| Zeile 8 | Zeile 8 |
|---|
*
* $Id$
*/
|
*
* $Id$
*/
|
| |
define("IN_MYBB", 1);
define("IGNORE_CLEAN_VARS", "sid");
define('THIS_SCRIPT', 'search.php');
|
define("IN_MYBB", 1);
define("IGNORE_CLEAN_VARS", "sid");
define('THIS_SCRIPT', 'search.php');
|
|
|
$templatelist = "search,forumdisplay_thread_gotounread,search_results_threads_thread,search_results_threads,search_results_posts,search_results_posts_post";
$templatelist .= ",multipage_nextpage,multipage_page_current,multipage_page,multipage_start,multipage_end,multipage,forumdisplay_thread_multipage_more,forumdisplay_thread_multipage_page,forumdisplay_thread_multipage";
|
$templatelist = "search,forumdisplay_thread_gotounread,search_results_threads_thread,search_results_threads,search_results_posts,search_results_posts_post";
$templatelist .= ",multipage_nextpage,multipage_page_current,multipage_page,multipage_start,multipage_end,multipage,forumdisplay_thread_multipage_more,forumdisplay_thread_multipage_page,forumdisplay_thread_multipage";
|
$templatelist .= ",search_results_posts_inlinecheck,search_results_posts_nocheck,search_results_threads_inlinecheck,search_results_threads_nocheck,search_results_inlinemodcol,search_results_posts_inlinemoderation_custom_tool,search_results_posts_inlinemoderation_custom,search_results_posts_inlinemoderation,search_results_threads_inlinemoderation_custom_tool,search_results_threads_inlinemoderation_custom,search_results_threads_inlinemoderation,search_orderarrow,search_moderator_options";
$templatelist .= ",forumdisplay_thread_attachment_count,forumdisplay_threadlist_inlineedit_js,search_threads_inlinemoderation_selectall";
| $templatelist .= ",search_results_posts_inlinecheck,search_results_posts_nocheck,search_results_threads_inlinecheck,search_results_threads_nocheck,search_results_inlinemodcol,search_results_posts_inlinemoderation_custom_tool";
$templatelist .= ",search_results_posts_inlinemoderation_custom,search_results_posts_inlinemoderation,search_results_threads_inlinemoderation_custom_tool,search_results_threads_inlinemoderation_custom,search_results_threads_inlinemoderation,search_orderarrow,search_moderator_options";
$templatelist .= ",forumdisplay_thread_attachment_count,forumdisplay_threadlist_inlineedit_js,search_threads_inlinemoderation_selectall,search_posts_inlinemoderation_selectall,multipage_prevpage";
|
require_once "./global.php";
|
require_once "./global.php";
|
| |
|
require_once MYBB_ROOT."inc/functions_post.php";
require_once MYBB_ROOT."inc/functions_search.php";
require_once MYBB_ROOT."inc/class_parser.php";
| require_once MYBB_ROOT."inc/functions_post.php";
require_once MYBB_ROOT."inc/functions_search.php";
require_once MYBB_ROOT."inc/class_parser.php";
|
| Zeile 49 | Zeile 51 |
|---|
$limitsql = "";
if(intval($mybb->settings['searchhardlimit']) > 0)
{
|
$limitsql = "";
if(intval($mybb->settings['searchhardlimit']) > 0)
{
|
$limitsql = "ORDER BY t.dateline DESC LIMIT ".intval($mybb->settings['searchhardlimit']);
| $limitsql = "LIMIT ".intval($mybb->settings['searchhardlimit']);
|
}
if($mybb->input['action'] == "results")
| }
if($mybb->input['action'] == "results")
|
| Zeile 66 | Zeile 68 |
|---|
$plugins->run_hooks("search_results_start");
// Decide on our sorting fields and sorting order.
|
$plugins->run_hooks("search_results_start");
// Decide on our sorting fields and sorting order.
|
$order = my_strtolower(htmlspecialchars($mybb->input['order']));
$sortby = my_strtolower(htmlspecialchars($mybb->input['sortby']));
| $order = my_strtolower(htmlspecialchars_uni($mybb->input['order']));
$sortby = my_strtolower(htmlspecialchars_uni($mybb->input['sortby']));
|
switch($sortby)
{
|
switch($sortby)
{
|
| Zeile 127 | Zeile 129 |
|---|
$oppsort = $lang->desc;
}
|
$oppsort = $lang->desc;
}
|
if(!$mybb->settings['threadsperpage'])
| if(!$mybb->settings['threadsperpage'] || (int)$mybb->settings['threadsperpage'] < 1)
|
{
$mybb->settings['threadsperpage'] = 20;
}
| {
$mybb->settings['threadsperpage'] = 20;
}
|
| Zeile 259 | Zeile 261 |
|---|
if($search['querycache'] != "")
{
$where_conditions = $search['querycache'];
|
if($search['querycache'] != "")
{
$where_conditions = $search['querycache'];
|
$query = $db->simple_select("threads t", "t.tid", $where_conditions. " AND {$unapproved_where} AND t.closed NOT LIKE 'moved|%' {$limitsql}");
| $query = $db->simple_select("threads t", "t.tid", $where_conditions. " AND {$unapproved_where} AND t.closed NOT LIKE 'moved|%' ORDER BY t.lastpost DESC {$limitsql}");
|
while($thread = $db->fetch_array($query))
{
$threads[$thread['tid']] = $thread['tid'];
| while($thread = $db->fetch_array($query))
{
$threads[$thread['tid']] = $thread['tid'];
|
| Zeile 278 | Zeile 280 |
|---|
$where_conditions = "t.tid IN (".$search['threads'].")";
}
// This search doesn't use a query cache, results stored in search table.
|
$where_conditions = "t.tid IN (".$search['threads'].")";
}
// This search doesn't use a query cache, results stored in search table.
|
else
{
| else
{
|
$where_conditions = "t.tid IN (".$search['threads'].")";
$query = $db->simple_select("threads t", "COUNT(t.tid) AS resultcount", $where_conditions. " AND {$unapproved_where} AND t.closed NOT LIKE 'moved|%' {$limitsql}");
$count = $db->fetch_array($query);
| $where_conditions = "t.tid IN (".$search['threads'].")";
$query = $db->simple_select("threads t", "COUNT(t.tid) AS resultcount", $where_conditions. " AND {$unapproved_where} AND t.closed NOT LIKE 'moved|%' {$limitsql}");
$count = $db->fetch_array($query);
|
| Zeile 299 | Zeile 301 |
|---|
foreach($group_permissions as $fid => $forum_permissions)
{
if($forum_permissions['canonlyviewownthreads'] == 1)
|
foreach($group_permissions as $fid => $forum_permissions)
{
if($forum_permissions['canonlyviewownthreads'] == 1)
|
{
| {
|
$onlyusfids[] = $fid;
}
}
if(!empty($onlyusfids))
|
$onlyusfids[] = $fid;
}
}
if(!empty($onlyusfids))
|
{
| {
|
$permsql .= "AND ((t.fid IN(".implode(',', $onlyusfids).") AND t.uid='{$mybb->user['uid']}') OR t.fid NOT IN(".implode(',', $onlyusfids)."))";
}
$unsearchforums = get_unsearchable_forums();
if($unsearchforums)
|
$permsql .= "AND ((t.fid IN(".implode(',', $onlyusfids).") AND t.uid='{$mybb->user['uid']}') OR t.fid NOT IN(".implode(',', $onlyusfids)."))";
}
$unsearchforums = get_unsearchable_forums();
if($unsearchforums)
|
{
| {
|
$permsql .= " AND t.fid NOT IN ($unsearchforums)";
}
$inactiveforums = get_inactive_forums();
| $permsql .= " AND t.fid NOT IN ($unsearchforums)";
}
$inactiveforums = get_inactive_forums();
|
| Zeile 364 | Zeile 366 |
|---|
while($readthread = $db->fetch_array($query))
{
$thread_cache[$readthread['tid']]['lastread'] = $readthread['dateline'];
|
while($readthread = $db->fetch_array($query))
{
$thread_cache[$readthread['tid']]['lastread'] = $readthread['dateline'];
|
}
}
| }
}
|
if(!$mybb->settings['maxmultipagelinks'])
{
$mybb->settings['maxmultipagelinks'] = 5;
| if(!$mybb->settings['maxmultipagelinks'])
{
$mybb->settings['maxmultipagelinks'] = 5;
|
| Zeile 402 | Zeile 404 |
|---|
if($icon_cache[$thread['icon']])
{
$posticon = $icon_cache[$thread['icon']];
|
if($icon_cache[$thread['icon']])
{
$posticon = $icon_cache[$thread['icon']];
|
| | $posticon['path'] = htmlspecialchars_uni($posticon['path']);
$posticon['name'] = htmlspecialchars_uni($posticon['name']);
|
$icon = "<img src=\"".$posticon['path']."\" alt=\"".$posticon['name']."\" />";
}
else
| $icon = "<img src=\"".$posticon['path']."\" alt=\"".$posticon['name']."\" />";
}
else
|
| Zeile 489 | Zeile 493 |
|---|
}
$folder .= "folder";
|
}
$folder .= "folder";
|
if(!$mybb->settings['postsperpage'])
| if(!$mybb->settings['postsperpage'] || (int)$mybb->settings['postsperpage'] < 1)
|
{
|
{
|
$mybb->settings['postperpage'] = 20;
| $mybb->settings['postsperpage'] = 20;
|
}
$thread['pages'] = 0;
| }
$thread['pages'] = 0;
|
| Zeile 685 | Zeile 689 |
|---|
$moderated_forums .= ','.$forum['fid'];
$test_moderated_forums[$forum['fid']] = $forum['fid'];
}
|
$moderated_forums .= ','.$forum['fid'];
$test_moderated_forums[$forum['fid']] = $forum['fid'];
}
|
$p_unapproved_where = "visible >= 0";
| $p_unapproved_where = "(visible > 0 OR (visible=0 AND fid IN ({$moderated_forums})))";
|
$t_unapproved_where = "visible < 0 AND fid NOT IN ({$moderated_forums})";
}
else
|
$t_unapproved_where = "visible < 0 AND fid NOT IN ({$moderated_forums})";
}
else
|
{
| {
|
// Normal users
$p_unapproved_where = 'visible=1';
$t_unapproved_where = 'visible < 1';
| // Normal users
$p_unapproved_where = 'visible=1';
$t_unapproved_where = 'visible < 1';
|
| Zeile 702 | Zeile 706 |
|---|
}
if(strpos($sortfield, 'p.') !== false)
|
}
if(strpos($sortfield, 'p.') !== false)
|
{
| {
|
$post_cache_options['order_by'] = str_replace('p.', '', $sortfield);
$post_cache_options['order_dir'] = $order;
|
$post_cache_options['order_by'] = str_replace('p.', '', $sortfield);
$post_cache_options['order_dir'] = $order;
|
}
| }
|
$tids = array();
$pids = array();
// Make sure the posts we're viewing we have permission to view.
| $tids = array();
$pids = array();
// Make sure the posts we're viewing we have permission to view.
|
| Zeile 720 | Zeile 724 |
|---|
if(!empty($pids))
{
$temp_pids = array();
|
if(!empty($pids))
{
$temp_pids = array();
|
| |
$group_permissions = forum_permissions();
$permsql = '';
$onlyusfids = array();
foreach($group_permissions as $fid => $forum_permissions)
{
if(!empty($forum_permissions['canonlyviewownthreads']))
{
$onlyusfids[] = $fid;
}
}
if($onlyusfids)
{
$permsql .= " OR (fid IN(".implode(',', $onlyusfids).") AND uid!={$mybb->user['uid']})";
}
$unsearchforums = get_unsearchable_forums();
if($unsearchforums)
{
$permsql .= " OR fid IN ($unsearchforums)";
}
$inactiveforums = get_inactive_forums();
if($inactiveforums)
{
$permsql .= " OR fid IN ($inactiveforums)";
}
|
// Check the thread records as well. If we don't have permissions, remove them from the listing.
|
// Check the thread records as well. If we don't have permissions, remove them from the listing.
|
$query = $db->simple_select("threads", "tid", "tid IN(".$db->escape_string(implode(',', $pids)).") AND ({$t_unapproved_where} OR closed LIKE 'moved|%')");
| $query = $db->simple_select("threads", "tid", "tid IN(".$db->escape_string(implode(',', $pids)).") AND ({$t_unapproved_where}{$permsql} OR closed LIKE 'moved|%')");
|
while($thread = $db->fetch_array($query))
{
if(array_key_exists($thread['tid'], $tids) != false)
| while($thread = $db->fetch_array($query))
{
if(array_key_exists($thread['tid'], $tids) != false)
|
| Zeile 799 | Zeile 830 |
|---|
if($icon_cache[$post['icon']])
{
$posticon = $icon_cache[$post['icon']];
|
if($icon_cache[$post['icon']])
{
$posticon = $icon_cache[$post['icon']];
|
| | $posticon['path'] = htmlspecialchars_uni($posticon['path']);
$posticon['name'] = htmlspecialchars_uni($posticon['name']);
|
$icon = "<img src=\"".$posticon['path']."\" alt=\"".$posticon['name']."\" />";
}
else
| $icon = "<img src=\"".$posticon['path']."\" alt=\"".$posticon['name']."\" />";
}
else
|
| Zeile 894 | Zeile 927 |
|---|
$folder .= "hot";
$folder_label .= $lang->icon_hot;
}
|
$folder .= "hot";
$folder_label .= $lang->icon_hot;
}
|
if($thread['thread_closed'] == 1)
| if($post['thread_closed'] == 1)
|
{
$folder .= "lock";
$folder_label .= $lang->icon_lock;
| {
$folder .= "lock";
$folder_label .= $lang->icon_lock;
|
| Zeile 978 | Zeile 1011 |
|---|
$num_results = $db->num_rows($query);
$lang->page_selected = $lang->sprintf($lang->page_selected, intval($num_results));
$lang->select_all = $lang->sprintf($lang->select_all, intval($postcount));
|
$num_results = $db->num_rows($query);
$lang->page_selected = $lang->sprintf($lang->page_selected, intval($num_results));
$lang->select_all = $lang->sprintf($lang->select_all, intval($postcount));
|
$lang->all_selected = $lang->sprintf($lang->page_selected, intval($postcount));
| $lang->all_selected = $lang->sprintf($lang->all_selected, intval($postcount));
|
eval("\$selectall = \"".$templates->get("search_posts_inlinemoderation_selectall")."\";");
$customthreadtools = $customposttools = '';
| eval("\$selectall = \"".$templates->get("search_posts_inlinemoderation_selectall")."\";");
$customthreadtools = $customposttools = '';
|
| Zeile 1215 | Zeile 1248 |
|---|
elseif($mybb->input['action'] == "getnew")
{
|
elseif($mybb->input['action'] == "getnew")
{
|
$where_sql = "t.lastpost >= '".$mybb->user['lastvisit']."'";
| $where_sql = "t.lastpost >= '".intval($mybb->user['lastvisit'])."'";
|
if($mybb->input['fid'])
{
|
if($mybb->input['fid'])
{
|
| Zeile 1464 | Zeile 1497 |
|---|
{
$sortorder = "desc";
}
|
{
$sortorder = "desc";
}
|
$sortby = htmlspecialchars($mybb->input['sortby']);
| $sortby = htmlspecialchars_uni($mybb->input['sortby']);
|
$plugins->run_hooks("search_do_search_end");
redirect("search.php?action=results&sid=".$sid."&sortby=".$sortby."&order=".$sortorder, $lang->redirect_searchresults);
}
| $plugins->run_hooks("search_do_search_end");
redirect("search.php?action=results&sid=".$sid."&sortby=".$sortby."&order=".$sortorder, $lang->redirect_searchresults);
}
|
| Zeile 1490 | Zeile 1523 |
|---|
{
error($lang->error_closedinvalidforum);
}
|
{
error($lang->error_closedinvalidforum);
}
|
if($forum_permissions['canview'] == 0 || $forum_permissions['canviewthreads'] != 1)
| if($forum_permissions['canview'] == 0 || $forum_permissions['canviewthreads'] != 1 || (isset($forum_permissions['canonlyviewownthreads']) && $forum_permissions['canonlyviewownthreads'] != 0 && $thread['uid'] != $mybb->user['uid']))
|
{
error_no_permission();
}
| {
error_no_permission();
}
|