Vergleich inc/functions_search.php - 1.8.15 - 1.8.34

Keine Änderungen Hinzugefügt Modifiziert Entfernt
Zeile 54	Zeile 54
$optionselected = ''; $selecteddone = "0"; }	$optionselected = ''; $selecteddone = "0"; }
if($forum['password'] != '')	if(forum_password_validated($forum, true))
{	{
if($mybb->cookies['forumpass'][$forum['fid']] === md5($mybb->user['uid'].$forum['password'])) { $pwverified = 1; } else { $pwverified = 0; } } if(empty($forum['password']) \|\| $pwverified == 1) { eval("\$forumlistbits .= \"".$templates->get("search_forumlist_forum")."\";");	eval("\$forumlistbits .= \"".$templates->get("search_forumlist_forum")."\";");
} if(!empty($pforumcache[$forum['fid']])) {	} if(!empty($pforumcache[$forum['fid']])) {
Zeile 83	Zeile 72
eval("\$forumlist = \"".$templates->get("search_forumlist")."\";"); } return $forumlist;	eval("\$forumlist = \"".$templates->get("search_forumlist")."\";"); } return $forumlist;
}	}
/** * Build a comma separated list of the forums this user cannot search *	/** * Build a comma separated list of the forums this user cannot search *
Zeile 94	Zeile 83
*/ function get_unsearchable_forums($pid=0, $first=1) {	*/ function get_unsearchable_forums($pid=0, $first=1) {
global $db, $forum_cache, $permissioncache, $mybb, $unsearchableforums, $unsearchable, $templates, $forumpass;	global $forum_cache, $permissioncache, $mybb, $unsearchableforums, $unsearchable, $templates, $forumpass;
$pid = (int)$pid; if(!is_array($forum_cache)) {	$pid = (int)$pid; if(!is_array($forum_cache)) {
// Get Forums $query = $db->simple_select("forums", "fid,parentlist,password,active", '', array('order_by' => 'pid, disporder')); while($forum = $db->fetch_array($query)) { $forum_cache[$forum['fid']] = $forum; }	cache_forums();
} if(!is_array($permissioncache)) {	} if(!is_array($permissioncache)) {
Zeile 120	Zeile 104
else { $perms = $mybb->usergroup;	else { $perms = $mybb->usergroup;
} $pwverified = 1; if($forum['password'] != '') { if($mybb->cookies['forumpass'][$forum['fid']] !== md5($mybb->user['uid'].$forum['password'])) { $pwverified = 0; }
} $parents = explode(",", $forum['parentlist']);	} $parents = explode(",", $forum['parentlist']);
Zeile 139	Zeile 114
if($forum_cache[$parent]['active'] == 0) { $forum['active'] = 0;	if($forum_cache[$parent]['active'] == 0) { $forum['active'] = 0;
} } } if($perms['canview'] != 1 \|\| $perms['cansearch'] != 1 \|\| $pwverified == 0 \|\| $forum['active'] == 0)	} } } if($perms['canview'] != 1 \|\| $perms['cansearch'] != 1 \|\| !forum_password_validated($forum, true) \|\| $forum['active'] == 0)
{ if($unsearchableforums) {	{ if($unsearchableforums) {
Zeile 168	Zeile 143
} return $unsearchable;	} return $unsearchable;
	} /** * Build query condition for threads/posts the user is allowed to see. * Will return for example: * - visible = 1 - for normal users * - visible >= -1 - for admins & super mods * - (visible = 1 OR (visible = ? AND fid IN ...)) - for forum moderators * * @param string $table_alias The alias of the table eg t to use t.visible instead of visible * @return string the query condition */ function get_visible_where($table_alias = null) { global $db, $mybb; $aliasdot = ''; if(!empty($table_alias)) { $aliasdot = $table_alias.'.'; } if($mybb->usergroup['issupermod'] == 1) { // Super moderators (and admins) return "{$aliasdot}visible >= -1"; } elseif(is_moderator()) { // Normal moderators $unapprove_forums = array(); $deleted_forums = array(); $unapproved_where = "({$aliasdot}visible = 1"; $moderated_fids = get_moderated_fids($mybb->user['uid']); if($moderated_fids !== false) { foreach($moderated_fids as $fid) { if(!is_moderator($fid)) { // Shouldn't occur. continue; } // Use moderates this forum $modperms = get_moderator_permissions($fid, $mybb->user['uid']); if($modperms['canviewunapprove'] == 1) { $unapprove_forums[] = $fid; } if($modperms['canviewdeleted'] == 1) { $deleted_forums[] = $fid; } } if(!empty($unapprove_forums)) { $unapproved_where .= " OR ({$aliasdot}visible = 0 AND {$aliasdot}fid IN(".implode(',', $unapprove_forums)."))"; } if(!empty($deleted_forums)) { $unapproved_where .= " OR ({$aliasdot}visible = -1 AND {$aliasdot}fid IN(".implode(',', $deleted_forums)."))"; } $unapproved_where .= ')'; return $unapproved_where; } } // Normal users if($mybb->user['uid'] > 0 && $mybb->settings['showownunapproved'] == 1) { return "({$aliasdot}visible = 1 OR ({$aliasdot}visible = 0 AND {$aliasdot}uid = {$mybb->user['uid']}))"; } return "{$aliasdot}visible = 1";
} /**	} /**
Zeile 179	Zeile 234
function get_password_protected_forums($fids=array()) { global $forum_cache, $mybb;	function get_password_protected_forums($fids=array()) { global $forum_cache, $mybb;

if(!is_array($fids))	if(!is_array($fids))
{	{
return false; }	return false; }
Zeile 191	Zeile 246
if(!$forum_cache) { return false;	if(!$forum_cache) { return false;
} }	} }
if(empty($fids))	if(empty($fids))
{	{
$fids = array_keys($forum_cache); } $pass_fids = array(); foreach($fids as $fid) {	$fids = array_keys($forum_cache); } $pass_fids = array(); foreach($fids as $fid) {
if(empty($forum_cache[$fid]['password'])) { continue; } if(md5($mybb->user['uid'].$forum_cache[$fid]['password']) !== $mybb->cookies['forumpass'][$fid]) {	if(!forum_password_validated($forum_cache[$fid], true)) {
$pass_fids[] = $fid;	$pass_fids[] = $fid;
$child_list = get_child_list($fid); } if(is_array($child_list)) { $pass_fids = array_merge($pass_fids, $child_list);	$pass_fids = array_merge($pass_fids, get_child_list($fid));
} } return array_unique($pass_fids);	} } return array_unique($pass_fids);
Zeile 229	Zeile 274
*/ function clean_keywords($keywords) {	*/ function clean_keywords($keywords) {
global $db;	global $db, $lang;
$keywords = my_strtolower($keywords); $keywords = $db->escape_string_like($keywords);	$keywords = my_strtolower($keywords); $keywords = $db->escape_string_like($keywords);
Zeile 243	Zeile 288
if(my_strpos($keywords, "or") === 0) { $keywords = substr_replace($keywords, "", 0, 2);	if(my_strpos($keywords, "or") === 0) { $keywords = substr_replace($keywords, "", 0, 2);
	$keywords = " ".$keywords;
} if(my_strpos($keywords, "and") === 0) { $keywords = substr_replace($keywords, "", 0, 3);	} if(my_strpos($keywords, "and") === 0) { $keywords = substr_replace($keywords, "", 0, 3);
}	$keywords = " ".$keywords; } if(!$keywords) { error($lang->error_nosearchterms); }
return $keywords; }	return $keywords; }
Zeile 272	Zeile 324
// Separate braces for further processing $keywords = preg_replace("#((\+\|-\|<\|>\|~)?$\|$)#s", " $1 ", $keywords); $keywords = preg_replace("#\s+#s", " ", $keywords);	// Separate braces for further processing $keywords = preg_replace("#((\+\|-\|<\|>\|~)?$\|$)#s", " $1 ", $keywords); $keywords = preg_replace("#\s+#s", " ", $keywords);
	global $mybb; $min_word_length = (int) $mybb->settings['minsearchword']; if($min_word_length <= 0) { $min_word_length = 3; } $min_word_length -= 1; $word_length_regex = ''; if($min_word_length > 1) { $word_length_regex = "{1,{$min_word_length}}"; } // Replaces less than 3 characters $keywords = preg_replace("/(\b.{$word_length_regex})(\s)\|(\b.{$word_length_regex}$)/u", '$2', $keywords); // Collapse multiple spaces $keywords = preg_replace('/(\s)+/', '$1', $keywords); $keywords = trim($keywords);
$words = array(array()); // Fulltext search syntax validation: http://dev.mysql.com/doc/refman/5.6/en/fulltext-boolean.html	$words = array(array()); // Fulltext search syntax validation: http://dev.mysql.com/doc/refman/5.6/en/fulltext-boolean.html
Zeile 457	Zeile 530
{ $string = "OR"; $subject_lookin = " AND (";	{ $string = "OR"; $subject_lookin = " AND (";
} if($search['message'] == 1) { $message_lookin = " {$string} ("; } // Expand the string by double quotes $keywords_exp = explode("\"", $keywords); $inquote = false; $boolean = '';	} if($search['message'] == 1) { $message_lookin = " {$string} ("; } // Expand the string by double quotes $keywords_exp = explode("\"", $keywords); $inquote = false; $boolean = '';
foreach($keywords_exp as $phrase) {	foreach($keywords_exp as $phrase) {
Zeile 541	Zeile 614
{ $lang->error_minsearchlength = $lang->sprintf($lang->error_minsearchlength, $mybb->settings['minsearchword']); error($lang->error_minsearchlength);	{ $lang->error_minsearchlength = $lang->sprintf($lang->error_minsearchlength, $mybb->settings['minsearchword']); error($lang->error_minsearchlength);
}	}
// Add phrase to search query $subject_lookin .= " $boolean {$sfield} LIKE '%{$phrase}%'"; if($search['message'] == 1)	// Add phrase to search query $subject_lookin .= " $boolean {$sfield} LIKE '%{$phrase}%'"; if($search['message'] == 1)
Zeile 660	Zeile 733
if(!empty($search['folder'])) { $folderids = array();	if(!empty($search['folder'])) { $folderids = array();
$search['folder'] = array_map("intval", $search['folder']);	$search['folder'] = array_map("intval", $search['folder']);
$folderids = implode(',', $search['folder']); if($folderids)	$folderids = implode(',', $search['folder']); if($folderids)
Zeile 675	Zeile 748
{ $searchsql .= " AND ("; if($search['status']['new'])	{ $searchsql .= " AND ("; if($search['status']['new'])
{	{
$statussql[] = " status='0' "; } if($search['status']['replied'])	$statussql[] = " status='0' "; } if($search['status']['replied'])
{	{
$statussql[] = " status='3' "; } if($search['status']['forwarded'])	$statussql[] = " status='3' "; } if($search['status']['forwarded'])
Zeile 698	Zeile 771
$statussql = implode("OR", $statussql); $searchsql .= $statussql.")"; }	$statussql = implode("OR", $statussql); $searchsql .= $statussql.")"; }
	$limitsql = ""; if((int)$mybb->settings['searchhardlimit'] > 0) { $limitsql = " LIMIT ".(int)$mybb->settings['searchhardlimit']; } $searchsql .= $limitsql;
// Run the search $pms = array();	// Run the search $pms = array();
Zeile 956	Zeile 1036
global $mybb, $db, $lang, $cache; $keywords = clean_keywords($search['keywords']);	global $mybb, $db, $lang, $cache; $keywords = clean_keywords($search['keywords']);
if(!$keywords && !$search['author']) { error($lang->error_nosearchterms); }
if($mybb->settings['minsearchword'] < 1) {	if($mybb->settings['minsearchword'] < 1) {
Zeile 1221	Zeile 1297
if(isset($forum_permissions['canonlyviewownthreads']) && $forum_permissions['canonlyviewownthreads'] == 1) { $onlyusfids[] = $fid;	if(isset($forum_permissions['canonlyviewownthreads']) && $forum_permissions['canonlyviewownthreads'] == 1) { $onlyusfids[] = $fid;
} } } if(!empty($onlyusfids)) { $permsql .= "AND ((t.fid IN(".implode(',', $onlyusfids).") AND t.uid='{$mybb->user['uid']}') OR t.fid NOT IN(".implode(',', $onlyusfids)."))"; } $unsearchforums = get_unsearchable_forums(); if($unsearchforums) { $permsql .= " AND t.fid NOT IN ($unsearchforums)"; } $inactiveforums = get_inactive_forums(); if($inactiveforums) { $permsql .= " AND t.fid NOT IN ($inactiveforums)"; } $visiblesql = $post_visiblesql = $plain_post_visiblesql = ""; if(isset($search['visible'])) { if($search['visible'] == 1) { $visiblesql = " AND t.visible = '1'"; if($search['postthread'] == 1) { $post_visiblesql = " AND p.visible = '1'";	} } } if(!empty($onlyusfids)) { $permsql .= "AND ((t.fid IN(".implode(',', $onlyusfids).") AND t.uid='{$mybb->user['uid']}') OR t.fid NOT IN(".implode(',', $onlyusfids)."))"; } $unsearchforums = get_unsearchable_forums(); if($unsearchforums) { $permsql .= " AND t.fid NOT IN ($unsearchforums)"; } $inactiveforums = get_inactive_forums(); if($inactiveforums) { $permsql .= " AND t.fid NOT IN ($inactiveforums)"; } $visiblesql = $post_visiblesql = $plain_post_visiblesql = $unapproved_where_t = $unapproved_where_p = ""; if(isset($search['visible'])) { if($search['visible'] == 1) { $visiblesql = " AND t.visible = '1'"; if($search['postthread'] == 1) { $post_visiblesql = " AND p.visible = '1'";
$plain_post_visiblesql = " AND visible = '1'"; } }	$plain_post_visiblesql = " AND visible = '1'"; } }
Zeile 1274	Zeile 1350
} } }	} } }
	// Moderators can view unapproved threads and deleted threads from forums they moderate $unapproved_where_t = get_visible_where('t'); $unapproved_where_p = get_visible_where('p');
// Searching a specific thread? $tidsql = '';	// Searching a specific thread? $tidsql = '';
Zeile 1300	Zeile 1380
$query = $db->query(" SELECT t.tid, t.firstpost FROM ".TABLE_PREFIX."threads t	$query = $db->query(" SELECT t.tid, t.firstpost FROM ".TABLE_PREFIX."threads t
WHERE 1=1 {$thread_datecut} {$thread_replycut} {$thread_prefixcut} {$forumin} {$thread_usersql} {$permsql} {$visiblesql} AND t.closed NOT LIKE 'moved\|%' {$subject_lookin}	WHERE 1=1 {$thread_datecut} {$thread_replycut} {$thread_prefixcut} {$forumin} {$thread_usersql} {$permsql} {$visiblesql} AND ({$unapproved_where_t}) AND t.closed NOT LIKE 'moved\|%' {$subject_lookin}
{$limitsql} "); while($thread = $db->fetch_array($query))	{$limitsql} "); while($thread = $db->fetch_array($query))
Zeile 1317	Zeile 1397
SELECT p.pid, p.tid FROM ".TABLE_PREFIX."posts p LEFT JOIN ".TABLE_PREFIX."threads t ON (t.tid=p.tid)	SELECT p.pid, p.tid FROM ".TABLE_PREFIX."posts p LEFT JOIN ".TABLE_PREFIX."threads t ON (t.tid=p.tid)
WHERE 1=1 {$post_datecut} {$thread_replycut} {$thread_prefixcut} {$forumin} {$post_usersql} {$permsql} {$tidsql} {$visiblesql} {$post_visiblesql} AND t.closed NOT LIKE 'moved\|%' {$message_lookin}	WHERE 1=1 {$post_datecut} {$thread_replycut} {$thread_prefixcut} {$forumin} {$post_usersql} {$permsql} {$tidsql} {$visiblesql} {$post_visiblesql} AND ({$unapproved_where_t}) AND ({$unapproved_where_p}) AND t.closed NOT LIKE 'moved\|%' {$message_lookin}
{$limitsql} "); while($post = $db->fetch_array($query))	{$limitsql} "); while($post = $db->fetch_array($query))
Zeile 1386	Zeile 1466
global $mybb, $db, $lang; $keywords = clean_keywords_ft($search['keywords']);	global $mybb, $db, $lang; $keywords = clean_keywords_ft($search['keywords']);
if(!$keywords && !$search['author']) { error($lang->error_nosearchterms); }

// Attempt to determine minimum word length from MySQL for fulltext searches $query = $db->query("SHOW VARIABLES LIKE 'ft_min_word_len';"); $min_length = $db->fetch_field($query, 'Value'); if(is_numeric($min_length)) { $mybb->settings['minsearchword'] = $min_length; } // Otherwise, could not fetch - default back to MySQL fulltext default setting else	if($mybb->settings['minsearchword'] < 1)
{ $mybb->settings['minsearchword'] = 4; }	{ $mybb->settings['minsearchword'] = 4; }
	$message_lookin = $subject_lookin = '';
if($keywords) { $keywords_exp = explode("\"", $keywords);	if($keywords) { $keywords_exp = explode("\"", $keywords);
Zeile 1490	Zeile 1559
$thread_usersql = " AND t.uid IN (".$userids.")"; } }	$thread_usersql = " AND t.uid IN (".$userids.")"; } }
$datecut = '';	$datecut = $thread_datecut = $post_datecut = '';
if($search['postdate']) { if($search['pddir'] == 0)	if($search['postdate']) { if($search['pddir'] == 0)
Zeile 1578	Zeile 1647
$group_permissions = forum_permissions(); foreach($group_permissions as $fid => $forum_permissions) {	$group_permissions = forum_permissions(); foreach($group_permissions as $fid => $forum_permissions) {
if($forum_permissions['canonlyviewownthreads'] == 1)	if(isset($forum_permissions['canonlyviewownthreads']) && $forum_permissions['canonlyviewownthreads'] == 1)
{ $onlyusfids[] = $fid; }	{ $onlyusfids[] = $fid; }
Zeile 1599	Zeile 1668
$permsql .= " AND t.fid NOT IN ($inactiveforums)"; }	$permsql .= " AND t.fid NOT IN ($inactiveforums)"; }
$visiblesql = $post_visiblesql = $plain_post_visiblesql = "";	$visiblesql = $post_visiblesql = $plain_post_visiblesql = $unapproved_where_t = $unapproved_where_p = "";
if(isset($search['visible'])) { if($search['visible'] == 1)	if(isset($search['visible'])) { if($search['visible'] == 1)
Zeile 1633	Zeile 1702
} } }	} } }
	// Moderators can view unapproved threads and deleted threads from forums they moderate $unapproved_where_t = get_visible_where('t'); $unapproved_where_p = get_visible_where('p');
// Searching a specific thread?	// Searching a specific thread?
if($search['tid'])	$tidsql = ''; if(!empty($search['tid']))
{ $tidsql = " AND t.tid='".(int)$search['tid']."'";	{ $tidsql = " AND t.tid='".(int)$search['tid']."'";
}	}
$limitsql = ''; if((int)$mybb->settings['searchhardlimit'] > 0) {	$limitsql = ''; if((int)$mybb->settings['searchhardlimit'] > 0) {
Zeile 1653	Zeile 1727
if($search['postthread'] == 1) { // No need to search subjects when looking for results within a specific thread	if($search['postthread'] == 1) { // No need to search subjects when looking for results within a specific thread
if(!$search['tid'])	if(empty($search['tid']))
{ $query = $db->query(" SELECT t.tid, t.firstpost FROM ".TABLE_PREFIX."threads t	{ $query = $db->query(" SELECT t.tid, t.firstpost FROM ".TABLE_PREFIX."threads t
WHERE 1=1 {$thread_datecut} {$thread_replycut} {$thread_prefixcut} {$forumin} {$thread_usersql} {$permsql} {$visiblesql} AND t.closed NOT LIKE 'moved\|%' {$subject_lookin}	WHERE 1=1 {$thread_datecut} {$thread_replycut} {$thread_prefixcut} {$forumin} {$thread_usersql} {$permsql} {$visiblesql} AND ({$unapproved_where_t}) AND t.closed NOT LIKE 'moved\|%' {$subject_lookin}
{$limitsql} "); while($thread = $db->fetch_array($query))	{$limitsql} "); while($thread = $db->fetch_array($query))
Zeile 1675	Zeile 1749
SELECT p.pid, p.tid FROM ".TABLE_PREFIX."posts p LEFT JOIN ".TABLE_PREFIX."threads t ON (t.tid=p.tid)	SELECT p.pid, p.tid FROM ".TABLE_PREFIX."posts p LEFT JOIN ".TABLE_PREFIX."threads t ON (t.tid=p.tid)
WHERE 1=1 {$post_datecut} {$thread_replycut} {$thread_prefixcut} {$forumin} {$post_usersql} {$permsql} {$tidsql} {$post_visiblesql} {$visiblesql} AND t.closed NOT LIKE 'moved\|%' {$message_lookin}	WHERE 1=1 {$post_datecut} {$thread_replycut} {$thread_prefixcut} {$forumin} {$post_usersql} {$permsql} {$tidsql} {$post_visiblesql} {$visiblesql} AND ({$unapproved_where_t}) AND {$unapproved_where_p} AND t.closed NOT LIKE 'moved\|%' {$message_lookin}
{$limitsql} "); while($post = $db->fetch_array($query))	{$limitsql} "); while($post = $db->fetch_array($query))