<?
- define(SCHEMA_VERSION, 1);
+ session_start();
- $op = $_GET["op"];
+ $op = $_REQUEST["op"];
- if ($op == "rpc") {
+ if ((!$op || $op == "rpc" || $op == "globalUpdateFeeds") && !$_REQUEST["noxml"]) {
header("Content-Type: application/xml");
}
+ if (!$_SESSION["uid"] && $op != "globalUpdateFeeds") {
+
+ if ($op == "rpc") {
+ print "<error error-code=\"6\"/>";
+ }
+ exit;
+ }
+
+ if (!$op) {
+ print "<error error-code=\"7\"/>";
+ exit;
+ }
+
+ define(SCHEMA_VERSION, 2);
+
require_once "config.php";
require_once "db.php";
+ require_once "db-prefs.php";
require_once "functions.php";
require_once "magpierss/rss_fetch.inc";
pg_query("set client_encoding = 'utf-8'");
}
- $result = db_query($link, "SELECT schema_version FROM ttrss_version");
-
- $schema_version = db_fetch_result($result, 0, "schema_version");
-
- if ($schema_version != SCHEMA_VERSION) {
- print "Error: database schema is invalid
- (got version $schema_version; expected ".SCHEMA_VERSION.")";
- return;
- }
-
$fetch = $_GET["fetch"];
/* FIXME this needs reworking */
function getGlobalCounters($link) {
- $result = db_query($link, "SELECT count(id) as c_id FROM ttrss_entries
- WHERE unread = true");
+ $result = db_query($link, "SELECT count(id) as c_id FROM ttrss_entries,ttrss_user_entries
+ WHERE unread = true AND
+ ttrss_user_entries.ref_id = ttrss_entries.id AND
+ owner_uid = " . $_SESSION["uid"]);
$c_id = db_fetch_result($result, 0, "c_id");
print "<counter id='global-unread' counter='$c_id'/>";
}
function getTagCounters($link) {
+
$result = db_query($link, "SELECT tag_name,count(ttrss_entries.id) AS count
- FROM ttrss_tags,ttrss_entries WHERE
- post_id = ttrss_entries.id AND unread = true GROUP BY tag_name
+ FROM ttrss_tags,ttrss_entries,ttrss_user_entries WHERE
+ ttrss_user_entries.ref_id = ttrss_entries.id AND
+ ttrss_tags.owner_uid = ".$_SESSION["uid"]." AND
+ post_int_id = ttrss_user_entries.int_id AND unread = true GROUP BY tag_name
UNION
- select tag_name,0 as count FROM ttrss_tags");
+ select tag_name,0 as count FROM ttrss_tags
+ WHERE ttrss_tags.owner_uid = ".$_SESSION["uid"]);
$tags = array();
function getLabelCounters($link) {
- $result = db_query($link, "SELECT count(id) as count FROM ttrss_entries
- WHERE marked = true AND unread = true");
+ $result = db_query($link, "SELECT count(id) as count FROM ttrss_entries,ttrss_user_entries
+ WHERE marked = true AND ttrss_user_entries.ref_id = ttrss_entries.id AND
+ unread = true AND owner_uid = ".$_SESSION["uid"]);
$count = db_fetch_result($result, 0, "count");
print "<label id=\"-1\" counter=\"$count\"/>";
- $result = db_query($link, "SELECT id,sql_exp,description FROM
- ttrss_labels ORDER by description");
+ $result = db_query($link, "SELECT owner_uid,id,sql_exp,description FROM
+ ttrss_labels WHERE owner_uid = ".$_SESSION["uid"]." ORDER by description");
while ($line = db_fetch_assoc($result)) {
error_reporting (0);
- $tmp_result = db_query($link, "SELECT count(id) as count FROM ttrss_entries
- WHERE (" . $line["sql_exp"] . ") AND unread = true");
+ $tmp_result = db_query($link, "SELECT count(id) as count FROM ttrss_user_entries,ttrss_entries
+ WHERE (" . $line["sql_exp"] . ") AND unread = true AND
+ ttrss_user_entries.ref_id = ttrss_entries.id AND
+ owner_uid = ".$_SESSION["uid"]);
$count = db_fetch_result($tmp_result, 0, "count");
function getFeedCounter($link, $id) {
$result = db_query($link, "SELECT
- count(id) as count FROM ttrss_entries
- WHERE feed_id = '$id' AND unread = true");
+ count(id) as count FROM ttrss_entries,ttrss_user_entries
+ WHERE feed_id = '$id' AND unread = true
+ AND ttrss_user_entries.ref_id = ttrss_entries.id");
$count = db_fetch_result($result, 0, "count");
function getFeedCounters($link) {
$result = db_query($link, "SELECT id,
- (SELECT count(id) FROM ttrss_entries WHERE feed_id = ttrss_feeds.id
- AND unread = true) as count
- FROM ttrss_feeds");
+ (SELECT count(id)
+ FROM ttrss_entries,ttrss_user_entries
+ WHERE feed_id = ttrss_feeds.id AND ttrss_user_entries.ref_id = ttrss_entries.id
+ AND unread = true AND owner_uid = ".$_SESSION["uid"].") as count
+ FROM ttrss_feeds WHERE owner_uid = ".$_SESSION["uid"]);
while ($line = db_fetch_assoc($result)) {
print "<html><head>
<title>Tiny Tiny RSS : Feedlist</title>
- <link rel=\"stylesheet\" href=\"tt-rss.css\" type=\"text/css\">
- <script type=\"text/javascript\" src=\"functions.js\"></script>
+ <link rel=\"stylesheet\" href=\"tt-rss.css\" type=\"text/css\">";
+
+ if (get_pref($link, 'USE_COMPACT_STYLESHEET')) {
+ print "<link rel=\"stylesheet\" type=\"text/css\"
+ href=\"tt-rss_compact.css\"/>";
+ } else {
+ print "<link title=\"Compact Stylesheet\" rel=\"alternate stylesheet\"
+ type=\"text/css\" href=\"tt-rss_compact.css\"/>";
+ }
+
+ print "<script type=\"text/javascript\" src=\"functions.js\"></script>
<script type=\"text/javascript\" src=\"feedlist.js\"></script>
<meta http-equiv=\"Content-Type\" content=\"text/html; charset=utf-8\">
</head><body onload=\"init()\">";
print "<ul class=\"feedList\" id=\"feedList\">";
+ $owner_uid = $_SESSION["uid"];
+
if (!$tags) {
/* virtual feeds */
+ if (get_pref($link, 'ENABLE_FEED_CATS')) {
+ print "<li class=\"feedCat\">Special</li>";
+ print "<ul class=\"feedCatList\">";
+ }
+
$result = db_query($link, "SELECT count(id) as num_starred
- FROM ttrss_entries WHERE marked = true AND unread = true");
+ FROM ttrss_entries,ttrss_user_entries
+ WHERE marked = true AND
+ ttrss_user_entries.ref_id = ttrss_entries.id AND
+ unread = true AND owner_uid = '$owner_uid'");
$num_starred = db_fetch_result($result, 0, "num_starred");
$class = "virt";
if ($num_starred > 0) $class .= "Unread";
printFeedEntry(-1, $class, "Starred articles", $num_starred,
- "images/mark_set.png");
+ "images/mark_set.png", $link);
+
+ if (get_pref($link, 'ENABLE_FEED_CATS')) {
+ print "</ul>";
+ }
- if (ENABLE_LABELS) {
+ if (get_pref($link, 'ENABLE_LABELS')) {
$result = db_query($link, "SELECT id,sql_exp,description FROM
- ttrss_labels ORDER by description");
+ ttrss_labels WHERE owner_uid = '$owner_uid' ORDER by description");
if (db_num_rows($result) > 0) {
- print "<li><hr></li>";
+ if (get_pref($link, 'ENABLE_FEED_CATS')) {
+ print "<li class=\"feedCat\">Labels</li>";
+ print "<ul class=\"feedCatList\">";
+ } else {
+ print "<li><hr></li>";
+ }
}
while ($line = db_fetch_assoc($result)) {
error_reporting (0);
- $tmp_result = db_query($link, "SELECT count(id) as count FROM ttrss_entries
- WHERE (" . $line["sql_exp"] . ") AND unread = true");
+ $tmp_result = db_query($link, "SELECT count(id) as count FROM ttrss_entries,ttrss_user_entries
+ WHERE (" . $line["sql_exp"] . ") AND unread = true AND
+ ttrss_user_entries.ref_id = ttrss_entries.id
+ AND owner_uid = '$owner_uid'");
$count = db_fetch_result($tmp_result, 0, "count");
error_reporting (E_ERROR | E_WARNING | E_PARSE);
printFeedEntry(-$line["id"]-11,
- $class, $line["description"], $count, "images/label.png");
+ $class, $line["description"], $count, "images/label.png", $link);
}
+
+ if (db_num_rows($result) > 0) {
+ if (get_pref($link, 'ENABLE_FEED_CATS')) {
+ print "</ul>";
+ }
+ }
+
+ }
+
+// if (!get_pref($link, 'ENABLE_FEED_CATS')) {
+ print "<li><hr></li>";
+// }
+
+ if (get_pref($link, 'ENABLE_FEED_CATS')) {
+ $order_by_qpart = "category,title";
+ } else {
+ $order_by_qpart = "title";
}
-
- print "<li><hr></li>";
$result = db_query($link, "SELECT *,
- (SELECT count(id) FROM ttrss_entries
- WHERE feed_id = ttrss_feeds.id) AS total,
- (SELECT count(id) FROM ttrss_entries
- WHERE feed_id = ttrss_feeds.id AND unread = true) as unread
- FROM ttrss_feeds ORDER BY title");
+ (SELECT count(id) FROM ttrss_entries,ttrss_user_entries
+ WHERE feed_id = ttrss_feeds.id AND
+ ttrss_user_entries.ref_id = ttrss_entries.id AND
+ owner_uid = '$owner_uid') AS total,
+ (SELECT count(id) FROM ttrss_entries,ttrss_user_entries
+ WHERE feed_id = ttrss_feeds.id AND unread = true
+ AND ttrss_user_entries.ref_id = ttrss_entries.id
+ AND owner_uid = '$owner_uid') as unread,
+ (SELECT title FROM ttrss_feed_categories
+ WHERE id = cat_id) AS category
+ FROM ttrss_feeds WHERE owner_uid = '$owner_uid' ORDER BY $order_by_qpart");
$actid = $_GET["actid"];
$lnum = 0;
$total_unread = 0;
+
+ $category = "";
while ($line = db_fetch_assoc($result)) {
$total = $line["total"];
$unread = $line["unread"];
+
+ $tmp_category = $line["category"];
+
+ if (!$tmp_category) {
+ $tmp_category = "Uncategorized";
+ }
// $class = ($lnum % 2) ? "even" : "odd";
}
$total_unread += $unread;
+
+ if ($category != $tmp_category && get_pref($link, 'ENABLE_FEED_CATS')) {
+
+ if ($category) {
+ print "</li></ul></li>";
+ }
+
+ $category = $tmp_category;
+
+ print "<li class=\"feedCat\">$category</li>";
+ print "<li><ul class=\"feedCatList\">";
+ }
- printFeedEntry($feed_id, $class, $feed, $unread, "icons/$feed_id.ico");
+ printFeedEntry($feed_id, $class, $feed, $unread,
+ "icons/$feed_id.ico", $link);
++$lnum;
}
+
} else {
// tags
$result = db_query($link, "SELECT tag_name,count(ttrss_entries.id) AS count
- FROM ttrss_tags,ttrss_entries WHERE
- post_id = ttrss_entries.id AND unread = true GROUP BY tag_name
+ FROM ttrss_tags,ttrss_entries,ttrss_user_entries WHERE
+ post_int_id = ttrss_user_entries.int_id AND
+ unread = true AND ref_id = ttrss_entries.id
+ AND ttrss_tags.owner_uid = '$owner_uid' GROUP BY tag_name
UNION
- select tag_name,0 as count FROM ttrss_tags");
+ select tag_name,0 as count FROM ttrss_tags WHERE owner_uid = '$owner_uid'
+ ORDER BY tag_name");
$tags = array();
$class .= "Unread";
}
- printFeedEntry($tag, $class, $tag, $unread, "images/tag.png");
+ printFeedEntry($tag, $class, $tag, $unread, "images/tag.png", $link);
}
}
if (db_num_rows($result) == 0) {
- print "<li>No tags to display.</li>";
+ print "<li>No tags/feeds to display.</li>";
}
print "</ul>";
$mark = "false";
}
- $result = db_query($link, "UPDATE ttrss_entries SET marked = $mark
- WHERE id = '$id'");
+ // FIXME this needs collision testing
+
+ $result = db_query($link, "UPDATE ttrss_user_entries SET marked = $mark
+ WHERE ref_id = '$id' AND owner_uid = " . $_SESSION["uid"]);
}
if ($subop == "updateFeed") {
$feed_id = db_escape_string($_GET["feed"]);
$result = db_query($link,
- "SELECT feed_url FROM ttrss_feeds WHERE id = '$feed_id'");
+ "SELECT feed_url FROM ttrss_feeds WHERE id = '$feed_id'
+ AND owner_uid = " . $_SESSION["uid"]);
if (db_num_rows($result) > 0) {
$feed_url = db_fetch_result($result, 0, "feed_url");
-// update_rss_feed($link, $feed_url, $feed_id);
+ update_rss_feed($link, $feed_url, $feed_id);
}
- print "DONE-$feed_id";
-
+ print "<rpc-reply>";
+ getFeedCounter($link, $feed_id);
+ print "</rpc-reply>";
+
return;
}
if ($subop == "forceUpdateAllFeeds" || $subop == "updateAllFeeds") {
- update_all_feeds($link, true);
+ update_all_feeds($link, $subop == "forceUpdateAllFeeds");
$omode = $_GET["omode"];
print "</rpc-reply>";
}
- if ($subop == "catchupPage") {
+ if ($subop == "catchupSelected") {
$ids = split(",", $_GET["ids"]);
foreach ($ids as $id) {
- db_query($link, "UPDATE ttrss_entries SET unread=false,last_read = NOW()
- WHERE id = '$id'");
+ db_query($link, "UPDATE ttrss_user_entries SET unread=false,last_read = NOW()
+ WHERE id = '$id' AND owner_uid = " . $_SESSION["uid"]);
}
print "Marked active page as read.";
}
+
+ if ($subop == "sanityCheck") {
+
+ $error_code = 0;
+
+ $result = db_query($link, "SELECT schema_version FROM ttrss_version");
+
+ $schema_version = db_fetch_result($result, 0, "schema_version");
+
+ if ($schema_version != SCHEMA_VERSION) {
+ $error_code = 5;
+ }
+
+ print "<error error-code='$error_code'/>";
+ }
+
+ if ($subop == "globalPurge") {
+
+ print "<rpc-reply>";
+ global_purge_old_posts($link, true);
+ print "</rpc-reply>";
+
+ }
+
}
if ($op == "feeds") {
$subop = $_GET["subop"];
if ($subop == "catchupAll") {
- db_query($link, "UPDATE ttrss_entries SET last_read = NOW(),unread = false");
+ db_query($link, "UPDATE ttrss_user_entries SET
+ last_read = NOW(),unread = false WHERE owner_uid = " . $_SESSION["uid"]);
}
outputFeedList($link, $tags);
$id = $_GET["id"];
$feed_id = $_GET["feed"];
- $result = db_query($link, "UPDATE ttrss_entries SET unread = false,last_read = NOW() WHERE id = '$id'");
+ $result = db_query($link, "UPDATE ttrss_user_entries
+ SET unread = false,last_read = NOW()
+ WHERE ref_id = '$id' AND feed_id = '$feed_id' AND owner_uid = " . $_SESSION["uid"]);
$addheader = $_GET["addheader"];
$result = db_query($link, "SELECT title,link,content,feed_id,comments,
(SELECT icon_url FROM ttrss_feeds WHERE id = feed_id) as icon_url
- FROM ttrss_entries
- WHERE id = '$id'");
+ FROM ttrss_entries,ttrss_user_entries
+ WHERE id = '$id' AND ref_id = id");
if ($addheader) {
print "<html><head>
if ($addheader) {
print "<html><head>
<title>Tiny Tiny RSS : Feed $feed</title>
- <link rel=\"stylesheet\" href=\"tt-rss.css\" type=\"text/css\">
- <meta http-equiv=\"Content-Type\" content=\"text/html; charset=utf-8\">
+ <link rel=\"stylesheet\" href=\"tt-rss.css\" type=\"text/css\">";
+
+ if (get_pref($link, 'USE_COMPACT_STYLESHEET')) {
+ print "<link rel=\"stylesheet\"
+ type=\"text/css\" href=\"tt-rss_compact.css\"/>";
+
+ } else {
+ print "<link title=\"Compact Stylesheet\" rel=\"alternate stylesheet\"
+ type=\"text/css\" href=\"tt-rss_compact.css\"/>";
+ }
+ print "<meta http-equiv=\"Content-Type\" content=\"text/html; charset=utf-8\">
<script type=\"text/javascript\" src=\"functions.js\"></script>
<script type=\"text/javascript\" src=\"viewfeed.js\"></script>
- </head><body>";
+ </head><body onload='init()'>";
}
if ($subop == "ForceUpdate" && sprintf("%d", $feed) > 0) {
if (sprintf("%d", $feed) != 0) {
if ($feed > 0) {
- db_query($link, "UPDATE ttrss_entries
+ db_query($link, "UPDATE ttrss_user_entries
SET unread = false,last_read = NOW()
- WHERE feed_id = '$feed'");
+ WHERE feed_id = '$feed' AND owner_uid = " . $_SESSION["uid"]);
} else if ($feed < 0 && $feed > -10) { // special, like starred
if ($feed == -1) {
- db_query($link, "UPDATE ttrss_entries
+ db_query($link, "UPDATE ttrss_user_entries
SET unread = false,last_read = NOW()
- WHERE marked = true");
+ WHERE marked = true AND owner_uid = ".$_SESSION["uid"]);
}
} else if ($feed < -10) { // label
+ // TODO make this more efficient
+
$label_id = -$feed - 11;
$tmp_result = db_query($link, "SELECT sql_exp FROM ttrss_labels
- WHERE id = '$label_id'");
+ WHERE id = '$label_id'");
if ($tmp_result) {
$sql_exp = db_fetch_result($tmp_result, 0, "sql_exp");
- db_query($link, "UPDATE ttrss_entries
+ db_query($link, "BEGIN");
+
+ $tmp2_result = db_query($link,
+ "SELECT
+ int_id
+ FROM
+ ttrss_user_entries,ttrss_entries
+ WHERE
+ ref_id = id AND
+ $sql_exp AND
+ owner_uid = " . $_SESSION["uid"]);
+
+ while ($tmp_line = db_fetch_assoc($tmp2_result)) {
+ db_query($link, "UPDATE
+ ttrss_user_entries
+ SET
+ unread = false, last_read = NOW()
+ WHERE
+ int_id = " . $tmp_line["int_id"]);
+ }
+
+ db_query($link, "COMMIT");
+
+/* db_query($link, "UPDATE ttrss_user_entries,ttrss_entries
SET unread = false,last_read = NOW()
- WHERE $sql_exp");
+ WHERE $sql_exp
+ AND ref_id = id
+ AND owner_uid = ".$_SESSION["uid"]); */
}
}
} else { // tag
$vfeed_query_part = "";
// override query strategy and enable feed display when searching globally
- if ($search_mode == "All feeds") {
+ if ($search && $search_mode == "All feeds") {
$query_strategy_part = "id > 0";
$vfeed_query_part = "(SELECT title FROM ttrss_feeds WHERE
id = feed_id) as feed_title,";
$vfeed_query_part
SUBSTRING(updated,1,19) as updated_noms
FROM
- ttrss_entries
+ ttrss_entries,ttrss_user_entries
WHERE
+ ttrss_user_entries.ref_id = ttrss_entries.id AND
+ owner_uid = '".$_SESSION["uid"]."' AND
$search_query_part
$view_query_part
$query_strategy_part ORDER BY $order_by
$vfeed_query_part
SUBSTRING(updated,1,19) as updated_noms
FROM
- ttrss_entries,ttrss_tags
+ ttrss_entries,ttrss_user_entries,ttrss_tags
WHERE
- post_id = ttrss_entries.id AND tag_name = '$feed' AND
+ ref_id = ttrss_entries.id AND
+ ttrss_user_entries.owner_uid = '".$_SESSION["uid"]."' AND
+ post_int_id = int_id AND tag_name = '$feed' AND
$view_query_part
$search_query_part
$query_strategy_part ORDER BY $order_by
if ($subop == "unread") {
$ids = split(",", $_GET["ids"]);
foreach ($ids as $id) {
- db_query($link, "UPDATE ttrss_entries SET unread = true WHERE feed_id = '$id'");
+ db_query($link, "UPDATE ttrss_user_entries SET unread = true
+ WHERE feed_id = '$id' AND owner_uid = ".$_SESSION["uid"]);
}
- print "Marked selected feeds as read.";
+ print "Marked selected feeds as unread.";
}
if ($subop == "read") {
$ids = split(",", $_GET["ids"]);
foreach ($ids as $id) {
- db_query($link, "UPDATE ttrss_entries
- SET unread = false,last_read = NOW() WHERE feed_id = '$id'");
+ db_query($link, "UPDATE ttrss_user_entries
+ SET unread = false,last_read = NOW() WHERE
+ feed_id = '$id' AND owner_uid = ".$_SESSION["uid"]);
}
- print "Marked selected feeds as unread.";
+ print "Marked selected feeds as read.";
}
$feed_title = db_escape_string($_GET["t"]);
$feed_link = db_escape_string($_GET["l"]);
$upd_intl = db_escape_string($_GET["ui"]);
- $feed_id = $_GET["id"];
+ $purge_intl = db_escape_string($_GET["pi"]);
+ $feed_id = db_escape_string($_GET["id"]);
+ $cat_id = db_escape_string($_GET["catid"]);
if (strtoupper($upd_intl) == "DEFAULT")
$upd_intl = 0;
+ if (strtoupper($purge_intl) == "DEFAULT")
+ $purge_intl = 0;
+
+ if (strtoupper($purge_intl) == "DISABLED")
+ $purge_intl = -1;
+
+ if ($cat_id != 0) {
+ $category_qpart = "cat_id = '$cat_id'";
+ } else {
+ $category_qpart = 'cat_id = NULL';
+ }
+
$result = db_query($link, "UPDATE ttrss_feeds SET
+ $category_qpart,
title = '$feed_title', feed_url = '$feed_link',
- update_interval = '$upd_intl' WHERE id = '$feed_id'");
+ update_interval = '$upd_intl',
+ purge_interval = '$purge_intl'
+ WHERE id = '$feed_id' AND owner_uid = " . $_SESSION["uid"]);
}
$ids = split(",", $_GET["ids"]);
foreach ($ids as $id) {
- db_query($link, "DELETE FROM ttrss_feeds WHERE id = '$id'");
+ db_query($link, "DELETE FROM ttrss_feeds
+ WHERE id = '$id' AND owner_uid = " . $_SESSION["uid"]);
+
+ $icons_dir = ICONS_DIR;
- if (file_exists(ICONS_DIR . "/$id.ico")) {
- unlink(ICONS_DIR . "/$id.ico");
+ if (file_exists($icons_dir . "/$id.ico")) {
+ unlink($icons_dir . "/$id.ico");
}
}
}
if (!WEB_DEMO_MODE) {
- $feed_link = db_escape_string($_GET["link"]);
-
+ $feed_link = db_escape_string(trim($_GET["link"]));
+
$result = db_query($link,
- "INSERT INTO ttrss_feeds (feed_url,title) VALUES ('$feed_link', '')");
+ "SELECT id FROM ttrss_feeds
+ WHERE feed_url = '$feed_link' AND owner_uid = ".$_SESSION["uid"]);
+
+ if (db_num_rows($result) == 0) {
+
+ $result = db_query($link,
+ "INSERT INTO ttrss_feeds (owner_uid,feed_url,title)
+ VALUES ('".$_SESSION["uid"]."', '$feed_link', '')");
+
+ $result = db_query($link,
+ "SELECT id FROM ttrss_feeds WHERE feed_url = '$feed_link'
+ AND owner_uid = " . $_SESSION["uid"]);
+
+ $feed_id = db_fetch_result($result, 0, "id");
+
+ if ($feed_id) {
+ update_rss_feed($link, $feed_link, $feed_id);
+ }
+ } else {
+
+ print "<div class=\"warning\">
+ Feed <b>$feed_link</b> already exists in the database.
+ </div>";
+ }
+ }
+ }
+
+ if ($subop == "addCat") {
+
+ if (!WEB_DEMO_MODE) {
+
+ $feed_cat = db_escape_string(trim($_GET["cat"]));
$result = db_query($link,
- "SELECT id FROM ttrss_feeds WHERE feed_url = '$feed_link'");
+ "SELECT id FROM ttrss_feed_categories
+ WHERE title = '$feed_cat' AND owner_uid = ".$_SESSION["uid"]);
+
+ if (db_num_rows($result) == 0) {
+
+ $result = db_query($link,
+ "INSERT INTO ttrss_feed_categories (owner_uid,title)
+ VALUES ('".$_SESSION["uid"]."', '$feed_cat')");
+
+ } else {
+
+ print "<div class=\"warning\">
+ Category <b>$feed_cat</b> already exists in the database.
+ </div>";
+ }
+
+
+ }
+ }
+
+ if ($subop == "removeCats") {
+
+ if (!WEB_DEMO_MODE) {
+
+ $ids = split(",", $_GET["ids"]);
+
+ foreach ($ids as $id) {
+
+ db_query($link, "BEGIN");
+
+ $result = db_query($link,
+ "SELECT count(id) as num_feeds FROM ttrss_feeds
+ WHERE cat_id = '$id'");
+
+ $num_feeds = db_fetch_result($result, 0, "num_feeds");
- $feed_id = db_fetch_result($result, 0, "id");
+ if ($num_feeds == 0) {
+ db_query($link, "DELETE FROM ttrss_feed_categories
+ WHERE id = '$id' AND owner_uid = " . $_SESSION["uid"]);
+ } else {
- if ($feed_id) {
- update_rss_feed($link, $feed_link, $feed_id);
+ print "<div class=\"warning\">
+ Unable to delete non empty feed categories.</div>";
+
+ }
+
+ db_query($link, "COMMIT");
}
}
}
$result = db_query($link, "SELECT id,title,feed_url,last_error
- FROM ttrss_feeds WHERE last_error != ''");
+ FROM ttrss_feeds WHERE last_error != '' AND owner_uid = ".$_SESSION["uid"]);
if (db_num_rows($result) > 0) {
}
- print "<table class=\"prefAddFeed\"><tr>
- <td><input id=\"fadd_link\"></td>
- <td colspan=\"4\" align=\"right\">
- <a class=\"button\" href=\"javascript:addFeed()\">Add feed</a></td></tr>
- </table>";
+ if (get_pref($link, 'ENABLE_FEED_CATS')) {
+
+ // print "<h3>Categories</h3>";
+
+ print "<div class=\"prefGenericAddBox\">
+ <input id=\"fadd_cat\" size=\"40\"> <input
+ type=\"submit\" class=\"button\"
+ onclick=\"javascript:addFeedCat()\" value=\"Add category\"></div>";
+
+ $result = db_query($link, "SELECT title,id FROM ttrss_feed_categories
+ WHERE owner_uid = ".$_SESSION["uid"]."
+ ORDER BY title");
+
+ print "<p><table width=\"100%\" class=\"prefFeedCatList\" id=\"prefFeedCatList\">";
+ print "<tr class=\"title\">
+ <td width=\"10%\">Select</td><td width=\"80%\">Title</td>
+ </tr>";
+
+ $lnum = 0;
+
+ while ($line = db_fetch_assoc($result)) {
+
+ $class = ($lnum % 2) ? "even" : "odd";
+
+ $cat_id = $line["id"];
+
+ $edit_cat_id = $_GET["id"];
+
+ if ($subop == "editCat" && $cat_id != $edit_cat_id) {
+ $class .= "Grayed";
+ }
+
+ print "<tr class=\"$class\" id=\"FCATR-$cat_id\">";
+
+ $edit_title = htmlspecialchars(db_unescape_string($line["title"]));
+
+ if (!$edit_cat_id || $subop != "editCat") {
+
+ print "<td><input onclick='toggleSelectRow(this);'
+ type=\"checkbox\" id=\"FCCHK-".$line["id"]."\"></td>";
+
+ print "<td><a href=\"javascript:editFeedCat($cat_id);\">" .
+ $edit_title . "</a></td>";
+
+ } else if ($cat_id != $edit_cat_id) {
+
+ print "<td><input disabled=\"true\" type=\"checkbox\"
+ id=\"FRCHK-".$line["id"]."\"></td>";
+
+ print "<td>$edit_title</td>";
+
+ } else {
+
+ print "<td><input disabled=\"true\" type=\"checkbox\" checked></td>";
+
+ print "<td><input id=\"iedit_title\" value=\"$edit_title\"></td>";
+
+ }
+
+ print "</tr>";
+
+ ++$lnum;
+ }
+
+ if ($lnum == 0) {
+ print "<tr><td colspan=\"5\" align=\"center\">No categories defined.</td></tr>";
+ }
+
+ print "</table>";
+
+ print "<p>";
+
+ if ($subop == "editCat") {
+ print "Edit category:
+ <input type=\"submit\" class=\"button\"
+ onclick=\"javascript:feedCatEditCancel()\" value=\"Cancel\">
+ <input type=\"submit\" class=\"button\"
+ onclick=\"javascript:feedCatEditSave()\" value=\"Save\">";
+ } else {
+
+ print "
+ Selection:
+ <input type=\"submit\" class=\"button\"
+ onclick=\"javascript:editSelectedFeedCat()\" value=\"Edit\">
+ <input type=\"submit\" class=\"button\"
+ onclick=\"javascript:removeSelectedFeedCats()\" value=\"Remove\">";
+ }
+ }
+
+// print "<h3>Feeds</h3>";
+
+ print "<hr><p>";
+
+ print "<div class=\"prefGenericAddBox\">
+ <input id=\"fadd_link\" size=\"40\"> <input
+ type=\"submit\" class=\"button\"
+ onclick=\"javascript:addFeed()\" value=\"Add feed\"></div>";
$result = db_query($link, "SELECT
id,title,feed_url,substring(last_updated,1,16) as last_updated,
- update_interval
+ update_interval,purge_interval,
+ (SELECT title FROM ttrss_feed_categories
+ WHERE id = cat_id) AS category
FROM
- ttrss_feeds ORDER by title");
+ ttrss_feeds WHERE owner_uid = '".$_SESSION["uid"]."' ORDER by title");
+
+ print "<div id=\"infoBoxShadow\"><div id=\"infoBox\">PLACEHOLDER</div></div>";
print "<p><table width=\"100%\" class=\"prefFeedList\" id=\"prefFeedList\">";
print "<tr class=\"title\">
- <td> </td><td>Select</td><td width=\"40%\">Title</td>
- <td width=\"30%\">Link</td><td width=\"10%\">Update Interval</td>
+ <td> </td><td>Select</td><td width=\"20%\">Title</td>
+ <td width=\"20%\">Link</td>";
+
+ if (get_pref($link, 'ENABLE_FEED_CATS')) {
+ print "<td width=\"10%\">Category</td>";
+ }
+
+ print "<td width=\"10%\">Update Interval</td>
+ <td width=\"10%\">Purge Days</td>
<td>Last updated</td></tr>";
$lnum = 0;
$edit_title = htmlspecialchars(db_unescape_string($line["title"]));
$edit_link = htmlspecialchars(db_unescape_string($line["feed_url"]));
+ $edit_cat = htmlspecialchars(db_unescape_string($line["category"]));
+
+ if (!$edit_cat) $edit_cat = "Uncategorized";
if (!$edit_feed_id || $subop != "edit") {
type=\"checkbox\" id=\"FRCHK-".$line["id"]."\"></td>";
print "<td><a href=\"javascript:editFeed($feed_id);\">" .
- $edit_title . "</td>";
+ $edit_title . "</a></td>";
+
+ print "<td><a href=\"javascript:editFeed($feed_id);\">" .
+ $edit_link . "</a></td>";
+
print "<td><a href=\"javascript:editFeed($feed_id);\">" .
- $edit_link . "</td>";
+ $edit_cat . "</a></td>";
if ($line["update_interval"] == "0")
$line["update_interval"] = "Default";
- print "<td>" . $line["update_interval"] . "</td>";
+ print "<td><a href=\"javascript:editFeed($feed_id);\">" .
+ $line["update_interval"] . "</a></td>";
+ if ($line["purge_interval"] == "0")
+ $line["purge_interval"] = "Default";
+
+ if ($line["purge_interval"] < 0)
+ $line["purge_interval"] = "Disabled";
+
+ print "<td><a href=\"javascript:editFeed($feed_id);\">" .
+ $line["purge_interval"] . "</a></td>";
} else if ($feed_id != $edit_feed_id) {
print "<td>$edit_title</td>";
print "<td>$edit_link</td>";
+ print "<td>$edit_cat</td>";
if ($line["update_interval"] == "0")
$line["update_interval"] = "Default";
print "<td>" . $line["update_interval"] . "</td>";
+ if ($line["purge_interval"] == "0")
+ $line["purge_interval"] = "Default";
+
+ if ($line["purge_interval"] < 0)
+ $line["purge_interval"] = "Disabled";
+
+ print "<td>" . $line["purge_interval"] . "</td>";
+
} else {
- print "<td><input disabled=\"true\" type=\"checkbox\"></td>";
+ print "<td><input disabled=\"true\" type=\"checkbox\" checked></td>";
print "<td><input id=\"iedit_title\" value=\"$edit_title\"></td>";
print "<td><input id=\"iedit_link\" value=\"$edit_link\"></td>";
- print "<td><input id=\"iedit_updintl\" value=\"".$line["update_interval"]."\"></td>";
+
+ print "<td>";
+
+ print "<select id=\"iedit_fcat\">";
+
+ print "<option id=\"0\">Uncategorized</option>";
+
+ if (db_num_rows($result) > 0) {
+ print "<option disabled>--------</option>";
+ }
+
+ $tmp_result = db_query($link, "SELECT id,title FROM ttrss_feed_categories
+ WHERE owner_uid = ".$_SESSION["uid"]." ORDER BY title");
+
+ while ($tmp_line = db_fetch_assoc($tmp_result)) {
+ if ($tmp_line["id"] == $line["cat_id"]) {
+ $is_selected = "selected";
+ } else {
+ $is_selected = "";
+ }
+ printf("<option $is_selected id='%d'>%s</option>",
+ $tmp_line["id"], $tmp_line["title"]);
+ }
+
+ print "</select></td>";
+
+ print "</td>";
+
+ print "<td><input id=\"iedit_updintl\"
+ value=\"".$line["update_interval"]."\"></td>";
+ print "<td><input id=\"iedit_purgintl\"
+ value=\"".$line["purge_interval"]."\"></td>";
}
print "
Selection:
+ <input type=\"submit\" class=\"button\"
+ onclick=\"javascript:selectedFeedDetails()\" value=\"Details\">
<input type=\"submit\" class=\"button\"
onclick=\"javascript:editSelectedFeed()\" value=\"Edit\">
<input type=\"submit\" class=\"button\"
onclick=\"javascript:removeSelectedFeeds()\" value=\"Remove\">";
- if (ENABLE_PREFS_CATCHUP_UNCATCHUP) {
+ if (get_pref($link, 'ENABLE_PREFS_CATCHUP_UNCATCHUP')) {
print "
<input type=\"submit\" class=\"button\"
onclick=\"javascript:readSelectedFeeds()\" value=\"Mark as read\">
$descr = db_escape_string($_GET["d"]);
$match = db_escape_string($_GET["m"]);
$filter_id = db_escape_string($_GET["id"]);
+ $feed_id = db_escape_string($_GET["fid"]);
+
+ if (!$feed_id) {
+ $feed_id = 'NULL';
+ } else {
+ $feed_id = sprintf("'%s'", db_escape_string($feed_id));
+ }
$result = db_query($link, "UPDATE ttrss_filters SET
reg_exp = '$regexp',
description = '$descr',
+ feed_id = $feed_id,
filter_type = (SELECT id FROM ttrss_filter_types WHERE
description = '$match')
WHERE id = '$filter_id'");
if (!WEB_DEMO_MODE) {
- $regexp = db_escape_string($_GET["regexp"]);
- $match = db_escape_string($_GET["match"]);
-
+ $regexp = db_escape_string(trim($_GET["regexp"]));
+ $match = db_escape_string(trim($_GET["match"]));
+ $feed_id = db_escape_string($_GET["fid"]);
+
+ if (!$feed_id) {
+ $feed_id = 'NULL';
+ } else {
+ $feed_id = sprintf("'%s'", db_escape_string($feed_id));
+ }
+
$result = db_query($link,
- "INSERT INTO ttrss_filters (reg_exp,filter_type) VALUES
+ "INSERT INTO ttrss_filters (reg_exp,filter_type,owner_uid,feed_id) VALUES
('$regexp', (SELECT id FROM ttrss_filter_types WHERE
- description = '$match'))");
+ description = '$match'),'".$_SESSION["uid"]."', $feed_id)");
}
}
array_push($filter_types, $line["description"]);
}
- print "<table class=\"prefAddFeed\"><tr>
- <td><input id=\"fadd_regexp\"></td>
- <td>";
- print_select("fadd_match", "Title", $filter_types);
+ print "<div class=\"prefGenericAddBox\">
+ <input id=\"fadd_regexp\" size=\"40\"> ";
+
+ print_select("fadd_match", "Title", $filter_types);
+
+ print " <select id=\"fadd_feed\">";
+
+ print "<option selected id=\"0\">All feeds</option>";
+
+ $result = db_query($link, "SELECT id,title FROM ttrss_feeds
+ WHERE owner_uid = ".$_SESSION["uid"]." ORDER BY title");
+
+ if (db_num_rows($result) > 0) {
+ print "<option disabled>--------</option>";
+ }
+
+ while ($line = db_fetch_assoc($result)) {
+ printf("<option id='%d'>%s</option>", $line["id"], $line["title"]);
+ }
+
+ print "</select> ";
- print"</td><td colspan=\"4\" align=\"right\">
- <a class=\"button\" href=\"javascript:addFilter()\">Add filter</a></td></tr>
- </table>";
+ print "<input type=\"submit\"
+ class=\"button\" onclick=\"javascript:addFilter()\"
+ value=\"Add filter\">";
$result = db_query($link, "SELECT
- id,reg_exp,description,
- (SELECT name FROM ttrss_filter_types WHERE
- id = filter_type) as filter_type_name,
- (SELECT description FROM ttrss_filter_types
- WHERE id = filter_type) as filter_type_descr
+ ttrss_filters.id AS id,reg_exp,
+ ttrss_filters.description AS description,
+ ttrss_filter_types.name AS filter_type_name,
+ ttrss_filter_types.description AS filter_type_descr,
+ feed_id,
+ (SELECT title FROM ttrss_feeds WHERE id = feed_id) AS feed_title
FROM
- ttrss_filters ORDER by reg_exp");
+ ttrss_filters,ttrss_filter_types
+ WHERE
+ filter_type = ttrss_filter_types.id AND
+ ttrss_filters.owner_uid = ".$_SESSION["uid"]."
+ ORDER by reg_exp");
print "<p><table width=\"100%\" class=\"prefFilterList\" id=\"prefFilterList\">";
print "<tr class=\"title\">
- <td width=\"5%\">Select</td><td width=\"40%\">Filter expression</td>
- <td width=\"40%\">Description</td><td width=\"10%\">Match</td></tr>";
+ <td width=\"5%\">Select</td><td width=\"30%\">Filter expression</td>
+ <td width=\"30%\">Feed</td><td width=\"10%\">Match</td>
+ <td width=\"30%\">Description</td></tr>";
$lnum = 0;
$line["regexp"] = htmlspecialchars($line["reg_exp"]);
$line["description"] = htmlspecialchars($line["description"]);
+ if (!$line["feed_title"]) $line["feed_title"] = "All feeds";
+
if (!$edit_filter_id || $subop != "edit") {
if (!$line["description"]) $line["description"] = "[No description]";
print "<td><a href=\"javascript:editFilter($filter_id);\">" .
$line["reg_exp"] . "</td>";
+
+ print "<td><a href=\"javascript:editFilter($filter_id);\">" .
+ $line["feed_title"] . "</td>";
+
+ print "<td><a href=\"javascript:editFilter($filter_id);\">" .
+ $line["filter_type_descr"] . "</td>";
print "<td><a href=\"javascript:editFilter($filter_id);\">" .
$line["description"] . "</td>";
- print "<td>".$line["filter_type_descr"]."</td>";
-
} else if ($filter_id != $edit_filter_id) {
if (!$line["description"]) $line["description"] = "[No description]";
id=\"FICHK-".$line["id"]."\"></td>";
print "<td>".$line["reg_exp"]."</td>";
- print "<td>".$line["description"]."</td>";
+ print "<td>".$line["feed_title"]."</td>";
print "<td>".$line["filter_type_descr"]."</td>";
+ print "<td>".$line["description"]."</td>";
} else {
- print "<td><input disabled=\"true\" type=\"checkbox\"></td>";
+ print "<td><input disabled=\"true\" type=\"checkbox\" checked></td>";
print "<td><input id=\"iedit_regexp\" value=\"".$line["reg_exp"].
"\"></td>";
- print "<td><input id=\"iedit_descr\" value=\"".$line["description"].
- "\"></td>";
+ print "<td>";
+
+ print "<select id=\"iedit_feed\">";
+
+ print "<option id=\"0\">All feeds</option>";
+
+ if (db_num_rows($result) > 0) {
+ print "<option disabled>--------</option>";
+ }
+
+ $tmp_result = db_query($link, "SELECT id,title FROM ttrss_feeds
+ WHERE owner_uid = ".$_SESSION["uid"]." ORDER BY title");
+
+ while ($tmp_line = db_fetch_assoc($tmp_result)) {
+ if ($tmp_line["id"] == $line["feed_id"]) {
+ $is_selected = "selected";
+ } else {
+ $is_selected = "";
+ }
+ printf("<option $is_selected id='%d'>%s</option>",
+ $tmp_line["id"], $tmp_line["title"]);
+ }
+
+ print "</select></td>";
print "<td>";
print_select("iedit_match", $line["filter_type_descr"], $filter_types);
print "</td>";
-
+
+ print "<td><input id=\"iedit_descr\" value=\"".$line["description"].
+ "\"></td>";
+
+ print "</td>";
}
-
print "</tr>";
if (!WEB_DEMO_MODE) {
- $exp = $_GET["exp"];
+ // no escaping is done here on purpose
+ $exp = trim($_GET["exp"]);
$result = db_query($link,
- "INSERT INTO ttrss_labels (sql_exp,description)
- VALUES ('$exp', '$exp')");
+ "INSERT INTO ttrss_labels (sql_exp,description,owner_uid)
+ VALUES ('$exp', '$exp', '".$_SESSION["uid"]."')");
}
}
- print "<table class=\"prefAddFeed\"><tr>
- <td><input id=\"ladd_expr\"></td>";
+ print "<div class=\"prefGenericAddBox\">
+ <input size=\"40\" id=\"ladd_expr\"> ";
- print"<td colspan=\"4\" align=\"right\">
- <a class=\"button\" href=\"javascript:addLabel()\">Add label</a></td></tr>
- </table>";
+ print"<input type=\"submit\" class=\"button\"
+ onclick=\"javascript:addLabel()\" value=\"Add label\"></div>";
$result = db_query($link, "SELECT
id,sql_exp,description
FROM
- ttrss_labels ORDER by description");
+ ttrss_labels
+ WHERE
+ owner_uid = ".$_SESSION["uid"]."
+ ORDER by description");
print "<p><table width=\"100%\" class=\"prefLabelList\" id=\"prefLabelList\">";
} else {
- print "<td><input disabled=\"true\" type=\"checkbox\"></td>";
+ print "<td><input disabled=\"true\" type=\"checkbox\" checked></td>";
print "<td><input id=\"iedit_expr\" value=\"".$line["sql_exp"].
"\"></td>";
<title>Tiny Tiny RSS : Help</title>
<link rel=\"stylesheet\" href=\"tt-rss.css\" type=\"text/css\">
<script type=\"text/javascript\" src=\"functions.js\"></script>
- <script type=\"text/javascript\" src=\"feedlist.js\"></script>
<meta http-equiv=\"Content-Type\" content=\"text/html; charset=utf-8\">
</head><body>";
}
+ // update feeds of all users, may be used anonymously
+ if ($op == "globalUpdateFeeds") {
+
+ $result = db_query($link, "SELECT id FROM ttrss_users");
+
+ while ($line = db_fetch_assoc($result)) {
+ $user_id = $line["id"];
+// print "<!-- updating feeds of uid $user_id -->";
+ update_all_feeds($link, false, $user_id);
+ }
+
+ print "<rpc-reply>
+ <message msg=\"All feeds updated\"/>
+ </rpc-reply>";
+
+ }
+
+ if ($op == "pref-prefs") {
+
+ $subop = $_REQUEST["subop"];
+
+ if ($subop == "Save configuration") {
+
+ if (WEB_DEMO_MODE) {
+ header("Location: prefs.php");
+ return;
+ }
+
+ $_SESSION["prefs_op_result"] = "save-config";
+
+ foreach (array_keys($_POST) as $pref_name) {
+
+ $pref_name = db_escape_string($pref_name);
+ $value = db_escape_string($_POST[$pref_name]);
+
+ $result = db_query($link, "SELECT type_name
+ FROM ttrss_prefs,ttrss_prefs_types
+ WHERE pref_name = '$pref_name' AND type_id = ttrss_prefs_types.id");
+
+ if (db_num_rows($result) > 0) {
+
+ $type_name = db_fetch_result($result, 0, "type_name");
+
+// print "$pref_name : $type_name : $value<br>";
+
+ if ($type_name == "bool") {
+ if ($value == "1") {
+ $value = "true";
+ } else {
+ $value = "false";
+ }
+ } else if ($type_name == "integer") {
+ $value = sprintf("%d", $value);
+ }
+
+// print "$pref_name : $type_name : $value<br>";
+
+ db_query($link, "UPDATE ttrss_user_prefs SET value = '$value'
+ WHERE pref_name = '$pref_name' AND owner_uid = ".$_SESSION["uid"]);
+
+ }
+
+ header("Location: prefs.php");
+
+ }
+
+ } else if ($subop == "getHelp") {
+
+ $pref_name = db_escape_string($_GET["pn"]);
+
+ $result = db_query($link, "SELECT help_text FROM ttrss_prefs
+ WHERE pref_name = '$pref_name'");
+
+ if (db_num_rows($result) > 0) {
+ $help_text = db_fetch_result($result, 0, "help_text");
+ print $help_text;
+ } else {
+ print "Unknown option: $pref_name";
+ }
+
+ } else if ($subop == "Change password") {
+
+ if (WEB_DEMO_MODE) {
+ header("Location: prefs.php");
+ return;
+ }
+
+ $old_pw = $_POST["OLD_PASSWORD"];
+ $new_pw = $_POST["OLD_PASSWORD"];
+
+ $old_pw_hash = 'SHA1:' . sha1($_POST["OLD_PASSWORD"]);
+ $new_pw_hash = 'SHA1:' . sha1($_POST["NEW_PASSWORD"]);
+
+ $active_uid = $_SESSION["uid"];
+
+ if ($old_pw && $new_pw) {
+
+ $login = db_escape_string($_SERVER['PHP_AUTH_USER']);
+
+ $result = db_query($link, "SELECT id FROM ttrss_users WHERE
+ id = '$active_uid' AND (pwd_hash = '$old_pw' OR
+ pwd_hash = '$old_pw_hash')");
+
+ if (db_num_rows($result) == 1) {
+ db_query($link, "UPDATE ttrss_users SET pwd_hash = '$new_pw_hash'
+ WHERE id = '$active_uid'");
+
+ $_SESSION["pwd_change_result"] = "ok";
+ } else {
+ $_SESSION["pwd_change_result"] = "failed";
+ }
+ }
+
+ header("Location: prefs.php");
+
+ } else if ($subop == "Reset to defaults") {
+
+ if (WEB_DEMO_MODE) {
+ header("Location: prefs.php");
+ return;
+ }
+
+ $_SESSION["prefs_op_result"] = "reset-to-defaults";
+
+ if (DB_TYPE == "pgsql") {
+ db_query($link,"UPDATE ttrss_user_prefs
+ SET value = ttrss_prefs.def_value
+ WHERE owner_uid = '".$_SESSION["uid"]."' AND
+ ttrss_prefs.pref_name = ttrss_user_prefs.pref_name");
+ } else {
+ db_query($link, "DELETE FROM ttrss_user_prefs
+ WHERE owner_uid = ".$_SESSION["uid"]);
+ initialize_user_prefs($link, $_SESSION["uid"]);
+ }
+
+ header("Location: prefs.php");
+
+ } else {
+
+ if (!SINGLE_USER_MODE) {
+
+ $result = db_query($link, "SELECT id FROM ttrss_users
+ WHERE id = ".$_SESSION["uid"]." AND (pwd_hash = 'password' OR
+ pwd_hash = 'SHA1:".sha1("password")."')");
+
+ if (db_num_rows($result) != 0) {
+ print "<div class=\"warning\">
+ Your password is at default value, please change it.
+ </div>";
+ }
+
+ if ($_SESSION["pwd_change_result"] == "failed") {
+ print "<div class=\"warning\">
+ There was an error while changing your password.
+ </div>";
+ }
+
+ if ($_SESSION["pwd_change_result"] == "ok") {
+ print "<div class=\"notice\">
+ Password changed successfully.
+ </div>";
+ }
+
+ $_SESSION["pwd_change_result"] = "";
+
+ if ($_SESSION["prefs_op_result"] == "reset-to-defaults") {
+ print "<div class=\"notice\">
+ Your configuration was reset to defaults.
+ </div>";
+ }
+
+ if ($_SESSION["prefs_op_result"] == "save-config") {
+ print "<div class=\"notice\">
+ Your configuration was saved successfully.
+ </div>";
+ }
+
+ $_SESSION["prefs_op_result"] = "";
+
+ print "<form action=\"backend.php\" method=\"POST\">";
+
+ print "<table width=\"100%\" class=\"prefPrefsList\">";
+ print "<tr><td colspan='3'><h3>Authentication</h3></tr></td>";
+
+ print "<tr><td width=\"40%\">Old password</td>";
+ print "<td><input class=\"editbox\" type=\"password\"
+ name=\"OLD_PASSWORD\"></td></tr>";
+
+ print "<tr><td width=\"40%\">New password</td>";
+
+ print "<td><input class=\"editbox\" type=\"password\"
+ name=\"NEW_PASSWORD\"></td></tr>";
+
+ print "</table>";
+
+ print "<input type=\"hidden\" name=\"op\" value=\"pref-prefs\">";
+
+ print "<p><input class=\"button\" type=\"submit\"
+ value=\"Change password\" name=\"subop\">";
+
+ print "</form>";
+
+ }
+
+ $result = db_query($link, "SELECT
+ ttrss_user_prefs.pref_name,short_desc,help_text,value,type_name,
+ section_name,def_value
+ FROM ttrss_prefs,ttrss_prefs_types,ttrss_prefs_sections,ttrss_user_prefs
+ WHERE type_id = ttrss_prefs_types.id AND
+ section_id = ttrss_prefs_sections.id AND
+ ttrss_user_prefs.pref_name = ttrss_prefs.pref_name AND
+ owner_uid = ".$_SESSION["uid"]."
+ ORDER BY section_id,short_desc");
+
+ print "<form action=\"backend.php\" method=\"POST\">";
+
+ $lnum = 0;
+
+ $active_section = "";
+
+ while ($line = db_fetch_assoc($result)) {
+
+ if ($active_section != $line["section_name"]) {
+
+ if ($active_section != "") {
+ print "</table>";
+ }
+
+ print "<p><table width=\"100%\" class=\"prefPrefsList\">";
+
+ $active_section = $line["section_name"];
+
+ print "<tr><td colspan=\"3\"><h3>$active_section</h3></td></tr>";
+// print "<tr class=\"title\">
+// <td width=\"25%\">Option</td><td>Value</td></tr>";
+
+ $lnum = 0;
+ }
+
+// $class = ($lnum % 2) ? "even" : "odd";
+
+ print "<tr>";
+
+ $type_name = $line["type_name"];
+ $pref_name = $line["pref_name"];
+ $value = $line["value"];
+ $def_value = $line["def_value"];
+ $help_text = $line["help_text"];
+
+ print "<td width=\"40%\" id=\"$pref_name\">" . $line["short_desc"];
+
+ if ($help_text) print "<div class=\"prefHelp\">$help_text</div>";
+
+ print "</td>";
+
+ print "<td>";
+
+ if ($type_name == "bool") {
+// print_select($pref_name, $value, array("true", "false"));
+
+ if ($value == "true") {
+ $value = "Yes";
+ } else {
+ $value = "No";
+ }
+
+ print_radio($pref_name, $value, array("Yes", "No"));
+
+ } else {
+ print "<input class=\"editbox\" name=\"$pref_name\" value=\"$value\">";
+ }
+
+ print "</td>";
+
+ print "</tr>";
+
+ $lnum++;
+ }
+
+ print "</table>";
+
+ print "<input type=\"hidden\" name=\"op\" value=\"pref-prefs\">";
+
+ print "<p><input class=\"button\" type=\"submit\"
+ name=\"subop\" value=\"Save configuration\">";
+
+ print " <input class=\"button\" type=\"submit\"
+ name=\"subop\" value=\"Reset to defaults\"></p>";
+
+ print "</form>";
+
+ }
+
+ }
+
+ if ($op == "pref-users") {
+
+ $subop = $_GET["subop"];
+
+ if ($subop == "editSave") {
+
+ if (!WEB_DEMO_MODE) {
+
+ $login = db_escape_string($_GET["l"]);
+ $uid = db_escape_string($_GET["id"]);
+ $access_level = sprintf("%d", $_GET["al"]);
+
+ db_query($link, "UPDATE ttrss_users SET login = '$login', access_level = '$access_level' WHERE id = '$uid'");
+
+ }
+ } else if ($subop == "remove") {
+
+ if (!WEB_DEMO_MODE && $_SESSION["access_level"] >= 10) {
+
+ $ids = split(",", $_GET["ids"]);
+
+ foreach ($ids as $id) {
+ db_query($link, "DELETE FROM ttrss_users WHERE id = '$id' AND id != " . $_SESSION["uid"]);
+
+ }
+ }
+ } else if ($subop == "add") {
+
+ if (!WEB_DEMO_MODE && $_SESSION["access_level"] >= 10) {
+
+ $login = db_escape_string(trim($_GET["login"]));
+ $tmp_user_pwd = make_password(8);
+ $pwd_hash = 'SHA1:' . sha1($tmp_user_pwd);
+
+ db_query($link, "INSERT INTO ttrss_users (login,pwd_hash,access_level)
+ VALUES ('$login', '$pwd_hash', 0)");
+
+
+ $result = db_query($link, "SELECT id FROM ttrss_users WHERE
+ login = '$login' AND pwd_hash = '$pwd_hash'");
+
+ if (db_num_rows($result) == 1) {
+
+ $new_uid = db_fetch_result($result, 0, "id");
+
+ print "<div class=\"notice\">Added user <b>".$_GET["login"].
+ "</b> with password <b>$tmp_user_pwd</b>.</div>";
+
+ initialize_user($link, $new_uid);
+
+ } else {
+
+ print "<div class=\"warning\">Error while adding user <b>".
+ $_GET["login"].".</b></div>";
+
+ }
+ }
+ } else if ($subop == "resetPass") {
+
+ if (!WEB_DEMO_MODE && $_SESSION["access_level"] >= 10) {
+
+ $uid = db_escape_string($_GET["id"]);
+
+ $result = db_query($link, "SELECT login FROM ttrss_users WHERE id = '$uid'");
+
+ $login = db_fetch_result($result, 0, "login");
+ $tmp_user_pwd = make_password(8);
+ $pwd_hash = 'SHA1:' . sha1($tmp_user_pwd);
+
+ db_query($link, "UPDATE ttrss_users SET pwd_hash = '$pwd_hash'
+ WHERE id = '$uid'");
+
+ print "<div class=\"notice\">Changed password of
+ user <b>$login</b> to <b>$tmp_user_pwd</b>.</div>";
+
+ }
+ }
+
+ print "<div class=\"prefGenericAddBox\">
+ <input id=\"uadd_box\" size=\"40\"> ";
+
+ print"<input type=\"submit\" class=\"button\"
+ onclick=\"javascript:addUser()\" value=\"Add user\"></div>";
+
+ $result = db_query($link, "SELECT
+ id,login,access_level,
+ SUBSTRING(last_login,1,16) as last_login
+ FROM
+ ttrss_users
+ ORDER by login");
+
+ print "<div id=\"infoBoxShadow\"><div id=\"infoBox\">PLACEHOLDER</div></div>";
+
+ print "<p><table width=\"100%\" class=\"prefUserList\" id=\"prefUserList\">";
+
+ print "<tr class=\"title\">
+ <td width=\"5%\">Select</td>
+ <td width='30%'>Username</td>
+ <td width='30%'>Access Level</td>
+ <td width='30%'>Last login</td></tr>";
+
+ $lnum = 0;
+
+ while ($line = db_fetch_assoc($result)) {
+
+ $class = ($lnum % 2) ? "even" : "odd";
+
+ $uid = $line["id"];
+ $edit_uid = $_GET["id"];
+
+ if ($uid == $_SESSION["uid"] || ($subop == "edit" && $uid != $edit_uid)) {
+ $class .= "Grayed";
+ }
+
+ print "<tr class=\"$class\" id=\"UMRR-$uid\">";
+
+ $line["login"] = htmlspecialchars($line["login"]);
+
+ if ($uid == $_SESSION["uid"]) {
+
+ print "<td><input disabled=\"true\" type=\"checkbox\"
+ id=\"UMCHK-".$line["id"]."\"></td>";
+
+ print "<td>".$line["login"]."</td>";
+ print "<td>".$line["access_level"]."</td>";
+
+ } else if (!$edit_uid || $subop != "edit") {
+
+ print "<td><input onclick='toggleSelectRow(this);'
+ type=\"checkbox\" id=\"UMCHK-$uid\"></td>";
+
+ print "<td><a href=\"javascript:editUser($uid);\">" .
+ $line["login"] . "</td>";
+
+ print "<td><a href=\"javascript:editUser($uid);\">" .
+ $line["access_level"] . "</td>";
+
+ } else if ($uid != $edit_uid) {
+
+ print "<td><input disabled=\"true\" type=\"checkbox\"
+ id=\"UMCHK-".$line["id"]."\"></td>";
+
+ print "<td>".$line["login"]."</td>";
+ print "<td>".$line["access_level"]."</td>";
+
+ } else {
+
+ print "<td><input disabled=\"true\" type=\"checkbox\" checked></td>";
+
+ print "<td><input id=\"iedit_ulogin\" value=\"".$line["login"].
+ "\"></td>";
+
+ print "<td><input id=\"iedit_ulevel\" value=\"".$line["access_level"].
+ "\"></td>";
+
+ }
+
+ print "<td>".$line["last_login"]."</td>";
+
+ print "</tr>";
+
+ ++$lnum;
+ }
+
+ print "</table>";
+
+ print "<p>";
+
+ if ($subop == "edit") {
+ print "Edit label:
+ <input type=\"submit\" class=\"button\"
+ onclick=\"javascript:userEditCancel()\" value=\"Cancel\">
+ <input type=\"submit\" class=\"button\"
+ onclick=\"javascript:userEditSave()\" value=\"Save\">";
+
+ } else {
+
+ print "
+ Selection:
+ <input type=\"submit\" class=\"button\"
+ onclick=\"javascript:selectedUserDetails()\" value=\"User details\">
+ <input type=\"submit\" class=\"button\"
+ onclick=\"javascript:editSelectedUser()\" value=\"Edit\">
+ <input type=\"submit\" class=\"button\"
+ onclick=\"javascript:removeSelectedUsers()\" value=\"Remove\">
+ <input type=\"submit\" class=\"button\"
+ onclick=\"javascript:resetSelectedUserPass()\" value=\"Reset password\">";
+
+ }
+ }
+
+ if ($op == "user-details") {
+
+ if (WEB_DEMO_MODE || $_SESSION["access_level"] < 10) {
+ return;
+ }
+
+/* print "<html><head>
+ <title>Tiny Tiny RSS : User Details</title>
+ <link rel=\"stylesheet\" href=\"tt-rss.css\" type=\"text/css\">
+ <meta http-equiv=\"Content-Type\" content=\"text/html; charset=utf-8\">
+ </head><body>"; */
+
+ $uid = sprintf("%d", $_GET["id"]);
+
+ print "<div class='infoBoxContents'>";
+
+ $result = db_query($link, "SELECT login,
+ SUBSTRING(last_login,1,16) AS last_login,
+ access_level,
+ (SELECT COUNT(int_id) FROM ttrss_user_entries
+ WHERE owner_uid = id) AS stored_articles
+ FROM ttrss_users
+ WHERE id = '$uid'");
+
+ if (db_num_rows($result) == 0) {
+ print "<h1>User not found</h1>";
+ return;
+ }
+
+ print "<h1>User Details</h1>";
+
+ print "<table width='100%'>";
+
+ $login = db_fetch_result($result, 0, "login");
+ $last_login = db_fetch_result($result, 0, "last_login");
+ $access_level = db_fetch_result($result, 0, "access_level");
+ $stored_articles = db_fetch_result($result, 0, "stored_articles");
+
+ print "<tr><td>Username</td><td>$login</td></tr>";
+ print "<tr><td>Access level</td><td>$access_level</td></tr>";
+ print "<tr><td>Last logged in</td><td>$last_login</td></tr>";
+ print "<tr><td>Stored articles</td><td>$stored_articles</td></tr>";
+
+ $result = db_query($link, "SELECT COUNT(id) as num_feeds FROM ttrss_feeds
+ WHERE owner_uid = '$uid'");
+
+ $num_feeds = db_fetch_result($result, 0, "num_feeds");
+
+ print "<tr><td>Subscribed feeds count</td><td>$num_feeds</td></tr>";
+
+/* $result = db_query($link, "SELECT
+ SUM(LENGTH(content)+LENGTH(title)+LENGTH(link)+LENGTH(guid)) AS db_size
+ FROM ttrss_user_entries,ttrss_entries
+ WHERE owner_uid = '$uid' AND ref_id = id");
+
+ $db_size = round(db_fetch_result($result, 0, "db_size") / 1024);
+
+ print "<tr><td>Approx. used DB size</td><td>$db_size KBytes</td></tr>"; */
+
+ print "</table>";
+
+ print "<h1>Subscribed feeds</h1>";
+
+ $result = db_query($link, "SELECT id,title,feed_url FROM ttrss_feeds
+ WHERE owner_uid = '$uid' ORDER BY title");
+
+ print "<ul class=\"nomarks\">";
+
+ while ($line = db_fetch_assoc($result)) {
+
+ $icon_file = ICONS_URL."/".$line["id"].".ico";
+
+ if (file_exists($icon_file) && filesize($icon_file) > 0) {
+ $feed_icon = "<img class=\"tinyFeedIcon\" src=\"$icon_file\">";
+ } else {
+ $feed_icon = "<img class=\"tinyFeedIcon\" src=\"images/blank_icon.gif\">";
+ }
+
+ print "<li>$feed_icon <a href=\"".$line["feed_url"]."\">".$line["title"]."</a></li>";
+ }
+
+ print "</ul>";
+
+ print "</div>";
+
+ print "<div align='center'>
+ <input type='submit' class='button'
+ onclick=\"closeInfoBox()\" value=\"Close this window\"></div>";
+
+// print "</body></html>";
+
+ }
+
+ if ($op == "feed-details") {
+
+ $feed_id = $_GET["id"];
+
+ $result = db_query($link,
+ "SELECT
+ title,feed_url,last_updated,icon_url,site_url,
+ (SELECT COUNT(int_id) FROM ttrss_user_entries
+ WHERE feed_id = id) AS total,
+ (SELECT COUNT(int_id) FROM ttrss_user_entries
+ WHERE feed_id = id AND unread = true) AS unread,
+ (SELECT COUNT(int_id) FROM ttrss_user_entries
+ WHERE feed_id = id AND marked = true) AS marked
+ FROM ttrss_feeds
+ WHERE id = '$feed_id' AND owner_uid = ".$_SESSION["uid"]);
+
+ if (db_num_rows($result) == 0) return;
+
+ $title = db_fetch_result($result, 0, "title");
+ $last_updated = db_fetch_result($result, 0, "last_updated");
+ $feed_url = db_fetch_result($result, 0, "feed_url");
+ $icon_url = db_fetch_result($result, 0, "icon_url");
+ $total = db_fetch_result($result, 0, "total");
+ $unread = db_fetch_result($result, 0, "unread");
+ $marked = db_fetch_result($result, 0, "marked");
+ $site_url = db_fetch_result($result, 0, "site_url");
+
+ $result = db_query($link, "SELECT COUNT(id) AS subscribed
+ FROM ttrss_feeds WHERE feed_url = '$feed_url'");
+
+ $subscribed = db_fetch_result($result, 0, "subscribed");
+
+ print "<div class=\"infoBoxContents\">";
+
+ $icon_file = ICONS_DIR . "/$feed_id.ico";
+
+ if (file_exists($icon_file) && filesize($icon_file) > 0) {
+ $feed_icon = "<img width=\"16\" height=\"16\"
+ src=\"" . ICONS_URL . "/$feed_id.ico\">";
+ } else {
+ $feed_icon = "";
+ }
+
+ print "<h1>$feed_icon $title</h1>";
+
+ print "<table width='100%'>";
+
+ if ($site_url) {
+ print "<tr><td width='30%'>Link</td>
+ <td><a href=\"$site_url\">$site_url</a>
+ <a href=\"$feed_url\">(feed)</a></td>
+ </td></tr>";
+ } else {
+ print "<tr><td width='30%'>Feed URL</td>
+ <td><a href=\"$feed_url\">$feed_url</a></td></tr>";
+ }
+ print "<tr><td>Last updated</td><td>$last_updated</td></tr>";
+ print "<tr><td>Total articles</td><td>$total</td></tr>";
+ print "<tr><td>Unread articles</td><td>$unread</td></tr>";
+ print "<tr><td>Starred articles</td><td>$marked</td></tr>";
+ print "<tr><td>Subscribed users</td><td>$subscribed</td></tr>";
+
+ print "</table>";
+
+ $result = db_query($link, "SELECT title,
+ SUBSTRING(updated,1,16) AS updated,unread
+ FROM ttrss_entries,ttrss_user_entries
+ WHERE ref_id = id AND feed_id = '$feed_id'
+ ORDER BY date_entered DESC LIMIT 5");
+
+ if (db_num_rows($result) > 0) {
+
+ print "<h1>Latest headlines</h1>";
+
+ print "<ul class=\"nomarks\">";
+
+ while ($line = db_fetch_assoc($result)) {
+ if ($line["unread"] == "t" || $line["unread"] == "1") {
+ $line["title"] = "<b>" . $line["title"] . "</b>";
+ }
+ print "<li>" . $line["title"].
+ " <span class=\"insensitive\">(" .$line["updated"].")</span></li>";
+ }
+
+ print "</ul>";
+
+ print "</div>";
+
+ print "<div align='center'>
+ <input type='submit' class='button'
+ onclick=\"closeInfoBox()\" value=\"Close this window\"></div>";
+ }
+ }
+
db_close($link);
?>