLE_FEED_CATS') && $cur_cat_id != $cat_id) {
1580 print "<tr><td colspan=\"6\" class=\"feedEditCat\">$edit_cat</td></tr>";
1582 print "<tr class=\"title\">
1583 <td width='5%'> </td>";
1585 if (get_pref($link, 'ENABLE_FEED_ICONS')) {
1586 print "<td width='3%'> </td>";
1589 print "<td width='35%'><a href=\"javascript:updateFeedList('title')\">Title</a></td>
1590 <td width='35%'><a href=\"javascript:updateFeedList('feed_url')\">Feed</a></td>
1591 <td width='15%'><a href=\"javascript:updateFeedList('last_article')\">Last Article</a></td>
1592 <td width='15%' align='right'><a href=\"javascript:updateFeedList('last_updated')\">Updated</a></td>";
1594 $cur_cat_id = $cat_id;
1597 $class = ($lnum %
2) ?
"even" : "odd";
1598 $this_row_id = "id=\"FEEDR-$feed_id\"";
1600 print "<tr class=\"$class\" $this_row_id>";
1602 $icon_file = ICONS_DIR
. "/$feed_id.ico";
1604 if (file_exists($icon_file) && filesize($icon_file) > 0) {
1605 $feed_icon = "<img class=\"tinyFeedIcon\" src=\"" . ICONS_URL
. "/$feed_id.ico\">";
1607 $feed_icon = "<img class=\"tinyFeedIcon\" src=\"images/blank_icon.gif\">";
1610 print "<td class='feedSelect'><input onclick='toggleSelectPrefRow(this, \"feed\");'
1611 type=\"checkbox\" id=\"FRCHK-".$line["id"]."\"></td>";
1613 if (get_pref($link, 'ENABLE_FEED_ICONS')) {
1614 print "<td class='feedIcon'>$feed_icon</td>";
1617 $edit_title = truncate_string($edit_title, 40);
1618 $edit_link = truncate_string($edit_link, 60);
1621 $edit_title = "<span class=\"insensitive\">$edit_title (Hidden)</span>";
1622 $edit_link = "<span class=\"insensitive\">$edit_link</span>";
1623 $last_updated = "<span class=\"insensitive\">$last_updated</span>";
1624 $last_article = "<span class=\"insensitive\">$last_article</span>";
1627 $parent_title = $line["parent_title"];
1628 if ($parent_title) {
1629 $parent_title = "<span class='groupPrompt'>(linked to
1630 $parent_title)</span>";
1633 print "<td><a href=\"javascript:editFeed($feed_id);\">" .
1634 "$edit_title $parent_title" . "</a></td>";
1636 print "<td><a href=\"javascript:editFeed($feed_id);\">" .
1637 $edit_link . "</a></td>";
1639 print "<td><a href=\"javascript:editFeed($feed_id);\">" .
1640 "$last_article</a></td>";
1642 print "<td align='right'><a href=\"javascript:editFeed($feed_id);\">" .
1643 "$last_updated</a></td>";
1652 print "<p><span id=\"feedOpToolbar\">";
1654 if ($subop == "edit") {
1655 print "Edit feed:
1656 <input type=\"submit\" class=\"button\"
1657 onclick=\"javascript:feedEditCancel()\" value=\"Cancel\">
1658 <input type=\"submit\" class=\"button\"
1659 onclick=\"javascript:feedEditSave()\" value=\"Save\">";
1664 <input type=\"submit\" class=\"button\" disabled=\"true\"
1665 onclick=\"javascript:editSelectedFeed()\" value=\"Edit\">
1666 <input type=\"submit\" class=\"button\" disabled=\"true\"
1667 onclick=\"javascript:removeSelectedFeeds()\" value=\"Unsubscribe\">";
1669 if (get_pref($link, 'ENABLE_FEED_CATS')) {
1671 print " | ";
1673 print_feed_cat_select($link, "sfeed_set_fcat", "", "disabled");
1675 print " <input type=\"submit\" class=\"button\" disabled=\"true\"
1676 onclick=\"javascript:categorizeSelectedFeeds()\" value=\"Recategorize\">";
1681 All feeds: <input type=\"submit\"
1682 class=\"button\" onclick=\"gotoExportOpml()\"
1683 value=\"Export OPML\">";
1687 print "<p>No feeds defined.</p>";
1691 if (get_pref($link, 'ENABLE_FEED_CATS')) {
1693 print "<h3>Edit Categories</h3>";
1695 print "<div class=\"prefGenericAddBox\">
1696 <input id=\"fadd_cat\"
1697 onkeyup=\"toggleSubmitNotEmpty(this, 'catadd_submit_btn')\"
1700 type=\"submit\" class=\"button\" disabled=\"true\" id=\"catadd_submit_btn\"
1701 onclick=\"javascript:addFeedCat()\" value=\"Create category\"></div>";
1703 $result = db_query($link, "SELECT title,id FROM ttrss_feed_categories
1704 WHERE owner_uid = ".$_SESSION["uid"]."
1707 if (db_num_rows($result) != 0) {
1709 print "<form id=\"feed_cat_edit_form\">";
1711 print "<p><table width=\"100%\" class=\"prefFeedCatList\"
1712 cellspacing=\"0\" id=\"prefFeedCatList\">";
1714 print "<tr><td class=\"selectPrompt\" colspan=\"8\">
1716 <a href=\"javascript:selectPrefRows('fcat', true)\">All</a>,
1717 <a href=\"javascript:selectPrefRows('fcat', false)\">None</a>
1720 print "<tr class=\"title\">
1721 <td width=\"5%\"> </td><td width=\"80%\">Title</td>
1726 while ($line = db_fetch_assoc($result)) {
1728 $class = ($lnum %
2) ?
"even" : "odd";
1730 $cat_id = $line["id"];
1732 $edit_cat_id = $_GET["id"];
1734 if ($subop == "editCat" && $cat_id != $edit_cat_id) {
1738 $this_row_id = "id=\"FCATR-$cat_id\"";
1741 print "<tr class=\"$class\" $this_row_id>";
1743 $edit_title = htmlspecialchars(db_unescape_string($line["title"]));
1745 if (!$edit_cat_id ||
$subop != "editCat") {
1747 print "<td align='center'><input onclick='toggleSelectPrefRow(this, \"fcat\");'
1748 type=\"checkbox\" id=\"FCCHK-".$line["id"]."\"></td>";
1750 print "<td><a href=\"javascript:editFeedCat($cat_id);\">" .
1751 $edit_title . "</a></td>";
1753 } else if ($cat_id != $edit_cat_id) {
1755 print "<td align='center'><input disabled=\"true\" type=\"checkbox\"
1756 id=\"FRCHK-".$line["id"]."\"></td>";
1758 print "<td>$edit_title</td>";
1762 print "<td align='center'><input disabled=\"true\" type=\"checkbox\" checked>";
1764 print "<input type=\"hidden\" name=\"id\" value=\"$cat_id\">";
1765 print "<input type=\"hidden\" name=\"op\" value=\"pref-feeds\">";
1766 print "<input type=\"hidden\" name=\"subop\" value=\"saveCat\">";
1770 print "<td><input onkeypress=\"return filterCR(event)\"
1771 name=\"title\" class=\"iedit\" value=\"$edit_title\"></td>";
1784 print "<p id=\"catOpToolbar\">";
1786 if ($subop == "editCat") {
1787 print "Edit category:
1788 <input type=\"submit\" class=\"button\"
1789 onclick=\"return feedCatEditSave()\" value=\"Save\">
1790 <input type=\"submit\" class=\"button\"
1791 onclick=\"return feedCatEditCancel()\" value=\"Cancel\">";
1796 <input type=\"submit\" class=\"button\" disabled=\"true\"
1797 onclick=\"return editSelectedFeedCat()\" value=\"Edit\">
1798 <input type=\"submit\" class=\"button\" disabled=\"true\"
1799 onclick=\"return removeSelectedFeedCats()\" value=\"Remove\">";
1804 print "<p>No feed categories defined.</p>";
1808 print "<h3>Import OPML</h3>
1809 <form enctype=\"multipart/form-data\" method=\"POST\" action=\"opml.php\">
1810 File: <input id=\"opml_file\" name=\"opml_file\" type=\"file\">
1811 <input class=\"button\" name=\"op\" onclick=\"return validateOpmlImport();\"
1812 type=\"submit\" value=\"Import\">
1817 if ($op == "pref-filters") {
1819 $subop = $_GET["subop"];
1820 $quiet = $_GET["quiet"];
1822 if ($subop == "edit") {
1824 $filter_id = db_escape_string($_GET["id"]);
1826 $result = db_query($link,
1827 "SELECT * FROM ttrss_filters WHERE id = '$filter_id' AND owner_uid = " . $_SESSION["uid"]);
1829 $reg_exp = htmlspecialchars(db_unescape_string(db_fetch_result($result, 0, "reg_exp")));
1830 $filter_type = db_fetch_result($result, 0, "filter_type");
1831 $feed_id = db_fetch_result($result, 0, "feed_id");
1832 $action_id = db_fetch_result($result, 0, "action_id");
1834 $enabled = sql_bool_to_bool(db_fetch_result($result, 0, "enabled"));
1836 print "<div id=\"infoBoxTitle\">Filter editor</div>";
1837 print "<div class=\"infoBoxContents\">";
1839 print "<form id=\"filter_edit_form\">";
1841 print "<input type=\"hidden\" name=\"op\" value=\"pref-filters\">";
1842 print "<input type=\"hidden\" name=\"id\" value=\"$filter_id\">";
1843 print "<input type=\"hidden\" name=\"subop\" value=\"editSave\">";
1845 // print "<div class=\"notice\"><b>Note:</b> filter will only apply to new articles.</div>";
1847 $result = db_query($link, "SELECT id,description
1848 FROM ttrss_filter_types ORDER BY description");
1850 $filter_types = array();
1852 while ($line = db_fetch_assoc($result)) {
1853 //array_push($filter_types, $line["description"]);
1854 $filter_types[$line["id"]] = $line["description"];
1857 print "<table width='100%'>";
1859 print "<tr><td>Match:</td>
1860 <td><input onkeypress=\"return filterCR(event)\"
1861 onkeyup=\"toggleSubmitNotEmpty(this, 'infobox_submit')\"
1862 name=\"reg_exp\" class=\"iedit\" value=\"$reg_exp\">";
1866 print_select_hash("filter_type", $filter_type, $filter_types, "class=\"iedit\"");
1869 print "<tr><td>Feed:</td><td colspan='2'>";
1871 print_feed_select($link, "feed_id", $feed_id);
1875 print "<tr><td>Action:</td>";
1877 print "<td colspan='2'><select name=\"action_id\">";
1879 $result = db_query($link, "SELECT id,description FROM ttrss_filter_actions
1882 while ($line = db_fetch_assoc($result)) {
1883 $is_sel = ($line["id"] == $action_id) ?
"selected" : "";
1884 printf("<option value='%d' $is_sel>%s</option>", $line["id"], $line["description"]);
1892 $checked = "checked";
1897 print "<tr><td>Options:</td><td>
1898 <input type=\"checkbox\" name=\"enabled\" id=\"enabled\" $checked>
1899 <label for=\"enabled\">Enabled</label>";
1901 print "</td></tr></table>";
1905 print "<div align='right'>";
1907 print "<input type=\"submit\"
1908 id=\"infobox_submit\"
1909 class=\"button\" onclick=\"return filterEditSave()\"
1912 print "<input class=\"button\"
1913 type=\"submit\" onclick=\"return filterEditCancel()\"
1922 if ($subop == "editSave") {
1924 $reg_exp = db_escape_string(trim($_GET["reg_exp"]));
1925 $filter_type = db_escape_string(trim($_GET["filter_type"]));
1926 $filter_id = db_escape_string($_GET["id"]);
1927 $feed_id = db_escape_string($_GET["feed_id"]);
1928 $action_id = db_escape_string($_GET["action_id"]);
1929 $enabled = checkbox_to_sql_bool(db_escape_string($_GET["enabled"]));
1934 $feed_id = sprintf("'%s'", db_escape_string($feed_id));
1937 $result = db_query($link, "UPDATE ttrss_filters SET
1938 reg_exp = '$reg_exp',
1940 action_id = '$action_id',
1941 filter_type = '$filter_type',
1943 WHERE id = '$filter_id' AND owner_uid = " . $_SESSION["uid"]);
1946 if ($subop == "remove") {
1948 if (!WEB_DEMO_MODE
) {
1950 $ids = split(",", db_escape_string($_GET["ids"]));
1952 foreach ($ids as $id) {
1953 db_query($link, "DELETE FROM ttrss_filters WHERE id = '$id' AND owner_uid = ". $_SESSION["uid"]);
1959 if ($subop == "add") {
1961 if (!WEB_DEMO_MODE
) {
1963 $regexp = db_escape_string(trim($_GET["reg_exp"]));
1964 $filter_type = db_escape_string(trim($_GET["filter_type"]));
1965 $feed_id = db_escape_string($_GET["feed_id"]);
1966 $action_id = db_escape_string($_GET["action_id"]);
1971 $feed_id = sprintf("'%s'", db_escape_string($feed_id));
1974 $result = db_query($link,
1975 "INSERT INTO ttrss_filters (reg_exp,filter_type,owner_uid,feed_id,
1978 ('$regexp', '$filter_type','".$_SESSION["uid"]."',
1979 $feed_id, '$action_id')");
1985 $sort = db_escape_string($_GET["sort"]);
1987 if (!$sort ||
$sort == "undefined") {
1991 // print "<div id=\"infoBoxShadow\"><div id=\"infoBox\">PLACEHOLDER</div></div>";
1993 $result = db_query($link, "SELECT id,description
1994 FROM ttrss_filter_types ORDER BY description");
1996 $filter_types = array();
1998 while ($line = db_fetch_assoc($result)) {
1999 //array_push($filter_types, $line["description"]);
2000 $filter_types[$line["id"]] = $line["description"];
2003 print "<input type=\"submit\"
2005 onclick=\"return displayDlg('quickAddFilter', false)\"
2006 id=\"create_filter_btn\"
2007 value=\"Create filter\">";
2009 $result = db_query($link, "SELECT
2010 ttrss_filters.id AS id,reg_exp,
2011 ttrss_filter_types.name AS filter_type_name,
2012 ttrss_filter_types.description AS filter_type_descr,
2015 ttrss_filter_actions.description AS action_description,
2016 ttrss_feeds.title AS feed_title
2018 ttrss_filter_types,ttrss_filter_actions,ttrss_filters LEFT JOIN
2019 ttrss_feeds ON (ttrss_filters.feed_id = ttrss_feeds.id)
2021 filter_type = ttrss_filter_types.id AND
2022 ttrss_filter_actions.id = action_id AND
2023 ttrss_filters.owner_uid = ".$_SESSION["uid"]."
2026 if (db_num_rows($result) != 0) {
2028 print "<form id=\"filter_edit_form\">";
2030 print "<p><table width=\"100%\" cellspacing=\"0\" class=\"prefFilterList\"
2031 id=\"prefFilterList\">";
2033 print "<tr><td class=\"selectPrompt\" colspan=\"8\">
2035 <a href=\"javascript:selectPrefRows('filter', true)\">All</a>,
2036 <a href=\"javascript:selectPrefRows('filter', false)\">None</a>
2039 print "<tr class=\"title\">
2040 <td align='center' width=\"5%\"> </td>
2041 <td width=\"20%\"><a href=\"javascript:updateFilterList('reg_exp')\">Filter expression</a></td>
2042 <td width=\"20%\"><a href=\"javascript:updateFilterList('feed_title')\">Feed</a></td>
2043 <td width=\"15%\"><a href=\"javascript:updateFilterList('filter_type')\">Match</a></td>
2044 <td width=\"15%\"><a href=\"javascript:updateFilterList('action_description')\">Action</a></td>";
2048 while ($line = db_fetch_assoc($result)) {
2050 $class = ($lnum %
2) ?
"even" : "odd";
2052 $filter_id = $line["id"];
2053 $edit_filter_id = $_GET["id"];
2055 $enabled = sql_bool_to_bool($line["enabled"]);
2057 if ($subop == "edit" && $filter_id != $edit_filter_id) {
2061 $this_row_id = "id=\"FILRR-$filter_id\"";
2064 print "<tr class=\"$class\" $this_row_id>";
2066 $line["reg_exp"] = htmlspecialchars(db_unescape_string($line["reg_exp"]));
2068 if (!$line["feed_title"]) $line["feed_title"] = "All feeds";
2070 $line["feed_title"] = htmlspecialchars(db_unescape_string($line["feed_title"]));
2072 print "<td align='center'><input onclick='toggleSelectPrefRow(this, \"filter\");'
2073 type=\"checkbox\" id=\"FICHK-".$line["id"]."\"></td>";
2076 $line["reg_exp"] = "<span class=\"insensitive\">" .
2077 $line["reg_exp"] . " (Disabled)</span>";
2078 $line["feed_title"] = "<span class=\"insensitive\">" .
2079 $line["feed_title"] . "</span>";
2080 $line["filter_type_descr"] = "<span class=\"insensitive\">" .
2081 $line["filter_type_descr"] . "</span>";
2082 $line["action_description"] = "<span class=\"insensitive\">" .
2083 $line["action_description"] . "</span>";
2086 print "<td><a href=\"javascript:editFilter($filter_id);\">" .
2087 $line["reg_exp"] . "</td>";
2089 print "<td><a href=\"javascript:editFilter($filter_id);\">" .
2090 $line["feed_title"] . "</td>";
2092 print "<td><a href=\"javascript:editFilter($filter_id);\">" .
2093 $line["filter_type_descr"] . "</td>";
2095 print "<td><a href=\"javascript:editFilter($filter_id);\">" .
2096 $line["action_description"] . "</td>";
2104 print "<tr><td colspan=\"4\" align=\"center\">No filters defined.</td></tr>";
2111 print "<p id=\"filterOpToolbar\">";
2115 <input type=\"submit\" class=\"button\" disabled=\"true\"
2116 onclick=\"return editSelectedFilter()\" value=\"Edit\">
2117 <input type=\"submit\" class=\"button\" disabled=\"true\"
2118 onclick=\"return removeSelectedFilters()\" value=\"Remove\">";
2124 print "<p>No filters defined.</p>";
2129 // We need to accept raw SQL data in label queries, so not everything is escaped
2130 // here, this is by design. If you don't like the whole idea, disable labels
2131 // altogether with GLOBAL_ENABLE_LABELS = false
2133 if ($op == "pref-labels") {
2135 if (!GLOBAL_ENABLE_LABELS
) {
2137 print "<p>Sorry, labels have been administratively disabled for this installation. Please contact instance owner or edit configuration file to enable this functionality.</p>";
2141 $subop = $_GET["subop"];
2143 if ($subop == "edit") {
2145 $label_id = db_escape_string($_GET["id"]);
2147 $result = db_query($link, "SELECT sql_exp,description FROM ttrss_labels WHERE
2148 owner_uid = ".$_SESSION["uid"]." AND id = '$label_id' ORDER by description");
2150 $line = db_fetch_assoc($result);
2152 $sql_exp = htmlspecialchars(db_unescape_string($line["sql_exp"]));
2153 $description = htmlspecialchars(db_unescape_string($line["description"]));
2155 print "<div id=\"infoBoxTitle\">Label editor</div>";
2156 print "<div class=\"infoBoxContents\">";
2158 print "<form id=\"label_edit_form\">";
2160 print "<input type=\"hidden\" name=\"op\" value=\"pref-labels\">";
2161 print "<input type=\"hidden\" name=\"id\" value=\"$label_id\">";
2162 print "<input type=\"hidden\" name=\"subop\" value=\"editSave\">";
2164 print "<table width='100%'>";
2166 print "<tr><td>Caption:</td>
2167 <td><input onkeypress=\"return filterCR(event)\"
2168 onkeyup=\"toggleSubmitNotEmpty(this, 'infobox_submit')\"
2169 name=\"description\" class=\"iedit\" value=\"$description\">";
2173 print "<tr><td colspan=\"2\">
2174 <p>SQL Expression:</p>";
2176 print "<textarea onkeyup=\"toggleSubmitNotEmpty(this, 'infobox_submit')\"
2177 rows=\"4\" name=\"sql_exp\" class=\"iedit\">$sql_exp</textarea>";
2179 print "</td></tr></table>";
2183 print "<div style=\"display : none\" id=\"label_test_result\"></div>";
2185 print "<div align='right'>";
2187 $is_disabled = (strpos($_SERVER['HTTP_USER_AGENT'], 'Opera') !== FALSE) ?
"disabled" : "";
2189 print "<input $is_disabled type=\"submit\" onclick=\"return labelTest()\" value=\"Test\">
2192 print "<input type=\"submit\"
2193 id=\"infobox_submit\"
2194 class=\"button\" onclick=\"return labelEditSave()\"
2197 print "<input class=\"button\"
2198 type=\"submit\" onclick=\"return labelEditCancel()\"
2206 if ($subop == "test") {
2208 $expr = db_unescape_string(trim($_GET["expr"]));
2209 $descr = db_unescape_string(trim($_GET["descr"]));
2216 $result = db_query($link,
2217 "SELECT count(ttrss_entries.id) AS num_matches
2218 FROM ttrss_entries,ttrss_user_entries,ttrss_feeds
2220 ttrss_user_entries.ref_id = ttrss_entries.id AND
2221 ttrss_user_entries.feed_id = ttrss_feeds.id AND
2222 ttrss_user_entries.owner_uid = " . $_SESSION["uid"], false);
2224 error_reporting (DEFAULT_ERROR_LEVEL
);
2227 print "<p>" . db_last_error($link) . "</p>";
2232 $num_matches = db_fetch_result($result, 0, "num_matches");;
2234 if ($num_matches > 0) {
2236 if ($num_matches > 10) {
2237 $showing_msg = ", showing first 10";
2240 print "<p>Query returned <b>$num_matches</b> matches$showing_msg:</p>";
2242 $result = db_query($link,
2243 "SELECT ttrss_entries.title,
2244 (SELECT title FROM ttrss_feeds WHERE id = feed_id) AS feed_title
2245 FROM ttrss_entries,ttrss_user_entries,ttrss_feeds
2247 ttrss_user_entries.ref_id = ttrss_entries.id
2248 AND ttrss_user_entries.feed_id = ttrss_feeds.id
2249 AND ttrss_user_entries.owner_uid = " . $_SESSION["uid"] . "
2250 ORDER BY date_entered DESC LIMIT 10", false);
2252 print "<ul class=\"labelTestResults\">";
2254 $row_class = "even";
2256 while ($line = db_fetch_assoc($result)) {
2257 $row_class = toggleEvenOdd($row_class);
2259 print "<li class=\"$row_class\">".$line["title"].
2260 " <span class=\"insensitive\">(".$line["feed_title"].")</span></li>";
2265 print "<p>Query didn't return any matches.</p>";
2273 if ($subop == "editSave") {
2275 $sql_exp = trim($_GET["sql_exp"]);
2276 $descr = db_escape_string(trim($_GET["description"]));
2277 $label_id = db_escape_string($_GET["id"]);
2279 $result = db_query($link, "UPDATE ttrss_labels SET
2280 sql_exp = '$sql_exp',
2281 description = '$descr'
2282 WHERE id = '$label_id'");
2285 if ($subop == "remove") {
2287 if (!WEB_DEMO_MODE
) {
2289 $ids = split(",", db_escape_string($_GET["ids"]));
2291 foreach ($ids as $id) {
2292 db_query($link, "DELETE FROM ttrss_labels WHERE id = '$id'");
2298 if ($subop == "add") {
2300 if (!WEB_DEMO_MODE
) {
2302 // no escaping is done here on purpose
2303 $sql_exp = trim($_GET["sql_exp"]);
2304 $description = db_escape_string($_GET["description"]);
2306 $result = db_query($link,
2307 "INSERT INTO ttrss_labels (sql_exp,description,owner_uid)
2308 VALUES ('$sql_exp', '$description', '".$_SESSION["uid"]."')");
2312 $sort = db_escape_string($_GET["sort"]);
2314 if (!$sort ||
$sort == "undefined") {
2315 $sort = "description";
2318 print "<div class=\"prefGenericAddBox\">";
2320 print"<input type=\"submit\" class=\"button\"
2321 id=\"label_create_btn\"
2322 onclick=\"return displayDlg('quickAddLabel', false)\"
2323 value=\"Create label\"></div>";
2325 $result = db_query($link, "SELECT
2326 id,sql_exp,description
2330 owner_uid = ".$_SESSION["uid"]."
2333 // print "<div id=\"infoBoxShadow\"><div id=\"infoBox\">PLACEHOLDER</div></div>";
2335 if (db_num_rows($result) != 0) {
2337 print "<form id=\"label_edit_form\">";
2339 print "<p><table width=\"100%\" cellspacing=\"0\"
2340 class=\"prefLabelList\" id=\"prefLabelList\">";
2342 print "<tr><td class=\"selectPrompt\" colspan=\"8\">
2344 <a href=\"javascript:selectPrefRows('label', true)\">All</a>,
2345 <a href=\"javascript:selectPrefRows('label', false)\">None</a>
2348 print "<tr class=\"title\">
2349 <td width=\"5%\"> </td>
2350 <td width=\"30%\"><a href=\"javascript:updateLabelList('description')\">Caption</a></td>
2351 <td width=\"50%\"><a href=\"javascript:updateLabelList('sql_exp')\">SQL Expression</a>
2352 <a class=\"helpLink\" href=\"javascript:displayHelpInfobox(1)\">(?)</a>
2358 while ($line = db_fetch_assoc($result)) {
2360 $class = ($lnum %
2) ?
"even" : "odd";
2362 $label_id = $line["id"];
2363 $edit_label_id = $_GET["id"];
2365 if ($subop == "edit" && $label_id != $edit_label_id) {
2369 $this_row_id = "id=\"LILRR-$label_id\"";
2372 print "<tr class=\"$class\" $this_row_id>";
2374 $line["sql_exp"] = htmlspecialchars(db_unescape_string($line["sql_exp"]));
2375 $line["description"] = htmlspecialchars(
2376 db_unescape_string($line["description"]));
2378 if (!$line["description"]) $line["description"] = "[No caption]";
2380 print "<td align='center'><input onclick='toggleSelectPrefRow(this, \"label\");'
2381 type=\"checkbox\" id=\"LICHK-".$line["id"]."\"></td>";
2383 print "<td><a href=\"javascript:editLabel($label_id);\">" .
2384 $line["description"] . "</td>";
2386 print "<td><a href=\"javascript:editLabel($label_id);\">" .
2387 $line["sql_exp"] . "</td>";
2395 print "<tr><td colspan=\"4\" align=\"center\">No labels defined.</td></tr>";
2402 print "<p id=\"labelOpToolbar\">";
2406 <input type=\"submit\" class=\"button\" disabled=\"true\"
2407 onclick=\"javascript:editSelectedLabel()\" value=\"Edit\">
2408 <input type=\"submit\" class=\"button\" disabled=\"true\"
2409 onclick=\"javascript:removeSelectedLabels()\" value=\"Remove\">";
2412 print "<p>No labels defined.</p>";
2416 if ($op == "error") {
2417 print "<div width=\"100%\" align='center'>";
2418 $msg = $_GET["msg"];
2423 if ($op == "help") {
2424 if (!$_GET["noheaders"]) {
2426 <title>Tiny Tiny RSS : Help</title>
2427 <link rel=\"stylesheet\" href=\"tt-rss.css\" type=\"text/css\">
2428 <script type=\"text/javascript\" src=\"prototype.js\"></script>
2429 <script type=\"text/javascript\" src=\"functions.js?$script_dt_add\"></script>
2430 <meta http-equiv=\"Content-Type\" content=\"text/html; charset=utf-8\">
2434 $tid = sprintf("%d", $_GET["tid"]);
2436 print "<div id=\"infoBoxTitle\">Help</div>";
2438 print "<div class='infoBoxContents'>";
2440 if (file_exists("help/$tid.php")) {
2441 include("help/$tid.php");
2443 print "<p>Help topic not found.</p>";
2448 print "<div align='center'>
2449 <input type='submit' class='button'
2450 onclick=\"closeInfoBox()\" value=\"Close this window\"></div>";
2452 if (!$_GET["noheaders"]) {
2453 print "</body></html>";
2460 $param = $_GET["param"];
2462 if ($id == "quickAddFeed") {
2464 print "<div id=\"infoBoxTitle\">Subscribe to feed</div>";
2465 print "<div class=\"infoBoxContents\">";
2467 print "<form id='feed_add_form'>";
2469 print "<input type=\"hidden\" name=\"op\" value=\"pref-feeds\">";
2470 print "<input type=\"hidden\" name=\"quiet\" value=\"1\">";
2471 print "<input type=\"hidden\" name=\"subop\" value=\"add\">";
2473 print "<table width='100%'>
2474 <tr><td>Feed URL:</td><td>
2475 <input class=\"iedit\" onblur=\"javascript:enableHotkeys()\"
2476 onkeypress=\"return filterCR(event)\"
2477 onkeyup=\"toggleSubmitNotEmpty(this, 'fadd_submit_btn')\"
2478 onfocus=\"javascript:disableHotkeys()\" name=\"feed_url\"></td></tr>";
2480 if (get_pref($link, 'ENABLE_FEED_CATS')) {
2481 print "<tr><td>Category:</td><td>";
2482 print_feed_cat_select($link, "cat_id");
2489 print "<div align='right'>
2490 <input class=\"button\"
2491 id=\"fadd_submit_btn\" disabled=\"true\"
2492 type=\"submit\" onclick=\"return qafAdd()\" value=\"Subscribe\">
2493 <input class=\"button\"
2494 type=\"submit\" onclick=\"return closeInfoBox()\"
2495 value=\"Cancel\"></div>";
2498 if ($id == "search") {
2500 print "<div id=\"infoBoxTitle\">Search</div>";
2501 print "<div class=\"infoBoxContents\">";
2503 print "<form id='search_form'>";
2505 #$active_feed_id = db_escape_string($_GET["param"]);
2507 $params = split(":", db_escape_string($_GET["param"]));
2509 $active_feed_id = sprintf("%d", $params[0]);
2510 $is_cat = $params[1] == "true";
2512 print "<table width='100%'><tr><td>Search:</td><td>";
2514 print "<input name=\"query\" class=\"iedit\"
2515 onkeypress=\"return filterCR(event)\"
2516 onkeyup=\"toggleSubmitNotEmpty(this, 'search_submit_btn')\"
2520 print "<tr><td>Where:</td><td>";
2522 print "<select name=\"search_mode\">
2523 <option value=\"all_feeds\">All feeds</option>";
2525 $feed_title = getFeedTitle($link, $active_feed_id);
2528 $feed_cat_title = getFeedCatTitle($link, $active_feed_id);
2530 $feed_cat_title = getCategoryTitle($link, $active_feed_id);
2533 if ($active_feed_id && !$is_cat) {
2534 print "<option selected value=\"this_feed\">This feed ($feed_title)</option>";
2536 print "<option disabled>This feed</option>";
2540 $cat_preselected = "selected";
2543 if (get_pref($link, 'ENABLE_FEED_CATS') && ($active_feed_id > 0 ||
$is_cat)) {
2544 print "<option $cat_preselected value=\"this_cat\">This category ($feed_cat_title)</option>";
2546 print "<option disabled>This category</option>";
2549 print "</select></td></tr>";
2551 print "<tr><td>Match on:</td><td>";
2553 $search_fields = array(
2555 "content" => "Content",
2556 "both" => "Title or content");
2558 print_select_hash("match_on", 3, $search_fields);
2560 print "</td></tr></table>";
2564 print "<div align=\"right\">
2565 <input type=\"submit\"
2566 class=\"button\" onclick=\"javascript:search()\"
2567 id=\"search_submit_btn\" disabled=\"true\"
2569 <input class=\"button\"
2570 type=\"submit\" onclick=\"javascript:searchCancel()\"
2571 value=\"Cancel\"></div>";
2577 if ($id == "quickAddLabel") {
2578 print "<div id=\"infoBoxTitle\">Create label</div>";
2579 print "<div class=\"infoBoxContents\">";
2581 print "<form id=\"label_edit_form\">";
2583 print "<input type=\"hidden\" name=\"op\" value=\"pref-labels\">";
2584 print "<input type=\"hidden\" name=\"subop\" value=\"add\">";
2586 print "<table width='100%'>";
2588 print "<tr><td>Caption:</td>
2589 <td><input onkeypress=\"return filterCR(event)\"
2590 onkeyup=\"toggleSubmitNotEmpty(this, 'infobox_submit')\"
2591 name=\"description\" class=\"iedit\">";
2595 print "<tr><td colspan=\"2\">
2596 <p>SQL Expression:</p>";
2598 print "<textarea onkeyup=\"toggleSubmitNotEmpty(this, 'infobox_submit')\"
2599 rows=\"4\" name=\"sql_exp\" class=\"iedit\"></textarea>";
2601 print "</td></tr></table>";
2605 print "<div style=\"display : none\" id=\"label_test_result\"></div>";
2607 print "<div align='right'>";
2609 print "<input type=\"submit\" onclick=\"labelTest()\" value=\"Test\">
2612 print "<input type=\"submit\"
2613 id=\"infobox_submit\"
2615 class=\"button\" onclick=\"return addLabel()\"
2616 value=\"Create\"> ";
2618 print "<input class=\"button\"
2619 type=\"submit\" onclick=\"return labelEditCancel()\"
2623 if ($id == "quickAddFilter") {
2625 $active_feed_id = db_escape_string($_GET["param"]);
2627 print "<div id=\"infoBoxTitle\">Create filter</div>";
2628 print "<div class=\"infoBoxContents\">";
2630 print "<form id=\"filter_add_form\">";
2632 print "<input type=\"hidden\" name=\"op\" value=\"pref-filters\">";
2633 print "<input type=\"hidden\" name=\"quiet\" value=\"1\">";
2634 print "<input type=\"hidden\" name=\"subop\" value=\"add\">";
2636 // print "<div class=\"notice\"><b>Note:</b> filter will only apply to new articles.</div>";
2638 $result = db_query($link, "SELECT id,description
2639 FROM ttrss_filter_types ORDER BY description");
2641 $filter_types = array();
2643 while ($line = db_fetch_assoc($result)) {
2644 //array_push($filter_types, $line["description"]);
2645 $filter_types[$line["id"]] = $line["description"];
2648 print "<table width='100%'>";
2650 print "<tr><td>Match:</td>
2651 <td><input onkeypress=\"return filterCR(event)\"
2652 onkeyup=\"toggleSubmitNotEmpty(this, 'infobox_submit')\"
2653 name=\"reg_exp\" class=\"iedit\">";
2656 print_select_hash("filter_type", 1, $filter_types, "class=\"iedit\"");
2659 print "<tr><td>Feed:</td><td colspan='2'>";
2661 print_feed_select($link, "feed_id", $active_feed_id);
2665 print "<tr><td>Action:</td>";
2667 print "<td colspan='2'><select name=\"action_id\">";
2669 $result = db_query($link, "SELECT id,description FROM ttrss_filter_actions
2672 while ($line = db_fetch_assoc($result)) {
2673 printf("<option value='%d'>%s</option>", $line["id"], $line["description"]);
2678 print "</td></tr></table>";
2682 print "<div align='right'>";
2684 print "<input type=\"submit\"
2685 id=\"infobox_submit\"
2686 class=\"button\" onclick=\"return qaddFilter()\"
2687 disabled=\"true\" value=\"Create\"> ";
2689 print "<input class=\"button\"
2690 type=\"submit\" onclick=\"return closeInfoBox()\"
2695 // print "</td></tr></table>";
2703 // update feeds of all users, may be used anonymously
2704 if ($op == "globalUpdateFeeds") {
2706 $result = db_query($link, "SELECT id FROM ttrss_users");
2708 while ($line = db_fetch_assoc($result)) {
2709 $user_id = $line["id"];
2710 // print "<!-- updating feeds of uid $user_id -->";
2711 update_all_feeds($link, false, $user_id);
2715 <message msg=\"All feeds updated\"/>
2720 if ($op == "pref-prefs") {
2722 $subop = $_REQUEST["subop"];
2724 if ($subop == "Save configuration") {
2726 if (WEB_DEMO_MODE
) {
2727 header("Location: prefs.php");
2731 $_SESSION["prefs_op_result"] = "save-config";
2733 $_SESSION["prefs_cache"] = false;
2735 foreach (array_keys($_POST) as $pref_name) {
2737 $pref_name = db_escape_string($pref_name);
2738 $value = db_escape_string($_POST[$pref_name]);
2740 $result = db_query($link, "SELECT type_name
2741 FROM ttrss_prefs,ttrss_prefs_types
2742 WHERE pref_name = '$pref_name' AND type_id = ttrss_prefs_types.id");
2744 if (db_num_rows($result) > 0) {
2746 $type_name = db_fetch_result($result, 0, "type_name");
2748 // print "$pref_name : $type_name : $value<br>";
2750 if ($type_name == "bool") {
2751 if ($value == "1") {
2756 } else if ($type_name == "integer") {
2757 $value = sprintf("%d", $value);
2760 // print "$pref_name : $type_name : $value<br>";
2762 db_query($link, "UPDATE ttrss_user_prefs SET value = '$value'
2763 WHERE pref_name = '$pref_name' AND owner_uid = ".$_SESSION["uid"]);
2767 header("Location: prefs.php");
2771 } else if ($subop == "getHelp") {
2773 $pref_name = db_escape_string($_GET["pn"]);
2775 $result = db_query($link, "SELECT help_text FROM ttrss_prefs
2776 WHERE pref_name = '$pref_name'");
2778 if (db_num_rows($result) > 0) {
2779 $help_text = db_fetch_result($result, 0, "help_text");
2782 print "Unknown option: $pref_name";
2785 } else if ($subop == "Change e-mail") {
2787 if (WEB_DEMO_MODE
) {
2788 header("Location: prefs.php");
2792 $email = db_escape_string($_GET["email"]);
2793 $active_uid = $_SESSION["uid"];
2796 db_query($link, "UPDATE ttrss_users SET email = '$email'
2797 WHERE id = '$active_uid'");
2800 header("Location: prefs.php");
2802 } else if ($subop == "Change password") {
2804 if (WEB_DEMO_MODE
) {
2805 header("Location: prefs.php");
2809 $old_pw = $_POST["OLD_PASSWORD"];
2810 $new_pw = $_POST["OLD_PASSWORD"];
2812 $old_pw_hash = 'SHA1:' . sha1($_POST["OLD_PASSWORD"]);
2813 $new_pw_hash = 'SHA1:' . sha1($_POST["NEW_PASSWORD"]);
2815 $active_uid = $_SESSION["uid"];
2817 if ($old_pw && $new_pw) {
2819 $login = db_escape_string($_SERVER['PHP_AUTH_USER']);
2821 $result = db_query($link, "SELECT id FROM ttrss_users WHERE
2822 id = '$active_uid' AND (pwd_hash = '$old_pw' OR
2823 pwd_hash = '$old_pw_hash')");
2825 if (db_num_rows($result) == 1) {
2826 db_query($link, "UPDATE ttrss_users SET pwd_hash = '$new_pw_hash'
2827 WHERE id = '$active_uid'");
2829 $_SESSION["pwd_change_result"] = "ok";
2831 $_SESSION["pwd_change_result"] = "failed";
2835 header("Location: prefs.php");
2837 } else if ($subop == "Reset to defaults") {
2839 if (WEB_DEMO_MODE
) {
2840 header("Location: prefs.php");
2844 $_SESSION["prefs_op_result"] = "reset-to-defaults";
2846 if (DB_TYPE
== "pgsql") {
2847 db_query($link,"UPDATE ttrss_user_prefs
2848 SET value = ttrss_prefs.def_value
2849 WHERE owner_uid = '".$_SESSION["uid"]."' AND
2850 ttrss_prefs.pref_name = ttrss_user_prefs.pref_name");
2852 db_query($link, "DELETE FROM ttrss_user_prefs
2853 WHERE owner_uid = ".$_SESSION["uid"]);
2854 initialize_user_prefs($link, $_SESSION["uid"]);
2857 header("Location: prefs.php");
2859 } else if ($subop == "Change theme") {
2861 $theme = db_escape_string($_POST["theme"]);
2863 if ($theme == "Default") {
2864 $theme_qpart = 'NULL';
2866 $theme_qpart = "'$theme'";
2869 $result = db_query($link, "SELECT id,theme_path FROM ttrss_themes
2870 WHERE theme_name = '$theme'");
2872 if (db_num_rows($result) == 1) {
2873 $theme_id = db_fetch_result($result, 0, "id");
2874 $theme_path = db_fetch_result($result, 0, "theme_path");
2880 db_query($link, "UPDATE ttrss_users SET
2881 theme_id = $theme_id WHERE id = " . $_SESSION["uid"]);
2883 $_SESSION["theme"] = $theme_path;
2885 header("Location: prefs.php");
2889 print check_for_update($link);
2891 if (!SINGLE_USER_MODE
) {
2893 $result = db_query($link, "SELECT id,email FROM ttrss_users
2894 WHERE id = ".$_SESSION["uid"]." AND (pwd_hash = 'password' OR
2895 pwd_hash = 'SHA1:".sha1("password")."')");
2897 if (db_num_rows($result) != 0) {
2898 print "<div class=\"warning\">
2899 Your password is at default value, please change it.
2903 if ($_SESSION["pwd_change_result"] == "failed") {
2904 print "<div class=\"warning\">
2905 There was an error while changing your password.
2909 if ($_SESSION["pwd_change_result"] == "ok") {
2910 print "<div class=\"notice\">
2911 Password changed successfully.
2915 $_SESSION["pwd_change_result"] = "";
2917 if ($_SESSION["prefs_op_result"] == "reset-to-defaults") {
2918 print "<div class=\"notice\">
2919 Your configuration was reset to defaults.
2923 if ($_SESSION["prefs_op_result"] == "save-config") {
2924 print "<div class=\"notice\">
2925 Your configuration was saved successfully.
2929 $_SESSION["prefs_op_result"] = "";
2931 print "<form action=\"backend.php\" method=\"GET\">";
2933 print "<table width=\"100%\" class=\"prefPrefsList\">";
2934 print "<tr><td colspan='3'><h3>Personal data</h3></tr></td>";
2936 $result = db_query($link, "SELECT email FROM ttrss_users
2937 WHERE id = ".$_SESSION["uid"]);
2939 $email = db_fetch_result($result, 0, "email");
2941 print "<tr><td width=\"40%\">E-mail</td>";
2942 print "<td><input class=\"editbox\" name=\"email\"
2943 value=\"$email\"></td></tr>";
2947 print "<input type=\"hidden\" name=\"op\" value=\"pref-prefs\">";
2949 print "<p><input class=\"button\" type=\"submit\"
2950 value=\"Change e-mail\" name=\"subop\">";
2954 print "<form action=\"backend.php\" method=\"POST\" name=\"changePassForm\">";
2956 print "<table width=\"100%\" class=\"prefPrefsList\">";
2957 print "<tr><td colspan='3'><h3>Authentication</h3></tr></td>";
2959 print "<tr><td width=\"40%\">Old password</td>";
2960 print "<td><input class=\"editbox\" type=\"password\"
2961 name=\"OLD_PASSWORD\"></td></tr>";
2963 print "<tr><td width=\"40%\">New password</td>";
2965 print "<td><input class=\"editbox\" type=\"password\"
2966 name=\"NEW_PASSWORD\"></td></tr>";
2970 print "<input type=\"hidden\" name=\"op\" value=\"pref-prefs\">";
2972 print "<p><input class=\"button\" type=\"submit\"
2973 onclick=\"return validateNewPassword(this.form)\"
2974 value=\"Change password\" name=\"subop\">";
2980 $result = db_query($link, "SELECT
2981 theme_id FROM ttrss_users WHERE id = " . $_SESSION["uid"]);
2983 $user_theme_id = db_fetch_result($result, 0, "theme_id");
2985 $result = db_query($link, "SELECT
2986 id,theme_name FROM ttrss_themes ORDER BY theme_name");
2988 if (db_num_rows($result) > 0) {
2990 print "<form action=\"backend.php\" method=\"POST\">";
2991 print "<table width=\"100%\" class=\"prefPrefsList\">";
2992 print "<tr><td colspan='3'><h3>Themes</h3></tr></td>";
2993 print "<tr><td width=\"40%\">Select theme</td>";
2994 print "<td><select name=\"theme\">";
2995 print "<option>Default</option>";
2996 print "<option disabled>--------</option>";
2998 while ($line = db_fetch_assoc($result)) {
2999 if ($line["id"] == $user_theme_id) {
3000 $selected = "selected";
3004 print "<option $selected>" . $line["theme_name"] . "</option>";
3006 print "</select></td></tr>";
3008 print "<input type=\"hidden\" name=\"op\" value=\"pref-prefs\">";
3009 print "<p><input class=\"button\" type=\"submit\"
3010 value=\"Change theme\" name=\"subop\">";
3014 initialize_user_prefs($link, $_SESSION["uid"]);
3016 $result = db_query($link, "SELECT
3017 ttrss_user_prefs.pref_name,short_desc,help_text,value,type_name,
3018 section_name,def_value
3019 FROM ttrss_prefs,ttrss_prefs_types,ttrss_prefs_sections,ttrss_user_prefs
3020 WHERE type_id = ttrss_prefs_types.id AND
3021 section_id = ttrss_prefs_sections.id AND
3022 ttrss_user_prefs.pref_name = ttrss_prefs.pref_name AND
3023 owner_uid = ".$_SESSION["uid"]."
3024 ORDER BY section_id,short_desc");
3026 print "<form action=\"backend.php\" method=\"POST\">";
3030 $active_section = "";
3032 while ($line = db_fetch_assoc($result)) {
3034 if ($active_section != $line["section_name"]) {
3036 if ($active_section != "") {
3040 print "<p><table width=\"100%\" class=\"prefPrefsList\">";
3042 $active_section = $line["section_name"];
3044 print "<tr><td colspan=\"3\"><h3>$active_section</h3></td></tr>";
3045 // print "<tr class=\"title\">
3046 // <td width=\"25%\">Option</td><td>Value</td></tr>";
3051 // $class = ($lnum % 2) ? "even" : "odd";
3055 $type_name = $line["type_name"];
3056 $pref_name = $line["pref_name"];
3057 $value = $line["value"];
3058 $def_value = $line["def_value"];
3059 $help_text = $line["help_text"];
3061 print "<td width=\"40%\" id=\"$pref_name\">" . $line["short_desc"];
3063 if ($help_text) print "<div class=\"prefHelp\">$help_text</div>";
3069 if ($type_name == "bool") {
3070 // print_select($pref_name, $value, array("true", "false"));
3072 if ($value == "true") {
3078 print_radio($pref_name, $value, array("Yes", "No"));
3081 print "<input class=\"editbox\" name=\"$pref_name\" value=\"$value\">";
3093 print "<input type=\"hidden\" name=\"op\" value=\"pref-prefs\">";
3095 print "<p><input class=\"button\" type=\"submit\"
3096 name=\"subop\" value=\"Save configuration\">";
3098 print " <input class=\"button\" type=\"submit\"
3099 name=\"subop\" onclick=\"return validatePrefsReset()\"
3100 value=\"Reset to defaults\"></p>";
3108 if ($op == "pref-users") {
3110 $subop = $_GET["subop"];
3112 if ($subop == "edit") {
3114 $id = db_escape_string($_GET["id"]);
3116 print "<div id=\"infoBoxTitle\">User editor</div>";
3118 print "<div class=\"infoBoxContents\">";
3120 print "<form id=\"user_edit_form\">";
3122 print "<input type=\"hidden\" name=\"id\" value=\"$id\">";
3123 print "<input type=\"hidden\" name=\"op\" value=\"pref-users\">";
3124 print "<input type=\"hidden\" name=\"subop\" value=\"editSave\">";
3126 $result = db_query($link, "SELECT * FROM ttrss_users WHERE id = '$id'");
3128 $login = db_fetch_result($result, 0, "login");
3129 $access_level = db_fetch_result($result, 0, "access_level");
3130 $email = db_fetch_result($result, 0, "email");
3132 print "<table width='100%'>";
3133 print "<tr><td>Login:</td><td>
3134 <input class=\"iedit\" onkeypress=\"return filterCR(event)\"
3135 name=\"login\" value=\"$login\"></td></tr>";
3137 print "<tr><td>Change password:</td><td>
3138 <input class=\"iedit\" onkeypress=\"return filterCR(event)\"
3139 name=\"password\"></td></tr>";
3141 print "<tr><td>E-mail:</td><td>
3142 <input class=\"iedit\" name=\"email\" onkeypress=\"return filterCR(event)\"
3143 value=\"$email\"></td></tr>";
3145 $sel_disabled = ($id == $_SESSION["uid"]) ?
"disabled" : "";
3147 print "<tr><td>Access level:</td><td>";
3148 print_select_hash("access_level", $access_level, $access_level_names,
3156 print "<div align='right'>
3157 <input class=\"button\"
3158 type=\"submit\" onclick=\"return userEditSave()\"
3160 <input class=\"button\"
3161 type=\"submit\" onclick=\"return userEditCancel()\"
3162 value=\"Cancel\"></div>";
3169 if ($subop == "editSave") {
3171 if (!WEB_DEMO_MODE
&& $_SESSION["access_level"] >= 10) {
3173 $login = db_escape_string(trim($_GET["login"]));
3174 $uid = db_escape_string($_GET["id"]);
3175 $access_level = sprintf("%d", $_GET["access_level"]);
3176 $email = db_escape_string(trim($_GET["email"]));
3177 $password = db_escape_string(trim($_GET["password"]));
3180 $pwd_hash = 'SHA1:' . sha1($password);
3181 $pass_query_part = "pwd_hash = '$pwd_hash', ";
3182 print "<div class='notice'>Changed password for user <b>$login</b>.</div>";
3184 $pass_query_part = "";
3187 db_query($link, "UPDATE ttrss_users SET $pass_query_part login = '$login',
3188 access_level = '$access_level', email = '$email' WHERE id = '$uid'");
3191 } else if ($subop == "remove") {
3193 if (!WEB_DEMO_MODE
&& $_SESSION["access_level"] >= 10) {
3195 $ids = split(",", db_escape_string($_GET["ids"]));
3197 foreach ($ids as $id) {
3198 db_query($link, "DELETE FROM ttrss_users WHERE id = '$id' AND id != " . $_SESSION["uid"]);
3202 } else if ($subop == "add") {
3204 if (!WEB_DEMO_MODE
&& $_SESSION["access_level"] >= 10) {
3206 $login = db_escape_string(trim($_GET["login"]));
3207 $tmp_user_pwd = make_password(8);
3208 $pwd_hash = 'SHA1:' . sha1($tmp_user_pwd);
3210 $result = db_query($link, "SELECT id FROM ttrss_users WHERE
3213 if (db_num_rows($result) == 0) {
3215 db_query($link, "INSERT INTO ttrss_users
3216 (login,pwd_hash,access_level,last_login)
3217 VALUES ('$login', '$pwd_hash', 0, NOW())");
3220 $result = db_query($link, "SELECT id FROM ttrss_users WHERE
3221 login = '$login' AND pwd_hash = '$pwd_hash'");
3223 if (db_num_rows($result) == 1) {
3225 $new_uid = db_fetch_result($result, 0, "id");
3227 print "<div class=\"notice\">Added user <b>".$_GET["login"].
3228 "</b> with password <b>$tmp_user_pwd</b>.</div>";
3230 initialize_user($link, $new_uid);
3234 print "<div class=\"warning\">Could not create user <b>".
3235 $_GET["login"]."</b></div>";
3239 print "<div class=\"warning\">User <b>".
3240 $_GET["login"]."</b> already exists.</div>";
3243 } else if ($subop == "resetPass") {
3245 if (!WEB_DEMO_MODE
&& $_SESSION["access_level"] >= 10) {
3247 $uid = db_escape_string($_GET["id"]);
3249 $result = db_query($link, "SELECT login,email
3250 FROM ttrss_users WHERE id = '$uid'");
3252 $login = db_fetch_result($result, 0, "login");
3253 $email = db_fetch_result($result, 0, "email");
3254 $tmp_user_pwd = make_password(8);
3255 $pwd_hash = 'SHA1:' . sha1($tmp_user_pwd);
3257 db_query($link, "UPDATE ttrss_users SET pwd_hash = '$pwd_hash'
3258 WHERE id = '$uid'");
3260 print "<div class=\"notice\">Changed password of
3261 user <b>$login</b> to <b>$tmp_user_pwd</b>.";
3263 if (MAIL_RESET_PASS
&& $email) {
3264 print " Notifying <b>$email</b>.";
3266 mail("$login <$email>", "Password reset notification",
3269 "Your password for this TT-RSS installation was reset by".
3270 " an administrator.\n".
3272 "Your new password is $tmp_user_pwd, please remember".
3273 " it for later reference.\n".
3275 "Sincerely, TT-RSS Mail Daemon.", "From: " . MAIL_FROM
);
3283 $sort = db_escape_string($_GET["sort"]);
3285 if (!$sort ||
$sort == "undefined") {
3289 print "<div class=\"prefGenericAddBox\">
3290 <input id=\"uadd_box\"
3291 onkeyup=\"toggleSubmitNotEmpty(this, 'user_add_btn')\"
3292 size=\"40\"> ";
3294 print"<input type=\"submit\" class=\"button\"
3295 id=\"user_add_btn\" disabled=\"true\"
3296 onclick=\"javascript:addUser()\" value=\"Create user\"></div>";
3298 $result = db_query($link, "SELECT
3299 id,login,access_level,email,
3300 SUBSTRING(last_login,1,16) as last_login
3305 // print "<div id=\"infoBoxShadow\"><div id=\"infoBox\">PLACEHOLDER</div></div>";
3307 print "<p><table width=\"100%\" cellspacing=\"0\"
3308 class=\"prefUserList\" id=\"prefUserList\">";
3310 print "<tr><td class=\"selectPrompt\" colspan=\"8\">
3312 <a href=\"javascript:selectPrefRows('user', true)\">All</a>,
3313 <a href=\"javascript:selectPrefRows('user', false)\">None</a>
3316 print "<tr class=\"title\">
3317 <td align='center' width=\"5%\"> </td>
3318 <td width='40%'><a href=\"javascript:updateUsersList('login')\">Login</a></td>
3319 <td width='40%'><a href=\"javascript:updateUsersList('access_level')\">Access Level</a></td>
3320 <td width='30%'><a href=\"javascript:updateUsersList('last_login')\">Last login</a></td></tr>";
3324 while ($line = db_fetch_assoc($result)) {
3326 $class = ($lnum %
2) ?
"even" : "odd";
3329 $edit_uid = $_GET["id"];
3331 if ($subop == "edit" && $uid != $edit_uid) {
3335 $this_row_id = "id=\"UMRR-$uid\"";
3338 print "<tr class=\"$class\" $this_row_id>";
3340 $line["login"] = htmlspecialchars($line["login"]);
3342 $line["last_login"] = date(get_pref($link, 'SHORT_DATE_FORMAT'),
3343 strtotime($line["last_login"]));
3345 $access_level_names = array(0 => "User", 10 => "Administrator");
3347 // if (!$edit_uid || $subop != "edit") {
3349 print "<td align='center'><input onclick='toggleSelectPrefRow(this, \"user\");'
3350 type=\"checkbox\" id=\"UMCHK-$uid\"></td>";
3352 print "<td><a href=\"javascript:editUser($uid);\">" .
3353 $line["login"] . "</td>";
3355 if (!$line["email"]) $line["email"] = " ";
3357 print "<td><a href=\"javascript:editUser($uid);\">" .
3358 $access_level_names[$line["access_level"]] . "</td>";
3360 /* } else if ($uid != $edit_uid) {
3362 if (!$line["email"]) $line["email"] = " ";
3364 print "<td align='center'><input disabled=\"true\" type=\"checkbox\"
3365 id=\"UMCHK-".$line["id"]."\"></td>";
3367 print "<td>".$line["login"]."</td>";
3368 print "<td>".$line["email"]."</td>";
3369 print "<td>".$access_level_names[$line["access_level"]]."</td>";
3373 print "<td align='center'>
3374 <input disabled=\"true\" type=\"checkbox\" checked></td>";
3376 print "<td><input id=\"iedit_ulogin\" value=\"".$line["login"].
3379 print "<td><input id=\"iedit_email\" value=\"".$line["email"].
3383 print "<select id=\"iedit_ulevel\">";
3384 foreach (array_keys($access_level_names) as $al) {
3385 if ($al == $line["access_level"]) {
3386 $selected = "selected";
3390 print "<option $selected id=\"$al\">" .
3391 $access_level_names[$al] . "</option>";
3398 print "<td>".$line["last_login"]."</td>";
3407 print "<p id='userOpToolbar'>";
3409 /* if ($subop == "edit") {
3411 <input type=\"submit\" class=\"button\"
3412 onclick=\"javascript:userEditSave()\" value=\"Save\">
3413 <input type=\"submit\" class=\"button\"
3414 onclick=\"javascript:userEditCancel()\" value=\"Cancel\">";
3420 <input type=\"submit\" class=\"button\" disabled=\"true\"
3421 onclick=\"javascript:selectedUserDetails()\" value=\"User details\">
3422 <input type=\"submit\" class=\"button\" disabled=\"true\"
3423 onclick=\"javascript:editSelectedUser()\" value=\"Edit\">
3424 <input type=\"submit\" class=\"button\" disabled=\"true\"
3425 onclick=\"javascript:removeSelectedUsers()\" value=\"Remove\">
3426 <input type=\"submit\" class=\"button\" disabled=\"true\"
3427 onclick=\"javascript:resetSelectedUserPass()\" value=\"Reset password\">";
3432 if ($op == "user-details") {
3434 if (WEB_DEMO_MODE ||
$_SESSION["access_level"] < 10) {
3438 /* print "<html><head>
3439 <title>Tiny Tiny RSS : User Details</title>
3440 <link rel=\"stylesheet\" href=\"tt-rss.css\" type=\"text/css\">
3441 <meta http-equiv=\"Content-Type\" content=\"text/html; charset=utf-8\">
3444 $uid = sprintf("%d", $_GET["id"]);
3446 print "<div id=\"infoBoxTitle\">User details</div>";
3448 print "<div class='infoBoxContents'>";
3450 $result = db_query($link, "SELECT login,
3451 SUBSTRING(last_login,1,16) AS last_login,
3453 (SELECT COUNT(int_id) FROM ttrss_user_entries
3454 WHERE owner_uid = id) AS stored_articles
3456 WHERE id = '$uid'");
3458 if (db_num_rows($result) == 0) {
3459 print "<h1>User not found</h1>";
3463 # print "<h1>User Details</h1>";
3465 $login = db_fetch_result($result, 0, "login");
3467 # print "<h1>$login</h1>";
3469 print "<table width='100%'>";
3471 $last_login = date(get_pref($link, 'LONG_DATE_FORMAT'),
3472 strtotime(db_fetch_result($result, 0, "last_login")));
3473 $access_level = db_fetch_result($result, 0, "access_level");
3474 $stored_articles = db_fetch_result($result, 0, "stored_articles");
3476 # print "<tr><td>Username</td><td>$login</td></tr>";
3477 # print "<tr><td>Access level</td><td>$access_level</td></tr>";
3478 print "<tr><td>Last logged in</td><td>$last_login</td></tr>";
3479 print "<tr><td>Stored articles</td><td>$stored_articles</td></tr>";
3481 $result = db_query($link, "SELECT COUNT(id) as num_feeds FROM ttrss_feeds
3482 WHERE owner_uid = '$uid'");
3484 $num_feeds = db_fetch_result($result, 0, "num_feeds");
3486 print "<tr><td>Subscribed feeds count</td><td>$num_feeds</td></tr>";
3488 /* $result = db_query($link, "SELECT
3489 SUM(LENGTH(content)+LENGTH(title)+LENGTH(link)+LENGTH(guid)) AS db_size
3490 FROM ttrss_user_entries,ttrss_entries
3491 WHERE owner_uid = '$uid' AND ref_id = id");
3493 $db_size = round(db_fetch_result($result, 0, "db_size") / 1024);
3495 print "<tr><td>Approx. used DB size</td><td>$db_size KBytes</td></tr>"; */
3499 print "<h1>Subscribed feeds</h1>";
3501 $result = db_query($link, "SELECT id,title,site_url FROM ttrss_feeds
3502 WHERE owner_uid = '$uid' ORDER BY title");
3504 print "<ul class=\"userFeedList\">";
3508 while ($line = db_fetch_assoc($result)) {
3510 $icon_file = ICONS_URL
."/".$line["id"].".ico";
3512 if (file_exists($icon_file) && filesize($icon_file) > 0) {
3513 $feed_icon = "<img class=\"tinyFeedIcon\" src=\"$icon_file\">";
3515 $feed_icon = "<img class=\"tinyFeedIcon\" src=\"images/blank_icon.gif\">";
3518 print "<li class=\"$row_class\">$feed_icon <a href=\"".$line["site_url"]."\">".$line["title"]."</a></li>";
3520 $row_class = toggleEvenOdd($row_class);
3524 if (db_num_rows($result) < $num_feeds) {
3525 // FIXME - add link to show ALL subscribed feeds here somewhere
3527 class=\"tinyFeedIcon\" src=\"images/blank_icon.gif\"> ...</li>";
3534 print "<div align='center'>
3535 <input type='submit' class='button'
3536 onclick=\"closeInfoBox()\" value=\"Close this window\"></div>";
3538 // print "</body></html>";
3542 if ($op == "pref-feed-browser") {
3544 if (!ENABLE_FEED_BROWSER
) {
3545 print "Feed browser is administratively disabled.";
3549 $subop = $_REQUEST["subop"];
3551 if ($subop == "details") {
3552 $id = db_escape_string($_GET["id"]);
3554 print "<div class=\"browserFeedInfo\">";
3555 print "<b>Feed information:</b>";
3556 print "<div class=\"detailsPart\">";
3558 $result = db_query($link, "SELECT
3560 SUBSTRING(last_updated,1,19) AS last_updated
3561 FROM ttrss_feeds WHERE id = '$id'");
3563 $feed_url = db_fetch_result($result, 0, "feed_url");
3564 $site_url = db_fetch_result($result, 0, "site_url");
3565 $last_updated = db_fetch_result($result, 0, "last_updated");
3567 if (get_pref($link, 'HEADLINES_SMART_DATE')) {
3568 $last_updated = smart_date_time(strtotime($last_updated));
3570 $short_date = get_pref($link, 'SHORT_DATE_FORMAT');
3571 $last_updated = date($short_date, strtotime($last_updated));
3574 print "Site: <a target=\"_new\" href='$site_url'>$site_url</a> ".
3575 "(<a target=\"_new\" href='$feed_url'>feed</a>), ".
3576 "Last updated: $last_updated";
3580 $result = db_query($link, "SELECT
3581 ttrss_entries.title,
3583 substring(date_entered,1,19) as date_entered,
3584 substring(updated,1,19) as updated
3585 FROM ttrss_entries,ttrss_user_entries
3586 WHERE ttrss_entries.id = ref_id AND feed_id = '$id'
3587 ORDER BY updated DESC LIMIT 5");
3589 if (db_num_rows($result) > 0) {
3591 print "<b>Last headlines:</b><br>";
3593 print "<div class=\"detailsPart\">";
3594 print "<ul class=\"compact\">";
3595 while ($line = db_fetch_assoc($result)) {
3597 if (get_pref($link, 'HEADLINES_SMART_DATE')) {
3598 $entry_dt = smart_date_time(strtotime($line["updated"]));
3600 $short_date = get_pref($link, 'SHORT_DATE_FORMAT');
3601 $entry_dt = date($short_date, strtotime($line["updated"]));
3604 print "<li><a target=\"_new\" href=\"" . $line["link"] . "\">" . $line["title"] . "</a>" .
3605 " <span class=\"insensitive\">($entry_dt)</span></li>";
3607 print "</ul></div>";
3615 print "<p>This panel shows feeds subscribed by other users of this system, just in case you are interested in some of them too.</p>";
3617 $limit = db_escape_string($_GET["limit"]);
3619 if (!$limit) $limit = 25;
3621 $owner_uid = $_SESSION["uid"];
3623 $result = db_query($link, "SELECT feed_url,COUNT(id) AS subscribers
3624 FROM ttrss_feeds WHERE (SELECT COUNT(id) = 0 FROM ttrss_feeds AS tf
3625 WHERE tf.feed_url = ttrss_feeds.feed_url
3626 AND owner_uid = '$owner_uid') GROUP BY feed_url
3627 ORDER BY subscribers DESC LIMIT $limit");
3630 print "<div style=\"float : right\">
3631 Top <select id=\"feedBrowserLimit\">";
3633 foreach (array(25, 50, 100) as $l) {
3634 $issel = ($l == $limit) ?
"selected" : "";
3635 print "<option $issel>$l</option>";
3639 <input type=\"submit\" class=\"button\"
3640 onclick=\"updateBigFeedBrowser()\" value=\"Show\">
3643 print "<p id=\"fbrOpToolbar\">Selection:
3644 <input type='submit' class='button' onclick=\"feedBrowserSubscribe()\"
3645 disabled=\"true\" value=\"Subscribe\">";
3647 print "<ul class='nomarks' id='browseBigFeedList'>";
3651 while ($line = db_fetch_assoc($result)) {
3652 $feed_url = $line["feed_url"];
3653 $subscribers = $line["subscribers"];
3655 $det_result = db_query($link, "SELECT site_url,title,id
3656 FROM ttrss_feeds WHERE feed_url = '$feed_url' LIMIT 1");
3658 $details = db_fetch_assoc($det_result);
3660 $icon_file = ICONS_DIR
. "/" . $details["id"] . ".ico";
3662 if (file_exists($icon_file) && filesize($icon_file) > 0) {
3663 $feed_icon = "<img class=\"tinyFeedIcon\" src=\"" . ICONS_URL
.
3664 "/".$details["id"].".ico\">";
3666 $feed_icon = "<img class=\"tinyFeedIcon\" src=\"images/blank_icon.gif\">";
3669 $check_box = "<input onclick='toggleSelectFBListRow(this)' class='feedBrowseCB'
3670 type=\"checkbox\" id=\"FBCHK-" . $details["id"] . "\">";
3672 $class = ($feedctr %
2) ?
"even" : "odd";
3674 print "<li class='$class' id=\"FBROW-".$details["id"]."\">$check_box".
3677 print "<a href=\"javascript:browserToggleExpand('".$details["id"]."')\">" .
3678 $details["title"] ."</a> " .
3679 "<span class='subscribers'>($subscribers)</span>";
3681 print "<div class=\"browserDetails\" id=\"BRDET-" . $details["id"] . "\">";
3689 if ($feedctr == 0) {
3690 print "<li>No feeds found to subscribe.</li>";
3700 $feed = db_escape_string($_GET["id"]);
3701 $user = db_escape_string($_GET["user"]);
3702 $pass = db_escape_string($_GET["pass"]);
3703 $is_cat = $_GET["is_cat"] != false;
3705 $search = db_escape_string($_GET["q"]);
3706 $match_on = db_escape_string($_GET["m"]);
3707 $search_mode = db_escape_string($_GET["smode"]);
3709 if (!$_SESSION["uid"] && $user && $pass) {
3710 authenticate_user($link, $user, $pass);
3713 if ($_SESSION["uid"] ||
3714 http_authenticate_user($link)) {
3716 generate_syndicated_feed($link, $feed, $is_cat,
3717 $search, $search_mode, $match_on);
3721 function check_configuration_variables() {
3722 if (!defined('SESSION_EXPIRE_TIME')) {
3723 return "config: SESSION_EXPIRE_TIME is undefined";
3726 if (SESSION_EXPIRE_TIME
< 60) {
3727 return "config: SESSION_EXPIRE_TIME is too low (less than 60)";
3730 if (SESSION_EXPIRE_TIME
< SESSION_COOKIE_LIFETIME_REMEMBER
) {
3731 return "config: SESSION_EXPIRE_TIME should be greater or equal to" .
3732 "SESSION_COOKIE_LIFETIME_REMEMBER";
3735 if (defined('DISABLE_SESSIONS')) {
3736 return "config: you have enabled DISABLE_SESSIONS. Please disable this option.";
3739 if (DATABASE_BACKED_SESSIONS
&& SINGLE_USER_MODE
) {
3740 return "config: DATABASE_BACKED_SESSIONS is incompatible with SINGLE_USER_MODE";
3746 if ($op == "labelFromSearch") {
3747 $search = db_escape_string($_GET["search"]);
3748 $search_mode = db_escape_string($_GET["smode"]);
3749 $match_on = db_escape_string($_GET["match"]);
3750 $is_cat = db_escape_string($_GET["is_cat"]);
3751 $title = db_escape_string($_GET["title"]);
3752 $feed = sprintf("%d", $_GET["feed"]);
3754 $label_qparts = array();
3756 $search_expr = getSearchSql($search, $match_on);
3760 $search_expr .= " AND ttrss_feeds.cat_id = $feed ";
3762 $search_expr .= " AND ttrss_feeds.cat_id IS NULL ";
3765 if ($search_mode == "all_feeds") {
3767 } else if ($search_mode == "this_cat") {
3769 $tmp_result = db_query($link, "SELECT cat_id
3770 FROM ttrss_feeds WHERE id = '$feed'");
3772 $cat_id = db_fetch_result($tmp_result, 0, "cat_id");
3775 $search_expr .= " AND ttrss_feeds.cat_id = $cat_id ";
3777 $search_expr .= " AND ttrss_feeds.cat_id IS NULL ";
3780 $search_expr .= " AND ttrss_feeds.id = $feed ";
3785 $search_expr = db_escape_string($search_expr);
3790 $result = db_query($link,
3791 "INSERT INTO ttrss_labels (sql_exp,description,owner_uid)
3792 VALUES ('$search_expr', '$title', '".$_SESSION["uid"]."')");
3796 if ($op == "getUnread") {
3797 $login = db_escape_string($_GET["login"]);
3799 header("Content-Type: text/plain; charset=utf-8");
3801 $result = db_query($link, "SELECT id FROM ttrss_users WHERE login = '$login'");
3803 if (db_num_rows($result) == 1) {
3804 $uid = db_fetch_result($result, 0, "id");
3805 print getGlobalUnread($link, $uid);
3807 print "-1;User not found";
3810 $print_exec_time = false;
3813 if ($op == "digestTest") {
3814 header("Content-Type: text/plain");
3815 print_r(prepare_headlines_digest($link, $_SESSION["uid"]));
3816 $print_exec_time = false;
3820 if ($op == "digestSend") {
3821 header("Content-Type: text/plain");
3822 send_headlines_digests($link);
3823 $print_exec_time = false;
3830 <?php
if ($print_exec_time) { ?
>
3831 <!-- <?php
echo sprintf("Backend execution time: %.4f seconds", getmicrotime() - $script_started) ?
> -->