Zeile 6 | Zeile 6 |
---|
* Website: http://mybb.com * License: http://mybb.com/about/license *
|
* Website: http://mybb.com * License: http://mybb.com/about/license *
|
* $Id: search.php 5828 2012-05-08 16:06:16Z Tomm $
| * $Id$
|
*/
|
*/
|
| |
define("IN_MYBB", 1); define("IGNORE_CLEAN_VARS", "sid"); define('THIS_SCRIPT', 'search.php');
|
define("IN_MYBB", 1); define("IGNORE_CLEAN_VARS", "sid"); define('THIS_SCRIPT', 'search.php');
|
|
|
$templatelist = "search,forumdisplay_thread_gotounread,search_results_threads_thread,search_results_threads,search_results_posts,search_results_posts_post"; $templatelist .= ",multipage_nextpage,multipage_page_current,multipage_page,multipage_start,multipage_end,multipage,forumdisplay_thread_multipage_more,forumdisplay_thread_multipage_page,forumdisplay_thread_multipage";
|
$templatelist = "search,forumdisplay_thread_gotounread,search_results_threads_thread,search_results_threads,search_results_posts,search_results_posts_post"; $templatelist .= ",multipage_nextpage,multipage_page_current,multipage_page,multipage_start,multipage_end,multipage,forumdisplay_thread_multipage_more,forumdisplay_thread_multipage_page,forumdisplay_thread_multipage";
|
$templatelist .= ",search_results_posts_inlinecheck,search_results_posts_nocheck,search_results_threads_inlinecheck,search_results_threads_nocheck,search_results_inlinemodcol,search_results_posts_inlinemoderation_custom_tool,search_results_posts_inlinemoderation_custom,search_results_posts_inlinemoderation,search_results_threads_inlinemoderation_custom_tool,search_results_threads_inlinemoderation_custom,search_results_threads_inlinemoderation,search_orderarrow,search_moderator_options"; $templatelist .= ",forumdisplay_thread_attachment_count,forumdisplay_threadlist_inlineedit_js,search_threads_inlinemoderation_selectall";
| $templatelist .= ",search_results_posts_inlinecheck,search_results_posts_nocheck,search_results_threads_inlinecheck,search_results_threads_nocheck,search_results_inlinemodcol,search_results_posts_inlinemoderation_custom_tool"; $templatelist .= ",search_results_posts_inlinemoderation_custom,search_results_posts_inlinemoderation,search_results_threads_inlinemoderation_custom_tool,search_results_threads_inlinemoderation_custom,search_results_threads_inlinemoderation,search_orderarrow,search_moderator_options"; $templatelist .= ",forumdisplay_thread_attachment_count,forumdisplay_threadlist_inlineedit_js,search_threads_inlinemoderation_selectall,search_posts_inlinemoderation_selectall,multipage_prevpage";
|
require_once "./global.php";
|
require_once "./global.php";
|
|
|
require_once MYBB_ROOT."inc/functions_post.php"; require_once MYBB_ROOT."inc/functions_search.php"; require_once MYBB_ROOT."inc/class_parser.php";
| require_once MYBB_ROOT."inc/functions_post.php"; require_once MYBB_ROOT."inc/functions_search.php"; require_once MYBB_ROOT."inc/class_parser.php";
|
Zeile 49 | Zeile 51 |
---|
$limitsql = ""; if(intval($mybb->settings['searchhardlimit']) > 0) {
|
$limitsql = ""; if(intval($mybb->settings['searchhardlimit']) > 0) {
|
$limitsql = "ORDER BY t.dateline DESC LIMIT ".intval($mybb->settings['searchhardlimit']);
| $limitsql = "LIMIT ".intval($mybb->settings['searchhardlimit']);
|
}
if($mybb->input['action'] == "results")
| }
if($mybb->input['action'] == "results")
|
Zeile 66 | Zeile 68 |
---|
$plugins->run_hooks("search_results_start");
// Decide on our sorting fields and sorting order.
|
$plugins->run_hooks("search_results_start");
// Decide on our sorting fields and sorting order.
|
$order = my_strtolower(htmlspecialchars($mybb->input['order'])); $sortby = my_strtolower(htmlspecialchars($mybb->input['sortby']));
| $order = my_strtolower(htmlspecialchars_uni($mybb->input['order'])); $sortby = my_strtolower(htmlspecialchars_uni($mybb->input['sortby']));
|
switch($sortby) {
| switch($sortby) {
|
Zeile 127 | Zeile 129 |
---|
$oppsort = $lang->desc; }
|
$oppsort = $lang->desc; }
|
if(!$mybb->settings['threadsperpage'])
| if(!$mybb->settings['threadsperpage'] || (int)$mybb->settings['threadsperpage'] < 1)
|
{ $mybb->settings['threadsperpage'] = 20; }
| { $mybb->settings['threadsperpage'] = 20; }
|
Zeile 259 | Zeile 261 |
---|
if($search['querycache'] != "") { $where_conditions = $search['querycache'];
|
if($search['querycache'] != "") { $where_conditions = $search['querycache'];
|
$query = $db->simple_select("threads t", "t.tid", $where_conditions. " AND {$unapproved_where} AND t.closed NOT LIKE 'moved|%' {$limitsql}");
| $query = $db->simple_select("threads t", "t.tid", $where_conditions. " AND {$unapproved_where} AND t.closed NOT LIKE 'moved|%' ORDER BY t.lastpost DESC {$limitsql}");
|
while($thread = $db->fetch_array($query)) { $threads[$thread['tid']] = $thread['tid'];
| while($thread = $db->fetch_array($query)) { $threads[$thread['tid']] = $thread['tid'];
|
Zeile 278 | Zeile 280 |
---|
$where_conditions = "t.tid IN (".$search['threads'].")"; } // This search doesn't use a query cache, results stored in search table.
|
$where_conditions = "t.tid IN (".$search['threads'].")"; } // This search doesn't use a query cache, results stored in search table.
|
else {
| else {
|
$where_conditions = "t.tid IN (".$search['threads'].")"; $query = $db->simple_select("threads t", "COUNT(t.tid) AS resultcount", $where_conditions. " AND {$unapproved_where} AND t.closed NOT LIKE 'moved|%' {$limitsql}"); $count = $db->fetch_array($query);
| $where_conditions = "t.tid IN (".$search['threads'].")"; $query = $db->simple_select("threads t", "COUNT(t.tid) AS resultcount", $where_conditions. " AND {$unapproved_where} AND t.closed NOT LIKE 'moved|%' {$limitsql}"); $count = $db->fetch_array($query);
|
Zeile 299 | Zeile 301 |
---|
foreach($group_permissions as $fid => $forum_permissions) { if($forum_permissions['canonlyviewownthreads'] == 1)
|
foreach($group_permissions as $fid => $forum_permissions) { if($forum_permissions['canonlyviewownthreads'] == 1)
|
{
| {
|
$onlyusfids[] = $fid; } } if(!empty($onlyusfids))
|
$onlyusfids[] = $fid; } } if(!empty($onlyusfids))
|
{
| {
|
$permsql .= "AND ((t.fid IN(".implode(',', $onlyusfids).") AND t.uid='{$mybb->user['uid']}') OR t.fid NOT IN(".implode(',', $onlyusfids)."))"; } $unsearchforums = get_unsearchable_forums(); if($unsearchforums)
|
$permsql .= "AND ((t.fid IN(".implode(',', $onlyusfids).") AND t.uid='{$mybb->user['uid']}') OR t.fid NOT IN(".implode(',', $onlyusfids)."))"; } $unsearchforums = get_unsearchable_forums(); if($unsearchforums)
|
{
| {
|
$permsql .= " AND t.fid NOT IN ($unsearchforums)"; } $inactiveforums = get_inactive_forums();
| $permsql .= " AND t.fid NOT IN ($unsearchforums)"; } $inactiveforums = get_inactive_forums();
|
Zeile 364 | Zeile 366 |
---|
while($readthread = $db->fetch_array($query)) { $thread_cache[$readthread['tid']]['lastread'] = $readthread['dateline'];
|
while($readthread = $db->fetch_array($query)) { $thread_cache[$readthread['tid']]['lastread'] = $readthread['dateline'];
|
} }
| } }
|
if(!$mybb->settings['maxmultipagelinks']) { $mybb->settings['maxmultipagelinks'] = 5;
| if(!$mybb->settings['maxmultipagelinks']) { $mybb->settings['maxmultipagelinks'] = 5;
|
Zeile 402 | Zeile 404 |
---|
if($icon_cache[$thread['icon']]) { $posticon = $icon_cache[$thread['icon']];
|
if($icon_cache[$thread['icon']]) { $posticon = $icon_cache[$thread['icon']];
|
| $posticon['path'] = htmlspecialchars_uni($posticon['path']); $posticon['name'] = htmlspecialchars_uni($posticon['name']);
|
$icon = "<img src=\"".$posticon['path']."\" alt=\"".$posticon['name']."\" />"; } else
| $icon = "<img src=\"".$posticon['path']."\" alt=\"".$posticon['name']."\" />"; } else
|
Zeile 489 | Zeile 493 |
---|
} $folder .= "folder";
|
} $folder .= "folder";
|
if(!$mybb->settings['postsperpage'])
| if(!$mybb->settings['postsperpage'] || (int)$mybb->settings['postsperpage'] < 1)
|
{
|
{
|
$mybb->settings['postperpage'] = 20;
| $mybb->settings['postsperpage'] = 20;
|
}
$thread['pages'] = 0;
| }
$thread['pages'] = 0;
|
Zeile 685 | Zeile 689 |
---|
$moderated_forums .= ','.$forum['fid']; $test_moderated_forums[$forum['fid']] = $forum['fid']; }
|
$moderated_forums .= ','.$forum['fid']; $test_moderated_forums[$forum['fid']] = $forum['fid']; }
|
$p_unapproved_where = "visible >= 0";
| $p_unapproved_where = "(visible > 0 OR (visible=0 AND fid IN ({$moderated_forums})))";
|
$t_unapproved_where = "visible < 0 AND fid NOT IN ({$moderated_forums})"; } else
|
$t_unapproved_where = "visible < 0 AND fid NOT IN ({$moderated_forums})"; } else
|
{
| {
|
// Normal users $p_unapproved_where = 'visible=1'; $t_unapproved_where = 'visible < 1';
| // Normal users $p_unapproved_where = 'visible=1'; $t_unapproved_where = 'visible < 1';
|
Zeile 702 | Zeile 706 |
---|
} if(strpos($sortfield, 'p.') !== false)
|
} if(strpos($sortfield, 'p.') !== false)
|
{
| {
|
$post_cache_options['order_by'] = str_replace('p.', '', $sortfield); $post_cache_options['order_dir'] = $order;
|
$post_cache_options['order_by'] = str_replace('p.', '', $sortfield); $post_cache_options['order_dir'] = $order;
|
}
| }
|
$tids = array(); $pids = array(); // Make sure the posts we're viewing we have permission to view.
| $tids = array(); $pids = array(); // Make sure the posts we're viewing we have permission to view.
|
Zeile 720 | Zeile 724 |
---|
if(!empty($pids)) { $temp_pids = array();
|
if(!empty($pids)) { $temp_pids = array();
|
| $group_permissions = forum_permissions(); $permsql = ''; $onlyusfids = array();
foreach($group_permissions as $fid => $forum_permissions) { if(!empty($forum_permissions['canonlyviewownthreads'])) { $onlyusfids[] = $fid; } }
if($onlyusfids) { $permsql .= " OR (fid IN(".implode(',', $onlyusfids).") AND uid!={$mybb->user['uid']})"; } $unsearchforums = get_unsearchable_forums(); if($unsearchforums) { $permsql .= " OR fid IN ($unsearchforums)"; } $inactiveforums = get_inactive_forums(); if($inactiveforums) { $permsql .= " OR fid IN ($inactiveforums)"; }
|
// Check the thread records as well. If we don't have permissions, remove them from the listing.
|
// Check the thread records as well. If we don't have permissions, remove them from the listing.
|
$query = $db->simple_select("threads", "tid", "tid IN(".$db->escape_string(implode(',', $pids)).") AND ({$t_unapproved_where} OR closed LIKE 'moved|%')");
| $query = $db->simple_select("threads", "tid", "tid IN(".$db->escape_string(implode(',', $pids)).") AND ({$t_unapproved_where}{$permsql} OR closed LIKE 'moved|%')");
|
while($thread = $db->fetch_array($query)) { if(array_key_exists($thread['tid'], $tids) != false)
| while($thread = $db->fetch_array($query)) { if(array_key_exists($thread['tid'], $tids) != false)
|
Zeile 799 | Zeile 830 |
---|
if($icon_cache[$post['icon']]) { $posticon = $icon_cache[$post['icon']];
|
if($icon_cache[$post['icon']]) { $posticon = $icon_cache[$post['icon']];
|
| $posticon['path'] = htmlspecialchars_uni($posticon['path']); $posticon['name'] = htmlspecialchars_uni($posticon['name']);
|
$icon = "<img src=\"".$posticon['path']."\" alt=\"".$posticon['name']."\" />"; } else
| $icon = "<img src=\"".$posticon['path']."\" alt=\"".$posticon['name']."\" />"; } else
|
Zeile 894 | Zeile 927 |
---|
$folder .= "hot"; $folder_label .= $lang->icon_hot; }
|
$folder .= "hot"; $folder_label .= $lang->icon_hot; }
|
if($thread['thread_closed'] == 1)
| if($post['thread_closed'] == 1)
|
{ $folder .= "lock"; $folder_label .= $lang->icon_lock;
| { $folder .= "lock"; $folder_label .= $lang->icon_lock;
|
Zeile 978 | Zeile 1011 |
---|
$num_results = $db->num_rows($query); $lang->page_selected = $lang->sprintf($lang->page_selected, intval($num_results)); $lang->select_all = $lang->sprintf($lang->select_all, intval($postcount));
|
$num_results = $db->num_rows($query); $lang->page_selected = $lang->sprintf($lang->page_selected, intval($num_results)); $lang->select_all = $lang->sprintf($lang->select_all, intval($postcount));
|
$lang->all_selected = $lang->sprintf($lang->page_selected, intval($postcount));
| $lang->all_selected = $lang->sprintf($lang->all_selected, intval($postcount));
|
eval("\$selectall = \"".$templates->get("search_posts_inlinemoderation_selectall")."\";"); $customthreadtools = $customposttools = '';
| eval("\$selectall = \"".$templates->get("search_posts_inlinemoderation_selectall")."\";"); $customthreadtools = $customposttools = '';
|
Zeile 1215 | Zeile 1248 |
---|
elseif($mybb->input['action'] == "getnew") {
|
elseif($mybb->input['action'] == "getnew") {
|
$where_sql = "t.lastpost >= '".$mybb->user['lastvisit']."'";
| $where_sql = "t.lastpost >= '".intval($mybb->user['lastvisit'])."'";
|
if($mybb->input['fid']) {
| if($mybb->input['fid']) {
|
Zeile 1464 | Zeile 1497 |
---|
{ $sortorder = "desc"; }
|
{ $sortorder = "desc"; }
|
$sortby = htmlspecialchars($mybb->input['sortby']);
| $sortby = htmlspecialchars_uni($mybb->input['sortby']);
|
$plugins->run_hooks("search_do_search_end"); redirect("search.php?action=results&sid=".$sid."&sortby=".$sortby."&order=".$sortorder, $lang->redirect_searchresults); }
| $plugins->run_hooks("search_do_search_end"); redirect("search.php?action=results&sid=".$sid."&sortby=".$sortby."&order=".$sortorder, $lang->redirect_searchresults); }
|
Zeile 1490 | Zeile 1523 |
---|
{ error($lang->error_closedinvalidforum); }
|
{ error($lang->error_closedinvalidforum); }
|
if($forum_permissions['canview'] == 0 || $forum_permissions['canviewthreads'] != 1)
| if($forum_permissions['canview'] == 0 || $forum_permissions['canviewthreads'] != 1 || (isset($forum_permissions['canonlyviewownthreads']) && $forum_permissions['canonlyviewownthreads'] != 0 && $thread['uid'] != $mybb->user['uid']))
|
{ error_no_permission(); }
| { error_no_permission(); }
|