4 if (!$_SESSION["uid"]) { exit; }
6 define(SCHEMA_VERSION
, 2);
8 require_once "config.php";
10 require_once "db-prefs.php";
11 require_once "functions.php";
12 require_once "magpierss/rss_fetch.inc";
14 $op = $_REQUEST["op"];
16 if ($op == "rpc" ||
$op == "updateAllFeeds") {
17 header("Content-Type: application/xml");
20 $script_started = getmicrotime();
22 $link = db_connect(DB_HOST
, DB_USER
, DB_PASS
, DB_NAME
);
25 if (DB_TYPE
== "mysql") {
28 // PG seems to display its own errors just fine by default.
32 if (DB_TYPE
== "pgsql") {
33 pg_query("set client_encoding = 'utf-8'");
37 $result = db_query($link, "SELECT schema_version FROM ttrss_version");
39 $schema_version = db_fetch_result($result, 0, "schema_version");
41 if ($schema_version != SCHEMA_VERSION) {
42 print "Error: database schema is invalid
43 (got version $schema_version; expected ".SCHEMA_VERSION.")";
48 $fetch = $_GET["fetch"];
50 /* FIXME this needs reworking */
52 function getGlobalCounters($link) {
53 $result = db_query($link, "SELECT count(id) as c_id FROM ttrss_entries
54 WHERE unread = true AND owner_uid = " . $_SESSION["uid"]);
55 $c_id = db_fetch_result($result, 0, "c_id");
56 print "<counter id='global-unread' counter='$c_id'/>";
59 function getTagCounters($link) {
60 $result = db_query($link, "SELECT tag_name,count(ttrss_entries.id) AS count
61 FROM ttrss_tags,ttrss_entries WHERE
62 ttrss_tags.owner_uid = ".$_SESSION["uid"]." AND
63 post_id = ttrss_entries.id AND unread = true GROUP BY tag_name
65 select tag_name,0 as count FROM ttrss_tags
66 WHERE ttrss_tags.owner_uid = ".$_SESSION["uid"]);
70 while ($line = db_fetch_assoc($result)) {
71 $tags[$line["tag_name"]] +
= $line["count"];
74 foreach (array_keys($tags) as $tag) {
75 $unread = $tags[$tag];
77 $tag = htmlspecialchars($tag);
78 print "<tag id=\"$tag\" counter=\"$unread\"/>";
82 function getLabelCounters($link) {
84 $result = db_query($link, "SELECT count(id) as count FROM ttrss_entries
85 WHERE marked = true AND unread = true AND owner_uid = ".$_SESSION["uid"]);
87 $count = db_fetch_result($result, 0, "count");
89 print "<label id=\"-1\" counter=\"$count\"/>";
91 $result = db_query($link, "SELECT owner_uid,id,sql_exp,description FROM
92 ttrss_labels WHERE owner_uid = ".$_SESSION["uid"]." ORDER by description");
94 while ($line = db_fetch_assoc($result)) {
96 $id = -$line["id"] - 11;
100 $tmp_result = db_query($link, "SELECT count(id) as count FROM ttrss_entries
101 WHERE (" . $line["sql_exp"] . ") AND unread = true AND
102 owner_uid = ".$_SESSION["uid"]);
104 $count = db_fetch_result($tmp_result, 0, "count");
106 print "<label id=\"$id\" counter=\"$count\"/>";
108 error_reporting (E_ERROR | E_WARNING | E_PARSE
);
113 function getFeedCounter($link, $id) {
115 $result = db_query($link, "SELECT
116 count(id) as count FROM ttrss_entries
117 WHERE feed_id = '$id' AND unread = true");
119 $count = db_fetch_result($result, 0, "count");
121 print "<feed id=\"$id\" counter=\"$count\"/>";
124 function getFeedCounters($link) {
126 $result = db_query($link, "SELECT id,
127 (SELECT count(id) FROM ttrss_entries WHERE feed_id = ttrss_feeds.id
128 AND unread = true) as count
129 FROM ttrss_feeds WHERE owner_uid = ".$_SESSION["uid"]);
131 while ($line = db_fetch_assoc($result)) {
134 $count = $line["count"];
136 print "<feed id=\"$id\" counter=\"$count\"/>";
140 function outputFeedList($link, $tags = false) {
143 <title>Tiny Tiny RSS : Feedlist</title>
144 <link rel=\"stylesheet\" href=\"tt-rss.css\" type=\"text/css\">";
146 if (get_pref($link, 'USE_COMPACT_STYLESHEET')) {
147 print "<link rel=\"stylesheet\" type=\"text/css\"
148 href=\"tt-rss_compact.css\"/>";
150 print "<link title=\"Compact Stylesheet\" rel=\"alternate stylesheet\"
151 type=\"text/css\" href=\"tt-rss_compact.css\"/>";
154 print "<script type=\"text/javascript\" src=\"functions.js\"></script>
155 <script type=\"text/javascript\" src=\"feedlist.js\"></script>
156 <meta http-equiv=\"Content-Type\" content=\"text/html; charset=utf-8\">
157 </head><body onload=\"init()\">";
159 print "<ul class=\"feedList\" id=\"feedList\">";
161 $owner_uid = $_SESSION["uid"];
167 $result = db_query($link, "SELECT count(id) as num_starred
168 FROM ttrss_entries WHERE marked = true AND unread = true AND owner_uid = '$owner_uid'");
169 $num_starred = db_fetch_result($result, 0, "num_starred");
173 if ($num_starred > 0) $class .= "Unread";
175 printFeedEntry(-1, $class, "Starred articles", $num_starred,
176 "images/mark_set.png", $link);
178 if (get_pref($link, 'ENABLE_LABELS')) {
180 $result = db_query($link, "SELECT id,sql_exp,description FROM
181 ttrss_labels WHERE owner_uid = '$owner_uid' ORDER by description");
183 if (db_num_rows($result) > 0) {
184 print "<li><hr></li>";
187 while ($line = db_fetch_assoc($result)) {
191 $tmp_result = db_query($link, "SELECT count(id) as count FROM ttrss_entries
192 WHERE (" . $line["sql_exp"] . ") AND unread = true
193 AND owner_uid = '$owner_uid'");
195 $count = db_fetch_result($tmp_result, 0, "count");
203 error_reporting (E_ERROR | E_WARNING | E_PARSE
);
205 printFeedEntry(-$line["id"]-11,
206 $class, $line["description"], $count, "images/label.png", $link);
211 print "<li><hr></li>";
213 $result = db_query($link, "SELECT *,
214 (SELECT count(id) FROM ttrss_entries
215 WHERE feed_id = ttrss_feeds.id) AS total,
216 (SELECT count(id) FROM ttrss_entries
217 WHERE feed_id = ttrss_feeds.id AND unread = true) as unread
218 FROM ttrss_feeds WHERE owner_uid = '$owner_uid' ORDER BY title");
220 $actid = $_GET["actid"];
228 while ($line = db_fetch_assoc($result)) {
230 $feed = $line["title"];
231 $feed_id = $line["id"];
233 $subop = $_GET["subop"];
235 $total = $line["total"];
236 $unread = $line["unread"];
238 // $class = ($lnum % 2) ? "even" : "odd";
242 if ($unread > 0) $class .= "Unread";
244 if ($actid == $feed_id) {
245 $class .= "Selected";
248 $total_unread +
= $unread;
250 printFeedEntry($feed_id, $class, $feed, $unread, "icons/$feed_id.ico", $link);
258 $result = db_query($link, "SELECT tag_name,count(ttrss_entries.id) AS count
259 FROM ttrss_tags,ttrss_entries WHERE
260 post_id = ttrss_entries.id AND unread = true
261 AND ttrss_tags.owner_uid = '$owner_uid' GROUP BY tag_name
263 select tag_name,0 as count FROM ttrss_tags WHERE owner_uid = '$owner_uid'");
267 while ($line = db_fetch_assoc($result)) {
268 $tags[$line["tag_name"]] +
= $line["count"];
271 foreach (array_keys($tags) as $tag) {
273 $unread = $tags[$tag];
281 printFeedEntry($tag, $class, $tag, $unread, "images/tag.png", $link);
287 if (db_num_rows($result) == 0) {
288 print "<li>No tags/feeds to display.</li>";
293 print "<div class=\"invisible\" id=\"FEEDTU\">$total_unread</div>";
300 $subop = $_GET["subop"];
302 if ($subop == "getLabelCounters") {
305 getLabelCounters($link);
307 getFeedCounter($link, $aid);
309 print "</rpc-reply>";
312 if ($subop == "getFeedCounters") {
314 getFeedCounters($link);
315 print "</rpc-reply>";
318 if ($subop == "getAllCounters") {
320 getLabelCounters($link);
321 getFeedCounters($link);
322 getTagCounters($link);
323 getGlobalCounters($link);
324 print "</rpc-reply>";
327 if ($subop == "mark") {
328 $mark = $_GET["mark"];
329 $id = db_escape_string($_GET["id"]);
337 $result = db_query($link, "UPDATE ttrss_entries SET marked = $mark
341 if ($subop == "updateFeed") {
342 $feed_id = db_escape_string($_GET["feed"]);
344 $result = db_query($link,
345 "SELECT feed_url FROM ttrss_feeds WHERE id = '$feed_id'");
347 if (db_num_rows($result) > 0) {
348 $feed_url = db_fetch_result($result, 0, "feed_url");
349 // update_rss_feed($link, $feed_url, $feed_id);
352 print "DONE-$feed_id";
357 if ($subop == "forceUpdateAllFeeds" ||
$subop == "updateAllFeeds") {
359 update_all_feeds($link, true);
361 $omode = $_GET["omode"];
363 if (!$omode) $omode = "tfl";
366 if (strchr($omode, "l")) getLabelCounters($link);
367 if (strchr($omode, "f")) getFeedCounters($link);
368 if (strchr($omode, "t")) getTagCounters($link);
369 getGlobalCounters($link);
370 print "</rpc-reply>";
373 if ($subop == "catchupPage") {
375 $ids = split(",", $_GET["ids"]);
377 foreach ($ids as $id) {
379 db_query($link, "UPDATE ttrss_entries SET unread=false,last_read = NOW()
384 print "Marked active page as read.";
387 if ($subop == "sanityCheck") {
391 $result = db_query($link, "SELECT schema_version FROM ttrss_version");
393 $schema_version = db_fetch_result($result, 0, "schema_version");
395 if ($schema_version != SCHEMA_VERSION
) {
399 print "<error code='$error_code'/>";
403 if ($op == "feeds") {
405 $tags = $_GET["tags"];
407 $subop = $_GET["subop"];
409 if ($subop == "catchupAll") {
410 db_query($link, "UPDATE ttrss_entries SET
411 last_read = NOW(),unread = false WHERE owner_uid = " . $_SESSION["uid"]);
414 outputFeedList($link, $tags);
421 $feed_id = $_GET["feed"];
423 $result = db_query($link, "UPDATE ttrss_entries SET unread = false,last_read = NOW() WHERE id = '$id'");
425 $addheader = $_GET["addheader"];
427 $result = db_query($link, "SELECT title,link,content,feed_id,comments,
428 (SELECT icon_url FROM ttrss_feeds WHERE id = feed_id) as icon_url
434 <title>Tiny Tiny RSS : Article $id</title>
435 <link rel=\"stylesheet\" href=\"tt-rss.css\" type=\"text/css\">
436 <script type=\"text/javascript\" src=\"functions.js\"></script>
437 <meta http-equiv=\"Content-Type\" content=\"text/html; charset=utf-8\">
443 $line = db_fetch_assoc($result);
445 if ($line["icon_url"]) {
446 $feed_icon = "<img class=\"feedIcon\" src=\"" . $line["icon_url"] . "\">";
448 $feed_icon = " ";
451 if ($line["comments"] && $line["link"] != $line["comments"]) {
452 $entry_comments = "(<a href=\"".$line["comments"]."\">Comments</a>)";
454 $entry_comments = "";
457 print "<div class=\"postReply\">";
459 print "<div class=\"postHeader\"><table>";
461 print "<tr><td><b>Title:</b></td>
462 <td width='100%'>" . $line["title"] . "</td></tr>";
464 print "<tr><td><b>Link:</b></td>
466 <a href=\"" . $line["link"] . "\">".$line["link"]."</a>
467 $entry_comments</td></tr>";
469 print "</table></div>";
471 print "<div class=\"postIcon\">" . $feed_icon . "</div>";
472 print "<div class=\"postContent\">" . $line["content"] . "</div>";
476 print "<script type=\"text/javascript\">
477 update_label_counters('$feed_id');
482 print "</body></html>";
486 if ($op == "viewfeed") {
488 $feed = $_GET["feed"];
489 $skip = $_GET["skip"];
490 $subop = $_GET["subop"];
491 $view_mode = $_GET["view"];
492 $addheader = $_GET["addheader"];
493 $limit = $_GET["limit"];
496 print "Error: no feed to display.";
500 if (!$skip) $skip = 0;
502 if ($subop == "undefined") $subop = "";
506 <title>Tiny Tiny RSS : Feed $feed</title>
507 <link rel=\"stylesheet\" href=\"tt-rss.css\" type=\"text/css\">";
509 if (get_pref($link, 'USE_COMPACT_STYLESHEET')) {
510 print "<link rel=\"stylesheet\"
511 type=\"text/css\" href=\"tt-rss_compact.css\"/>";
514 print "<link title=\"Compact Stylesheet\" rel=\"alternate stylesheet\"
515 type=\"text/css\" href=\"tt-rss_compact.css\"/>";
517 print "<meta http-equiv=\"Content-Type\" content=\"text/html; charset=utf-8\">
518 <script type=\"text/javascript\" src=\"functions.js\"></script>
519 <script type=\"text/javascript\" src=\"viewfeed.js\"></script>
520 </head><body onload='init()'>";
523 if ($subop == "ForceUpdate" && sprintf("%d", $feed) > 0) {
525 $tmp_result = db_query($link, "SELECT feed_url FROM ttrss_feeds
526 WHERE id = '$feed'");
528 $feed_url = db_fetch_result($tmp_result, 0, "feed_url");
530 update_rss_feed($link, $feed_url, $feed);
534 if ($subop == "MarkAllRead") {
536 if (sprintf("%d", $feed) != 0) {
539 db_query($link, "UPDATE ttrss_entries
540 SET unread = false,last_read = NOW()
541 WHERE feed_id = '$feed'");
543 } else if ($feed < 0 && $feed > -10) { // special, like starred
546 db_query($link, "UPDATE ttrss_entries
547 SET unread = false,last_read = NOW()
548 WHERE marked = true");
551 } else if ($feed < -10) { // label
553 $label_id = -$feed - 11;
555 $tmp_result = db_query($link, "SELECT sql_exp FROM ttrss_labels
556 WHERE id = '$label_id'");
559 $sql_exp = db_fetch_result($tmp_result, 0, "sql_exp");
561 db_query($link, "UPDATE ttrss_entries
562 SET unread = false,last_read = NOW()
567 // FIXME, implement catchup for tags
572 print "<table class=\"headlinesList\" id=\"headlinesList\" width=\"100%\">";
574 $search = $_GET["search"];
576 $search_mode = $_GET["smode"];
579 $search_query_part = "(upper(title) LIKE upper('%$search%')
580 OR content LIKE '%$search%') AND";
582 $search_query_part = "";
585 $view_query_part = "";
587 if ($view_mode == "Starred") {
588 $view_query_part = " marked = true AND ";
591 if ($view_mode == "Unread") {
592 $view_query_part = " unread = true AND ";
595 if ($view_mode == "Unread or Starred") {
596 $view_query_part = " (unread = true OR marked = true) AND ";
599 if ($view_mode == "Unread or Updated") {
600 $view_query_part = " (unread = true OR last_read is NULL) AND ";
603 /* $result = db_query($link, "SELECT count(id) AS total_entries
604 FROM ttrss_entries WHERE
608 $total_entries = db_fetch_result($result, 0, "total_entries"); */
610 /* $result = db_query("SELECT count(id) AS unread_entries
611 FROM ttrss_entries WHERE
616 $unread_entries = db_fetch_result($result, 0, "unread_entries"); */
618 if ($limit && $limit != "All") {
619 $limit_query_part = "LIMIT " . $limit;
622 $vfeed_query_part = "";
624 // override query strategy and enable feed display when searching globally
625 if ($search_mode == "All feeds") {
626 $query_strategy_part = "id > 0";
627 $vfeed_query_part = "(SELECT title FROM ttrss_feeds WHERE
628 id = feed_id) as feed_title,";
629 } else if (sprintf("%d", $feed) == 0) {
630 $query_strategy_part = "ttrss_entries.id > 0";
631 $vfeed_query_part = "(SELECT title FROM ttrss_feeds WHERE
632 id = feed_id) as feed_title,";
633 } else if ($feed >= 0) {
634 $query_strategy_part = "feed_id = '$feed'";
635 } else if ($feed == -1) { // starred virtual feed
636 $query_strategy_part = "marked = true";
637 $vfeed_query_part = "(SELECT title FROM ttrss_feeds WHERE
638 id = feed_id) as feed_title,";
639 } else if ($feed <= -10) { // labels
640 $label_id = -$feed - 11;
642 $tmp_result = db_query($link, "SELECT sql_exp FROM ttrss_labels
643 WHERE id = '$label_id'");
645 $query_strategy_part = db_fetch_result($tmp_result, 0, "sql_exp");
647 $vfeed_query_part = "(SELECT title FROM ttrss_feeds WHERE
648 id = feed_id) as feed_title,";
650 $query_strategy_part = "id > 0"; // dumb
654 $order_by = "updated DESC";
656 // if ($feed < -10) {
657 // $order_by = "feed_id,updated DESC";
660 if ($feed < -10) error_reporting (0);
662 if (sprintf("%d", $feed) != 0) {
664 $result = db_query($link, "SELECT
665 id,title,updated,unread,feed_id,marked,link,last_read,
666 SUBSTRING(last_read,1,19) as last_read_noms,
668 SUBSTRING(updated,1,19) as updated_noms
672 owner_uid = '".$_SESSION["uid"]."' AND
675 $query_strategy_part ORDER BY $order_by
681 $result = db_query($link, "SELECT
682 ttrss_entries.id as id,title,updated,unread,feed_id,
683 marked,link,last_read,
684 SUBSTRING(last_read,1,19) as last_read_noms,
686 SUBSTRING(updated,1,19) as updated_noms
688 ttrss_entries,ttrss_tags
690 ttrss_entries.owner_uid = '".$_SESSION["uid"]."' AND
691 post_id = ttrss_entries.id AND tag_name = '$feed' AND
694 $query_strategy_part ORDER BY $order_by
699 print "<tr><td colspan='4' align='center'>
700 Could not display feed (query failed). Please check match syntax or local configuration.</td></tr>";
706 error_reporting (E_ERROR | E_WARNING | E_PARSE
);
710 while ($line = db_fetch_assoc($result)) {
712 $class = ($lnum %
2) ?
"even" : "odd";
715 $feed_id = $line["feed_id"];
717 // printf("L %d (%s) > U %d (%s) = %d<br>",
718 // strtotime($line["last_read_noms"]), $line["last_read_noms"],
719 // strtotime($line["updated"]), $line["updated"],
720 // strtotime($line["last_read"]) >= strtotime($line["updated"]));
722 /* if ($line["last_read"] != "" && $line["updated"] != "" &&
723 strtotime($line["last_read_noms"]) < strtotime($line["updated_noms"])) {
725 $update_pic = "<img id='FUPDPIC-$id' src=\"images/updated.png\"
730 $update_pic = "<img id='FUPDPIC-$id' src=\"images/blank_icon.gif\"
735 if ($line["last_read"] == "" &&
736 ($line["unread"] != "t" && $line["unread"] != "1")) {
738 $update_pic = "<img id='FUPDPIC-$id' src=\"images/updated.png\"
741 $update_pic = "<img id='FUPDPIC-$id' src=\"images/blank_icon.gif\"
745 if ($line["unread"] == "t" ||
$line["unread"] == "1") {
750 if ($line["marked"] == "t" ||
$line["marked"] == "1") {
751 $marked_pic = "<img id=\"FMARKPIC-$id\" src=\"images/mark_set.png\"
752 alt=\"Reset mark\" onclick='javascript:toggleMark($id, false)'>";
754 $marked_pic = "<img id=\"FMARKPIC-$id\" src=\"images/mark_unset.png\"
755 alt=\"Set mark\" onclick='javascript:toggleMark($id, true)'>";
758 $content_link = "<a id=\"FTITLE-$id\" href=\"javascript:view($id,$feed_id);\">" .
759 $line["title"] . "</a>";
761 print "<tr class='$class' id='RROW-$id'>";
762 // onclick=\"javascript:view($id,$feed_id)\">
764 print "<td valign='center' align='center'>$update_pic</td>";
765 print "<td valign='center' align='center'>$marked_pic</td>";
767 print "<td width='25%'>
768 <a href=\"javascript:view($id,$feed_id);\">".$line["updated"]."</a></td>";
770 if ($line["feed_title"]) {
771 print "<td width='50%'>$content_link</td>";
772 print "<td width='20%'>
773 <a href='javascript:viewfeed($feed_id)'>".$line["feed_title"]."</a></td>";
775 print "<td width='70%'>$content_link</td>";
784 print "<tr><td align='center'>No articles found.</td></tr>";
789 print "<script type=\"text/javascript\">
790 document.onkeydown = hotkey_handler;
791 update_label_counters('$feed');
795 print "</body></html>";
800 if ($op == "pref-rpc") {
802 $subop = $_GET["subop"];
804 if ($subop == "unread") {
805 $ids = split(",", $_GET["ids"]);
806 foreach ($ids as $id) {
807 db_query($link, "UPDATE ttrss_entries SET unread = true WHERE feed_id = '$id'");
810 print "Marked selected feeds as read.";
813 if ($subop == "read") {
814 $ids = split(",", $_GET["ids"]);
815 foreach ($ids as $id) {
816 db_query($link, "UPDATE ttrss_entries
817 SET unread = false,last_read = NOW() WHERE feed_id = '$id'");
820 print "Marked selected feeds as unread.";
826 if ($op == "pref-feeds") {
828 $subop = $_GET["subop"];
830 if ($subop == "editSave") {
831 $feed_title = db_escape_string($_GET["t"]);
832 $feed_link = db_escape_string($_GET["l"]);
833 $upd_intl = db_escape_string($_GET["ui"]);
834 $purge_intl = db_escape_string($_GET["pi"]);
835 $feed_id = $_GET["id"];
837 if (strtoupper($upd_intl) == "DEFAULT")
840 if (strtoupper($purge_intl) == "DEFAULT")
843 if (strtoupper($purge_intl) == "DISABLED")
846 $result = db_query($link, "UPDATE ttrss_feeds SET
847 title = '$feed_title', feed_url = '$feed_link',
848 update_interval = '$upd_intl',
849 purge_interval = '$purge_intl'
850 WHERE id = '$feed_id'");
854 if ($subop == "remove") {
856 if (!WEB_DEMO_MODE
) {
858 $ids = split(",", $_GET["ids"]);
860 foreach ($ids as $id) {
861 db_query($link, "DELETE FROM ttrss_feeds WHERE id = '$id'");
863 $icons_dir = ICONS_DIR
;
865 if (file_exists($icons_dir . "/$id.ico")) {
866 unlink($icons_dir . "/$id.ico");
872 if ($subop == "add") {
874 if (!WEB_DEMO_MODE
) {
876 $feed_link = db_escape_string($_GET["link"]);
878 $result = db_query($link,
879 "INSERT INTO ttrss_feeds (owner_uid,feed_url,title) VALUES ('".$_SESSION["uid"]."', '$feed_link', '')");
881 $result = db_query($link,
882 "SELECT id FROM ttrss_feeds WHERE feed_url = '$feed_link'");
884 $feed_id = db_fetch_result($result, 0, "id");
887 update_rss_feed($link, $feed_link, $feed_id);
892 $result = db_query($link, "SELECT id,title,feed_url,last_error
893 FROM ttrss_feeds WHERE last_error != ''");
895 if (db_num_rows($result) > 0) {
897 print "<div class=\"warning\">";
899 print "<b>Feeds with update errors:</b>";
901 print "<ul class=\"nomarks\">";
903 while ($line = db_fetch_assoc($result)) {
904 print "<li>" . $line["title"] . " (" . $line["feed_url"] . "): " .
913 print "<table class=\"prefAddFeed\"><tr>
914 <td><input id=\"fadd_link\"></td>
915 <td colspan=\"4\" align=\"right\">
916 <a class=\"button\" href=\"javascript:addFeed()\">Add feed</a></td></tr>
919 $result = db_query($link, "SELECT
920 id,title,feed_url,substring(last_updated,1,16) as last_updated,
921 update_interval,purge_interval
923 ttrss_feeds WHERE owner_uid = '".$_SESSION["uid"]."' ORDER by title");
925 print "<p><table width=\"100%\" class=\"prefFeedList\" id=\"prefFeedList\">";
926 print "<tr class=\"title\">
927 <td> </td><td>Select</td><td width=\"30%\">Title</td>
928 <td width=\"30%\">Link</td>
929 <td width=\"10%\">Update Interval</td>
930 <td width=\"10%\">Purge Days</td>
931 <td>Last updated</td></tr>";
935 while ($line = db_fetch_assoc($result)) {
937 $class = ($lnum %
2) ?
"even" : "odd";
939 $feed_id = $line["id"];
941 $edit_feed_id = $_GET["id"];
943 if ($subop == "edit" && $feed_id != $edit_feed_id) {
947 print "<tr class=\"$class\" id=\"FEEDR-$feed_id\">";
949 $icon_file = ICONS_DIR
. "/$feed_id.ico";
951 if (file_exists($icon_file) && filesize($icon_file) > 0) {
952 $feed_icon = "<img width=\"16\" height=\"16\"
953 src=\"" . ICONS_URL
. "/$feed_id.ico\">";
955 $feed_icon = " ";
957 print "<td align='center'>$feed_icon</td>";
959 $edit_title = htmlspecialchars(db_unescape_string($line["title"]));
960 $edit_link = htmlspecialchars(db_unescape_string($line["feed_url"]));
962 if (!$edit_feed_id ||
$subop != "edit") {
964 print "<td><input onclick='toggleSelectRow(this);'
965 type=\"checkbox\" id=\"FRCHK-".$line["id"]."\"></td>";
967 print "<td><a href=\"javascript:editFeed($feed_id);\">" .
968 $edit_title . "</a></td>";
969 print "<td><a href=\"javascript:editFeed($feed_id);\">" .
970 $edit_link . "</a></td>";
972 if ($line["update_interval"] == "0")
973 $line["update_interval"] = "Default";
975 print "<td><a href=\"javascript:editFeed($feed_id);\">" .
976 $line["update_interval"] . "</a></td>";
978 if ($line["purge_interval"] == "0")
979 $line["purge_interval"] = "Default";
981 if ($line["purge_interval"] < 0)
982 $line["purge_interval"] = "Disabled";
984 print "<td><a href=\"javascript:editFeed($feed_id);\">" .
985 $line["purge_interval"] . "</a></td>";
987 } else if ($feed_id != $edit_feed_id) {
989 print "<td><input disabled=\"true\" type=\"checkbox\"
990 id=\"FRCHK-".$line["id"]."\"></td>";
992 print "<td>$edit_title</td>";
993 print "<td>$edit_link</td>";
995 if ($line["update_interval"] == "0")
996 $line["update_interval"] = "Default";
998 print "<td>" . $line["update_interval"] . "</td>";
1000 if ($line["purge_interval"] == "0")
1001 $line["purge_interval"] = "Default";
1003 if ($line["purge_interval"] < 0)
1004 $line["purge_interval"] = "Disabled";
1006 print "<td>" . $line["purge_interval"] . "</td>";
1010 print "<td><input disabled=\"true\" type=\"checkbox\" checked></td>";
1012 print "<td><input id=\"iedit_title\" value=\"$edit_title\"></td>";
1013 print "<td><input id=\"iedit_link\" value=\"$edit_link\"></td>";
1014 print "<td><input id=\"iedit_updintl\" value=\"".$line["update_interval"]."\"></td>";
1015 print "<td><input id=\"iedit_purgintl\" value=\"".$line["purge_interval"]."\"></td>";
1019 if (!$line["last_updated"]) $line["last_updated"] = "Never";
1021 print "<td>" . $line["last_updated"] . "</td>";
1029 print "<tr><td colspan=\"5\" align=\"center\">No feeds defined.</td></tr>";
1036 if ($subop == "edit") {
1037 print "Edit feed:
1038 <input type=\"submit\" class=\"button\"
1039 onclick=\"javascript:feedEditCancel()\" value=\"Cancel\">
1040 <input type=\"submit\" class=\"button\"
1041 onclick=\"javascript:feedEditSave()\" value=\"Save\">";
1046 <input type=\"submit\" class=\"button\"
1047 onclick=\"javascript:editSelectedFeed()\" value=\"Edit\">
1048 <input type=\"submit\" class=\"button\"
1049 onclick=\"javascript:removeSelectedFeeds()\" value=\"Remove\">";
1051 if (get_pref($link, 'ENABLE_PREFS_CATCHUP_UNCATCHUP')) {
1053 <input type=\"submit\" class=\"button\"
1054 onclick=\"javascript:readSelectedFeeds()\" value=\"Mark as read\">
1055 <input type=\"submit\" class=\"button\"
1056 onclick=\"javascript:unreadSelectedFeeds()\" value=\"Mark as unread\"> ";
1060 <input type=\"submit\"
1061 class=\"button\" onclick=\"gotoExportOpml()\" value=\"Export OPML\">";
1065 print "<h3>OPML Import</h3>
1066 <form enctype=\"multipart/form-data\" method=\"POST\" action=\"opml.php\">
1067 File: <input id=\"opml_file\" name=\"opml_file\" type=\"file\">
1068 <input class=\"button\" name=\"op\" onclick=\"return validateOpmlImport();\"
1069 type=\"submit\" value=\"Import\">
1074 if ($op == "pref-filters") {
1076 $subop = $_GET["subop"];
1078 if ($subop == "editSave") {
1080 $regexp = db_escape_string($_GET["r"]);
1081 $descr = db_escape_string($_GET["d"]);
1082 $match = db_escape_string($_GET["m"]);
1083 $filter_id = db_escape_string($_GET["id"]);
1085 $result = db_query($link, "UPDATE ttrss_filters SET
1086 reg_exp = '$regexp',
1087 description = '$descr',
1088 filter_type = (SELECT id FROM ttrss_filter_types WHERE
1089 description = '$match')
1090 WHERE id = '$filter_id'");
1093 if ($subop == "remove") {
1095 if (!WEB_DEMO_MODE
) {
1097 $ids = split(",", $_GET["ids"]);
1099 foreach ($ids as $id) {
1100 db_query($link, "DELETE FROM ttrss_filters WHERE id = '$id'");
1106 if ($subop == "add") {
1108 if (!WEB_DEMO_MODE
) {
1110 $regexp = db_escape_string($_GET["regexp"]);
1111 $match = db_escape_string($_GET["match"]);
1113 $result = db_query($link,
1114 "INSERT INTO ttrss_filters (reg_exp,filter_type,owner_uid) VALUES
1115 ('$regexp', (SELECT id FROM ttrss_filter_types WHERE
1116 description = '$match'),'".$_SESSION["uid"]."')");
1120 $result = db_query($link, "SELECT description
1121 FROM ttrss_filter_types ORDER BY description");
1123 $filter_types = array();
1125 while ($line = db_fetch_assoc($result)) {
1126 array_push($filter_types, $line["description"]);
1129 print "<table class=\"prefAddFeed\"><tr>
1130 <td><input id=\"fadd_regexp\"></td>
1132 print_select("fadd_match", "Title", $filter_types);
1134 print"</td><td colspan=\"4\" align=\"right\">
1135 <a class=\"button\" href=\"javascript:addFilter()\">Add filter</a></td></tr>
1138 $result = db_query($link, "SELECT
1139 id,reg_exp,description,
1140 (SELECT name FROM ttrss_filter_types WHERE
1141 id = filter_type) as filter_type_name,
1142 (SELECT description FROM ttrss_filter_types
1143 WHERE id = filter_type) as filter_type_descr
1147 owner_uid = ".$_SESSION["uid"]."
1150 print "<p><table width=\"100%\" class=\"prefFilterList\" id=\"prefFilterList\">";
1152 print "<tr class=\"title\">
1153 <td width=\"5%\">Select</td><td width=\"40%\">Filter expression</td>
1154 <td width=\"40%\">Description</td><td width=\"10%\">Match</td></tr>";
1158 while ($line = db_fetch_assoc($result)) {
1160 $class = ($lnum %
2) ?
"even" : "odd";
1162 $filter_id = $line["id"];
1163 $edit_filter_id = $_GET["id"];
1165 if ($subop == "edit" && $filter_id != $edit_filter_id) {
1169 print "<tr class=\"$class\" id=\"FILRR-$filter_id\">";
1171 $line["regexp"] = htmlspecialchars($line["reg_exp"]);
1172 $line["description"] = htmlspecialchars($line["description"]);
1174 if (!$edit_filter_id ||
$subop != "edit") {
1176 if (!$line["description"]) $line["description"] = "[No description]";
1178 print "<td><input onclick='toggleSelectRow(this);'
1179 type=\"checkbox\" id=\"FICHK-".$line["id"]."\"></td>";
1181 print "<td><a href=\"javascript:editFilter($filter_id);\">" .
1182 $line["reg_exp"] . "</td>";
1184 print "<td><a href=\"javascript:editFilter($filter_id);\">" .
1185 $line["description"] . "</td>";
1187 print "<td>".$line["filter_type_descr"]."</td>";
1189 } else if ($filter_id != $edit_filter_id) {
1191 if (!$line["description"]) $line["description"] = "[No description]";
1193 print "<td><input disabled=\"true\" type=\"checkbox\"
1194 id=\"FICHK-".$line["id"]."\"></td>";
1196 print "<td>".$line["reg_exp"]."</td>";
1197 print "<td>".$line["description"]."</td>";
1198 print "<td>".$line["filter_type_descr"]."</td>";
1202 print "<td><input disabled=\"true\" type=\"checkbox\" checked></td>";
1204 print "<td><input id=\"iedit_regexp\" value=\"".$line["reg_exp"].
1207 print "<td><input id=\"iedit_descr\" value=\"".$line["description"].
1211 print_select("iedit_match", $line["filter_type_descr"], $filter_types);
1223 print "<tr><td colspan=\"4\" align=\"center\">No filters defined.</td></tr>";
1230 if ($subop == "edit") {
1232 <input type=\"submit\" class=\"button\"
1233 onclick=\"javascript:filterEditCancel()\" value=\"Cancel\">
1234 <input type=\"submit\" class=\"button\"
1235 onclick=\"javascript:filterEditSave()\" value=\"Save\">";
1241 <input type=\"submit\" class=\"button\"
1242 onclick=\"javascript:editSelectedFilter()\" value=\"Edit\">
1243 <input type=\"submit\" class=\"button\"
1244 onclick=\"javascript:removeSelectedFilters()\" value=\"Remove\">";
1248 if ($op == "pref-labels") {
1250 $subop = $_GET["subop"];
1252 if ($subop == "editSave") {
1254 $sql_exp = $_GET["s"];
1255 $descr = $_GET["d"];
1256 $label_id = db_escape_string($_GET["id"]);
1258 // print "$sql_exp : $descr : $label_id";
1260 $result = db_query($link, "UPDATE ttrss_labels SET
1261 sql_exp = '$sql_exp',
1262 description = '$descr'
1263 WHERE id = '$label_id'");
1266 if ($subop == "remove") {
1268 if (!WEB_DEMO_MODE
) {
1270 $ids = split(",", $_GET["ids"]);
1272 foreach ($ids as $id) {
1273 db_query($link, "DELETE FROM ttrss_labels WHERE id = '$id'");
1279 if ($subop == "add") {
1281 if (!WEB_DEMO_MODE
) {
1283 $exp = $_GET["exp"];
1285 $result = db_query($link,
1286 "INSERT INTO ttrss_labels (sql_exp,description,owner_uid)
1287 VALUES ('$exp', '$exp', '".$_SESSION["uid"]."')");
1291 print "<table class=\"prefAddFeed\"><tr>
1292 <td><input id=\"ladd_expr\"></td>";
1294 print"<td colspan=\"4\" align=\"right\">
1295 <a class=\"button\" href=\"javascript:addLabel()\">Add label</a></td></tr>
1298 $result = db_query($link, "SELECT
1299 id,sql_exp,description
1303 owner_uid = ".$_SESSION["uid"]."
1304 ORDER by description");
1306 print "<p><table width=\"100%\" class=\"prefLabelList\" id=\"prefLabelList\">";
1308 print "<tr class=\"title\">
1309 <td width=\"5%\">Select</td><td width=\"40%\">SQL expression
1310 <a class=\"helpLink\" href=\"javascript:popupHelp(1)\">(?)</a>
1312 <td width=\"40%\">Caption</td></tr>";
1316 while ($line = db_fetch_assoc($result)) {
1318 $class = ($lnum %
2) ?
"even" : "odd";
1320 $label_id = $line["id"];
1321 $edit_label_id = $_GET["id"];
1323 if ($subop == "edit" && $label_id != $edit_label_id) {
1327 print "<tr class=\"$class\" id=\"LILRR-$label_id\">";
1329 $line["sql_exp"] = htmlspecialchars($line["sql_exp"]);
1330 $line["description"] = htmlspecialchars($line["description"]);
1332 if (!$edit_label_id ||
$subop != "edit") {
1334 if (!$line["description"]) $line["description"] = "[No caption]";
1336 print "<td><input onclick='toggleSelectRow(this);'
1337 type=\"checkbox\" id=\"LICHK-".$line["id"]."\"></td>";
1339 print "<td><a href=\"javascript:editLabel($label_id);\">" .
1340 $line["sql_exp"] . "</td>";
1342 print "<td><a href=\"javascript:editLabel($label_id);\">" .
1343 $line["description"] . "</td>";
1345 } else if ($label_id != $edit_label_id) {
1347 if (!$line["description"]) $line["description"] = "[No description]";
1349 print "<td><input disabled=\"true\" type=\"checkbox\"
1350 id=\"LICHK-".$line["id"]."\"></td>";
1352 print "<td>".$line["sql_exp"]."</td>";
1353 print "<td>".$line["description"]."</td>";
1357 print "<td><input disabled=\"true\" type=\"checkbox\" checked></td>";
1359 print "<td><input id=\"iedit_expr\" value=\"".$line["sql_exp"].
1362 print "<td><input id=\"iedit_descr\" value=\"".$line["description"].
1374 print "<tr><td colspan=\"4\" align=\"center\">No labels defined.</td></tr>";
1381 if ($subop == "edit") {
1383 <input type=\"submit\" class=\"button\"
1384 onclick=\"javascript:labelEditCancel()\" value=\"Cancel\">
1385 <input type=\"submit\" class=\"button\"
1386 onclick=\"javascript:labelEditSave()\" value=\"Save\">";
1392 <input type=\"submit\" class=\"button\"
1393 onclick=\"javascript:editSelectedLabel()\" value=\"Edit\">
1394 <input type=\"submit\" class=\"button\"
1395 onclick=\"javascript:removeSelectedLabels()\" value=\"Remove\">";
1399 if ($op == "error") {
1400 print "<div width=\"100%\" align='center'>";
1401 $msg = $_GET["msg"];
1406 if ($op == "help") {
1408 <title>Tiny Tiny RSS : Help</title>
1409 <link rel=\"stylesheet\" href=\"tt-rss.css\" type=\"text/css\">
1410 <script type=\"text/javascript\" src=\"functions.js\"></script>
1411 <meta http-equiv=\"Content-Type\" content=\"text/html; charset=utf-8\">
1414 $tid = sprintf("%d", $_GET["tid"]);
1416 /* FIXME this badly needs real implementation */
1418 print "<div class='helpResponse'>";
1422 <h1
>Help
for SQL expressions
</h1
>
1424 <h2
>Description
</h2
>
1426 <p
>The
«
;SQL expression
»
; is added to WHERE clause of
1427 view feed query
. You can match on ttrss_entries table fields
1428 and even
use subselect to query additional information
. This
1429 functionality is considered to be advanced
and requires basic
1430 understanding of SQL
.</p
>
1434 <pre
>unread
= true</pre
>
1436 Matches all unread articles
1438 <pre
>title like
'%Linux%'</pre
>
1440 Matches all articles which mention Linux in the title
. You get the idea
.
1442 <p
>See the database schema included in the distribution package
for gruesome
1447 print "<div align='center'>
1448 <a class=\"helpLink\"
1449 href=\"javascript:window.close()\">(Close this window)</a></div>";
1453 print "</body></html>";
1459 $param = $_GET["param"];
1461 if ($id == "quickAddFeed") {
1462 print "Feed URL: <input
1463 onblur=\"javascript:enableHotkeys()\" onfocus=\"javascript:disableHotkeys()\"
1465 <input class=\"button\"
1466 type=\"submit\" onclick=\"javascript:qafAdd()\" value=\"Add feed\">
1467 <input class=\"button\"
1468 type=\"submit\" onclick=\"javascript:closeDlg()\"
1472 if ($id == "quickDelFeed") {
1474 $param = db_escape_string($param);
1476 $result = db_query($link, "SELECT title FROM ttrss_feeds WHERE id = '$param'");
1480 $f_title = db_fetch_result($result, 0, "title");
1482 print "Remove current feed ($f_title)?
1483 <input class=\"button\"
1484 type=\"submit\" onclick=\"javascript:qfdDelete($param)\" value=\"Remove\">
1485 <input class=\"button\"
1486 type=\"submit\" onclick=\"javascript:closeDlg()\"
1489 print "Error: Feed $param not found.
1490 <input class=\"button\"
1491 type=\"submit\" onclick=\"javascript:closeDlg()\"
1496 if ($id == "search") {
1498 print "<input id=\"searchbox\" class=\"extSearch\"
1499 onblur=\"javascript:enableHotkeys()\" onfocus=\"javascript:disableHotkeys()\"
1500 onchange=\"javascript:search()\">
1501 <select id=\"searchmodebox\">
1502 <option selected>All feeds</option>
1503 <option>This feed</option>
1505 <input type=\"submit\"
1506 class=\"button\" onclick=\"javascript:search()\" value=\"Search\">
1507 <input class=\"button\"
1508 type=\"submit\" onclick=\"javascript:closeDlg()\"
1515 if ($op == "updateAllFeeds") {
1516 update_all_feeds($link, true);
1518 print "<rpc-reply>";
1519 getLabelCounters($link);
1520 getFeedCounters($link);
1521 getTagCounters($link);
1522 getGlobalCounters($link);
1523 print "</rpc-reply>";
1527 if ($op == "pref-prefs") {
1529 $subop = $_REQUEST["subop"];
1531 if ($subop == "Save configuration") {
1533 if (WEB_DEMO_MODE
) return;
1535 foreach (array_keys($_POST) as $pref_name) {
1537 $pref_name = db_escape_string($pref_name);
1538 $value = db_escape_string($_POST[$pref_name]);
1540 $result = db_query($link, "SELECT type_name
1541 FROM ttrss_prefs,ttrss_prefs_types
1542 WHERE pref_name = '$pref_name' AND type_id = ttrss_prefs_types.id");
1544 if (db_num_rows($result) > 0) {
1546 $type_name = db_fetch_result($result, 0, "type_name");
1548 // print "$pref_name : $type_name : $value<br>";
1550 if ($type_name == "bool") {
1551 if ($value == "1") {
1556 } else if ($type_name == "integer") {
1557 $value = sprintf("%d", $value);
1560 // print "$pref_name : $type_name : $value<br>";
1562 db_query($link, "UPDATE ttrss_user_prefs SET value = '$value'
1563 WHERE pref_name = '$pref_name' AND owner_uid = ".$_SESSION["uid"]);
1567 header("Location: prefs.php");
1571 } else if ($subop == "getHelp") {
1573 $pref_name = db_escape_string($_GET["pn"]);
1575 $result = db_query($link, "SELECT help_text FROM ttrss_prefs
1576 WHERE pref_name = '$pref_name'");
1578 if (db_num_rows($result) > 0) {
1579 $help_text = db_fetch_result($result, 0, "help_text");
1582 print "Unknown option: $pref_name";
1585 } else if ($subop == "Change password") {
1587 if (WEB_DEMO_MODE
) return;
1589 $old_pw = $_POST["OLD_PASSWORD"];
1590 $new_pw = $_POST["OLD_PASSWORD"];
1592 $old_pw_hash = 'SHA1:' . sha1($_POST["OLD_PASSWORD"]);
1593 $new_pw_hash = 'SHA1:' . sha1($_POST["NEW_PASSWORD"]);
1595 $active_uid = $_SESSION["uid"];
1597 if ($old_pw && $new_pw) {
1599 $login = db_escape_string($_SERVER['PHP_AUTH_USER']);
1601 $result = db_query($link, "SELECT id FROM ttrss_users WHERE
1602 id = '$active_uid' AND (pwd_hash = '$old_pw' OR
1603 pwd_hash = '$old_pw_hash')");
1605 if (db_num_rows($result) == 1) {
1606 db_query($link, "UPDATE ttrss_users SET pwd_hash = '$new_pw_hash'
1607 WHERE id = '$active_uid'");
1611 header("Location: prefs.php");
1613 } else if ($subop == "Reset to defaults") {
1615 if (WEB_DEMO_MODE
) return;
1617 if (DB_TYPE
== "pgsql") {
1618 db_query($link,"UPDATE ttrss_user_prefs
1619 SET value = ttrss_prefs.def_value
1620 WHERE owner_uid = '".$_SESSION["uid"]."' AND
1621 ttrss_prefs.pref_name = ttrss_user_prefs.pref_name");
1623 db_query($link, "DELETE FROM ttrss_user_prefs
1624 WHERE owner_uid = ".$_SESSION["uid"]);
1625 initialize_user_prefs($link, $_SESSION["uid"]);
1628 header("Location: prefs.php");
1632 if (!SINGLE_USER_MODE
) {
1634 print "<form action=\"backend.php\" method=\"POST\">";
1636 print "<table width=\"100%\" class=\"prefPrefsList\">";
1637 print "<tr><td colspan='3'><h3>Authentication</h3></tr></td>";
1639 print "<tr><td width=\"40%\">Old password</td>";
1640 print "<td><input class=\"editbox\" type=\"password\"
1641 name=\"OLD_PASSWORD\"></td></tr>";
1643 print "<tr><td width=\"40%\">New password</td>";
1645 print "<td><input class=\"editbox\" type=\"password\"
1646 name=\"NEW_PASSWORD\"></td></tr>";
1650 print "<input type=\"hidden\" name=\"op\" value=\"pref-prefs\">";
1652 print "<p><input class=\"button\" type=\"submit\"
1653 value=\"Change password\" name=\"subop\">";
1659 $result = db_query($link, "SELECT
1660 ttrss_user_prefs.pref_name,short_desc,help_text,value,type_name,
1661 section_name,def_value
1662 FROM ttrss_prefs,ttrss_prefs_types,ttrss_prefs_sections,ttrss_user_prefs
1663 WHERE type_id = ttrss_prefs_types.id AND
1664 section_id = ttrss_prefs_sections.id AND
1665 ttrss_user_prefs.pref_name = ttrss_prefs.pref_name AND
1666 owner_uid = ".$_SESSION["uid"]."
1667 ORDER BY section_id,short_desc");
1669 print "<form action=\"backend.php\" method=\"POST\">";
1673 $active_section = "";
1675 while ($line = db_fetch_assoc($result)) {
1677 if ($active_section != $line["section_name"]) {
1679 if ($active_section != "") {
1683 print "<p><table width=\"100%\" class=\"prefPrefsList\">";
1685 $active_section = $line["section_name"];
1687 print "<tr><td colspan=\"3\"><h3>$active_section</h3></td></tr>";
1688 // print "<tr class=\"title\">
1689 // <td width=\"25%\">Option</td><td>Value</td></tr>";
1694 // $class = ($lnum % 2) ? "even" : "odd";
1698 $type_name = $line["type_name"];
1699 $pref_name = $line["pref_name"];
1700 $value = $line["value"];
1701 $def_value = $line["def_value"];
1702 $help_text = $line["help_text"];
1704 print "<td width=\"40%\" id=\"$pref_name\">" . $line["short_desc"];
1706 if ($help_text) print "<div class=\"prefHelp\">$help_text</div>";
1712 if ($type_name == "bool") {
1713 // print_select($pref_name, $value, array("true", "false"));
1715 if ($value == "true") {
1721 print_radio($pref_name, $value, array("Yes", "No"));
1724 print "<input class=\"editbox\" name=\"$pref_name\" value=\"$value\">";
1736 print "<input type=\"hidden\" name=\"op\" value=\"pref-prefs\">";
1738 print "<p><input class=\"button\" type=\"submit\"
1739 name=\"subop\" value=\"Save configuration\">";
1741 print " <input class=\"button\" type=\"submit\"
1742 name=\"subop\" value=\"Reset to defaults\"></p>";
1750 if ($op == "pref-users") {
1752 $subop = $_GET["subop"];
1754 if ($subop == "editSave") {
1756 if (!WEB_DEMO_MODE
) {
1758 $login = db_escape_string($_GET["l"]);
1759 $uid = db_escape_string($_GET["id"]);
1760 $access_level = sprintf("%d", $_GET["al"]);
1762 db_query($link, "UPDATE ttrss_users SET login = '$login', access_level = '$access_level' WHERE id = '$uid'");
1765 } else if ($subop == "remove") {
1767 if (!WEB_DEMO_MODE
&& $_SESSION["access_level"] >= 10) {
1769 $ids = split(",", $_GET["ids"]);
1771 foreach ($ids as $id) {
1772 db_query($link, "DELETE FROM ttrss_users WHERE id = '$id' AND id != " . $_SESSION["uid"]);
1776 } else if ($subop == "add") {
1778 if (!WEB_DEMO_MODE
&& $_SESSION["access_level"] >= 10) {
1780 $login = db_escape_string($_GET["login"]);
1781 $tmp_user_pwd = make_password(8);
1782 $pwd_hash = 'SHA1:' . sha1($tmp_user_pwd);
1784 db_query($link, "INSERT INTO ttrss_users (login,pwd_hash,access_level)
1785 VALUES ('$login', '$pwd_hash', 0)");
1788 $result = db_query($link, "SELECT id FROM ttrss_users WHERE
1789 login = '$login' AND pwd_hash = '$pwd_hash'");
1791 if (db_num_rows($result) == 1) {
1793 $new_uid = db_fetch_result($result, 0, "id");
1795 print "<div class=\"notice\">Added user <b>".$_GET["login"].
1796 "</b> with password <b>$tmp_user_pwd</b>.</div>";
1798 initialize_user($link, $new_uid);
1802 print "<div class=\"warning\">Error while adding user <b>".
1803 $_GET["login"].".</b></div>";
1807 } else if ($subop == "resetPass") {
1809 if (!WEB_DEMO_MODE
&& $_SESSION["access_level"] >= 10) {
1811 $uid = db_escape_string($_GET["id"]);
1813 $result = db_query($link, "SELECT login FROM ttrss_users WHERE id = '$uid'");
1815 $login = db_fetch_result($result, 0, "login");
1816 $tmp_user_pwd = make_password(8);
1817 $pwd_hash = 'SHA1:' . sha1($tmp_user_pwd);
1819 db_query($link, "UPDATE ttrss_users SET pwd_hash = '$pwd_hash'
1820 WHERE id = '$uid'");
1822 print "<div class=\"notice\">Changed password of
1823 user <b>$login</b> to <b>$tmp_user_pwd</b>.</div>";
1828 print "<table class=\"prefAddFeed\"><tr>
1829 <td><input id=\"uadd_box\"></td>";
1831 print"<td colspan=\"4\" align=\"right\">
1832 <a class=\"button\" href=\"javascript:addUser()\">Add user</a></td></tr>
1835 $result = db_query($link, "SELECT
1836 id,login,access_level,last_login
1841 print "<p><table width=\"100%\" class=\"prefUserList\" id=\"prefUserList\">";
1843 print "<tr class=\"title\">
1844 <td width=\"5%\">Select</td>
1845 <td width='30%'>Username</td>
1846 <td width='30%'>Access Level</td>
1847 <td width='30%'>Last login</td></tr>";
1851 while ($line = db_fetch_assoc($result)) {
1853 $class = ($lnum %
2) ?
"even" : "odd";
1856 $edit_uid = $_GET["id"];
1858 if ($uid == $_SESSION["uid"] ||
($subop == "edit" && $uid != $edit_uid)) {
1862 print "<tr class=\"$class\" id=\"UMRR-$uid\">";
1864 $line["login"] = htmlspecialchars($line["login"]);
1866 if ($uid == $_SESSION["uid"]) {
1868 print "<td><input disabled=\"true\" type=\"checkbox\"
1869 id=\"UMCHK-".$line["id"]."\"></td>";
1871 print "<td>".$line["login"]."</td>";
1872 print "<td>".$line["access_level"]."</td>";
1874 } else if (!$edit_uid ||
$subop != "edit") {
1876 print "<td><input onclick='toggleSelectRow(this);'
1877 type=\"checkbox\" id=\"UMCHK-".$line["id"]."\"></td>";
1879 print "<td><a href=\"javascript:editUser($uid);\">" .
1880 $line["login"] . "</td>";
1882 print "<td><a href=\"javascript:editUser($uid);\">" .
1883 $line["access_level"] . "</td>";
1885 } else if ($uid != $edit_uid) {
1887 print "<td><input disabled=\"true\" type=\"checkbox\"
1888 id=\"UMCHK-".$line["id"]."\"></td>";
1890 print "<td>".$line["login"]."</td>";
1891 print "<td>".$line["access_level"]."</td>";
1895 print "<td><input disabled=\"true\" type=\"checkbox\" checked></td>";
1897 print "<td><input id=\"iedit_ulogin\" value=\"".$line["login"].
1900 print "<td><input id=\"iedit_ulevel\" value=\"".$line["access_level"].
1905 print "<td>".$line["last_login"]."</td>";
1916 if ($subop == "edit") {
1918 <input type=\"submit\" class=\"button\"
1919 onclick=\"javascript:userEditCancel()\" value=\"Cancel\">
1920 <input type=\"submit\" class=\"button\"
1921 onclick=\"javascript:userEditSave()\" value=\"Save\">";
1927 <input type=\"submit\" class=\"button\"
1928 onclick=\"javascript:selectedUserDetails()\" value=\"User details\">
1929 <input type=\"submit\" class=\"button\"
1930 onclick=\"javascript:editSelectedUser()\" value=\"Edit\">
1931 <input type=\"submit\" class=\"button\"
1932 onclick=\"javascript:removeSelectedUsers()\" value=\"Remove\">
1933 <input type=\"submit\" class=\"button\"
1934 onclick=\"javascript:resetSelectedUserPass()\" value=\"Reset password\">";
1939 if ($op == "user-details") {
1941 if (WEB_DEMO_MODE ||
$_SESSION["access_level"] < 10) {
1946 <title>Tiny Tiny RSS : User Details</title>
1947 <link rel=\"stylesheet\" href=\"tt-rss.css\" type=\"text/css\">
1948 <meta http-equiv=\"Content-Type\" content=\"text/html; charset=utf-8\">
1951 $uid = sprintf("%d", $_GET["id"]);
1953 /* FIXME this badly needs real implementation */
1955 print "<div class='userDetails'>";
1957 $result = db_query($link, "SELECT login,last_login,access_level
1959 WHERE id = '$uid'");
1961 if (db_num_rows($result) == 0) {
1962 print "<h1>User not found</h1>";
1966 print "<h1>User Details</h1>";
1968 print "<table width='100%'>";
1970 $login = db_fetch_result($result, 0, "login");
1971 $last_login = db_fetch_result($result, 0, "last_login");
1972 $access_level = db_fetch_result($result, 0, "access_level");
1974 print "<tr><td>Username</td><td>$login</td></tr>";
1975 print "<tr><td>Access level</td><td>$access_level</td></tr>";
1976 print "<tr><td>Last logged in</td><td>$last_login</td></tr>";
1978 $result = db_query($link, "SELECT COUNT(id) as num_feeds FROM ttrss_feeds
1979 WHERE owner_uid = '$uid'");
1981 $num_feeds = db_fetch_result($result, 0, "num_feeds");
1983 print "<tr><td>Subscribed feeds count</td><td>$num_feeds</td></tr>";
1985 $result = db_query($link, "SELECT
1986 SUM(LENGTH(content)+LENGTH(title)+LENGTH(link)+LENGTH(guid)) AS db_size
1987 FROM ttrss_entries WHERE owner_uid = '$uid'");
1989 $db_size = db_fetch_result($result, 0, "db_size");
1991 print "<tr><td>Approx. DB size</td><td>$db_size bytes</td></tr>";
1995 print "<h1>Subscribed feeds</h1>";
1997 $result = db_query($link, "SELECT id,title,feed_url FROM ttrss_feeds
1998 WHERE owner_uid = '$uid'");
2000 print "<ul class=\"nomarks\">";
2002 while ($line = db_fetch_assoc($result)) {
2004 $icon_file = ICONS_URL
."/".$line["id"].".ico";
2006 if (file_exists($icon_file) && filesize($icon_file) > 0) {
2007 $feed_icon = "<img class=\"feedIcon\" src=\"$icon_file\">";
2009 $feed_icon = "<img class=\"feedIcon\" src=\"images/blank_icon.gif\">";
2012 print "<li>$feed_icon <a href=\"".$line["feed_url"]."\">".$line["title"]."</a></li>";
2017 print "<p align='center'>
2018 <a href=\"javascript:window.close()\">(Close this window)</a></p>";
2022 print "</body></html>";
2030 <!-- <?
= sprintf("Backend execution time: %.4f seconds", getmicrotime() - $script_started) ?
> -->