]> git.wh0rd.org - tt-rss.git/blame - backend.php
git.wh0rd.org / tt-rss.git / blame
? search:
summary | shortlog | log | commit | commitdiff | tree
blob | blame (incremental) | history | HEAD
Merge branch 'master' of github.com:gothfox/Tiny-Tiny-RSS
[tt-rss.git] / backend.php
CommitLineData
1d3a17c7 1<?php
ce885e21
AD		 2 /* remove ill effects of magic quotes */
3
5fa17372 4 if (get_magic_quotes_gpc()) {
c0793f64 5 function stripslashes_deep($value) {
009646d2 6 $value = is_array($value) ?
c0793f64
AD		 7 array_map('stripslashes_deep', $value) : stripslashes($value);
8 return $value;
9 }
10
11 $_POST = array_map('stripslashes_deep', $_POST);
12 $_GET = array_map('stripslashes_deep', $_GET);
13 $_COOKIE = array_map('stripslashes_deep', $_COOKIE);
14 $_REQUEST = array_map('stripslashes_deep', $_REQUEST);
ce885e21
AD		 15 }
16
fb074239 17 require_once "functions.php";
36bfab86 18 require_once "sessions.php";
c339343b 19 require_once "modules/backend-rpc.php";
657770a0
AD		 20 require_once "sanity_check.php";
21 require_once "config.php";
af106b0e
AD		 22 require_once "db.php";
23 require_once "db-prefs.php";
657770a0 24
dc56b3b7 25 no_cache_incantation();
8d039718 26
7b26a148 27 startup_gettext();
dc56b3b7 28
7f0acba7
AD		 29 $script_started = getmicrotime();
30
009646d2 31 $link = db_connect(DB_HOST, DB_USER, DB_PASS, DB_NAME);
7f0acba7
AD		 32
33 if (!$link) {
34 if (DB_TYPE == "mysql") {
35 print mysql_error();
36 }
009646d2 37 // PG seems to display its own errors just fine by default.
7f0acba7
AD		 38 return;
39 }
40
f29ba148 41 init_connection($link);
7f0acba7
AD		 42
43 $op = $_REQUEST["op"];
d9084cf2 44 $subop = $_REQUEST["subop"];
fac5e7d1 45 $mode = $_REQUEST["mode"];
7f0acba7 46
565ca565
AD		 47 if ((!$op || $op == "rss" || $op == "dlg") && !$_REQUEST["noxml"]) {
48 header("Content-Type: application/xml; charset=utf-8");
49 } else {
9fdf7824 50 header("Content-Type: text/plain; charset=utf-8");
262bd8ea
AD		 51 }
52
bd202c3f
AD		 53 if (ENABLE_GZIP_OUTPUT) {
54 ob_start("ob_gzhandler");
55 }
56
9c883208
AD		 57 if (SINGLE_USER_MODE) {
58 authenticate_user($link, "admin", null);
59 }
60
009646d2 61 if (!($_SESSION["uid"] && validate_session($link)) && $op != "globalUpdateFeeds" &&
5ab9791f 62 $op != "rss" && $op != "getUnread" && $op != "getProfiles" &&
ae5f7bb1 63 $op != "fbexport" && $op != "logout" && $op != "pubsub") {
009646d2 64
d0f73380
AD		 65 if ($op == 'pref-feeds' && $_REQUEST['subop'] == 'add') {
66 header("Content-Type: text/html");
67 login_sequence($link);
68 render_login_form($link);
69 } else {
70 header("Content-Type: text/plain");
71 print json_encode(array("error" => array("code" => 6)));
72 }
009646d2 73 return;
262bd8ea 74 }
1c7f75ed 75
ad815c71 76 $purge_intervals = array(
d1db26aa
AD		 77 0 => __("Use default"),
78 -1 => __("Never purge"),
79 5 => __("1 week old"),
80 14 => __("2 weeks old"),
81 31 => __("1 month old"),
82 60 => __("2 months old"),
83 90 => __("3 months old"));
ad815c71
AD		 84
85 $update_intervals = array(
ecace165 86 0 => __("Default interval"),
d1db26aa 87 -1 => __("Disable updates"),
1e7cbe16 88 15 => __("Each 15 minutes"),
d1db26aa 89 30 => __("Each 30 minutes"),
505f2f0e
AD		 90 60 => __("Hourly"),
91 240 => __("Each 4 hours"),
92 720 => __("Each 12 hours"),
93 1440 => __("Daily"),
94 10080 => __("Weekly"));
95
96 $update_intervals_nodefault = array(
97 -1 => __("Disable updates"),
98 15 => __("Each 15 minutes"),
99 30 => __("Each 30 minutes"),
d1db26aa
AD		 100 60 => __("Hourly"),
101 240 => __("Each 4 hours"),
102 720 => __("Each 12 hours"),
103 1440 => __("Daily"),
104 10080 => __("Weekly"));
ad815c71 105
16211ddb 106 $update_methods = array(
ecace165 107 0 => __("Default"),
0dd9c0cf 108 1 => __("Magpie"),
009646d2 109 2 => __("SimplePie"),
b3009bcd 110 3 => __("Twitter OAuth"));
16211ddb 111
78a5c296 112 if (DEFAULT_UPDATE_METHOD == "1") {
16211ddb
AD		 113 $update_methods[0] .= ' (SimplePie)';
114 } else {
115 $update_methods[0] .= ' (Magpie)';
116 }
117
3c5783b7 118 $access_level_names = array(
009646d2 119 0 => __("User"),
a88d37e5 120 5 => __("Power User"),
d1db26aa 121 10 => __("Administrator"));
3c5783b7 122
f27d955a 123 require_once "modules/pref-prefs.php";
ef8be8ea
AD		 124 require_once "modules/popup-dialog.php";
125 require_once "modules/help.php";
126 require_once "modules/pref-feeds.php";
127 require_once "modules/pref-filters.php";
128 require_once "modules/pref-labels.php";
129 require_once "modules/pref-users.php";
373266eb 130 require_once "modules/pref-instances.php";
ef8be8ea 131
ebb948c2
AD		 132 $error = sanity_check($link);
133
2376ad49 134 if ($error['code'] != 0 && $op != "logout") {
ebb948c2
AD		 135 print json_encode(array("error" => $error));
136 return;
137 }
023fe037 138
45004d43
AD		 139 switch($op) { // Select action according to $op value.
140 case "rpc":
141 // Handle remote procedure calls.
142 handle_rpc_request($link);
143 break; // rpc
144
145 case "feeds":
b4e75b2a 146 $subop = $_REQUEST["subop"];
1985a5e0 147 $root = (bool)$_REQUEST["root"];
45004d43
AD		 148
149 switch($subop) {
150 case "catchupAll":
009646d2 151 db_query($link, "UPDATE ttrss_user_entries SET
45004d43 152 last_read = NOW(),unread = false WHERE owner_uid = " . $_SESSION["uid"]);
ad0056a8
AD		 153 ccache_zero_all($link, $_SESSION["uid"]);
154
45004d43
AD		 155 break;
156
157 case "collapse":
b4e75b2a 158 $cat_id = db_escape_string($_REQUEST["cid"]);
fcf70c51
AD		 159 $mode = (int) db_escape_string($_REQUEST['mode']);
160 toggle_collapse_cat($link, $cat_id, $mode);
45004d43
AD		 161 return;
162 break;
163 }
c3b81db0 164
1985a5e0
AD		 165 if (!$root) {
166 print json_encode(outputFeedList($link));
167 } else {
168
169 $feeds = outputFeedList($link, false);
170
171 $root = array();
172 $root['id'] = 'root';
173 $root['name'] = __('Feeds');
174 $root['items'] = $feeds['items'];
175
176 $fl = array();
177 $fl['identifier'] = 'id';
178 $fl['label'] = 'name';
179 $fl['items'] = array($root);
180
181 print json_encode($fl);
182 }
13e785e0 183
45004d43 184 break; // feeds
1cd17194 185
b509d64e
AD		 186 case "la":
187 $id = db_escape_string($_REQUEST['id']);
188
189 $result = db_query($link, "SELECT link FROM ttrss_entries, ttrss_user_entries
bfedfe69
AD		 190 WHERE id = '$id' AND id = ref_id AND owner_uid = '".$_SESSION['uid']."'
191 LIMIT 1");
b509d64e
AD		 192
193 if (db_num_rows($result) == 1) {
194 $article_url = db_fetch_result($result, 0, 'link');
d4dcf8e9 195 $article_url = str_replace("\n", "", $article_url);
b509d64e
AD		 196
197 header("Location: $article_url");
198 return;
199
200 } else {
201 print_error(__("Article not found."));
202 }
203 break;
204
45004d43 205 case "view":
e097e8be 206
b4e75b2a 207 $id = db_escape_string($_REQUEST["id"]);
9949bd15 208 $cids = explode(",", db_escape_string($_REQUEST["cids"]));
b4e75b2a
AD		 209 $mode = db_escape_string($_REQUEST["mode"]);
210 $omode = db_escape_string($_REQUEST["omode"]);
e097e8be 211
009646d2 212 // in prefetch mode we only output requested cids, main article
45004d43 213 // just gets marked as read (it already exists in client cache)
e097e8be 214
009646d2
AD		 215 $articles = array();
216
45004d43 217 if ($mode == "") {
009646d2 218 array_push($articles, format_article($link, $id, false));
eedfb635 219 } else if ($mode == "zoom") {
9949bd15 220 array_push($articles, format_article($link, $id, true, true));
f4f0f80d 221 } else if ($mode == "raw") {
fcfa9ef1
AD		 222 if ($_REQUEST['html']) {
223 header("Content-Type: text/html");
224 print '<link rel="stylesheet" type="text/css" href="tt-rss.css"/>';
225 }
f4f0f80d
AD		 226
227 $article = format_article($link, $id, false);
f4f0f80d
AD		 228 print $article['content'];
229 return;
45004d43 230 }
e097e8be 231
f7cffd2c
AD		 232 catchupArticleById($link, $id, 0);
233
a598370d
AD		 234 if (!$_SESSION["bw_limit"]) {
235 foreach ($cids as $cid) {
236 if ($cid) {
009646d2 237 array_push($articles, format_article($link, $cid, false, false));
a598370d 238 }
45004d43 239 }
e097e8be 240 }
e097e8be 241
009646d2 242 print json_encode($articles);
5a94a953 243
45004d43 244 break; // view
1cd17194 245
45004d43 246 case "viewfeed":
1cd17194 247
45004d43 248 $timing_info = getmicrotime();
46921916 249
bd202c3f 250 $reply = array();
3de0261a 251
b4e75b2a 252 if ($_REQUEST["debug"]) $timing_info = print_checkpoint("0", $timing_info);
46921916 253
b4e75b2a 254 $omode = db_escape_string($_REQUEST["omode"]);
3de0261a 255
b4e75b2a
AD		 256 $feed = db_escape_string($_REQUEST["feed"]);
257 $subop = db_escape_string($_REQUEST["subop"]);
258 $view_mode = db_escape_string($_REQUEST["view_mode"]);
6f068202 259 $limit = (int) get_pref($link, "DEFAULT_ARTICLE_LIMIT");
c3fddd05
AD		 260 @$cat_view = db_escape_string($_REQUEST["cat"]);
261 @$next_unread_feed = db_escape_string($_REQUEST["nuf"]);
262 @$offset = db_escape_string($_REQUEST["skip"]);
263 @$vgroup_last_feed = db_escape_string($_REQUEST["vgrlf"]);
b4e75b2a 264 $order_by = db_escape_string($_REQUEST["order_by"]);
203de776 265
fe1087fb
AD		 266 /* Feed -5 is a special case: it is used to display auxiliary information
267 * when there's nothing to load - e.g. no stuff in fresh feed */
268
269 if ($feed == -5) {
bd202c3f
AD		 270 print json_encode(generate_dashboard_feed($link));
271 return;
272 }
273
274 $result = false;
275
276 if ($feed < -10) {
81f6deea 277 $label_feed = -11-$feed;
bd202c3f
AD		 278 $result = db_query($link, "SELECT id FROM ttrss_labels2 WHERE
279 id = '$label_feed' AND owner_uid = " . $_SESSION['uid']);
280 } else if (!$cat_view && $feed > 0) {
281 $result = db_query($link, "SELECT id FROM ttrss_feeds WHERE
282 id = '$feed' AND owner_uid = " . $_SESSION['uid']);
81f6deea 283 } else if ($cat_view && $feed > 0) {
bd202c3f
AD		 284 $result = db_query($link, "SELECT id FROM ttrss_feed_categories WHERE
285 id = '$feed' AND owner_uid = " . $_SESSION['uid']);
286 }
287
288 if ($result && db_num_rows($result) == 0) {
289 print json_encode(generate_error_feed($link, __("Feed not found.")));
fe1087fb
AD		 290 return;
291 }
292
51e196de
AD		 293 /* Updating a label ccache means recalculating all of the caches
294 * so for performance reasons we don't do that here */
295
5225d420
AD		 296 if ($feed >= 0) {
297 ccache_update($link, $feed, $_SESSION["uid"], $cat_view);
298 }
0737b95a 299
45004d43
AD		 300 set_pref($link, "_DEFAULT_VIEW_MODE", $view_mode);
301 set_pref($link, "_DEFAULT_VIEW_LIMIT", $limit);
7b4d02a8 302 set_pref($link, "_DEFAULT_VIEW_ORDER_BY", $order_by);
40496720 303
45004d43
AD		 304 if (!$cat_view && preg_match("/^[0-9][0-9]*$/", $feed)) {
305 db_query($link, "UPDATE ttrss_feeds SET last_viewed = NOW()
306 WHERE id = '$feed' AND owner_uid = ".$_SESSION["uid"]);
307 }
7466dc6a 308
bd202c3f
AD		 309 $reply['headlines'] = array();
310
311 if (!$next_unread_feed)
312 $reply['headlines']['id'] = $feed;
313 else
314 $reply['headlines']['id'] = $next_unread_feed;
315
316 $reply['headlines']['is_cat'] = (bool) $cat_view;
009646d2 317
a5c815d3
AD		 318 $override_order = false;
319
b3990c92
AD		 320 if (get_pref($link, "SORT_HEADLINES_BY_FEED_DATE", $owner_uid)) {
321 $date_sort_field = "updated";
322 } else {
323 $date_sort_field = "date_entered";
324 }
325
a5c815d3
AD		 326 switch ($order_by) {
327 case "date":
328 if (get_pref($link, 'REVERSE_HEADLINES', $owner_uid)) {
b3990c92 329 $override_order = "$date_sort_field";
009646d2 330 } else {
b3990c92 331 $override_order = "$date_sort_field DESC";
a5c815d3
AD		 332 }
333 break;
c50e2b30 334
a5c815d3 335 case "title":
7b20c977 336 if (get_pref($link, 'REVERSE_HEADLINES', $owner_uid)) {
b3990c92 337 $override_order = "title DESC, $date_sort_field";
7b20c977 338 } else {
b3990c92 339 $override_order = "title, $date_sort_field DESC";
7b20c977 340 }
a5c815d3 341 break;
d76a3b03 342
a5c815d3 343 case "score":
7b20c977 344 if (get_pref($link, 'REVERSE_HEADLINES', $owner_uid)) {
b3990c92 345 $override_order = "score, $date_sort_field";
7b20c977 346 } else {
b3990c92 347 $override_order = "score DESC, $date_sort_field DESC";
7b20c977 348 }
a5c815d3
AD		 349 break;
350 }
e19c1824 351
905ff52a
AD		 352 if ($_REQUEST["debug"]) $timing_info = print_checkpoint("04", $timing_info);
353
bd202c3f 354 $ret = format_headlines_list($link, $feed, $subop,
009646d2 355 $view_mode, $limit, $cat_view, $next_unread_feed, $offset,
a5c815d3 356 $vgroup_last_feed, $override_order);
7b4d02a8 357
a5c815d3
AD		 358 $topmost_article_ids = $ret[0];
359 $headlines_count = $ret[1];
360 $returned_feed = $ret[2];
361 $disable_cache = $ret[3];
362 $vgroup_last_feed = $ret[4];
7b4d02a8 363
7d96bfcd
AD		 364// if ($_REQUEST["debug"]) print_r($ret);
365
366 $reply['headlines']['content'] =& $ret[5]['content'];
367 $reply['headlines']['toolbar'] =& $ret[5]['toolbar'];
46921916 368
905ff52a
AD		 369 if ($_REQUEST["debug"]) $timing_info = print_checkpoint("05", $timing_info);
370
cfcb7d42 371 $headlines_unread = ccache_find($link, $returned_feed, $_SESSION["uid"],
696a6850
AD		 372 $cat_view, true);
373
374 if ($headlines_unread == -1) {
375 $headlines_unread = getFeedUnread($link, $returned_feed, $cat_view);
696a6850 376 }
a5c815d3 377
bd202c3f 378 $reply['headlines-info'] = array("count" => (int) $headlines_count,
ffbe082d
AD		 379 "vgroup_last_feed" => $vgroup_last_feed,
380 "unread" => (int) $headlines_unread,
381 "disable_cache" => (bool) $disable_cache);
382
bd202c3f 383 if ($_REQUEST["debug"]) $timing_info = print_checkpoint("20", $timing_info);
009646d2 384
bd202c3f 385 if (is_array($topmost_article_ids) && !get_pref($link, 'COMBINED_DISPLAY_MODE') && !$_SESSION["bw_limit"]) {
009646d2
AD		 386 $articles = array();
387
a5c815d3 388 foreach ($topmost_article_ids as $id) {
9949bd15 389 array_push($articles, format_article($link, $id, false));
45004d43 390 }
009646d2 391
bd202c3f
AD		 392 $reply['articles'] = $articles;
393 }
46921916 394
dd25b0c6 395 if ($subop) {
bd202c3f 396 $reply['counters'] = getAllCounters($link, $omode, $feed);
009646d2 397 }
98bea1b1 398
b4e75b2a 399 if ($_REQUEST["debug"]) $timing_info = print_checkpoint("30", $timing_info);
46921916 400
bd202c3f
AD		 401 $reply['runtime-info'] = make_runtime_info($link);
402
403 print json_encode($reply);
03c88bdd 404
45004d43 405 break; // viewfeed
1cd17194 406
45004d43
AD		 407 case "pref-feeds":
408 module_pref_feeds($link);
409 break; // pref-feeds
a7f22b70 410
45004d43
AD		 411 case "pref-filters":
412 module_pref_filters($link);
413 break; // pref-filters
a0476535 414
45004d43
AD		 415 case "pref-labels":
416 module_pref_labels($link);
417 break; // pref-labels
d0000401 418
45004d43
AD		 419 case "pref-prefs":
420 module_pref_prefs($link);
421 break; // pref-prefs
f27d955a 422
45004d43
AD		 423 case "pref-users":
424 module_pref_users($link);
425 break; // prefs-users
a0476535 426
45004d43
AD		 427 case "help":
428 module_help($link);
429 break; // help
a0476535 430
45004d43
AD		 431 case "dlg":
432 module_popup_dialog($link);
433 break; // dlg
a7f22b70 434
45004d43
AD		 435 case "pref-pub-items":
436 module_pref_pub_items($link);
437 break; // pref-pub-items
e4f4b46f 438
45004d43 439 case "globalUpdateFeeds":
45004d43 440 // Update all feeds needing a update.
5cbaf873 441 update_daemon_common($link, 0, true, true);
45004d43 442 break; // globalUpdateFeeds
e5d758e3 443
45004d43
AD		 444 case "pref-feed-browser":
445 module_pref_feed_browser($link);
446 break; // pref-feed-browser
c6232e43 447
373266eb
AD		 448 case "pref-instances":
449 module_pref_instances($link);
450 break; // pref-instances
451
45004d43 452 case "rss":
b4e75b2a 453 $feed = db_escape_string($_REQUEST["id"]);
8801fb01 454 $key = db_escape_string($_REQUEST["key"]);
b4e75b2a
AD		 455 $is_cat = $_REQUEST["is_cat"] != false;
456 $limit = (int)db_escape_string($_REQUEST["limit"]);
e1eb2147 457
b4e75b2a
AD		 458 $search = db_escape_string($_REQUEST["q"]);
459 $match_on = db_escape_string($_REQUEST["m"]);
460 $search_mode = db_escape_string($_REQUEST["smode"]);
2f2bd1b3 461 $view_mode = db_escape_string($_REQUEST["view-mode"]);
18664970 462
b4798282
AD		 463 if (SINGLE_USER_MODE) {
464 authenticate_user($link, "admin", null);
465 }
466
8e57cfbe 467 $owner_id = false;
19039fd0 468
8e57cfbe 469 if ($key) {
8801fb01
AD		 470 $result = db_query($link, "SELECT owner_uid FROM
471 ttrss_access_keys WHERE access_key = '$key' AND feed_id = '$feed'");
472
473 if (db_num_rows($result) == 1)
8e57cfbe 474 $owner_id = db_fetch_result($result, 0, "owner_uid");
45004d43 475 }
18664970 476
8e57cfbe
AD		 477 if ($owner_id) {
478 $_SESSION['uid'] = $owner_id;
479
23d72f39
AD		 480 generate_syndicated_feed($link, 0, $feed, $is_cat, $limit,
481 $search, $search_mode, $match_on, $view_mode);
19039fd0
AD		 482 } else {
483 header('HTTP/1.1 403 Forbidden');
45004d43
AD		 484 }
485 break; // rss
18664970 486
45004d43 487 case "getUnread":
b4e75b2a 488 $login = db_escape_string($_REQUEST["login"]);
1f7b77d1 489 $fresh = $_REQUEST["fresh"] == "1";
f3acc32e 490
45004d43 491 $result = db_query($link, "SELECT id FROM ttrss_users WHERE login = '$login'");
7e3634d9 492
45004d43
AD		 493 if (db_num_rows($result) == 1) {
494 $uid = db_fetch_result($result, 0, "id");
1f7b77d1 495
45004d43 496 print getGlobalUnread($link, $uid);
1f7b77d1
AD		 497
498 if ($fresh) {
499 print ";";
500 print getFeedArticles($link, -3, false, true, $uid);
501 }
502
45004d43
AD		 503 } else {
504 print "-1;User not found";
505 }
7e3634d9 506
45004d43 507 break; // getUnread
9cd7c995 508
45004d43 509 case "digestTest":
45004d43 510 print_r(prepare_headlines_digest($link, $_SESSION["uid"]));
45004d43 511 break; // digestTest
448b0abd 512
45004d43 513 case "digestSend":
45004d43 514 send_headlines_digests($link);
45004d43 515 break; // digestSend
7e3634d9 516
ba7e88e5 517 case "loading":
347b467b 518 header("Content-type: text/html");
009646d2 519 print __("Loading, please wait...") . " " .
ba7e88e5 520 "<img src='images/indicator_tiny.gif'>";
373266eb 521 break; // loading
ba7e88e5 522
d9084cf2
AD		 523 case "getProfiles":
524 $login = db_escape_string($_REQUEST["login"]);
525 $password = db_escape_string($_REQUEST["password"]);
526
527 if (authenticate_user($link, $login, $password)) {
528 $result = db_query($link, "SELECT * FROM ttrss_settings_profiles
529 WHERE owner_uid = " . $_SESSION["uid"] . " ORDER BY title");
530
531 print "<select style='width: 100%' name='profile'>";
532
533 print "<option value='0'>" . __("Default profile") . "</option>";
534
535 while ($line = db_fetch_assoc($result)) {
536 $id = $line["id"];
537 $title = $line["title"];
538
539 print "<option value='$id'>$title</option>";
540 }
541
542 print "</select>";
543
544 $_SESSION = array();
0456176a 545 }
373266eb 546 break; // getprofiles
d9084cf2 547
5ab9791f
AD		 548 case "pubsub":
549 $mode = db_escape_string($_REQUEST['hub_mode']);
550 $feed_id = db_escape_string($_REQUEST['id']);
551 $feed_url = db_escape_string($_REQUEST['hub_topic']);
552
e2d2339c
AD		 553 if (!PUBSUBHUBBUB_ENABLED) {
554 header('HTTP/1.0 404 Not Found');
555 echo "404 Not found";
556 return;
557 }
558
5ab9791f
AD		 559 // TODO: implement hub_verifytoken checking
560
561 $result = db_query($link, "SELECT feed_url FROM ttrss_feeds
562 WHERE id = '$feed_id'");
563
97279fe6 564 if (db_num_rows($result) != 0) {
5ab9791f 565
97279fe6 566 $check_feed_url = db_fetch_result($result, 0, "feed_url");
5ab9791f 567
97279fe6
AD		 568 if ($check_feed_url && ($check_feed_url == $feed_url || !$feed_url)) {
569 if ($mode == "subscribe") {
5ab9791f 570
97279fe6
AD		 571 db_query($link, "UPDATE ttrss_feeds SET pubsub_state = 2
572 WHERE id = '$feed_id'");
7e0943c6 573
97279fe6
AD		 574 print $_REQUEST['hub_challenge'];
575 return;
5ab9791f 576
97279fe6 577 } else if ($mode == "unsubscribe") {
5ab9791f 578
97279fe6
AD		 579 db_query($link, "UPDATE ttrss_feeds SET pubsub_state = 0
580 WHERE id = '$feed_id'");
7e0943c6 581
97279fe6
AD		 582 print $_REQUEST['hub_challenge'];
583 return;
f3acc32e 584
97279fe6 585 } else if (!$mode) {
5ab9791f 586
97279fe6 587 // Received update ping, schedule feed update.
5ab9791f 588
97279fe6
AD		 589 update_rss_feed($link, $feed_id, true, true);
590
591 }
592 } else {
593 header('HTTP/1.0 404 Not Found');
594 echo "404 Not found";
5ab9791f
AD		 595 }
596 } else {
597 header('HTTP/1.0 404 Not Found');
97279fe6 598 echo "404 Not found";
5ab9791f
AD		 599 }
600
373266eb 601 break; // pubsub
1ca77e0a
AD		 602
603 case "logout":
604 logout_user();
605 header("Location: tt-rss.php");
373266eb 606 break; // logout
1ca77e0a 607
ae5f7bb1
AD		 608 case "fbexport":
609
9b201046 610 $access_key = db_escape_string($_POST["key"]);
ae5f7bb1
AD		 611
612 // TODO: rate limit checking using last_connected
613 $result = db_query($link, "SELECT id FROM ttrss_linked_instances
614 WHERE access_key = '$access_key'");
615
616 if (db_num_rows($result) == 1) {
617
618 $instance_id = db_fetch_result($result, 0, "id");
619
109662e1 620 $result = db_query($link, "SELECT feed_url, site_url, title, subscribers
ae5f7bb1
AD		 621 FROM ttrss_feedbrowser_cache ORDER BY subscribers DESC LIMIT 100");
622
623 $feeds = array();
624
625 while ($line = db_fetch_assoc($result)) {
626 array_push($feeds, $line);
627 }
628
572d66c6 629 db_query($link, "UPDATE ttrss_linked_instances SET
ae5f7bb1
AD		 630 last_status_in = 1 WHERE id = '$instance_id'");
631
632 print json_encode(array("feeds" => $feeds));
633 } else {
634 print json_encode(array("error" => array("code" => 6)));
635 }
636 break; // fbexport
637
1ca77e0a
AD		 638 default:
639 header("Content-Type: text/plain");
640 print json_encode(array("error" => array("code" => 7)));
373266eb 641 break; // fallback
5ab9791f 642 } // Select action according to $op value.
ba7e88e5 643
45004d43 644 // We close the connection to database.
4b3dff6e 645 db_close($link);
1cd17194 646?>
web-based news feed (RSS/Atom) reader and aggregator; see https://tt-rss.org/