<? require_once "sessions.php"; require_once "backend-rpc.php"; header("Cache-Control: no-cache, must-revalidate"); header("Pragma: no-cache"); header("Expires: -1"); /* if ($_GET["debug"]) { define('DEFAULT_ERROR_LEVEL', E_ALL); } else { define('DEFAULT_ERROR_LEVEL', E_ERROR | E_WARNING | E_PARSE); } error_reporting(DEFAULT_ERROR_LEVEL); */ $op = $_REQUEST["op"]; define('SCHEMA_VERSION', 9); require_once "sanity_check.php"; require_once "config.php"; require_once "db.php"; require_once "db-prefs.php"; require_once "functions.php"; require_once "magpierss/rss_fetch.inc"; $err_msg = check_configuration_variables(); if ($err_msg) { header("Content-Type: application/xml"); print_error_xml(9, $err_msg); die; } if ((!$op || $op == "rpc" || $op == "rss" || $op == "globalUpdateFeeds") && !$_REQUEST["noxml"]) { header("Content-Type: application/xml"); } if (!$_SESSION["uid"] && $op != "globalUpdateFeeds" && $op != "rss") { if ($op == "rpc") { print_error_xml(6); die; } else { print " <html><body> <p>Error: Not logged in.</p> <script type=\"text/javascript\"> if (parent.window != 'undefined') { parent.window.location = \"login.php\"; } else { window.location = \"login.php\"; } </script> </body></html> "; } exit; } if (!$op) { print_error_xml(7); exit; } $purge_intervals = array( 0 => "Use default", -1 => "Never purge", 5 => "1 week old", 14 => "2 weeks old", 31 => "1 month old", 60 => "2 months old", 90 => "3 months old"); $update_intervals = array( 0 => "Use default", -1 => "Disable updates", 30 => "Each 30 minutes", 60 => "Hourly", 240 => "Each 4 hours", 720 => "Each 12 hours", 1440 => "Daily", 10080 => "Weekly"); $access_level_names = array( 0 => "User", 10 => "Administrator"); $script_started = getmicrotime(); $link = db_connect(DB_HOST, DB_USER, DB_PASS, DB_NAME); if (!$link) { if (DB_TYPE == "mysql") { print mysql_error(); } // PG seems to display its own errors just fine by default. return; } if (DB_TYPE == "pgsql") { pg_query("set client_encoding = 'utf-8'"); } if ($_SESSION["uid"]) { // setcookie('ttrss_vf_refresh', FEEDS_FRAME_REFRESH); // setcookie('ttrss_vf_daemon', ENABLE_UPDATE_DAEMON); /* if (get_pref($link, "ON_CATCHUP_SHOW_NEXT_FEED")) { setcookie('ttrss_vf_catchupnext', 1); } else { setcookie('ttrss_vf_catchupnext', 0); } */ } $fetch = $_GET["fetch"]; // setcookie("ttrss_icons_url", ICONS_URL); if (!sanity_check($link)) { return; } function outputFeedList($link, $tags = false) { print "<html><head> <title>Tiny Tiny RSS : Feedlist</title> <link rel=\"stylesheet\" href=\"tt-rss.css\" type=\"text/css\">"; $user_theme = $_SESSION["theme"]; if ($user_theme) { print "<link rel=\"stylesheet\" type=\"text/css\" href=\"themes/$user_theme/theme.css\">"; } if (get_pref($link, 'USE_COMPACT_STYLESHEET')) { print "<link rel=\"stylesheet\" type=\"text/css\" href=\"tt-rss_compact.css\"/>"; } else { print "<link title=\"Compact Stylesheet\" rel=\"alternate stylesheet\" type=\"text/css\" href=\"tt-rss_compact.css\"/>"; } $script_dt_add = get_script_dt_add(); print " <script type=\"text/javascript\" src=\"prototype.js\"></script> <script type=\"text/javascript\" src=\"functions.js?$script_dt_add\"></script> <script type=\"text/javascript\" src=\"feedlist.js?$script_dt_add\"></script> <meta http-equiv=\"Content-Type\" content=\"text/html; charset=utf-8\"> <!--[if gte IE 5.5000]> <script type=\"text/javascript\" src=\"pngfix.js\"></script> <link rel=\"stylesheet\" type=\"text/css\" href=\"tt-rss-ie.css\"> <![endif]--> </head><body> <script type=\"text/javascript\"> if (document.addEventListener) { document.addEventListener(\"DOMContentLoaded\", init, null); } window.onload = init; </script>"; print "<ul class=\"feedList\" id=\"feedList\">\n"; $owner_uid = $_SESSION["uid"]; if (!$tags) { /* virtual feeds */ if (get_pref($link, 'ENABLE_FEED_CATS')) { print "<li class=\"feedCat\">Special</li>"; print "<li id=\"feedCatHolder\"><ul class=\"feedCatList\">"; } $result = db_query($link, "SELECT count(id) as num_starred FROM ttrss_entries,ttrss_user_entries WHERE marked = true AND ttrss_user_entries.ref_id = ttrss_entries.id AND unread = true AND owner_uid = '$owner_uid'"); $num_starred = db_fetch_result($result, 0, "num_starred"); $class = "virt"; if ($num_starred > 0) $class .= "Unread"; printFeedEntry(-1, $class, "Starred articles", $num_starred, "images/mark_set.png", $link); if (get_pref($link, 'ENABLE_FEED_CATS')) { print "</ul>\n"; } if (GLOBAL_ENABLE_LABELS && get_pref($link, 'ENABLE_LABELS')) { $result = db_query($link, "SELECT id,sql_exp,description FROM ttrss_labels WHERE owner_uid = '$owner_uid' ORDER by description"); if (db_num_rows($result) > 0) { if (get_pref($link, 'ENABLE_FEED_CATS')) { print "<li class=\"feedCat\">Labels</li>"; print "<li id=\"feedCatHolder\"><ul class=\"feedCatList\">"; } else { print "<li><hr></li>"; } } while ($line = db_fetch_assoc($result)) { error_reporting (0); $tmp_result = db_query($link, "SELECT count(ttrss_entries.id) as count FROM ttrss_entries,ttrss_user_entries,ttrss_feeds WHERE (" . $line["sql_exp"] . ") AND unread = true AND ttrss_user_entries.ref_id = ttrss_entries.id AND ttrss_user_entries.feed_id = ttrss_feeds.id AND ttrss_user_entries.owner_uid = '$owner_uid'"); $count = db_fetch_result($tmp_result, 0, "count"); $class = "label"; if ($count > 0) { $class .= "Unread"; } error_reporting (DEFAULT_ERROR_LEVEL); printFeedEntry(-$line["id"]-11, $class, db_unescape_string($line["description"]), $count, "images/label.png", $link); } if (db_num_rows($result) > 0) { if (get_pref($link, 'ENABLE_FEED_CATS')) { print "</ul>"; } } } // if (!get_pref($link, 'ENABLE_FEED_CATS')) { print "<li><hr></li>"; // } if (get_pref($link, 'ENABLE_FEED_CATS')) { if (get_pref($link, "FEEDS_SORT_BY_UNREAD")) { $order_by_qpart = "category,unread DESC,title"; } else { $order_by_qpart = "category,title"; } } else { if (get_pref($link, "FEEDS_SORT_BY_UNREAD")) { $order_by_qpart = "unread DESC,title"; } else { $order_by_qpart = "title"; } } $result = db_query($link, "SELECT ttrss_feeds.*, SUBSTRING(last_updated,1,19) AS last_updated_noms, (SELECT COUNT(id) FROM ttrss_entries,ttrss_user_entries WHERE feed_id = ttrss_feeds.id AND ttrss_user_entries.ref_id = ttrss_entries.id AND owner_uid = '$owner_uid') AS total, (SELECT COUNT(id) FROM ttrss_entries,ttrss_user_entries WHERE feed_id = ttrss_feeds.id AND unread = true AND ttrss_user_entries.ref_id = ttrss_entries.id AND owner_uid = '$owner_uid') as unread, cat_id,last_error, ttrss_feed_categories.title AS category, ttrss_feed_categories.collapsed FROM ttrss_feeds LEFT JOIN ttrss_feed_categories ON (ttrss_feed_categories.id = cat_id) WHERE ttrss_feeds.owner_uid = '$owner_uid' AND parent_feed IS NULL ORDER BY $order_by_qpart"); $actid = $_GET["actid"]; /* real feeds */ $lnum = 0; $total_unread = 0; $category = ""; $short_date = get_pref($link, 'SHORT_DATE_FORMAT'); while ($line = db_fetch_assoc($result)) { $feed = db_unescape_string($line["title"]); $feed_id = $line["id"]; $subop = $_GET["subop"]; $total = $line["total"]; $unread = $line["unread"]; if (get_pref($link, 'HEADLINES_SMART_DATE')) { $last_updated = smart_date_time(strtotime($line["last_updated_noms"])); } else { $last_updated = date($short_date, strtotime($line["last_updated_noms"])); } $rtl_content = sql_bool_to_bool($line["rtl_content"]); if ($rtl_content) { $rtl_tag = "dir=\"RTL\""; } else { $rtl_tag = ""; } $tmp_result = db_query($link, "SELECT id,COUNT(unread) AS unread FROM ttrss_feeds LEFT JOIN ttrss_user_entries ON (ttrss_feeds.id = ttrss_user_entries.feed_id) WHERE parent_feed = '$feed_id' AND unread = true GROUP BY ttrss_feeds.id"); if (db_num_rows($tmp_result) > 0) { while ($l = db_fetch_assoc($tmp_result)) { $unread += $l["unread"]; } } $cat_id = $line["cat_id"]; $tmp_category = $line["category"]; if (!$tmp_category) { $tmp_category = "Uncategorized"; } // $class = ($lnum % 2) ? "even" : "odd"; if ($line["last_error"]) { $class = "error"; } else { $class = "feed"; } if ($unread > 0) $class .= "Unread"; if ($actid == $feed_id) { $class .= "Selected"; } $total_unread += $unread; if ($category != $tmp_category && get_pref($link, 'ENABLE_FEED_CATS')) { if ($category) { print "</ul></li>"; } $category = $tmp_category; $collapsed = $line["collapsed"]; // workaround for NULL category if ($category == "Uncategorized") { if ($_COOKIE["ttrss_vf_uclps"] == 1) { $collapsed = "t"; } } if ($collapsed == "t" || $collapsed == "1") { $holder_class = "invisible"; $ellipsis = "..."; } else { $holder_class = ""; $ellipsis = ""; } if ($cat_id) { $cat_id_qpart = "cat_id = '$cat_id'"; } else { $cat_id_qpart = "cat_id IS NULL"; } $tmp_result = db_query($link, "SELECT count(int_id) AS unread FROM ttrss_user_entries,ttrss_feeds WHERE unread = true AND feed_id = ttrss_feeds.id AND $cat_id_qpart AND ttrss_user_entries.owner_uid = " . $_SESSION["uid"]); $cat_unread = db_fetch_result($tmp_result, 0, "unread"); $cat_id = sprintf("%d", $cat_id); print "<li class=\"feedCat\" id=\"FCAT-$cat_id\"> <a id=\"FCATN-$cat_id\" href=\"javascript:toggleCollapseCat($cat_id)\">$tmp_category</a> <a href=\"javascript:viewCategory($cat_id)\" id=\"FCAP-$cat_id\"> <span id=\"FCATCTR-$cat_id\" class=\"$catctr_class\">($cat_unread unread)$ellipsis</span> </a></li>"; // !!! NO SPACE before <ul...feedCatList - breaks firstChild DOM function // -> keyboard navigation, etc. print "<li id=\"feedCatHolder\" class=\"$holder_class\"><ul class=\"feedCatList\" id=\"FCATLIST-$cat_id\">"; } printFeedEntry($feed_id, $class, $feed, $unread, "icons/$feed_id.ico", $link, $rtl_content, $last_updated, $line["last_error"]); ++$lnum; } } else { // tags /* $result = db_query($link, "SELECT tag_name,count(ttrss_entries.id) AS count FROM ttrss_tags,ttrss_entries,ttrss_user_entries WHERE post_int_id = ttrss_user_entries.int_id AND unread = true AND ref_id = ttrss_entries.id AND ttrss_tags.owner_uid = '$owner_uid' GROUP BY tag_name UNION select tag_name,0 as count FROM ttrss_tags WHERE owner_uid = '$owner_uid' ORDER BY tag_name"); */ $result = db_query($link, "SELECT tag_name,SUM((SELECT COUNT(int_id) FROM ttrss_user_entries WHERE int_id = post_int_id AND unread = true)) AS count FROM ttrss_tags WHERE owner_uid = 2 GROUP BY tag_name ORDER BY tag_name"); $tags = array(); while ($line = db_fetch_assoc($result)) { $tags[$line["tag_name"]] += $line["count"]; } foreach (array_keys($tags) as $tag) { $unread = $tags[$tag]; $class = "tag"; if ($unread > 0) { $class .= "Unread"; } printFeedEntry($tag, $class, $tag, $unread, "images/tag.png", $link); } } if (db_num_rows($result) == 0) { if ($tags) { $what = "tags"; } else { $what = "feeds"; } print "<li>No $what to display.</li>"; } print "</ul>"; print ' <script type="text/javascript"> /* for IE */ function statechange() { if (document.readyState == "interactive") init(); } if (document.readyState) { if (document.readyState == "interactive" || document.readyState == "complete") { init(); } else { document.onreadystatechange = statechange; } } </script></body></html>'; } if ($op == "rpc") { handle_rpc_request($link); } if ($op == "feeds") { $tags = $_GET["tags"]; $subop = $_GET["subop"]; if ($subop == "catchupAll") { db_query($link, "UPDATE ttrss_user_entries SET last_read = NOW(),unread = false WHERE owner_uid = " . $_SESSION["uid"]); } if ($subop == "collapse") { $cat_id = db_escape_string($_GET["cid"]); db_query($link, "UPDATE ttrss_feed_categories SET collapsed = NOT collapsed WHERE id = '$cat_id' AND owner_uid = " . $_SESSION["uid"]); return; } outputFeedList($link, $tags); } if ($op == "view") { $id = db_escape_string($_GET["id"]); $feed_id = db_escape_string($_GET["feed"]); $result = db_query($link, "SELECT rtl_content FROM ttrss_feeds WHERE id = '$feed_id' AND owner_uid = " . $_SESSION["uid"]); if (db_num_rows($result) == 1) { $rtl_content = sql_bool_to_bool(db_fetch_result($result, 0, "rtl_content")); } else { $rtl_content = false; } if ($rtl_content) { $rtl_tag = "dir=\"RTL\""; $rtl_class = "RTL"; } else { $rtl_tag = ""; $rtl_class = ""; } $result = db_query($link, "UPDATE ttrss_user_entries SET unread = false,last_read = NOW() WHERE ref_id = '$id' AND feed_id = '$feed_id' AND owner_uid = " . $_SESSION["uid"]); $result = db_query($link, "SELECT title,link,content,feed_id,comments,int_id, SUBSTRING(updated,1,16) as updated, (SELECT icon_url FROM ttrss_feeds WHERE id = feed_id) as icon_url, num_comments, author FROM ttrss_entries,ttrss_user_entries WHERE id = '$id' AND ref_id = id AND owner_uid = " . $_SESSION["uid"]); print "<html><head> <title>Tiny Tiny RSS : Article $id</title> <link rel=\"stylesheet\" href=\"tt-rss.css\" type=\"text/css\">"; $user_theme = $_SESSION["theme"]; if ($user_theme) { print "<link rel=\"stylesheet\" type=\"text/css\" href=\"themes/$user_theme/theme.css\">"; } if (get_pref($link, 'USE_COMPACT_STYLESHEET')) { print "<link rel=\"stylesheet\" type=\"text/css\" href=\"tt-rss_compact.css\"/>"; } else { print "<link title=\"Compact Stylesheet\" rel=\"alternate stylesheet\" type=\"text/css\" href=\"tt-rss_compact.css\"/>"; } $script_dt_add = get_script_dt_add(); print " <script type=\"text/javascript\" src=\"prototype.js\"></script> <script type=\"text/javascript\" src=\"functions.js?$script_dt_add\"></script> <meta http-equiv=\"Content-Type\" content=\"text/html; charset=utf-8\"> </head><body $rtl_tag>"; if ($result) { $link_target = ""; if (get_pref($link, 'OPEN_LINKS_IN_NEW_WINDOW')) { $link_target = "target=\"_new\""; } $line = db_fetch_assoc($result); if ($line["icon_url"]) { $feed_icon = "<img class=\"feedIcon\" src=\"" . $line["icon_url"] . "\">"; } else { $feed_icon = " "; } /* if ($line["comments"] && $line["link"] != $line["comments"]) { $entry_comments = "(<a href=\"".$line["comments"]."\">Comments</a>)"; } else { $entry_comments = ""; } */ $num_comments = $line["num_comments"]; $entry_comments = ""; if ($num_comments > 0) { if ($line["comments"]) { $comments_url = $line["comments"]; } else { $comments_url = $line["link"]; } $entry_comments = "<a $link_target href=\"$comments_url\">$num_comments comments</a>"; } else { if ($line["comments"] && $line["link"] != $line["comments"]) { $entry_comments = "<a $link_target href=\"".$line["comments"]."\">comments</a>"; } } print "<div class=\"postReply\">"; print "<div class=\"postHeader\"><table width=\"100%\">"; $entry_author = $line["author"]; if ($entry_author) { $entry_author = " - by $entry_author"; } print "<tr><td><a $link_target href=\"" . $line["link"] . "\">" . $line["title"] . "</a>$entry_author</td>"; $parsed_updated = date(get_pref($link, 'LONG_DATE_FORMAT'), strtotime($line["updated"])); print "<td class=\"postDate$rtl_class\">$parsed_updated</td>"; print "</tr>"; $tmp_result = db_query($link, "SELECT DISTINCT tag_name FROM ttrss_tags WHERE post_int_id = " . $line["int_id"] . " ORDER BY tag_name"); $tags_str = ""; $f_tags_str = ""; $num_tags = 0; while ($tmp_line = db_fetch_assoc($tmp_result)) { $num_tags++; $tag = $tmp_line["tag_name"]; $tag_str = "<a href=\"javascript:parent.viewfeed('$tag')\">$tag</a>, "; if ($num_tags == 5) { $tags_str .= "<a href=\"javascript:showBlockElement('allEntryTags')\">...</a>"; } else if ($num_tags < 5) { $tags_str .= $tag_str; } $f_tags_str .= $tag_str; } $tags_str = preg_replace("/, $/", "", $tags_str); $f_tags_str = preg_replace("/, $/", "", $f_tags_str); // $truncated_link = truncate_string($line["link"], 60); if ($tags_str || $entry_comments) { print "<tr><td width='50%'> $entry_comments</td> <td align=\"right\">$tags_str</td></tr>"; } print "</table></div>"; print "<div class=\"postIcon\">" . $feed_icon . "</div>"; print "<div class=\"postContent\">"; if (db_num_rows($tmp_result) > 5) { print "<div id=\"allEntryTags\">Tags: $f_tags_str</div>"; } if (get_pref($link, 'OPEN_LINKS_IN_NEW_WINDOW')) { $line["content"] = preg_replace("/href=/i", "target=\"_new\" href=", $line["content"]); } print $line["content"] . "</div>"; print "</div>"; print "<script type=\"text/javascript\"> try { parent.update_all_counters('$feed_id'); } catch (e) { exception_error('view/footer', e); } </script>"; } print "</body></html>"; } if ($op == "viewfeed") { $feed = db_escape_string($_GET["feed"]); $subop = db_escape_string($_GET["subop"]); $view_mode = db_escape_string($_GET["view_mode"]); $limit = db_escape_string($_GET["limit"]); $cat_view = db_escape_string($_GET["cat"]); $next_unread_feed = db_escape_string($_GET["nuf"]); if ($subop == "undefined") $subop = ""; print "<html><head> <title>Tiny Tiny RSS : Feed $feed</title> <link rel=\"stylesheet\" href=\"tt-rss.css\" type=\"text/css\">"; $user_theme = $_SESSION["theme"]; if ($user_theme) { print "<link rel=\"stylesheet\" type=\"text/css\" href=\"themes/$user_theme/theme.css\">"; } if (get_pref($link, 'USE_COMPACT_STYLESHEET')) { print "<link rel=\"stylesheet\" type=\"text/css\" href=\"tt-rss_compact.css\"/>"; } else { print "<link title=\"Compact Stylesheet\" rel=\"alternate stylesheet\" type=\"text/css\" href=\"tt-rss_compact.css\"/>"; } if ($subop == "ForceUpdate" && sprintf("%d", $feed) > 0) { update_generic_feed($link, $feed, $cat_view); } if ($subop == "MarkAllRead") { catchup_feed($link, $feed, $cat_view); if (get_pref($link, 'ON_CATCHUP_SHOW_NEXT_FEED')) { if ($next_unread_feed) { $feed = $next_unread_feed; } } } if ($feed_id > 0) { $result = db_query($link, "SELECT id FROM ttrss_feeds WHERE id = '$feed' LIMIT 1"); if (db_num_rows($result) == 0) { print "<div align='center'> Feed not found.</div>"; return; } } if (preg_match("/^-?[0-9][0-9]*$/", $feed) != false) { $result = db_query($link, "SELECT rtl_content FROM ttrss_feeds WHERE id = '$feed' AND owner_uid = " . $_SESSION["uid"]); if (db_num_rows($result) == 1) { $rtl_content = sql_bool_to_bool(db_fetch_result($result, 0, "rtl_content")); } else { $rtl_content = false; } if ($rtl_content) { $rtl_tag = "dir=\"RTL\""; } else { $rtl_tag = ""; } } else { $rtl_tag = ""; $rtl_content = false; } $script_dt_add = get_script_dt_add(); print "<meta http-equiv=\"Content-Type\" content=\"text/html; charset=utf-8\"> <script type=\"text/javascript\" src=\"prototype.js\"></script> <script type=\"text/javascript\" src=\"functions.js?$script_dt_add\"></script> <script type=\"text/javascript\" src=\"viewfeed.js?$script_dt_add\"></script> <!--[if gte IE 5.5000]> <script type=\"text/javascript\" src=\"pngfix.js\"></script> <link rel=\"stylesheet\" type=\"text/css\" href=\"tt-rss-ie.css\"> <![endif]--> </head><body $rtl_tag> <script type=\"text/javascript\"> if (document.addEventListener) { document.addEventListener(\"DOMContentLoaded\", init, null); } window.onload = init; </script>"; /// START ///////////////////////////////////////////////////////////////////////////////// $search = db_escape_string($_GET["query"]); $search_mode = db_escape_string($_GET["search_mode"]); $match_on = db_escape_string($_GET["match_on"]); if (!$match_on) { $match_on = "both"; } $qfh_ret = queryFeedHeadlines($link, $feed, $limit, $view_mode, $cat_view, $search, $search_mode, $match_on); $result = $qfh_ret[0]; $feed_title = $qfh_ret[1]; $feed_site_url = $qfh_ret[2]; $last_error = $qfh_ret[3]; /// STOP ////////////////////////////////////////////////////////////////////////////////// print "<div id=\"headlinesContainer\">"; if (!$result) { print "<div align='center'> Could not display feed (query failed). Please check label match syntax or local configuration.</div>"; return; } function print_headline_subtoolbar($link, $feed_site_url, $feed_title, $bottom = false, $rtl_content = false, $feed_id = 0, $is_cat = false, $search = false, $match_on = false, $search_mode = false) { if (!$bottom) { $class = "headlinesSubToolbar"; $tid = "headlineActionsTop"; } else { $class = "invisible"; $tid = "headlineActionsBottom"; } print "<table class=\"$class\" id=\"$tid\" width=\"100%\" cellspacing=\"0\" cellpadding=\"0\"><tr>"; if ($rtl_content) { $rtl_cpart = "RTL"; } else { $rtl_cpart = ""; } if (!get_pref($link, 'COMBINED_DISPLAY_MODE')) { print "<td class=\"headlineActions$rtl_cpart\"> Select: <a href='#' onclick=\"javascript:selectTableRowsByIdPrefix('headlinesList', 'RROW-', 'RCHK-', true, '', true)\">All</a>, <a href='#' onclick=\"javascript:selectTableRowsByIdPrefix('headlinesList', 'RROW-', 'RCHK-', true, 'Unread', true)\">Unread</a>, <a href='#' onclick=\"javascript:selectTableRowsByIdPrefix('headlinesList', 'RROW-', 'RCHK-', false)\">None</a> Toggle: <a href='#' onclick=\"javascript:selectionToggleUnread()\">Unread</a>, <a href='#' onclick=\"javascript:selectionToggleMarked()\">Starred</a>"; print "</td>"; if ($search && $feed_id > 0 && get_pref($link, 'ENABLE_LABELS') && GLOBAL_ENABLE_LABELS) { print "<td class=\"headlineActions$rtl_cpart\"> <a href=\"javascript:labelFromSearch('$search', '$search_mode', '$match_on', '$feed_id', '$is_cat');\"> Convert this search to label</a></td>"; } } else { print "<td class=\"headlineActions$rtl_cpart\"> Select: <a href=\"#\" onclick=\"javascript:cdmSelectArticles('all')\">All</a>, <a href=\"#\" onclick=\"javascript:cdmSelectArticles('unread')\">Unread</a>, <a href=\"#\" onclick=\"javascript:cdmSelectArticles('none')\">None</a> Toggle: <a href=\"#\" onclick=\"javascript:selectionToggleUnread(true)\">Unread</a>, <a href=\"#\" onclick=\"javascript:selectionToggleMarked(true)\">Starred</a>"; print "</td>"; } print "<td class=\"headlineTitle$rtl_cpart\">"; if ($feed_site_url) { if (!$bottom) { $target = "target=\"_blank\""; } print "<a $target href=\"$feed_site_url\">$feed_title</a>"; } else { print $feed_title; } if ($search) { $search_q = "&q=$search&m=$match_on&smode=$search_mode"; } if (!$bottom) { print " <a target=\"_new\" href=\"backend.php?op=rss&id=$feed_id&is_cat=$is_cat$search_q\" <img class=\"noborder\" alt=\"Generated feed\" src=\"images/feed-icon-12x12.png\"> </a>"; } print "</td>"; print "</tr></table>"; } if (db_num_rows($result) > 0) { print_headline_subtoolbar($link, $feed_site_url, $feed_title, false, $rtl_content, $feed, $cat_view, $search, $match_on, $search_mode); if (!get_pref($link, 'COMBINED_DISPLAY_MODE')) { print "<table class=\"headlinesList\" id=\"headlinesList\" cellspacing=\"0\" width=\"100%\">"; } $lnum = 0; error_reporting (DEFAULT_ERROR_LEVEL); $num_unread = 0; while ($line = db_fetch_assoc($result)) { $class = ($lnum % 2) ? "even" : "odd"; $id = $line["id"]; $feed_id = $line["feed_id"]; if ($line["last_read"] == "" && ($line["unread"] != "t" && $line["unread"] != "1")) { $update_pic = "<img id='FUPDPIC-$id' src=\"images/updated.png\" alt=\"Updated\">"; } else { $update_pic = "<img id='FUPDPIC-$id' src=\"images/blank_icon.gif\" alt=\"Updated\">"; } if ($line["unread"] == "t" || $line["unread"] == "1") { $class .= "Unread"; ++$num_unread; $is_unread = true; } else { $is_unread = false; } if ($line["marked"] == "t" || $line["marked"] == "1") { $marked_pic = "<img id=\"FMARKPIC-$id\" src=\"images/mark_set.png\" alt=\"Reset mark\" onclick='javascript:toggleMark($id)'>"; } else { $marked_pic = "<img id=\"FMARKPIC-$id\" src=\"images/mark_unset.png\" alt=\"Set mark\" onclick='javascript:toggleMark($id)'>"; } $content_link = "<a href=\"javascript:view($id,$feed_id);\">" . $line["title"] . "</a>"; if (get_pref($link, 'HEADLINES_SMART_DATE')) { $updated_fmt = smart_date_time(strtotime($line["updated"])); } else { $short_date = get_pref($link, 'SHORT_DATE_FORMAT'); $updated_fmt = date($short_date, strtotime($line["updated"])); } if (get_pref($link, 'SHOW_CONTENT_PREVIEW')) { $content_preview = truncate_string(strip_tags($line["content_preview"]), 100); } if (!get_pref($link, 'COMBINED_DISPLAY_MODE')) { print "<tr class='$class' id='RROW-$id'>"; print "<td class='hlUpdatePic'>$update_pic</td>"; print "<td class='hlSelectRow'> <input type=\"checkbox\" onclick=\"toggleSelectRow(this)\" class=\"feedCheckBox\" id=\"RCHK-$id\"> </td>"; print "<td class='hlMarkedPic'>$marked_pic</td>"; if ($line["feed_title"]) { print "<td class='hlContent'>$content_link</td>"; print "<td class='hlFeed'> <a href='javascript:viewfeed($feed_id)'>". $line["feed_title"]."</a> </td>"; } else { print "<td class='hlContent' valign='middle'>"; print "<a href=\"javascript:view($id,$feed_id);\">" . $line["title"]; if (get_pref($link, 'SHOW_CONTENT_PREVIEW') && !$rtl_tag) { if ($content_preview) { print "<span class=\"contentPreview\"> - $content_preview</span>"; } } print "</a>"; print "</td>"; } print "<td class=\"hlUpdated\"><nobr>$updated_fmt </nobr></td>"; print "</tr>"; } else { if ($is_unread) { $add_class = "Unread"; } else { $add_class = ""; } print "<div class=\"cdmArticle$add_class\" id=\"RROW-$id\">"; print "<div class=\"cdmHeader\">"; print "<div style=\"float : right\">$updated_fmt, <a class=\"cdmToggleLink\" href=\"javascript:toggleUnread($id)\">Toggle unread</a> </div>"; print "<a class=\"title\" onclick=\"javascript:toggleUnread($id, 0)\" target=\"new\" href=\"".$line["link"]."\">".$line["title"]."</a>"; if ($line["feed_title"]) { print " (<a href='javascript:viewfeed($feed_id)'>".$line["feed_title"]."</a>)"; } print "</div>"; print "<div class=\"cdmContent\">" . $line["content_preview"] . "</div><br clear=\"all\">"; print "<div style=\"float : right\">$marked_pic</div> <div lass=\"cdmFooter\"> <input type=\"checkbox\" onclick=\"toggleSelectRowById(this, 'RROW-$id')\" class=\"feedCheckBox\" id=\"RCHK-$id\"></div>"; # print "<div align=\"center\"><a class=\"cdmToggleLink\" # href=\"javascript:toggleUnread($id)\"> # Toggle unread</a></div>"; print "</div>"; } ++$lnum; } if (!get_pref($link, 'COMBINED_DISPLAY_MODE')) { print "</table>"; } print_headline_subtoolbar($link, "javascript:catchupPage()", "Mark page as read", true, $rtl_content); } else { print "<div width='100%' align='center'>No articles found.</div>"; } print "</div>"; print " <script type=\"text/javascript\"> try { document.onkeydown = hotkey_handler; try { parent.update_all_counters(\"$feed\"); } catch (e) { // this is workaround against mysterious permission // denied feature/bug of firefox (ticket #73) // if call from this context failed - ignore silently exception_error(\"viewfeed/footer1/counters\", e, true); } } catch (e) { exception_error(\"viewfeed/footer1\", e); } /* for IE */ function statechange() { if (document.readyState == \"interactive\") init(); } if (document.readyState) { if (document.readyState == \"interactive\" || document.readyState == \"complete\") { init(); } else { document.onreadystatechange = statechange; } } </script>"; print "</body></html>"; } if ($op == "pref-feeds") { $subop = $_REQUEST["subop"]; $quiet = $_REQUEST["quiet"]; if ($subop == "massSubscribe") { $ids = split(",", db_escape_string($_GET["ids"])); $subscribed = array(); foreach ($ids as $id) { $result = db_query($link, "SELECT feed_url,title FROM ttrss_feeds WHERE id = '$id'"); $feed_url = db_fetch_result($result, 0, "feed_url"); $title = db_fetch_result($result, 0, "title"); $result = db_query($link, "SELECT id FROM ttrss_feeds WHERE feed_url = '$feed_url' AND owner_uid = " . $_SESSION["uid"]); if (db_num_rows($result) == 0) { $result = db_query($link, "INSERT INTO ttrss_feeds (owner_uid,feed_url,title,cat_id) VALUES ('".$_SESSION["uid"]."', '$feed_url', '$title', NULL)"); array_push($subscribed, $title); } } if (count($subscribed) > 0) { print "<div class=\"notice\">"; print "<b>Subscribed to feeds:</b>"; print "<ul class=\"nomarks\">"; foreach ($subscribed as $title) { print "<li>$title</li>"; } print "</ul>"; print "</div>"; } } if ($subop == "browse") { if (!ENABLE_FEED_BROWSER) { print "Feed browser is administratively disabled."; return; } print "<div id=\"infoBoxTitle\">Other feeds: Top 25</div>"; print "<div class=\"infoBoxContents\">"; print "<p>Showing top 25 registered feeds, sorted by popularity:</p>"; # $result = db_query($link, "SELECT feed_url,count(id) AS subscribers # FROM ttrss_feeds # WHERE auth_login = '' AND auth_pass = '' AND private = false # GROUP BY feed_url ORDER BY subscribers DESC LIMIT 25"); $owner_uid = $_SESSION["uid"]; $result = db_query($link, "SELECT feed_url,COUNT(id) AS subscribers FROM ttrss_feeds WHERE (SELECT COUNT(id) = 0 FROM ttrss_feeds AS tf WHERE tf.feed_url = ttrss_feeds.feed_url AND owner_uid = '$owner_uid') GROUP BY feed_url ORDER BY subscribers DESC LIMIT 25"); print "<ul class='browseFeedList' id='browseFeedList'>"; $feedctr = 0; while ($line = db_fetch_assoc($result)) { $feed_url = $line["feed_url"]; $subscribers = $line["subscribers"]; $det_result = db_query($link, "SELECT site_url,title,id FROM ttrss_feeds WHERE feed_url = '$feed_url' LIMIT 1"); $details = db_fetch_assoc($det_result); $icon_file = ICONS_DIR . "/" . $details["id"] . ".ico"; if (file_exists($icon_file) && filesize($icon_file) > 0) { $feed_icon = "<img class=\"tinyFeedIcon\" src=\"" . ICONS_URL . "/".$details["id"].".ico\">"; } else { $feed_icon = "<img class=\"tinyFeedIcon\" src=\"images/blank_icon.gif\">"; } $check_box = "<input onclick='toggleSelectListRow(this)' class='feedBrowseCB' type=\"checkbox\" id=\"FBCHK-" . $details["id"] . "\">"; $class = ($feedctr % 2) ? "even" : "odd"; print "<li class='$class' id=\"FBROW-".$details["id"]."\">$check_box". "$feed_icon " . db_unescape_string($details["title"]) . " <span class='subscribers'>($subscribers)</span></li>"; ++$feedctr; } if ($feedctr == 0) { print "<li>No feeds found to subscribe.</li>"; } print "</ul>"; print "<div align='center'> <input type=\"submit\" class=\"button\" onclick=\"feedBrowserSubscribe()\" value=\"Subscribe\"> <input type='submit' class='button' onclick=\"closeInfoBox()\" value=\"Cancel\"></div>"; print "</div>"; return; } if ($subop == "editfeed") { $feed_id = db_escape_string($_REQUEST["id"]); $result = db_query($link, "SELECT * FROM ttrss_feeds WHERE id = '$feed_id' AND owner_uid = " . $_SESSION["uid"]); $title = htmlspecialchars(db_unescape_string(db_fetch_result($result, 0, "title"))); $icon_file = ICONS_DIR . "/$feed_id.ico"; if (file_exists($icon_file) && filesize($icon_file) > 0) { $feed_icon = "<img width=\"16\" height=\"16\" src=\"" . ICONS_URL . "/$feed_id.ico\">"; } else { $feed_icon = ""; } print "<div id=\"infoBoxTitle\">Feed editor</div>"; print "<div class=\"infoBoxContents\">"; print "<form id=\"edit_feed_form\">"; print "<input type=\"hidden\" name=\"id\" value=\"$feed_id\">"; print "<input type=\"hidden\" name=\"op\" value=\"pref-feeds\">"; print "<input type=\"hidden\" name=\"subop\" value=\"editSave\">"; print "<table width='100%'>"; print "<tr><td>Title:</td>"; print "<td><input class=\"iedit\" onkeypress=\"return filterCR(event)\" name=\"title\" value=\"$title\"></td></tr>"; $feed_url = db_fetch_result($result, 0, "feed_url"); $feed_url = htmlspecialchars(db_unescape_string(db_fetch_result($result, 0, "feed_url"))); print "<tr><td>Feed URL:</td>"; print "<td><input class=\"iedit\" onkeypress=\"return filterCR(event)\" name=\"feed_url\" value=\"$feed_url\"></td></tr>"; if (get_pref($link, 'ENABLE_FEED_CATS')) { $cat_id = db_fetch_result($result, 0, "cat_id"); print "<tr><td>Category:</td>"; print "<td>"; print_feed_cat_select($link, "cat_id", $cat_id, "class=\"iedit\""); print "</td>"; print "</td></tr>"; } $update_interval = db_fetch_result($result, 0, "update_interval"); print "<tr><td>Update Interval:</td>"; print "<td>"; print_select_hash("update_interval", $update_interval, $update_intervals, "class=\"iedit\""); print "</td>"; print "<tr><td>Link to:</td><td>"; $tmp_result = db_query($link, "SELECT COUNT(id) AS count FROM ttrss_feeds WHERE parent_feed = '$feed_id'"); $linked_count = db_fetch_result($tmp_result, 0, "count"); $parent_feed = db_fetch_result($result, 0, "parent_feed"); if ($linked_count > 0) { $disabled = "disabled"; } print "<select class=\"iedit\" $disabled name=\"parent_feed\">"; print "<option value=\"0\">Not linked</option>"; if (get_pref($link, 'ENABLE_FEED_CATS')) { if ($cat_id) { $cat_qpart = "AND cat_id = '$cat_id'"; } else { $cat_qpart = "AND cat_id IS NULL"; } } $tmp_result = db_query($link, "SELECT id,title FROM ttrss_feeds WHERE id != '$feed_id' AND owner_uid = ".$_SESSION["uid"]." $cat_qpart ORDER BY title"); if (db_num_rows($tmp_result) > 0) { print "<option disabled>--------</option>"; } while ($tmp_line = db_fetch_assoc($tmp_result)) { if ($tmp_line["id"] == $parent_feed) { $is_selected = "selected"; } else { $is_selected = ""; } printf("<option $is_selected value='%d'>%s</option>", $tmp_line["id"], $tmp_line["title"]); } print "</select>"; print "</td></tr>"; $purge_interval = db_fetch_result($result, 0, "purge_interval"); print "<tr><td>Article purging:</td>"; print "<td>"; print_select_hash("purge_interval", $purge_interval, $purge_intervals, "class=\"iedit\""); print "</td>"; $auth_login = db_fetch_result($result, 0, "auth_login"); print "<tr><td>Login:</td>"; print "<td><input class=\"iedit\" onkeypress=\"return filterCR(event)\" name=\"auth_login\" value=\"$auth_login\"></td></tr>"; $auth_pass = db_fetch_result($result, 0, "auth_pass"); print "<tr><td>Password:</td>"; print "<td><input class=\"iedit\" type=\"password\" name=\"auth_pass\" onkeypress=\"return filterCR(event)\" value=\"$auth_pass\"></td></tr>"; $private = sql_bool_to_bool(db_fetch_result($result, 0, "private")); if ($private) { $checked = "checked"; } else { $checked = ""; } print "<tr><td valign='top'>Options:</td>"; print "<td><input type=\"checkbox\" name=\"private\" id=\"private\" $checked><label for=\"private\">Hide from feed browser</label>"; $rtl_content = sql_bool_to_bool(db_fetch_result($result, 0, "rtl_content")); if ($rtl_content) { $checked = "checked"; } else { $checked = ""; } print "<br><input type=\"checkbox\" id=\"rtl_content\" name=\"rtl_content\" $checked><label for=\"rtl_content\">Right-to-left content</label>"; print "</td></tr>"; print "</table>"; print "</form>"; print "</div>"; print "<div align='center'> <input type=\"submit\" class=\"button\" onclick=\"return feedEditSave()\" value=\"Save\"> <input type='submit' class='button' onclick=\"return feedEditCancel()\" value=\"Cancel\"></div>"; return; } if ($subop == "editSave") { $feed_title = db_escape_string(trim($_POST["title"])); $feed_link = db_escape_string(trim($_POST["feed_url"])); $upd_intl = db_escape_string($_POST["update_interval"]); $purge_intl = db_escape_string($_POST["purge_interval"]); $feed_id = db_escape_string($_POST["id"]); $cat_id = db_escape_string($_POST["cat_id"]); $auth_login = db_escape_string(trim($_POST["auth_login"])); $auth_pass = db_escape_string(trim($_POST["auth_pass"])); $parent_feed = db_escape_string($_POST["parent_feed"]); $private = checkbox_to_sql_bool(db_escape_string($_POST["private"])); $rtl_content = checkbox_to_sql_bool(db_escape_string($_POST["rtl_content"])); if (get_pref($link, 'ENABLE_FEED_CATS')) { if ($cat_id && $cat_id != 0) { $category_qpart = "cat_id = '$cat_id',"; } else { $category_qpart = 'cat_id = NULL,'; } } else { $category_qpart = ""; } if ($parent_feed && $parent_feed != 0) { $parent_qpart = "parent_feed = '$parent_feed',"; } else { $parent_qpart = 'parent_feed = NULL,'; } $result = db_query($link, "UPDATE ttrss_feeds SET $category_qpart $parent_qpart title = '$feed_title', feed_url = '$feed_link', update_interval = '$upd_intl', purge_interval = '$purge_intl', auth_login = '$auth_login', auth_pass = '$auth_pass', private = $private, rtl_content = $rtl_content WHERE id = '$feed_id' AND owner_uid = " . $_SESSION["uid"]); } if ($subop == "saveCat") { $cat_title = db_escape_string(trim($_GET["title"])); $cat_id = db_escape_string($_GET["id"]); $result = db_query($link, "UPDATE ttrss_feed_categories SET title = '$cat_title' WHERE id = '$cat_id' AND owner_uid = ".$_SESSION["uid"]); } if ($subop == "remove") { if (!WEB_DEMO_MODE) { $ids = split(",", db_escape_string($_GET["ids"])); foreach ($ids as $id) { if ($id > 0) { db_query($link, "DELETE FROM ttrss_feeds WHERE id = '$id' AND owner_uid = " . $_SESSION["uid"]); $icons_dir = ICONS_DIR; if (file_exists($icons_dir . "/$id.ico")) { unlink($icons_dir . "/$id.ico"); } } else if ($id < -10) { $label_id = -$id - 11; db_query($link, "DELETE FROM ttrss_labels WHERE id = '$label_id' AND owner_uid = " . $_SESSION["uid"]); } } } } if ($subop == "add") { if (!WEB_DEMO_MODE) { $feed_url = db_escape_string(trim($_GET["feed_url"])); $cat_id = db_escape_string($_GET["cat_id"]); if (subscribe_to_feed($link, $feed_url, $cat_id)) { print "Added feed."; } else { print "<div class=\"warning\"> Feed <b>$feed_url</b> already exists in the database. </div>"; } } } if ($subop == "addCat") { if (!WEB_DEMO_MODE) { $feed_cat = db_escape_string(trim($_GET["cat"])); $result = db_query($link, "SELECT id FROM ttrss_feed_categories WHERE title = '$feed_cat' AND owner_uid = ".$_SESSION["uid"]); if (db_num_rows($result) == 0) { $result = db_query($link, "INSERT INTO ttrss_feed_categories (owner_uid,title) VALUES ('".$_SESSION["uid"]."', '$feed_cat')"); } else { print "<div class=\"warning\"> Category <b>$feed_cat</b> already exists in the database. </div>"; } } } if ($subop == "removeCats") { if (!WEB_DEMO_MODE) { $ids = split(",", db_escape_string($_GET["ids"])); foreach ($ids as $id) { db_query($link, "BEGIN"); $result = db_query($link, "SELECT count(id) as num_feeds FROM ttrss_feeds WHERE cat_id = '$id'"); $num_feeds = db_fetch_result($result, 0, "num_feeds"); if ($num_feeds == 0) { db_query($link, "DELETE FROM ttrss_feed_categories WHERE id = '$id' AND owner_uid = " . $_SESSION["uid"]); } else { print "<div class=\"warning\"> Unable to delete non empty feed categories.</div>"; } db_query($link, "COMMIT"); } } } if ($subop == "categorize") { if (!WEB_DEMO_MODE) { $ids = split(",", db_escape_string($_GET["ids"])); $cat_id = db_escape_string($_GET["cat_id"]); if ($cat_id == 0) { $cat_id_qpart = 'NULL'; } else { $cat_id_qpart = "'$cat_id'"; } db_query($link, "BEGIN"); foreach ($ids as $id) { db_query($link, "UPDATE ttrss_feeds SET cat_id = $cat_id_qpart WHERE id = '$id' AND owner_uid = " . $_SESSION["uid"]); } db_query($link, "COMMIT"); } } if ($quiet) return; // print "<h3>Edit Feeds</h3>"; $result = db_query($link, "SELECT id,title,feed_url,last_error FROM ttrss_feeds WHERE last_error != '' AND owner_uid = ".$_SESSION["uid"]); if (db_num_rows($result) > 0) { print "<div class=\"warning\">"; // print"<img class=\"closeButton\" // onclick=\"javascript:hideParentElement(this);\" src=\"images/close.png\">"; print "<a href=\"javascript:showBlockElement('feedUpdateErrors')\"> <b>Some feeds have update errors (click for details)</b></a>"; print "<ul id=\"feedUpdateErrors\" class=\"nomarks\">"; while ($line = db_fetch_assoc($result)) { print "<li>" . $line["title"] . " (" . $line["feed_url"] . "): " . $line["last_error"]; } print "</ul>"; print "</div>"; } $feed_search = db_escape_string($_GET["search"]); if (array_key_exists("search", $_GET)) { $_SESSION["prefs_feed_search"] = $feed_search; } else { $feed_search = $_SESSION["prefs_feed_search"]; } print "<table width='100%' class=\"prefGenericAddBox\" cellspacing='0' cellpadding='0'><tr> <td> <input id=\"fadd_link\" onkeyup=\"toggleSubmitNotEmpty(this, 'fadd_submit_btn')\" size=\"40\"> <input type=\"submit\" class=\"button\" disabled=\"true\" id=\"fadd_submit_btn\" onclick=\"addFeed()\" value=\"Subscribe\">"; if (ENABLE_FEED_BROWSER && !SINGLE_USER_MODE) { print " <input type=\"submit\" class=\"button\" onclick=\"javascript:browseFeeds()\" value=\"Top 25\">"; } print "</td><td align='right'> <input id=\"feed_search\" size=\"20\" onchange=\"javascript:updateFeedList()\" value=\"$feed_search\"> <input type=\"submit\" class=\"button\" onclick=\"javascript:updateFeedList()\" value=\"Search\"> </td> </tr></table>"; $feeds_sort = db_escape_string($_GET["sort"]); if (!$feeds_sort || $feeds_sort == "undefined") { $feeds_sort = $_SESSION["pref_sort_feeds"]; if (!$feeds_sort) $feeds_sort = "title"; } $_SESSION["pref_sort_feeds"] = $feeds_sort; if ($feed_search) { $search_qpart = "(UPPER(F1.title) LIKE UPPER('%$feed_search%') OR UPPER(F1.feed_url) LIKE UPPER('%$feed_search%')) AND"; } else { $search_qpart = ""; } if (get_pref($link, 'ENABLE_FEED_CATS')) { $order_by_qpart = "category,$feeds_sort,title"; } else { $order_by_qpart = "$feeds_sort,title"; } $result = db_query($link, "SELECT F1.id, F1.title, F1.feed_url, substring(F1.last_updated,1,16) AS last_updated, F1.parent_feed, F1.update_interval, F1.purge_interval, F1.cat_id, F2.title AS parent_title, C1.title AS category FROM ttrss_feeds AS F1 LEFT JOIN ttrss_feeds AS F2 ON (F1.parent_feed = F2.id) LEFT JOIN ttrss_feed_categories AS C1 ON (F1.cat_id = C1.id) WHERE $search_qpart F1.owner_uid = '".$_SESSION["uid"]."' ORDER by $order_by_qpart"); if (db_num_rows($result) != 0) { // print "<div id=\"infoBoxShadow\"><div id=\"infoBox\">PLACEHOLDER</div></div>"; print "<p><table width=\"100%\" cellspacing=\"0\" class=\"prefFeedList\" id=\"prefFeedList\">"; print "<tr><td class=\"selectPrompt\" colspan=\"8\"> Select: <a href=\"javascript:selectPrefRows('feed', true)\">All</a>, <a href=\"javascript:selectPrefRows('feed', false)\">None</a> </td</tr>"; if (!get_pref($link, 'ENABLE_FEED_CATS')) { print "<tr class=\"title\"> <td width='5%' align='center'> </td>"; if (get_pref($link, 'ENABLE_FEED_ICONS')) { print "<td width='3%'> </td>"; } print " <td width='40%'><a href=\"javascript:updateFeedList('title')\">Title</a></td> <td width='45%'><a href=\"javascript:updateFeedList('feed_url')\">Feed</a></td> <td width='15%' align='right'><a href=\"javascript:updateFeedList('last_updated')\">Updated</a></td>"; } $lnum = 0; $cur_cat_id = -1; while ($line = db_fetch_assoc($result)) { $feed_id = $line["id"]; $cat_id = $line["cat_id"]; $edit_title = htmlspecialchars(db_unescape_string($line["title"])); $edit_link = htmlspecialchars(db_unescape_string($line["feed_url"])); $edit_cat = htmlspecialchars(db_unescape_string($line["category"])); if (!$edit_cat) $edit_cat = "Uncategorized"; $last_updated = $line["last_updated"]; if (get_pref($link, 'HEADLINES_SMART_DATE')) { $last_updated = smart_date_time(strtotime($last_updated)); } else { $short_date = get_pref($link, 'SHORT_DATE_FORMAT'); $last_updated = date($short_date, strtotime($last_updated)); } if (get_pref($link, 'ENABLE_FEED_CATS') && $cur_cat_id != $cat_id) { $lnum = 0; print "<tr><td colspan=\"6\" class=\"feedEditCat\">$edit_cat</td></tr>"; print "<tr class=\"title\"> <td width='5%'> </td>"; if (get_pref($link, 'ENABLE_FEED_ICONS')) { print "<td width='3%'> </td>"; } print "<td width='40%'><a href=\"javascript:updateFeedList('title')\">Title</a></td> <td width='45%'><a href=\"javascript:updateFeedList('feed_url')\">Feed</a></td> <td width='15%' align='right'><a href=\"javascript:updateFeedList('last_updated')\">Updated</a></td>"; $cur_cat_id = $cat_id; } $class = ($lnum % 2) ? "even" : "odd"; $this_row_id = "id=\"FEEDR-$feed_id\""; print "<tr class=\"$class\" $this_row_id>"; $icon_file = ICONS_DIR . "/$feed_id.ico"; if (file_exists($icon_file) && filesize($icon_file) > 0) { $feed_icon = "<img class=\"tinyFeedIcon\" src=\"" . ICONS_URL . "/$feed_id.ico\">"; } else { $feed_icon = "<img class=\"tinyFeedIcon\" src=\"images/blank_icon.gif\">"; } print "<td class='feedSelect'><input onclick='toggleSelectPrefRow(this, \"feed\");' type=\"checkbox\" id=\"FRCHK-".$line["id"]."\"></td>"; if (get_pref($link, 'ENABLE_FEED_ICONS')) { print "<td class='feedIcon'>$feed_icon</td>"; } $edit_title = truncate_string($edit_title, 40); $edit_link = truncate_string($edit_link, 60); $parent_title = $line["parent_title"]; if ($parent_title) { $parent_title = "<span class='groupPrompt'>(linked to $parent_title)</span>"; } print "<td><a href=\"javascript:editFeed($feed_id);\">" . "$edit_title $parent_title" . "</a></td>"; print "<td><a href=\"javascript:editFeed($feed_id);\">" . $edit_link . "</a></td>"; print "<td align='right'><a href=\"javascript:editFeed($feed_id);\">" . "$last_updated</a></td>"; print "</tr>"; ++$lnum; } print "</table>"; print "<p><span id=\"feedOpToolbar\">"; if ($subop == "edit") { print "Edit feed: <input type=\"submit\" class=\"button\" onclick=\"javascript:feedEditCancel()\" value=\"Cancel\"> <input type=\"submit\" class=\"button\" onclick=\"javascript:feedEditSave()\" value=\"Save\">"; } else { print " Selection: <input type=\"submit\" class=\"button\" disabled=\"true\" onclick=\"javascript:editSelectedFeed()\" value=\"Edit\"> <input type=\"submit\" class=\"button\" disabled=\"true\" onclick=\"javascript:removeSelectedFeeds()\" value=\"Unsubscribe\">"; if (get_pref($link, 'ENABLE_FEED_CATS')) { print " | "; print_feed_cat_select($link, "sfeed_set_fcat", "", "disabled"); print " <input type=\"submit\" class=\"button\" disabled=\"true\" onclick=\"javascript:categorizeSelectedFeeds()\" value=\"Recategorize\">"; } print "</span> All feeds: <input type=\"submit\" class=\"button\" onclick=\"gotoExportOpml()\" value=\"Export OPML\">"; } } else { print "<p>No feeds defined.</p>"; } if (get_pref($link, 'ENABLE_FEED_CATS')) { print "<h3>Edit Categories</h3>"; print "<div class=\"prefGenericAddBox\"> <input id=\"fadd_cat\" onkeyup=\"toggleSubmitNotEmpty(this, 'catadd_submit_btn')\" size=\"40\"> <input type=\"submit\" class=\"button\" disabled=\"true\" id=\"catadd_submit_btn\" onclick=\"javascript:addFeedCat()\" value=\"Create category\"></div>"; $result = db_query($link, "SELECT title,id FROM ttrss_feed_categories WHERE owner_uid = ".$_SESSION["uid"]." ORDER BY title"); if (db_num_rows($result) != 0) { print "<form id=\"feed_cat_edit_form\">"; print "<p><table width=\"100%\" class=\"prefFeedCatList\" cellspacing=\"0\" id=\"prefFeedCatList\">"; print "<tr><td class=\"selectPrompt\" colspan=\"8\"> Select: <a href=\"javascript:selectPrefRows('fcat', true)\">All</a>, <a href=\"javascript:selectPrefRows('fcat', false)\">None</a> </td</tr>"; print "<tr class=\"title\"> <td width=\"5%\"> </td><td width=\"80%\">Title</td> </tr>"; $lnum = 0; while ($line = db_fetch_assoc($result)) { $class = ($lnum % 2) ? "even" : "odd"; $cat_id = $line["id"]; $edit_cat_id = $_GET["id"]; if ($subop == "editCat" && $cat_id != $edit_cat_id) { $class .= "Grayed"; $this_row_id = ""; } else { $this_row_id = "id=\"FCATR-$cat_id\""; } print "<tr class=\"$class\" $this_row_id>"; $edit_title = htmlspecialchars(db_unescape_string($line["title"])); if (!$edit_cat_id || $subop != "editCat") { print "<td align='center'><input onclick='toggleSelectPrefRow(this, \"fcat\");' type=\"checkbox\" id=\"FCCHK-".$line["id"]."\"></td>"; print "<td><a href=\"javascript:editFeedCat($cat_id);\">" . $edit_title . "</a></td>"; } else if ($cat_id != $edit_cat_id) { print "<td align='center'><input disabled=\"true\" type=\"checkbox\" id=\"FRCHK-".$line["id"]."\"></td>"; print "<td>$edit_title</td>"; } else { print "<td align='center'><input disabled=\"true\" type=\"checkbox\" checked>"; print "<input type=\"hidden\" name=\"id\" value=\"$cat_id\">"; print "<input type=\"hidden\" name=\"op\" value=\"pref-feeds\">"; print "<input type=\"hidden\" name=\"subop\" value=\"saveCat\">"; print "</td>"; print "<td><input onkeypress=\"return filterCR(event)\" name=\"title\" class=\"iedit\" value=\"$edit_title\"></td>"; } print "</tr>"; ++$lnum; } print "</table>"; print "</form>"; print "<p id=\"catOpToolbar\">"; if ($subop == "editCat") { print "Edit category: <input type=\"submit\" class=\"button\" onclick=\"return feedCatEditSave()\" value=\"Save\"> <input type=\"submit\" class=\"button\" onclick=\"return feedCatEditCancel()\" value=\"Cancel\">"; } else { print " Selection: <input type=\"submit\" class=\"button\" disabled=\"true\" onclick=\"return editSelectedFeedCat()\" value=\"Edit\"> <input type=\"submit\" class=\"button\" disabled=\"true\" onclick=\"return removeSelectedFeedCats()\" value=\"Remove\">"; } } else { print "<p>No feed categories defined.</p>"; } } print "<h3>Import OPML</h3> <form enctype=\"multipart/form-data\" method=\"POST\" action=\"opml.php\"> File: <input id=\"opml_file\" name=\"opml_file\" type=\"file\"> <input class=\"button\" name=\"op\" onclick=\"return validateOpmlImport();\" type=\"submit\" value=\"Import\"> </form>"; } if ($op == "pref-filters") { $subop = $_GET["subop"]; $quiet = $_GET["quiet"]; if ($subop == "edit") { $filter_id = db_escape_string($_GET["id"]); $result = db_query($link, "SELECT * FROM ttrss_filters WHERE id = '$filter_id' AND owner_uid = " . $_SESSION["uid"]); $reg_exp = htmlspecialchars(db_unescape_string(db_fetch_result($result, 0, "reg_exp"))); $filter_type = db_fetch_result($result, 0, "filter_type"); $feed_id = db_fetch_result($result, 0, "feed_id"); $action_id = db_fetch_result($result, 0, "action_id"); print "<div id=\"infoBoxTitle\">Filter editor</div>"; print "<div class=\"infoBoxContents\">"; print "<form id=\"filter_edit_form\">"; print "<input type=\"hidden\" name=\"op\" value=\"pref-filters\">"; print "<input type=\"hidden\" name=\"id\" value=\"$filter_id\">"; print "<input type=\"hidden\" name=\"subop\" value=\"editSave\">"; // print "<div class=\"notice\"><b>Note:</b> filter will only apply to new articles.</div>"; $result = db_query($link, "SELECT id,description FROM ttrss_filter_types ORDER BY description"); $filter_types = array(); while ($line = db_fetch_assoc($result)) { //array_push($filter_types, $line["description"]); $filter_types[$line["id"]] = $line["description"]; } print "<table width='100%'>"; print "<tr><td>Match:</td> <td><input onkeypress=\"return filterCR(event)\" onkeyup=\"toggleSubmitNotEmpty(this, 'infobox_submit')\" name=\"reg_exp\" class=\"iedit\" value=\"$reg_exp\">"; print "</td><td>"; print_select_hash("filter_type", $filter_type, $filter_types, "class=\"iedit\""); print "</td></tr>"; print "<tr><td>Feed:</td><td colspan='2'>"; print_feed_select($link, "feed_id", $feed_id); print "</td></tr>"; print "<tr><td>Action:</td>"; print "<td colspan='2'><select name=\"action_id\">"; $result = db_query($link, "SELECT id,description FROM ttrss_filter_actions ORDER BY name"); while ($line = db_fetch_assoc($result)) { $is_sel = ($line["id"] == $action_id) ? "selected" : ""; printf("<option value='%d' $is_sel>%s</option>", $line["id"], $line["description"]); } print "</select>"; print "</td></tr></table>"; print "</form>"; print "<div align='right'>"; print "<input type=\"submit\" id=\"infobox_submit\" class=\"button\" onclick=\"return filterEditSave()\" value=\"Save\"> "; print "<input class=\"button\" type=\"submit\" onclick=\"return filterEditCancel()\" value=\"Cancel\">"; print "</div>"; return; } if ($subop == "editSave") { $reg_exp = db_escape_string(trim($_GET["reg_exp"])); $filter_type = db_escape_string(trim($_GET["filter_type"])); $filter_id = db_escape_string($_GET["id"]); $feed_id = db_escape_string($_GET["feed_id"]); $action_id = db_escape_string($_GET["action_id"]); if (!$feed_id) { $feed_id = 'NULL'; } else { $feed_id = sprintf("'%s'", db_escape_string($feed_id)); } $result = db_query($link, "UPDATE ttrss_filters SET reg_exp = '$reg_exp', feed_id = $feed_id, action_id = '$action_id', filter_type = '$filter_type' WHERE id = '$filter_id' AND owner_uid = " . $_SESSION["uid"]); } if ($subop == "remove") { if (!WEB_DEMO_MODE) { $ids = split(",", db_escape_string($_GET["ids"])); foreach ($ids as $id) { db_query($link, "DELETE FROM ttrss_filters WHERE id = '$id' AND owner_uid = ". $_SESSION["uid"]); } } } if ($subop == "add") { if (!WEB_DEMO_MODE) { $regexp = db_escape_string(trim($_GET["reg_exp"])); $filter_type = db_escape_string(trim($_GET["filter_type"])); $feed_id = db_escape_string($_GET["feed_id"]); $action_id = db_escape_string($_GET["action_id"]); if (!$feed_id) { $feed_id = 'NULL'; } else { $feed_id = sprintf("'%s'", db_escape_string($feed_id)); } $result = db_query($link, "INSERT INTO ttrss_filters (reg_exp,filter_type,owner_uid,feed_id, action_id) VALUES ('$regexp', '$filter_type','".$_SESSION["uid"]."', $feed_id, '$action_id')"); } } if ($quiet) return; // print "<div id=\"infoBoxShadow\"><div id=\"infoBox\">PLACEHOLDER</div></div>"; $result = db_query($link, "SELECT id,description FROM ttrss_filter_types ORDER BY description"); $filter_types = array(); while ($line = db_fetch_assoc($result)) { //array_push($filter_types, $line["description"]); $filter_types[$line["id"]] = $line["description"]; } print "<input type=\"submit\" class=\"button\" onclick=\"return displayDlg('quickAddFilter', false)\" id=\"create_filter_btn\" value=\"Create filter\">"; $result = db_query($link, "SELECT ttrss_filters.id AS id,reg_exp, ttrss_filter_types.name AS filter_type_name, ttrss_filter_types.description AS filter_type_descr, feed_id, ttrss_filter_actions.description AS action_description, ttrss_feeds.title AS feed_title FROM ttrss_filter_types,ttrss_filter_actions,ttrss_filters LEFT JOIN ttrss_feeds ON (ttrss_filters.feed_id = ttrss_feeds.id) WHERE filter_type = ttrss_filter_types.id AND ttrss_filter_actions.id = action_id AND ttrss_filters.owner_uid = ".$_SESSION["uid"]." ORDER by reg_exp"); if (db_num_rows($result) != 0) { print "<form id=\"filter_edit_form\">"; print "<p><table width=\"100%\" cellspacing=\"0\" class=\"prefFilterList\" id=\"prefFilterList\">"; print "<tr><td class=\"selectPrompt\" colspan=\"8\"> Select: <a href=\"javascript:selectPrefRows('filter', true)\">All</a>, <a href=\"javascript:selectPrefRows('filter', false)\">None</a> </td</tr>"; print "<tr class=\"title\"> <td align='center' width=\"5%\"> </td> <td width=\"20%\">Filter expression</td> <td width=\"20%\">Feed</td> <td width=\"15%\">Match</td> <td width=\"15%\">Action</td>"; $lnum = 0; while ($line = db_fetch_assoc($result)) { $class = ($lnum % 2) ? "even" : "odd"; $filter_id = $line["id"]; $edit_filter_id = $_GET["id"]; if ($subop == "edit" && $filter_id != $edit_filter_id) { $class .= "Grayed"; $this_row_id = ""; } else { $this_row_id = "id=\"FILRR-$filter_id\""; } print "<tr class=\"$class\" $this_row_id>"; $line["reg_exp"] = htmlspecialchars(db_unescape_string($line["reg_exp"])); if (!$line["feed_title"]) $line["feed_title"] = "All feeds"; $line["feed_title"] = htmlspecialchars(db_unescape_string($line["feed_title"])); print "<td align='center'><input onclick='toggleSelectPrefRow(this, \"filter\");' type=\"checkbox\" id=\"FICHK-".$line["id"]."\"></td>"; print "<td><a href=\"javascript:editFilter($filter_id);\">" . $line["reg_exp"] . "</td>"; print "<td><a href=\"javascript:editFilter($filter_id);\">" . $line["feed_title"] . "</td>"; print "<td><a href=\"javascript:editFilter($filter_id);\">" . $line["filter_type_descr"] . "</td>"; print "<td><a href=\"javascript:editFilter($filter_id);\">" . $line["action_description"] . "</td>"; print "</tr>"; ++$lnum; } if ($lnum == 0) { print "<tr><td colspan=\"4\" align=\"center\">No filters defined.</td></tr>"; } print "</table>"; print "</form>"; print "<p id=\"filterOpToolbar\">"; print " Selection: <input type=\"submit\" class=\"button\" disabled=\"true\" onclick=\"return editSelectedFilter()\" value=\"Edit\"> <input type=\"submit\" class=\"button\" disabled=\"true\" onclick=\"return removeSelectedFilters()\" value=\"Remove\">"; print "</p>"; } else { print "<p>No filters defined.</p>"; } } // We need to accept raw SQL data in label queries, so not everything is escaped // here, this is by design. If you don't like the whole idea, disable labels // altogether with GLOBAL_ENABLE_LABELS = false if ($op == "pref-labels") { if (!GLOBAL_ENABLE_LABELS) { return; } $subop = $_GET["subop"]; if ($subop == "test") { $expr = db_unescape_string(trim($_GET["expr"])); $descr = db_unescape_string(trim($_GET["descr"])); print "<div id=\"infoBoxTitle\">Test label: $descr</div>"; print "<div class='infoBoxContents'>"; # print "<h1>Label «$descr»</h1>"; // print "<p><b>Expression</b>: $expr</p>"; $result = db_query($link, "SELECT count(ttrss_entries.id) AS num_matches FROM ttrss_entries,ttrss_user_entries,ttrss_feeds WHERE ($expr) AND ttrss_user_entries.ref_id = ttrss_entries.id AND ttrss_user_entries.feed_id = ttrss_feeds.id AND ttrss_user_entries.owner_uid = " . $_SESSION["uid"]); $num_matches = db_fetch_result($result, 0, "num_matches");; if ($num_matches > 0) { print "<p>Query returned <b>$num_matches</b> matches, showing first 15:</p>"; $result = db_query($link, "SELECT ttrss_entries.title, (SELECT title FROM ttrss_feeds WHERE id = feed_id) AS feed_title FROM ttrss_entries,ttrss_user_entries,ttrss_feeds WHERE ($expr) AND ttrss_user_entries.ref_id = ttrss_entries.id AND ttrss_user_entries.feed_id = ttrss_feeds.id AND ttrss_user_entries.owner_uid = " . $_SESSION["uid"] . " ORDER BY date_entered DESC LIMIT 15"); print "<ul class=\"filterTestResults\">"; $row_class = "even"; while ($line = db_fetch_assoc($result)) { $row_class = toggleEvenOdd($row_class); print "<li class=\"$row_class\">".$line["title"]. " <span class=\"insensitive\">(".$line["feed_title"].")</span></li>"; } print "</ul>"; } else { print "<p>Query didn't return any matches.</p>"; } print "</div>"; print "<div align='center'> <input type='submit' class='button' onclick=\"closeInfoBox()\" value=\"Close this window\"></div>"; return; } if ($subop == "editSave") { $sql_exp = trim($_GET["sql_exp"]); $descr = db_escape_string(trim($_GET["description"])); $label_id = db_escape_string($_GET["id"]); $result = db_query($link, "UPDATE ttrss_labels SET sql_exp = '$sql_exp', description = '$descr' WHERE id = '$label_id'"); } if ($subop == "remove") { if (!WEB_DEMO_MODE) { $ids = split(",", db_escape_string($_GET["ids"])); foreach ($ids as $id) { db_query($link, "DELETE FROM ttrss_labels WHERE id = '$id'"); } } } if ($subop == "add") { if (!WEB_DEMO_MODE) { // no escaping is done here on purpose $exp = trim($_GET["exp"]); $result = db_query($link, "INSERT INTO ttrss_labels (sql_exp,description,owner_uid) VALUES ('$exp', '$exp', '".$_SESSION["uid"]."')"); } } print "<div class=\"prefGenericAddBox\"> <input size=\"40\" onkeyup=\"toggleSubmitNotEmpty(this, 'label_create_btn')\" id=\"ladd_expr\"> "; print"<input type=\"submit\" class=\"button\" disabled=\"true\" id=\"label_create_btn\" onclick=\"javascript:addLabel()\" value=\"Create label\"></div>"; $result = db_query($link, "SELECT id,sql_exp,description FROM ttrss_labels WHERE owner_uid = ".$_SESSION["uid"]." ORDER by description"); // print "<div id=\"infoBoxShadow\"><div id=\"infoBox\">PLACEHOLDER</div></div>"; if (db_num_rows($result) != 0) { print "<form id=\"label_edit_form\">"; print "<p><table width=\"100%\" cellspacing=\"0\" class=\"prefLabelList\" id=\"prefLabelList\">"; print "<tr><td class=\"selectPrompt\" colspan=\"8\"> Select: <a href=\"javascript:selectPrefRows('label', true)\">All</a>, <a href=\"javascript:selectPrefRows('label', false)\">None</a> </td</tr>"; print "<tr class=\"title\"> <td width=\"5%\"> </td> <td width=\"40%\">SQL expression <a class=\"helpLink\" href=\"javascript:displayHelpInfobox(1)\">(?)</a> </td> <td width=\"40%\">Caption</td></tr>"; $lnum = 0; while ($line = db_fetch_assoc($result)) { $class = ($lnum % 2) ? "even" : "odd"; $label_id = $line["id"]; $edit_label_id = $_GET["id"]; if ($subop == "edit" && $label_id != $edit_label_id) { $class .= "Grayed"; $this_row_id = ""; } else { $this_row_id = "id=\"LILRR-$label_id\""; } print "<tr class=\"$class\" $this_row_id>"; $line["sql_exp"] = htmlspecialchars(db_unescape_string($line["sql_exp"])); $line["description"] = htmlspecialchars( db_unescape_string($line["description"])); if (!$edit_label_id || $subop != "edit") { if (!$line["description"]) $line["description"] = "[No caption]"; print "<td align='center'><input onclick='toggleSelectPrefRow(this, \"label\");' type=\"checkbox\" id=\"LICHK-".$line["id"]."\"></td>"; print "<td><a href=\"javascript:editLabel($label_id);\">" . $line["sql_exp"] . "</td>"; print "<td><a href=\"javascript:editLabel($label_id);\">" . $line["description"] . "</td>"; } else if ($label_id != $edit_label_id) { if (!$line["description"]) $line["description"] = "[No description]"; print "<td align='center'><input disabled=\"true\" type=\"checkbox\" id=\"LICHK-".$line["id"]."\"></td>"; print "<td>".$line["sql_exp"]."</td>"; print "<td>".$line["description"]."</td>"; } else { print "<td align='center'><input disabled=\"true\" type=\"checkbox\" checked>"; print "<input type=\"hidden\" name=\"id\" value=\"$label_id\">"; print "<input type=\"hidden\" name=\"op\" value=\"pref-labels\">"; print "<input type=\"hidden\" name=\"subop\" value=\"editSave\">"; print "</td>"; print "<td><input onkeypress=\"return filterCR(event)\" class=\"iedit\" name=\"sql_exp\" value=\"".$line["sql_exp"]."\"></td>"; print "<td><input onkeypress=\"return filterCR(event)\" class=\"iedit\" name=\"description\" value=\"".$line["description"]."\"></td>"; } print "</tr>"; ++$lnum; } if ($lnum == 0) { print "<tr><td colspan=\"4\" align=\"center\">No labels defined.</td></tr>"; } print "</table>"; print "</form>"; print "<p id=\"labelOpToolbar\">"; if ($subop == "edit") { print "Edit label: <input type=\"submit\" class=\"button\" onclick=\"javascript:labelTest()\" value=\"Test\"> <input type=\"submit\" class=\"button\" onclick=\"javascript:labelEditSave()\" value=\"Save\"> <input type=\"submit\" class=\"button\" onclick=\"javascript:labelEditCancel()\" value=\"Cancel\">"; } else { print " Selection: <input type=\"submit\" class=\"button\" disabled=\"true\" onclick=\"javascript:editSelectedLabel()\" value=\"Edit\"> <input type=\"submit\" class=\"button\" disabled=\"true\" onclick=\"javascript:removeSelectedLabels()\" value=\"Remove\">"; } } else { print "<p>No labels defined.</p>"; } } if ($op == "error") { print "<div width=\"100%\" align='center'>"; $msg = $_GET["msg"]; print $msg; print "</div>"; } if ($op == "help") { if (!$_GET["noheaders"]) { print "<html><head> <title>Tiny Tiny RSS : Help</title> <link rel=\"stylesheet\" href=\"tt-rss.css\" type=\"text/css\"> <script type=\"text/javascript\" src=\"prototype.js\"></script> <script type=\"text/javascript\" src=\"functions.js?$script_dt_add\"></script> <meta http-equiv=\"Content-Type\" content=\"text/html; charset=utf-8\"> </head><body>"; } $tid = sprintf("%d", $_GET["tid"]); print "<div id=\"infoBoxTitle\">Help</div>"; print "<div class='infoBoxContents'>"; if (file_exists("help/$tid.php")) { include("help/$tid.php"); } else { print "<p>Help topic not found.</p>"; } print "</div>"; print "<div align='center'> <input type='submit' class='button' onclick=\"closeInfoBox()\" value=\"Close this window\"></div>"; if (!$_GET["noheaders"]) { print "</body></html>"; } } if ($op == "dlg") { $id = $_GET["id"]; $param = $_GET["param"]; if ($id == "quickAddFeed") { print "<div id=\"infoBoxTitle\">Subscribe to feed</div>"; print "<div class=\"infoBoxContents\">"; print "<form id='feed_add_form'>"; print "<input type=\"hidden\" name=\"op\" value=\"pref-feeds\">"; print "<input type=\"hidden\" name=\"quiet\" value=\"1\">"; print "<input type=\"hidden\" name=\"subop\" value=\"add\">"; print "<table width='100%'> <tr><td>Feed URL:</td><td> <input class=\"iedit\" onblur=\"javascript:enableHotkeys()\" onkeypress=\"return filterCR(event)\" onkeyup=\"toggleSubmitNotEmpty(this, 'fadd_submit_btn')\" onfocus=\"javascript:disableHotkeys()\" name=\"feed_url\"></td></tr>"; if (get_pref($link, 'ENABLE_FEED_CATS')) { print "<tr><td>Category:</td><td>"; print_feed_cat_select($link, "cat_id"); print "</td></tr>"; } print "</table>"; print "</form>"; print "<div align='right'> <input class=\"button\" id=\"fadd_submit_btn\" disabled=\"true\" type=\"submit\" onclick=\"javascript:qafAdd()\" value=\"Subscribe\"> <input class=\"button\" type=\"submit\" onclick=\"javascript:closeInfoBox()\" value=\"Cancel\"></div>"; } if ($id == "search") { print "<div id=\"infoBoxTitle\">Search</div>"; print "<div class=\"infoBoxContents\">"; print "<form id='search_form'>"; #$active_feed_id = db_escape_string($_GET["param"]); $params = split(":", db_escape_string($_GET["param"])); $active_feed_id = sprintf("%d", $params[0]); $is_cat = $params[1] == "true"; print "<table width='100%'><tr><td>Search:</td><td>"; print "<input name=\"query\" class=\"iedit\" onkeypress=\"return filterCR(event)\" onkeyup=\"toggleSubmitNotEmpty(this, 'search_submit_btn')\" value=\"\"> </td></tr>"; print "<tr><td>Where:</td><td>"; print "<select name=\"search_mode\"> <option value=\"all_feeds\">All feeds</option>"; $feed_title = getFeedTitle($link, $active_feed_id); if (!$is_cat) { $feed_cat_title = getFeedCatTitle($link, $active_feed_id); } else { $feed_cat_title = getCategoryTitle($link, $active_feed_id); } if ($active_feed_id && !$is_cat) { print "<option selected value=\"this_feed\">This feed ($feed_title)</option>"; } else { print "<option disabled>This feed</option>"; } if ($is_cat) { $cat_preselected = "selected"; } if (get_pref($link, 'ENABLE_FEED_CATS') && ($active_feed_id > 0 || $is_cat)) { print "<option $cat_preselected value=\"this_cat\">This category ($feed_cat_title)</option>"; } else { print "<option disabled>This category</option>"; } print "</select></td></tr>"; print "<tr><td>Match on:</td><td>"; $search_fields = array( "title" => "Title", "content" => "Content", "both" => "Title or content"); print_select_hash("match_on", 3, $search_fields); print "</td></tr></table>"; print "</form>"; print "<div align=\"right\"> <input type=\"submit\" class=\"button\" onclick=\"javascript:search()\" id=\"search_submit_btn\" disabled=\"true\" value=\"Search\"> <input class=\"button\" type=\"submit\" onclick=\"javascript:searchCancel()\" value=\"Cancel\"></div>"; print "</div>"; } if ($id == "quickAddFilter") { $active_feed_id = db_escape_string($_GET["param"]); print "<div id=\"infoBoxTitle\">Create filter</div>"; print "<div class=\"infoBoxContents\">"; print "<form id=\"filter_add_form\">"; print "<input type=\"hidden\" name=\"op\" value=\"pref-filters\">"; print "<input type=\"hidden\" name=\"quiet\" value=\"1\">"; print "<input type=\"hidden\" name=\"subop\" value=\"add\">"; // print "<div class=\"notice\"><b>Note:</b> filter will only apply to new articles.</div>"; $result = db_query($link, "SELECT id,description FROM ttrss_filter_types ORDER BY description"); $filter_types = array(); while ($line = db_fetch_assoc($result)) { //array_push($filter_types, $line["description"]); $filter_types[$line["id"]] = $line["description"]; } print "<table width='100%'>"; print "<tr><td>Match:</td> <td><input onkeypress=\"return filterCR(event)\" onkeyup=\"toggleSubmitNotEmpty(this, 'infobox_submit')\" name=\"reg_exp\" class=\"iedit\">"; print "</td><td>"; print_select_hash("filter_type", 1, $filter_types, "class=\"iedit\""); print "</td></tr>"; print "<tr><td>Feed:</td><td colspan='2'>"; print_feed_select($link, "feed_id", $active_feed_id); print "</td></tr>"; print "<tr><td>Action:</td>"; print "<td colspan='2'><select name=\"action_id\">"; $result = db_query($link, "SELECT id,description FROM ttrss_filter_actions ORDER BY name"); while ($line = db_fetch_assoc($result)) { printf("<option value='%d'>%s</option>", $line["id"], $line["description"]); } print "</select>"; print "</td></tr></table>"; print "</form>"; print "<div align='right'>"; print "<input type=\"submit\" id=\"infobox_submit\" class=\"button\" onclick=\"return qaddFilter()\" disabled=\"true\" value=\"Create\"> "; print "<input class=\"button\" type=\"submit\" onclick=\"return closeInfoBox()\" value=\"Cancel\">"; print "</div>"; // print "</td></tr></table>"; } print "</div>"; } // update feeds of all users, may be used anonymously if ($op == "globalUpdateFeeds") { $result = db_query($link, "SELECT id FROM ttrss_users"); while ($line = db_fetch_assoc($result)) { $user_id = $line["id"]; // print "<!-- updating feeds of uid $user_id -->"; update_all_feeds($link, false, $user_id); } print "<rpc-reply> <message msg=\"All feeds updated\"/> </rpc-reply>"; } if ($op == "pref-prefs") { $subop = $_REQUEST["subop"]; if ($subop == "Save configuration") { if (WEB_DEMO_MODE) { header("Location: prefs.php"); return; } $_SESSION["prefs_op_result"] = "save-config"; $_SESSION["prefs_cache"] = false; foreach (array_keys($_POST) as $pref_name) { $pref_name = db_escape_string($pref_name); $value = db_escape_string($_POST[$pref_name]); $result = db_query($link, "SELECT type_name FROM ttrss_prefs,ttrss_prefs_types WHERE pref_name = '$pref_name' AND type_id = ttrss_prefs_types.id"); if (db_num_rows($result) > 0) { $type_name = db_fetch_result($result, 0, "type_name"); // print "$pref_name : $type_name : $value<br>"; if ($type_name == "bool") { if ($value == "1") { $value = "true"; } else { $value = "false"; } } else if ($type_name == "integer") { $value = sprintf("%d", $value); } // print "$pref_name : $type_name : $value<br>"; db_query($link, "UPDATE ttrss_user_prefs SET value = '$value' WHERE pref_name = '$pref_name' AND owner_uid = ".$_SESSION["uid"]); } header("Location: prefs.php"); } } else if ($subop == "getHelp") { $pref_name = db_escape_string($_GET["pn"]); $result = db_query($link, "SELECT help_text FROM ttrss_prefs WHERE pref_name = '$pref_name'"); if (db_num_rows($result) > 0) { $help_text = db_fetch_result($result, 0, "help_text"); print $help_text; } else { print "Unknown option: $pref_name"; } } else if ($subop == "Change e-mail") { if (WEB_DEMO_MODE) { header("Location: prefs.php"); return; } $email = db_escape_string($_GET["email"]); $active_uid = $_SESSION["uid"]; if ($email) { db_query($link, "UPDATE ttrss_users SET email = '$email' WHERE id = '$active_uid'"); } header("Location: prefs.php"); } else if ($subop == "Change password") { if (WEB_DEMO_MODE) { header("Location: prefs.php"); return; } $old_pw = $_POST["OLD_PASSWORD"]; $new_pw = $_POST["OLD_PASSWORD"]; $old_pw_hash = 'SHA1:' . sha1($_POST["OLD_PASSWORD"]); $new_pw_hash = 'SHA1:' . sha1($_POST["NEW_PASSWORD"]); $active_uid = $_SESSION["uid"]; if ($old_pw && $new_pw) { $login = db_escape_string($_SERVER['PHP_AUTH_USER']); $result = db_query($link, "SELECT id FROM ttrss_users WHERE id = '$active_uid' AND (pwd_hash = '$old_pw' OR pwd_hash = '$old_pw_hash')"); if (db_num_rows($result) == 1) { db_query($link, "UPDATE ttrss_users SET pwd_hash = '$new_pw_hash' WHERE id = '$active_uid'"); $_SESSION["pwd_change_result"] = "ok"; } else { $_SESSION["pwd_change_result"] = "failed"; } } header("Location: prefs.php"); } else if ($subop == "Reset to defaults") { if (WEB_DEMO_MODE) { header("Location: prefs.php"); return; } $_SESSION["prefs_op_result"] = "reset-to-defaults"; if (DB_TYPE == "pgsql") { db_query($link,"UPDATE ttrss_user_prefs SET value = ttrss_prefs.def_value WHERE owner_uid = '".$_SESSION["uid"]."' AND ttrss_prefs.pref_name = ttrss_user_prefs.pref_name"); } else { db_query($link, "DELETE FROM ttrss_user_prefs WHERE owner_uid = ".$_SESSION["uid"]); initialize_user_prefs($link, $_SESSION["uid"]); } header("Location: prefs.php"); } else if ($subop == "Change theme") { $theme = db_escape_string($_POST["theme"]); if ($theme == "Default") { $theme_qpart = 'NULL'; } else { $theme_qpart = "'$theme'"; } $result = db_query($link, "SELECT id,theme_path FROM ttrss_themes WHERE theme_name = '$theme'"); if (db_num_rows($result) == 1) { $theme_id = db_fetch_result($result, 0, "id"); $theme_path = db_fetch_result($result, 0, "theme_path"); } else { $theme_id = "NULL"; $theme_path = ""; } db_query($link, "UPDATE ttrss_users SET theme_id = $theme_id WHERE id = " . $_SESSION["uid"]); $_SESSION["theme"] = $theme_path; header("Location: prefs.php"); } else { if (!SINGLE_USER_MODE) { $result = db_query($link, "SELECT id,email FROM ttrss_users WHERE id = ".$_SESSION["uid"]." AND (pwd_hash = 'password' OR pwd_hash = 'SHA1:".sha1("password")."')"); if (db_num_rows($result) != 0) { print "<div class=\"warning\"> Your password is at default value, please change it. </div>"; } if ($_SESSION["pwd_change_result"] == "failed") { print "<div class=\"warning\"> There was an error while changing your password. </div>"; } if ($_SESSION["pwd_change_result"] == "ok") { print "<div class=\"notice\"> Password changed successfully. </div>"; } $_SESSION["pwd_change_result"] = ""; if ($_SESSION["prefs_op_result"] == "reset-to-defaults") { print "<div class=\"notice\"> Your configuration was reset to defaults. </div>"; } if ($_SESSION["prefs_op_result"] == "save-config") { print "<div class=\"notice\"> Your configuration was saved successfully. </div>"; } $_SESSION["prefs_op_result"] = ""; print "<form action=\"backend.php\" method=\"GET\">"; print "<table width=\"100%\" class=\"prefPrefsList\">"; print "<tr><td colspan='3'><h3>Personal data</h3></tr></td>"; $result = db_query($link, "SELECT email FROM ttrss_users WHERE id = ".$_SESSION["uid"]); $email = db_fetch_result($result, 0, "email"); print "<tr><td width=\"40%\">E-mail</td>"; print "<td><input class=\"editbox\" name=\"email\" value=\"$email\"></td></tr>"; print "</table>"; print "<input type=\"hidden\" name=\"op\" value=\"pref-prefs\">"; print "<p><input class=\"button\" type=\"submit\" value=\"Change e-mail\" name=\"subop\">"; print "</form>"; print "<form action=\"backend.php\" method=\"POST\" name=\"changePassForm\">"; print "<table width=\"100%\" class=\"prefPrefsList\">"; print "<tr><td colspan='3'><h3>Authentication</h3></tr></td>"; print "<tr><td width=\"40%\">Old password</td>"; print "<td><input class=\"editbox\" type=\"password\" name=\"OLD_PASSWORD\"></td></tr>"; print "<tr><td width=\"40%\">New password</td>"; print "<td><input class=\"editbox\" type=\"password\" name=\"NEW_PASSWORD\"></td></tr>"; print "</table>"; print "<input type=\"hidden\" name=\"op\" value=\"pref-prefs\">"; print "<p><input class=\"button\" type=\"submit\" onclick=\"return validateNewPassword(this.form)\" value=\"Change password\" name=\"subop\">"; print "</form>"; } $result = db_query($link, "SELECT theme_id FROM ttrss_users WHERE id = " . $_SESSION["uid"]); $user_theme_id = db_fetch_result($result, 0, "theme_id"); $result = db_query($link, "SELECT id,theme_name FROM ttrss_themes ORDER BY theme_name"); if (db_num_rows($result) > 0) { print "<form action=\"backend.php\" method=\"POST\">"; print "<table width=\"100%\" class=\"prefPrefsList\">"; print "<tr><td colspan='3'><h3>Themes</h3></tr></td>"; print "<tr><td width=\"40%\">Select theme</td>"; print "<td><select name=\"theme\">"; print "<option>Default</option>"; print "<option disabled>--------</option>"; while ($line = db_fetch_assoc($result)) { if ($line["id"] == $user_theme_id) { $selected = "selected"; } else { $selected = ""; } print "<option $selected>" . $line["theme_name"] . "</option>"; } print "</select></td></tr>"; print "</table>"; print "<input type=\"hidden\" name=\"op\" value=\"pref-prefs\">"; print "<p><input class=\"button\" type=\"submit\" value=\"Change theme\" name=\"subop\">"; print "</form>"; } $result = db_query($link, "SELECT ttrss_user_prefs.pref_name,short_desc,help_text,value,type_name, section_name,def_value FROM ttrss_prefs,ttrss_prefs_types,ttrss_prefs_sections,ttrss_user_prefs WHERE type_id = ttrss_prefs_types.id AND section_id = ttrss_prefs_sections.id AND ttrss_user_prefs.pref_name = ttrss_prefs.pref_name AND owner_uid = ".$_SESSION["uid"]." ORDER BY section_id,short_desc"); print "<form action=\"backend.php\" method=\"POST\">"; $lnum = 0; $active_section = ""; while ($line = db_fetch_assoc($result)) { if ($active_section != $line["section_name"]) { if ($active_section != "") { print "</table>"; } print "<p><table width=\"100%\" class=\"prefPrefsList\">"; $active_section = $line["section_name"]; print "<tr><td colspan=\"3\"><h3>$active_section</h3></td></tr>"; // print "<tr class=\"title\"> // <td width=\"25%\">Option</td><td>Value</td></tr>"; $lnum = 0; } // $class = ($lnum % 2) ? "even" : "odd"; print "<tr>"; $type_name = $line["type_name"]; $pref_name = $line["pref_name"]; $value = $line["value"]; $def_value = $line["def_value"]; $help_text = $line["help_text"]; print "<td width=\"40%\" id=\"$pref_name\">" . $line["short_desc"]; if ($help_text) print "<div class=\"prefHelp\">$help_text</div>"; print "</td>"; print "<td>"; if ($type_name == "bool") { // print_select($pref_name, $value, array("true", "false")); if ($value == "true") { $value = "Yes"; } else { $value = "No"; } print_radio($pref_name, $value, array("Yes", "No")); } else { print "<input class=\"editbox\" name=\"$pref_name\" value=\"$value\">"; } print "</td>"; print "</tr>"; $lnum++; } print "</table>"; print "<input type=\"hidden\" name=\"op\" value=\"pref-prefs\">"; print "<p><input class=\"button\" type=\"submit\" name=\"subop\" value=\"Save configuration\">"; print " <input class=\"button\" type=\"submit\" name=\"subop\" onclick=\"return validatePrefsReset()\" value=\"Reset to defaults\"></p>"; print "</form>"; } } if ($op == "pref-users") { $subop = $_GET["subop"]; if ($subop == "edit") { $id = db_escape_string($_GET["id"]); print "<div id=\"infoBoxTitle\">User editor</div>"; print "<div class=\"infoBoxContents\">"; print "<form id=\"user_edit_form\">"; print "<input type=\"hidden\" name=\"id\" value=\"$id\">"; print "<input type=\"hidden\" name=\"op\" value=\"pref-users\">"; print "<input type=\"hidden\" name=\"subop\" value=\"editSave\">"; $result = db_query($link, "SELECT * FROM ttrss_users WHERE id = '$id'"); $login = db_fetch_result($result, 0, "login"); $access_level = db_fetch_result($result, 0, "access_level"); $email = db_fetch_result($result, 0, "email"); print "<table width='100%'>"; print "<tr><td>Login:</td><td> <input class=\"iedit\" onkeypress=\"return filterCR(event)\" name=\"login\" value=\"$login\"></td></tr>"; print "<tr><td>Change password:</td><td> <input class=\"iedit\" onkeypress=\"return filterCR(event)\" name=\"password\"></td></tr>"; print "<tr><td>E-mail:</td><td> <input class=\"iedit\" name=\"email\" onkeypress=\"return filterCR(event)\" value=\"$email\"></td></tr>"; $sel_disabled = ($id == $_SESSION["uid"]) ? "disabled" : ""; print "<tr><td>Access level:</td><td>"; print_select_hash("access_level", $access_level, $access_level_names, $sel_disabled); print "</td></tr>"; print "</table>"; print "</form>"; print "<div align='right'> <input class=\"button\" type=\"submit\" onclick=\"return userEditSave()\" value=\"Save\"> <input class=\"button\" type=\"submit\" onclick=\"return userEditCancel()\" value=\"Cancel\"></div>"; print "</div>"; return; } if ($subop == "editSave") { if (!WEB_DEMO_MODE && $_SESSION["access_level"] >= 10) { $login = db_escape_string(trim($_GET["login"])); $uid = db_escape_string($_GET["id"]); $access_level = sprintf("%d", $_GET["access_level"]); $email = db_escape_string(trim($_GET["email"])); $password = db_escape_string(trim($_GET["password"])); if ($password) { $pwd_hash = 'SHA1:' . sha1($password); $pass_query_part = "pwd_hash = '$pwd_hash', "; print "<div class='notice'>Changed password for user <b>$login</b>.</div>"; } else { $pass_query_part = ""; } db_query($link, "UPDATE ttrss_users SET $pass_query_part login = '$login', access_level = '$access_level', email = '$email' WHERE id = '$uid'"); } } else if ($subop == "remove") { if (!WEB_DEMO_MODE && $_SESSION["access_level"] >= 10) { $ids = split(",", db_escape_string($_GET["ids"])); foreach ($ids as $id) { db_query($link, "DELETE FROM ttrss_users WHERE id = '$id' AND id != " . $_SESSION["uid"]); } } } else if ($subop == "add") { if (!WEB_DEMO_MODE && $_SESSION["access_level"] >= 10) { $login = db_escape_string(trim($_GET["login"])); $tmp_user_pwd = make_password(8); $pwd_hash = 'SHA1:' . sha1($tmp_user_pwd); $result = db_query($link, "SELECT id FROM ttrss_users WHERE login = '$login'"); if (db_num_rows($result) == 0) { db_query($link, "INSERT INTO ttrss_users (login,pwd_hash,access_level,last_login) VALUES ('$login', '$pwd_hash', 0, NOW())"); $result = db_query($link, "SELECT id FROM ttrss_users WHERE login = '$login' AND pwd_hash = '$pwd_hash'"); if (db_num_rows($result) == 1) { $new_uid = db_fetch_result($result, 0, "id"); print "<div class=\"notice\">Added user <b>".$_GET["login"]. "</b> with password <b>$tmp_user_pwd</b>.</div>"; initialize_user($link, $new_uid); } else { print "<div class=\"warning\">Could not create user <b>". $_GET["login"]."</b></div>"; } } else { print "<div class=\"warning\">User <b>". $_GET["login"]."</b> already exists.</div>"; } } } else if ($subop == "resetPass") { if (!WEB_DEMO_MODE && $_SESSION["access_level"] >= 10) { $uid = db_escape_string($_GET["id"]); $result = db_query($link, "SELECT login,email FROM ttrss_users WHERE id = '$uid'"); $login = db_fetch_result($result, 0, "login"); $email = db_fetch_result($result, 0, "email"); $tmp_user_pwd = make_password(8); $pwd_hash = 'SHA1:' . sha1($tmp_user_pwd); db_query($link, "UPDATE ttrss_users SET pwd_hash = '$pwd_hash' WHERE id = '$uid'"); print "<div class=\"notice\">Changed password of user <b>$login</b> to <b>$tmp_user_pwd</b>."; if (MAIL_RESET_PASS && $email) { print " Notifying <b>$email</b>."; mail("$login <$email>", "Password reset notification", "Hi, $login.\n". "\n". "Your password for this TT-RSS installation was reset by". " an administrator.\n". "\n". "Your new password is $tmp_user_pwd, please remember". " it for later reference.\n". "\n". "Sincerely, TT-RSS Mail Daemon.", "From: " . MAIL_FROM); } print "</div>"; } } print "<div class=\"prefGenericAddBox\"> <input id=\"uadd_box\" onkeyup=\"toggleSubmitNotEmpty(this, 'user_add_btn')\" size=\"40\"> "; print"<input type=\"submit\" class=\"button\" id=\"user_add_btn\" disabled=\"true\" onclick=\"javascript:addUser()\" value=\"Create user\"></div>"; $result = db_query($link, "SELECT id,login,access_level,email, SUBSTRING(last_login,1,16) as last_login FROM ttrss_users ORDER by login"); // print "<div id=\"infoBoxShadow\"><div id=\"infoBox\">PLACEHOLDER</div></div>"; print "<p><table width=\"100%\" cellspacing=\"0\" class=\"prefUserList\" id=\"prefUserList\">"; print "<tr><td class=\"selectPrompt\" colspan=\"8\"> Select: <a href=\"javascript:selectPrefRows('user', true)\">All</a>, <a href=\"javascript:selectPrefRows('user', false)\">None</a> </td</tr>"; print "<tr class=\"title\"> <td align='center' width=\"5%\"> </td> <td width='40%'>Login</td> <td width='40%'>Access Level</td> <td width='30%'>Last login</td></tr>"; $lnum = 0; while ($line = db_fetch_assoc($result)) { $class = ($lnum % 2) ? "even" : "odd"; $uid = $line["id"]; $edit_uid = $_GET["id"]; if ($subop == "edit" && $uid != $edit_uid) { $class .= "Grayed"; $this_row_id = ""; } else { $this_row_id = "id=\"UMRR-$uid\""; } print "<tr class=\"$class\" $this_row_id>"; $line["login"] = htmlspecialchars($line["login"]); $line["last_login"] = date(get_pref($link, 'SHORT_DATE_FORMAT'), strtotime($line["last_login"])); $access_level_names = array(0 => "User", 10 => "Administrator"); // if (!$edit_uid || $subop != "edit") { print "<td align='center'><input onclick='toggleSelectPrefRow(this, \"user\");' type=\"checkbox\" id=\"UMCHK-$uid\"></td>"; print "<td><a href=\"javascript:editUser($uid);\">" . $line["login"] . "</td>"; if (!$line["email"]) $line["email"] = " "; print "<td><a href=\"javascript:editUser($uid);\">" . $access_level_names[$line["access_level"]] . "</td>"; /* } else if ($uid != $edit_uid) { if (!$line["email"]) $line["email"] = " "; print "<td align='center'><input disabled=\"true\" type=\"checkbox\" id=\"UMCHK-".$line["id"]."\"></td>"; print "<td>".$line["login"]."</td>"; print "<td>".$line["email"]."</td>"; print "<td>".$access_level_names[$line["access_level"]]."</td>"; } else { print "<td align='center'> <input disabled=\"true\" type=\"checkbox\" checked></td>"; print "<td><input id=\"iedit_ulogin\" value=\"".$line["login"]. "\"></td>"; print "<td><input id=\"iedit_email\" value=\"".$line["email"]. "\"></td>"; print "<td>"; print "<select id=\"iedit_ulevel\">"; foreach (array_keys($access_level_names) as $al) { if ($al == $line["access_level"]) { $selected = "selected"; } else { $selected = ""; } print "<option $selected id=\"$al\">" . $access_level_names[$al] . "</option>"; } print "</select>"; print "</td>"; } */ print "<td>".$line["last_login"]."</td>"; print "</tr>"; ++$lnum; } print "</table>"; print "<p id='userOpToolbar'>"; /* if ($subop == "edit") { print "Edit user: <input type=\"submit\" class=\"button\" onclick=\"javascript:userEditSave()\" value=\"Save\"> <input type=\"submit\" class=\"button\" onclick=\"javascript:userEditCancel()\" value=\"Cancel\">"; } else { */ print " Selection: <input type=\"submit\" class=\"button\" disabled=\"true\" onclick=\"javascript:selectedUserDetails()\" value=\"User details\"> <input type=\"submit\" class=\"button\" disabled=\"true\" onclick=\"javascript:editSelectedUser()\" value=\"Edit\"> <input type=\"submit\" class=\"button\" disabled=\"true\" onclick=\"javascript:removeSelectedUsers()\" value=\"Remove\"> <input type=\"submit\" class=\"button\" disabled=\"true\" onclick=\"javascript:resetSelectedUserPass()\" value=\"Reset password\">"; // } } if ($op == "user-details") { if (WEB_DEMO_MODE || $_SESSION["access_level"] < 10) { return; } /* print "<html><head> <title>Tiny Tiny RSS : User Details</title> <link rel=\"stylesheet\" href=\"tt-rss.css\" type=\"text/css\"> <meta http-equiv=\"Content-Type\" content=\"text/html; charset=utf-8\"> </head><body>"; */ $uid = sprintf("%d", $_GET["id"]); print "<div id=\"infoBoxTitle\">User details</div>"; print "<div class='infoBoxContents'>"; $result = db_query($link, "SELECT login, SUBSTRING(last_login,1,16) AS last_login, access_level, (SELECT COUNT(int_id) FROM ttrss_user_entries WHERE owner_uid = id) AS stored_articles FROM ttrss_users WHERE id = '$uid'"); if (db_num_rows($result) == 0) { print "<h1>User not found</h1>"; return; } # print "<h1>User Details</h1>"; $login = db_fetch_result($result, 0, "login"); # print "<h1>$login</h1>"; print "<table width='100%'>"; $last_login = date(get_pref($link, 'LONG_DATE_FORMAT'), strtotime(db_fetch_result($result, 0, "last_login"))); $access_level = db_fetch_result($result, 0, "access_level"); $stored_articles = db_fetch_result($result, 0, "stored_articles"); # print "<tr><td>Username</td><td>$login</td></tr>"; # print "<tr><td>Access level</td><td>$access_level</td></tr>"; print "<tr><td>Last logged in</td><td>$last_login</td></tr>"; print "<tr><td>Stored articles</td><td>$stored_articles</td></tr>"; $result = db_query($link, "SELECT COUNT(id) as num_feeds FROM ttrss_feeds WHERE owner_uid = '$uid'"); $num_feeds = db_fetch_result($result, 0, "num_feeds"); print "<tr><td>Subscribed feeds count</td><td>$num_feeds</td></tr>"; /* $result = db_query($link, "SELECT SUM(LENGTH(content)+LENGTH(title)+LENGTH(link)+LENGTH(guid)) AS db_size FROM ttrss_user_entries,ttrss_entries WHERE owner_uid = '$uid' AND ref_id = id"); $db_size = round(db_fetch_result($result, 0, "db_size") / 1024); print "<tr><td>Approx. used DB size</td><td>$db_size KBytes</td></tr>"; */ print "</table>"; print "<h1>Subscribed feeds</h1>"; $result = db_query($link, "SELECT id,title,site_url FROM ttrss_feeds WHERE owner_uid = '$uid' ORDER BY title"); print "<ul class=\"userFeedList\">"; $row_class = "odd"; while ($line = db_fetch_assoc($result)) { $icon_file = ICONS_URL."/".$line["id"].".ico"; if (file_exists($icon_file) && filesize($icon_file) > 0) { $feed_icon = "<img class=\"tinyFeedIcon\" src=\"$icon_file\">"; } else { $feed_icon = "<img class=\"tinyFeedIcon\" src=\"images/blank_icon.gif\">"; } print "<li class=\"$row_class\">$feed_icon <a href=\"".$line["site_url"]."\">".$line["title"]."</a></li>"; $row_class = toggleEvenOdd($row_class); } if (db_num_rows($result) < $num_feeds) { // FIXME - add link to show ALL subscribed feeds here somewhere print "<li><img class=\"tinyFeedIcon\" src=\"images/blank_icon.gif\"> ...</li>"; } print "</ul>"; print "</div>"; print "<div align='center'> <input type='submit' class='button' onclick=\"closeInfoBox()\" value=\"Close this window\"></div>"; // print "</body></html>"; } if ($op == "pref-feed-browser") { if (!ENABLE_FEED_BROWSER) { print "Feed browser is administratively disabled."; return; } $subop = $_REQUEST["subop"]; if ($subop == "details") { $id = db_escape_string($_GET["id"]); print "<div class=\"browserFeedInfo\">"; print "<b>Feed information:</b>"; print "<div class=\"detailsPart\">"; $result = db_query($link, "SELECT feed_url,site_url, SUBSTRING(last_updated,1,19) AS last_updated FROM ttrss_feeds WHERE id = '$id'"); $feed_url = db_fetch_result($result, 0, "feed_url"); $site_url = db_fetch_result($result, 0, "site_url"); $last_updated = db_fetch_result($result, 0, "last_updated"); if (get_pref($link, 'HEADLINES_SMART_DATE')) { $last_updated = smart_date_time(strtotime($last_updated)); } else { $short_date = get_pref($link, 'SHORT_DATE_FORMAT'); $last_updated = date($short_date, strtotime($last_updated)); } print "Site: <a href='$site_url'>$site_url</a> ". "(<a href='$feed_url'>feed</a>), ". "Last updated: $last_updated"; print "</div>"; $result = db_query($link, "SELECT ttrss_entries.title, content, substring(date_entered,1,19) as date_entered, substring(updated,1,19) as updated FROM ttrss_entries,ttrss_user_entries WHERE ttrss_entries.id = ref_id AND feed_id = '$id' ORDER BY updated DESC LIMIT 5"); if (db_num_rows($result) > 0) { print "<b>Last headlines:</b><br>"; print "<div class=\"detailsPart\">"; print "<ul class=\"compact\">"; while ($line = db_fetch_assoc($result)) { if (get_pref($link, 'HEADLINES_SMART_DATE')) { $entry_dt = smart_date_time(strtotime($line["updated"])); } else { $short_date = get_pref($link, 'SHORT_DATE_FORMAT'); $entry_dt = date($short_date, strtotime($line["updated"])); } print "<li>" . $line["title"] . " <span class=\"insensitive\">($entry_dt)</span></li>"; } print "</ul></div>"; } print "</div>"; return; } print "<p>This panel shows feeds subscribed by other users of this system, just in case you are interested in some of them too.</p>"; $limit = db_escape_string($_GET["limit"]); if (!$limit) $limit = 25; $owner_uid = $_SESSION["uid"]; $result = db_query($link, "SELECT feed_url,COUNT(id) AS subscribers FROM ttrss_feeds WHERE (SELECT COUNT(id) = 0 FROM ttrss_feeds AS tf WHERE tf.feed_url = ttrss_feeds.feed_url AND owner_uid = '$owner_uid') GROUP BY feed_url ORDER BY subscribers DESC LIMIT $limit"); print "<div style=\"float : right\"> Top <select id=\"feedBrowserLimit\">"; foreach (array(25, 50, 100) as $l) { $issel = ($l == $limit) ? "selected" : ""; print "<option $issel>$l</option>"; } print "</select> <input type=\"submit\" class=\"button\" onclick=\"updateBigFeedBrowser()\" value=\"Show\"> </div>"; print "<p id=\"fbrOpToolbar\">Selection: <input type='submit' class='button' onclick=\"feedBrowserSubscribe()\" disabled=\"true\" value=\"Subscribe\">"; print "<ul class='nomarks' id='browseBigFeedList'>"; $feedctr = 0; while ($line = db_fetch_assoc($result)) { $feed_url = $line["feed_url"]; $subscribers = $line["subscribers"]; $det_result = db_query($link, "SELECT site_url,title,id FROM ttrss_feeds WHERE feed_url = '$feed_url' LIMIT 1"); $details = db_fetch_assoc($det_result); $icon_file = ICONS_DIR . "/" . $details["id"] . ".ico"; if (file_exists($icon_file) && filesize($icon_file) > 0) { $feed_icon = "<img class=\"tinyFeedIcon\" src=\"" . ICONS_URL . "/".$details["id"].".ico\">"; } else { $feed_icon = "<img class=\"tinyFeedIcon\" src=\"images/blank_icon.gif\">"; } $check_box = "<input onclick='toggleSelectFBListRow(this)' class='feedBrowseCB' type=\"checkbox\" id=\"FBCHK-" . $details["id"] . "\">"; $class = ($feedctr % 2) ? "even" : "odd"; print "<li class='$class' id=\"FBROW-".$details["id"]."\">$check_box". "$feed_icon "; print "<a href=\"javascript:browserToggleExpand('".$details["id"]."')\">" . $details["title"] ."</a> " . "<span class='subscribers'>($subscribers)</span>"; print "<div class=\"browserDetails\" id=\"BRDET-" . $details["id"] . "\">"; print "</div>"; print "</li>"; ++$feedctr; } if ($feedctr == 0) { print "<li>No feeds found to subscribe.</li>"; } print "</ul>"; print "</div>"; } if ($op == "rss") { $feed = db_escape_string($_GET["id"]); $user = db_escape_string($_GET["user"]); $pass = db_escape_string($_GET["pass"]); $is_cat = $_GET["is_cat"] != false; $search = db_escape_string($_GET["q"]); $match_on = db_escape_string($_GET["m"]); $search_mode = db_escape_string($_GET["smode"]); if (!$_SESSION["uid"] && $user && $pass) { authenticate_user($link, $user, $pass); } if ($_SESSION["uid"] || http_authenticate_user($link)) { generate_syndicated_feed($link, $feed, $is_cat, $search, $search_mode, $match_on); } } function check_configuration_variables() { if (!defined('SESSION_EXPIRE_TIME')) { return "config: SESSION_EXPIRE_TIME is undefined"; } if (SESSION_EXPIRE_TIME < 60) { return "config: SESSION_EXPIRE_TIME is too low (less than 60)"; } if (SESSION_EXPIRE_TIME < SESSION_COOKIE_LIFETIME_REMEMBER) { return "config: SESSION_EXPIRE_TIME should be greater or equal to" . "SESSION_COOKIE_LIFETIME_REMEMBER"; } if (defined('DISABLE_SESSIONS')) { return "config: you have enabled DISABLE_SESSIONS. Please disable this option."; } if (DATABASE_BACKED_SESSIONS && SINGLE_USER_MODE) { return "config: DATABASE_BACKED_SESSIONS is incompatible with SINGLE_USER_MODE"; } return false; } if ($op == "labelFromSearch") { $search = db_escape_string($_GET["search"]); $search_mode = db_escape_string($_GET["smode"]); $match_on = db_escape_string($_GET["match"]); $is_cat = db_escape_string($_GET["is_cat"]); $title = db_escape_string($_GET["title"]); $feed = sprintf("%d", $_GET["feed"]); $label_qparts = array(); $search_expr = getSearchSql($search, $match_on); if ($is_cat) { if ($feed != 0) { $search_expr .= " AND ttrss_feeds.cat_id = $feed "; } else { $search_expr .= " AND ttrss_feeds.cat_id IS NULL "; } } else { if ($search_mode == "all_feeds") { // NOOP } else if ($search_mode == "this_cat") { $tmp_result = db_query($link, "SELECT cat_id FROM ttrss_feeds WHERE id = '$feed'"); $cat_id = db_fetch_result($tmp_result, 0, "cat_id"); if ($cat_id > 0) { $search_expr .= " AND ttrss_feeds.cat_id = $cat_id "; } else { $search_expr .= " AND ttrss_feeds.cat_id IS NULL "; } } else { $search_expr .= " AND ttrss_feeds.id = $feed "; } } $search_expr = db_escape_string($search_expr); print $search_expr; if ($title) { $result = db_query($link, "INSERT INTO ttrss_labels (sql_exp,description,owner_uid) VALUES ('$search_expr', '$title', '".$_SESSION["uid"]."')"); } } db_close($link); ?> <!-- <?= sprintf("Backend execution time: %.4f seconds", getmicrotime() - $script_started) ?> -->