fc6b9d6a79
git-svn-id: http://piwigo.org/svn/branches/release-1_3@379 68402e56-0260-453c-a942-63ccdbb3a9ee
1012 lines
30 KiB
PHP
1012 lines
30 KiB
PHP
<?php
|
|
/***************************************************************************
|
|
* functions.php *
|
|
* ------------------- *
|
|
* application : PhpWebGallery 1.3 <http://phpwebgallery.net> *
|
|
* author : Pierrick LE GALL <pierrick@z0rglub.com> *
|
|
* *
|
|
* $Id$
|
|
* *
|
|
***************************************************************************
|
|
|
|
***************************************************************************
|
|
* *
|
|
* This program is free software; you can redistribute it and/or modify *
|
|
* it under the terms of the GNU General Public License as published by *
|
|
* the Free Software Foundation; *
|
|
* *
|
|
***************************************************************************/
|
|
|
|
$tab_ext_create_TN = array ( 'jpg', 'png', 'JPG', 'PNG' );
|
|
|
|
// is_image returns true if the given $filename (including the path) is a
|
|
// picture according to its format and its extension.
|
|
// As GD library can only generate pictures from jpeg and png files, if you
|
|
// ask if the filename is an image for thumbnail creation (second parameter
|
|
// set to true), the only authorized formats are jpeg and png.
|
|
function is_image( $filename, $create_thumbnail = false )
|
|
{
|
|
global $conf, $tab_ext_create_TN;
|
|
|
|
if ( is_file( $filename ) )
|
|
{
|
|
$size = getimagesize( $filename );
|
|
// $size[2] == 1 means GIF
|
|
// $size[2] == 2 means JPG
|
|
// $size[2] == 3 means PNG
|
|
if ( !$create_thumbnail )
|
|
{
|
|
if ( in_array( get_extension( $filename ), $conf['picture_ext'] )
|
|
and ( $size[2] == 1 or $size[2] == 2 or $size[2] == 3 ) )
|
|
{
|
|
return true;
|
|
}
|
|
}
|
|
else
|
|
{
|
|
if ( in_array( get_extension( $filename ), $tab_ext_create_TN )
|
|
and ( $size[2] == 2 or $size[2] == 3 ) )
|
|
{
|
|
return true;
|
|
}
|
|
}
|
|
}
|
|
return false;
|
|
}
|
|
|
|
/**
|
|
* returns an array with all picture files according to $conf['picture_ext']
|
|
*
|
|
* @param string $dir
|
|
* @return array
|
|
*/
|
|
function get_picture_files( $dir )
|
|
{
|
|
global $conf;
|
|
|
|
$pictures = array();
|
|
if ( $opendir = opendir( $dir ) )
|
|
{
|
|
while ( $file = readdir( $opendir ) )
|
|
{
|
|
if ( in_array( get_extension( $file ), $conf['picture_ext'] ) )
|
|
{
|
|
array_push( $pictures, $file );
|
|
}
|
|
}
|
|
}
|
|
return $pictures;
|
|
}
|
|
|
|
/**
|
|
* returns an array with all thumbnails according to $conf['picture_ext']
|
|
* and $conf['prefix_thumbnail']
|
|
*
|
|
* @param string $dir
|
|
* @return array
|
|
*/
|
|
function get_thumb_files( $dir )
|
|
{
|
|
global $conf;
|
|
|
|
$prefix_length = strlen( $conf['prefix_thumbnail'] );
|
|
|
|
$thumbnails = array();
|
|
if ( $opendir = @opendir( $dir ) )
|
|
{
|
|
while ( $file = readdir( $opendir ) )
|
|
{
|
|
if ( in_array( get_extension( $file ), $conf['picture_ext'] )
|
|
and substr($file,0,$prefix_length) == $conf['prefix_thumbnail'] )
|
|
{
|
|
array_push( $thumbnails, $file );
|
|
}
|
|
}
|
|
}
|
|
return $thumbnails;
|
|
}
|
|
|
|
function TN_exists( $dir, $file )
|
|
{
|
|
global $conf;
|
|
|
|
$filename = get_filename_wo_extension( $file );
|
|
foreach ( $conf['picture_ext'] as $ext ) {
|
|
$test = $dir.'/thumbnail/'.$conf['prefix_thumbnail'].$filename.'.'.$ext;
|
|
if ( is_file ( $test ) )
|
|
{
|
|
return $ext;
|
|
}
|
|
}
|
|
return false;
|
|
}
|
|
|
|
|
|
// The function delete_site deletes a site
|
|
// and call the function delete_category for each primary category of the site
|
|
function delete_site( $id )
|
|
{
|
|
// destruction of the categories of the site
|
|
$query = 'SELECT id';
|
|
$query.= ' FROM '.PREFIX_TABLE.'categories';
|
|
$query.= ' WHERE site_id = '.$id;
|
|
$query.= ';';
|
|
$result = mysql_query( $query );
|
|
while ( $row = mysql_fetch_array( $result ) )
|
|
{
|
|
delete_category( $row['id'] );
|
|
}
|
|
|
|
// destruction of the site
|
|
$query = 'DELETE FROM '.PREFIX_TABLE.'sites';
|
|
$query.= ' WHERE id = '.$id;
|
|
$query.= ';';
|
|
mysql_query( $query );
|
|
}
|
|
|
|
|
|
// The function delete_category deletes the category identified by the $id
|
|
// It also deletes (in the database) :
|
|
// - all the images of the images (thanks to delete_image, see further)
|
|
// - all the links between images and this category
|
|
// - all the restrictions linked to the category
|
|
// The function works recursively.
|
|
function delete_category( $id )
|
|
{
|
|
// destruction of all the related images
|
|
$query = 'SELECT id';
|
|
$query.= ' FROM '.PREFIX_TABLE.'images';
|
|
$query.= ' WHERE storage_category_id = '.$id;
|
|
$query.= ';';
|
|
$result = mysql_query( $query );
|
|
while ( $row = mysql_fetch_array( $result ) )
|
|
{
|
|
delete_image( $row['id'] );
|
|
}
|
|
|
|
// destruction of the links between images and this category
|
|
$query = 'DELETE FROM '.PREFIX_TABLE.'image_category';
|
|
$query.= ' WHERE category_id = '.$id;
|
|
$query.= ';';
|
|
mysql_query( $query );
|
|
|
|
// destruction of the access linked to the category
|
|
$query = 'DELETE FROM '.PREFIX_TABLE.'user_access';
|
|
$query.= ' WHERE cat_id = '.$id;
|
|
$query.= ';';
|
|
mysql_query( $query );
|
|
$query = 'DELETE FROM '.PREFIX_TABLE.'group_access';
|
|
$query.= ' WHERE cat_id = '.$id;
|
|
$query.= ';';
|
|
mysql_query( $query );
|
|
|
|
// destruction of the sub-categories
|
|
$query = 'SELECT id';
|
|
$query.= ' FROM '.PREFIX_TABLE.'categories';
|
|
$query.= ' WHERE id_uppercat = '.$id;
|
|
$query.= ';';
|
|
$result = mysql_query( $query );
|
|
while( $row = mysql_fetch_array( $result ) )
|
|
{
|
|
delete_category( $row['id'] );
|
|
}
|
|
|
|
// destruction of the category
|
|
$query = 'DELETE FROM '.PREFIX_TABLE.'categories';
|
|
$query.= ' WHERE id = '.$id;
|
|
$query.= ';';
|
|
mysql_query( $query );
|
|
}
|
|
|
|
|
|
// The function delete_image deletes the image identified by the $id
|
|
// It also deletes (in the database) :
|
|
// - all the comments related to the image
|
|
// - all the links between categories and this image
|
|
// - all the favorites associated to the image
|
|
function delete_image( $id )
|
|
{
|
|
global $count_deleted;
|
|
|
|
// destruction of the comments on the image
|
|
$query = 'DELETE FROM '.PREFIX_TABLE.'comments';
|
|
$query.= ' WHERE image_id = '.$id;
|
|
$query.= ';';
|
|
mysql_query( $query );
|
|
|
|
// destruction of the links between images and this category
|
|
$query = 'DELETE FROM '.PREFIX_TABLE.'image_category';
|
|
$query.= ' WHERE image_id = '.$id;
|
|
$query.= ';';
|
|
mysql_query( $query );
|
|
|
|
// destruction of the favorites associated with the picture
|
|
$query = 'DELETE FROM '.PREFIX_TABLE.'favorites';
|
|
$query.= ' WHERE image_id = '.$id;
|
|
$query.= ';';
|
|
mysql_query( $query );
|
|
|
|
// destruction of the image
|
|
$query = 'DELETE FROM '.PREFIX_TABLE.'images';
|
|
$query.= ' WHERE id = '.$id;
|
|
$query.= ';';
|
|
mysql_query( $query );
|
|
$count_deleted++;
|
|
}
|
|
|
|
// The delete_user function delete a user identified by the $user_id
|
|
// It also deletes :
|
|
// - all the access linked to this user
|
|
// - all the links to any group
|
|
// - all the favorites linked to this user
|
|
// - all sessions linked to this user
|
|
// - all categories informations linked to this user
|
|
function delete_user( $user_id )
|
|
{
|
|
// destruction of the access linked to the user
|
|
$query = 'DELETE FROM '.PREFIX_TABLE.'user_access';
|
|
$query.= ' WHERE user_id = '.$user_id;
|
|
$query.= ';';
|
|
mysql_query( $query );
|
|
|
|
// destruction of the group links for this user
|
|
$query = 'DELETE FROM '.PREFIX_TABLE.'user_group';
|
|
$query.= ' WHERE user_id = '.$user_id;
|
|
$query.= ';';
|
|
mysql_query( $query );
|
|
|
|
// destruction of the favorites associated with the user
|
|
$query = 'DELETE FROM '.PREFIX_TABLE.'favorites';
|
|
$query.= ' WHERE user_id = '.$user_id;
|
|
$query.= ';';
|
|
mysql_query( $query );
|
|
|
|
// destruction of the sessions linked with the user
|
|
$query = 'DELETE FROM '.PREFIX_TABLE.'sessions';
|
|
$query.= ' WHERE user_id = '.$user_id;
|
|
$query.= ';';
|
|
mysql_query( $query );
|
|
|
|
// destruction of the categories informations linked with the user
|
|
$query = 'DELETE FROM '.PREFIX_TABLE.'user_category';
|
|
$query.= ' WHERE user_id = '.$user_id;
|
|
$query.= ';';
|
|
mysql_query( $query );
|
|
|
|
// destruction of the user
|
|
$query = 'DELETE FROM '.PREFIX_TABLE.'users';
|
|
$query.= ' WHERE id = '.$user_id;
|
|
$query.= ';';
|
|
mysql_query( $query );
|
|
}
|
|
|
|
// delete_group deletes a group identified by its $group_id.
|
|
// It also deletes :
|
|
// - all the access linked to this group
|
|
// - all the links between this group and any user
|
|
function delete_group( $group_id )
|
|
{
|
|
// destruction of the access linked to the group
|
|
$query = 'DELETE FROM '.PREFIX_TABLE.'group_access';
|
|
$query.= ' WHERE group_id = '.$group_id;
|
|
$query.= ';';
|
|
mysql_query( $query );
|
|
|
|
// synchronize all users linked to the group
|
|
synchronize_group( $group_id );
|
|
|
|
// destruction of the users links for this group
|
|
$query = 'DELETE FROM '.PREFIX_TABLE.'user_group';
|
|
$query.= ' WHERE group_id = '.$group_id;
|
|
$query.= ';';
|
|
mysql_query( $query );
|
|
|
|
// destruction of the group
|
|
$query = 'DELETE FROM '.PREFIX_TABLE.'groups';
|
|
$query.= ' WHERE id = '.$group_id;
|
|
$query.= ';';
|
|
mysql_query( $query );
|
|
}
|
|
|
|
// The check_favorites function deletes all the favorites of a user if he is
|
|
// not allowed to see them (the category or an upper category is restricted
|
|
// or invisible)
|
|
function check_favorites( $user_id )
|
|
{
|
|
$query = 'SELECT status,forbidden_categories';
|
|
$query.= ' FROM '.PREFIX_TABLE.'users';
|
|
$query.= ' WHERE id = '.$user_id;
|
|
$query.= ';';
|
|
$row = mysql_fetch_array( mysql_query( $query ) );
|
|
$status = $row['status'];
|
|
// retrieving all the restricted categories for this user
|
|
if ( isset( $row['forbidden_categories'] ) )
|
|
$restricted_cat = explode( ',', $row['forbidden_categories'] );
|
|
else
|
|
$restricted_cat = array();
|
|
// retrieving all the favorites for this user and comparing their
|
|
// categories to the restricted categories
|
|
$query = 'SELECT image_id';
|
|
$query.= ' FROM '.PREFIX_TABLE.'favorites';
|
|
$query.= ' WHERE user_id = '.$user_id;
|
|
$query.= ';';
|
|
$result = mysql_query ( $query );
|
|
while ( $row = mysql_fetch_array( $result ) )
|
|
{
|
|
// for each picture, we have to check all the categories it belongs
|
|
// to. Indeed if a picture belongs to category_1 and category_2 and that
|
|
// category_2 is not restricted to the user, he can have the picture as
|
|
// favorite.
|
|
$query = 'SELECT DISTINCT(category_id) as category_id';
|
|
$query.= ' FROM '.PREFIX_TABLE.'image_category';
|
|
$query.= ' WHERE image_id = '.$row['image_id'];
|
|
$query.= ';';
|
|
$picture_result = mysql_query( $query );
|
|
$picture_cat = array();
|
|
while ( $picture_row = mysql_fetch_array( $picture_result ) )
|
|
{
|
|
array_push( $picture_cat, $picture_row['category_id'] );
|
|
}
|
|
if ( count( array_diff( $picture_cat, $restricted_cat ) ) == 0 )
|
|
{
|
|
$query = 'DELETE FROM '.PREFIX_TABLE.'favorites';
|
|
$query.= ' WHERE image_id = '.$row['image_id'];
|
|
$query.= ' AND user_id = '.$user_id;
|
|
$query.= ';';
|
|
mysql_query( $query );
|
|
}
|
|
}
|
|
}
|
|
|
|
// update_category updates calculated informations about a category :
|
|
// date_last and nb_images. It also verifies that the representative picture
|
|
// is really linked to the category.
|
|
function update_category( $id = 'all' )
|
|
{
|
|
if ( $id == 'all' )
|
|
{
|
|
$query = 'SELECT id';
|
|
$query.= ' FROM '.PREFIX_TABLE.'categories';
|
|
$query.= ';';
|
|
$result = mysql_query( $query );
|
|
while ( $row = mysql_fetch_array( $result ) )
|
|
{
|
|
// recursive call
|
|
update_category( $row['id'] );
|
|
}
|
|
}
|
|
else if ( is_numeric( $id ) )
|
|
{
|
|
// updating the number of pictures
|
|
$query = 'SELECT COUNT(*) as nb_images';
|
|
$query.= ' FROM '.PREFIX_TABLE.'image_category';
|
|
$query.= ' WHERE category_id = '.$id;
|
|
$query.= ';';
|
|
list( $nb_images ) = mysql_fetch_array( mysql_query( $query ) );
|
|
// updating the date_last
|
|
$query = 'SELECT MAX(date_available) AS date_available';
|
|
$query.= ' FROM '.PREFIX_TABLE.'images';
|
|
$query.= ' INNER JOIN '.PREFIX_TABLE.'image_category ON id = image_id';
|
|
$query.= ' WHERE category_id = '.$id;
|
|
$query.= ';';
|
|
list( $date_available ) = mysql_fetch_array( mysql_query( $query ) );
|
|
|
|
$query = 'UPDATE '.PREFIX_TABLE.'categories';
|
|
$query.= " SET date_last = '".$date_available."'";
|
|
$query.= ', nb_images = '.$nb_images;
|
|
$query.= ' WHERE id = '.$id;
|
|
$query.= ';';
|
|
mysql_query( $query );
|
|
|
|
// updating the representative_picture_id : if the representative
|
|
// picture of the category is not any more linked to the category, we
|
|
// have to set representative_picture_id to NULL
|
|
$query = 'SELECT representative_picture_id';
|
|
$query.= ' FROM '.PREFIX_TABLE.'categories';
|
|
$query.= ' WHERE id = '.$id;
|
|
$row = mysql_fetch_array( mysql_query( $query ) );
|
|
// if the category has no representative picture (ie
|
|
// representative_picture_id == NULL) we don't update anything
|
|
if ( isset( $row['representative_picture_id'] ) )
|
|
{
|
|
$query = 'SELECT image_id';
|
|
$query.= ' FROM '.PREFIX_TABLE.'image_category';
|
|
$query.= ' WHERE category_id = '.$id;
|
|
$query.= ' AND image_id = '.$row['representative_picture_id'];
|
|
$query.= ';';
|
|
$result = mysql_query( $query );
|
|
if ( mysql_num_rows( $result ) == 0 )
|
|
{
|
|
$query = 'UPDATE '.PREFIX_TABLE.'categories';
|
|
$query.= ' SET representative_picture_id = NULL';
|
|
$query.= ' WHERE id = '.$id;
|
|
$query.= ';';
|
|
mysql_query( $query );
|
|
}
|
|
}
|
|
}
|
|
}
|
|
|
|
function check_date_format( $date )
|
|
{
|
|
// date arrives at this format : DD/MM/YYYY
|
|
@list($day,$month,$year) = explode( '/', $date );
|
|
return @checkdate( $month, $day, $year );
|
|
}
|
|
|
|
function date_convert( $date )
|
|
{
|
|
// date arrives at this format : DD/MM/YYYY
|
|
// It must be transformed in YYYY-MM-DD
|
|
list($day,$month,$year) = explode( '/', $date );
|
|
return $year.'-'.$month.'-'.$day;
|
|
}
|
|
|
|
function date_convert_back( $date )
|
|
{
|
|
// date arrives at this format : YYYY-MM-DD
|
|
// It must be transformed in DD/MM/YYYY
|
|
if ( $date != '' )
|
|
{
|
|
list($year,$month,$day) = explode( '-', $date );
|
|
return $day.'/'.$month.'/'.$year;
|
|
}
|
|
else
|
|
{
|
|
return '';
|
|
}
|
|
}
|
|
|
|
// get_keywords returns an array with relevant keywords found in the string
|
|
// given in argument. Keywords must be separated by comma in this string.
|
|
// keywords must :
|
|
// - be longer or equal to 3 characters
|
|
// - not contain ', " or blank characters
|
|
// - unique in the string ("test,test" -> "test")
|
|
function get_keywords( $keywords_string )
|
|
{
|
|
$keywords = array();
|
|
|
|
$candidates = explode( ',', $keywords_string );
|
|
foreach ( $candidates as $candidate ) {
|
|
if ( strlen($candidate) >= 3 and !preg_match( '/(\'|"|\s)/', $candidate ) )
|
|
array_push( $keywords, $candidate );
|
|
}
|
|
|
|
return array_unique( $keywords );
|
|
}
|
|
|
|
function display_categories( $categories, $indent,
|
|
$selected = -1, $forbidden = -1 )
|
|
{
|
|
global $vtp,$sub;
|
|
|
|
foreach ( $categories as $category ) {
|
|
if ( $category['id'] != $forbidden )
|
|
{
|
|
$vtp->addSession( $sub, 'associate_cat' );
|
|
$vtp->setVar( $sub, 'associate_cat.value', $category['id'] );
|
|
$content = $indent.'- '.$category['name'];
|
|
$vtp->setVar( $sub, 'associate_cat.content', $content );
|
|
if ( $category['id'] == $selected )
|
|
$vtp->setVar( $sub, 'associate_cat.selected', ' selected="selected"' );
|
|
$vtp->closeSession( $sub, 'associate_cat' );
|
|
display_categories( $category['subcats'], $indent.str_repeat(' ',3),
|
|
$selected, $forbidden );
|
|
}
|
|
}
|
|
}
|
|
|
|
/**
|
|
* Complete plain structure of the gallery
|
|
*
|
|
* Returns the plain structure (one level array) of the gallery. In the
|
|
* returned array, each element is an array with jeys 'id' and
|
|
* 'id_uppercat'. The function also fills the array $page['subcats'] which
|
|
* associate (category_id => array of sub-categories id).
|
|
*
|
|
* @param bool $use_name
|
|
* @return array
|
|
*/
|
|
function get_plain_structure( $use_name = false )
|
|
{
|
|
global $page;
|
|
|
|
$plain_structure = array();
|
|
|
|
$query = 'SELECT id,id_uppercat';
|
|
if ( $use_name ) $query.= ',name';
|
|
$query.= ' FROM '.PREFIX_TABLE.'categories';
|
|
$query.= ' ORDER BY id_uppercat ASC, rank ASC';
|
|
$query.= ';';
|
|
|
|
$subcats = array();
|
|
$id_uppercat = 'NULL';
|
|
|
|
$result = mysql_query( $query );
|
|
while ( $row = mysql_fetch_array( $result ) )
|
|
{
|
|
$plain_structure[$row['id']]['id'] = $row['id'];
|
|
if ( !isset( $row['id_uppercat'] ) ) $row['id_uppercat'] = 'NULL';
|
|
$plain_structure[$row['id']]['id_uppercat'] = $row['id_uppercat'];
|
|
if ( $use_name ) $plain_structure[$row['id']]['name'] = $row['name'];
|
|
// subcats list
|
|
if ( $row['id_uppercat'] != $id_uppercat )
|
|
{
|
|
$page['subcats'][$id_uppercat] = $subcats;
|
|
|
|
$subcats = array();
|
|
$id_uppercat = $row['id_uppercat'];
|
|
}
|
|
array_push( $subcats, $row['id'] );
|
|
}
|
|
mysql_free_result( $result );
|
|
|
|
$page['subcats'][$id_uppercat] = $subcats;
|
|
|
|
return $plain_structure;
|
|
}
|
|
|
|
/**
|
|
* get N levels array representing structure under the given category
|
|
*
|
|
* create_structure returns the N levels array representing structure under
|
|
* the given gategory id. It also updates the
|
|
* $page['plain_structure'][id]['all_subcats_id'] and
|
|
* $page['plain_structure'][id]['direct_subcats_ids'] for each sub category.
|
|
*
|
|
* @param int $id_uppercat
|
|
* @return array
|
|
*/
|
|
function create_structure( $id_uppercat )
|
|
{
|
|
global $page;
|
|
|
|
$structure = array();
|
|
$ids = get_subcats_ids( $id_uppercat );
|
|
foreach ( $ids as $id ) {
|
|
$category = $page['plain_structure'][$id];
|
|
|
|
$category['subcats'] = create_structure( $id );
|
|
|
|
$page['plain_structure'][$id]['all_subcats_ids'] =
|
|
get_all_subcats_ids( $id );
|
|
|
|
$page['plain_structure'][$id]['direct_subcats_ids'] =
|
|
get_subcats_ids( $id );
|
|
|
|
array_push( $structure, $category );
|
|
}
|
|
return $structure;
|
|
}
|
|
|
|
/**
|
|
* returns direct sub-categories ids
|
|
*
|
|
* Returns an array containing all the direct sub-categories ids of the
|
|
* given category. It uses the $page['subcats'] global array.
|
|
*
|
|
* @param int $id_uppercat
|
|
* @return array
|
|
*/
|
|
function get_subcats_ids( $id_uppercat )
|
|
{
|
|
global $page;
|
|
|
|
if ( $id_uppercat == '' ) $id_uppercat = 'NULL';
|
|
|
|
if ( isset( $page['subcats'][$id_uppercat] ) )
|
|
return $page['subcats'][$id_uppercat];
|
|
else
|
|
return array();
|
|
}
|
|
|
|
/**
|
|
* returns all sub-categories ids, not only direct ones
|
|
*
|
|
* Returns an array containing all the sub-categories ids of the given
|
|
* category, not only direct ones. This function is recursive.
|
|
*
|
|
* @param int $category_id
|
|
* @return array
|
|
*/
|
|
function get_all_subcats_ids( $category_id )
|
|
{
|
|
$ids = array();
|
|
|
|
$subcats = get_subcats_ids( $category_id );
|
|
$ids = array_merge( $ids, $subcats );
|
|
foreach ( $subcats as $subcat ) {
|
|
// recursive call
|
|
$sub_subcats = get_all_subcats_ids( $subcat );
|
|
$ids = array_merge( $ids, $sub_subcats );
|
|
}
|
|
return array_unique( $ids );
|
|
}
|
|
|
|
/**
|
|
* prepares the query to update the table user_category
|
|
*
|
|
* Prepares the query (global variable $values) to update table
|
|
* user_category : for a couple (user,category) the number of sub-categories
|
|
* and the last date of the category (all sub-categories taken into
|
|
* account). It also calls function update_uppercats for each category. The
|
|
* function is recursive.
|
|
*
|
|
* @param array $categories
|
|
* @return void
|
|
*/
|
|
function update_user_category( $categories )
|
|
{
|
|
global $page,$user_restrictions,$value_num,$values;
|
|
|
|
foreach ( $categories as $category ) {
|
|
// recursive call
|
|
update_user_category( $category['subcats'] );
|
|
// 1. update the table user_category
|
|
foreach ( $user_restrictions as $user_id => $restrictions ) {
|
|
// if the category is forbidden to this user, go to next user
|
|
if ( in_array( $category['id'], $restrictions ) ) continue;
|
|
|
|
// how many sub_categories for this user ?
|
|
$user_subcats = array_diff(
|
|
$page['plain_structure'][$category['id']]['direct_subcats_ids'],
|
|
$restrictions );
|
|
$user_nb_subcats = count( array_unique( $user_subcats ) );
|
|
// last date of the category
|
|
$user_all_subcats = array_unique( array_diff(
|
|
$page['plain_structure'][$category['id']]['all_subcats_ids'],
|
|
$restrictions ) );
|
|
|
|
$query = 'SELECT MAX(date_last) AS last_date';
|
|
$query.= ' FROM '.PREFIX_TABLE.'categories';
|
|
$query.= ' WHERE id IN ('.$category['id'];
|
|
if ( count( $user_all_subcats ) > 0 )
|
|
$query.= ','.implode( ',', $user_all_subcats );
|
|
$query.= ')';
|
|
$query.= ';';
|
|
$row = mysql_fetch_array( mysql_query( $query ) );
|
|
|
|
// insert a new line in database
|
|
if ( $value_num++ > 0 ) $values.= ', ';
|
|
else $values.= ' ';
|
|
$values.= '('.$user_id.",".$category['id'];
|
|
if ( isset( $row['last_date'] ) ) $values.= ",'".$row['last_date']."'";
|
|
else $values.= ',NULL';
|
|
$values.= ','.$user_nb_subcats.')';
|
|
}
|
|
update_uppercats( $category['id'] );
|
|
}
|
|
}
|
|
|
|
/**
|
|
* updates the column categories.uppercats
|
|
*
|
|
* @param int $category_id
|
|
* @return void
|
|
*/
|
|
function update_uppercats( $category_id )
|
|
{
|
|
global $page;
|
|
|
|
$final_id = $category_id;
|
|
$uppercats = array();
|
|
|
|
array_push( $uppercats, $category_id );
|
|
$uppercat = $page['plain_structure'][$category_id]['id_uppercat'];
|
|
|
|
while ( $uppercat != 'NULL' )
|
|
{
|
|
array_push( $uppercats, $uppercat );
|
|
$category_id = $page['plain_structure'][$category_id]['id_uppercat'];
|
|
$uppercat = $page['plain_structure'][$category_id]['id_uppercat'];
|
|
}
|
|
|
|
$string_uppercats = implode( ',', array_reverse( $uppercats ) );
|
|
$query = 'UPDATE '.PREFIX_TABLE.'categories';
|
|
$query.= ' SET uppercats = '."'".$string_uppercats."'";
|
|
$query.= ' WHERE id = '.$final_id;
|
|
$query.= ';';
|
|
mysql_query( $query );
|
|
}
|
|
|
|
/**
|
|
* returns an array with the ids of the restricted categories for the user
|
|
*
|
|
* Returns an array with the ids of the restricted categories for the
|
|
* user. If the $check_invisible parameter is set to true, invisible
|
|
* categorie are added to the restricted one in the array.
|
|
*
|
|
* @param int $user_id
|
|
* @param string $user_status
|
|
* @param bool $check_invisible
|
|
* @param bool $use_groups
|
|
* @return array
|
|
*/
|
|
function get_user_restrictions( $user_id, $user_status,
|
|
$check_invisible, $use_groups = true )
|
|
{
|
|
// 1. retrieving ids of private categories
|
|
$query = 'SELECT id';
|
|
$query.= ' FROM '.PREFIX_TABLE.'categories';
|
|
$query.= " WHERE status = 'private'";
|
|
$query.= ';';
|
|
$result = mysql_query( $query );
|
|
$privates = array();
|
|
while ( $row = mysql_fetch_array( $result ) )
|
|
{
|
|
array_push( $privates, $row['id'] );
|
|
}
|
|
// 2. retrieving all authorized categories for the user
|
|
$authorized = array();
|
|
// 2.1. retrieving authorized categories thanks to personnal user
|
|
// authorization
|
|
$query = 'SELECT cat_id';
|
|
$query.= ' FROM '.PREFIX_TABLE.'user_access';
|
|
$query.= ' WHERE user_id = '.$user_id;
|
|
$query.= ';';
|
|
$result = mysql_query( $query );
|
|
while ( $row = mysql_fetch_array( $result ) )
|
|
{
|
|
array_push( $authorized, $row['cat_id'] );
|
|
}
|
|
// 2.2. retrieving authorized categories thanks to group authorization to
|
|
// which the user is a member
|
|
if ( $use_groups )
|
|
{
|
|
$query = 'SELECT ga.cat_id';
|
|
$query.= ' FROM '.PREFIX_TABLE.'user_group as ug';
|
|
$query.= ', '.PREFIX_TABLE.'group_access as ga';
|
|
$query.= ' WHERE ug.group_id = ga.group_id';
|
|
$query.= ' AND ug.user_id = '.$user_id;
|
|
$query.= ';';
|
|
$result = mysql_query( $query );
|
|
while ( $row = mysql_fetch_array( $result ) )
|
|
{
|
|
array_push( $authorized, $row['cat_id'] );
|
|
}
|
|
$authorized = array_unique( $authorized );
|
|
}
|
|
|
|
$forbidden = array();
|
|
foreach ( $privates as $private ) {
|
|
if ( !in_array( $private, $authorized ) )
|
|
{
|
|
array_push( $forbidden, $private );
|
|
}
|
|
}
|
|
|
|
if ( $check_invisible )
|
|
{
|
|
// 3. adding to the restricted categories, the invisible ones
|
|
if ( $user_status != 'admin' )
|
|
{
|
|
$query = 'SELECT id';
|
|
$query.= ' FROM '.PREFIX_TABLE.'categories';
|
|
$query.= " WHERE visible = 'false';";
|
|
$result = mysql_query( $query );
|
|
while ( $row = mysql_fetch_array( $result ) )
|
|
{
|
|
array_push( $forbidden, $row['id'] );
|
|
}
|
|
}
|
|
}
|
|
return array_unique( $forbidden );
|
|
}
|
|
|
|
/**
|
|
* finalizes operation for user_category table update
|
|
*
|
|
* This function is called by synchronization_*. It creates the
|
|
* $page['plain_structure'] and $page['structure'], get the SQL query to
|
|
* update user_category, clean user_category, and finally update the
|
|
* table. The users updates depends on the global array $user_restrictions.
|
|
*
|
|
* @return void
|
|
*/
|
|
function synchronize()
|
|
{
|
|
global $user_restrictions,$page,$values;
|
|
|
|
update_user_category( $page['structure'] );
|
|
|
|
// cleaning user_category table for users to update
|
|
foreach( $user_restrictions as $user_id => $restrictions ) {
|
|
$query = 'DELETE';
|
|
$query.= ' FROM '.PREFIX_TABLE.'user_category';
|
|
$query.= ' WHERE user_id = '.$user_id;
|
|
$query.= ';';
|
|
mysql_query( $query );
|
|
}
|
|
|
|
$query = 'INSERT INTO '.PREFIX_TABLE.'user_category';
|
|
$query.= ' (user_id,category_id,date_last,nb_sub_categories) VALUES ';
|
|
$query.= $values;
|
|
$query.= ';';
|
|
mysql_query( $query );
|
|
}
|
|
|
|
/**
|
|
* synchronizes all users calculated informations
|
|
*
|
|
* fills global array $user_restrictions with all users and related
|
|
* restrictions before calling synchronize.
|
|
*
|
|
* @return void
|
|
*/
|
|
function synchronize_all_users()
|
|
{
|
|
global $user_restrictions,$page;
|
|
|
|
$page['plain_structure'] = get_plain_structure();
|
|
$page['structure'] = create_structure( '' );
|
|
|
|
$user_restrictions = array();
|
|
|
|
$query = 'SELECT id';
|
|
$query.= ' FROM '.PREFIX_TABLE.'users';
|
|
$query.= ';';
|
|
$result = mysql_query( $query );
|
|
while ( $row = mysql_fetch_array( $result ) )
|
|
{
|
|
$user_restrictions[$row['id']] = update_user_restrictions( $row['id'] );
|
|
}
|
|
synchronize();
|
|
}
|
|
|
|
/**
|
|
* synchronizes 1 user calculated informations
|
|
*
|
|
* fills global array $user_restrictions with the user id and its related
|
|
* restrictions before calling synchronize.
|
|
*
|
|
* @param int $user_id
|
|
* @return void
|
|
*/
|
|
function synchronize_user( $user_id )
|
|
{
|
|
global $user_restrictions,$page;
|
|
|
|
$page['plain_structure'] = get_plain_structure();
|
|
$page['structure'] = create_structure( '' );
|
|
|
|
$user_restrictions = array();
|
|
$user_restrictions[$user_id] = update_user_restrictions( $user_id );
|
|
synchronize();
|
|
}
|
|
|
|
/**
|
|
* synchronizes all users (belonging to the group) calculated informations
|
|
*
|
|
* fills global array $user_restrictions with all users and related
|
|
* restrictions before calling synchronize.
|
|
*
|
|
* @return void
|
|
*/
|
|
function synchronize_group( $group_id )
|
|
{
|
|
global $user_restrictions,$page;
|
|
|
|
$page['plain_structure'] = get_plain_structure();
|
|
$page['structure'] = create_structure( '' );
|
|
|
|
$user_restrictions = array();
|
|
|
|
$query = 'SELECT id';
|
|
$query.= ' FROM '.PREFIX_TABLE.'users';
|
|
$query.= ', '.PREFIX_TABLE.'user_group';
|
|
$query.= ' WHERE group_id = '.$group_id;
|
|
$query.= ' AND id = user_id';
|
|
$query.= ';';
|
|
$result = mysql_query( $query );
|
|
while ( $row = mysql_fetch_array( $result ) )
|
|
{
|
|
$user_restrictions[$row['id']] = update_user_restrictions( $row['id'] );
|
|
}
|
|
synchronize();
|
|
}
|
|
|
|
/**
|
|
* updates the calculated data users.forbidden_categories, it includes
|
|
* sub-categories of the direct forbidden categories
|
|
*
|
|
* @param nt $user_id
|
|
* @return array
|
|
*/
|
|
function update_user_restrictions( $user_id )
|
|
{
|
|
$restrictions = get_user_all_restrictions( $user_id );
|
|
|
|
// update the users.forbidden_categories in database
|
|
$query = 'UPDATE '.PREFIX_TABLE.'users';
|
|
$query.= ' SET forbidden_categories = ';
|
|
if ( count( $restrictions ) > 0 )
|
|
$query.= "'".implode( ',', $restrictions )."'";
|
|
else
|
|
$query.= 'NULL';
|
|
$query .= ' WHERE id = '.$user_id;
|
|
$query.= ';';
|
|
mysql_query( $query );
|
|
|
|
return $restrictions;
|
|
}
|
|
|
|
/**
|
|
* returns all the restricted categories ids including sub-categories
|
|
*
|
|
* @param int $user_id
|
|
* @return array
|
|
*/
|
|
function get_user_all_restrictions( $user_id )
|
|
{
|
|
global $page;
|
|
|
|
$query = 'SELECT status';
|
|
$query.= ' FROM '.PREFIX_TABLE.'users';
|
|
$query.= ' WHERE id = '.$user_id;
|
|
$query.= ';';
|
|
$row = mysql_fetch_array( mysql_query( $query ) );
|
|
|
|
$base_restrictions=get_user_restrictions($user_id,$row['status'],true,true);
|
|
|
|
$restrictions = $base_restrictions;
|
|
foreach ( $base_restrictions as $category_id ) {
|
|
$restrictions =
|
|
array_merge( $restrictions,
|
|
$page['plain_structure'][$category_id]['all_subcats_ids'] );
|
|
}
|
|
|
|
return array_unique( $restrictions );
|
|
}
|
|
|
|
// The function is_user_allowed returns :
|
|
// - 0 : if the category is allowed with this $restrictions array
|
|
// - 1 : if this category is not allowed
|
|
// - 2 : if an uppercat category is not allowed
|
|
// Note : the restrictions array must represent ONLY direct forbidden
|
|
// categories, not all forbidden categories
|
|
function is_user_allowed( $category_id, $restrictions )
|
|
{
|
|
if ( in_array( $category_id, $restrictions ) ) return 1;
|
|
|
|
$query = 'SELECT uppercats';
|
|
$query.= ' FROM '.PREFIX_TABLE.'categories';
|
|
$query.= ' WHERE id = '.$category_id;
|
|
$query.= ';';
|
|
$row = mysql_fetch_array( mysql_query( $query ) );
|
|
$uppercats = explode( ',', $row['uppercats'] );
|
|
foreach ( $uppercats as $category_id ) {
|
|
if ( in_array( $category_id, $restrictions ) ) return 2;
|
|
}
|
|
|
|
// no restriction found : the user is allowed to access this category
|
|
return 0;
|
|
}
|
|
|
|
/**
|
|
* returns an array containing sub-directories which can be a category
|
|
*
|
|
* directories nammed "thumbnail" are omitted
|
|
*
|
|
* @param string $basedir
|
|
* @return array
|
|
*/
|
|
function get_category_directories( $basedir )
|
|
{
|
|
$sub_dirs = array();
|
|
|
|
if ( $opendir = opendir( $basedir ) )
|
|
{
|
|
while ( $file = readdir( $opendir ) )
|
|
{
|
|
if ( $file != '.' and $file != '..'
|
|
and is_dir( $basedir.'/'.$file )
|
|
and $file != 'thumbnail' )
|
|
{
|
|
array_push( $sub_dirs, $file );
|
|
}
|
|
}
|
|
}
|
|
return $sub_dirs;
|
|
}
|
|
?>
|