]>
git.wh0rd.org - tt-rss.git/blob - modules/backend-rpc.php
2 function handle_rpc_request($link) {
4 $subop = $_REQUEST["subop"];
5 $seq = (int) $_REQUEST["seq"];
7 if ($subop == "setprofile") {
8 $id = db_escape_string($_REQUEST["id"]);
10 $_SESSION["profile"] = $id;
11 $_SESSION["prefs_cache"] = array();
15 if ($subop == "remprofiles") {
16 $ids = split(",", db_escape_string(trim($_REQUEST["ids"])));
18 foreach ($ids as $id) {
19 if ($_SESSION["profile"] != $id) {
20 db_query($link, "DELETE FROM ttrss_settings_profiles WHERE id = '$id' AND
21 owner_uid = " . $_SESSION["uid"]);
27 if ($subop == "addprofile") {
28 $title = db_escape_string(trim($_REQUEST["title"]));
30 db_query($link, "BEGIN");
32 $result = db_query($link, "SELECT id FROM ttrss_settings_profiles
33 WHERE title = '$title' AND owner_uid = " . $_SESSION["uid"]);
35 if (db_num_rows($result) == 0) {
37 db_query($link, "INSERT INTO ttrss_settings_profiles (title, owner_uid)
38 VALUES ('$title', ".$_SESSION["uid"] .")");
40 $result = db_query($link, "SELECT id FROM ttrss_settings_profiles WHERE
43 if (db_num_rows($result) != 0) {
44 $profile_id = db_fetch_result($result, 0, "id");
47 initialize_user_prefs($link, $_SESSION["uid"], $profile_id);
52 db_query($link, "COMMIT");
57 if ($subop == "saveprofile") {
58 $id = db_escape_string($_REQUEST["id"]);
59 $title = db_escape_string(trim($_REQUEST["value"]));
62 print __("Default profile");
67 db_query($link, "BEGIN");
69 $result = db_query($link, "SELECT id FROM ttrss_settings_profiles
70 WHERE title = '$title' AND owner_uid =" . $_SESSION["uid"]);
72 if (db_num_rows($result) == 0) {
73 db_query($link, "UPDATE ttrss_settings_profiles
74 SET title = '$title' WHERE id = '$id' AND
75 owner_uid = " . $_SESSION["uid"]);
78 $result = db_query($link, "SELECT title FROM ttrss_settings_profiles
79 WHERE id = '$id' AND owner_uid =" . $_SESSION["uid"]);
80 print db_fetch_result($result, 0, "title");
83 db_query($link, "COMMIT");
88 if ($subop == "remarchive") {
89 $ids = split(",", db_escape_string($_REQUEST["ids"]));
93 foreach ($ids as $id) {
94 $result = db_query($link, "DELETE FROM ttrss_archived_feeds WHERE
95 (SELECT COUNT(*) FROM ttrss_user_entries
96 WHERE orig_feed_id = '$id') = 0 AND
97 id = '$id' AND owner_uid = ".$_SESSION["uid"]);
99 $rc = db_affected_rows($link, $result);
101 print "<feed id='$id' rc='$rc'/>";
105 print "</rpc-reply>";
110 if ($subop == "addfeed") {
112 $feed = db_escape_string($_REQUEST['feed']);
113 $cat = db_escape_string($_REQUEST['cat']);
114 $login = db_escape_string($_REQUEST['login']);
115 $pass = db_escape_string($_REQUEST['pass']);
117 $rc = subscribe_to_feed($link, $feed, $cat, $login, $pass);
120 print "<result code='$rc'/>";
121 print "</rpc-reply>";
127 if ($subop == "extractfeedurls") {
130 $urls = get_feeds_from_html($_REQUEST['url']);
131 print "<urls><![CDATA[" . json_encode($urls) . "]]></urls>";
133 print "</rpc-reply>";
137 if ($subop == "togglepref") {
140 $key = db_escape_string($_REQUEST["key"]);
142 set_pref($link, $key, !get_pref($link, $key));
144 $value = get_pref($link, $key);
146 print "<param-set key=\"$key\" value=\"$value\"/>";
148 print "</rpc-reply>";
153 if ($subop == "setpref") {
156 $key = db_escape_string($_REQUEST["key"]);
157 $value = db_escape_string($_REQUEST["value"]);
159 set_pref($link, $key, $value);
161 print "<param-set key=\"$key\" value=\"$value\"/>";
163 print "</rpc-reply>";
168 if ($subop == "mark") {
169 $mark = $_REQUEST["mark"];
170 $id = db_escape_string($_REQUEST["id"]);
178 // FIXME this needs collision testing
180 $result = db_query($link, "UPDATE ttrss_user_entries SET marked = $mark
181 WHERE ref_id = '$id' AND owner_uid = " . $_SESSION["uid"]);
184 print "<message>UPDATE_COUNTERS</message>";
185 print "</rpc-reply>";
190 if ($subop == "delete") {
191 $ids = db_escape_string($_REQUEST["ids"]);
193 $result = db_query($link, "DELETE FROM ttrss_user_entries
194 WHERE ref_id IN ($ids) AND owner_uid = " . $_SESSION["uid"]);
197 print "<message>UPDATE_COUNTERS</message>";
198 print "</rpc-reply>";
203 if ($subop == "unarchive") {
204 $ids = db_escape_string($_REQUEST["ids"]);
206 $result = db_query($link, "UPDATE ttrss_user_entries
207 SET feed_id = orig_feed_id, orig_feed_id = NULL
208 WHERE ref_id IN ($ids) AND owner_uid = " . $_SESSION["uid"]);
211 print "<message>UPDATE_COUNTERS</message>";
212 print "</rpc-reply>";
217 if ($subop == "archive") {
218 $ids = split(",", db_escape_string($_REQUEST["ids"]));
220 foreach ($ids as $id) {
221 archive_article($link, $id, $_SESSION["uid"]);
225 print "<message>UPDATE_COUNTERS</message>";
226 print "</rpc-reply>";
232 if ($subop == "publ") {
233 $pub = $_REQUEST["pub"];
234 $id = db_escape_string($_REQUEST["id"]);
235 $note = trim(strip_tags(db_escape_string($_REQUEST["note"])));
243 if ($note != 'undefined') {
244 $note_qpart = "note = '$note',";
247 // FIXME this needs collision testing
249 $result = db_query($link, "UPDATE ttrss_user_entries SET
252 WHERE ref_id = '$id' AND owner_uid = " . $_SESSION["uid"]);
257 if ($note != 'undefined') {
258 $note_size = strlen($note);
259 print "<note id=\"$id\" size=\"$note_size\">";
260 print "<![CDATA[" . format_article_note($id, $note) . "]]>";
264 print "<message>UPDATE_COUNTERS</message>";
266 print "</rpc-reply>";
271 if ($subop == "updateFeed") {
272 $feed_id = db_escape_string($_REQUEST["feed"]);
274 update_rss_feed($link, $feed_id);
277 print "<message>UPDATE_COUNTERS</message>";
278 print "</rpc-reply>";
283 if ($subop == "updateAllFeeds" ||
$subop == "getAllCounters") {
285 header("Content-Type: text/plain");
287 $last_article_id = (int) $_REQUEST["last_article_id"];
291 if ($seq) $reply['seq'] = $seq;
293 if ($last_article_id != getLastArticleId($link)) {
294 $omode = $_REQUEST["omode"];
297 $reply['counters'] = getAllCounters($link, $omode);
299 $reply['counters'] = getGlobalCounters($link);
302 $reply['runtime-info'] = make_runtime_info($link);
305 print json_encode($reply);
309 /* GET["cmode"] = 0 - mark as read, 1 - as unread, 2 - toggle */
310 if ($subop == "catchupSelected") {
312 $ids = split(",", db_escape_string($_REQUEST["ids"]));
313 $cmode = sprintf("%d", $_REQUEST["cmode"]);
315 catchupArticlesById($link, $ids, $cmode);
318 print "<message>UPDATE_COUNTERS</message>";
319 print "</rpc-reply>";
324 if ($subop == "markSelected") {
326 $ids = split(",", db_escape_string($_REQUEST["ids"]));
327 $cmode = sprintf("%d", $_REQUEST["cmode"]);
329 markArticlesById($link, $ids, $cmode);
332 print "<message>UPDATE_COUNTERS</message>";
333 print "</rpc-reply>";
338 if ($subop == "publishSelected") {
340 $ids = split(",", db_escape_string($_REQUEST["ids"]));
341 $cmode = sprintf("%d", $_REQUEST["cmode"]);
343 publishArticlesById($link, $ids, $cmode);
346 print "<message>UPDATE_COUNTERS</message>";
347 print "</rpc-reply>";
352 if ($subop == "sanityCheck") {
354 if (sanity_check($link)) {
355 print "<error error-code=\"0\"/>";
357 print "<init-params><![CDATA[";
358 print json_encode(make_init_params($link));
359 print "]]></init-params>";
361 print_runtime_info($link);
363 # assign client-passed params to session
364 $_SESSION["client.userAgent"] = $_REQUEST["ua"];
367 print "</rpc-reply>";
372 if ($subop == "globalPurge") {
375 global_purge_old_posts($link, true);
376 print "</rpc-reply>";
381 if ($subop == "setArticleTags") {
385 $id = db_escape_string($_REQUEST["id"]);
387 $tags_str = db_escape_string($_REQUEST["tags_str"]);
388 $tags = array_unique(trim_array(split(",", $tags_str)));
390 db_query($link, "BEGIN");
392 $result = db_query($link, "SELECT int_id FROM ttrss_user_entries WHERE
393 ref_id = '$id' AND owner_uid = '".$_SESSION["uid"]."' LIMIT 1");
395 if (db_num_rows($result) == 1) {
397 $tags_to_cache = array();
399 $int_id = db_fetch_result($result, 0, "int_id");
401 db_query($link, "DELETE FROM ttrss_tags WHERE
402 post_int_id = $int_id AND owner_uid = '".$_SESSION["uid"]."'");
404 foreach ($tags as $tag) {
405 $tag = sanitize_tag($tag);
407 if (!tag_is_valid($tag)) {
411 if (preg_match("/^[0-9]*$/", $tag)) {
415 // print "<!-- $id : $int_id : $tag -->";
418 db_query($link, "INSERT INTO ttrss_tags
419 (post_int_id, owner_uid, tag_name) VALUES ('$int_id', '".$_SESSION["uid"]."', '$tag')");
422 array_push($tags_to_cache, $tag);
425 /* update tag cache */
427 $tags_str = join(",", $tags_to_cache);
429 db_query($link, "UPDATE ttrss_user_entries
430 SET tag_cache = '$tags_str' WHERE ref_id = '$id'
431 AND owner_uid = " . $_SESSION["uid"]);
434 db_query($link, "COMMIT");
437 $obj_id = md5("TAGS:".$_SESSION["uid"].":$id");
438 $memcache->delete($obj_id);
441 $tags_str = format_tags_string(get_article_tags($link, $id), $id);
444 <tags-str id=\"$id\"><![CDATA[$tags_str]]></tags-str>
450 if ($subop == "regenOPMLKey") {
454 update_feed_access_key($link, 'OPML:Publish',
455 false, $_SESSION["uid"]);
457 $new_link = opml_publish_url($link);
458 print "<link><![CDATA[$new_link]]></link>";
459 print "</rpc-reply>";
463 if ($subop == "logout") {
469 if ($subop == "completeTags") {
471 $search = db_escape_string($_REQUEST["search"]);
473 $result = db_query($link, "SELECT DISTINCT tag_name FROM ttrss_tags
474 WHERE owner_uid = '".$_SESSION["uid"]."' AND
475 tag_name LIKE '$search%' ORDER BY tag_name
479 while ($line = db_fetch_assoc($result)) {
480 print "<li>" . $line["tag_name"] . "</li>";
487 if ($subop == "purge") {
488 $ids = split(",", db_escape_string($_REQUEST["ids"]));
489 $days = sprintf("%d", $_REQUEST["days"]);
493 print "<message><![CDATA[";
495 foreach ($ids as $id) {
497 $result = db_query($link, "SELECT id FROM ttrss_feeds WHERE
498 id = '$id' AND owner_uid = ".$_SESSION["uid"]);
500 if (db_num_rows($result) == 1) {
501 purge_feed($link, $id, $days, true);
505 print "]]></message>";
507 print "</rpc-reply>";
512 /* if ($subop == "setScore") {
513 $id = db_escape_string($_REQUEST["id"]);
514 $score = sprintf("%d", $_REQUEST["score"]);
516 $result = db_query($link, "UPDATE ttrss_user_entries SET score = '$score'
517 WHERE ref_id = '$id' AND owner_uid = ".$_SESSION["uid"]);
519 print "<rpc-reply><message>Acknowledged.</message></rpc-reply>";
525 if ($subop == "getArticles") {
526 $ids = split(",", db_escape_string($_REQUEST["ids"]));
530 foreach ($ids as $id) {
532 outputArticleXML($link, $id, 0, false);
535 print "</rpc-reply>";
540 if ($subop == "checkDate") {
542 $date = db_escape_string($_REQUEST["date"]);
543 $date_parsed = strtotime($date);
548 print "<result>1</result>";
550 print "<result>0</result>";
553 print "</rpc-reply>";
558 if ($subop == "removeFromLabel") {
560 $ids = explode(",", db_escape_string($_REQUEST["ids"]));
561 $label_id = db_escape_string($_REQUEST["lid"]);
563 $label = db_escape_string(label_find_caption($link, $label_id,
567 print "<info-for-headlines>";
571 foreach ($ids as $id) {
572 label_remove_article($link, $id, $label, $_SESSION["uid"]);
574 print "<entry id=\"$id\"><![CDATA[";
576 $labels = get_article_labels($link, $id, $_SESSION["uid"]);
577 print format_article_labels($labels, $id);
584 print "</info-for-headlines>";
586 print "<message>UPDATE_COUNTERS</message>";
587 print "</rpc-reply>";
592 if ($subop == "assignToLabel") {
594 $ids = split(",", db_escape_string($_REQUEST["ids"]));
595 $label_id = db_escape_string($_REQUEST["lid"]);
597 $label = db_escape_string(label_find_caption($link, $label_id,
602 print "<info-for-headlines>";
606 foreach ($ids as $id) {
607 label_add_article($link, $id, $label, $_SESSION["uid"]);
609 print "<entry id=\"$id\"><![CDATA[";
611 $labels = get_article_labels($link, $id, $_SESSION["uid"]);
612 print format_article_labels($labels, $id);
619 print "</info-for-headlines>";
621 print "<message>UPDATE_COUNTERS</message>";
622 print "</rpc-reply>";
627 if ($subop == "updateFeedBrowser") {
629 $search = db_escape_string($_REQUEST["search"]);
630 $limit = db_escape_string($_REQUEST["limit"]);
631 $mode = db_escape_string($_REQUEST["mode"]);
636 $ctr = print_feed_browser($link, $search, $limit, $mode);
639 print "<num-results value=\"$ctr\"/>";
640 print "<mode value=\"$mode\"/>";
641 print "</rpc-reply>";
647 if ($subop == "massSubscribe") {
649 $ids = split(",", db_escape_string($_REQUEST["ids"]));
650 $mode = $_REQUEST["mode"];
652 $subscribed = array();
654 foreach ($ids as $id) {
657 $result = db_query($link, "SELECT feed_url,title FROM ttrss_feeds
659 } else if ($mode == 2) {
660 $result = db_query($link, "SELECT * FROM ttrss_archived_feeds
661 WHERE id = '$id' AND owner_uid = " . $_SESSION["uid"]);
662 $orig_id = db_escape_string(db_fetch_result($result, 0, "id"));
663 $site_url = db_escape_string(db_fetch_result($result, 0, "site_url"));
666 $feed_url = db_escape_string(db_fetch_result($result, 0, "feed_url"));
667 $title = db_escape_string(db_fetch_result($result, 0, "title"));
669 $title_orig = db_fetch_result($result, 0, "title");
671 $result = db_query($link, "SELECT id FROM ttrss_feeds WHERE
672 feed_url = '$feed_url' AND owner_uid = " . $_SESSION["uid"]);
674 if (db_num_rows($result) == 0) {
676 $result = db_query($link,
677 "INSERT INTO ttrss_feeds (owner_uid,feed_url,title,cat_id)
678 VALUES ('".$_SESSION["uid"]."', '$feed_url', '$title', NULL)");
679 } else if ($mode == 2) {
680 $result = db_query($link,
681 "INSERT INTO ttrss_feeds (id,owner_uid,feed_url,title,cat_id,site_url)
682 VALUES ('$orig_id','".$_SESSION["uid"]."', '$feed_url', '$title', NULL, '$site_url')");
684 array_push($subscribed, $title_orig);
688 $num_feeds = count($subscribed);
691 print "<num-feeds value='$num_feeds'/>";
692 print "</rpc-reply>";
697 if ($subop == "digest-get-contents") {
698 $article_id = db_escape_string($_REQUEST['article_id']);
700 $result = db_query($link, "SELECT content
701 FROM ttrss_entries, ttrss_user_entries
702 WHERE id = '$article_id' AND ref_id = id AND owner_uid = ".$_SESSION['uid']);
706 print "<article id=\"$article_id\"><![CDATA[";
708 $content = sanitize_rss($link, db_fetch_result($result, 0, "content"));
712 print "]]></article>";
714 print "</rpc-reply>";
719 if ($subop == "digest-update") {
720 $feed_id = db_escape_string($_REQUEST['feed_id']);
721 $offset = db_escape_string($_REQUEST['offset']);
722 $seq = db_escape_string($_REQUEST['seq']);
724 if (!$feed_id) $feed_id = -4;
725 if (!$offset) $offset = 0;
728 print "<seq>$seq</seq>";
730 $headlines = api_get_headlines($link, $feed_id, 10, $offset,
731 '', ($feed_id == -4), true, false, "unread", "updated DESC");
733 //function api_get_headlines($link, $feed_id, $limit, $offset,
734 // $filter, $is_cat, $show_excerpt, $show_content, $view_mode) {
736 print "<headlines-title><![CDATA[" . getFeedTitle($link, $feed_id) .
737 "]]></headlines-title>";
739 print "<headlines><![CDATA[" . json_encode($headlines) . "]]></headlines>";
741 print "</rpc-reply>";
745 if ($subop == "digest-init") {
748 $tmp_feeds = api_get_feeds($link, -3, true, false, 0);
752 foreach ($tmp_feeds as $f) {
753 if ($f['id'] > 0 ||
$f['id'] == -4) array_push($feeds, $f);
756 print "<feeds><![CDATA[" . json_encode($feeds) . "]]></feeds>";
758 print "</rpc-reply>";
762 if ($subop == "catchupFeed") {
764 $feed_id = db_escape_string($_REQUEST['feed_id']);
765 $is_cat = db_escape_string($_REQUEST['is_cat']);
769 catchup_feed($link, $feed_id, $is_cat);
771 print "</rpc-reply>";
776 if ($subop == "sendEmail") {
777 $secretkey = $_REQUEST['secretkey'];
781 if (DIGEST_ENABLE
&& $_SESSION['email_secretkey'] &&
782 $secretkey == $_SESSION['email_secretkey']) {
784 $_SESSION['email_secretkey'] = '';
786 $destination = $_REQUEST['destination'];
787 $subject = $_REQUEST['subject'];
788 $content = $_REQUEST['content'];
790 $replyto = strip_tags($_SESSION['email_replyto']);
791 $fromname = strip_tags($_SESSION['email_fromname']);
793 $mail = new PHPMailer();
795 $mail->PluginDir
= "lib/phpmailer/";
796 $mail->SetLanguage("en", "lib/phpmailer/language/");
798 $mail->CharSet
= "UTF-8";
800 $mail->From
= $replyto;
801 $mail->FromName
= $fromname;
802 $mail->AddAddress($destination);
804 if (DIGEST_SMTP_HOST
) {
805 $mail->Host
= DIGEST_SMTP_HOST
;
806 $mail->Mailer
= "smtp";
807 $mail->SMTPAuth
= DIGEST_SMTP_LOGIN
!= '';
808 $mail->Username
= DIGEST_SMTP_LOGIN
;
809 $mail->Password
= DIGEST_SMTP_PASSWORD
;
812 $mail->IsHTML(false);
813 $mail->Subject
= $subject;
814 $mail->Body
= $content;
819 print "<error><![CDATA[" . $mail->ErrorInfo
. "]]></error>";
821 save_email_address($link, db_escape_string($destination));
822 print "<message>UPDATE_COUNTERS</message>";
826 print "<error>Not authorized.</error>";
829 print "</rpc-reply>";
834 if ($subop == "completeEmails") {
836 $search = db_escape_string($_REQUEST["search"]);
840 foreach ($_SESSION['stored_emails'] as $email) {
841 if (strpos($email, $search) !== false) {
842 print "<li>$email</li>";
851 if ($subop == "quickAddCat") {
854 $cat = db_escape_string($_REQUEST["cat"]);
856 add_feed_category($link, $cat);
858 $result = db_query($link, "SELECT id FROM ttrss_feed_categories WHERE
859 title = '$cat' AND owner_uid = " . $_SESSION["uid"]);
861 if (db_num_rows($result) == 1) {
862 $id = db_fetch_result($result, 0, "id");
867 print_feed_cat_select($link, "cat_id", $id);
869 print "</rpc-reply>";
874 if ($subop == "regenFeedKey") {
875 $feed_id = db_escape_string($_REQUEST['id']);
876 $is_cat = (bool) db_escape_string($_REQUEST['is_cat']);
880 $new_key = update_feed_access_key($link, $feed_id, $is_cat);
882 print "<link><![CDATA[$new_key]]></link>";
884 print "</rpc-reply>";
889 if ($subop == "clearKeys") {
891 db_query($link, "DELETE FROM ttrss_access_keys WHERE
892 owner_uid = " . $_SESSION["uid"]);
895 print "<message>UPDATE_COUNTERS</message>";
896 print "</rpc-reply>";
901 if ($subop == "verifyRegexp") {
902 $reg_exp = $_REQUEST["reg_exp"];
904 print "<rpc-reply><status>";
906 if (@preg_match
("/$reg_exp/i", "TEST") === false) {
912 print "</status></rpc-reply>";
917 if ($subop == "cdmGetArticle") {
918 $id = db_escape_string($_REQUEST["id"]);
920 $result = db_query($link, "SELECT content,
921 ttrss_feeds.site_url AS site_url FROM ttrss_user_entries, ttrss_feeds,
923 WHERE feed_id = ttrss_feeds.id AND ref_id = '$id' AND
924 ttrss_entries.id = ref_id AND
925 ttrss_user_entries.owner_uid = ".$_SESSION["uid"]);
927 if (db_num_rows($result) != 0) {
928 $line = db_fetch_assoc($result);
930 $article_content = sanitize_rss($link, $line["content"],
931 false, false, $line['site_url']);
934 $article_content = '';
937 print "<rpc-reply><article id=\"$id\"><![CDATA[";
938 print "$article_content";
939 print "]]></article></rpc-reply>";
944 if ($subop == "scheduleFeedUpdate") {
945 $feed_id = db_escape_string($_REQUEST["id"]);
946 $is_cat = db_escape_string($_REQUEST['is_cat']) == 'true';
948 $message = __("Your request could not be completed.");
952 $message = __("Feed update has been scheduled.");
954 db_query($link, "UPDATE ttrss_feeds SET
955 last_update_started = '1970-01-01',
956 last_updated = '1970-01-01' WHERE id = '$feed_id' AND
957 owner_uid = ".$_SESSION["uid"]);
960 $message = __("Category update has been scheduled.");
963 $cat_query = "cat_id = '$feed_id'";
965 $cat_query = "cat_id IS NULL";
967 db_query($link, "UPDATE ttrss_feeds SET
968 last_update_started = '1970-01-01',
969 last_updated = '1970-01-01' WHERE $cat_query AND
970 owner_uid = ".$_SESSION["uid"]);
973 $message = __("Can't update this kind of feed.");
977 print "<message>$message</message>";
978 print "</rpc-reply>";
983 if ($subop == "getTweetInfo") {
984 header("Content-Type: text/plain");
985 $id = db_escape_string($_REQUEST['id']);
987 $result = db_query($link, "SELECT title, link
988 FROM ttrss_entries, ttrss_user_entries
989 WHERE id = '$id' AND ref_id = id AND owner_uid = " .$_SESSION['uid']);
991 if (db_num_rows($result) != 0) {
992 $title = truncate_string(strip_tags(db_fetch_result($result, 0, 'title')),
994 $article_link = db_fetch_result($result, 0, 'link');
997 print json_encode(array("title" => $title, "link" => $article_link,
1003 print "<rpc-reply><error>Unknown method: $subop</error></rpc-reply>";