Vergleich inc/functions_search.php - 1.6.1 - 1.6.13

Keine Änderungen Hinzugefügt Modifiziert Entfernt
Zeile 6	Zeile 6
* Website: http://mybb.com * License: http://mybb.com/about/license *	* Website: http://mybb.com * License: http://mybb.com/about/license *
* $Id: functions_search.php 5132 2010-07-28 08:18:14Z RyanGordon $	* $Id$
/ /*	/ /*
Zeile 96	Zeile 96
function get_unsearchable_forums($pid="0", $first=1) { global $db, $forum_cache, $permissioncache, $mybb, $unsearchableforums, $unsearchable, $templates, $forumpass;	function get_unsearchable_forums($pid="0", $first=1) { global $db, $forum_cache, $permissioncache, $mybb, $unsearchableforums, $unsearchable, $templates, $forumpass;

$pid = intval($pid);	$pid = intval($pid);

if(!is_array($forum_cache)) { // Get Forums	if(!is_array($forum_cache)) { // Get Forums
Zeile 129	Zeile 129
if($mybb->cookies['forumpass'][$forum['fid']] != md5($mybb->user['uid'].$forum['password'])) { $pwverified = 0;	if($mybb->cookies['forumpass'][$forum['fid']] != md5($mybb->user['uid'].$forum['password'])) { $pwverified = 0;
} }	} }
$parents = explode(",", $forum['parentlist']); if(is_array($parents)) {	$parents = explode(",", $forum['parentlist']); if(is_array($parents)) {
Zeile 154	Zeile 154
} } $unsearchable = $unsearchableforums;	} } $unsearchable = $unsearchableforums;

// Get our unsearchable password protected forums $pass_protected_forums = get_password_protected_forums();	// Get our unsearchable password protected forums $pass_protected_forums = get_password_protected_forums();

if($unsearchable && $pass_protected_forums) { $unsearchable .= ",";	if($unsearchable && $pass_protected_forums) { $unsearchable .= ",";
}	}
if($pass_protected_forums) { $unsearchable .= implode(",", $pass_protected_forums); }	if($pass_protected_forums) { $unsearchable .= implode(",", $pass_protected_forums); }

return $unsearchable;	return $unsearchable;
}	}
/** * Build a array list of the forums this user cannot search due to password protection	/** * Build a array list of the forums this user cannot search due to password protection
Zeile 180	Zeile 180
function get_password_protected_forums($fids=array()) { global $forum_cache, $mybb;	function get_password_protected_forums($fids=array()) { global $forum_cache, $mybb;

if(!is_array($fids)) { return false; }	if(!is_array($fids)) { return false; }

if(!is_array($forum_cache)) { $forum_cache = cache_forums();	if(!is_array($forum_cache)) { $forum_cache = cache_forums();
Zeile 194	Zeile 194
return false; } }	return false; } }

if(empty($fids))	if(empty($fids))
{	{
$fids = array_keys($forum_cache); }	$fids = array_keys($forum_cache); }
Zeile 206	Zeile 206
if(empty($forum_cache[$fid]['password'])) { continue;	if(empty($forum_cache[$fid]['password'])) { continue;
}	}
if(md5($mybb->user['uid'].$forum_cache[$fid]['password']) != $mybb->cookies['forumpass'][$fid]) { $pass_fids[] = $fid; $child_list = get_child_list($fid); }	if(md5($mybb->user['uid'].$forum_cache[$fid]['password']) != $mybb->cookies['forumpass'][$fid]) { $pass_fids[] = $fid; $child_list = get_child_list($fid); }

if(is_array($child_list)) { $pass_fids = array_merge($pass_fids, $child_list);	if(is_array($child_list)) { $pass_fids = array_merge($pass_fids, $child_list);
Zeile 243	Zeile 243
{ $keywords = substr_replace($keywords, "", 0, 2); }	{ $keywords = substr_replace($keywords, "", 0, 2); }

if(my_strpos($keywords, "and") === 0) { $keywords = substr_replace($keywords, "", 0, 3);	if(my_strpos($keywords, "and") === 0) { $keywords = substr_replace($keywords, "", 0, 3);
Zeile 269	Zeile 269
$keywords = preg_replace("#\{2,}#s", "", $keywords); $keywords = preg_replace("#([\[\]\\|\.\,:])#s", " ", $keywords); $keywords = preg_replace("#\s+#s", " ", $keywords);	$keywords = preg_replace("#\{2,}#s", "", $keywords); $keywords = preg_replace("#([\[\]\\|\.\,:])#s", " ", $keywords); $keywords = preg_replace("#\s+#s", " ", $keywords);

$words = array();	$words = array();

if(my_strpos($keywords, "\"") !== false) { $inquote = false;	if(my_strpos($keywords, "\"") !== false) { $inquote = false;
Zeile 312	Zeile 312
continue; } foreach($split_words as $word)	continue; } foreach($split_words as $word)
{	{
if(!$word) { continue;	if(!$word) { continue;
Zeile 325	Zeile 325
foreach($words as $word) { if($word == "or")	foreach($words as $word) { if($word == "or")
{ $boolean = '';	{ $boolean = '';
} elseif($word == "and") {	} elseif($word == "and") {
Zeile 368	Zeile 368
{ $mybb->settings['minsearchword'] = 3; }	{ $mybb->settings['minsearchword'] = 3; }

$subject_lookin = ""; $message_lookin = ""; $searchsql = "uid='{$mybb->user['uid']}'";	$subject_lookin = ""; $message_lookin = ""; $searchsql = "uid='{$mybb->user['uid']}'";

if($keywords) { // Complex search	if($keywords) { // Complex search
Zeile 384	Zeile 384
{ $string = "OR"; $subject_lookin = " AND (";	{ $string = "OR"; $subject_lookin = " AND (";
}	}
if($search['message'] == 1) { $message_lookin = " {$string} ("; }	if($search['message'] == 1) { $message_lookin = " {$string} ("; }

// Expand the string by double quotes $keywords_exp = explode("\"", $keywords); $inquote = false;	// Expand the string by double quotes $keywords_exp = explode("\"", $keywords); $inquote = false;
Zeile 403	Zeile 403
// Expand out based on search operators (and, or) $matches = preg_split("#\s{1,}(and\|or)\s{1,}#", $phrase, -1, PREG_SPLIT_DELIM_CAPTURE); $count_matches = count($matches);	// Expand out based on search operators (and, or) $matches = preg_split("#\s{1,}(and\|or)\s{1,}#", $phrase, -1, PREG_SPLIT_DELIM_CAPTURE); $count_matches = count($matches);

for($i=0; $i < $count_matches; ++$i) { $word = trim($matches[$i]); if(empty($word))	for($i=0; $i < $count_matches; ++$i) { $word = trim($matches[$i]); if(empty($word))
{	{
continue; } // If this word is a search operator set the boolean if($i % 2 && ($word == "and" \|\| $word == "or")) {	continue; } // If this word is a search operator set the boolean if($i % 2 && ($word == "and" \|\| $word == "or")) {
	if($i <= 1) { if($search['subject'] && $search['message'] && $subject_lookin == " AND (") { // We're looking for anything, check for a subject lookin continue; } elseif($search['subject'] && !$search['message'] && $subject_lookin == " AND (") { // Just in a subject? continue; } elseif(!$search['subject'] && $search['message'] && $message_lookin == " {$string} (") { // Just in a message? continue; } }
$boolean = $word; } // Otherwise check the length of the word as it is a normal search term	$boolean = $word; } // Otherwise check the length of the word as it is a normal search term
Zeile 437	Zeile 456
} } }	} } }
}	}
// In the middle of a quote (phrase) else {	// In the middle of a quote (phrase) else {
Zeile 452	Zeile 471
if($search['message'] == 1) { $message_lookin .= " $boolean LOWER(message) LIKE '%{$phrase}%'";	if($search['message'] == 1) { $message_lookin .= " $boolean LOWER(message) LIKE '%{$phrase}%'";
}	} } // Check to see if we have any search terms and not a malformed SQL string $error = false; if($search['subject'] && $search['message'] && $subject_lookin == " AND (") { // We're looking for anything, check for a subject lookin $error = true; } elseif($search['subject'] && !$search['message'] && $subject_lookin == " AND (") { // Just in a subject? $error = true; } elseif(!$search['subject'] && $search['message'] && $message_lookin == " {$string} (") { // Just in a message? $error = true; } if($error == true) { // There are no search keywords to look for $lang->error_minsearchlength = $lang->sprintf($lang->error_minsearchlength, $mybb->settings['minsearchword']); error($lang->error_minsearchlength);
}	}

$inquote = !$inquote;	$inquote = !$inquote;
}	}
if($search['subject'] == 1) {	if($search['subject'] == 1) {
Zeile 477	Zeile 522
$lang->error_minsearchlength = $lang->sprintf($lang->error_minsearchlength, $mybb->settings['minsearchword']); error($lang->error_minsearchlength); }	$lang->error_minsearchlength = $lang->sprintf($lang->error_minsearchlength, $mybb->settings['minsearchword']); error($lang->error_minsearchlength); }

// If we're looking in both, then find matches in either the subject or the message if($search['subject'] == 1 && $search['message'] == 1)	// If we're looking in both, then find matches in either the subject or the message if($search['subject'] == 1 && $search['message'] == 1)
{	{
$searchsql .= " AND (LOWER(subject) LIKE '%{$keywords}%' OR LOWER(message) LIKE '%{$keywords}%')"; } else	$searchsql .= " AND (LOWER(subject) LIKE '%{$keywords}%' OR LOWER(message) LIKE '%{$keywords}%')"; } else
Zeile 489	Zeile 534
{ $searchsql .= " AND LOWER(subject) LIKE '%{$keywords}%'"; }	{ $searchsql .= " AND LOWER(subject) LIKE '%{$keywords}%'"; }

if($search['message'] == 1) { $searchsql .= " AND LOWER(message) LIKE '%{$keywords}%'";	if($search['message'] == 1) { $searchsql .= " AND LOWER(message) LIKE '%{$keywords}%'";
Zeile 497	Zeile 542
} } }	} } }

if($search['sender']) { $userids = array(); $search['sender'] = my_strtolower($search['sender']);	if($search['sender']) { $userids = array(); $search['sender'] = my_strtolower($search['sender']);

$query = $db->simple_select("users", "uid", "LOWER(username) LIKE '%".$db->escape_string_like($db->escape_string($search['sender']))."%'"); while($user = $db->fetch_array($query)) { $userids[] = $user['uid']; }	$query = $db->simple_select("users", "uid", "LOWER(username) LIKE '%".$db->escape_string_like($db->escape_string($search['sender']))."%'"); while($user = $db->fetch_array($query)) { $userids[] = $user['uid']; }

if(count($userids) < 1) { error($lang->error_nosearchresults);	if(count($userids) < 1) { error($lang->error_nosearchresults);
Zeile 519	Zeile 564
$searchsql .= " AND fromid IN (".$userids.")"; } }	$searchsql .= " AND fromid IN (".$userids.")"; } }

if(!is_array($search['folder']))	if(!is_array($search['folder']))
{	{
$search['folder'] = array($search['folder']); }	$search['folder'] = array($search['folder']); }

if(!empty($search['folder'])) { $folderids = array();	if(!empty($search['folder'])) { $folderids = array();

$search['folder'] = array_map("intval", $search['folder']);	$search['folder'] = array_map("intval", $search['folder']);

$folderids = implode(',', $search['folder']);	$folderids = implode(',', $search['folder']);

if($folderids) { $searchsql .= " AND folder IN (".$folderids.")";	if($folderids) { $searchsql .= " AND folder IN (".$folderids.")";
Zeile 566	Zeile 611
$statussql = implode("OR", $statussql); $searchsql .= $statussql.")"; }	$statussql = implode("OR", $statussql); $searchsql .= $statussql.")"; }

// Run the search $pms = array(); $query = $db->simple_select("privatemessages", "pmid", $searchsql); while($pm = $db->fetch_array($query))	// Run the search $pms = array(); $query = $db->simple_select("privatemessages", "pmid", $searchsql); while($pm = $db->fetch_array($query))
{	{
$pms[$pm['pmid']] = $pm['pmid']; }	$pms[$pm['pmid']] = $pm['pmid']; }

if(count($pms) < 1) { error($lang->error_nosearchresults); } $pms = implode(',', $pms);	if(count($pms) < 1) { error($lang->error_nosearchresults); } $pms = implode(',', $pms);

return array( "querycache" => $pms );	return array( "querycache" => $pms );
Zeile 611	Zeile 656
{ // Complex search $keywords = " {$keywords} ";	{ // Complex search $keywords = " {$keywords} ";
if(preg_match("# and\|or #", $keywords))	if(preg_match("#\s(and\|or)\s#", $keywords))
{ $subject_lookin = " AND ("; $message_lookin = " AND (";	{ $subject_lookin = " AND ("; $message_lookin = " AND (";

// Expand the string by double quotes $keywords_exp = explode("\"", $keywords); $inquote = false;	// Expand the string by double quotes $keywords_exp = explode("\"", $keywords); $inquote = false;
	$boolean = '';
foreach($keywords_exp as $phrase) {	foreach($keywords_exp as $phrase) {
Zeile 628	Zeile 674
// Expand out based on search operators (and, or) $matches = preg_split("#\s{1,}(and\|or)\s{1,}#", $phrase, -1, PREG_SPLIT_DELIM_CAPTURE); $count_matches = count($matches);	// Expand out based on search operators (and, or) $matches = preg_split("#\s{1,}(and\|or)\s{1,}#", $phrase, -1, PREG_SPLIT_DELIM_CAPTURE); $count_matches = count($matches);

for($i=0; $i < $count_matches; ++$i) { $word = trim($matches[$i]); if(empty($word)) { continue;	for($i=0; $i < $count_matches; ++$i) { $word = trim($matches[$i]); if(empty($word)) { continue;
}	}
// If this word is a search operator set the boolean if($i % 2 && ($word == "and" \|\| $word == "or")) {	// If this word is a search operator set the boolean if($i % 2 && ($word == "and" \|\| $word == "or")) {
	if($i <= 1 && $subject_lookin == " AND (") { continue; }
$boolean = $word; } // Otherwise check the length of the word as it is a normal search term	$boolean = $word; } // Otherwise check the length of the word as it is a normal search term
Zeile 657	Zeile 708
{ $message_lookin .= " $boolean LOWER(p.message) LIKE '%{$word}%'"; }	{ $message_lookin .= " $boolean LOWER(p.message) LIKE '%{$word}%'"; }
	$boolean = 'AND';
} }	} }
}	}
// In the middle of a quote (phrase) else	// In the middle of a quote (phrase) else
{	{
$phrase = str_replace(array("+", "-", "*"), '', trim($phrase)); if(my_strlen($phrase) < $mybb->settings['minsearchword'])	$phrase = str_replace(array("+", "-", "*"), '', trim($phrase)); if(my_strlen($phrase) < $mybb->settings['minsearchword'])
{	{
$lang->error_minsearchlength = $lang->sprintf($lang->error_minsearchlength, $mybb->settings['minsearchword']); error($lang->error_minsearchlength);	$lang->error_minsearchlength = $lang->sprintf($lang->error_minsearchlength, $mybb->settings['minsearchword']); error($lang->error_minsearchlength);
}	}
// Add phrase to search query $subject_lookin .= " $boolean LOWER(t.subject) LIKE '%{$phrase}%'"; if($search['postthread'] == 1) { $message_lookin .= " $boolean LOWER(p.message) LIKE '%{$phrase}%'";	// Add phrase to search query $subject_lookin .= " $boolean LOWER(t.subject) LIKE '%{$phrase}%'"; if($search['postthread'] == 1) { $message_lookin .= " $boolean LOWER(p.message) LIKE '%{$phrase}%'";
}	} $boolean = 'AND'; } if($subject_lookin == " AND (") { // There are no search keywords to look for $lang->error_minsearchlength = $lang->sprintf($lang->error_minsearchlength, $mybb->settings['minsearchword']); error($lang->error_minsearchlength);
}	}

$inquote = !$inquote; } $subject_lookin .= ")";	$inquote = !$inquote; } $subject_lookin .= ")";
Zeile 742	Zeile 803
$post_datecut = " AND p.dateline $datecut"; $thread_datecut = " AND t.dateline $datecut"; }	$post_datecut = " AND p.dateline $datecut"; $thread_datecut = " AND t.dateline $datecut"; }

$thread_replycut = ''; if($search['numreplies'] != '' && $search['findthreadst']) {	$thread_replycut = ''; if($search['numreplies'] != '' && $search['findthreadst']) {
Zeile 755	Zeile 816
$thread_replycut = " AND t.replies <= '".intval($search['numreplies'])."'"; } }	$thread_replycut = " AND t.replies <= '".intval($search['numreplies'])."'"; } }

$thread_prefixcut = ''; if($search['threadprefix'] && $search['threadprefix'] != 'any') {	$thread_prefixcut = ''; if($search['threadprefix'] && $search['threadprefix'] != 'any') {
Zeile 765	Zeile 826
$forumin = ''; $fidlist = array(); $searchin = array();	$forumin = ''; $fidlist = array(); $searchin = array();
if($search['forums'] != "all")	if($search['forums'][0] != "all")
{ if(!is_array($search['forums'])) {	{ if(!is_array($search['forums'])) {
Zeile 796	Zeile 857
{ $can_search = 1; }	{ $can_search = 1; }
}	}
if($can_search == 0) {	if($can_search == 0) {
Zeile 815	Zeile 876
break; default: $query = $db->simple_select("forums", "DISTINCT fid", "INSTR(CONCAT(',',parentlist,','),',{$forum},') > 0 AND active != 0");	break; default: $query = $db->simple_select("forums", "DISTINCT fid", "INSTR(CONCAT(',',parentlist,','),',{$forum},') > 0 AND active != 0");
} while($sforum = $db->fetch_array($query))	} while($sforum = $db->fetch_array($query))
{ $fidlist[] = $sforum['fid']; }	{ $fidlist[] = $sforum['fid']; }
} }	} }
if(count($fidlist) == 1)	if(count($fidlist) == 1)
{	{
$forumin .= " AND t.fid='$forum' "; $searchin[$fid] = 1; } else	$forumin .= " AND t.fid='$forum' "; $searchin[$fid] = 1; } else
{	{
if(count($fidlist) > 1) { $forumin = " AND t.fid IN (".implode(',', $fidlist).")"; } } }	if(count($fidlist) > 1) { $forumin = " AND t.fid IN (".implode(',', $fidlist).")"; } } }

$permsql = ""; $onlyusfids = array();	$permsql = ""; $onlyusfids = array();

// Check group permissions if we can't view threads not started by us	// Check group permissions if we can't view threads not started by us
$group_permissions = forum_permissions(); foreach($group_permissions as $fid => $forum_permissions)	if($group_permissions = forum_permissions())
{	{
if($forum_permissions['canonlyviewownthreads'] == 1)	foreach($group_permissions as $fid => $forum_permissions)
{	{
$onlyusfids[] = $fid;	if($forum_permissions['canonlyviewownthreads'] == 1) { $onlyusfids[] = $fid; }
}	}
}	}
if(!empty($onlyusfids))	if(!empty($onlyusfids))
{	{
$permsql .= "AND ((t.fid IN(".implode(',', $onlyusfids).") AND t.uid='{$mybb->user['uid']}') OR t.fid NOT IN(".implode(',', $onlyusfids)."))"; }	$permsql .= "AND ((t.fid IN(".implode(',', $onlyusfids).") AND t.uid='{$mybb->user['uid']}') OR t.fid NOT IN(".implode(',', $onlyusfids)."))"; }

$unsearchforums = get_unsearchable_forums(); if($unsearchforums)	$unsearchforums = get_unsearchable_forums(); if($unsearchforums)
{	{
$permsql .= " AND t.fid NOT IN ($unsearchforums)";	$permsql .= " AND t.fid NOT IN ($unsearchforums)";
}	}
$inactiveforums = get_inactive_forums(); if($inactiveforums)	$inactiveforums = get_inactive_forums(); if($inactiveforums)
{	{
$permsql .= " AND t.fid NOT IN ($inactiveforums)"; }	$permsql .= " AND t.fid NOT IN ($inactiveforums)"; }

$visiblesql = $post_visiblesql = $plain_post_visiblesql = ""; if(isset($search['visible'])) { if($search['visible'] == 1) { $visiblesql = " AND t.visible = '1'";	$visiblesql = $post_visiblesql = $plain_post_visiblesql = ""; if(isset($search['visible'])) { if($search['visible'] == 1) { $visiblesql = " AND t.visible = '1'";

if($search['postthread'] == 1) { $post_visiblesql = " AND p.visible = '1'";	if($search['postthread'] == 1) { $post_visiblesql = " AND p.visible = '1'";
Zeile 881	Zeile 944
else { $visiblesql = " AND t.visible != '1'";	else { $visiblesql = " AND t.visible != '1'";

if($search['postthread'] == 1) { $post_visiblesql = " AND p.visible != '1'";	if($search['postthread'] == 1) { $post_visiblesql = " AND p.visible != '1'";
Zeile 895	Zeile 958
{ $tidsql = " AND t.tid='".intval($search['tid'])."'"; }	{ $tidsql = " AND t.tid='".intval($search['tid'])."'"; }

$limitsql = ''; if(intval($mybb->settings['searchhardlimit']) > 0) {	$limitsql = ''; if(intval($mybb->settings['searchhardlimit']) > 0) {
Zeile 926	Zeile 989
} } }	} } }

$query = $db->query(" SELECT p.pid, p.tid FROM ".TABLE_PREFIX."posts p	$query = $db->query(" SELECT p.pid, p.tid FROM ".TABLE_PREFIX."posts p
Zeile 939	Zeile 1002
$posts[$post['pid']] = $post['pid']; $threads[$post['tid']] = $post['tid']; }	$posts[$post['pid']] = $post['pid']; $threads[$post['tid']] = $post['tid']; }

if(count($posts) < 1 && count($threads) < 1) { error($lang->error_nosearchresults);	if(count($posts) < 1 && count($threads) < 1) { error($lang->error_nosearchresults);
Zeile 963	Zeile 1026
if($thread['firstpost']) { $firstposts[$thread['tid']] = $thread['firstpost'];	if($thread['firstpost']) { $firstposts[$thread['tid']] = $thread['firstpost'];
} }	} }
if(count($threads) < 1) { error($lang->error_nosearchresults);	if(count($threads) < 1) { error($lang->error_nosearchresults);
Zeile 980	Zeile 1043
$posts[$post['pid']] = $post['pid']; } $posts = implode(',', $posts);	$posts[$post['pid']] = $post['pid']; } $posts = implode(',', $posts);
} }	} }
return array( "threads" => $threads, "posts" => $posts,	return array( "threads" => $threads, "posts" => $posts,
Zeile 998	Zeile 1061
function perform_search_mysql_ft($search) { global $mybb, $db, $lang;	function perform_search_mysql_ft($search) { global $mybb, $db, $lang;

$keywords = clean_keywords_ft($search['keywords']); if(!$keywords && !$search['author']) {	$keywords = clean_keywords_ft($search['keywords']); if(!$keywords && !$search['author']) {
Zeile 1049	Zeile 1112
{ $phrase = str_replace(array("+", "-", "*"), '', $phrase); if(my_strlen($phrase) < $mybb->settings['minsearchword'])	{ $phrase = str_replace(array("+", "-", "*"), '', $phrase); if(my_strlen($phrase) < $mybb->settings['minsearchword'])
{	{
$all_too_short = true; } else	$all_too_short = true; } else
Zeile 1083	Zeile 1146
$search['author'] = my_strtolower($search['author']); $query = $db->simple_select("users", "uid", "LOWER(username) LIKE '%".$db->escape_string_like($db->escape_string($search['author']))."%'"); }	$search['author'] = my_strtolower($search['author']); $query = $db->simple_select("users", "uid", "LOWER(username) LIKE '%".$db->escape_string_like($db->escape_string($search['author']))."%'"); }

while($user = $db->fetch_array($query)) { $userids[] = $user['uid']; }	while($user = $db->fetch_array($query)) { $userids[] = $user['uid']; }

if(count($userids) < 1)	if(count($userids) < 1)
{	{
error($lang->error_nosearchresults);	error($lang->error_nosearchresults);
}	}
else { $userids = implode(',', $userids);	else { $userids = implode(',', $userids);
Zeile 1102	Zeile 1165
} $datecut = ''; if($search['postdate'])	} $datecut = ''; if($search['postdate'])
{	{
if($search['pddir'] == 0) { $datecut = "<=";	if($search['pddir'] == 0) { $datecut = "<=";
Zeile 1117	Zeile 1180
$post_datecut = " AND p.dateline $datecut"; $thread_datecut = " AND t.dateline $datecut"; }	$post_datecut = " AND p.dateline $datecut"; $thread_datecut = " AND t.dateline $datecut"; }

$thread_replycut = ''; if($search['numreplies'] != '' && $search['findthreadst'])	$thread_replycut = ''; if($search['numreplies'] != '' && $search['findthreadst'])
{	{
if(intval($search['findthreadst']) == 1)	if(intval($search['findthreadst']) == 1)
{	{
$thread_replycut = " AND t.replies >= '".intval($search['numreplies'])."'";	$thread_replycut = " AND t.replies >= '".intval($search['numreplies'])."'";
}	}
else { $thread_replycut = " AND t.replies <= '".intval($search['numreplies'])."'"; } }	else { $thread_replycut = " AND t.replies <= '".intval($search['numreplies'])."'"; } }

$thread_prefixcut = ''; if($search['threadprefix'] && $search['threadprefix'] != 'any') {	$thread_prefixcut = ''; if($search['threadprefix'] && $search['threadprefix'] != 'any') {
Zeile 1140	Zeile 1203
$forumin = ''; $fidlist = array(); $searchin = array();	$forumin = ''; $fidlist = array(); $searchin = array();
if($search['forums'] != "all")	if($search['forums'][0] != "all")
{ if(!is_array($search['forums'])) {	{ if(!is_array($search['forums'])) {
Zeile 1156	Zeile 1219
{ $forum = intval($forum); if(!$searchin[$forum])	{ $forum = intval($forum); if(!$searchin[$forum])
{	{
switch($db->type) { case "pgsql": case "sqlite": $query = $db->query("	switch($db->type) { case "pgsql": case "sqlite": $query = $db->query("
SELECT f.fid FROM ".TABLE_PREFIX."forums f	SELECT f.fid FROM ".TABLE_PREFIX."forums f
LEFT JOIN ".TABLE_PREFIX."forumpermissions p ON (f.fid=p.fid AND p.gid IN (".$user_groups."))	LEFT JOIN ".TABLE_PREFIX."forumpermissions p ON (f.fid=p.fid AND p.gid IN (".$user_groups."))
WHERE INSTR(','\|\|parentlist\|\|',',',$forum,') > 0 AND active!=0 AND (ISNULL(p.fid) OR p.cansearch=1)	WHERE INSTR(','\|\|parentlist\|\|',',',$forum,') > 0 AND active!=0 AND ((p.fid) IS NULL OR p.cansearch=1)
"); break; default: $query = $db->query("	"); break; default: $query = $db->query("
SELECT f.fid FROM ".TABLE_PREFIX."forums f	SELECT f.fid FROM ".TABLE_PREFIX."forums f
LEFT JOIN ".TABLE_PREFIX."forumpermissions p ON (f.fid=p.fid AND p.gid IN (".$user_groups."))	LEFT JOIN ".TABLE_PREFIX."forumpermissions p ON (f.fid=p.fid AND p.gid IN (".$user_groups."))
WHERE INSTR(CONCAT(',',parentlist,','),',$forum,') > 0 AND active!=0 AND (ISNULL(p.fid) OR p.cansearch=1)	WHERE INSTR(CONCAT(',',parentlist,','),',$forum,') > 0 AND active!=0 AND ((p.fid) IS NULL OR p.cansearch=1)
"); } while($sforum = $db->fetch_array($query))	"); } while($sforum = $db->fetch_array($query))
Zeile 1189	Zeile 1252
} else {	} else {

if(count($fidlist) > 1) { $forumin = " AND t.fid IN (".implode(',', $fidlist).")";	if(count($fidlist) > 1) { $forumin = " AND t.fid IN (".implode(',', $fidlist).")";
Zeile 1198	Zeile 1261
} $permsql = ""; $onlyusfids = array();	} $permsql = ""; $onlyusfids = array();

// Check group permissions if we can't view threads not started by us $group_permissions = forum_permissions(); foreach($group_permissions as $fid => $forum_permissions)	// Check group permissions if we can't view threads not started by us $group_permissions = forum_permissions(); foreach($group_permissions as $fid => $forum_permissions)
{	{
if($forum_permissions['canonlyviewownthreads'] == 1) { $onlyusfids[] = $fid; }	if($forum_permissions['canonlyviewownthreads'] == 1) { $onlyusfids[] = $fid; }
}	}
if(!empty($onlyusfids)) { $permsql .= "AND ((t.fid IN(".implode(',', $onlyusfids).") AND t.uid='{$mybb->user['uid']}') OR t.fid NOT IN(".implode(',', $onlyusfids)."))"; }	if(!empty($onlyusfids)) { $permsql .= "AND ((t.fid IN(".implode(',', $onlyusfids).") AND t.uid='{$mybb->user['uid']}') OR t.fid NOT IN(".implode(',', $onlyusfids)."))"; }

$unsearchforums = get_unsearchable_forums(); if($unsearchforums) {	$unsearchforums = get_unsearchable_forums(); if($unsearchforums) {
Zeile 1223	Zeile 1286
{ $permsql .= " AND t.fid NOT IN ($inactiveforums)"; }	{ $permsql .= " AND t.fid NOT IN ($inactiveforums)"; }

$visiblesql = $post_visiblesql = $plain_post_visiblesql = ""; if(isset($search['visible'])) { if($search['visible'] == 1) { $visiblesql = " AND t.visible = '1'";	$visiblesql = $post_visiblesql = $plain_post_visiblesql = ""; if(isset($search['visible'])) { if($search['visible'] == 1) { $visiblesql = " AND t.visible = '1'";

if($search['postthread'] == 1) { $post_visiblesql = " AND p.visible = '1'"; $plain_post_visiblesql = " AND visible = '1'";	if($search['postthread'] == 1) { $post_visiblesql = " AND p.visible = '1'"; $plain_post_visiblesql = " AND visible = '1'";
}	}
} else { $visiblesql = " AND t.visible != '1'";	} else { $visiblesql = " AND t.visible != '1'";

if($search['postthread'] == 1) { $post_visiblesql = " AND p.visible != '1'"; $plain_post_visiblesql = " AND visible != '1'"; } }	if($search['postthread'] == 1) { $post_visiblesql = " AND p.visible != '1'"; $plain_post_visiblesql = " AND visible != '1'"; } }
}	}
// Searching a specific thread? if($search['tid']) { $tidsql = " AND t.tid='".intval($search['tid'])."'"; }	// Searching a specific thread? if($search['tid']) { $tidsql = " AND t.tid='".intval($search['tid'])."'"; }

$limitsql = ''; if(intval($mybb->settings['searchhardlimit']) > 0) {	$limitsql = ''; if(intval($mybb->settings['searchhardlimit']) > 0) {