<?php
require_once "sessions.php";
require_once "backend-rpc.php";
header("Cache-Control: no-cache, must-revalidate");
header("Pragma: no-cache");
header("Expires: -1");
/* if ($_GET["debug"]) {
define('DEFAULT_ERROR_LEVEL', E_ALL);
} else {
define('DEFAULT_ERROR_LEVEL', E_ERROR | E_WARNING | E_PARSE);
}
error_reporting(DEFAULT_ERROR_LEVEL); */
$op = $_REQUEST["op"];
define('SCHEMA_VERSION', 11);
require_once "sanity_check.php";
require_once "config.php";
require_once "db.php";
require_once "db-prefs.php";
require_once "functions.php";
$err_msg = check_configuration_variables();
$print_exec_time = true;
if ($err_msg) {
header("Content-Type: application/xml");
print_error_xml(9, $err_msg); die;
}
if ((!$op || $op == "rpc" || $op == "rss" || $op == "digestSend" ||
$op == "globalUpdateFeeds") & & !$_REQUEST["noxml"]) {
header("Content-Type: application/xml");
}
if (!$op) {
header("Content-Type: application/xml");
print_error_xml(7); exit;
}
if (!$_SESSION["uid"] & & $op != "globalUpdateFeeds" & & $op != "rss" & & $op != "getUnread") {
if ($op == "rpc") {
print_error_xml(6); die;
} else {
print "
< html > < body >
< p > Error: Not logged in.< / p >
< script type = \"text/javascript\" >
if (parent.window != 'undefined') {
parent.window.location = \"login.php\";
} else {
window.location = \"login.php\";
}
< / script >
< / body > < / html >
";
}
exit;
}
$purge_intervals = array(
0 => "Use default",
-1 => "Never purge",
5 => "1 week old",
14 => "2 weeks old",
31 => "1 month old",
60 => "2 months old",
90 => "3 months old");
$update_intervals = array(
0 => "Use default",
-1 => "Disable updates",
30 => "Each 30 minutes",
60 => "Hourly",
240 => "Each 4 hours",
720 => "Each 12 hours",
1440 => "Daily",
10080 => "Weekly");
$access_level_names = array(
0 => "User",
10 => "Administrator");
$script_started = getmicrotime();
$link = db_connect(DB_HOST, DB_USER, DB_PASS, DB_NAME);
if (!$link) {
if (DB_TYPE == "mysql") {
print mysql_error();
}
// PG seems to display its own errors just fine by default.
return;
}
if (DB_TYPE == "pgsql") {
pg_query("set client_encoding = 'utf-8'");
}
if ($_SESSION["uid"]) {
// setcookie('ttrss_vf_refresh', FEEDS_FRAME_REFRESH);
// setcookie('ttrss_vf_daemon', ENABLE_UPDATE_DAEMON);
/* if (get_pref($link, "ON_CATCHUP_SHOW_NEXT_FEED")) {
setcookie('ttrss_vf_catchupnext', 1);
} else {
setcookie('ttrss_vf_catchupnext', 0);
} */
}
$fetch = $_GET["fetch"];
// setcookie("ttrss_icons_url", ICONS_URL);
if (!sanity_check($link)) { return; }
function outputFeedList($link, $tags = false) {
print "< ul class = \"feedList\" id = \"feedList\" > \n";
$owner_uid = $_SESSION["uid"];
if (!$tags) {
/* virtual feeds */
if (get_pref($link, 'ENABLE_FEED_CATS')) {
print "< li class = \"feedCat\" > Special< / li > ";
print "< li id = \"feedCatHolder\" > < ul class = \"feedCatList\" > ";
}
$num_starred = getFeedUnread($link, -1);
$class = "virt";
if ($num_starred > 0) $class .= "Unread";
printFeedEntry(-1, $class, "Starred articles", $num_starred,
"images/mark_set.png", $link);
if (get_pref($link, 'ENABLE_FEED_CATS')) {
print "< / ul > \n";
}
if (GLOBAL_ENABLE_LABELS & & get_pref($link, 'ENABLE_LABELS')) {
$result = db_query($link, "SELECT id,sql_exp,description FROM
ttrss_labels WHERE owner_uid = '$owner_uid' ORDER by description");
if (db_num_rows($result) > 0) {
if (get_pref($link, 'ENABLE_FEED_CATS')) {
print "< li class = \"feedCat\" > Labels< / li > ";
print "< li id = \"feedCatHolder\" > < ul class = \"feedCatList\" > ";
} else {
print "< li > < hr > < / li > ";
}
}
while ($line = db_fetch_assoc($result)) {
error_reporting (0);
$label_id = -$line['id'] - 11;
$count = getFeedUnread($link, $label_id);
$class = "label";
if ($count > 0) {
$class .= "Unread";
}
error_reporting (DEFAULT_ERROR_LEVEL);
printFeedEntry($label_id,
$class, db_unescape_string($line["description"]),
$count, "images/label.png", $link);
}
if (db_num_rows($result) > 0) {
if (get_pref($link, 'ENABLE_FEED_CATS')) {
print "< / ul > ";
}
}
}
// if (!get_pref($link, 'ENABLE_FEED_CATS')) {
print "< li > < hr > < / li > ";
// }
if (get_pref($link, 'ENABLE_FEED_CATS')) {
if (get_pref($link, "FEEDS_SORT_BY_UNREAD")) {
$order_by_qpart = "category,unread DESC,title";
} else {
$order_by_qpart = "category,title";
}
} else {
if (get_pref($link, "FEEDS_SORT_BY_UNREAD")) {
$order_by_qpart = "unread DESC,title";
} else {
$order_by_qpart = "title";
}
}
$result = db_query($link, "SELECT ttrss_feeds.*,
SUBSTRING(last_updated,1,19) AS last_updated_noms,
(SELECT COUNT(id) FROM ttrss_entries,ttrss_user_entries
WHERE feed_id = ttrss_feeds.id AND unread = true
AND ttrss_user_entries.ref_id = ttrss_entries.id
AND owner_uid = '$owner_uid') as unread,
cat_id,last_error,
ttrss_feed_categories.title AS category,
ttrss_feed_categories.collapsed
FROM ttrss_feeds LEFT JOIN ttrss_feed_categories
ON (ttrss_feed_categories.id = cat_id)
WHERE
ttrss_feeds.hidden = false AND
ttrss_feeds.owner_uid = '$owner_uid' AND parent_feed IS NULL
ORDER BY $order_by_qpart");
$actid = $_GET["actid"];
/* real feeds */
$lnum = 0;
$total_unread = 0;
$category = "";
$short_date = get_pref($link, 'SHORT_DATE_FORMAT');
while ($line = db_fetch_assoc($result)) {
$feed = db_unescape_string($line["title"]);
$feed_id = $line["id"];
$subop = $_GET["subop"];
$unread = $line["unread"];
if (get_pref($link, 'HEADLINES_SMART_DATE')) {
$last_updated = smart_date_time(strtotime($line["last_updated_noms"]));
} else {
$last_updated = date($short_date, strtotime($line["last_updated_noms"]));
}
$rtl_content = sql_bool_to_bool($line["rtl_content"]);
if ($rtl_content) {
$rtl_tag = "dir=\"RTL\"";
} else {
$rtl_tag = "";
}
$tmp_result = db_query($link,
"SELECT id,COUNT(unread) AS unread
FROM ttrss_feeds LEFT JOIN ttrss_user_entries
ON (ttrss_feeds.id = ttrss_user_entries.feed_id)
WHERE parent_feed = '$feed_id' AND unread = true
GROUP BY ttrss_feeds.id");
if (db_num_rows($tmp_result) > 0) {
while ($l = db_fetch_assoc($tmp_result)) {
$unread += $l["unread"];
}
}
$cat_id = $line["cat_id"];
$tmp_category = $line["category"];
if (!$tmp_category) {
$tmp_category = "Uncategorized";
}
// $class = ($lnum % 2) ? "even" : "odd";
if ($line["last_error"]) {
$class = "error";
} else {
$class = "feed";
}
if ($unread > 0) $class .= "Unread";
if ($actid == $feed_id) {
$class .= "Selected";
}
$total_unread += $unread;
if ($category != $tmp_category & & get_pref($link, 'ENABLE_FEED_CATS')) {
if ($category) {
print "< / ul > < / li > ";
}
$category = $tmp_category;
$collapsed = $line["collapsed"];
// workaround for NULL category
if ($category == "Uncategorized") {
if ($_COOKIE["ttrss_vf_uclps"] == 1) {
$collapsed = "t";
}
}
if ($collapsed == "t" || $collapsed == "1") {
$holder_class = "invisible";
$ellipsis = "...";
} else {
$holder_class = "";
$ellipsis = "";
}
$cat_id = sprintf("%d", $cat_id);
$cat_unread = getCategoryUnread($link, $cat_id);
print "< li class = \"feedCat\" id = \"FCAT-$cat_id\" >
< a id = \"FCATN-$cat_id\" href = \"javascript:toggleCollapseCat($cat_id)\" > $tmp_category< / a >
< a href = \"javascript:viewCategory($cat_id)\" id = \"FCAP-$cat_id\" >
< span id = \"FCATCTR-$cat_id\"
class=\"$catctr_class\">($cat_unread unread)$ellipsis< / span >
< / a > < / li > ";
// !!! NO SPACE before < ul...feedCatList - breaks firstChild DOM function
// -> keyboard navigation, etc.
print "< li id = \"feedCatHolder\" class = \"$holder_class\" > < ul class = \"feedCatList\" id = \"FCATLIST-$cat_id\" > ";
}
printFeedEntry($feed_id, $class, $feed, $unread,
"icons/$feed_id.ico", $link, $rtl_content,
$last_updated, $line["last_error"]);
++$lnum;
}
if (db_num_rows($result) == 0) {
print "< li > No feeds to display.< / li > ";
}
} else {
// tags
/* $result = db_query($link, "SELECT tag_name,count(ttrss_entries.id) AS count
FROM ttrss_tags,ttrss_entries,ttrss_user_entries WHERE
post_int_id = ttrss_user_entries.int_id AND
unread = true AND ref_id = ttrss_entries.id
AND ttrss_tags.owner_uid = '$owner_uid' GROUP BY tag_name
UNION
select tag_name,0 as count FROM ttrss_tags WHERE owner_uid = '$owner_uid'
ORDER BY tag_name"); */
if (get_pref($link, 'ENABLE_FEED_CATS')) {
print "< li class = \"feedCat\" > Tags< / li > ";
print "< li id = \"feedCatHolder\" > < ul class = \"feedCatList\" > ";
}
$result = db_query($link, "SELECT tag_name,SUM((SELECT COUNT(int_id)
FROM ttrss_user_entries WHERE int_id = post_int_id
AND unread = true)) AS count FROM ttrss_tags
WHERE owner_uid = 2 GROUP BY tag_name ORDER BY tag_name");
$tags = array();
while ($line = db_fetch_assoc($result)) {
$tags[$line["tag_name"]] += $line["count"];
}
foreach (array_keys($tags) as $tag) {
$unread = $tags[$tag];
$class = "tag";
if ($unread > 0) {
$class .= "Unread";
}
printFeedEntry($tag, $class, $tag, $unread, "images/tag.png", $link);
}
if (db_num_rows($result) == 0) {
print "< li > No tags to display.< / li > ";
}
if (get_pref($link, 'ENABLE_FEED_CATS')) {
print "< / ul > \n";
}
}
print "< / ul > ";
}
if ($op == "rpc") {
handle_rpc_request($link);
}
if ($op == "feeds") {
$tags = $_GET["tags"];
$subop = $_GET["subop"];
if ($subop == "catchupAll") {
db_query($link, "UPDATE ttrss_user_entries SET
last_read = NOW(),unread = false WHERE owner_uid = " . $_SESSION["uid"]);
}
if ($subop == "collapse") {
$cat_id = db_escape_string($_GET["cid"]);
db_query($link, "UPDATE ttrss_feed_categories SET
collapsed = NOT collapsed WHERE id = '$cat_id' AND owner_uid = " .
$_SESSION["uid"]);
return;
}
outputFeedList($link, $tags);
}
if ($op == "view") {
$id = db_escape_string($_GET["id"]);
$feed_id = db_escape_string($_GET["feed"]);
$result = db_query($link, "SELECT rtl_content FROM ttrss_feeds
WHERE id = '$feed_id' AND owner_uid = " . $_SESSION["uid"]);
if (db_num_rows($result) == 1) {
$rtl_content = sql_bool_to_bool(db_fetch_result($result, 0, "rtl_content"));
} else {
$rtl_content = false;
}
if ($rtl_content) {
$rtl_tag = "dir=\"RTL\"";
$rtl_class = "RTL";
} else {
$rtl_tag = "";
$rtl_class = "";
}
$result = db_query($link, "UPDATE ttrss_user_entries
SET unread = false,last_read = NOW()
WHERE ref_id = '$id' AND feed_id = '$feed_id' AND owner_uid = " . $_SESSION["uid"]);
$result = db_query($link, "SELECT title,link,content,feed_id,comments,int_id,
SUBSTRING(updated,1,16) as updated,
(SELECT icon_url FROM ttrss_feeds WHERE id = feed_id) as icon_url,
num_comments,
author
FROM ttrss_entries,ttrss_user_entries
WHERE id = '$id' AND ref_id = id AND owner_uid = " . $_SESSION["uid"]);
if ($result) {
$link_target = "";
if (get_pref($link, 'OPEN_LINKS_IN_NEW_WINDOW')) {
$link_target = "target=\"_new\"";
}
$line = db_fetch_assoc($result);
if ($line["icon_url"]) {
$feed_icon = "< img class = \"feedIcon\" src = \"" . $ line [ " icon_url " ] . " \ " > ";
} else {
$feed_icon = " ";
}
/* if ($line["comments"] & & $line["link"] != $line["comments"]) {
$entry_comments = "(< a href = \"".$line["comments"]."\" > Comments< / a > )";
} else {
$entry_comments = "";
} */
$num_comments = $line["num_comments"];
$entry_comments = "";
if ($num_comments > 0) {
if ($line["comments"]) {
$comments_url = $line["comments"];
} else {
$comments_url = $line["link"];
}
$entry_comments = "< a $ link_target href = \"$comments_url\" > $num_comments comments< / a > ";
} else {
if ($line["comments"] & & $line["link"] != $line["comments"]) {
$entry_comments = "< a $ link_target href = \"".$line["comments"]."\" > comments< / a > ";
}
}
print "< div class = \"postReply\" > ";
print "< div class = \"postHeader\" > < table width = \"100%\" > ";
$entry_author = $line["author"];
if ($entry_author) {
$entry_author = " - by $entry_author";
}
if ($line["link"]) {
print "< tr > < td > < a $ link_target href = \"" . $ line [ " link " ] . " \ " > " .
$line["title"] . "< / a > $entry_author< / td > ";
} else {
print "< tr > < td > " . $line["title"] . "$entry_author< / td > ";
}
$parsed_updated = date(get_pref($link, 'LONG_DATE_FORMAT'),
strtotime($line["updated"]));
print "< td class = \"postDate$rtl_class\" > $parsed_updated< / td > ";
print "< / tr > ";
$tmp_result = db_query($link, "SELECT DISTINCT tag_name FROM
ttrss_tags WHERE post_int_id = " . $line["int_id"] . "
ORDER BY tag_name");
$tags_str = "";
$f_tags_str = "";
$num_tags = 0;
while ($tmp_line = db_fetch_assoc($tmp_result)) {
$num_tags++;
$tag = $tmp_line["tag_name"];
$tag_str = "< a href = \"javascript:parent.viewfeed('$tag')\" > $tag< / a > , ";
if ($num_tags == 5) {
$tags_str .= "< a href = \"javascript:showBlockElement('allEntryTags')\" > ...< / a > ";
} else if ($num_tags < 5 ) {
$tags_str .= $tag_str;
}
$f_tags_str .= $tag_str;
}
$tags_str = preg_replace("/, $/", "", $tags_str);
$f_tags_str = preg_replace("/, $/", "", $f_tags_str);
// $truncated_link = truncate_string($line["link"], 60);
if ($tags_str || $entry_comments) {
print "< tr > < td width = '50%' >
$entry_comments< / td >
< td align = \"right\" > $tags_str< / td > < / tr > ";
}
print "< / table > < / div > ";
print "< div class = \"postIcon\" > " . $feed_icon . "< / div > ";
print "< div class = \"postContent\" > ";
if (db_num_rows($tmp_result) > 5) {
print "< div id = \"allEntryTags\" > Tags: $f_tags_str< / div > ";
}
if (get_pref($link, 'OPEN_LINKS_IN_NEW_WINDOW')) {
$line["content"] = preg_replace("/href=/i", "target=\"_new\" href=", $line["content"]);
}
$line["content"] = sanitize_rss($line["content"]);
print $line["content"] . "< / div > ";
print "< / div > ";
}
}
if ($op == "viewfeed") {
$feed = db_escape_string($_GET["feed"]);
$subop = db_escape_string($_GET["subop"]);
$view_mode = db_escape_string($_GET["view_mode"]);
$limit = db_escape_string($_GET["limit"]);
$cat_view = db_escape_string($_GET["cat"]);
$next_unread_feed = db_escape_string($_GET["nuf"]);
if ($subop == "undefined") $subop = "";
if ($subop == "CatchupSelected") {
$ids = split(",", db_escape_string($_GET["ids"]));
$cmode = sprintf("%d", $_GET["cmode"]);
catchupArticlesById($link, $ids, $cmode);
}
if ($subop == "ForceUpdate" & & sprintf("%d", $feed) > 0) {
update_generic_feed($link, $feed, $cat_view);
}
if ($subop == "MarkAllRead") {
catchup_feed($link, $feed, $cat_view);
if (get_pref($link, 'ON_CATCHUP_SHOW_NEXT_FEED')) {
if ($next_unread_feed) {
$feed = $next_unread_feed;
}
}
}
if ($feed_id > 0) {
$result = db_query($link,
"SELECT id FROM ttrss_feeds WHERE id = '$feed' LIMIT 1");
if (db_num_rows($result) == 0) {
print "< div align = 'center' >
Feed not found.< / div > ";
return;
}
}
if (preg_match("/^-?[0-9][0-9]*$/", $feed) != false) {
$result = db_query($link, "SELECT rtl_content FROM ttrss_feeds
WHERE id = '$feed' AND owner_uid = " . $_SESSION["uid"]);
if (db_num_rows($result) == 1) {
$rtl_content = sql_bool_to_bool(db_fetch_result($result, 0, "rtl_content"));
} else {
$rtl_content = false;
}
if ($rtl_content) {
$rtl_tag = "dir=\"RTL\"";
} else {
$rtl_tag = "";
}
} else {
$rtl_tag = "";
$rtl_content = false;
}
$script_dt_add = get_script_dt_add();
/* print "< meta http-equiv = \"Content-Type\" content = \"text/html; charset = utf-8\" >
< script type = \"text/javascript\" src = \"prototype.js\" > < / script >
< script type = \"text/javascript\" src = \"functions.js?$script_dt_add\" > < / script >
< script type = \"text/javascript\" src = \"viewfeed.js?$script_dt_add\" > < / script >
<!-- [if gte IE 5.5000]>
< script type = \"text/javascript\" src = \"pngfix.js\" > < / script >
< link rel = \"stylesheet\" type = \"text/css\" href = \"tt-rss-ie.css\" >
<![endif]-->
< / head > < body $ rtl_tag >
< script type = \"text/javascript\" >
if (document.addEventListener) {
document.addEventListener(\"DOMContentLoaded\", init, null);
}
window.onload = init;
< / script > "; */
/// START /////////////////////////////////////////////////////////////////////////////////
$search = db_escape_string($_GET["query"]);
$search_mode = db_escape_string($_GET["search_mode"]);
$match_on = db_escape_string($_GET["match_on"]);
if (!$match_on) {
$match_on = "both";
}
$qfh_ret = queryFeedHeadlines($link, $feed, $limit, $view_mode, $cat_view, $search, $search_mode, $match_on);
$result = $qfh_ret[0];
$feed_title = $qfh_ret[1];
$feed_site_url = $qfh_ret[2];
$last_error = $qfh_ret[3];
/// STOP //////////////////////////////////////////////////////////////////////////////////
print "< div id = \"headlinesContainer\" $ rtl_tag > ";
if (!$result) {
print "< div align = 'center' >
Could not display feed (query failed). Please check label match syntax or local configuration.< / div > ";
return;
}
if (db_num_rows($result) > 0) {
print_headline_subtoolbar($link, $feed_site_url, $feed_title, false,
$rtl_content, $feed, $cat_view, $search, $match_on, $search_mode);
print "< div id = \"headlinesInnerContainer\" > ";
if (!get_pref($link, 'COMBINED_DISPLAY_MODE')) {
print "< table class = \"headlinesList\" id = \"headlinesList\"
cellspacing=\"0\" width=\"100%\">";
}
$lnum = 0;
error_reporting (DEFAULT_ERROR_LEVEL);
$num_unread = 0;
while ($line = db_fetch_assoc($result)) {
$class = ($lnum % 2) ? "even" : "odd";
$id = $line["id"];
$feed_id = $line["feed_id"];
if ($line["last_read"] == "" & &
($line["unread"] != "t" & & $line["unread"] != "1")) {
$update_pic = "< img id = 'FUPDPIC-$id' src = \"images/updated.png\"
alt=\"Updated\">";
} else {
$update_pic = "< img id = 'FUPDPIC-$id' src = \"images/blank_icon.gif\"
alt=\"Updated\">";
}
if ($line["unread"] == "t" || $line["unread"] == "1") {
$class .= "Unread";
++$num_unread;
$is_unread = true;
} else {
$is_unread = false;
}
if ($line["marked"] == "t" || $line["marked"] == "1") {
$marked_pic = "< img id = \"FMARKPIC-$id\" src = \"images/mark_set.png\"
alt=\"Reset mark\" onclick='javascript:toggleMark($id)'>";
} else {
$marked_pic = "< img id = \"FMARKPIC-$id\" src = \"images/mark_unset.png\"
alt=\"Set mark\" onclick='javascript:toggleMark($id)'>";
}
# $content_link = "< a target = \"_new\" href = \"".$line["link"]."\" > " .
# $line["title"] . "< / a > ";
$content_link = "< a href = \"javascript:view($id,$feed_id);\" > " .
$line["title"] . "< / a > ";
# $content_link = "< a href = \"javascript:viewContentUrl('".$line["link"]."');\" > " .
# $line["title"] . "< / a > ";
if (get_pref($link, 'HEADLINES_SMART_DATE')) {
$updated_fmt = smart_date_time(strtotime($line["updated"]));
} else {
$short_date = get_pref($link, 'SHORT_DATE_FORMAT');
$updated_fmt = date($short_date, strtotime($line["updated"]));
}
if (get_pref($link, 'SHOW_CONTENT_PREVIEW')) {
$content_preview = truncate_string(strip_tags($line["content_preview"]),
100);
}
if (!get_pref($link, 'COMBINED_DISPLAY_MODE')) {
print "< tr class = '$class' id = 'RROW-$id' > ";
print "< td class = 'hlUpdatePic' > $update_pic< / td > ";
print "< td class = 'hlSelectRow' >
< input type = \"checkbox\" onclick = \"toggleSelectRow(this)\"
class=\"feedCheckBox\" id=\"RCHK-$id\">
< / td > ";
print "< td class = 'hlMarkedPic' > $marked_pic< / td > ";
if ($line["feed_title"]) {
print "< td class = 'hlContent' > $content_link< / td > ";
print "< td class = 'hlFeed' >
< a href = 'javascript:viewfeed($feed_id)' > ".
$line["feed_title"]."< / a > < / td > ";
} else {
print "< td class = 'hlContent' valign = 'middle' > ";
print "< a href = \"javascript:view($id,$feed_id);\" > " .
$line["title"];
if (get_pref($link, 'SHOW_CONTENT_PREVIEW') & & !$rtl_tag) {
if ($content_preview) {
print "< span class = \"contentPreview\" > - $content_preview< / span > ";
}
}
print "< / a > ";
print "< / td > ";
}
print "< td class = \"hlUpdated\" > < nobr > $updated_fmt < / nobr > < / td > ";
print "< / tr > ";
} else {
if ($is_unread) {
$add_class = "Unread";
} else {
$add_class = "";
}
print "< div class = \"cdmArticle$add_class\" id = \"RROW-$id\" > ";
print "< div class = \"cdmHeader\" > ";
print "< div style = \"float : right \ " > $updated_fmt,
< a class = \"cdmToggleLink\"
href=\"javascript:toggleUnread($id)\">Toggle unread< / a >
< / div > ";
print "< a class = \"title\"
onclick=\"javascript:toggleUnread($id, 0)\"
target=\"new\" href=\"".$line["link"]."\">".$line["title"]."< / a > ";
if ($line["feed_title"]) {
print " (< a href = 'javascript:viewfeed($feed_id)' > ".$line["feed_title"]."< / a > )";
}
print "< / div > ";
print "< div class = \"cdmContent\" > " . $line["content_preview"] . "< / div > < br clear = \"all\" > ";
print "< div style = \"float : right \ " > $marked_pic< / div >
< div lass = \"cdmFooter\" >
< input type = \"checkbox\" onclick = \"toggleSelectRowById(this,
'RROW-$id')\" class=\"feedCheckBox\" id=\"RCHK-$id\">< / div > ";
# print "< div align = \"center\" > < a class = \"cdmToggleLink\"
# href=\"javascript:toggleUnread($id)\">
# Toggle unread< / a > < / div > ";
print "< / div > ";
}
++$lnum;
}
if (!get_pref($link, 'COMBINED_DISPLAY_MODE')) {
print "< / table > ";
}
print "< / div > ";
// print_headline_subtoolbar($link,
// "javascript:catchupPage()", "Mark page as read", true, $rtl_content);
} else {
print "< div width = '100%' align = 'center' > No articles found.< / div > ";
}
print "< / div > ";
}
if ($op == "pref-feeds") {
$subop = $_REQUEST["subop"];
$quiet = $_REQUEST["quiet"];
if ($subop == "massSubscribe") {
$ids = split(",", db_escape_string($_GET["ids"]));
$subscribed = array();
foreach ($ids as $id) {
$result = db_query($link, "SELECT feed_url,title FROM ttrss_feeds
WHERE id = '$id'");
$feed_url = db_escape_string(db_fetch_result($result, 0, "feed_url"));
$title = db_escape_string(db_fetch_result($result, 0, "title"));
$title_orig = db_fetch_result($result, 0, "title");
$result = db_query($link, "SELECT id FROM ttrss_feeds WHERE
feed_url = '$feed_url' AND owner_uid = " . $_SESSION["uid"]);
if (db_num_rows($result) == 0) {
$result = db_query($link,
"INSERT INTO ttrss_feeds (owner_uid,feed_url,title,cat_id)
VALUES ('".$_SESSION["uid"]."', '$feed_url', '$title', NULL)");
array_push($subscribed, $title_orig);
}
}
if (count($subscribed) > 0) {
print "< div class = \"notice\" > ";
print "< b > Subscribed to feeds:< / b > ";
print "< ul class = \"nomarks\" > ";
foreach ($subscribed as $title) {
print "< li > $title< / li > ";
}
print "< / ul > ";
print "< / div > ";
}
}
if ($subop == "browse") {
if (!ENABLE_FEED_BROWSER) {
print "Feed browser is administratively disabled.";
return;
}
print "< div id = \"infoBoxTitle\" > Other feeds: Top 25< / div > ";
print "< div class = \"infoBoxContents\" > ";
print "< p > Showing top 25 registered feeds, sorted by popularity:< / p > ";
# $result = db_query($link, "SELECT feed_url,count(id) AS subscribers
# FROM ttrss_feeds
# WHERE auth_login = '' AND auth_pass = '' AND private = false
# GROUP BY feed_url ORDER BY subscribers DESC LIMIT 25");
$owner_uid = $_SESSION["uid"];
$result = db_query($link, "SELECT feed_url,COUNT(id) AS subscribers
FROM ttrss_feeds WHERE (SELECT COUNT(id) = 0 FROM ttrss_feeds AS tf
WHERE tf.feed_url = ttrss_feeds.feed_url
AND owner_uid = '$owner_uid') GROUP BY feed_url
ORDER BY subscribers DESC LIMIT 25");
print "< ul class = 'browseFeedList' id = 'browseFeedList' > ";
$feedctr = 0;
while ($line = db_fetch_assoc($result)) {
$feed_url = $line["feed_url"];
$subscribers = $line["subscribers"];
$det_result = db_query($link, "SELECT site_url,title,id
FROM ttrss_feeds WHERE feed_url = '$feed_url' LIMIT 1");
$details = db_fetch_assoc($det_result);
$icon_file = ICONS_DIR . "/" . $details["id"] . ".ico";
if (file_exists($icon_file) & & filesize($icon_file) > 0) {
$feed_icon = "< img class = \"tinyFeedIcon\" src = \"" . ICONS_URL .
"/".$details["id"].".ico\">";
} else {
$feed_icon = "< img class = \"tinyFeedIcon\" src = \"images/blank_icon.gif\" > ";
}
$check_box = "< input onclick = 'toggleSelectListRow(this)' class = 'feedBrowseCB'
type=\"checkbox\" id=\"FBCHK-" . $details["id"] . "\">";
$class = ($feedctr % 2) ? "even" : "odd";
print "< li class = '$class' id = \"FBROW-".$details["id"]."\" > $check_box".
"$feed_icon " . db_unescape_string($details["title"]) .
" < span class = 'subscribers' > ($subscribers)< / span > < / li > ";
++$feedctr;
}
if ($feedctr == 0) {
print "< li > No feeds found to subscribe.< / li > ";
}
print "< / ul > ";
print "< div align = 'center' >
< input type = \"submit\" class = \"button\"
onclick=\"feedBrowserSubscribe()\" value=\"Subscribe\">
< input type = 'submit' class = 'button'
onclick=\"closeInfoBox()\" value=\"Cancel\">< / div > ";
print "< / div > ";
return;
}
if ($subop == "editfeed") {
$feed_id = db_escape_string($_REQUEST["id"]);
$result = db_query($link,
"SELECT * FROM ttrss_feeds WHERE id = '$feed_id' AND
owner_uid = " . $_SESSION["uid"]);
$title = htmlspecialchars(db_unescape_string(db_fetch_result($result,
0, "title")));
$icon_file = ICONS_DIR . "/$feed_id.ico";
if (file_exists($icon_file) & & filesize($icon_file) > 0) {
$feed_icon = "< img width = \"16\" height = \"16\"
src=\"" . ICONS_URL . "/$feed_id.ico\">";
} else {
$feed_icon = "";
}
print "< div id = \"infoBoxTitle\" > Feed editor< / div > ";
print "< div class = \"infoBoxContents\" > ";
print "< form id = \"edit_feed_form\" > ";
print "< input type = \"hidden\" name = \"id\" value = \"$feed_id\" > ";
print "< input type = \"hidden\" name = \"op\" value = \"pref-feeds\" > ";
print "< input type = \"hidden\" name = \"subop\" value = \"editSave\" > ";
print "< table width = '100%' > ";
print "< tr > < td > Title:< / td > ";
print "< td > < input class = \"iedit\" onkeypress = \"return filterCR ( event ) \ "
name=\"title\" value=\"$title\">< / td > < / tr > ";
$feed_url = db_fetch_result($result, 0, "feed_url");
$feed_url = htmlspecialchars(db_unescape_string(db_fetch_result($result,
0, "feed_url")));
print "< tr > < td > Feed URL:< / td > ";
print "< td > < input class = \"iedit\" onkeypress = \"return filterCR ( event ) \ "
name=\"feed_url\" value=\"$feed_url\">< / td > < / tr > ";
if (get_pref($link, 'ENABLE_FEED_CATS')) {
$cat_id = db_fetch_result($result, 0, "cat_id");
print "< tr > < td > Category:< / td > ";
print "< td > ";
$parent_feed = db_fetch_result($result, 0, "parent_feed");
if (sprintf("%d", $parent_feed) > 0) {
$disabled = "disabled";
} else {
$disabled = "";
}
print_feed_cat_select($link, "cat_id", $cat_id, "class=\"iedit\" $disabled");
print "< / td > ";
print "< / td > < / tr > ";
}
$update_interval = db_fetch_result($result, 0, "update_interval");
print "< tr > < td > Update Interval:< / td > ";
print "< td > ";
print_select_hash("update_interval", $update_interval, $update_intervals,
"class=\"iedit\"");
print "< / td > ";
print "< tr > < td > Link to:< / td > < td > ";
$tmp_result = db_query($link, "SELECT COUNT(id) AS count
FROM ttrss_feeds WHERE parent_feed = '$feed_id'");
$linked_count = db_fetch_result($tmp_result, 0, "count");
$parent_feed = db_fetch_result($result, 0, "parent_feed");
if ($linked_count > 0) {
$disabled = "disabled";
} else {
$disabled = "";
}
print "< select class = \"iedit\" $ disabled name = \"parent_feed\" > ";
print "< option value = \"0\" > Not linked< / option > ";
if (get_pref($link, 'ENABLE_FEED_CATS')) {
if ($cat_id) {
$cat_qpart = "AND cat_id = '$cat_id'";
} else {
$cat_qpart = "AND cat_id IS NULL";
}
}
$tmp_result = db_query($link, "SELECT id,title FROM ttrss_feeds
WHERE id != '$feed_id' AND owner_uid = ".$_SESSION["uid"]." AND
(SELECT COUNT(id) FROM ttrss_feeds AS T2 WHERE T2.id = ttrss_feeds.parent_feed) = 0
$cat_qpart ORDER BY title");
if (db_num_rows($tmp_result) > 0) {
print "< option disabled > --------< / option > ";
}
while ($tmp_line = db_fetch_assoc($tmp_result)) {
if ($tmp_line["id"] == $parent_feed) {
$is_selected = "selected";
} else {
$is_selected = "";
}
printf("< option $ is_selected value = '%d' > %s< / option > ",
$tmp_line["id"], $tmp_line["title"]);
}
print "< / select > ";
print "< / td > < / tr > ";
$purge_interval = db_fetch_result($result, 0, "purge_interval");
print "< tr > < td > Article purging:< / td > ";
print "< td > ";
print_select_hash("purge_interval", $purge_interval, $purge_intervals,
"class=\"iedit\"");
print "< / td > ";
$auth_login = escape_for_form(db_fetch_result($result, 0, "auth_login"));
print "< tr > < td > Login:< / td > ";
print "< td > < input class = \"iedit\" onkeypress = \"return filterCR ( event ) \ "
name=\"auth_login\" value=\"$auth_login\">< / td > < / tr > ";
$auth_pass = escape_for_form(db_fetch_result($result, 0, "auth_pass"));
print "< tr > < td > Password:< / td > ";
print "< td > < input class = \"iedit\" type = \"password\" name = \"auth_pass\"
onkeypress=\"return filterCR(event)\"
value=\"$auth_pass\">< / td > < / tr > ";
$private = sql_bool_to_bool(db_fetch_result($result, 0, "private"));
if ($private) {
$checked = "checked";
} else {
$checked = "";
}
print "< tr > < td valign = 'top' > Options:< / td > ";
print "< td > < input type = \"checkbox\" name = \"private\" id = \"private\"
$checked>< label for = \"private\" > Hide from \"Other Feeds\"< / label > ";
$rtl_content = sql_bool_to_bool(db_fetch_result($result, 0, "rtl_content"));
if ($rtl_content) {
$checked = "checked";
} else {
$checked = "";
}
print "< br > < input type = \"checkbox\" id = \"rtl_content\" name = \"rtl_content\"
$checked>< label for = \"rtl_content\" > Right-to-left content< / label > ";
$hidden = sql_bool_to_bool(db_fetch_result($result, 0, "hidden"));
if ($hidden) {
$checked = "checked";
} else {
$checked = "";
}
print "< br > < input type = \"checkbox\" id = \"hidden\" name = \"hidden\"
$checked>< label for = \"hidden\" > Hide from my feed list< / label > ";
$include_in_digest = sql_bool_to_bool(db_fetch_result($result, 0, "include_in_digest"));
if ($include_in_digest) {
$checked = "checked";
} else {
$checked = "";
}
print "< br > < input type = \"checkbox\" id = \"include_in_digest\"
name=\"include_in_digest\"
$checked>< label for = \"include_in_digest\" > Include in e-mail digest< / label > ";
print "< / td > < / tr > ";
print "< / table > ";
print "< / form > ";
print "< div align = 'right' >
< input type = \"submit\" class = \"button\"
onclick=\"return feedEditSave()\" value=\"Save\">
< input type = 'submit' class = 'button'
onclick=\"return feedEditCancel()\" value=\"Cancel\">< / div > ";
print "< / div > ";
return;
}
if ($subop == "editSave") {
$feed_title = db_escape_string(trim($_POST["title"]));
$feed_link = db_escape_string(trim($_POST["feed_url"]));
$upd_intl = db_escape_string($_POST["update_interval"]);
$purge_intl = db_escape_string($_POST["purge_interval"]);
$feed_id = db_escape_string($_POST["id"]);
$cat_id = db_escape_string($_POST["cat_id"]);
$auth_login = db_escape_string(trim($_POST["auth_login"]));
$auth_pass = db_escape_string(trim($_POST["auth_pass"]));
$parent_feed = db_escape_string($_POST["parent_feed"]);
$private = checkbox_to_sql_bool(db_escape_string($_POST["private"]));
$rtl_content = checkbox_to_sql_bool(db_escape_string($_POST["rtl_content"]));
$hidden = checkbox_to_sql_bool(db_escape_string($_POST["hidden"]));
$include_in_digest = checkbox_to_sql_bool(
db_escape_string($_POST["include_in_digest"]));
if (get_pref($link, 'ENABLE_FEED_CATS')) {
if ($cat_id & & $cat_id != 0) {
$category_qpart = "cat_id = '$cat_id',";
$category_qpart_nocomma = "cat_id = '$cat_id'";
} else {
$category_qpart = 'cat_id = NULL,';
$category_qpart_nocomma = 'cat_id = NULL';
}
} else {
$category_qpart = "";
$category_qpart_nocomma = "";
}
if ($parent_feed & & $parent_feed != 0) {
$parent_qpart = "parent_feed = '$parent_feed'";
} else {
$parent_qpart = 'parent_feed = NULL';
}
$result = db_query($link, "UPDATE ttrss_feeds SET
$category_qpart $parent_qpart,
title = '$feed_title', feed_url = '$feed_link',
update_interval = '$upd_intl',
purge_interval = '$purge_intl',
auth_login = '$auth_login',
auth_pass = '$auth_pass',
private = $private,
rtl_content = $rtl_content,
hidden = $hidden,
include_in_digest = $include_in_digest
WHERE id = '$feed_id' AND owner_uid = " . $_SESSION["uid"]);
if (get_pref($link, 'ENABLE_FEED_CATS')) {
# update linked feed categories
$result = db_query($link, "UPDATE ttrss_feeds SET
$category_qpart_nocomma WHERE parent_feed = '$feed_id' AND
owner_uid = " . $_SESSION["uid"]);
}
}
if ($subop == "saveCat") {
$cat_title = db_escape_string(trim($_GET["title"]));
$cat_id = db_escape_string($_GET["id"]);
$result = db_query($link, "UPDATE ttrss_feed_categories SET
title = '$cat_title' WHERE id = '$cat_id' AND owner_uid = ".$_SESSION["uid"]);
}
if ($subop == "remove") {
if (!WEB_DEMO_MODE) {
$ids = split(",", db_escape_string($_GET["ids"]));
foreach ($ids as $id) {
if ($id > 0) {
db_query($link, "DELETE FROM ttrss_feeds
WHERE id = '$id' AND owner_uid = " . $_SESSION["uid"]);
$icons_dir = ICONS_DIR;
if (file_exists($icons_dir . "/$id.ico")) {
unlink($icons_dir . "/$id.ico");
}
} else if ($id < -10 ) {
$label_id = -$id - 11;
db_query($link, "DELETE FROM ttrss_labels
WHERE id = '$label_id' AND owner_uid = " . $_SESSION["uid"]);
}
}
}
}
if ($subop == "add") {
if (!WEB_DEMO_MODE) {
$feed_url = db_escape_string(trim($_GET["feed_url"]));
$cat_id = db_escape_string($_GET["cat_id"]);
if (subscribe_to_feed($link, $feed_url, $cat_id)) {
print "Added feed.";
} else {
print "< div class = \"warning\" >
Feed < b > $feed_url< / b > already exists in the database.
< / div > ";
}
}
}
if ($subop == "addCat") {
if (!WEB_DEMO_MODE) {
$feed_cat = db_escape_string(trim($_GET["cat"]));
$result = db_query($link,
"SELECT id FROM ttrss_feed_categories
WHERE title = '$feed_cat' AND owner_uid = ".$_SESSION["uid"]);
if (db_num_rows($result) == 0) {
$result = db_query($link,
"INSERT INTO ttrss_feed_categories (owner_uid,title)
VALUES ('".$_SESSION["uid"]."', '$feed_cat')");
} else {
print "< div class = \"warning\" >
Category < b > $feed_cat< / b > already exists in the database.
< / div > ";
}
}
}
if ($subop == "removeCats") {
if (!WEB_DEMO_MODE) {
$ids = split(",", db_escape_string($_GET["ids"]));
foreach ($ids as $id) {
db_query($link, "BEGIN");
$result = db_query($link,
"SELECT count(id) as num_feeds FROM ttrss_feeds
WHERE cat_id = '$id'");
$num_feeds = db_fetch_result($result, 0, "num_feeds");
if ($num_feeds == 0) {
db_query($link, "DELETE FROM ttrss_feed_categories
WHERE id = '$id' AND owner_uid = " . $_SESSION["uid"]);
} else {
print "< div class = \"warning\" >
Unable to delete non empty feed categories.< / div > ";
}
db_query($link, "COMMIT");
}
}
}
if ($subop == "categorize") {
if (!WEB_DEMO_MODE) {
$ids = split(",", db_escape_string($_GET["ids"]));
$cat_id = db_escape_string($_GET["cat_id"]);
if ($cat_id == 0) {
$cat_id_qpart = 'NULL';
} else {
$cat_id_qpart = "'$cat_id'";
}
db_query($link, "BEGIN");
foreach ($ids as $id) {
db_query($link, "UPDATE ttrss_feeds SET cat_id = $cat_id_qpart
WHERE id = '$id' AND parent_feed IS NULL
AND owner_uid = " . $_SESSION["uid"]);
# update linked feed categories
db_query($link, "UPDATE ttrss_feeds SET
cat_id = $cat_id_qpart WHERE parent_feed = '$id' AND
owner_uid = " . $_SESSION["uid"]);
}
db_query($link, "COMMIT");
}
}
if ($quiet) return;
// print "< h3 > Edit Feeds< / h3 > ";
$result = db_query($link, "SELECT id,title,feed_url,last_error
FROM ttrss_feeds WHERE last_error != '' AND owner_uid = ".$_SESSION["uid"]);
if (db_num_rows($result) > 0) {
print "< div class = \"warning\" > ";
// print"< img class = \"closeButton\"
// onclick=\"javascript:hideParentElement(this);\" src=\"images/close.png\">";
print "< a href = \"javascript:showBlockElement('feedUpdateErrors')\" >
< b > Some feeds have update errors (click for details)< / b > < / a > ";
print "< ul id = \"feedUpdateErrors\" class = \"nomarks\" > ";
while ($line = db_fetch_assoc($result)) {
print "< li > " . $line["title"] . " (" . $line["feed_url"] . "): " .
$line["last_error"];
}
print "< / ul > ";
print "< / div > ";
}
$feed_search = db_escape_string($_GET["search"]);
if (array_key_exists("search", $_GET)) {
$_SESSION["prefs_feed_search"] = $feed_search;
} else {
$feed_search = $_SESSION["prefs_feed_search"];
}
print "< table width = '100%' class = \"prefGenericAddBox\"
cellspacing='0' cellpadding='0'>< tr >
< td >
< input id = \"fadd_link\"
onkeyup=\"toggleSubmitNotEmpty(this, 'fadd_submit_btn')\"
size=\"40\">
< input type = \"submit\" class = \"button\"
disabled=\"true\" id=\"fadd_submit_btn\"
onclick=\"addFeed()\" value=\"Subscribe\">";
if (ENABLE_FEED_BROWSER & & !SINGLE_USER_MODE) {
print " < input type = \"submit\" class = \"button\"
onclick=\"javascript:browseFeeds()\" value=\"Top 25\">";
}
print "< / td > < td align = 'right' >
< input id = \"feed_search\" size = \"20\"
onchange=\"javascript:updateFeedList()\" value=\"$feed_search\">
< input type = \"submit\" class = \"button\"
onclick=\"javascript:updateFeedList()\" value=\"Search\">
< / td >
< / tr > < / table > ";
$feeds_sort = db_escape_string($_GET["sort"]);
if (!$feeds_sort || $feeds_sort == "undefined") {
$feeds_sort = $_SESSION["pref_sort_feeds"];
if (!$feeds_sort) $feeds_sort = "title";
}
$_SESSION["pref_sort_feeds"] = $feeds_sort;
if ($feed_search) {
$search_qpart = "(UPPER(F1.title) LIKE UPPER('%$feed_search%') OR
UPPER(F1.feed_url) LIKE UPPER('%$feed_search%')) AND";
} else {
$search_qpart = "";
}
if (get_pref($link, 'ENABLE_FEED_CATS')) {
$order_by_qpart = "category,$feeds_sort,title";
} else {
$order_by_qpart = "$feeds_sort,title";
}
$result = db_query($link, "SELECT
F1.id,
F1.title,
F1.feed_url,
substring(F1.last_updated,1,16) AS last_updated,
F1.parent_feed,
F1.update_interval,
F1.purge_interval,
F1.cat_id,
F2.title AS parent_title,
C1.title AS category,
F1.hidden,
F1.include_in_digest,
(SELECT SUBSTRING(MAX(updated),1,16) FROM ttrss_user_entries,
ttrss_entries WHERE ref_id = ttrss_entries.id
AND feed_id = F1.id) AS last_article
FROM
ttrss_feeds AS F1
LEFT JOIN ttrss_feeds AS F2
ON (F1.parent_feed = F2.id)
LEFT JOIN ttrss_feed_categories AS C1
ON (F1.cat_id = C1.id)
WHERE
$search_qpart F1.owner_uid = '".$_SESSION["uid"]."'
ORDER by $order_by_qpart");
if (db_num_rows($result) != 0) {
// print "< div id = \"infoBoxShadow\" > < div id = \"infoBox\" > PLACEHOLDER< / div > < / div > ";
print "< p > < table width = \"100%\" cellspacing = \"0\"
class=\"prefFeedList\" id=\"prefFeedList\">";
print "< tr > < td class = \"selectPrompt\" colspan = \"8\" >
Select:
< a href = \"javascript:selectPrefRows('feed', true ) \ " > All< / a > ,
< a href = \"javascript:selectPrefRows('feed', false ) \ " > None< / a >
< /td< / tr > ";
if (!get_pref($link, 'ENABLE_FEED_CATS')) {
print "< tr class = \"title\" >
< td width = '5%' align = 'center' > < / td > ";
if (get_pref($link, 'ENABLE_FEED_ICONS')) {
print "< td width = '3%' > < / td > ";
}
print "
< td width = '40%' > < a href = \"javascript:updateFeedList('title')\" > Title< / a > < / td >
< td width = '35%' > < a href = \"javascript:updateFeedList('feed_url')\" > Feed< / a > < / td >
< td width = '15%' > < a href = \"javascript:updateFeedList('last_article')\" > Last Article< / a > < / td >
< td width = '15%' align = 'right' > < a href = \"javascript:updateFeedList('last_updated')\" > Updated< / a > < / td > ";
}
$lnum = 0;
$cur_cat_id = -1;
while ($line = db_fetch_assoc($result)) {
$feed_id = $line["id"];
$cat_id = $line["cat_id"];
$edit_title = htmlspecialchars(db_unescape_string($line["title"]));
$edit_link = htmlspecialchars(db_unescape_string($line["feed_url"]));
$edit_cat = htmlspecialchars(db_unescape_string($line["category"]));
$hidden = sql_bool_to_bool($line["hidden"]);
if (!$edit_cat) $edit_cat = "Uncategorized";
$last_updated = $line["last_updated"];
if (get_pref($link, 'HEADLINES_SMART_DATE')) {
$last_updated = smart_date_time(strtotime($last_updated));
} else {
$short_date = get_pref($link, 'SHORT_DATE_FORMAT');
$last_updated = date($short_date, strtotime($last_updated));
}
$last_article = $line["last_article"];
if (get_pref($link, 'HEADLINES_SMART_DATE')) {
$last_article = smart_date_time(strtotime($last_article));
} else {
$short_date = get_pref($link, 'SHORT_DATE_FORMAT');
$last_article = date($short_date, strtotime($last_article));
}
if (get_pref($link, 'ENABLE_FEED_CATS') & & $cur_cat_id != $cat_id) {
$lnum = 0;
print "< tr > < td colspan = \"6\" class = \"feedEditCat\" > $edit_cat< / td > < / tr > ";
print "< tr class = \"title\" >
< td width = '5%' > < / td > ";
if (get_pref($link, 'ENABLE_FEED_ICONS')) {
print "< td width = '3%' > < / td > ";
}
print "< td width = '35%' > < a href = \"javascript:updateFeedList('title')\" > Title< / a > < / td >
< td width = '35%' > < a href = \"javascript:updateFeedList('feed_url')\" > Feed< / a > < / td >
< td width = '15%' > < a href = \"javascript:updateFeedList('last_article')\" > Last Article< / a > < / td >
< td width = '15%' align = 'right' > < a href = \"javascript:updateFeedList('last_updated')\" > Updated< / a > < / td > ";
$cur_cat_id = $cat_id;
}
$class = ($lnum % 2) ? "even" : "odd";
$this_row_id = "id=\"FEEDR-$feed_id\"";
print "< tr class = \"$class\" $ this_row_id > ";
$icon_file = ICONS_DIR . "/$feed_id.ico";
if (file_exists($icon_file) & & filesize($icon_file) > 0) {
$feed_icon = "< img class = \"tinyFeedIcon\" src = \"" . ICONS_URL . " / $ feed_id . ico \ " > ";
} else {
$feed_icon = "< img class = \"tinyFeedIcon\" src = \"images/blank_icon.gif\" > ";
}
print "< td class = 'feedSelect' > < input onclick = 'toggleSelectPrefRow(this, \"feed\");'
type=\"checkbox\" id=\"FRCHK-".$line["id"]."\">< / td > ";
if (get_pref($link, 'ENABLE_FEED_ICONS')) {
print "< td class = 'feedIcon' > $feed_icon< / td > ";
}
$edit_title = truncate_string($edit_title, 40);
$edit_link = truncate_string($edit_link, 60);
if ($hidden) {
$edit_title = "< span class = \"insensitive\" > $edit_title (Hidden)< / span > ";
$edit_link = "< span class = \"insensitive\" > $edit_link< / span > ";
$last_updated = "< span class = \"insensitive\" > $last_updated< / span > ";
$last_article = "< span class = \"insensitive\" > $last_article< / span > ";
}
$parent_title = $line["parent_title"];
if ($parent_title) {
$parent_title = "< span class = 'groupPrompt' > (linked to
$parent_title)< / span > ";
}
print "< td > < a href = \"javascript:editFeed($feed_id);\" > " .
"$edit_title $parent_title" . "< / a > < / td > ";
print "< td > < a href = \"javascript:editFeed($feed_id);\" > " .
$edit_link . "< / a > < / td > ";
print "< td > < a href = \"javascript:editFeed($feed_id);\" > " .
"$last_article< / a > < / td > ";
print "< td align = 'right' > < a href = \"javascript:editFeed($feed_id);\" > " .
"$last_updated< / a > < / td > ";
print "< / tr > ";
++$lnum;
}
print "< / table > ";
print "< p > < span id = \"feedOpToolbar\" > ";
if ($subop == "edit") {
print "Edit feed:
< input type = \"submit\" class = \"button\"
onclick=\"javascript:feedEditCancel()\" value=\"Cancel\">
< input type = \"submit\" class = \"button\"
onclick=\"javascript:feedEditSave()\" value=\"Save\">";
} else {
print "
Selection:
< input type = \"submit\" class = \"button\" disabled = \"true\"
onclick=\"javascript:editSelectedFeed()\" value=\"Edit\">
< input type = \"submit\" class = \"button\" disabled = \"true\"
onclick=\"javascript:removeSelectedFeeds()\" value=\"Unsubscribe\">";
if (get_pref($link, 'ENABLE_FEED_CATS')) {
print " | ";
print_feed_cat_select($link, "sfeed_set_fcat", "", "disabled");
print " < input type = \"submit\" class = \"button\" disabled = \"true\"
onclick=\"javascript:categorizeSelectedFeeds()\" value=\"Recategorize\">";
}
print "< / span >
All feeds: < input type = \"submit\"
class=\"button\" onclick=\"gotoExportOpml()\"
value=\"Export OPML\">";
}
} else {
print "< p > No feeds defined.< / p > ";
}
if (get_pref($link, 'ENABLE_FEED_CATS')) {
print "< h3 > Edit Categories< / h3 > ";
print "< div class = \"prefGenericAddBox\" >
< input id = \"fadd_cat\"
onkeyup=\"toggleSubmitNotEmpty(this, 'catadd_submit_btn')\"
size=\"40\">
< input
type=\"submit\" class=\"button\" disabled=\"true\" id=\"catadd_submit_btn\"
onclick=\"javascript:addFeedCat()\" value=\"Create category\">< / div > ";
$result = db_query($link, "SELECT title,id FROM ttrss_feed_categories
WHERE owner_uid = ".$_SESSION["uid"]."
ORDER BY title");
if (db_num_rows($result) != 0) {
print "< form id = \"feed_cat_edit_form\" > ";
print "< p > < table width = \"100%\" class = \"prefFeedCatList\"
cellspacing=\"0\" id=\"prefFeedCatList\">";
print "< tr > < td class = \"selectPrompt\" colspan = \"8\" >
Select:
< a href = \"javascript:selectPrefRows('fcat', true ) \ " > All< / a > ,
< a href = \"javascript:selectPrefRows('fcat', false ) \ " > None< / a >
< /td< / tr > ";
print "< tr class = \"title\" >
< td width = \"5%\" > < / td > < td width = \"80%\" > Title< / td >
< / tr > ";
$lnum = 0;
while ($line = db_fetch_assoc($result)) {
$class = ($lnum % 2) ? "even" : "odd";
$cat_id = $line["id"];
$edit_cat_id = $_GET["id"];
if ($subop == "editCat" & & $cat_id != $edit_cat_id) {
$class .= "Grayed";
$this_row_id = "";
} else {
$this_row_id = "id=\"FCATR-$cat_id\"";
}
print "< tr class = \"$class\" $ this_row_id > ";
$edit_title = htmlspecialchars(db_unescape_string($line["title"]));
if (!$edit_cat_id || $subop != "editCat") {
print "< td align = 'center' > < input onclick = 'toggleSelectPrefRow(this, \"fcat\");'
type=\"checkbox\" id=\"FCCHK-".$line["id"]."\">< / td > ";
print "< td > < a href = \"javascript:editFeedCat($cat_id);\" > " .
$edit_title . "< / a > < / td > ";
} else if ($cat_id != $edit_cat_id) {
print "< td align = 'center' > < input disabled = \"true\" type = \"checkbox\"
id=\"FRCHK-".$line["id"]."\">< / td > ";
print "< td > $edit_title< / td > ";
} else {
print "< td align = 'center' > < input disabled = \"true\" type = \"checkbox\" checked > ";
print "< input type = \"hidden\" name = \"id\" value = \"$cat_id\" > ";
print "< input type = \"hidden\" name = \"op\" value = \"pref-feeds\" > ";
print "< input type = \"hidden\" name = \"subop\" value = \"saveCat\" > ";
print "< / td > ";
print "< td > < input onkeypress = \"return filterCR ( event ) \ "
name=\"title\" class=\"iedit\" value=\"$edit_title\">< / td > ";
}
print "< / tr > ";
++$lnum;
}
print "< / table > ";
print "< / form > ";
print "< p id = \"catOpToolbar\" > ";
if ($subop == "editCat") {
print "Edit category:
< input type = \"submit\" class = \"button\"
onclick=\"return feedCatEditSave()\" value=\"Save\">
< input type = \"submit\" class = \"button\"
onclick=\"return feedCatEditCancel()\" value=\"Cancel\">";
} else {
print "
Selection:
< input type = \"submit\" class = \"button\" disabled = \"true\"
onclick=\"return editSelectedFeedCat()\" value=\"Edit\">
< input type = \"submit\" class = \"button\" disabled = \"true\"
onclick=\"return removeSelectedFeedCats()\" value=\"Remove\">";
}
} else {
print "< p > No feed categories defined.< / p > ";
}
}
print "< h3 > Import OPML< / h3 >
< form enctype = \"multipart/form-data\" method = \"POST\" action = \"opml.php\" >
File: < input id = \"opml_file\" name = \"opml_file\" type = \"file\" >
< input class = \"button\" name = \"op\" onclick = \"return validateOpmlImport ( ) ; \ "
type=\"submit\" value=\"Import\">
< / form > ";
}
if ($op == "pref-filters") {
$subop = $_GET["subop"];
$quiet = $_GET["quiet"];
if ($subop == "edit") {
$filter_id = db_escape_string($_GET["id"]);
$result = db_query($link,
"SELECT * FROM ttrss_filters WHERE id = '$filter_id' AND owner_uid = " . $_SESSION["uid"]);
$reg_exp = htmlspecialchars(db_unescape_string(db_fetch_result($result, 0, "reg_exp")));
$filter_type = db_fetch_result($result, 0, "filter_type");
$feed_id = db_fetch_result($result, 0, "feed_id");
$action_id = db_fetch_result($result, 0, "action_id");
$enabled = sql_bool_to_bool(db_fetch_result($result, 0, "enabled"));
print "< div id = \"infoBoxTitle\" > Filter editor< / div > ";
print "< div class = \"infoBoxContents\" > ";
print "< form id = \"filter_edit_form\" > ";
print "< input type = \"hidden\" name = \"op\" value = \"pref-filters\" > ";
print "< input type = \"hidden\" name = \"id\" value = \"$filter_id\" > ";
print "< input type = \"hidden\" name = \"subop\" value = \"editSave\" > ";
// print "< div class = \"notice\" > < b > Note:< / b > filter will only apply to new articles.< / div > ";
$result = db_query($link, "SELECT id,description
FROM ttrss_filter_types ORDER BY description");
$filter_types = array();
while ($line = db_fetch_assoc($result)) {
//array_push($filter_types, $line["description"]);
$filter_types[$line["id"]] = $line["description"];
}
print "< table width = '100%' > ";
print "< tr > < td > Match:< / td >
< td > < input onkeypress = \"return filterCR ( event ) \ "
onkeyup=\"toggleSubmitNotEmpty(this, 'infobox_submit')\"
name=\"reg_exp\" class=\"iedit\" value=\"$reg_exp\">";
print "< / td > < td > ";
print_select_hash("filter_type", $filter_type, $filter_types, "class=\"iedit\"");
print "< / td > < / tr > ";
print "< tr > < td > Feed:< / td > < td colspan = '2' > ";
print_feed_select($link, "feed_id", $feed_id);
print "< / td > < / tr > ";
print "< tr > < td > Action:< / td > ";
print "< td colspan = '2' > < select name = \"action_id\" > ";
$result = db_query($link, "SELECT id,description FROM ttrss_filter_actions
ORDER BY name");
while ($line = db_fetch_assoc($result)) {
$is_sel = ($line["id"] == $action_id) ? "selected" : "";
printf("< option value = '%d' $ is_sel > %s< / option > ", $line["id"], $line["description"]);
}
print "< / select > ";
print "< / td > < / tr > ";
if ($enabled) {
$checked = "checked";
} else {
$checked = "";
}
print "< tr > < td > Options:< / td > < td >
< input type = \"checkbox\" name = \"enabled\" id = \"enabled\" $ checked >
< label for = \"enabled\" > Enabled< / label > ";
print "< / td > < / tr > < / table > ";
print "< / form > ";
print "< div align = 'right' > ";
print "< input type = \"submit\"
id=\"infobox_submit\"
class=\"button\" onclick=\"return filterEditSave()\"
value=\"Save\"> ";
print "< input class = \"button\"
type=\"submit\" onclick=\"return filterEditCancel()\"
value=\"Cancel\">";
print "< / div > ";
return;
}
if ($subop == "editSave") {
$reg_exp = db_escape_string(trim($_GET["reg_exp"]));
$filter_type = db_escape_string(trim($_GET["filter_type"]));
$filter_id = db_escape_string($_GET["id"]);
$feed_id = db_escape_string($_GET["feed_id"]);
$action_id = db_escape_string($_GET["action_id"]);
$enabled = checkbox_to_sql_bool(db_escape_string($_GET["enabled"]));
if (!$feed_id) {
$feed_id = 'NULL';
} else {
$feed_id = sprintf("'%s'", db_escape_string($feed_id));
}
$result = db_query($link, "UPDATE ttrss_filters SET
reg_exp = '$reg_exp',
feed_id = $feed_id,
action_id = '$action_id',
filter_type = '$filter_type',
enabled = $enabled
WHERE id = '$filter_id' AND owner_uid = " . $_SESSION["uid"]);
}
if ($subop == "remove") {
if (!WEB_DEMO_MODE) {
$ids = split(",", db_escape_string($_GET["ids"]));
foreach ($ids as $id) {
db_query($link, "DELETE FROM ttrss_filters WHERE id = '$id' AND owner_uid = ". $_SESSION["uid"]);
}
}
}
if ($subop == "add") {
if (!WEB_DEMO_MODE) {
$regexp = db_escape_string(trim($_GET["reg_exp"]));
$filter_type = db_escape_string(trim($_GET["filter_type"]));
$feed_id = db_escape_string($_GET["feed_id"]);
$action_id = db_escape_string($_GET["action_id"]);
if (!$feed_id) {
$feed_id = 'NULL';
} else {
$feed_id = sprintf("'%s'", db_escape_string($feed_id));
}
$result = db_query($link,
"INSERT INTO ttrss_filters (reg_exp,filter_type,owner_uid,feed_id,
action_id)
VALUES
('$regexp', '$filter_type','".$_SESSION["uid"]."',
$feed_id, '$action_id')");
}
}
if ($quiet) return;
$sort = db_escape_string($_GET["sort"]);
if (!$sort || $sort == "undefined") {
$sort = "reg_exp";
}
// print "< div id = \"infoBoxShadow\" > < div id = \"infoBox\" > PLACEHOLDER< / div > < / div > ";
$result = db_query($link, "SELECT id,description
FROM ttrss_filter_types ORDER BY description");
$filter_types = array();
while ($line = db_fetch_assoc($result)) {
//array_push($filter_types, $line["description"]);
$filter_types[$line["id"]] = $line["description"];
}
print "< input type = \"submit\"
class=\"button\"
onclick=\"return displayDlg('quickAddFilter', false)\"
id=\"create_filter_btn\"
value=\"Create filter\">";
$result = db_query($link, "SELECT
ttrss_filters.id AS id,reg_exp,
ttrss_filter_types.name AS filter_type_name,
ttrss_filter_types.description AS filter_type_descr,
enabled,
feed_id,
ttrss_filter_actions.description AS action_description,
ttrss_feeds.title AS feed_title
FROM
ttrss_filter_types,ttrss_filter_actions,ttrss_filters LEFT JOIN
ttrss_feeds ON (ttrss_filters.feed_id = ttrss_feeds.id)
WHERE
filter_type = ttrss_filter_types.id AND
ttrss_filter_actions.id = action_id AND
ttrss_filters.owner_uid = ".$_SESSION["uid"]."
ORDER by $sort");
if (db_num_rows($result) != 0) {
print "< form id = \"filter_edit_form\" > ";
print "< p > < table width = \"100%\" cellspacing = \"0\" class = \"prefFilterList\"
id=\"prefFilterList\">";
print "< tr > < td class = \"selectPrompt\" colspan = \"8\" >
Select:
< a href = \"javascript:selectPrefRows('filter', true ) \ " > All< / a > ,
< a href = \"javascript:selectPrefRows('filter', false ) \ " > None< / a >
< /td< / tr > ";
print "< tr class = \"title\" >
< td align = 'center' width = \"5%\" > < / td >
< td width = \"20%\" > < a href = \"javascript:updateFilterList('reg_exp')\" > Filter expression< / a > < / td >
< td width = \"20%\" > < a href = \"javascript:updateFilterList('feed_title')\" > Feed< / a > < / td >
< td width = \"15%\" > < a href = \"javascript:updateFilterList('filter_type')\" > Match< / a > < / td >
< td width = \"15%\" > < a href = \"javascript:updateFilterList('action_description')\" > Action< / a > < / td > ";
$lnum = 0;
while ($line = db_fetch_assoc($result)) {
$class = ($lnum % 2) ? "even" : "odd";
$filter_id = $line["id"];
$edit_filter_id = $_GET["id"];
$enabled = sql_bool_to_bool($line["enabled"]);
if ($subop == "edit" & & $filter_id != $edit_filter_id) {
$class .= "Grayed";
$this_row_id = "";
} else {
$this_row_id = "id=\"FILRR-$filter_id\"";
}
print "< tr class = \"$class\" $ this_row_id > ";
$line["reg_exp"] = htmlspecialchars(db_unescape_string($line["reg_exp"]));
if (!$line["feed_title"]) $line["feed_title"] = "All feeds";
$line["feed_title"] = htmlspecialchars(db_unescape_string($line["feed_title"]));
print "< td align = 'center' > < input onclick = 'toggleSelectPrefRow(this, \"filter\");'
type=\"checkbox\" id=\"FICHK-".$line["id"]."\">< / td > ";
if (!$enabled) {
$line["reg_exp"] = "< span class = \"insensitive\" > " .
$line["reg_exp"] . " (Disabled)< / span > ";
$line["feed_title"] = "< span class = \"insensitive\" > " .
$line["feed_title"] . "< / span > ";
$line["filter_type_descr"] = "< span class = \"insensitive\" > " .
$line["filter_type_descr"] . "< / span > ";
$line["action_description"] = "< span class = \"insensitive\" > " .
$line["action_description"] . "< / span > ";
}
print "< td > < a href = \"javascript:editFilter($filter_id);\" > " .
$line["reg_exp"] . "< / td > ";
print "< td > < a href = \"javascript:editFilter($filter_id);\" > " .
$line["feed_title"] . "< / td > ";
print "< td > < a href = \"javascript:editFilter($filter_id);\" > " .
$line["filter_type_descr"] . "< / td > ";
print "< td > < a href = \"javascript:editFilter($filter_id);\" > " .
$line["action_description"] . "< / td > ";
print "< / tr > ";
++$lnum;
}
if ($lnum == 0) {
print "< tr > < td colspan = \"4\" align = \"center\" > No filters defined.< / td > < / tr > ";
}
print "< / table > ";
print "< / form > ";
print "< p id = \"filterOpToolbar\" > ";
print "
Selection:
< input type = \"submit\" class = \"button\" disabled = \"true\"
onclick=\"return editSelectedFilter()\" value=\"Edit\">
< input type = \"submit\" class = \"button\" disabled = \"true\"
onclick=\"return removeSelectedFilters()\" value=\"Remove\">";
print "< / p > ";
} else {
print "< p > No filters defined.< / p > ";
}
}
// We need to accept raw SQL data in label queries, so not everything is escaped
// here, this is by design. If you don't like the whole idea, disable labels
// altogether with GLOBAL_ENABLE_LABELS = false
if ($op == "pref-labels") {
if (!GLOBAL_ENABLE_LABELS) {
print "< p > Sorry, labels have been administratively disabled for this installation. Please contact instance owner or edit configuration file to enable this functionality.< / p > ";
return;
}
$subop = $_GET["subop"];
if ($subop == "edit") {
$label_id = db_escape_string($_GET["id"]);
$result = db_query($link, "SELECT sql_exp,description FROM ttrss_labels WHERE
owner_uid = ".$_SESSION["uid"]." AND id = '$label_id' ORDER by description");
$line = db_fetch_assoc($result);
$sql_exp = htmlspecialchars(db_unescape_string($line["sql_exp"]));
$description = htmlspecialchars(db_unescape_string($line["description"]));
print "< div id = \"infoBoxTitle\" > Label editor< / div > ";
print "< div class = \"infoBoxContents\" > ";
print "< form id = \"label_edit_form\" > ";
print "< input type = \"hidden\" name = \"op\" value = \"pref-labels\" > ";
print "< input type = \"hidden\" name = \"id\" value = \"$label_id\" > ";
print "< input type = \"hidden\" name = \"subop\" value = \"editSave\" > ";
print "< table width = '100%' > ";
print "< tr > < td > Caption:< / td >
< td > < input onkeypress = \"return filterCR ( event ) \ "
onkeyup=\"toggleSubmitNotEmpty(this, 'infobox_submit')\"
name=\"description\" class=\"iedit\" value=\"$description\">";
print "< / td > < / tr > ";
print "< tr > < td colspan = \"2\" >
< p > SQL Expression:< / p > ";
print "< textarea onkeyup = \"toggleSubmitNotEmpty(this, ' infobox_submit ' ) \ "
rows=\"4\" name=\"sql_exp\" class=\"iedit\">$sql_exp< / textarea > ";
print "< / td > < / tr > < / table > ";
print "< / form > ";
print "< div style = \"display : none \ " id = \"label_test_result\" > < / div > ";
print "< div align = 'right' > ";
$is_disabled = (strpos($_SERVER['HTTP_USER_AGENT'], 'Opera') !== FALSE) ? "disabled" : "";
print "< input $ is_disabled type = \"submit\" onclick = \"return labelTest ( ) \ " value = \"Test\" >
";
print "< input type = \"submit\"
id=\"infobox_submit\"
class=\"button\" onclick=\"return labelEditSave()\"
value=\"Save\"> ";
print "< input class = \"button\"
type=\"submit\" onclick=\"return labelEditCancel()\"
value=\"Cancel\">";
print "< / div > ";
return;
}
if ($subop == "test") {
$expr = db_unescape_string(trim($_GET["expr"]));
$descr = db_unescape_string(trim($_GET["descr"]));
print "< div > ";
error_reporting(0);
$result = db_query($link,
"SELECT count(ttrss_entries.id) AS num_matches
FROM ttrss_entries,ttrss_user_entries,ttrss_feeds
WHERE ($expr) AND
ttrss_user_entries.ref_id = ttrss_entries.id AND
ttrss_user_entries.feed_id = ttrss_feeds.id AND
ttrss_user_entries.owner_uid = " . $_SESSION["uid"], false);
error_reporting (DEFAULT_ERROR_LEVEL);
if (!$result) {
print "< p > " . db_last_error($link) . "< / p > ";
print "< / div > ";
return;
}
$num_matches = db_fetch_result($result, 0, "num_matches");;
if ($num_matches > 0) {
if ($num_matches > 10) {
$showing_msg = ", showing first 10";
}
print "< p > Query returned < b > $num_matches< / b > matches$showing_msg:< / p > ";
$result = db_query($link,
"SELECT ttrss_entries.title,
(SELECT title FROM ttrss_feeds WHERE id = feed_id) AS feed_title
FROM ttrss_entries,ttrss_user_entries,ttrss_feeds
WHERE ($expr) AND
ttrss_user_entries.ref_id = ttrss_entries.id
AND ttrss_user_entries.feed_id = ttrss_feeds.id
AND ttrss_user_entries.owner_uid = " . $_SESSION["uid"] . "
ORDER BY date_entered DESC LIMIT 10", false);
print "< ul class = \"labelTestResults\" > ";
$row_class = "even";
while ($line = db_fetch_assoc($result)) {
$row_class = toggleEvenOdd($row_class);
print "< li class = \"$row_class\" > ".$line["title"].
" < span class = \"insensitive\" > (".$line["feed_title"].")< / span > < / li > ";
}
print "< / ul > ";
} else {
print "< p > Query didn't return any matches.< / p > ";
}
print "< / div > ";
return;
}
if ($subop == "editSave") {
$sql_exp = trim($_GET["sql_exp"]);
$descr = db_escape_string(trim($_GET["description"]));
$label_id = db_escape_string($_GET["id"]);
$result = db_query($link, "UPDATE ttrss_labels SET
sql_exp = '$sql_exp',
description = '$descr'
WHERE id = '$label_id'");
}
if ($subop == "remove") {
if (!WEB_DEMO_MODE) {
$ids = split(",", db_escape_string($_GET["ids"]));
foreach ($ids as $id) {
db_query($link, "DELETE FROM ttrss_labels WHERE id = '$id'");
}
}
}
if ($subop == "add") {
if (!WEB_DEMO_MODE) {
// no escaping is done here on purpose
$sql_exp = trim($_GET["sql_exp"]);
$description = db_escape_string($_GET["description"]);
$result = db_query($link,
"INSERT INTO ttrss_labels (sql_exp,description,owner_uid)
VALUES ('$sql_exp', '$description', '".$_SESSION["uid"]."')");
}
}
$sort = db_escape_string($_GET["sort"]);
if (!$sort || $sort == "undefined") {
$sort = "description";
}
print "< div class = \"prefGenericAddBox\" > ";
print"< input type = \"submit\" class = \"button\"
id=\"label_create_btn\"
onclick=\"return displayDlg('quickAddLabel', false)\"
value=\"Create label\">< / div > ";
$result = db_query($link, "SELECT
id,sql_exp,description
FROM
ttrss_labels
WHERE
owner_uid = ".$_SESSION["uid"]."
ORDER BY $sort");
// print "< div id = \"infoBoxShadow\" > < div id = \"infoBox\" > PLACEHOLDER< / div > < / div > ";
if (db_num_rows($result) != 0) {
print "< form id = \"label_edit_form\" > ";
print "< p > < table width = \"100%\" cellspacing = \"0\"
class=\"prefLabelList\" id=\"prefLabelList\">";
print "< tr > < td class = \"selectPrompt\" colspan = \"8\" >
Select:
< a href = \"javascript:selectPrefRows('label', true ) \ " > All< / a > ,
< a href = \"javascript:selectPrefRows('label', false ) \ " > None< / a >
< /td< / tr > ";
print "< tr class = \"title\" >
< td width = \"5%\" > < / td >
< td width = \"30%\" > < a href = \"javascript:updateLabelList('description')\" > Caption< / a > < / td >
< td width = \"50%\" > < a href = \"javascript:updateLabelList('sql_exp')\" > SQL Expression< / a >
< a class = \"helpLink\" href = \"javascript:displayHelpInfobox(1)\" > (?)< / a >
< / td >
< / tr > ";
$lnum = 0;
while ($line = db_fetch_assoc($result)) {
$class = ($lnum % 2) ? "even" : "odd";
$label_id = $line["id"];
$edit_label_id = $_GET["id"];
if ($subop == "edit" & & $label_id != $edit_label_id) {
$class .= "Grayed";
$this_row_id = "";
} else {
$this_row_id = "id=\"LILRR-$label_id\"";
}
print "< tr class = \"$class\" $ this_row_id > ";
$line["sql_exp"] = htmlspecialchars(db_unescape_string($line["sql_exp"]));
$line["description"] = htmlspecialchars(
db_unescape_string($line["description"]));
if (!$line["description"]) $line["description"] = "[No caption]";
print "< td align = 'center' > < input onclick = 'toggleSelectPrefRow(this, \"label\");'
type=\"checkbox\" id=\"LICHK-".$line["id"]."\">< / td > ";
print "< td > < a href = \"javascript:editLabel($label_id);\" > " .
$line["description"] . "< / td > ";
print "< td > < a href = \"javascript:editLabel($label_id);\" > " .
$line["sql_exp"] . "< / td > ";
print "< / tr > ";
++$lnum;
}
if ($lnum == 0) {
print "< tr > < td colspan = \"4\" align = \"center\" > No labels defined.< / td > < / tr > ";
}
print "< / table > ";
print "< / form > ";
print "< p id = \"labelOpToolbar\" > ";
print "
Selection:
< input type = \"submit\" class = \"button\" disabled = \"true\"
onclick=\"javascript:editSelectedLabel()\" value=\"Edit\">
< input type = \"submit\" class = \"button\" disabled = \"true\"
onclick=\"javascript:removeSelectedLabels()\" value=\"Remove\">";
} else {
print "< p > No labels defined.< / p > ";
}
}
if ($op == "error") {
print "< div width = \"100%\" align = 'center' > ";
$msg = $_GET["msg"];
print $msg;
print "< / div > ";
}
if ($op == "help") {
if (!$_GET["noheaders"]) {
print "< html > < head >
< title > Tiny Tiny RSS : Help< / title >
< link rel = \"stylesheet\" href = \"tt-rss.css\" type = \"text/css\" >
< script type = \"text/javascript\" src = \"prototype.js\" > < / script >
< script type = \"text/javascript\" src = \"functions.js?$script_dt_add\" > < / script >
< meta http-equiv = \"Content-Type\" content = \"text/html; charset = utf-8\" >
< / head > < body > ";
}
$tid = sprintf("%d", $_GET["tid"]);
print "< div id = \"infoBoxTitle\" > Help< / div > ";
print "< div class = 'infoBoxContents' > ";
if (file_exists("help/$tid.php")) {
include("help/$tid.php");
} else {
print "< p > Help topic not found.< / p > ";
}
print "< / div > ";
print "< div align = 'center' >
< input type = 'submit' class = 'button'
onclick=\"closeInfoBox()\" value=\"Close this window\">< / div > ";
if (!$_GET["noheaders"]) {
print "< / body > < / html > ";
}
}
if ($op == "dlg") {
$id = $_GET["id"];
$param = $_GET["param"];
if ($id == "quickAddFeed") {
print "< div id = \"infoBoxTitle\" > Subscribe to feed< / div > ";
print "< div class = \"infoBoxContents\" > ";
print "< form id = 'feed_add_form' > ";
print "< input type = \"hidden\" name = \"op\" value = \"pref-feeds\" > ";
print "< input type = \"hidden\" name = \"quiet\" value = \"1\" > ";
print "< input type = \"hidden\" name = \"subop\" value = \"add\" > ";
print "< table width = '100%' >
< tr > < td > Feed URL:< / td > < td >
< input class = \"iedit\" onblur = \"javascript:enableHotkeys()\"
onkeypress=\"return filterCR(event)\"
onkeyup=\"toggleSubmitNotEmpty(this, 'fadd_submit_btn')\"
onfocus=\"javascript:disableHotkeys()\" name=\"feed_url\">< / td > < / tr > ";
if (get_pref($link, 'ENABLE_FEED_CATS')) {
print "< tr > < td > Category:< / td > < td > ";
print_feed_cat_select($link, "cat_id");
print "< / td > < / tr > ";
}
print "< / table > ";
print "< / form > ";
print "< div align = 'right' >
< input class = \"button\"
id=\"fadd_submit_btn\" disabled=\"true\"
type=\"submit\" onclick=\"return qafAdd()\" value=\"Subscribe\">
< input class = \"button\"
type=\"submit\" onclick=\"return closeInfoBox()\"
value=\"Cancel\">< / div > ";
}
if ($id == "search") {
print "< div id = \"infoBoxTitle\" > Search< / div > ";
print "< div class = \"infoBoxContents\" > ";
print "< form id = 'search_form' > ";
#$active_feed_id = db_escape_string($_GET["param"]);
$params = split(":", db_escape_string($_GET["param"]));
$active_feed_id = sprintf("%d", $params[0]);
$is_cat = $params[1] == "true";
print "< table width = '100%' > < tr > < td > Search:< / td > < td > ";
print "< input name = \"query\" class = \"iedit\"
onkeypress=\"return filterCR(event)\"
onkeyup=\"toggleSubmitNotEmpty(this, 'search_submit_btn')\"
value=\"\">
< / td > < / tr > ";
print "< tr > < td > Where:< / td > < td > ";
print "< select name = \"search_mode\" >
< option value = \"all_feeds\" > All feeds< / option > ";
$feed_title = getFeedTitle($link, $active_feed_id);
if (!$is_cat) {
$feed_cat_title = getFeedCatTitle($link, $active_feed_id);
} else {
$feed_cat_title = getCategoryTitle($link, $active_feed_id);
}
if ($active_feed_id & & !$is_cat) {
print "< option selected value = \"this_feed\" > This feed ($feed_title)< / option > ";
} else {
print "< option disabled > This feed< / option > ";
}
if ($is_cat) {
$cat_preselected = "selected";
}
if (get_pref($link, 'ENABLE_FEED_CATS') & & ($active_feed_id > 0 || $is_cat)) {
print "< option $ cat_preselected value = \"this_cat\" > This category ($feed_cat_title)< / option > ";
} else {
print "< option disabled > This category< / option > ";
}
print "< / select > < / td > < / tr > ";
print "< tr > < td > Match on:< / td > < td > ";
$search_fields = array(
"title" => "Title",
"content" => "Content",
"both" => "Title or content");
print_select_hash("match_on", 3, $search_fields);
print "< / td > < / tr > < / table > ";
print "< / form > ";
print "< div align = \"right\" >
< input type = \"submit\"
class=\"button\" onclick=\"javascript:search()\"
id=\"search_submit_btn\" disabled=\"true\"
value=\"Search\">
< input class = \"button\"
type=\"submit\" onclick=\"javascript:searchCancel()\"
value=\"Cancel\">< / div > ";
print "< / div > ";
}
if ($id == "quickAddLabel") {
print "< div id = \"infoBoxTitle\" > Create label< / div > ";
print "< div class = \"infoBoxContents\" > ";
print "< form id = \"label_edit_form\" > ";
print "< input type = \"hidden\" name = \"op\" value = \"pref-labels\" > ";
print "< input type = \"hidden\" name = \"subop\" value = \"add\" > ";
print "< table width = '100%' > ";
print "< tr > < td > Caption:< / td >
< td > < input onkeypress = \"return filterCR ( event ) \ "
onkeyup=\"toggleSubmitNotEmpty(this, 'infobox_submit')\"
name=\"description\" class=\"iedit\">";
print "< / td > < / tr > ";
print "< tr > < td colspan = \"2\" >
< p > SQL Expression:< / p > ";
print "< textarea onkeyup = \"toggleSubmitNotEmpty(this, ' infobox_submit ' ) \ "
rows=\"4\" name=\"sql_exp\" class=\"iedit\">< / textarea > ";
print "< / td > < / tr > < / table > ";
print "< / form > ";
print "< div style = \"display : none \ " id = \"label_test_result\" > < / div > ";
print "< div align = 'right' > ";
print "< input type = \"submit\" onclick = \"labelTest()\" value = \"Test\" >
";
print "< input type = \"submit\"
id=\"infobox_submit\"
disabled=\"true\"
class=\"button\" onclick=\"return addLabel()\"
value=\"Create\"> ";
print "< input class = \"button\"
type=\"submit\" onclick=\"return labelEditCancel()\"
value=\"Cancel\">";
}
if ($id == "quickAddFilter") {
$active_feed_id = db_escape_string($_GET["param"]);
print "< div id = \"infoBoxTitle\" > Create filter< / div > ";
print "< div class = \"infoBoxContents\" > ";
print "< form id = \"filter_add_form\" > ";
print "< input type = \"hidden\" name = \"op\" value = \"pref-filters\" > ";
print "< input type = \"hidden\" name = \"quiet\" value = \"1\" > ";
print "< input type = \"hidden\" name = \"subop\" value = \"add\" > ";
// print "< div class = \"notice\" > < b > Note:< / b > filter will only apply to new articles.< / div > ";
$result = db_query($link, "SELECT id,description
FROM ttrss_filter_types ORDER BY description");
$filter_types = array();
while ($line = db_fetch_assoc($result)) {
//array_push($filter_types, $line["description"]);
$filter_types[$line["id"]] = $line["description"];
}
print "< table width = '100%' > ";
print "< tr > < td > Match:< / td >
< td > < input onkeypress = \"return filterCR ( event ) \ "
onkeyup=\"toggleSubmitNotEmpty(this, 'infobox_submit')\"
name=\"reg_exp\" class=\"iedit\">";
print "< / td > < td > ";
print_select_hash("filter_type", 1, $filter_types, "class=\"iedit\"");
print "< / td > < / tr > ";
print "< tr > < td > Feed:< / td > < td colspan = '2' > ";
print_feed_select($link, "feed_id", $active_feed_id);
print "< / td > < / tr > ";
print "< tr > < td > Action:< / td > ";
print "< td colspan = '2' > < select name = \"action_id\" > ";
$result = db_query($link, "SELECT id,description FROM ttrss_filter_actions
ORDER BY name");
while ($line = db_fetch_assoc($result)) {
printf("< option value = '%d' > %s< / option > ", $line["id"], $line["description"]);
}
print "< / select > ";
print "< / td > < / tr > < / table > ";
print "< / form > ";
print "< div align = 'right' > ";
print "< input type = \"submit\"
id=\"infobox_submit\"
class=\"button\" onclick=\"return qaddFilter()\"
disabled=\"true\" value=\"Create\"> ";
print "< input class = \"button\"
type=\"submit\" onclick=\"return closeInfoBox()\"
value=\"Cancel\">";
print "< / div > ";
// print "< / td > < / tr > < / table > ";
}
print "< / div > ";
}
// update feeds of all users, may be used anonymously
if ($op == "globalUpdateFeeds") {
$result = db_query($link, "SELECT id FROM ttrss_users");
while ($line = db_fetch_assoc($result)) {
$user_id = $line["id"];
// print "<!-- updating feeds of uid $user_id --> ";
update_all_feeds($link, false, $user_id);
}
print "< rpc-reply >
< message msg = \"All feeds updated \ " / >
< / rpc-reply > ";
}
if ($op == "pref-prefs") {
$subop = $_REQUEST["subop"];
if ($subop == "Save configuration") {
if (WEB_DEMO_MODE) {
header("Location: prefs.php");
return;
}
$_SESSION["prefs_op_result"] = "save-config";
$_SESSION["prefs_cache"] = false;
foreach (array_keys($_POST) as $pref_name) {
$pref_name = db_escape_string($pref_name);
$value = db_escape_string($_POST[$pref_name]);
$result = db_query($link, "SELECT type_name
FROM ttrss_prefs,ttrss_prefs_types
WHERE pref_name = '$pref_name' AND type_id = ttrss_prefs_types.id");
if (db_num_rows($result) > 0) {
$type_name = db_fetch_result($result, 0, "type_name");
// print "$pref_name : $type_name : $value< br > ";
if ($type_name == "bool") {
if ($value == "1") {
$value = "true";
} else {
$value = "false";
}
} else if ($type_name == "integer") {
$value = sprintf("%d", $value);
}
// print "$pref_name : $type_name : $value< br > ";
db_query($link, "UPDATE ttrss_user_prefs SET value = '$value'
WHERE pref_name = '$pref_name' AND owner_uid = ".$_SESSION["uid"]);
}
header("Location: prefs.php");
}
} else if ($subop == "getHelp") {
$pref_name = db_escape_string($_GET["pn"]);
$result = db_query($link, "SELECT help_text FROM ttrss_prefs
WHERE pref_name = '$pref_name'");
if (db_num_rows($result) > 0) {
$help_text = db_fetch_result($result, 0, "help_text");
print $help_text;
} else {
print "Unknown option: $pref_name";
}
} else if ($subop == "Change e-mail") {
if (WEB_DEMO_MODE) {
header("Location: prefs.php");
return;
}
$email = db_escape_string($_GET["email"]);
$active_uid = $_SESSION["uid"];
if ($email) {
db_query($link, "UPDATE ttrss_users SET email = '$email'
WHERE id = '$active_uid'");
}
header("Location: prefs.php");
} else if ($subop == "Change password") {
if (WEB_DEMO_MODE) {
header("Location: prefs.php");
return;
}
$old_pw = $_POST["OLD_PASSWORD"];
$new_pw = $_POST["OLD_PASSWORD"];
$old_pw_hash = 'SHA1:' . sha1($_POST["OLD_PASSWORD"]);
$new_pw_hash = 'SHA1:' . sha1($_POST["NEW_PASSWORD"]);
$active_uid = $_SESSION["uid"];
if ($old_pw & & $new_pw) {
$login = db_escape_string($_SERVER['PHP_AUTH_USER']);
$result = db_query($link, "SELECT id FROM ttrss_users WHERE
id = '$active_uid' AND (pwd_hash = '$old_pw' OR
pwd_hash = '$old_pw_hash')");
if (db_num_rows($result) == 1) {
db_query($link, "UPDATE ttrss_users SET pwd_hash = '$new_pw_hash'
WHERE id = '$active_uid'");
$_SESSION["pwd_change_result"] = "ok";
} else {
$_SESSION["pwd_change_result"] = "failed";
}
}
header("Location: prefs.php");
} else if ($subop == "Reset to defaults") {
if (WEB_DEMO_MODE) {
header("Location: prefs.php");
return;
}
$_SESSION["prefs_op_result"] = "reset-to-defaults";
if (DB_TYPE == "pgsql") {
db_query($link,"UPDATE ttrss_user_prefs
SET value = ttrss_prefs.def_value
WHERE owner_uid = '".$_SESSION["uid"]."' AND
ttrss_prefs.pref_name = ttrss_user_prefs.pref_name");
} else {
db_query($link, "DELETE FROM ttrss_user_prefs
WHERE owner_uid = ".$_SESSION["uid"]);
initialize_user_prefs($link, $_SESSION["uid"]);
}
header("Location: prefs.php");
} else if ($subop == "Change theme") {
$theme = db_escape_string($_POST["theme"]);
if ($theme == "Default") {
$theme_qpart = 'NULL';
} else {
$theme_qpart = "'$theme'";
}
$result = db_query($link, "SELECT id,theme_path FROM ttrss_themes
WHERE theme_name = '$theme'");
if (db_num_rows($result) == 1) {
$theme_id = db_fetch_result($result, 0, "id");
$theme_path = db_fetch_result($result, 0, "theme_path");
} else {
$theme_id = "NULL";
$theme_path = "";
}
db_query($link, "UPDATE ttrss_users SET
theme_id = $theme_id WHERE id = " . $_SESSION["uid"]);
$_SESSION["theme"] = $theme_path;
header("Location: prefs.php");
} else {
print check_for_update($link);
if (!SINGLE_USER_MODE) {
$result = db_query($link, "SELECT id,email FROM ttrss_users
WHERE id = ".$_SESSION["uid"]." AND (pwd_hash = 'password' OR
pwd_hash = 'SHA1:".sha1("password")."')");
if (db_num_rows($result) != 0) {
print "< div class = \"warning\" >
Your password is at default value, please change it.
< / div > ";
}
if ($_SESSION["pwd_change_result"] == "failed") {
print "< div class = \"warning\" >
There was an error while changing your password.
< / div > ";
}
if ($_SESSION["pwd_change_result"] == "ok") {
print "< div class = \"notice\" >
Password changed successfully.
< / div > ";
}
$_SESSION["pwd_change_result"] = "";
if ($_SESSION["prefs_op_result"] == "reset-to-defaults") {
print "< div class = \"notice\" >
Your configuration was reset to defaults.
< / div > ";
}
if ($_SESSION["prefs_op_result"] == "save-config") {
print "< div class = \"notice\" >
Your configuration was saved successfully.
< / div > ";
}
$_SESSION["prefs_op_result"] = "";
print "< form action = \"backend.php\" method = \"GET\" > ";
print "< table width = \"100%\" class = \"prefPrefsList\" > ";
print "< tr > < td colspan = '3' > < h3 > Personal data< / h3 > < / tr > < / td > ";
$result = db_query($link, "SELECT email FROM ttrss_users
WHERE id = ".$_SESSION["uid"]);
$email = db_fetch_result($result, 0, "email");
print "< tr > < td width = \"40%\" > E-mail< / td > ";
print "< td > < input class = \"editbox\" name = \"email\"
value=\"$email\">< / td > < / tr > ";
print "< / table > ";
print "< input type = \"hidden\" name = \"op\" value = \"pref-prefs\" > ";
print "< p > < input class = \"button\" type = \"submit\"
value=\"Change e-mail\" name=\"subop\">";
print "< / form > ";
print "< form action = \"backend.php\" method = \"POST\" name = \"changePassForm\" > ";
print "< table width = \"100%\" class = \"prefPrefsList\" > ";
print "< tr > < td colspan = '3' > < h3 > Authentication< / h3 > < / tr > < / td > ";
print "< tr > < td width = \"40%\" > Old password< / td > ";
print "< td > < input class = \"editbox\" type = \"password\"
name=\"OLD_PASSWORD\">< / td > < / tr > ";
print "< tr > < td width = \"40%\" > New password< / td > ";
print "< td > < input class = \"editbox\" type = \"password\"
name=\"NEW_PASSWORD\">< / td > < / tr > ";
print "< / table > ";
print "< input type = \"hidden\" name = \"op\" value = \"pref-prefs\" > ";
print "< p > < input class = \"button\" type = \"submit\"
onclick=\"return validateNewPassword(this.form)\"
value=\"Change password\" name=\"subop\">";
print "< / form > ";
}
$result = db_query($link, "SELECT
theme_id FROM ttrss_users WHERE id = " . $_SESSION["uid"]);
$user_theme_id = db_fetch_result($result, 0, "theme_id");
$result = db_query($link, "SELECT
id,theme_name FROM ttrss_themes ORDER BY theme_name");
if (db_num_rows($result) > 0) {
print "< form action = \"backend.php\" method = \"POST\" > ";
print "< table width = \"100%\" class = \"prefPrefsList\" > ";
print "< tr > < td colspan = '3' > < h3 > Themes< / h3 > < / tr > < / td > ";
print "< tr > < td width = \"40%\" > Select theme< / td > ";
print "< td > < select name = \"theme\" > ";
print "< option > Default< / option > ";
print "< option disabled > --------< / option > ";
while ($line = db_fetch_assoc($result)) {
if ($line["id"] == $user_theme_id) {
$selected = "selected";
} else {
$selected = "";
}
print "< option $ selected > " . $line["theme_name"] . "< / option > ";
}
print "< / select > < / td > < / tr > ";
print "< / table > ";
print "< input type = \"hidden\" name = \"op\" value = \"pref-prefs\" > ";
print "< p > < input class = \"button\" type = \"submit\"
value=\"Change theme\" name=\"subop\">";
print "< / form > ";
}
initialize_user_prefs($link, $_SESSION["uid"]);
$result = db_query($link, "SELECT
ttrss_user_prefs.pref_name,short_desc,help_text,value,type_name,
section_name,def_value
FROM ttrss_prefs,ttrss_prefs_types,ttrss_prefs_sections,ttrss_user_prefs
WHERE type_id = ttrss_prefs_types.id AND
section_id = ttrss_prefs_sections.id AND
ttrss_user_prefs.pref_name = ttrss_prefs.pref_name AND
owner_uid = ".$_SESSION["uid"]."
ORDER BY section_id,short_desc");
print "< form action = \"backend.php\" method = \"POST\" > ";
$lnum = 0;
$active_section = "";
while ($line = db_fetch_assoc($result)) {
if ($active_section != $line["section_name"]) {
if ($active_section != "") {
print "< / table > ";
}
print "< p > < table width = \"100%\" class = \"prefPrefsList\" > ";
$active_section = $line["section_name"];
print "< tr > < td colspan = \"3\" > < h3 > $active_section< / h3 > < / td > < / tr > ";
// print "< tr class = \"title\" >
// < td width = \"25%\" > Option< / td > < td > Value< / td > < / tr > ";
$lnum = 0;
}
// $class = ($lnum % 2) ? "even" : "odd";
print "< tr > ";
$type_name = $line["type_name"];
$pref_name = $line["pref_name"];
$value = $line["value"];
$def_value = $line["def_value"];
$help_text = $line["help_text"];
print "< td width = \"40%\" id = \"$pref_name\" > " . $line["short_desc"];
if ($help_text) print "< div class = \"prefHelp\" > $help_text< / div > ";
print "< / td > ";
print "< td > ";
if ($type_name == "bool") {
// print_select($pref_name, $value, array("true", "false"));
if ($value == "true") {
$value = "Yes";
} else {
$value = "No";
}
print_radio($pref_name, $value, array("Yes", "No"));
} else {
print "< input class = \"editbox\" name = \"$pref_name\" value = \"$value\" > ";
}
print "< / td > ";
print "< / tr > ";
$lnum++;
}
print "< / table > ";
print "< input type = \"hidden\" name = \"op\" value = \"pref-prefs\" > ";
print "< p > < input class = \"button\" type = \"submit\"
name=\"subop\" value=\"Save configuration\">";
print " < input class = \"button\" type = \"submit\"
name=\"subop\" onclick=\"return validatePrefsReset()\"
value=\"Reset to defaults\">< / p > ";
print "< / form > ";
}
}
if ($op == "pref-users") {
$subop = $_GET["subop"];
if ($subop == "edit") {
$id = db_escape_string($_GET["id"]);
print "< div id = \"infoBoxTitle\" > User editor< / div > ";
print "< div class = \"infoBoxContents\" > ";
print "< form id = \"user_edit_form\" > ";
print "< input type = \"hidden\" name = \"id\" value = \"$id\" > ";
print "< input type = \"hidden\" name = \"op\" value = \"pref-users\" > ";
print "< input type = \"hidden\" name = \"subop\" value = \"editSave\" > ";
$result = db_query($link, "SELECT * FROM ttrss_users WHERE id = '$id'");
$login = db_fetch_result($result, 0, "login");
$access_level = db_fetch_result($result, 0, "access_level");
$email = db_fetch_result($result, 0, "email");
print "< table width = '100%' > ";
print "< tr > < td > Login:< / td > < td >
< input class = \"iedit\" onkeypress = \"return filterCR ( event ) \ "
name=\"login\" value=\"$login\">< / td > < / tr > ";
print "< tr > < td > Change password:< / td > < td >
< input class = \"iedit\" onkeypress = \"return filterCR ( event ) \ "
name=\"password\">< / td > < / tr > ";
print "< tr > < td > E-mail:< / td > < td >
< input class = \"iedit\" name = \"email\" onkeypress = \"return filterCR ( event ) \ "
value=\"$email\">< / td > < / tr > ";
$sel_disabled = ($id == $_SESSION["uid"]) ? "disabled" : "";
print "< tr > < td > Access level:< / td > < td > ";
print_select_hash("access_level", $access_level, $access_level_names,
$sel_disabled);
print "< / td > < / tr > ";
print "< / table > ";
print "< / form > ";
print "< div align = 'right' >
< input class = \"button\"
type=\"submit\" onclick=\"return userEditSave()\"
value=\"Save\">
< input class = \"button\"
type=\"submit\" onclick=\"return userEditCancel()\"
value=\"Cancel\">< / div > ";
print "< / div > ";
return;
}
if ($subop == "editSave") {
if (!WEB_DEMO_MODE & & $_SESSION["access_level"] >= 10) {
$login = db_escape_string(trim($_GET["login"]));
$uid = db_escape_string($_GET["id"]);
$access_level = sprintf("%d", $_GET["access_level"]);
$email = db_escape_string(trim($_GET["email"]));
$password = db_escape_string(trim($_GET["password"]));
if ($password) {
$pwd_hash = 'SHA1:' . sha1($password);
$pass_query_part = "pwd_hash = '$pwd_hash', ";
print "< div class = 'notice' > Changed password for user < b > $login< / b > .< / div > ";
} else {
$pass_query_part = "";
}
db_query($link, "UPDATE ttrss_users SET $pass_query_part login = '$login',
access_level = '$access_level', email = '$email' WHERE id = '$uid'");
}
} else if ($subop == "remove") {
if (!WEB_DEMO_MODE & & $_SESSION["access_level"] >= 10) {
$ids = split(",", db_escape_string($_GET["ids"]));
foreach ($ids as $id) {
db_query($link, "DELETE FROM ttrss_users WHERE id = '$id' AND id != " . $_SESSION["uid"]);
}
}
} else if ($subop == "add") {
if (!WEB_DEMO_MODE & & $_SESSION["access_level"] >= 10) {
$login = db_escape_string(trim($_GET["login"]));
$tmp_user_pwd = make_password(8);
$pwd_hash = 'SHA1:' . sha1($tmp_user_pwd);
$result = db_query($link, "SELECT id FROM ttrss_users WHERE
login = '$login'");
if (db_num_rows($result) == 0) {
db_query($link, "INSERT INTO ttrss_users
(login,pwd_hash,access_level,last_login)
VALUES ('$login', '$pwd_hash', 0, NOW())");
$result = db_query($link, "SELECT id FROM ttrss_users WHERE
login = '$login' AND pwd_hash = '$pwd_hash'");
if (db_num_rows($result) == 1) {
$new_uid = db_fetch_result($result, 0, "id");
print "< div class = \"notice\" > Added user < b > ".$_GET["login"].
"< / b > with password < b > $tmp_user_pwd< / b > .< / div > ";
initialize_user($link, $new_uid);
} else {
print "< div class = \"warning\" > Could not create user < b > ".
$_GET["login"]."< / b > < / div > ";
}
} else {
print "< div class = \"warning\" > User < b > ".
$_GET["login"]."< / b > already exists.< / div > ";
}
}
} else if ($subop == "resetPass") {
if (!WEB_DEMO_MODE & & $_SESSION["access_level"] >= 10) {
$uid = db_escape_string($_GET["id"]);
$result = db_query($link, "SELECT login,email
FROM ttrss_users WHERE id = '$uid'");
$login = db_fetch_result($result, 0, "login");
$email = db_fetch_result($result, 0, "email");
$tmp_user_pwd = make_password(8);
$pwd_hash = 'SHA1:' . sha1($tmp_user_pwd);
db_query($link, "UPDATE ttrss_users SET pwd_hash = '$pwd_hash'
WHERE id = '$uid'");
print "< div class = \"notice\" > Changed password of
user < b > $login< / b > to < b > $tmp_user_pwd< / b > .";
if (MAIL_RESET_PASS & & $email) {
print " Notifying < b > $email< / b > .";
mail("$login < $email>", "Password reset notification",
"Hi, $login.\n".
"\n".
"Your password for this TT-RSS installation was reset by".
" an administrator.\n".
"\n".
"Your new password is $tmp_user_pwd, please remember".
" it for later reference.\n".
"\n".
"Sincerely, TT-RSS Mail Daemon.", "From: " . MAIL_FROM);
}
print "< / div > ";
}
}
$sort = db_escape_string($_GET["sort"]);
if (!$sort || $sort == "undefined") {
$sort = "login";
}
print "< div class = \"prefGenericAddBox\" >
< input id = \"uadd_box\"
onkeyup=\"toggleSubmitNotEmpty(this, 'user_add_btn')\"
size=\"40\"> ";
print"< input type = \"submit\" class = \"button\"
id=\"user_add_btn\" disabled=\"true\"
onclick=\"javascript:addUser()\" value=\"Create user\">< / div > ";
$result = db_query($link, "SELECT
id,login,access_level,email,
SUBSTRING(last_login,1,16) as last_login
FROM
ttrss_users
ORDER BY $sort");
// print "< div id = \"infoBoxShadow\" > < div id = \"infoBox\" > PLACEHOLDER< / div > < / div > ";
print "< p > < table width = \"100%\" cellspacing = \"0\"
class=\"prefUserList\" id=\"prefUserList\">";
print "< tr > < td class = \"selectPrompt\" colspan = \"8\" >
Select:
< a href = \"javascript:selectPrefRows('user', true ) \ " > All< / a > ,
< a href = \"javascript:selectPrefRows('user', false ) \ " > None< / a >
< /td< / tr > ";
print "< tr class = \"title\" >
< td align = 'center' width = \"5%\" > < / td >
< td width = '40%' > < a href = \"javascript:updateUsersList('login')\" > Login< / a > < / td >
< td width = '40%' > < a href = \"javascript:updateUsersList('access_level')\" > Access Level< / a > < / td >
< td width = '30%' > < a href = \"javascript:updateUsersList('last_login')\" > Last login< / a > < / td > < / tr > ";
$lnum = 0;
while ($line = db_fetch_assoc($result)) {
$class = ($lnum % 2) ? "even" : "odd";
$uid = $line["id"];
$edit_uid = $_GET["id"];
if ($subop == "edit" & & $uid != $edit_uid) {
$class .= "Grayed";
$this_row_id = "";
} else {
$this_row_id = "id=\"UMRR-$uid\"";
}
print "< tr class = \"$class\" $ this_row_id > ";
$line["login"] = htmlspecialchars($line["login"]);
$line["last_login"] = date(get_pref($link, 'SHORT_DATE_FORMAT'),
strtotime($line["last_login"]));
$access_level_names = array(0 => "User", 10 => "Administrator");
// if (!$edit_uid || $subop != "edit") {
print "< td align = 'center' > < input onclick = 'toggleSelectPrefRow(this, \"user\");'
type=\"checkbox\" id=\"UMCHK-$uid\">< / td > ";
print "< td > < a href = \"javascript:editUser($uid);\" > " .
$line["login"] . "< / td > ";
if (!$line["email"]) $line["email"] = " ";
print "< td > < a href = \"javascript:editUser($uid);\" > " .
$access_level_names[$line["access_level"]] . "< / td > ";
/* } else if ($uid != $edit_uid) {
if (!$line["email"]) $line["email"] = " ";
print "< td align = 'center' > < input disabled = \"true\" type = \"checkbox\"
id=\"UMCHK-".$line["id"]."\">< / td > ";
print "< td > ".$line["login"]."< / td > ";
print "< td > ".$line["email"]."< / td > ";
print "< td > ".$access_level_names[$line["access_level"]]."< / td > ";
} else {
print "< td align = 'center' >
< input disabled = \"true\" type = \"checkbox\" checked > < / td > ";
print "< td > < input id = \"iedit_ulogin\" value = \"".$line["login"].
"\">< / td > ";
print "< td > < input id = \"iedit_email\" value = \"".$line["email"].
"\">< / td > ";
print "< td > ";
print "< select id = \"iedit_ulevel\" > ";
foreach (array_keys($access_level_names) as $al) {
if ($al == $line["access_level"]) {
$selected = "selected";
} else {
$selected = "";
}
print "< option $ selected id = \"$al\" > " .
$access_level_names[$al] . "< / option > ";
}
print "< / select > ";
print "< / td > ";
} */
print "< td > ".$line["last_login"]."< / td > ";
print "< / tr > ";
++$lnum;
}
print "< / table > ";
print "< p id = 'userOpToolbar' > ";
/* if ($subop == "edit") {
print "Edit user:
< input type = \"submit\" class = \"button\"
onclick=\"javascript:userEditSave()\" value=\"Save\">
< input type = \"submit\" class = \"button\"
onclick=\"javascript:userEditCancel()\" value=\"Cancel\">";
} else { */
print "
Selection:
< input type = \"submit\" class = \"button\" disabled = \"true\"
onclick=\"javascript:selectedUserDetails()\" value=\"User details\">
< input type = \"submit\" class = \"button\" disabled = \"true\"
onclick=\"javascript:editSelectedUser()\" value=\"Edit\">
< input type = \"submit\" class = \"button\" disabled = \"true\"
onclick=\"javascript:removeSelectedUsers()\" value=\"Remove\">
< input type = \"submit\" class = \"button\" disabled = \"true\"
onclick=\"javascript:resetSelectedUserPass()\" value=\"Reset password\">";
// }
}
if ($op == "user-details") {
if (WEB_DEMO_MODE || $_SESSION["access_level"] < 10 ) {
return;
}
/* print "< html > < head >
< title > Tiny Tiny RSS : User Details< / title >
< link rel = \"stylesheet\" href = \"tt-rss.css\" type = \"text/css\" >
< meta http-equiv = \"Content-Type\" content = \"text/html; charset = utf-8\" >
< / head > < body > "; */
$uid = sprintf("%d", $_GET["id"]);
print "< div id = \"infoBoxTitle\" > User details< / div > ";
print "< div class = 'infoBoxContents' > ";
$result = db_query($link, "SELECT login,
SUBSTRING(last_login,1,16) AS last_login,
access_level,
(SELECT COUNT(int_id) FROM ttrss_user_entries
WHERE owner_uid = id) AS stored_articles
FROM ttrss_users
WHERE id = '$uid'");
if (db_num_rows($result) == 0) {
print "< h1 > User not found< / h1 > ";
return;
}
# print "< h1 > User Details< / h1 > ";
$login = db_fetch_result($result, 0, "login");
# print "< h1 > $login< / h1 > ";
print "< table width = '100%' > ";
$last_login = date(get_pref($link, 'LONG_DATE_FORMAT'),
strtotime(db_fetch_result($result, 0, "last_login")));
$access_level = db_fetch_result($result, 0, "access_level");
$stored_articles = db_fetch_result($result, 0, "stored_articles");
# print "< tr > < td > Username< / td > < td > $login< / td > < / tr > ";
# print "< tr > < td > Access level< / td > < td > $access_level< / td > < / tr > ";
print "< tr > < td > Last logged in< / td > < td > $last_login< / td > < / tr > ";
print "< tr > < td > Stored articles< / td > < td > $stored_articles< / td > < / tr > ";
$result = db_query($link, "SELECT COUNT(id) as num_feeds FROM ttrss_feeds
WHERE owner_uid = '$uid'");
$num_feeds = db_fetch_result($result, 0, "num_feeds");
print "< tr > < td > Subscribed feeds count< / td > < td > $num_feeds< / td > < / tr > ";
/* $result = db_query($link, "SELECT
SUM(LENGTH(content)+LENGTH(title)+LENGTH(link)+LENGTH(guid)) AS db_size
FROM ttrss_user_entries,ttrss_entries
WHERE owner_uid = '$uid' AND ref_id = id");
$db_size = round(db_fetch_result($result, 0, "db_size") / 1024);
print "< tr > < td > Approx. used DB size< / td > < td > $db_size KBytes< / td > < / tr > "; */
print "< / table > ";
print "< h1 > Subscribed feeds< / h1 > ";
$result = db_query($link, "SELECT id,title,site_url FROM ttrss_feeds
WHERE owner_uid = '$uid' ORDER BY title");
print "< ul class = \"userFeedList\" > ";
$row_class = "odd";
while ($line = db_fetch_assoc($result)) {
$icon_file = ICONS_URL."/".$line["id"].".ico";
if (file_exists($icon_file) & & filesize($icon_file) > 0) {
$feed_icon = "< img class = \"tinyFeedIcon\" src = \"$icon_file\" > ";
} else {
$feed_icon = "< img class = \"tinyFeedIcon\" src = \"images/blank_icon.gif\" > ";
}
print "< li class = \"$row_class\" > $feed_icon < a href = \"".$line["site_url"]."\" > ".$line["title"]."< / a > < / li > ";
$row_class = toggleEvenOdd($row_class);
}
if (db_num_rows($result) < $num_feeds) {
// FIXME - add link to show ALL subscribed feeds here somewhere
print "< li > < img
class=\"tinyFeedIcon\" src=\"images/blank_icon.gif\"> ...< / li > ";
}
print "< / ul > ";
print "< / div > ";
print "< div align = 'center' >
< input type = 'submit' class = 'button'
onclick=\"closeInfoBox()\" value=\"Close this window\">< / div > ";
// print "< / body > < / html > ";
}
if ($op == "pref-feed-browser") {
if (!ENABLE_FEED_BROWSER) {
print "Feed browser is administratively disabled.";
return;
}
$subop = $_REQUEST["subop"];
if ($subop == "details") {
$id = db_escape_string($_GET["id"]);
print "< div class = \"browserFeedInfo\" > ";
print "< b > Feed information:< / b > ";
print "< div class = \"detailsPart\" > ";
$result = db_query($link, "SELECT
feed_url,site_url,
SUBSTRING(last_updated,1,19) AS last_updated
FROM ttrss_feeds WHERE id = '$id'");
$feed_url = db_fetch_result($result, 0, "feed_url");
$site_url = db_fetch_result($result, 0, "site_url");
$last_updated = db_fetch_result($result, 0, "last_updated");
if (get_pref($link, 'HEADLINES_SMART_DATE')) {
$last_updated = smart_date_time(strtotime($last_updated));
} else {
$short_date = get_pref($link, 'SHORT_DATE_FORMAT');
$last_updated = date($short_date, strtotime($last_updated));
}
print "Site: < a target = \"_new\" href = '$site_url' > $site_url< / a > ".
"(< a target = \"_new\" href = '$feed_url' > feed< / a > ), ".
"Last updated: $last_updated";
print "< / div > ";
$result = db_query($link, "SELECT
ttrss_entries.title,
content,link,
substring(date_entered,1,19) as date_entered,
substring(updated,1,19) as updated
FROM ttrss_entries,ttrss_user_entries
WHERE ttrss_entries.id = ref_id AND feed_id = '$id'
ORDER BY updated DESC LIMIT 5");
if (db_num_rows($result) > 0) {
print "< b > Last headlines:< / b > < br > ";
print "< div class = \"detailsPart\" > ";
print "< ul class = \"compact\" > ";
while ($line = db_fetch_assoc($result)) {
if (get_pref($link, 'HEADLINES_SMART_DATE')) {
$entry_dt = smart_date_time(strtotime($line["updated"]));
} else {
$short_date = get_pref($link, 'SHORT_DATE_FORMAT');
$entry_dt = date($short_date, strtotime($line["updated"]));
}
print "< li > < a target = \"_new\" href = \"" . $ line [ " link " ] . " \ " > " . $line["title"] . "< / a > " .
" < span class = \"insensitive\" > ($entry_dt)< / span > < / li > ";
}
print "< / ul > < / div > ";
}
print "< / div > ";
return;
}
print "< p > This panel shows feeds subscribed by other users of this system, just in case you are interested in some of them too.< / p > ";
$limit = db_escape_string($_GET["limit"]);
if (!$limit) $limit = 25;
$owner_uid = $_SESSION["uid"];
$result = db_query($link, "SELECT feed_url,COUNT(id) AS subscribers
FROM ttrss_feeds WHERE (SELECT COUNT(id) = 0 FROM ttrss_feeds AS tf
WHERE tf.feed_url = ttrss_feeds.feed_url
AND owner_uid = '$owner_uid') GROUP BY feed_url
ORDER BY subscribers DESC LIMIT $limit");
print "< div style = \"float : right \ " >
Top < select id = \"feedBrowserLimit\" > ";
foreach (array(25, 50, 100) as $l) {
$issel = ($l == $limit) ? "selected" : "";
print "< option $ issel > $l< / option > ";
}
print "< / select >
< input type = \"submit\" class = \"button\"
onclick=\"updateBigFeedBrowser()\" value=\"Show\">
< / div > ";
print "< p id = \"fbrOpToolbar\" > Selection:
< input type = 'submit' class = 'button' onclick = \"feedBrowserSubscribe()\"
disabled=\"true\" value=\"Subscribe\">";
print "< ul class = 'nomarks' id = 'browseBigFeedList' > ";
$feedctr = 0;
while ($line = db_fetch_assoc($result)) {
$feed_url = $line["feed_url"];
$subscribers = $line["subscribers"];
$det_result = db_query($link, "SELECT site_url,title,id
FROM ttrss_feeds WHERE feed_url = '$feed_url' LIMIT 1");
$details = db_fetch_assoc($det_result);
$icon_file = ICONS_DIR . "/" . $details["id"] . ".ico";
if (file_exists($icon_file) & & filesize($icon_file) > 0) {
$feed_icon = "< img class = \"tinyFeedIcon\" src = \"" . ICONS_URL .
"/".$details["id"].".ico\">";
} else {
$feed_icon = "< img class = \"tinyFeedIcon\" src = \"images/blank_icon.gif\" > ";
}
$check_box = "< input onclick = 'toggleSelectFBListRow(this)' class = 'feedBrowseCB'
type=\"checkbox\" id=\"FBCHK-" . $details["id"] . "\">";
$class = ($feedctr % 2) ? "even" : "odd";
print "< li class = '$class' id = \"FBROW-".$details["id"]."\" > $check_box".
"$feed_icon ";
print "< a href = \"javascript:browserToggleExpand('".$details["id"]."')\" > " .
$details["title"] ."< / a > " .
"< span class = 'subscribers' > ($subscribers)< / span > ";
print "< div class = \"browserDetails\" id = \"BRDET-" . $ details [ " id " ] . " \ " > ";
print "< / div > ";
print "< / li > ";
++$feedctr;
}
if ($feedctr == 0) {
print "< li > No feeds found to subscribe.< / li > ";
}
print "< / ul > ";
print "< / div > ";
}
if ($op == "rss") {
$feed = db_escape_string($_GET["id"]);
$user = db_escape_string($_GET["user"]);
$pass = db_escape_string($_GET["pass"]);
$is_cat = $_GET["is_cat"] != false;
$search = db_escape_string($_GET["q"]);
$match_on = db_escape_string($_GET["m"]);
$search_mode = db_escape_string($_GET["smode"]);
if (!$_SESSION["uid"] & & $user & & $pass) {
authenticate_user($link, $user, $pass);
}
if ($_SESSION["uid"] ||
http_authenticate_user($link)) {
generate_syndicated_feed($link, $feed, $is_cat,
$search, $search_mode, $match_on);
}
}
function check_configuration_variables() {
if (!defined('SESSION_EXPIRE_TIME')) {
return "config: SESSION_EXPIRE_TIME is undefined";
}
if (SESSION_EXPIRE_TIME < 60 ) {
return "config: SESSION_EXPIRE_TIME is too low (less than 60)";
}
if (SESSION_EXPIRE_TIME < SESSION_COOKIE_LIFETIME_REMEMBER ) {
return "config: SESSION_EXPIRE_TIME should be greater or equal to" .
"SESSION_COOKIE_LIFETIME_REMEMBER";
}
if (defined('DISABLE_SESSIONS')) {
return "config: you have enabled DISABLE_SESSIONS. Please disable this option.";
}
if (DATABASE_BACKED_SESSIONS & & SINGLE_USER_MODE) {
return "config: DATABASE_BACKED_SESSIONS is incompatible with SINGLE_USER_MODE";
}
return false;
}
if ($op == "labelFromSearch") {
$search = db_escape_string($_GET["search"]);
$search_mode = db_escape_string($_GET["smode"]);
$match_on = db_escape_string($_GET["match"]);
$is_cat = db_escape_string($_GET["is_cat"]);
$title = db_escape_string($_GET["title"]);
$feed = sprintf("%d", $_GET["feed"]);
$label_qparts = array();
$search_expr = getSearchSql($search, $match_on);
if ($is_cat) {
if ($feed != 0) {
$search_expr .= " AND ttrss_feeds.cat_id = $feed ";
} else {
$search_expr .= " AND ttrss_feeds.cat_id IS NULL ";
}
} else {
if ($search_mode == "all_feeds") {
// NOOP
} else if ($search_mode == "this_cat") {
$tmp_result = db_query($link, "SELECT cat_id
FROM ttrss_feeds WHERE id = '$feed'");
$cat_id = db_fetch_result($tmp_result, 0, "cat_id");
if ($cat_id > 0) {
$search_expr .= " AND ttrss_feeds.cat_id = $cat_id ";
} else {
$search_expr .= " AND ttrss_feeds.cat_id IS NULL ";
}
} else {
$search_expr .= " AND ttrss_feeds.id = $feed ";
}
}
$search_expr = db_escape_string($search_expr);
print $search_expr;
if ($title) {
$result = db_query($link,
"INSERT INTO ttrss_labels (sql_exp,description,owner_uid)
VALUES ('$search_expr', '$title', '".$_SESSION["uid"]."')");
}
}
if ($op == "getUnread") {
$login = db_escape_string($_GET["login"]);
header("Content-Type: text/plain; charset=utf-8");
$result = db_query($link, "SELECT id FROM ttrss_users WHERE login = '$login'");
if (db_num_rows($result) == 1) {
$uid = db_fetch_result($result, 0, "id");
print getGlobalUnread($link, $uid);
} else {
print "-1;User not found";
}
$print_exec_time = false;
}
if ($op == "digestTest") {
header("Content-Type: text/plain");
print_r(prepare_headlines_digest($link, $_SESSION["uid"]));
$print_exec_time = false;
}
if ($op == "digestSend") {
header("Content-Type: text/plain");
send_headlines_digests($link);
$print_exec_time = false;
}
db_close($link);
?>
<?php if ( $print_exec_time ) { ?>
<!-- <?php echo sprintf ( "Backend execution time: %.4f seconds" , getmicrotime () - $script_started ) ?> -->
<?php } ?>