Gazelle/sections/torrents/index.php
2013-05-16 16:15:57 +00:00

423 lines
12 KiB
PHP

<?
//Function used for pagination of peer/snatch/download lists on details.php
function js_pages($Action, $TorrentID, $NumResults, $CurrentPage) {
$NumPages = ceil($NumResults / 100);
$PageLinks = array();
for ($i = 1; $i <= $NumPages; $i++) {
if ($i == $CurrentPage) {
$PageLinks[] = $i;
} else {
$PageLinks[] = '<a href="#" onclick="'.$Action.'('.$TorrentID.', '.$i.')">'.$i.'</a>';
}
}
return implode(' | ',$PageLinks);
}
// This gets used in a few places
$ArtistTypes = array(1 => 'Main', 2 => 'Guest', 3 => 'Remixer', 4 => 'Composer', 5 => 'Conductor', 6 => 'DJ/Compiler', 7 => 'Producer');
if (!empty($_REQUEST['action'])) {
switch ($_REQUEST['action']) {
case 'edit':
enforce_login();
include(SERVER_ROOT.'/sections/torrents/edit.php');
break;
case 'editgroup':
enforce_login();
include(SERVER_ROOT.'/sections/torrents/editgroup.php');
break;
case 'editgroupid':
enforce_login();
include(SERVER_ROOT.'/sections/torrents/editgroupid.php');
break;
case 'changecategory':
enforce_login();
include(SERVER_ROOT.'/sections/torrents/takechangecategory.php');
break;
case 'takeedit':
enforce_login();
include(SERVER_ROOT.'/sections/torrents/takeedit.php');
break;
case 'newgroup':
enforce_login();
include(SERVER_ROOT.'/sections/torrents/takenewgroup.php');
break;
case 'peerlist':
enforce_login();
include(SERVER_ROOT.'/sections/torrents/peerlist.php');
break;
case 'snatchlist':
enforce_login();
include(SERVER_ROOT.'/sections/torrents/snatchlist.php');
break;
case 'downloadlist':
enforce_login();
include(SERVER_ROOT.'/sections/torrents/downloadlist.php');
break;
case 'redownload':
enforce_login();
include(SERVER_ROOT.'/sections/torrents/redownload.php');
break;
case 'revert':
case 'takegroupedit':
enforce_login();
include(SERVER_ROOT.'/sections/torrents/takegroupedit.php');
break;
case 'nonwikiedit':
enforce_login();
include(SERVER_ROOT.'/sections/torrents/nonwikiedit.php');
break;
case 'rename':
enforce_login();
include(SERVER_ROOT.'/sections/torrents/rename.php');
break;
case 'merge':
enforce_login();
include(SERVER_ROOT.'/sections/torrents/merge.php');
break;
case 'add_alias':
enforce_login();
include(SERVER_ROOT.'/sections/torrents/add_alias.php');
break;
case 'delete_alias':
enforce_login();
authorize();
include(SERVER_ROOT.'/sections/torrents/delete_alias.php');
break;
case 'history':
enforce_login();
include(SERVER_ROOT.'/sections/torrents/history.php');
break;
case 'delete':
enforce_login();
include(SERVER_ROOT.'/sections/torrents/delete.php');
break;
case 'takedelete':
enforce_login();
include(SERVER_ROOT.'/sections/torrents/takedelete.php');
break;
case 'masspm':
enforce_login();
include(SERVER_ROOT.'/sections/torrents/masspm.php');
break;
case 'reseed':
enforce_login();
include(SERVER_ROOT.'/sections/torrents/reseed.php');
break;
case 'takemasspm':
enforce_login();
include(SERVER_ROOT.'/sections/torrents/takemasspm.php');
break;
case 'vote_tag':
enforce_login();
authorize();
include(SERVER_ROOT.'/sections/torrents/vote_tag.php');
break;
case 'add_tag':
enforce_login();
include(SERVER_ROOT.'/sections/torrents/add_tag.php');
break;
case 'delete_tag':
enforce_login();
authorize();
include(SERVER_ROOT.'/sections/torrents/delete_tag.php');
break;
case 'notify':
enforce_login();
include(SERVER_ROOT.'/sections/torrents/notify.php');
break;
case 'manage_artists':
enforce_login();
require(SERVER_ROOT.'/sections/torrents/manage_artists.php');
break;
case 'notify_clear':
case 'notify_clear_item':
case 'notify_clear_items':
case 'notify_clearitem':
case 'notify_clear_filter':
case 'notify_cleargroup':
case 'notify_catchup':
case 'notify_catchup_filter':
authorize();
enforce_login();
require(SERVER_ROOT.'/sections/torrents/notify_actions.php');
break;
case 'download':
require(SERVER_ROOT.'/sections/torrents/download.php');
break;
case 'reply':
enforce_login();
authorize();
if (!isset($_POST['groupid']) || !is_number($_POST['groupid']) || trim($_POST['body']) === '' || !isset($_POST['body'])) {
error(0);
}
if ($LoggedUser['DisablePosting']) {
error('Your posting privileges have been removed.');
}
$GroupID = $_POST['groupid'];
if (!$GroupID) {
error(404);
}
$DB->query("
SELECT
CEIL((
SELECT COUNT(ID)+1
FROM torrents_comments AS tc
WHERE tc.GroupID='".db_string($GroupID)."')/".TORRENT_COMMENTS_PER_PAGE."
) AS Pages");
list($Pages) = $DB->next_record();
$DB->query("
INSERT INTO torrents_comments (GroupID,AuthorID,AddedTime,Body)
VALUES ('".db_string($GroupID)."', '".db_string($LoggedUser['ID'])."','".sqltime()."','".db_string($_POST['body'])."')");
$PostID = $DB->inserted_id();
$CatalogueID = floor((TORRENT_COMMENTS_PER_PAGE * $Pages - TORRENT_COMMENTS_PER_PAGE) / THREAD_CATALOGUE);
$Cache->begin_transaction('torrent_comments_'.$GroupID.'_catalogue_'.$CatalogueID);
$Post = array(
'ID'=>$PostID,
'AuthorID'=>$LoggedUser['ID'],
'AddedTime'=>sqltime(),
'Body'=>$_POST['body'],
'EditedUserID'=>0,
'EditedTime'=>'0000-00-00 00:00:00',
'Username'=>''
);
$Cache->insert('', $Post);
$Cache->commit_transaction(0);
$Cache->increment('torrent_comments_'.$GroupID);
header('Location: torrents.php?id='.$GroupID.'&page='.$Pages);
break;
case 'get_post':
enforce_login();
if (!$_GET['post'] || !is_number($_GET['post'])) {
error(0);
}
$DB->query("SELECT Body FROM torrents_comments WHERE ID='".db_string($_GET['post'])."'");
list($Body) = $DB->next_record(MYSQLI_NUM);
echo trim($Body);
break;
case 'takeedit_post':
enforce_login();
authorize();
include(SERVER_ROOT.'/classes/class_text.php'); // Text formatting class
$Text = new TEXT;
// Quick SQL injection check
if (!$_POST['post'] || !is_number($_POST['post'])) {
error(0);
}
// Mainly
$DB->query("
SELECT
tc.Body,
tc.AuthorID,
tc.GroupID,
tc.AddedTime
FROM torrents_comments AS tc
WHERE tc.ID='".db_string($_POST['post'])."'");
list($OldBody, $AuthorID,$GroupID,$AddedTime) = $DB->next_record();
$DB->query("
SELECT ceil(COUNT(ID) / ".TORRENT_COMMENTS_PER_PAGE.") AS Page
FROM torrents_comments
WHERE GroupID = $GroupID
AND ID <= $_POST[post]");
list($Page) = $DB->next_record();
if ($LoggedUser['ID'] != $AuthorID && !check_perms('site_moderate_forums')) {
error(404);
}
if ($DB->record_count() == 0) {
error(404);
}
// Perform the update
$DB->query("
UPDATE torrents_comments
SET
Body = '".db_string($_POST['body'])."',
EditedUserID = '".db_string($LoggedUser['ID'])."',
EditedTime = '".sqltime()."'
WHERE ID='".db_string($_POST['post'])."'");
// Update the cache
$CatalogueID = floor((TORRENT_COMMENTS_PER_PAGE * $Page - TORRENT_COMMENTS_PER_PAGE) / THREAD_CATALOGUE);
$Cache->begin_transaction('torrent_comments_'.$GroupID.'_catalogue_'.$CatalogueID);
$Cache->update_row($_POST['key'], array(
'ID'=>$_POST['post'],
'AuthorID'=>$AuthorID,
'AddedTime'=>$AddedTime,
'Body'=>$_POST['body'],
'EditedUserID'=>db_string($LoggedUser['ID']),
'EditedTime'=>sqltime(),
'Username'=>$LoggedUser['Username']
));
$Cache->commit_transaction(0);
$DB->query("INSERT INTO comments_edits (Page, PostID, EditUser, EditTime, Body)
VALUES ('torrents', ".db_string($_POST['post']).", ".db_string($LoggedUser['ID']).", '".sqltime()."', '".db_string($OldBody)."')");
// This gets sent to the browser, which echoes it in place of the old body
echo $Text->full_format($_POST['body']);
break;
case 'delete_post':
enforce_login();
authorize();
// Quick SQL injection check
if (!$_GET['postid'] || !is_number($_GET['postid'])) {
error(0);
}
// Make sure they are moderators
if (!check_perms('site_moderate_forums')) {
error(403);
}
// Get topicid, forumid, number of pages
$DB->query("SELECT
GroupID,
CEIL(COUNT(tc.ID)/".TORRENT_COMMENTS_PER_PAGE.") AS Pages,
CEIL(SUM(IF(tc.ID<=".$_GET['postid'].",1,0))/".TORRENT_COMMENTS_PER_PAGE.") AS Page
FROM torrents_comments AS tc
WHERE tc.GroupID=(SELECT GroupID FROM torrents_comments WHERE ID=".$_GET['postid'].")
GROUP BY tc.GroupID");
list($GroupID, $Pages, $Page) = $DB->next_record();
// $Pages = number of pages in the thread
// $Page = which page the post is on
// These are set for cache clearing.
$DB->query("DELETE FROM torrents_comments WHERE ID='".db_string($_GET['postid'])."'");
//We need to clear all subsequential catalogues as they've all been bumped with the absence of this post
$ThisCatalogue = floor((TORRENT_COMMENTS_PER_PAGE * $Page - TORRENT_COMMENTS_PER_PAGE) / THREAD_CATALOGUE);
$LastCatalogue = floor((TORRENT_COMMENTS_PER_PAGE * $Pages - TORRENT_COMMENTS_PER_PAGE) / THREAD_CATALOGUE);
for ($i = $ThisCatalogue; $i <= $LastCatalogue; $i++) {
$Cache->delete('torrent_comments_'.$GroupID.'_catalogue_'.$i);
}
// Delete thread info cache (eg. number of pages)
$Cache->delete('torrent_comments_'.$GroupID);
break;
case 'regen_filelist' :
if (check_perms('users_mod') && !empty($_GET['torrentid']) && is_number($_GET['torrentid'])) {
Torrents::regenerate_filelist($_GET['torrentid']);
header('Location: torrents.php?torrentid='.$_GET['torrentid']);
die();
} else {
error(403);
}
break;
case 'fix_group' :
if ((check_perms('users_mod') || check_perms('torrents_fix_ghosts')) && authorize() && !empty($_GET['groupid']) && is_number($_GET['groupid'])) {
$DB->query("SELECT COUNT(ID) FROM torrents WHERE GroupID = ".$_GET['groupid']);
list($Count) = $DB->next_record();
if ($Count == 0) {
Torrents::delete_group($_GET['groupid']);
} else {
}
if (!empty($_GET['artistid']) && is_number($_GET['artistid'])) {
header('Location: artist.php?id='.$_GET['artistid']);
} else {
header('Location: torrents.php?id='.$_GET['groupid']);
}
} else {
error(403);
}
break;
case 'warn' :
include(SERVER_ROOT.'/sections/torrents/warn.php');
break;
case 'take_warn' :
include(SERVER_ROOT.'/sections/torrents/take_warn.php');
break;
default:
enforce_login();
if (!empty($_GET['id'])) {
include(SERVER_ROOT.'/sections/torrents/details.php');
} elseif (isset($_GET['torrentid']) && is_number($_GET['torrentid'])) {
$DB->query("SELECT GroupID FROM torrents WHERE ID=".$_GET['torrentid']);
list($GroupID) = $DB->next_record();
if ($GroupID) {
header("Location: torrents.php?id=".$GroupID."&torrentid=".$_GET['torrentid']);
}
} else {
include(SERVER_ROOT.'/sections/torrents/browse2.php');
}
break;
}
} else {
enforce_login();
if (!empty($_GET['id'])) {
include(SERVER_ROOT.'/sections/torrents/details.php');
} elseif (isset($_GET['torrentid']) && is_number($_GET['torrentid'])) {
$DB->query("SELECT GroupID FROM torrents WHERE ID=".$_GET['torrentid']);
list($GroupID) = $DB->next_record();
if ($GroupID) {
header("Location: torrents.php?id=".$GroupID."&torrentid=".$_GET['torrentid']."#torrent".$_GET['torrentid']);
} else {
header("Location: log.php?search=Torrent+$_GET[torrentid]");
}
} elseif (!empty($_GET['type'])) {
include(SERVER_ROOT.'/sections/torrents/user.php');
} elseif (!empty($_GET['groupname']) && !empty($_GET['forward'])) {
$DB->query("SELECT ID FROM torrents_group WHERE Name LIKE '".db_string($_GET['groupname'])."'");
list($GroupID) = $DB->next_record();
if ($GroupID) {
header("Location: torrents.php?id=".$GroupID);
} else {
include(SERVER_ROOT.'/sections/torrents/browse2.php');
}
} else {
include(SERVER_ROOT.'/sections/torrents/browse2.php');
}
}
?>