X-Git-Url: https://git.wh0rd.org/?a=blobdiff_plain;f=backend.php;h=ce2e73d85ea8ee02522779a535640fed73effeda;hb=45004d43408bb006f89dd2c46fb3b934966896b0;hp=c8271f4f975396a05a10d9c712a0ef380995f196;hpb=34459667e259eb01257a73a4c30bff0ba2c3b3d5;p=tt-rss.git diff --git a/backend.php b/backend.php index c8271f4f..ce2e73d8 100644 --- a/backend.php +++ b/backend.php @@ -145,432 +145,439 @@ if (!sanity_check($link)) { return; } - if ($op == "rpc") { - handle_rpc_request($link); - } - - if ($op == "feeds") { - - $tags = $_GET["tags"]; - - $subop = $_GET["subop"]; - - if ($subop == "catchupAll") { - db_query($link, "UPDATE ttrss_user_entries SET - last_read = NOW(),unread = false WHERE owner_uid = " . $_SESSION["uid"]); - } - - if ($subop == "collapse") { - $cat_id = db_escape_string($_GET["cid"]); - - db_query($link, "UPDATE ttrss_feed_categories SET - collapsed = NOT collapsed WHERE id = '$cat_id' AND owner_uid = " . - $_SESSION["uid"]); - return; - } - - outputFeedList($link, $tags); + switch($op) { // Select action according to $op value. + case "rpc": + // Handle remote procedure calls. + handle_rpc_request($link); + break; // rpc + + case "feeds": + $tags = $_GET["tags"]; + + $subop = $_GET["subop"]; + + switch($subop) { + case "catchupAll": + db_query($link, "UPDATE ttrss_user_entries SET + last_read = NOW(),unread = false WHERE owner_uid = " . $_SESSION["uid"]); + break; + + case "collapse": + $cat_id = db_escape_string($_GET["cid"]); + + db_query($link, "UPDATE ttrss_feed_categories SET + collapsed = NOT collapsed WHERE id = '$cat_id' AND owner_uid = " . + $_SESSION["uid"]); + return; + break; + } - } + outputFeedList($link, $tags); + break; // feeds - if ($op == "view") { + case "view": - $id = db_escape_string($_GET["id"]); - $feed_id = db_escape_string($_GET["feed"]); - $cids = split(",", db_escape_string($_GET["cids"])); - $mode = db_escape_string($_GET["mode"]); - $omode = db_escape_string($_GET["omode"]); + $id = db_escape_string($_GET["id"]); + $feed_id = db_escape_string($_GET["feed"]); + $cids = split(",", db_escape_string($_GET["cids"])); + $mode = db_escape_string($_GET["mode"]); + $omode = db_escape_string($_GET["omode"]); - print ""; + print ""; - // in prefetch mode we only output requested cids, main article - // just gets marked as read (it already exists in client cache) + // in prefetch mode we only output requested cids, main article + // just gets marked as read (it already exists in client cache) - if ($mode == "") { - outputArticleXML($link, $id, $feed_id); - } else { - catchupArticleById($link, $id, 0); - } + if ($mode == "") { + outputArticleXML($link, $id, $feed_id); + } else { + catchupArticleById($link, $id, 0); + } - foreach ($cids as $cid) { - if ($cid) { - outputArticleXML($link, $cid, $feed_id, false); + foreach ($cids as $cid) { + if ($cid) { + outputArticleXML($link, $cid, $feed_id, false); + } } - } - if ($mode != "prefetch_old") { - print ""; - getAllCounters($link, $omode); - print ""; - } + if ($mode != "prefetch_old") { + print ""; + getAllCounters($link, $omode); + print ""; + } - print ""; - } + print ""; + break; // view - if ($op == "viewfeed") { + case "viewfeed": - $print_exec_time = true; - $timing_info = getmicrotime(); + $print_exec_time = true; + $timing_info = getmicrotime(); - print ""; + print ""; - if ($_GET["debug"]) $timing_info = print_checkpoint("0", $timing_info); + if ($_GET["debug"]) $timing_info = print_checkpoint("0", $timing_info); - $omode = db_escape_string($_GET["omode"]); + $omode = db_escape_string($_GET["omode"]); - $feed = db_escape_string($_GET["feed"]); - $subop = db_escape_string($_GET["subop"]); - $view_mode = db_escape_string($_GET["view_mode"]); - $limit = db_escape_string($_GET["limit"]); - $cat_view = db_escape_string($_GET["cat"]); - $next_unread_feed = db_escape_string($_GET["nuf"]); - $offset = db_escape_string($_GET["skip"]); + $feed = db_escape_string($_GET["feed"]); + $subop = db_escape_string($_GET["subop"]); + $view_mode = db_escape_string($_GET["view_mode"]); + $limit = db_escape_string($_GET["limit"]); + $cat_view = db_escape_string($_GET["cat"]); + $next_unread_feed = db_escape_string($_GET["nuf"]); + $offset = db_escape_string($_GET["skip"]); - set_pref($link, "_DEFAULT_VIEW_MODE", $view_mode); - set_pref($link, "_DEFAULT_VIEW_LIMIT", $limit); + set_pref($link, "_DEFAULT_VIEW_MODE", $view_mode); + set_pref($link, "_DEFAULT_VIEW_LIMIT", $limit); - if (!$cat_view && preg_match("/^[0-9][0-9]*$/", $feed)) { - db_query($link, "UPDATE ttrss_feeds SET last_viewed = NOW() - WHERE id = '$feed' AND owner_uid = ".$_SESSION["uid"]); - } + if (!$cat_view && preg_match("/^[0-9][0-9]*$/", $feed)) { + db_query($link, "UPDATE ttrss_feeds SET last_viewed = NOW() + WHERE id = '$feed' AND owner_uid = ".$_SESSION["uid"]); + } - print ""; + print "]]>"; - print ""; + print ""; - $headlines_unread = getFeedUnread($link, $returned_feed); + $headlines_unread = getFeedUnread($link, $returned_feed); - print ""; - printf("", $disable_cache); + print ""; + printf("", $disable_cache); - if ($_GET["debug"]) $timing_info = print_checkpoint("10", $timing_info); + if ($_GET["debug"]) $timing_info = print_checkpoint("10", $timing_info); - if (is_array($topmost_article_ids) && !get_pref($link, 'COMBINED_DISPLAY_MODE')) { - print ""; - foreach ($topmost_article_ids as $id) { - outputArticleXML($link, $id, $feed, false); + if (is_array($topmost_article_ids) && !get_pref($link, 'COMBINED_DISPLAY_MODE')) { + print ""; + foreach ($topmost_article_ids as $id) { + outputArticleXML($link, $id, $feed, false); + } + print ""; } - print ""; - } - if ($_GET["debug"]) $timing_info = print_checkpoint("20", $timing_info); + if ($_GET["debug"]) $timing_info = print_checkpoint("20", $timing_info); - print ""; - getAllCounters($link, $omode, $feed); - print ""; + print ""; + getAllCounters($link, $omode, $feed); + print ""; - if ($_GET["debug"]) $timing_info = print_checkpoint("30", $timing_info); + if ($_GET["debug"]) $timing_info = print_checkpoint("30", $timing_info); - print_runtime_info($link); + print_runtime_info($link); - print ""; - } + print ""; + break; // viewfeed - if ($op == "pref-feeds") { - module_pref_feeds($link); - } + case "pref-feeds": + module_pref_feeds($link); + break; // pref-feeds - if ($op == "pref-filters") { - module_pref_filters($link); - } + case "pref-filters": + module_pref_filters($link); + break; // pref-filters - if ($op == "pref-labels") { - module_pref_labels($link); - } + case "pref-labels": + module_pref_labels($link); + break; // pref-labels - if ($op == "pref-prefs") { - module_pref_prefs($link); - } + case "pref-prefs": + module_pref_prefs($link); + break; // pref-prefs - if ($op == "pref-users") { - module_pref_users($link); - } + case "pref-users": + module_pref_users($link); + break; // prefs-users - if ($op == "help") { - module_help($link); - } + case "help": + module_help($link); + break; // help - if ($op == "dlg") { - module_popup_dialog($link); - } + case "dlg": + module_popup_dialog($link); + break; // dlg - if ($op == "pref-pub-items") { - module_pref_pub_items($link); - } + case "pref-pub-items": + module_pref_pub_items($link); + break; // pref-pub-items + case "globalUpdateFeeds": + // update feeds of all users, may be used anonymously - // update feeds of all users, may be used anonymously - if ($op == "globalUpdateFeeds") { + // Update all feeds needing a update. + update_daemon_common($link, 0, true, false); - $result = db_query($link, "SELECT id FROM ttrss_users"); + // FIXME : old feed update way. To be removed. + //$result = db_query($link, "SELECT id FROM ttrss_users"); - while ($line = db_fetch_assoc($result)) { - $user_id = $line["id"]; -// print ""; - update_all_feeds($link, false, $user_id); - } + //while ($line = db_fetch_assoc($result)) { + // $user_id = $line["id"]; + // print ""; + // update_all_feeds($link, false, $user_id); + //} - print " - - "; + print " + + "; + break; // globalUpdateFeeds - } + case "user-details": - if ($op == "user-details") { + if (WEB_DEMO_MODE || $_SESSION["access_level"] < 10) { + return; + } - if (WEB_DEMO_MODE || $_SESSION["access_level"] < 10) { - return; - } - -/* print " - Tiny Tiny RSS : User Details - - - "; */ - - $uid = sprintf("%d", $_GET["id"]); - - print "
User details
"; - - print "
"; - - $result = db_query($link, "SELECT login, - SUBSTRING(last_login,1,16) AS last_login, - access_level, - (SELECT COUNT(int_id) FROM ttrss_user_entries - WHERE owner_uid = id) AS stored_articles, - SUBSTRING(created,1,16) AS created - FROM ttrss_users - WHERE id = '$uid'"); + /* + print " + Tiny Tiny RSS : User Details + + + "; + */ + + $uid = sprintf("%d", $_GET["id"]); + + print "
User details
"; + + print "
"; + + $result = db_query($link, "SELECT login, + SUBSTRING(last_login,1,16) AS last_login, + access_level, + (SELECT COUNT(int_id) FROM ttrss_user_entries + WHERE owner_uid = id) AS stored_articles, + SUBSTRING(created,1,16) AS created + FROM ttrss_users + WHERE id = '$uid'"); + + if (db_num_rows($result) == 0) { + print "

User not found

"; + return; + } - if (db_num_rows($result) == 0) { - print "

User not found

"; - return; - } - -# print "

User Details

"; + // print "

User Details

"; - $login = db_fetch_result($result, 0, "login"); + $login = db_fetch_result($result, 0, "login"); -# print "

$login

"; + // print "

$login

"; - print ""; + print "
"; - $last_login = date(get_pref($link, 'LONG_DATE_FORMAT'), - strtotime(db_fetch_result($result, 0, "last_login"))); + $last_login = date(get_pref($link, 'LONG_DATE_FORMAT'), + strtotime(db_fetch_result($result, 0, "last_login"))); - $created = date(get_pref($link, 'LONG_DATE_FORMAT'), - strtotime(db_fetch_result($result, 0, "created"))); + $created = date(get_pref($link, 'LONG_DATE_FORMAT'), + strtotime(db_fetch_result($result, 0, "created"))); - $access_level = db_fetch_result($result, 0, "access_level"); - $stored_articles = db_fetch_result($result, 0, "stored_articles"); + $access_level = db_fetch_result($result, 0, "access_level"); + $stored_articles = db_fetch_result($result, 0, "stored_articles"); -# print ""; -# print ""; - print ""; - print ""; - print ""; + // print ""; + // print ""; + print ""; + print ""; + print ""; - $result = db_query($link, "SELECT COUNT(id) as num_feeds FROM ttrss_feeds - WHERE owner_uid = '$uid'"); + $result = db_query($link, "SELECT COUNT(id) as num_feeds FROM ttrss_feeds + WHERE owner_uid = '$uid'"); - $num_feeds = db_fetch_result($result, 0, "num_feeds"); + $num_feeds = db_fetch_result($result, 0, "num_feeds"); - print ""; + print ""; -/* $result = db_query($link, "SELECT - SUM(LENGTH(content)+LENGTH(title)+LENGTH(link)+LENGTH(guid)) AS db_size - FROM ttrss_user_entries,ttrss_entries - WHERE owner_uid = '$uid' AND ref_id = id"); + /* + $result = db_query($link, "SELECT + SUM(LENGTH(content)+LENGTH(title)+LENGTH(link)+LENGTH(guid)) AS db_size + FROM ttrss_user_entries,ttrss_entries + WHERE owner_uid = '$uid' AND ref_id = id"); - $db_size = round(db_fetch_result($result, 0, "db_size") / 1024); + $db_size = round(db_fetch_result($result, 0, "db_size") / 1024); - print ""; */ + print ""; + */ - print "
Username$login
Access level$access_level
".__('Registered')."$created
".__('Last logged in')."$last_login
".__('Stored articles')."$stored_articles
Username$login
Access level$access_level
".__('Registered')."$created
".__('Last logged in')."$last_login
".__('Stored articles')."$stored_articles
".__('Subscribed feeds count')."$num_feeds
".__('Subscribed feeds count')."$num_feeds
Approx. used DB size$db_size KBytes
Approx. used DB size$db_size KBytes
"; + print ""; - print "

".__('Subscribed feeds')."

"; + print "

".__('Subscribed feeds')."

"; - $result = db_query($link, "SELECT id,title,site_url FROM ttrss_feeds - WHERE owner_uid = '$uid' ORDER BY title"); + $result = db_query($link, "SELECT id,title,site_url FROM ttrss_feeds + WHERE owner_uid = '$uid' ORDER BY title"); - print ""; - print "
"; + print "
"; - print "
-
"; + print "
+
"; -// print ""; + // print ""; - } + break; // user-details - if ($op == "pref-feed-browser") { - module_pref_feed_browser($link); - } + case "pref-feed-browser": + module_pref_feed_browser($link); + break; // pref-feed-browser - if ($op == "publish") { - $key = db_escape_string($_GET["key"]); + case "publish": + $key = db_escape_string($_GET["key"]); - $result = db_query($link, "SELECT login, owner_uid - FROM ttrss_user_prefs, ttrss_users WHERE - pref_name = '_PREFS_PUBLISH_KEY' AND - value = '$key' AND - ttrss_users.id = owner_uid"); + $result = db_query($link, "SELECT login, owner_uid + FROM ttrss_user_prefs, ttrss_users WHERE + pref_name = '_PREFS_PUBLISH_KEY' AND + value = '$key' AND + ttrss_users.id = owner_uid"); - if (db_num_rows($result) == 1) { - $owner = db_fetch_result($result, 0, "owner_uid"); - $login = db_fetch_result($result, 0, "login"); + if (db_num_rows($result) == 1) { + $owner = db_fetch_result($result, 0, "owner_uid"); + $login = db_fetch_result($result, 0, "login"); - generate_syndicated_feed($link, $owner, -2, false); + generate_syndicated_feed($link, $owner, -2, false); - } else { - print "User not found"; - } - - } - - if ($op == "rss") { - $feed = db_escape_string($_GET["id"]); - $user = db_escape_string($_GET["user"]); - $pass = db_escape_string($_GET["pass"]); - $is_cat = $_GET["is_cat"] != false; + } else { + print "User not found"; + } + break; // publish - $search = db_escape_string($_GET["q"]); - $match_on = db_escape_string($_GET["m"]); - $search_mode = db_escape_string($_GET["smode"]); + case "rss": + $feed = db_escape_string($_GET["id"]); + $user = db_escape_string($_GET["user"]); + $pass = db_escape_string($_GET["pass"]); + $is_cat = $_GET["is_cat"] != false; - if (!$_SESSION["uid"] && $user && $pass) { - authenticate_user($link, $user, $pass); - } + $search = db_escape_string($_GET["q"]); + $match_on = db_escape_string($_GET["m"]); + $search_mode = db_escape_string($_GET["smode"]); - if ($_SESSION["uid"] || - http_authenticate_user($link)) { + if (!$_SESSION["uid"] && $user && $pass) { + authenticate_user($link, $user, $pass); + } - generate_syndicated_feed($link, 0, $feed, $is_cat, - $search, $search_mode, $match_on); - } + if ($_SESSION["uid"] || + http_authenticate_user($link)) { - } + generate_syndicated_feed($link, 0, $feed, $is_cat, + $search, $search_mode, $match_on); + } + break; // rss - if ($op == "labelFromSearch") { - $search = db_escape_string($_GET["search"]); - $search_mode = db_escape_string($_GET["smode"]); - $match_on = db_escape_string($_GET["match"]); - $is_cat = db_escape_string($_GET["is_cat"]); - $title = db_escape_string($_GET["title"]); - $feed = sprintf("%d", $_GET["feed"]); + case "labelFromSearch": + $search = db_escape_string($_GET["search"]); + $search_mode = db_escape_string($_GET["smode"]); + $match_on = db_escape_string($_GET["match"]); + $is_cat = db_escape_string($_GET["is_cat"]); + $title = db_escape_string($_GET["title"]); + $feed = sprintf("%d", $_GET["feed"]); - $label_qparts = array(); + $label_qparts = array(); - $search_expr = getSearchSql($search, $match_on); + $search_expr = getSearchSql($search, $match_on); - if ($is_cat) { - if ($feed != 0) { - $search_expr .= " AND ttrss_feeds.cat_id = $feed "; + if ($is_cat) { + if ($feed != 0) { + $search_expr .= " AND ttrss_feeds.cat_id = $feed "; + } else { + $search_expr .= " AND ttrss_feeds.cat_id IS NULL "; + } } else { - $search_expr .= " AND ttrss_feeds.cat_id IS NULL "; - } - } else { - if ($search_mode == "all_feeds") { - // NOOP - } else if ($search_mode == "this_cat") { + if ($search_mode == "all_feeds") { + // NOOP + } else if ($search_mode == "this_cat") { - $tmp_result = db_query($link, "SELECT cat_id - FROM ttrss_feeds WHERE id = '$feed'"); + $tmp_result = db_query($link, "SELECT cat_id + FROM ttrss_feeds WHERE id = '$feed'"); - $cat_id = db_fetch_result($tmp_result, 0, "cat_id"); + $cat_id = db_fetch_result($tmp_result, 0, "cat_id"); - if ($cat_id > 0) { - $search_expr .= " AND ttrss_feeds.cat_id = $cat_id "; + if ($cat_id > 0) { + $search_expr .= " AND ttrss_feeds.cat_id = $cat_id "; + } else { + $search_expr .= " AND ttrss_feeds.cat_id IS NULL "; + } } else { - $search_expr .= " AND ttrss_feeds.cat_id IS NULL "; + $search_expr .= " AND ttrss_feeds.id = $feed "; } - } else { - $search_expr .= " AND ttrss_feeds.id = $feed "; - } - } + } - $search_expr = db_escape_string($search_expr); + $search_expr = db_escape_string($search_expr); - print $search_expr; + print $search_expr; - if ($title) { - $result = db_query($link, - "INSERT INTO ttrss_labels (sql_exp,description,owner_uid) - VALUES ('$search_expr', '$title', '".$_SESSION["uid"]."')"); - } - } - - if ($op == "getUnread") { - $login = db_escape_string($_GET["login"]); + if ($title) { + $result = db_query($link, + "INSERT INTO ttrss_labels (sql_exp,description,owner_uid) + VALUES ('$search_expr', '$title', '".$_SESSION["uid"]."')"); + } + break; // labelFromSearch - header("Content-Type: text/plain; charset=utf-8"); + case "getUnread": + $login = db_escape_string($_GET["login"]); - $result = db_query($link, "SELECT id FROM ttrss_users WHERE login = '$login'"); + header("Content-Type: text/plain; charset=utf-8"); - if (db_num_rows($result) == 1) { - $uid = db_fetch_result($result, 0, "id"); - print getGlobalUnread($link, $uid); - } else { - print "-1;User not found"; - } + $result = db_query($link, "SELECT id FROM ttrss_users WHERE login = '$login'"); - $print_exec_time = false; - } + if (db_num_rows($result) == 1) { + $uid = db_fetch_result($result, 0, "id"); + print getGlobalUnread($link, $uid); + } else { + print "-1;User not found"; + } - if ($op == "digestTest") { - header("Content-Type: text/plain"); - print_r(prepare_headlines_digest($link, $_SESSION["uid"])); - $print_exec_time = false; + $print_exec_time = false; + break; // getUnread - } + case "digestTest": + header("Content-Type: text/plain"); + print_r(prepare_headlines_digest($link, $_SESSION["uid"])); + $print_exec_time = false; + break; // digestTest - if ($op == "digestSend") { - header("Content-Type: text/plain"); - send_headlines_digests($link); - $print_exec_time = false; + case "digestSend": + header("Content-Type: text/plain"); + send_headlines_digests($link); + $print_exec_time = false; + break; // digestSend - } + } // Select action according to $op value. + // We close the connection to database. db_close($link); ?>