mirror of
https://github.com/WhatCD/Gazelle.git
synced 2024-12-13 10:56:26 +00:00
458 lines
12 KiB
PHP
458 lines
12 KiB
PHP
<?
|
|
|
|
//Function used for pagination of peer/snatch/download lists on details.php
|
|
function js_pages($Action, $TorrentID, $NumResults, $CurrentPage) {
|
|
$NumPages = ceil($NumResults / 100);
|
|
$PageLinks = array();
|
|
for ($i = 1; $i <= $NumPages; $i++) {
|
|
if ($i == $CurrentPage) {
|
|
$PageLinks[] = $i;
|
|
} else {
|
|
$PageLinks[] = "<a href=\"#\" onclick=\"$Action($TorrentID, $i)\">$i</a>";
|
|
}
|
|
}
|
|
return implode(' | ', $PageLinks);
|
|
}
|
|
|
|
// This gets used in a few places
|
|
$ArtistTypes = array(1 => 'Main', 2 => 'Guest', 3 => 'Remixer', 4 => 'Composer', 5 => 'Conductor', 6 => 'DJ/Compiler', 7 => 'Producer');
|
|
|
|
if (!empty($_REQUEST['action'])) {
|
|
switch ($_REQUEST['action']) {
|
|
case 'edit':
|
|
enforce_login();
|
|
include(SERVER_ROOT.'/sections/torrents/edit.php');
|
|
break;
|
|
|
|
case 'editgroup':
|
|
enforce_login();
|
|
include(SERVER_ROOT.'/sections/torrents/editgroup.php');
|
|
break;
|
|
|
|
case 'editgroupid':
|
|
enforce_login();
|
|
include(SERVER_ROOT.'/sections/torrents/editgroupid.php');
|
|
break;
|
|
|
|
case 'changecategory':
|
|
enforce_login();
|
|
include(SERVER_ROOT.'/sections/torrents/takechangecategory.php');
|
|
break;
|
|
|
|
case 'takeedit':
|
|
enforce_login();
|
|
include(SERVER_ROOT.'/sections/torrents/takeedit.php');
|
|
break;
|
|
|
|
case 'newgroup':
|
|
enforce_login();
|
|
include(SERVER_ROOT.'/sections/torrents/takenewgroup.php');
|
|
break;
|
|
|
|
case 'peerlist':
|
|
enforce_login();
|
|
include(SERVER_ROOT.'/sections/torrents/peerlist.php');
|
|
break;
|
|
|
|
case 'snatchlist':
|
|
enforce_login();
|
|
include(SERVER_ROOT.'/sections/torrents/snatchlist.php');
|
|
break;
|
|
|
|
case 'downloadlist':
|
|
enforce_login();
|
|
include(SERVER_ROOT.'/sections/torrents/downloadlist.php');
|
|
break;
|
|
|
|
case 'redownload':
|
|
enforce_login();
|
|
include(SERVER_ROOT.'/sections/torrents/redownload.php');
|
|
break;
|
|
|
|
case 'revert':
|
|
case 'takegroupedit':
|
|
enforce_login();
|
|
include(SERVER_ROOT.'/sections/torrents/takegroupedit.php');
|
|
break;
|
|
|
|
case 'nonwikiedit':
|
|
enforce_login();
|
|
include(SERVER_ROOT.'/sections/torrents/nonwikiedit.php');
|
|
break;
|
|
|
|
case 'rename':
|
|
enforce_login();
|
|
include(SERVER_ROOT.'/sections/torrents/rename.php');
|
|
break;
|
|
|
|
case 'merge':
|
|
enforce_login();
|
|
include(SERVER_ROOT.'/sections/torrents/merge.php');
|
|
break;
|
|
|
|
case 'add_alias':
|
|
enforce_login();
|
|
include(SERVER_ROOT.'/sections/torrents/add_alias.php');
|
|
break;
|
|
|
|
case 'delete_alias':
|
|
enforce_login();
|
|
authorize();
|
|
include(SERVER_ROOT.'/sections/torrents/delete_alias.php');
|
|
break;
|
|
|
|
case 'history':
|
|
enforce_login();
|
|
include(SERVER_ROOT.'/sections/torrents/history.php');
|
|
break;
|
|
|
|
case 'delete':
|
|
enforce_login();
|
|
include(SERVER_ROOT.'/sections/torrents/delete.php');
|
|
break;
|
|
|
|
case 'takedelete':
|
|
enforce_login();
|
|
include(SERVER_ROOT.'/sections/torrents/takedelete.php');
|
|
break;
|
|
|
|
case 'masspm':
|
|
enforce_login();
|
|
include(SERVER_ROOT.'/sections/torrents/masspm.php');
|
|
break;
|
|
|
|
case 'reseed':
|
|
enforce_login();
|
|
include(SERVER_ROOT.'/sections/torrents/reseed.php');
|
|
break;
|
|
|
|
case 'takemasspm':
|
|
enforce_login();
|
|
include(SERVER_ROOT.'/sections/torrents/takemasspm.php');
|
|
break;
|
|
|
|
case 'vote_tag':
|
|
enforce_login();
|
|
authorize();
|
|
include(SERVER_ROOT.'/sections/torrents/vote_tag.php');
|
|
break;
|
|
|
|
case 'add_tag':
|
|
enforce_login();
|
|
include(SERVER_ROOT.'/sections/torrents/add_tag.php');
|
|
break;
|
|
|
|
case 'delete_tag':
|
|
enforce_login();
|
|
authorize();
|
|
include(SERVER_ROOT.'/sections/torrents/delete_tag.php');
|
|
break;
|
|
|
|
case 'notify':
|
|
enforce_login();
|
|
include(SERVER_ROOT.'/sections/torrents/notify.php');
|
|
break;
|
|
|
|
case 'manage_artists':
|
|
enforce_login();
|
|
require(SERVER_ROOT.'/sections/torrents/manage_artists.php');
|
|
break;
|
|
|
|
case 'notify_clear':
|
|
case 'notify_clear_item':
|
|
case 'notify_clear_items':
|
|
case 'notify_clearitem':
|
|
case 'notify_clear_filter':
|
|
case 'notify_cleargroup':
|
|
case 'notify_catchup':
|
|
case 'notify_catchup_filter':
|
|
authorize();
|
|
enforce_login();
|
|
require(SERVER_ROOT.'/sections/torrents/notify_actions.php');
|
|
break;
|
|
|
|
case 'download':
|
|
require(SERVER_ROOT.'/sections/torrents/download.php');
|
|
break;
|
|
|
|
case 'reply':
|
|
enforce_login();
|
|
authorize();
|
|
|
|
if (!isset($_POST['groupid']) || !is_number($_POST['groupid']) || trim($_POST['body']) === '' || !isset($_POST['body'])) {
|
|
error(0);
|
|
}
|
|
if ($LoggedUser['DisablePosting']) {
|
|
error('Your posting privileges have been removed.');
|
|
}
|
|
|
|
$GroupID = $_POST['groupid'];
|
|
if (!$GroupID) {
|
|
error(404);
|
|
}
|
|
|
|
$DB->query("
|
|
SELECT
|
|
CEIL((
|
|
SELECT COUNT(ID) + 1
|
|
FROM torrents_comments AS tc
|
|
WHERE tc.GroupID = '".db_string($GroupID)."'
|
|
) / ".TORRENT_COMMENTS_PER_PAGE.'
|
|
) AS Pages');
|
|
list($Pages) = $DB->next_record();
|
|
|
|
$DB->query("
|
|
INSERT INTO torrents_comments
|
|
(GroupID, AuthorID, AddedTime, Body)
|
|
VALUES
|
|
('".db_string($GroupID)."', '".db_string($LoggedUser['ID'])."', '".sqltime()."', '".db_string($_POST['body'])."')");
|
|
$PostID = $DB->inserted_id();
|
|
|
|
$CatalogueID = floor((TORRENT_COMMENTS_PER_PAGE * $Pages - TORRENT_COMMENTS_PER_PAGE) / THREAD_CATALOGUE);
|
|
$Cache->begin_transaction("torrent_comments_{$GroupID}_catalogue_$CatalogueID");
|
|
$Post = array(
|
|
'ID' => $PostID,
|
|
'AuthorID' => $LoggedUser['ID'],
|
|
'AddedTime' => sqltime(),
|
|
'Body' => $_POST['body'],
|
|
'EditedUserID' => 0,
|
|
'EditedTime' => '0000-00-00 00:00:00',
|
|
'Username' => ''
|
|
);
|
|
$Cache->insert('', $Post);
|
|
$Cache->commit_transaction(0);
|
|
$Cache->increment("torrent_comments_$GroupID");
|
|
|
|
header("Location: torrents.php?id=$GroupID&page=$Pages");
|
|
break;
|
|
|
|
case 'get_post':
|
|
enforce_login();
|
|
if (!$_GET['post'] || !is_number($_GET['post'])) {
|
|
error(0);
|
|
}
|
|
$DB->query("
|
|
SELECT Body
|
|
FROM torrents_comments
|
|
WHERE ID = '".db_string($_GET['post'])."'");
|
|
list($Body) = $DB->next_record(MYSQLI_NUM);
|
|
|
|
echo trim($Body);
|
|
break;
|
|
|
|
case 'takeedit_post':
|
|
enforce_login();
|
|
authorize();
|
|
|
|
include(SERVER_ROOT.'/classes/text.class.php'); // Text formatting class
|
|
$Text = new TEXT;
|
|
|
|
// Quick SQL injection check
|
|
if (!$_POST['post'] || !is_number($_POST['post'])) {
|
|
error(0);
|
|
}
|
|
|
|
// Mainly
|
|
$DB->query("
|
|
SELECT
|
|
tc.Body,
|
|
tc.AuthorID,
|
|
tc.GroupID,
|
|
tc.AddedTime
|
|
FROM torrents_comments AS tc
|
|
WHERE tc.ID = '".db_string($_POST['post'])."'");
|
|
list($OldBody, $AuthorID, $GroupID, $AddedTime) = $DB->next_record();
|
|
|
|
$DB->query("
|
|
SELECT ceil(COUNT(ID) / ".TORRENT_COMMENTS_PER_PAGE.") AS Page
|
|
FROM torrents_comments
|
|
WHERE GroupID = $GroupID
|
|
AND ID <= $_POST[post]");
|
|
list($Page) = $DB->next_record();
|
|
|
|
if ($LoggedUser['ID'] != $AuthorID && !check_perms('site_moderate_forums')) {
|
|
error(404);
|
|
}
|
|
if (!$DB->has_results()) {
|
|
error(404);
|
|
}
|
|
|
|
// Perform the update
|
|
$DB->query("
|
|
UPDATE torrents_comments
|
|
SET
|
|
Body = '".db_string($_POST['body'])."',
|
|
EditedUserID = '".db_string($LoggedUser['ID'])."',
|
|
EditedTime = '".sqltime()."'
|
|
WHERE ID = '".db_string($_POST['post'])."'");
|
|
|
|
// Update the cache
|
|
$CatalogueID = floor((TORRENT_COMMENTS_PER_PAGE * $Page - TORRENT_COMMENTS_PER_PAGE) / THREAD_CATALOGUE);
|
|
$Cache->begin_transaction("torrent_comments_{$GroupID}_catalogue_$CatalogueID");
|
|
|
|
$Cache->update_row($_POST['key'], array(
|
|
'ID' => $_POST['post'],
|
|
'AuthorID' => $AuthorID,
|
|
'AddedTime' => $AddedTime,
|
|
'Body' => $_POST['body'],
|
|
'EditedUserID' => db_string($LoggedUser['ID']),
|
|
'EditedTime' => sqltime(),
|
|
'Username' => $LoggedUser['Username']
|
|
));
|
|
$Cache->commit_transaction(0);
|
|
|
|
$DB->query("
|
|
INSERT INTO comments_edits
|
|
(Page, PostID, EditUser, EditTime, Body)
|
|
VALUES
|
|
('torrents', ".db_string($_POST['post']).", ".db_string($LoggedUser['ID']).", '".sqltime()."', '".db_string($OldBody)."')");
|
|
|
|
// This gets sent to the browser, which echoes it in place of the old body
|
|
echo $Text->full_format($_POST['body']);
|
|
break;
|
|
|
|
case 'delete_post':
|
|
enforce_login();
|
|
authorize();
|
|
|
|
// Quick SQL injection check
|
|
if (!$_GET['postid'] || !is_number($_GET['postid'])) {
|
|
error(0);
|
|
}
|
|
|
|
// Make sure they are moderators
|
|
if (!check_perms('site_moderate_forums')) {
|
|
error(403);
|
|
}
|
|
|
|
// Get topicid, forumid, number of pages
|
|
$DB->query("
|
|
SELECT
|
|
GroupID,
|
|
CEIL(COUNT(tc.ID) / ".TORRENT_COMMENTS_PER_PAGE.") AS Pages,
|
|
CEIL(SUM(IF(tc.ID <= ".$_GET['postid'].", 1, 0)) / ".TORRENT_COMMENTS_PER_PAGE.") AS Page
|
|
FROM torrents_comments AS tc
|
|
WHERE tc.GroupID =
|
|
(SELECT GroupID
|
|
FROM torrents_comments
|
|
WHERE ID = ".$_GET['postid'].')
|
|
GROUP BY tc.GroupID');
|
|
list($GroupID, $Pages, $Page) = $DB->next_record();
|
|
|
|
// $Pages = number of pages in the thread
|
|
// $Page = which page the post is on
|
|
// These are set for cache clearing.
|
|
|
|
$DB->query("
|
|
DELETE FROM torrents_comments
|
|
WHERE ID = '".db_string($_GET['postid'])."'");
|
|
|
|
//We need to clear all subsequential catalogues as they've all been bumped with the absence of this post
|
|
$ThisCatalogue = floor((TORRENT_COMMENTS_PER_PAGE * $Page - TORRENT_COMMENTS_PER_PAGE) / THREAD_CATALOGUE);
|
|
$LastCatalogue = floor((TORRENT_COMMENTS_PER_PAGE * $Pages - TORRENT_COMMENTS_PER_PAGE) / THREAD_CATALOGUE);
|
|
for ($i = $ThisCatalogue; $i <= $LastCatalogue; $i++) {
|
|
$Cache->delete_value("torrent_comments_{$GroupID}_catalogue_$i");
|
|
}
|
|
|
|
// Delete thread info cache (e.g. number of pages)
|
|
$Cache->delete_value("torrent_comments_$GroupID");
|
|
|
|
break;
|
|
case 'regen_filelist':
|
|
if (check_perms('users_mod') && !empty($_GET['torrentid']) && is_number($_GET['torrentid'])) {
|
|
Torrents::regenerate_filelist($_GET['torrentid']);
|
|
header('Location: torrents.php?torrentid='.$_GET['torrentid']);
|
|
die();
|
|
} else {
|
|
error(403);
|
|
}
|
|
break;
|
|
case 'fix_group':
|
|
if ((check_perms('users_mod') || check_perms('torrents_fix_ghosts')) && authorize() && !empty($_GET['groupid']) && is_number($_GET['groupid'])) {
|
|
$DB->query('
|
|
SELECT COUNT(ID)
|
|
FROM torrents
|
|
WHERE GroupID = '.$_GET['groupid']);
|
|
list($Count) = $DB->next_record();
|
|
if ($Count == 0) {
|
|
Torrents::delete_group($_GET['groupid']);
|
|
} else {
|
|
}
|
|
if (!empty($_GET['artistid']) && is_number($_GET['artistid'])) {
|
|
header('Location: artist.php?id='.$_GET['artistid']);
|
|
} else {
|
|
header('Location: torrents.php?id='.$_GET['groupid']);
|
|
}
|
|
} else {
|
|
error(403);
|
|
}
|
|
break;
|
|
case 'warn':
|
|
include(SERVER_ROOT.'/sections/torrents/warn.php');
|
|
break;
|
|
case 'take_warn':
|
|
include(SERVER_ROOT.'/sections/torrents/take_warn.php');
|
|
break;
|
|
case 'add_cover_art':
|
|
include(SERVER_ROOT.'/sections/torrents/add_cover_art.php');
|
|
break;
|
|
case 'remove_cover_art':
|
|
include(SERVER_ROOT.'/sections/torrents/remove_cover_art.php');
|
|
break;
|
|
case 'autocomplete_tags':
|
|
include(SERVER_ROOT.'/sections/torrents/autocomplete_tags.php');
|
|
break;
|
|
default:
|
|
enforce_login();
|
|
|
|
if (!empty($_GET['id'])) {
|
|
include(SERVER_ROOT.'/sections/torrents/details.php');
|
|
} elseif (isset($_GET['torrentid']) && is_number($_GET['torrentid'])) {
|
|
$DB->query('
|
|
SELECT GroupID
|
|
FROM torrents
|
|
WHERE ID = '.$_GET['torrentid']);
|
|
list($GroupID) = $DB->next_record();
|
|
if ($GroupID) {
|
|
header("Location: torrents.php?id=$GroupID&torrentid=".$_GET['torrentid']);
|
|
}
|
|
} else {
|
|
include(SERVER_ROOT.'/sections/torrents/browse2.php');
|
|
}
|
|
break;
|
|
}
|
|
} else {
|
|
enforce_login();
|
|
|
|
if (!empty($_GET['id'])) {
|
|
include(SERVER_ROOT.'/sections/torrents/details.php');
|
|
} elseif (isset($_GET['torrentid']) && is_number($_GET['torrentid'])) {
|
|
$DB->query("
|
|
SELECT GroupID
|
|
FROM torrents
|
|
WHERE ID = ".$_GET['torrentid']);
|
|
list($GroupID) = $DB->next_record();
|
|
if ($GroupID) {
|
|
header("Location: torrents.php?id=$GroupID&torrentid=".$_GET['torrentid'].'#torrent'.$_GET['torrentid']);
|
|
} else {
|
|
header("Location: log.php?search=Torrent+$_GET[torrentid]");
|
|
}
|
|
} elseif (!empty($_GET['type'])) {
|
|
include(SERVER_ROOT.'/sections/torrents/user.php');
|
|
} elseif (!empty($_GET['groupname']) && !empty($_GET['forward'])) {
|
|
$DB->query("
|
|
SELECT ID
|
|
FROM torrents_group
|
|
WHERE Name LIKE '".db_string($_GET['groupname'])."'");
|
|
list($GroupID) = $DB->next_record();
|
|
if ($GroupID) {
|
|
header("Location: torrents.php?id=$GroupID");
|
|
} else {
|
|
include(SERVER_ROOT.'/sections/torrents/browse2.php');
|
|
}
|
|
} else {
|
|
include(SERVER_ROOT.'/sections/torrents/browse2.php');
|
|
}
|
|
}
|
|
?>
|