Zeile 6 | Zeile 6 |
---|
* Website: http://mybb.com * License: http://mybb.com/about/license *
|
* Website: http://mybb.com * License: http://mybb.com/about/license *
|
* $Id: functions_search.php 5132 2010-07-28 08:18:14Z RyanGordon $
| * $Id$
|
*/
/**
| */
/**
|
Zeile 96 | Zeile 96 |
---|
function get_unsearchable_forums($pid="0", $first=1) { global $db, $forum_cache, $permissioncache, $mybb, $unsearchableforums, $unsearchable, $templates, $forumpass;
|
function get_unsearchable_forums($pid="0", $first=1) { global $db, $forum_cache, $permissioncache, $mybb, $unsearchableforums, $unsearchable, $templates, $forumpass;
|
|
|
$pid = intval($pid);
|
$pid = intval($pid);
|
|
|
if(!is_array($forum_cache)) { // Get Forums
| if(!is_array($forum_cache)) { // Get Forums
|
Zeile 111 | Zeile 111 |
---|
if(!is_array($permissioncache)) { $permissioncache = forum_permissions();
|
if(!is_array($permissioncache)) { $permissioncache = forum_permissions();
|
}
| }
|
foreach($forum_cache as $fid => $forum) { if($permissioncache[$forum['fid']])
| foreach($forum_cache as $fid => $forum) { if($permissioncache[$forum['fid']])
|
Zeile 151 | Zeile 151 |
---|
$unsearchableforums .= ","; } $unsearchableforums .= "'{$forum['fid']}'";
|
$unsearchableforums .= ","; } $unsearchableforums .= "'{$forum['fid']}'";
|
}
| }
|
} $unsearchable = $unsearchableforums;
|
} $unsearchable = $unsearchableforums;
|
|
|
// Get our unsearchable password protected forums $pass_protected_forums = get_password_protected_forums();
|
// Get our unsearchable password protected forums $pass_protected_forums = get_password_protected_forums();
|
|
|
if($unsearchable && $pass_protected_forums)
|
if($unsearchable && $pass_protected_forums)
|
{
| {
|
$unsearchable .= ",";
|
$unsearchable .= ",";
|
}
| }
|
if($pass_protected_forums) { $unsearchable .= implode(",", $pass_protected_forums); }
|
if($pass_protected_forums) { $unsearchable .= implode(",", $pass_protected_forums); }
|
|
|
return $unsearchable; }
| return $unsearchable; }
|
Zeile 180 | Zeile 180 |
---|
function get_password_protected_forums($fids=array()) { global $forum_cache, $mybb;
|
function get_password_protected_forums($fids=array()) { global $forum_cache, $mybb;
|
|
|
if(!is_array($fids)) { return false; }
|
if(!is_array($fids)) { return false; }
|
|
|
if(!is_array($forum_cache)) { $forum_cache = cache_forums();
| if(!is_array($forum_cache)) { $forum_cache = cache_forums();
|
Zeile 194 | Zeile 194 |
---|
return false; } }
|
return false; } }
|
|
|
if(empty($fids)) { $fids = array_keys($forum_cache);
| if(empty($fids)) { $fids = array_keys($forum_cache);
|
Zeile 207 | Zeile 207 |
---|
{ continue; }
|
{ continue; }
|
|
|
if(md5($mybb->user['uid'].$forum_cache[$fid]['password']) != $mybb->cookies['forumpass'][$fid]) { $pass_fids[] = $fid; $child_list = get_child_list($fid); }
|
if(md5($mybb->user['uid'].$forum_cache[$fid]['password']) != $mybb->cookies['forumpass'][$fid]) { $pass_fids[] = $fid; $child_list = get_child_list($fid); }
|
|
|
if(is_array($child_list)) { $pass_fids = array_merge($pass_fids, $child_list);
| if(is_array($child_list)) { $pass_fids = array_merge($pass_fids, $child_list);
|
Zeile 238 | Zeile 238 |
---|
$keywords = preg_replace("#\s+#s", " ", $keywords);
// Search for "and" or "or" and remove if it's at the beginning
|
$keywords = preg_replace("#\s+#s", " ", $keywords);
// Search for "and" or "or" and remove if it's at the beginning
|
| $keywords = trim($keywords);
|
if(my_strpos($keywords, "or") === 0) { $keywords = substr_replace($keywords, "", 0, 2); }
|
if(my_strpos($keywords, "or") === 0) { $keywords = substr_replace($keywords, "", 0, 2); }
|
|
|
if(my_strpos($keywords, "and") === 0) { $keywords = substr_replace($keywords, "", 0, 3); }
|
if(my_strpos($keywords, "and") === 0) { $keywords = substr_replace($keywords, "", 0, 3); }
|
return trim($keywords);
| return $keywords;
|
}
/**
| }
/**
|
Zeile 256 | Zeile 257 |
---|
* * @param string The keywords to be cleaned * @return string The cleaned keywords
|
* * @param string The keywords to be cleaned * @return string The cleaned keywords
|
*/
| */
|
function clean_keywords_ft($keywords) { if(!$keywords)
|
function clean_keywords_ft($keywords) { if(!$keywords)
|
{
| {
|
return false; } $keywords = my_strtolower($keywords); $keywords = str_replace("%", "\\%", $keywords); $keywords = preg_replace("#\*{2,}#s", "*", $keywords); $keywords = preg_replace("#([\[\]\|\.\,:])#s", " ", $keywords);
|
return false; } $keywords = my_strtolower($keywords); $keywords = str_replace("%", "\\%", $keywords); $keywords = preg_replace("#\*{2,}#s", "*", $keywords); $keywords = preg_replace("#([\[\]\|\.\,:])#s", " ", $keywords);
|
| // Separate braces for further processing $keywords = preg_replace("#((\+|-|<|>|~)?\(|\))#s", " $1 ", $keywords);
|
$keywords = preg_replace("#\s+#s", " ", $keywords);
|
$keywords = preg_replace("#\s+#s", " ", $keywords);
|
$words = array(); if(my_strpos($keywords, "\"") !== false) { $inquote = false; $keywords = explode("\"", $keywords); foreach($keywords as $phrase) { if($phrase != '') { if($inquote)
| $words = array(array());
// Fulltext search syntax validation: http://dev.mysql.com/doc/refman/5.6/en/fulltext-boolean.html // Search for phrases $keywords = explode("\"", $keywords); $boolean = array('+'); // Brace depth $depth = 0; $phrase_operator = '+'; foreach($keywords as $phrase) { $phrase = trim($phrase); if($phrase != '') { if($inquote) { if($phrase_operator) { $boolean[$depth] = $phrase_operator; } // Phrases do not need further processing $words[$depth][] = "{$boolean[$depth]}\"{$phrase}\""; $boolean[$depth] = $phrase_operator = '+'; } else { // Split words $split_words = preg_split("#\s{1,}#", $phrase, -1); if(!is_array($split_words)) { continue; } if(!$inquote) { // Save possible operator in front of phrase $last_char = substr($phrase, -1); if($last_char == '+' || $last_char == '-' || $last_char == '<' || $last_char == '>' || $last_char == '~') { $phrase_operator = $last_char; } } foreach($split_words as $word)
|
{
|
{
|
$words[] = "\"".trim($phrase)."\""; } else { $split_words = preg_split("#\s{1,}#", $phrase, -1); if(!is_array($split_words)) { continue;
| $word = trim($word); if($word == "or") { $boolean[$depth] = ''; // Remove "and" operator from previous element $last = array_pop($words[$depth]); if($last) { if(substr($last, 0, 1) == '+') { $last = substr($last, 1); } $words[$depth][] = $last; } } elseif($word == "and") { $boolean[$depth] = "+"; } elseif($word == "not") { $boolean[$depth] = "-";
|
}
|
}
|
foreach($split_words as $word)
| // Closing braces elseif($word == ")") { // Ignore when no brace was opened if($depth > 0) { $words[$depth-1][] = $boolean[$depth-1].'('.implode(' ', $words[$depth]).')'; --$depth; } } // Valid operators for opening braces elseif($word == '+(' || $word == '-(' || $word == '<(' || $word == '>(' || $word == '~(' || $word == '(') { if(strlen($word) == 2) { $boolean[$depth] = substr($word, 0, 1); } $words[++$depth] = array(); $boolean[$depth] = '+'; } else
|
{
|
{
|
if(!$word)
| $operator = substr($word, 0, 1); switch($operator) { // Allowed operators case '-': case '+': case '>': case '<': case '~': $word = substr($word, 1); break; default: $operator = $boolean[$depth]; break; } // Removed operators that are only allowed at the beginning $word = preg_replace("#(-|\+|<|>|~|@)#s", '', $word); // Removing wildcards at the beginning http://bugs.mysql.com/bug.php?id=72605 $word = preg_replace("#^\*#s", '', $word); $word = $operator.$word; if(strlen($word) <= 1)
|
{ continue; }
|
{ continue; }
|
$words[] = trim($word);
| $words[$depth][] = $word; $boolean[$depth] = '+';
|
} } }
|
} } }
|
$inquote = !$inquote; } } else { $split_words = preg_split("#\s{1,}#", $keywords, -1); if(!is_array($split_words)) { continue; } foreach($split_words as $word) { if(!$word) { continue; } $words[] = trim($word); }
| } $inquote = !$inquote; }
|
|
|
} $keywords = ''; foreach($words as $word)
| // Close mismatching braces while($depth > 0)
|
{
|
{
|
if($word == "or") { $boolean = ''; } elseif($word == "and") { $boolean = "+"; } elseif($word == "not") { $boolean = "-"; } else { $keywords .= " ".$boolean.$word; $boolean = ''; }
| $words[$depth-1][] = $boolean[$depth-1].'('.implode(' ', $words[$depth]).')'; --$depth;
|
}
|
}
|
$keywords = "+".trim($keywords);
| $keywords = implode(' ', $words[0]);
|
return $keywords; }
| return $keywords; }
|
Zeile 361 | Zeile 420 |
---|
if(!$keywords && !$search['sender']) { error($lang->error_nosearchterms);
|
if(!$keywords && !$search['sender']) { error($lang->error_nosearchterms);
|
}
| }
|
if($mybb->settings['minsearchword'] < 1)
|
if($mybb->settings['minsearchword'] < 1)
|
{
| {
|
$mybb->settings['minsearchword'] = 3; }
|
$mybb->settings['minsearchword'] = 3; }
|
|
|
$subject_lookin = ""; $message_lookin = ""; $searchsql = "uid='{$mybb->user['uid']}'";
|
$subject_lookin = ""; $message_lookin = ""; $searchsql = "uid='{$mybb->user['uid']}'";
|
|
|
if($keywords) { // Complex search $keywords = " {$keywords} "; if(preg_match("# and|or #", $keywords))
|
if($keywords) { // Complex search $keywords = " {$keywords} "; if(preg_match("# and|or #", $keywords))
|
{ $subject_lookin = " AND ("; $message_lookin = " AND ("; // Expand the string by double quotes $keywords_exp = explode("\"", $keywords); $inquote = false;
foreach($keywords_exp as $phrase) { // If we're not in a double quoted section if(!$inquote) { // Expand out based on search operators (and, or) $matches = preg_split("#\s{1,}(and|or)\s{1,}#", $phrase, -1, PREG_SPLIT_DELIM_CAPTURE); $count_matches = count($matches); for($i=0; $i < $count_matches; ++$i) { $word = trim($matches[$i]); if(empty($word)) {
| { $string = "AND"; if($search['subject'] == 1) { $string = "OR"; $subject_lookin = " AND ("; }
if($search['message'] == 1) { $message_lookin = " {$string} ("; }
// Expand the string by double quotes $keywords_exp = explode("\"", $keywords); $inquote = false;
foreach($keywords_exp as $phrase) { // If we're not in a double quoted section if(!$inquote) { // Expand out based on search operators (and, or) $matches = preg_split("#\s{1,}(and|or)\s{1,}#", $phrase, -1, PREG_SPLIT_DELIM_CAPTURE); $count_matches = count($matches);
for($i=0; $i < $count_matches; ++$i) { $word = trim($matches[$i]); if(empty($word)) {
|
continue; } // If this word is a search operator set the boolean if($i % 2 && ($word == "and" || $word == "or")) {
|
continue; } // If this word is a search operator set the boolean if($i % 2 && ($word == "and" || $word == "or")) {
|
| if($i <= 1) { if($search['subject'] && $search['message'] && $subject_lookin == " AND (") { // We're looking for anything, check for a subject lookin continue; } elseif($search['subject'] && !$search['message'] && $subject_lookin == " AND (") { // Just in a subject? continue; } elseif(!$search['subject'] && $search['message'] && $message_lookin == " {$string} (") { // Just in a message? continue; } }
|
$boolean = $word; } // Otherwise check the length of the word as it is a normal search term
| $boolean = $word; } // Otherwise check the length of the word as it is a normal search term
|
Zeile 423 | Zeile 510 |
---|
} if($search['message'] == 1) {
|
} if($search['message'] == 1) {
|
$searchsql .= " $boolean LOWER(message) LIKE '%{$word}%'";
| $message_lookin .= " $boolean LOWER(message) LIKE '%{$word}%'";
|
} } }
|
} } }
|
}
| }
|
// In the middle of a quote (phrase) else {
| // In the middle of a quote (phrase) else {
|
Zeile 442 | Zeile 529 |
---|
if($search['message'] == 1) { $message_lookin .= " $boolean LOWER(message) LIKE '%{$phrase}%'";
|
if($search['message'] == 1) { $message_lookin .= " $boolean LOWER(message) LIKE '%{$phrase}%'";
|
}
| } }
// Check to see if we have any search terms and not a malformed SQL string $error = false; if($search['subject'] && $search['message'] && $subject_lookin == " AND (") { // We're looking for anything, check for a subject lookin $error = true; } elseif($search['subject'] && !$search['message'] && $subject_lookin == " AND (") { // Just in a subject? $error = true; } elseif(!$search['subject'] && $search['message'] && $message_lookin == " {$string} (") { // Just in a message? $error = true; }
if($error == true) { // There are no search keywords to look for $lang->error_minsearchlength = $lang->sprintf($lang->error_minsearchlength, $mybb->settings['minsearchword']); error($lang->error_minsearchlength);
|
}
|
}
|
|
|
$inquote = !$inquote; }
|
$inquote = !$inquote; }
|
$subject_lookin .= ")"; $message_lookin .= ")";
| if($search['subject'] == 1) { $subject_lookin .= ")"; }
if($search['message'] == 1) { $message_lookin .= ")"; }
|
$searchsql .= "{$subject_lookin} {$message_lookin}"; } else
| $searchsql .= "{$subject_lookin} {$message_lookin}"; } else
|
Zeile 459 | Zeile 580 |
---|
$lang->error_minsearchlength = $lang->sprintf($lang->error_minsearchlength, $mybb->settings['minsearchword']); error($lang->error_minsearchlength); }
|
$lang->error_minsearchlength = $lang->sprintf($lang->error_minsearchlength, $mybb->settings['minsearchword']); error($lang->error_minsearchlength); }
|
|
|
// If we're looking in both, then find matches in either the subject or the message if($search['subject'] == 1 && $search['message'] == 1) {
| // If we're looking in both, then find matches in either the subject or the message if($search['subject'] == 1 && $search['message'] == 1) {
|
Zeile 471 | Zeile 592 |
---|
{ $searchsql .= " AND LOWER(subject) LIKE '%{$keywords}%'"; }
|
{ $searchsql .= " AND LOWER(subject) LIKE '%{$keywords}%'"; }
|
|
|
if($search['message'] == 1) { $searchsql .= " AND LOWER(message) LIKE '%{$keywords}%'";
| if($search['message'] == 1) { $searchsql .= " AND LOWER(message) LIKE '%{$keywords}%'";
|
Zeile 479 | Zeile 600 |
---|
} } }
|
} } }
|
|
|
if($search['sender']) { $userids = array(); $search['sender'] = my_strtolower($search['sender']);
|
if($search['sender']) { $userids = array(); $search['sender'] = my_strtolower($search['sender']);
|
|
|
$query = $db->simple_select("users", "uid", "LOWER(username) LIKE '%".$db->escape_string_like($db->escape_string($search['sender']))."%'"); while($user = $db->fetch_array($query)) { $userids[] = $user['uid']; }
|
$query = $db->simple_select("users", "uid", "LOWER(username) LIKE '%".$db->escape_string_like($db->escape_string($search['sender']))."%'"); while($user = $db->fetch_array($query)) { $userids[] = $user['uid']; }
|
|
|
if(count($userids) < 1)
|
if(count($userids) < 1)
|
{
| {
|
error($lang->error_nosearchresults); } else
| error($lang->error_nosearchresults); } else
|
Zeile 501 | Zeile 622 |
---|
$searchsql .= " AND fromid IN (".$userids.")"; } }
|
$searchsql .= " AND fromid IN (".$userids.")"; } }
|
|
|
if(!is_array($search['folder']))
|
if(!is_array($search['folder']))
|
{
| {
|
$search['folder'] = array($search['folder']); }
|
$search['folder'] = array($search['folder']); }
|
|
|
if(!empty($search['folder'])) { $folderids = array();
|
if(!empty($search['folder'])) { $folderids = array();
|
|
|
$search['folder'] = array_map("intval", $search['folder']);
|
$search['folder'] = array_map("intval", $search['folder']);
|
|
|
$folderids = implode(',', $search['folder']);
|
$folderids = implode(',', $search['folder']);
|
|
|
if($folderids) { $searchsql .= " AND folder IN (".$folderids.")";
| if($folderids) { $searchsql .= " AND folder IN (".$folderids.")";
|
Zeile 536 | Zeile 657 |
---|
{ $statussql[] = " status='4' "; }
|
{ $statussql[] = " status='4' "; }
|
if($search['status']['read']) { $statussql[] = " (status != '0' AND readtime > '0') "; }
| if($search['status']['read']) { $statussql[] = " (status != '0' AND readtime > '0') "; }
|
// Sent Folder if(in_array(2, $search['folder'])) {
| // Sent Folder if(in_array(2, $search['folder'])) {
|
Zeile 547 | Zeile 668 |
---|
} $statussql = implode("OR", $statussql); $searchsql .= $statussql.")";
|
} $statussql = implode("OR", $statussql); $searchsql .= $statussql.")";
|
}
| }
|
// Run the search $pms = array(); $query = $db->simple_select("privatemessages", "pmid", $searchsql);
| // Run the search $pms = array(); $query = $db->simple_select("privatemessages", "pmid", $searchsql);
|
Zeile 556 | Zeile 677 |
---|
{ $pms[$pm['pmid']] = $pm['pmid']; }
|
{ $pms[$pm['pmid']] = $pm['pmid']; }
|
|
|
if(count($pms) < 1) { error($lang->error_nosearchresults); } $pms = implode(',', $pms);
|
if(count($pms) < 1) { error($lang->error_nosearchresults); } $pms = implode(',', $pms);
|
|
|
return array( "querycache" => $pms );
| return array( "querycache" => $pms );
|
Zeile 576 | Zeile 697 |
---|
*/ function perform_search_mysql($search) {
|
*/ function perform_search_mysql($search) {
|
global $mybb, $db, $lang;
| global $mybb, $db, $lang, $cache;
|
$keywords = clean_keywords($search['keywords']); if(!$keywords && !$search['author'])
| $keywords = clean_keywords($search['keywords']); if(!$keywords && !$search['author'])
|
Zeile 593 | Zeile 714 |
---|
{ // Complex search $keywords = " {$keywords} ";
|
{ // Complex search $keywords = " {$keywords} ";
|
if(preg_match("# and|or #", $keywords))
| if(preg_match("#\s(and|or)\s#", $keywords))
|
{ $subject_lookin = " AND ("; $message_lookin = " AND (";
|
{ $subject_lookin = " AND ("; $message_lookin = " AND (";
|
|
|
// Expand the string by double quotes $keywords_exp = explode("\"", $keywords); $inquote = false;
|
// Expand the string by double quotes $keywords_exp = explode("\"", $keywords); $inquote = false;
|
| $boolean = '';
|
foreach($keywords_exp as $phrase) {
| foreach($keywords_exp as $phrase) {
|
Zeile 610 | Zeile 732 |
---|
// Expand out based on search operators (and, or) $matches = preg_split("#\s{1,}(and|or)\s{1,}#", $phrase, -1, PREG_SPLIT_DELIM_CAPTURE); $count_matches = count($matches);
|
// Expand out based on search operators (and, or) $matches = preg_split("#\s{1,}(and|or)\s{1,}#", $phrase, -1, PREG_SPLIT_DELIM_CAPTURE); $count_matches = count($matches);
|
|
|
for($i=0; $i < $count_matches; ++$i) { $word = trim($matches[$i]); if(empty($word))
|
for($i=0; $i < $count_matches; ++$i) { $word = trim($matches[$i]); if(empty($word))
|
{
| {
|
continue; } // If this word is a search operator set the boolean if($i % 2 && ($word == "and" || $word == "or")) {
|
continue; } // If this word is a search operator set the boolean if($i % 2 && ($word == "and" || $word == "or")) {
|
| if($i <= 1 && $subject_lookin == " AND (") { continue; }
|
$boolean = $word; } // Otherwise check the length of the word as it is a normal search term
| $boolean = $word; } // Otherwise check the length of the word as it is a normal search term
|
Zeile 639 | Zeile 766 |
---|
{ $message_lookin .= " $boolean LOWER(p.message) LIKE '%{$word}%'"; }
|
{ $message_lookin .= " $boolean LOWER(p.message) LIKE '%{$word}%'"; }
|
| $boolean = 'AND';
|
}
|
}
|
} }
| } }
|
// In the middle of a quote (phrase) else { $phrase = str_replace(array("+", "-", "*"), '', trim($phrase)); if(my_strlen($phrase) < $mybb->settings['minsearchword'])
|
// In the middle of a quote (phrase) else { $phrase = str_replace(array("+", "-", "*"), '', trim($phrase)); if(my_strlen($phrase) < $mybb->settings['minsearchword'])
|
{
| {
|
$lang->error_minsearchlength = $lang->sprintf($lang->error_minsearchlength, $mybb->settings['minsearchword']); error($lang->error_minsearchlength); }
| $lang->error_minsearchlength = $lang->sprintf($lang->error_minsearchlength, $mybb->settings['minsearchword']); error($lang->error_minsearchlength); }
|
Zeile 656 | Zeile 784 |
---|
if($search['postthread'] == 1) { $message_lookin .= " $boolean LOWER(p.message) LIKE '%{$phrase}%'";
|
if($search['postthread'] == 1) { $message_lookin .= " $boolean LOWER(p.message) LIKE '%{$phrase}%'";
|
}
| } $boolean = 'AND'; }
if($subject_lookin == " AND (") { // There are no search keywords to look for $lang->error_minsearchlength = $lang->sprintf($lang->error_minsearchlength, $mybb->settings['minsearchword']); error($lang->error_minsearchlength);
|
}
|
}
|
|
|
$inquote = !$inquote; } $subject_lookin .= ")";
| $inquote = !$inquote; } $subject_lookin .= ")";
|
Zeile 672 | Zeile 809 |
---|
error($lang->error_minsearchlength); } $subject_lookin = " AND LOWER(t.subject) LIKE '%{$keywords}%'";
|
error($lang->error_minsearchlength); } $subject_lookin = " AND LOWER(t.subject) LIKE '%{$keywords}%'";
|
if($search['postthread'] == 1) {
| if($search['postthread'] == 1) {
|
$message_lookin = " AND LOWER(p.message) LIKE '%{$keywords}%'";
|
$message_lookin = " AND LOWER(p.message) LIKE '%{$keywords}%'";
|
} } } $post_usersql = ''; $thread_usersql = ''; if($search['author']) { $userids = array(); if($search['matchusername']) { $query = $db->simple_select("users", "uid", "username='".$db->escape_string($search['author'])."'"); } else { $search['author'] = my_strtolower($search['author']); $query = $db->simple_select("users", "uid", "LOWER(username) LIKE '%".$db->escape_string_like($db->escape_string($search['author']))."%'"); } while($user = $db->fetch_array($query)) { $userids[] = $user['uid']; } if(count($userids) < 1) { error($lang->error_nosearchresults); } else { $userids = implode(',', $userids); $post_usersql = " AND p.uid IN (".$userids.")"; $thread_usersql = " AND t.uid IN (".$userids.")"; } } $datecut = ''; if($search['postdate']) { if($search['pddir'] == 0) { $datecut = "<="; } else { $datecut = ">="; } $now = TIME_NOW; $datelimit = $now-(86400 * $search['postdate']); $datecut .= "'$datelimit'"; $post_datecut = " AND p.dateline $datecut"; $thread_datecut = " AND t.dateline $datecut"; } $thread_replycut = ''; if($search['numreplies'] != '' && $search['findthreadst']) { if(intval($search['findthreadst']) == 1) { $thread_replycut = " AND t.replies >= '".intval($search['numreplies'])."'"; } else { $thread_replycut = " AND t.replies <= '".intval($search['numreplies'])."'"; } } $thread_prefixcut = ''; if($search['threadprefix'] && $search['threadprefix'] != 'any') { $thread_prefixcut = " AND t.prefix='".intval($search['threadprefix'])."'"; }
$forumin = ''; $fidlist = array(); $searchin = array(); if($search['forums'] != "all") { if(!is_array($search['forums'])) { $search['forums'] = array(intval($search['forums'])); } // Generate a comma separated list of all groups the user belongs to $user_groups = $mybb->user['usergroup']; if($mybb->user['additionalgroups']) { $user_groups .= ",".$mybb->user['additionalgroups']; } foreach($search['forums'] as $forum) { $forum = intval($forum); if(!$searchin[$forum]) { switch($db->type) { case "pgsql": $query = $db->query(" SELECT DISTINCT f.fid FROM ".TABLE_PREFIX."forums f LEFT JOIN ".TABLE_PREFIX."forumpermissions p ON (f.fid=p.fid AND p.gid IN (".$user_groups.")) WHERE (','||parentlist||',' LIKE ',%{$forum}%,') = true AND active!=0 AND (p.fid IS NULL OR p.cansearch=1) "); break; case "sqlite": $query = $db->query(" SELECT DISTINCT f.fid FROM ".TABLE_PREFIX."forums f LEFT JOIN ".TABLE_PREFIX."forumpermissions p ON (f.fid=p.fid AND p.gid IN (".$user_groups.")) WHERE (','||parentlist||',' LIKE ',%{$forum}%,') > 0 AND active!=0 AND (p.fid = NULL OR p.cansearch=1) "); break; default: $query = $db->query(" SELECT DISTINCT f.fid FROM ".TABLE_PREFIX."forums f LEFT JOIN ".TABLE_PREFIX."forumpermissions p ON (f.fid=p.fid AND p.gid IN (".$user_groups.")) WHERE INSTR(CONCAT(',',parentlist,','),',$forum,') > 0 AND active!=0 AND (ISNULL(p.fid) OR p.cansearch=1) "); } while($sforum = $db->fetch_array($query)) { $fidlist[] = $sforum['fid']; } } } if(count($fidlist) == 1) { $forumin .= " AND t.fid='$forum' "; $searchin[$fid] = 1; } else { if(count($fidlist) > 1) { $forumin = " AND t.fid IN (".implode(',', $fidlist).")"; } } } $permsql = ""; $onlyusfids = array(); // Check group permissions if we can't view threads not started by us $group_permissions = forum_permissions(); foreach($group_permissions as $fid => $forum_permissions) { if($forum_permissions['canonlyviewownthreads'] == 1) { $onlyusfids[] = $fid;
| } } } $post_usersql = ''; $thread_usersql = ''; if($search['author']) { $userids = array(); if($search['matchusername']) { $query = $db->simple_select("users", "uid", "username='".$db->escape_string($search['author'])."'"); } else { $search['author'] = my_strtolower($search['author']); $query = $db->simple_select("users", "uid", "LOWER(username) LIKE '%".$db->escape_string_like($db->escape_string($search['author']))."%'"); } while($user = $db->fetch_array($query)) { $userids[] = $user['uid']; } if(count($userids) < 1) { error($lang->error_nosearchresults); } else { $userids = implode(',', $userids); $post_usersql = " AND p.uid IN (".$userids.")"; $thread_usersql = " AND t.uid IN (".$userids.")"; } } $datecut = ''; if($search['postdate']) { if($search['pddir'] == 0) { $datecut = "<="; } else { $datecut = ">="; } $now = TIME_NOW; $datelimit = $now-(86400 * $search['postdate']); $datecut .= "'$datelimit'"; $post_datecut = " AND p.dateline $datecut"; $thread_datecut = " AND t.dateline $datecut"; }
$thread_replycut = ''; if($search['numreplies'] != '' && $search['findthreadst']) { if(intval($search['findthreadst']) == 1) { $thread_replycut = " AND t.replies >= '".intval($search['numreplies'])."'"; } else { $thread_replycut = " AND t.replies <= '".intval($search['numreplies'])."'"; } }
$thread_prefixcut = ''; $prefixlist = array(); if($search['threadprefix'] && $search['threadprefix'][0] != 'any') { foreach($search['threadprefix'] as $threadprefix) { $threadprefix = intval($threadprefix); $prefixlist[] = $threadprefix; } } if(count($prefixlist) == 1) { $thread_prefixcut .= " AND t.prefix='$threadprefix' "; } else { if(count($prefixlist) > 1) { $thread_prefixcut = " AND t.prefix IN (".implode(',', $prefixlist).")"; } }
$forumin = ''; $fidlist = array(); $searchin = array(); if($search['forums'][0] != "all") { if(!is_array($search['forums'])) { $search['forums'] = array(intval($search['forums'])); } // Generate a comma separated list of all groups the user belongs to $user_groups = $mybb->user['usergroup']; if($mybb->user['additionalgroups']) { $user_groups .= ",".$mybb->user['additionalgroups'];
// Setup some quick permissions for us $fcache = $cache->read("forumpermissions"); $add_groups = explode(",", $mybb->user['additionalgroups']); } foreach($search['forums'] as $forum) { $forum = intval($forum); if(!$searchin[$forum]) { if(is_array($add_groups)) { $can_search = 0; foreach($add_groups as $add_group) { // Check to make sure that we have sufficient permissions to search this forum if(!is_array($fcache[$forum][$add_group]) || $fcache[$forum][$add_group]['cansearch'] == 1 || $mybb->usergroup['cansearch'] == 1) { $can_search = 1; } }
if($can_search == 0) { // We can't search this forum... continue; } }
switch($db->type) { case "pgsql": $query = $db->simple_select("forums", "DISTINCT fid", "(','||parentlist||',' LIKE ',%{$forum}%,') = true AND active != 0"); break; case "sqlite": $query = $db->simple_select("forums", "DISTINCT fid", "(','||parentlist||',' LIKE ',%{$forum}%,') > 0 AND active != 0"); break; default: $query = $db->simple_select("forums", "DISTINCT fid", "INSTR(CONCAT(',',parentlist,','),',{$forum},') > 0 AND active != 0"); }
while($sforum = $db->fetch_array($query)) { $fidlist[] = $sforum['fid']; } } } if(count($fidlist) == 1) { $forumin .= " AND t.fid='$forum' "; $searchin[$fid] = 1; } else { if(count($fidlist) > 1) { $forumin = " AND t.fid IN (".implode(',', $fidlist).")"; } } }
$permsql = ""; $onlyusfids = array();
// Check group permissions if we can't view threads not started by us if($group_permissions = forum_permissions()) { foreach($group_permissions as $fid => $forum_permissions) { if($forum_permissions['canonlyviewownthreads'] == 1) { $onlyusfids[] = $fid; }
|
}
|
}
|
}
| }
|
if(!empty($onlyusfids)) { $permsql .= "AND ((t.fid IN(".implode(',', $onlyusfids).") AND t.uid='{$mybb->user['uid']}') OR t.fid NOT IN(".implode(',', $onlyusfids)."))"; }
|
if(!empty($onlyusfids)) { $permsql .= "AND ((t.fid IN(".implode(',', $onlyusfids).") AND t.uid='{$mybb->user['uid']}') OR t.fid NOT IN(".implode(',', $onlyusfids)."))"; }
|
|
|
$unsearchforums = get_unsearchable_forums(); if($unsearchforums) {
| $unsearchforums = get_unsearchable_forums(); if($unsearchforums) {
|
Zeile 837 | Zeile 1001 |
---|
{ $permsql .= " AND t.fid NOT IN ($inactiveforums)"; }
|
{ $permsql .= " AND t.fid NOT IN ($inactiveforums)"; }
|
|
|
$visiblesql = $post_visiblesql = $plain_post_visiblesql = ""; if(isset($search['visible'])) { if($search['visible'] == 1)
|
$visiblesql = $post_visiblesql = $plain_post_visiblesql = ""; if(isset($search['visible'])) { if($search['visible'] == 1)
|
{
| {
|
$visiblesql = " AND t.visible = '1'";
|
$visiblesql = " AND t.visible = '1'";
|
|
|
if($search['postthread'] == 1) { $post_visiblesql = " AND p.visible = '1'";
| if($search['postthread'] == 1) { $post_visiblesql = " AND p.visible = '1'";
|
Zeile 854 | Zeile 1018 |
---|
else { $visiblesql = " AND t.visible != '1'";
|
else { $visiblesql = " AND t.visible != '1'";
|
|
|
if($search['postthread'] == 1) { $post_visiblesql = " AND p.visible != '1'";
| if($search['postthread'] == 1) { $post_visiblesql = " AND p.visible != '1'";
|
Zeile 868 | Zeile 1032 |
---|
{ $tidsql = " AND t.tid='".intval($search['tid'])."'"; }
|
{ $tidsql = " AND t.tid='".intval($search['tid'])."'"; }
|
|
|
$limitsql = ''; if(intval($mybb->settings['searchhardlimit']) > 0) {
| $limitsql = ''; if(intval($mybb->settings['searchhardlimit']) > 0) {
|
Zeile 899 | Zeile 1063 |
---|
} } }
|
} } }
|
|
|
$query = $db->query(" SELECT p.pid, p.tid FROM ".TABLE_PREFIX."posts p
| $query = $db->query(" SELECT p.pid, p.tid FROM ".TABLE_PREFIX."posts p
|
Zeile 912 | Zeile 1076 |
---|
$posts[$post['pid']] = $post['pid']; $threads[$post['tid']] = $post['tid']; }
|
$posts[$post['pid']] = $post['pid']; $threads[$post['tid']] = $post['tid']; }
|
|
|
if(count($posts) < 1 && count($threads) < 1) { error($lang->error_nosearchresults);
| if(count($posts) < 1 && count($threads) < 1) { error($lang->error_nosearchresults);
|
Zeile 1056 | Zeile 1220 |
---|
$search['author'] = my_strtolower($search['author']); $query = $db->simple_select("users", "uid", "LOWER(username) LIKE '%".$db->escape_string_like($db->escape_string($search['author']))."%'"); }
|
$search['author'] = my_strtolower($search['author']); $query = $db->simple_select("users", "uid", "LOWER(username) LIKE '%".$db->escape_string_like($db->escape_string($search['author']))."%'"); }
|
|
|
while($user = $db->fetch_array($query)) { $userids[] = $user['uid']; }
|
while($user = $db->fetch_array($query)) { $userids[] = $user['uid']; }
|
|
|
if(count($userids) < 1) { error($lang->error_nosearchresults);
| if(count($userids) < 1) { error($lang->error_nosearchresults);
|
Zeile 1090 | Zeile 1254 |
---|
$post_datecut = " AND p.dateline $datecut"; $thread_datecut = " AND t.dateline $datecut"; }
|
$post_datecut = " AND p.dateline $datecut"; $thread_datecut = " AND t.dateline $datecut"; }
|
|
|
$thread_replycut = ''; if($search['numreplies'] != '' && $search['findthreadst']) {
| $thread_replycut = ''; if($search['numreplies'] != '' && $search['findthreadst']) {
|
Zeile 1103 | Zeile 1267 |
---|
$thread_replycut = " AND t.replies <= '".intval($search['numreplies'])."'"; } }
|
$thread_replycut = " AND t.replies <= '".intval($search['numreplies'])."'"; } }
|
|
|
$thread_prefixcut = '';
|
$thread_prefixcut = '';
|
if($search['threadprefix'] && $search['threadprefix'] != 'any') { $thread_prefixcut = " AND t.prefix='".intval($search['threadprefix'])."'"; }
| $prefixlist = array(); if($search['threadprefix'] && $search['threadprefix'][0] != 'any') { foreach($search['threadprefix'] as $threadprefix) { $threadprefix = intval($threadprefix); $prefixlist[] = $threadprefix; } } if(count($prefixlist) == 1) { $thread_prefixcut .= " AND t.prefix='$threadprefix' "; } else { if(count($prefixlist) > 1) { $thread_prefixcut = " AND t.prefix IN (".implode(',', $prefixlist).")"; } }
|
$forumin = ''; $fidlist = array(); $searchin = array();
|
$forumin = ''; $fidlist = array(); $searchin = array();
|
if($search['forums'] != "all")
| if($search['forums'][0] != "all")
|
{ if(!is_array($search['forums'])) {
| { if(!is_array($search['forums'])) {
|
Zeile 1124 | Zeile 1304 |
---|
if($mybb->user['additionalgroups']) { $user_groups .= ",".$mybb->user['additionalgroups'];
|
if($mybb->user['additionalgroups']) { $user_groups .= ",".$mybb->user['additionalgroups'];
|
}
| }
|
foreach($search['forums'] as $forum) { $forum = intval($forum);
| foreach($search['forums'] as $forum) { $forum = intval($forum);
|
Zeile 1135 | Zeile 1315 |
---|
case "pgsql": case "sqlite": $query = $db->query("
|
case "pgsql": case "sqlite": $query = $db->query("
|
SELECT f.fid FROM ".TABLE_PREFIX."forums f
| SELECT f.fid FROM ".TABLE_PREFIX."forums f
|
LEFT JOIN ".TABLE_PREFIX."forumpermissions p ON (f.fid=p.fid AND p.gid IN (".$user_groups."))
|
LEFT JOIN ".TABLE_PREFIX."forumpermissions p ON (f.fid=p.fid AND p.gid IN (".$user_groups."))
|
WHERE INSTR(','||parentlist||',',',$forum,') > 0 AND active!=0 AND (ISNULL(p.fid) OR p.cansearch=1)
| WHERE INSTR(','||parentlist||',',',$forum,') > 0 AND active!=0 AND ((p.fid) IS NULL OR p.cansearch=1)
|
"); break; default: $query = $db->query("
|
"); break; default: $query = $db->query("
|
SELECT f.fid FROM ".TABLE_PREFIX."forums f
| SELECT f.fid FROM ".TABLE_PREFIX."forums f
|
LEFT JOIN ".TABLE_PREFIX."forumpermissions p ON (f.fid=p.fid AND p.gid IN (".$user_groups."))
|
LEFT JOIN ".TABLE_PREFIX."forumpermissions p ON (f.fid=p.fid AND p.gid IN (".$user_groups."))
|
WHERE INSTR(CONCAT(',',parentlist,','),',$forum,') > 0 AND active!=0 AND (ISNULL(p.fid) OR p.cansearch=1)
| WHERE INSTR(CONCAT(',',parentlist,','),',$forum,') > 0 AND active!=0 AND ((p.fid) IS NULL OR p.cansearch=1)
|
"); } while($sforum = $db->fetch_array($query))
| "); } while($sforum = $db->fetch_array($query))
|
Zeile 1159 | Zeile 1339 |
---|
{ $forumin .= " AND t.fid='$forum' "; $searchin[$fid] = 1;
|
{ $forumin .= " AND t.fid='$forum' "; $searchin[$fid] = 1;
|
} else
| } else
|
{
|
{
|
|
|
if(count($fidlist) > 1) { $forumin = " AND t.fid IN (".implode(',', $fidlist).")";
| if(count($fidlist) > 1) { $forumin = " AND t.fid IN (".implode(',', $fidlist).")";
|
Zeile 1171 | Zeile 1351 |
---|
} $permsql = ""; $onlyusfids = array();
|
} $permsql = ""; $onlyusfids = array();
|
|
|
// Check group permissions if we can't view threads not started by us $group_permissions = forum_permissions(); foreach($group_permissions as $fid => $forum_permissions) { if($forum_permissions['canonlyviewownthreads'] == 1)
|
// Check group permissions if we can't view threads not started by us $group_permissions = forum_permissions(); foreach($group_permissions as $fid => $forum_permissions) { if($forum_permissions['canonlyviewownthreads'] == 1)
|
{
| {
|
$onlyusfids[] = $fid; } }
| $onlyusfids[] = $fid; } }
|
Zeile 1185 | Zeile 1365 |
---|
{ $permsql .= "AND ((t.fid IN(".implode(',', $onlyusfids).") AND t.uid='{$mybb->user['uid']}') OR t.fid NOT IN(".implode(',', $onlyusfids)."))"; }
|
{ $permsql .= "AND ((t.fid IN(".implode(',', $onlyusfids).") AND t.uid='{$mybb->user['uid']}') OR t.fid NOT IN(".implode(',', $onlyusfids)."))"; }
|
|
|
$unsearchforums = get_unsearchable_forums(); if($unsearchforums) {
| $unsearchforums = get_unsearchable_forums(); if($unsearchforums) {
|
Zeile 1193 | Zeile 1373 |
---|
} $inactiveforums = get_inactive_forums(); if($inactiveforums)
|
} $inactiveforums = get_inactive_forums(); if($inactiveforums)
|
{
| {
|
$permsql .= " AND t.fid NOT IN ($inactiveforums)"; }
|
$permsql .= " AND t.fid NOT IN ($inactiveforums)"; }
|
|
|
$visiblesql = $post_visiblesql = $plain_post_visiblesql = ""; if(isset($search['visible'])) { if($search['visible'] == 1) { $visiblesql = " AND t.visible = '1'";
|
$visiblesql = $post_visiblesql = $plain_post_visiblesql = ""; if(isset($search['visible'])) { if($search['visible'] == 1) { $visiblesql = " AND t.visible = '1'";
|
|
|
if($search['postthread'] == 1) { $post_visiblesql = " AND p.visible = '1'";
| if($search['postthread'] == 1) { $post_visiblesql = " AND p.visible = '1'";
|
Zeile 1213 | Zeile 1393 |
---|
else { $visiblesql = " AND t.visible != '1'";
|
else { $visiblesql = " AND t.visible != '1'";
|
|
|
if($search['postthread'] == 1) { $post_visiblesql = " AND p.visible != '1'"; $plain_post_visiblesql = " AND visible != '1'"; } }
|
if($search['postthread'] == 1) { $post_visiblesql = " AND p.visible != '1'"; $plain_post_visiblesql = " AND visible != '1'"; } }
|
}
| }
|
// Searching a specific thread? if($search['tid']) { $tidsql = " AND t.tid='".intval($search['tid'])."'"; }
|
// Searching a specific thread? if($search['tid']) { $tidsql = " AND t.tid='".intval($search['tid'])."'"; }
|
|
|
$limitsql = ''; if(intval($mybb->settings['searchhardlimit']) > 0) {
| $limitsql = ''; if(intval($mybb->settings['searchhardlimit']) > 0) {
|