| Zeile 13 | Zeile 13 |
|---|
define('THIS_SCRIPT', 'search.php');
$templatelist = "search,forumdisplay_thread_gotounread,search_results_threads_thread,search_results_threads,search_results_posts,search_results_posts_post,search_results_icon,search_forumlist_forum,search_forumlist";
|
define('THIS_SCRIPT', 'search.php');
$templatelist = "search,forumdisplay_thread_gotounread,search_results_threads_thread,search_results_threads,search_results_posts,search_results_posts_post,search_results_icon,search_forumlist_forum,search_forumlist";
|
$templatelist .= ",multipage,multipage_breadcrumb,multipage_end,multipage_jump_page,multipage_nextpage,multipage_page,multipage_page_current,multipage_page_link_current,multipage_prevpage,multipage_start,forumdisplay_thread_multipage_more,forumdisplay_thread_multipage_page,forumdisplay_thread_multipage";
| $templatelist .= ",multipage,multipage_breadcrumb,multipage_end,multipage_jump_page,multipage_nextpage,multipage_page,multipage_page_current,multipage_page_link_current,multipage_prevpage,multipage_start";
|
$templatelist .= ",search_results_posts_inlinecheck,search_results_posts_nocheck,search_results_threads_inlinecheck,search_results_threads_nocheck,search_results_inlinemodcol,search_results_posts_inlinemoderation_custom_tool";
|
$templatelist .= ",search_results_posts_inlinecheck,search_results_posts_nocheck,search_results_threads_inlinecheck,search_results_threads_nocheck,search_results_inlinemodcol,search_results_posts_inlinemoderation_custom_tool";
|
$templatelist .= ",search_results_posts_inlinemoderation_custom,search_results_posts_inlinemoderation,search_results_threads_inlinemoderation_custom_tool,search_results_threads_inlinemoderation_custom,search_results_threads_inlinemoderation,search_orderarrow,search_moderator_options";
$templatelist .= ",forumdisplay_thread_attachment_count,search_threads_inlinemoderation_selectall,search_posts_inlinemoderation_selectall,post_prefixselect_prefix,post_prefixselect_multiple";
| $templatelist .= ",search_results_posts_inlinemoderation_custom,search_results_posts_inlinemoderation,search_results_threads_inlinemoderation_custom_tool,search_results_threads_inlinemoderation_custom,search_results_threads_inlinemoderation";
$templatelist .= ",forumdisplay_thread_attachment_count,search_threads_inlinemoderation_selectall,search_posts_inlinemoderation_selectall,post_prefixselect_prefix,post_prefixselect_multiple,search_orderarrow";
$templatelist .= ",search_results_posts_forumlink,search_results_threads_forumlink,forumdisplay_thread_multipage_more,forumdisplay_thread_multipage_page,forumdisplay_thread_multipage,search_moderator_options";
|
require_once "./global.php";
require_once MYBB_ROOT."inc/functions_post.php";
|
require_once "./global.php";
require_once MYBB_ROOT."inc/functions_post.php";
|
| Zeile 166 | Zeile 167 |
|---|
$sorturl = "search.php?action=results&sid={$sid}";
$thread_url = "";
$post_url = "";
|
$sorturl = "search.php?action=results&sid={$sid}";
$thread_url = "";
$post_url = "";
|
|
|
$orderarrow = array('replies' => '', 'views' => '', 'subject' => '', 'forum' => '', 'starter' => '', 'lastpost' => '', 'dateline' => '');
eval("\$orderarrow['$sortby'] = \"".$templates->get("search_orderarrow")."\";");
| $orderarrow = array('replies' => '', 'views' => '', 'subject' => '', 'forum' => '', 'starter' => '', 'lastpost' => '', 'dateline' => '');
eval("\$orderarrow['$sortby'] = \"".$templates->get("search_orderarrow")."\";");
|
| Zeile 236 | Zeile 237 |
|---|
$threadcount = 0;
// Moderators can view unapproved threads
|
$threadcount = 0;
// Moderators can view unapproved threads
|
$query = $db->simple_select("moderators", "fid", "(id='{$mybb->user['uid']}' AND isgroup='0') OR (id='{$mybb->user['usergroup']}' AND isgroup='1')");
| $query = $db->simple_select("moderators", "fid, canviewunapprove, canviewdeleted", "(id='{$mybb->user['uid']}' AND isgroup='0') OR (id='{$mybb->user['usergroup']}' AND isgroup='1')");
|
if($mybb->usergroup['issupermod'] == 1)
{
// Super moderators (and admins)
| if($mybb->usergroup['issupermod'] == 1)
{
// Super moderators (and admins)
|
| Zeile 245 | Zeile 246 |
|---|
elseif($db->num_rows($query))
{
// Normal moderators
|
elseif($db->num_rows($query))
{
// Normal moderators
|
$moderated_forums = '0';
while($forum = $db->fetch_array($query))
{
$moderated_forums .= ','.$forum['fid'];
}
$unapproved_where = "(t.visible>0 OR (t.visible IN (-1,0) AND t.fid IN ({$moderated_forums})))";
}
else
{
| $unapprove_forums = array();
$deleted_forums = array();
$unapproved_where = '(t.visible = 1';
while($moderator = $db->fetch_array($query))
{
if($moderator['canviewunapprove'] == 1)
{
$unapprove_forums[] = $moderator['fid'];
}
if($moderator['canviewdeleted'] == 1)
{
$deleted_forums[] = $moderator['fid'];
}
}
if(!empty($unapprove_forums))
{
$unapproved_where .= " OR (t.visible = 0 AND t.fid IN(".implode(',', $unapprove_forums)."))";
}
if(!empty($deleted_forums))
{
$unapproved_where .= " OR (t.visible = -1 AND t.fid IN(".implode(',', $deleted_forums)."))";
}
$unapproved_where .= ')';
}
else
{
|
// Normal users
$unapproved_where = 't.visible>0';
}
| // Normal users
$unapproved_where = 't.visible>0';
}
|
| Zeile 315 | Zeile 335 |
|---|
if($unsearchforums)
{
$permsql .= " AND t.fid NOT IN ($unsearchforums)";
|
if($unsearchforums)
{
$permsql .= " AND t.fid NOT IN ($unsearchforums)";
|
}
| }
|
$inactiveforums = get_inactive_forums();
if($inactiveforums)
{
| $inactiveforums = get_inactive_forums();
if($inactiveforums)
{
|
| Zeile 334 | Zeile 354 |
|---|
FROM ".TABLE_PREFIX."threads t
LEFT JOIN ".TABLE_PREFIX."users u ON (u.uid=t.uid)
WHERE $where_conditions AND {$unapproved_where} {$permsql} AND t.closed NOT LIKE 'moved|%'
|
FROM ".TABLE_PREFIX."threads t
LEFT JOIN ".TABLE_PREFIX."users u ON (u.uid=t.uid)
WHERE $where_conditions AND {$unapproved_where} {$permsql} AND t.closed NOT LIKE 'moved|%'
|
ORDER BY $sortfield $order
LIMIT $start, $perpage
| ORDER BY $sortfield $order
LIMIT $start, $perpage
|
");
$threadprefixes = build_prefixes();
| ");
$threadprefixes = build_prefixes();
|
| Zeile 359 | Zeile 379 |
|---|
// Fetch dot icons if enabled
if($mybb->settings['dotfolders'] != 0 && $mybb->user['uid'] && $thread_cache)
{
|
// Fetch dot icons if enabled
if($mybb->settings['dotfolders'] != 0 && $mybb->user['uid'] && $thread_cache)
{
|
$query = $db->simple_select("posts", "DISTINCT tid,uid", "uid='".$mybb->user['uid']."' AND tid IN(".$thread_ids.")");
| $p_unapproved_where = str_replace('t.', '', $unapproved_where);
$query = $db->simple_select("posts", "DISTINCT tid,uid", "uid='{$mybb->user['uid']}' AND tid IN({$thread_ids}) AND {$p_unapproved_where}");
|
while($thread = $db->fetch_array($query))
{
$thread_cache[$thread['tid']]['dot_icon'] = 1;
| while($thread = $db->fetch_array($query))
{
$thread_cache[$thread['tid']]['dot_icon'] = 1;
|
| Zeile 403 | Zeile 424 |
|---|
{
$thread['username'] = $thread['userusername'];
}
|
{
$thread['username'] = $thread['userusername'];
}
|
| | $thread['username'] = htmlspecialchars_uni($thread['username']);
|
$thread['profilelink'] = build_profile_link($thread['username'], $thread['uid']);
// If this thread has a prefix, insert a space between prefix and subject
| $thread['profilelink'] = build_profile_link($thread['username'], $thread['uid']);
// If this thread has a prefix, insert a space between prefix and subject
|
| Zeile 521 | Zeile 543 |
|---|
{
$thread['posts'] += $thread['unapprovedposts'];
}
|
{
$thread['posts'] += $thread['unapprovedposts'];
}
|
| | if(is_moderator($thread['fid'], "canviewdeleted"))
{
$thread['posts'] += $thread['deletedposts'];
}
|
if($thread['posts'] > $mybb->settings['postsperpage'])
{
$thread['pages'] = $thread['posts'] / $mybb->settings['postsperpage'];
| if($thread['posts'] > $mybb->settings['postsperpage'])
{
$thread['pages'] = $thread['posts'] / $mybb->settings['postsperpage'];
|
| Zeile 549 | Zeile 576 |
|---|
$thread['multipage'] = '';
}
$lastpostdate = my_date('relative', $thread['lastpost']);
|
$thread['multipage'] = '';
}
$lastpostdate = my_date('relative', $thread['lastpost']);
|
$lastposter = $thread['lastposter'];
| $lastposter = htmlspecialchars_uni($thread['lastposter']);
|
$thread['lastpostlink'] = get_thread_link($thread['tid'], 0, "lastpost");
$lastposteruid = $thread['lastposteruid'];
$thread_link = get_thread_link($thread['tid']);
| $thread['lastpostlink'] = get_thread_link($thread['tid'], 0, "lastpost");
$lastposteruid = $thread['lastposteruid'];
$thread_link = get_thread_link($thread['tid']);
|
| Zeile 558 | Zeile 585 |
|---|
if($lastposteruid == 0)
{
$lastposterlink = $lastposter;
|
if($lastposteruid == 0)
{
$lastposterlink = $lastposter;
|
}
| }
|
else
{
$lastposterlink = build_profile_link($lastposter, $lastposteruid);
| else
{
$lastposterlink = build_profile_link($lastposter, $lastposteruid);
|
| Zeile 567 | Zeile 594 |
|---|
$thread['replies'] = my_number_format($thread['replies']);
$thread['views'] = my_number_format($thread['views']);
|
$thread['replies'] = my_number_format($thread['replies']);
$thread['views'] = my_number_format($thread['views']);
|
| | $thread['forumlink'] = '';
|
if($forumcache[$thread['fid']])
{
|
if($forumcache[$thread['fid']])
{
|
$thread['forumlink'] = "<a href=\"".get_forum_link($thread['fid'])."\">".$forumcache[$thread['fid']]['name']."</a>";
}
else
{
$thread['forumlink'] = "";
| $thread['forumlink_link'] = get_forum_link($thread['fid']);
$thread['forumlink_name'] = $forumcache[$thread['fid']]['name'];
eval("\$thread['forumlink'] = \"".$templates->get("search_results_threads_forumlink")."\";");
|
}
// If this user is the author of the thread and it is not closed or they are a moderator, they can edit
| }
// If this user is the author of the thread and it is not closed or they are a moderator, they can edit
|
| Zeile 687 | Zeile 713 |
|---|
$postcount = 0;
// Moderators can view unapproved threads
|
$postcount = 0;
// Moderators can view unapproved threads
|
$query = $db->simple_select("moderators", "fid", "(id='{$mybb->user['uid']}' AND isgroup='0') OR (id='{$mybb->user['usergroup']}' AND isgroup='1')");
| $query = $db->simple_select("moderators", "fid, canviewunapprove, canviewdeleted", "(id='{$mybb->user['uid']}' AND isgroup='0') OR (id='{$mybb->user['usergroup']}' AND isgroup='1')");
|
if($mybb->usergroup['issupermod'] == 1)
{
// Super moderators (and admins)
|
if($mybb->usergroup['issupermod'] == 1)
{
// Super moderators (and admins)
|
$p_unapproved_where = "visible >= -1";
$t_unapproved_where = "visible < -1";
| $unapproved_where = "visible >= -1";
|
}
elseif($db->num_rows($query))
{
// Normal moderators
|
}
elseif($db->num_rows($query))
{
// Normal moderators
|
$moderated_forums = '0';
while($forum = $db->fetch_array($query))
| $unapprove_forums = array();
$deleted_forums = array();
$unapproved_where = '(visible = 1';
while($moderator = $db->fetch_array($query))
{
if($moderator['canviewunapprove'] == 1)
{
$unapprove_forums[] = $moderator['fid'];
}
if($moderator['canviewdeleted'] == 1)
{
$deleted_forums[] = $moderator['fid'];
}
}
if(!empty($unapprove_forums))
{
$unapproved_where .= " OR (visible = 0 AND fid IN(".implode(',', $unapprove_forums)."))";
}
if(!empty($deleted_forums))
|
{
|
{
|
$moderated_forums .= ','.$forum['fid'];
$test_moderated_forums[$forum['fid']] = $forum['fid'];
| $unapproved_where .= " OR (visible = -1 AND fid IN(".implode(',', $deleted_forums)."))";
|
}
|
}
|
$p_unapproved_where = "(visible>0 OR (visible IN (-1,0) AND fid IN ({$moderated_forums})))";
$t_unapproved_where = "(visible<0 AND (visible <1 OR fid NOT IN ({$moderated_forums})))";
| $unapproved_where .= ')';
|
}
else
{
// Normal users
|
}
else
{
// Normal users
|
$p_unapproved_where = 'visible=1';
$t_unapproved_where = 'visible < 1';
| $unapproved_where = 'visible = 1';
|
}
$post_cache_options = array();
| }
$post_cache_options = array();
|
| Zeile 728 | Zeile 770 |
|---|
$tids = array();
$pids = array();
// Make sure the posts we're viewing we have permission to view.
|
$tids = array();
$pids = array();
// Make sure the posts we're viewing we have permission to view.
|
$query = $db->simple_select("posts", "pid, tid", "pid IN(".$db->escape_string($search['posts']).") AND {$p_unapproved_where}", $post_cache_options);
| $query = $db->simple_select("posts", "pid, tid", "pid IN(".$db->escape_string($search['posts']).") AND {$unapproved_where}", $post_cache_options);
|
while($post = $db->fetch_array($query))
{
$pids[$post['pid']] = $post['tid'];
| while($post = $db->fetch_array($query))
{
$pids[$post['pid']] = $post['tid'];
|
| Zeile 738 | Zeile 780 |
|---|
if(!empty($pids))
{
$temp_pids = array();
|
if(!empty($pids))
{
$temp_pids = array();
|
|
$group_permissions = forum_permissions();
$permsql = '';
$onlyusfids = array();
foreach($group_permissions as $fid => $forum_permissions)
{
if(!empty($forum_permissions['canonlyviewownthreads']))
{
$onlyusfids[] = $fid;
}
}
if($onlyusfids)
{
$permsql .= " OR (fid IN(".implode(',', $onlyusfids).") AND uid!={$mybb->user['uid']})";
}
$unsearchforums = get_unsearchable_forums();
if($unsearchforums)
{
$permsql .= " OR fid IN ($unsearchforums)";
}
$inactiveforums = get_inactive_forums();
if($inactiveforums)
{
$permsql .= " OR fid IN ($inactiveforums)";
}
|
// Check the thread records as well. If we don't have permissions, remove them from the listing.
|
// Check the thread records as well. If we don't have permissions, remove them from the listing.
|
$query = $db->simple_select("threads", "tid", "tid IN(".$db->escape_string(implode(',', $pids)).") AND ({$t_unapproved_where} OR closed LIKE 'moved|%')");
| $query = $db->simple_select("threads", "tid", "tid IN(".$db->escape_string(implode(',', $pids)).") AND ({$unapproved_where}{$permsql} OR closed LIKE 'moved|%')");
|
while($thread = $db->fetch_array($query))
{
|
while($thread = $db->fetch_array($query))
{
|
if(array_key_exists($thread['tid'], $tids) != false)
| if(array_key_exists($thread['tid'], $tids) != true)
|
{
$temp_pids = $tids[$thread['tid']];
foreach($temp_pids as $pid)
| {
$temp_pids = $tids[$thread['tid']];
foreach($temp_pids as $pid)
|
| Zeile 782 | Zeile 851 |
|---|
$dot_icon = array();
if($mybb->settings['dotfolders'] != 0 && $mybb->user['uid'] != 0)
{
|
$dot_icon = array();
if($mybb->settings['dotfolders'] != 0 && $mybb->user['uid'] != 0)
{
|
$query = $db->simple_select("posts", "DISTINCT tid,uid", "uid='".$mybb->user['uid']."' AND tid IN(".$db->escape_string($tids).")");
| $query = $db->simple_select("posts", "DISTINCT tid,uid", "uid='{$mybb->user['uid']}' AND tid IN({$db->escape_string($tids)}) AND {$unapproved_where}");
|
while($post = $db->fetch_array($query))
{
$dot_icon[$post['tid']] = true;
| while($post = $db->fetch_array($query))
{
$dot_icon[$post['tid']] = true;
|
| Zeile 790 | Zeile 859 |
|---|
}
$results = '';
|
}
$results = '';
|
|
|
$query = $db->query("
SELECT p.*, u.username AS userusername, t.subject AS thread_subject, t.replies AS thread_replies, t.views AS thread_views, t.lastpost AS thread_lastpost, t.closed AS thread_closed, t.uid as thread_uid
FROM ".TABLE_PREFIX."posts p
| $query = $db->query("
SELECT p.*, u.username AS userusername, t.subject AS thread_subject, t.replies AS thread_replies, t.views AS thread_views, t.lastpost AS thread_lastpost, t.closed AS thread_closed, t.uid as thread_uid
FROM ".TABLE_PREFIX."posts p
|
| Zeile 806 | Zeile 875 |
|---|
if($post['visible'] == 0)
{
$bgcolor = 'trow_shaded';
|
if($post['visible'] == 0)
{
$bgcolor = 'trow_shaded';
|
}
| }
|
elseif($post['visible'] == -1)
{
$bgcolor = 'trow_shaded trow_deleted';
| elseif($post['visible'] == -1)
{
$bgcolor = 'trow_shaded trow_deleted';
|
| Zeile 815 | Zeile 884 |
|---|
{
$post['username'] = $post['userusername'];
}
|
{
$post['username'] = $post['userusername'];
}
|
| | $post['username'] = htmlspecialchars_uni($post['username']);
|
$post['profilelink'] = build_profile_link($post['username'], $post['uid']);
$post['subject'] = $parser->parse_badwords($post['subject']);
$post['thread_subject'] = $parser->parse_badwords($post['thread_subject']);
| $post['profilelink'] = build_profile_link($post['username'], $post['uid']);
$post['subject'] = $parser->parse_badwords($post['subject']);
$post['thread_subject'] = $parser->parse_badwords($post['thread_subject']);
|
| Zeile 833 | Zeile 903 |
|---|
$icon = " ";
}
|
$icon = " ";
}
|
| | $post['forumlink'] = '';
|
if(!empty($forumcache[$thread['fid']]))
{
|
if(!empty($forumcache[$thread['fid']]))
{
|
$post['forumlink'] = "<a href=\"".get_forum_link($post['fid'])."\">".$forumcache[$post['fid']]['name']."</a>";
}
else
{
$post['forumlink'] = "";
| $post['forumlink_link'] = get_forum_link($post['fid']);
$post['forumlink_name'] = $forumcache[$post['fid']]['name'];
eval("\$post['forumlink'] = \"".$templates->get("search_results_posts_forumlink")."\";");
|
}
|
}
|
| |
|
// Determine the folder
$folder = '';
$folder_label = '';
| // Determine the folder
$folder = '';
$folder_label = '';
|
| Zeile 931 | Zeile 1001 |
|---|
$post['thread_replies'] = my_number_format($post['thread_replies']);
$post['thread_views'] = my_number_format($post['thread_views']);
|
$post['thread_replies'] = my_number_format($post['thread_replies']);
$post['thread_views'] = my_number_format($post['thread_views']);
|
| | $post['forumlink'] = '';
|
if($forumcache[$post['fid']])
{
|
if($forumcache[$post['fid']])
{
|
$post['forumlink'] = "<a href=\"".get_forum_link($post['fid'])."\">".$forumcache[$post['fid']]['name']."</a>";
}
else
{
$post['forumlink'] = "";
| $post['forumlink_link'] = get_forum_link($post['fid']);
$post['forumlink_name'] = $forumcache[$post['fid']]['name'];
eval("\$post['forumlink'] = \"".$templates->get("search_results_posts_forumlink")."\";");
|
}
if(!$post['subject'])
| }
if(!$post['subject'])
|
| Zeile 1340 | Zeile 1409 |
|---|
foreach($fids as $key => $fid)
{
$fids[$key] = (int)$fid;
|
foreach($fids as $key => $fid)
{
$fids[$key] = (int)$fid;
|
}
if(!empty($fids))
| }
if(!empty($fids))
|
{
$where_sql .= " AND t.fid IN (".implode(',', $fids).")";
}
| {
$where_sql .= " AND t.fid IN (".implode(',', $fids).")";
}
|
| Zeile 1501 | Zeile 1570 |
|---|
{
// Fetch thread info
$thread = get_thread($mybb->get_input('tid', MyBB::INPUT_INT));
|
{
// Fetch thread info
$thread = get_thread($mybb->get_input('tid', MyBB::INPUT_INT));
|
if(is_moderator($fid))
{
$ismod = true;
}
else
{
$ismod = false;
}
if(!$thread || ($thread['visible'] != 1 && $ismod == false && ($thread['visible'] != -1 || $mybb->settings['soft_delete'] != 1 || $mybb->settings['soft_delete_show_own'] != 1 || !$mybb->user['uid'] || $mybb->user['uid'] != $thread['uid'])) || ($thread['visible'] > 1 && $ismod == true))
| $ismod = is_moderator($thread['fid']);
if(!$thread || ($thread['visible'] != 1 && $ismod == false && ($thread['visible'] != -1 || $mybb->settings['soft_delete'] != 1 || !$mybb->user['uid'] || $mybb->user['uid'] != $thread['uid'])) || ($thread['visible'] > 1 && $ismod == true))
|
{
error($lang->error_invalidthread);
}
| {
error($lang->error_invalidthread);
}
|