]> git.wh0rd.org - tt-rss.git/blobdiff - classes/api.php
api, also hide uncategorized if empty
[tt-rss.git] / classes / api.php
index b9168cf930bb484602b12369401bb496acce9a8b..ea57a61ab256b31612f981994a7068e3af40d987 100644 (file)
@@ -2,7 +2,7 @@
 
 class API extends Handler {
 
-       const API_LEVEL  = 4;
+       const API_LEVEL  = 5;
 
        const STATUS_OK  = 0;
        const STATUS_ERR = 1;
@@ -47,7 +47,10 @@ class API extends Handler {
        }
 
        function login() {
-               $login = db_escape_string($_REQUEST["user"]);
+               @session_destroy();
+               @session_start();
+
+               $login = db_escape_string($this->link, $_REQUEST["user"]);
                $password = $_REQUEST["password"];
                $password_base64 = base64_decode($_REQUEST["password"]);
 
@@ -92,8 +95,8 @@ class API extends Handler {
        }
 
        function getUnread() {
-               $feed_id = db_escape_string($_REQUEST["feed_id"]);
-               $is_cat = db_escape_string($_REQUEST["is_cat"]);
+               $feed_id = db_escape_string($this->link, $_REQUEST["feed_id"]);
+               $is_cat = db_escape_string($this->link, $_REQUEST["is_cat"]);
 
                if ($feed_id) {
                        print $this->wrap(self::STATUS_OK, array("unread" => getFeedUnread($this->link, $feed_id, $is_cat)));
@@ -108,10 +111,10 @@ class API extends Handler {
        }
 
        function getFeeds() {
-               $cat_id = db_escape_string($_REQUEST["cat_id"]);
+               $cat_id = db_escape_string($this->link, $_REQUEST["cat_id"]);
                $unread_only = sql_bool_to_bool($_REQUEST["unread_only"]);
-               $limit = (int) db_escape_string($_REQUEST["limit"]);
-               $offset = (int) db_escape_string($_REQUEST["offset"]);
+               $limit = (int) db_escape_string($this->link, $_REQUEST["limit"]);
+               $offset = (int) db_escape_string($this->link, $_REQUEST["offset"]);
                $include_nested = sql_bool_to_bool($_REQUEST["include_nested"]);
 
                $feeds = $this->api_get_feeds($this->link, $cat_id, $unread_only, $limit, $offset, $include_nested);
@@ -122,6 +125,7 @@ class API extends Handler {
        function getCategories() {
                $unread_only = sql_bool_to_bool($_REQUEST["unread_only"]);
                $enable_nested = sql_bool_to_bool($_REQUEST["enable_nested"]);
+               $include_empty = sql_bool_to_bool($_REQUEST['include_empty']);
 
                // TODO do not return empty categories, return Uncategorized and standard virtual cats
 
@@ -133,7 +137,10 @@ class API extends Handler {
                $result = db_query($this->link, "SELECT
                                id, title, order_id, (SELECT COUNT(id) FROM
                                ttrss_feeds WHERE
-                               ttrss_feed_categories.id IS NOT NULL AND cat_id = ttrss_feed_categories.id) AS num_feeds
+                               ttrss_feed_categories.id IS NOT NULL AND cat_id = ttrss_feed_categories.id) AS num_feeds,
+                       (SELECT COUNT(id) FROM
+                               ttrss_feed_categories AS c2 WHERE
+                               c2.parent_cat = ttrss_feed_categories.id) AS num_cats
                        FROM ttrss_feed_categories
                        WHERE $nested_qpart AND owner_uid = " .
                        $_SESSION["uid"]);
@@ -141,7 +148,7 @@ class API extends Handler {
                $cats = array();
 
                while ($line = db_fetch_assoc($result)) {
-                       if ($line["num_feeds"] > 0) {
+                       if ($include_empty || $line["num_feeds"] > 0 || $line["num_cats"] > 0) {
                                $unread = getFeedUnread($this->link, $line["id"], true);
 
                                if ($enable_nested)
@@ -158,12 +165,14 @@ class API extends Handler {
                }
 
                foreach (array(-2,-1,0) as $cat_id) {
-                       $unread = getFeedUnread($this->link, $cat_id, true);
+                       if ($include_empty || !$this->isCategoryEmpty($cat_id)) {
+                               $unread = getFeedUnread($this->link, $cat_id, true);
 
-                       if ($unread || !$unread_only) {
-                               array_push($cats, array("id" => $cat_id,
-                                       "title" => getCategoryTitle($this->link, $cat_id),
-                                       "unread" => $unread));
+                               if ($unread || !$unread_only) {
+                                       array_push($cats, array("id" => $cat_id,
+                                               "title" => getCategoryTitle($this->link, $cat_id),
+                                               "unread" => $unread));
+                               }
                        }
                }
 
@@ -171,29 +180,29 @@ class API extends Handler {
        }
 
        function getHeadlines() {
-               $feed_id = db_escape_string($_REQUEST["feed_id"]);
+               $feed_id = db_escape_string($this->link, $_REQUEST["feed_id"]);
                if ($feed_id != "") {
 
-                       $limit = (int)db_escape_string($_REQUEST["limit"]);
+                       $limit = (int)db_escape_string($this->link, $_REQUEST["limit"]);
 
                        if (!$limit || $limit >= 60) $limit = 60;
 
-                       $offset = (int)db_escape_string($_REQUEST["skip"]);
-                       $filter = db_escape_string($_REQUEST["filter"]);
+                       $offset = (int)db_escape_string($this->link, $_REQUEST["skip"]);
+                       $filter = db_escape_string($this->link, $_REQUEST["filter"]);
                        $is_cat = sql_bool_to_bool($_REQUEST["is_cat"]);
                        $show_excerpt = sql_bool_to_bool($_REQUEST["show_excerpt"]);
                        $show_content = sql_bool_to_bool($_REQUEST["show_content"]);
                        /* all_articles, unread, adaptive, marked, updated */
-                       $view_mode = db_escape_string($_REQUEST["view_mode"]);
+                       $view_mode = db_escape_string($this->link, $_REQUEST["view_mode"]);
                        $include_attachments = sql_bool_to_bool($_REQUEST["include_attachments"]);
-                       $since_id = (int)db_escape_string($_REQUEST["since_id"]);
+                       $since_id = (int)db_escape_string($this->link, $_REQUEST["since_id"]);
                        $include_nested = sql_bool_to_bool($_REQUEST["include_nested"]);
                        $sanitize_content = true;
 
                        /* do not rely on params below */
 
-                       $search = db_escape_string($_REQUEST["search"]);
-                       $search_mode = db_escape_string($_REQUEST["search_mode"]);
+                       $search = db_escape_string($this->link, $_REQUEST["search"]);
+                       $search_mode = db_escape_string($this->link, $_REQUEST["search_mode"]);
 
                        $headlines = $this->api_get_headlines($this->link, $feed_id, $limit, $offset,
                                $filter, $is_cat, $show_excerpt, $show_content, $view_mode, false,
@@ -207,10 +216,10 @@ class API extends Handler {
        }
 
        function updateArticle() {
-               $article_ids = array_filter(explode(",", db_escape_string($_REQUEST["article_ids"])), is_numeric);
-               $mode = (int) db_escape_string($_REQUEST["mode"]);
-               $data = db_escape_string($_REQUEST["data"]);
-               $field_raw = (int)db_escape_string($_REQUEST["field"]);
+               $article_ids = array_filter(explode(",", db_escape_string($this->link, $_REQUEST["article_ids"])), is_numeric);
+               $mode = (int) db_escape_string($this->link, $_REQUEST["mode"]);
+               $data = db_escape_string($this->link, $_REQUEST["data"]);
+               $field_raw = (int)db_escape_string($this->link, $_REQUEST["field"]);
 
                $field = "";
                $set_to = "";
@@ -285,7 +294,7 @@ class API extends Handler {
 
        function getArticle() {
 
-               $article_id = join(",", array_filter(explode(",", db_escape_string($_REQUEST["article_id"])), is_numeric));
+               $article_id = join(",", array_filter(explode(",", db_escape_string($this->link, $_REQUEST["article_id"])), is_numeric));
 
                $query = "SELECT id,title,link,content,cached_content,feed_id,comments,int_id,
                        marked,unread,published,
@@ -348,7 +357,9 @@ class API extends Handler {
        }
 
        function updateFeed() {
-               $feed_id = db_escape_string($_REQUEST["feed_id"]);
+               require_once "include/rssfuncs.php";
+
+               $feed_id = (int) db_escape_string($this->link, $_REQUEST["feed_id"]);
 
                update_rss_feed($this->link, $feed_id, true);
 
@@ -356,8 +367,8 @@ class API extends Handler {
        }
 
        function catchupFeed() {
-               $feed_id = db_escape_string($_REQUEST["feed_id"]);
-               $is_cat = db_escape_string($_REQUEST["is_cat"]);
+               $feed_id = db_escape_string($this->link, $_REQUEST["feed_id"]);
+               $is_cat = db_escape_string($this->link, $_REQUEST["is_cat"]);
 
                catchup_feed($this->link, $feed_id, $is_cat);
 
@@ -365,13 +376,13 @@ class API extends Handler {
        }
 
        function getPref() {
-               $pref_name = db_escape_string($_REQUEST["pref_name"]);
+               $pref_name = db_escape_string($this->link, $_REQUEST["pref_name"]);
 
                print $this->wrap(self::STATUS_OK, array("value" => get_pref($this->link, $pref_name)));
        }
 
        function getLabels() {
-               //$article_ids = array_filter(explode(",", db_escape_string($_REQUEST["article_ids"])), is_numeric);
+               //$article_ids = array_filter(explode(",", db_escape_string($this->link, $_REQUEST["article_ids"])), is_numeric);
 
                $article_id = (int)$_REQUEST['article_id'];
 
@@ -409,11 +420,11 @@ class API extends Handler {
 
        function setArticleLabel() {
 
-               $article_ids = array_filter(explode(",", db_escape_string($_REQUEST["article_ids"])), is_numeric);
-               $label_id = (int) db_escape_string($_REQUEST['label_id']);
-               $assign = (bool) db_escape_string($_REQUEST['assign']) == "true";
+               $article_ids = array_filter(explode(",", db_escape_string($this->link, $_REQUEST["article_ids"])), is_numeric);
+               $label_id = (int) db_escape_string($this->link, $_REQUEST['label_id']);
+               $assign = (bool) db_escape_string($this->link, $_REQUEST['assign']) == "true";
 
-               $label = db_escape_string(label_find_caption($this->link,
+               $label = db_escape_string($this->link, label_find_caption($this->link,
                        $label_id, $_SESSION["uid"]));
 
                $num_updated = 0;
@@ -442,9 +453,9 @@ class API extends Handler {
        }
 
        function shareToPublished() {
-               $title = db_escape_string(strip_tags($_REQUEST["title"]));
-               $url = db_escape_string(strip_tags($_REQUEST["url"]));
-               $content = db_escape_string(strip_tags($_REQUEST["content"]));
+               $title = db_escape_string($this->link, strip_tags($_REQUEST["title"]));
+               $url = db_escape_string($this->link, strip_tags($_REQUEST["url"]));
+               $content = db_escape_string($this->link, strip_tags($_REQUEST["content"]));
 
                if (Article::create_published_article($this->link, $title, $url, $content, "", $_SESSION["uid"])) {
                        print $this->wrap(self::STATUS_OK, array("status" => 'OK'));
@@ -655,6 +666,8 @@ class API extends Handler {
 
                                $headline_row["always_display_attachments"] = sql_bool_to_bool($line["always_display_enclosures"]);
 
+                               $headline_row["author"] = $line["author"];
+
                                global $pluginhost;
                                foreach ($pluginhost->get_hooks($pluginhost::HOOK_RENDER_ARTICLE_API) as $p) {
                                        $headline_row = $p->hook_render_article_api($headline_row);
@@ -666,6 +679,75 @@ class API extends Handler {
                        return $headlines;
        }
 
+       function unsubscribeFeed() {
+               $feed_id = (int) db_escape_string($this->link, $_REQUEST["feed_id"]);
+
+               $result = db_query($this->link, "SELECT id FROM ttrss_feeds WHERE
+                       id = '$feed_id' AND owner_uid = ".$_SESSION["uid"]);
+
+               if (db_num_rows($result) != 0) {
+                       Pref_Feeds::remove_feed($this->link, $feed_id, $_SESSION["uid"]);
+                       print $this->wrap(self::STATUS_OK, array("status" => "OK"));
+               } else {
+                       print $this->wrap(self::STATUS_ERR, array("error" => "FEED_NOT_FOUND"));
+               }
+       }
+
+       function subscribeToFeed() {
+               $feed_url = db_escape_string($this->link, $_REQUEST["feed_url"]);
+               $category_id = (int) db_escape_string($this->link, $_REQUEST["category_id"]);
+               $login = db_escape_string($this->link, $_REQUEST["login"]);
+               $password = db_escape_string($this->link, $_REQUEST["password"]);
+
+               if ($feed_url) {
+                       $rc = subscribe_to_feed($this->link, $feed_url, $category_id,
+                               $login, $password, false);
+
+                       print $this->wrap(self::STATUS_OK, array("status" => $rc));
+               } else {
+                       print $this->wrap(self::STATUS_ERR, array("error" => 'INCORRECT_USAGE'));
+               }
+       }
+
+       function getFeedTree() {
+               $include_empty = sql_bool_to_bool($_REQUEST['include_empty']);
+
+               $pf = new Pref_Feeds($this->link, $_REQUEST);
+
+               $_REQUEST['mode'] = 2;
+               $_REQUEST['force_show_empty'] = $include_empty;
+
+               if ($pf){
+                       $data = $pf->makefeedtree();
+                       print $this->wrap(self::STATUS_OK, array("categories" => $data));
+               } else {
+                       print $this->wrap(self::STATUS_ERR, array("error" =>
+                               'UNABLE_TO_INSTANTIATE_OBJECT'));
+               }
+
+       }
+
+       // only works for labels or uncategorized for the time being
+       private function isCategoryEmpty($id) {
+
+               if ($id == -2) {
+                       $result = db_query($this->link, "SELECT COUNT(*) AS count FROM ttrss_labels2
+                               WHERE owner_uid = " . $_SESSION["uid"]);
+
+                       return db_fetch_result($result, 0, "count") == 0;
+
+               } else if ($id == 0) {
+                       $result = db_query($this->link, "SELECT COUNT(*) AS count FROM ttrss_feeds
+                               WHERE cat_id IS NULL AND owner_uid = " . $_SESSION["uid"]);
+
+                       return db_fetch_result($result, 0, "count") == 0;
+
+               }
+
+               return false;
+       }
+
+
 }
 
 ?>