Home Explore Help
Register Sign In
NSHkD
/
Gazelle
forked from Oppaitime/Gazelle
Watch 1
Star 0
Fork 0
Code Issues 0 Pull Requests 0 Releases 0 Wiki Activity
Oppaitime's version of Gazelle
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
212 Commits
1 Branch
Tree: 268f9f3627
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '268f9f3627'
${ noResults }
Gazelle/sections/torrents/screenshotedit.php

screenshotedit.php 2.7KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100 
  1. <?

  2. 

  3. authorize();

  4. 

  5. if (!$_POST['groupid'] || !is_number($_POST['groupid'])) {

  6.   error(404);

  7. }

  8. $GroupID = $_POST['groupid'];

  9. 

  10. if (!check_perms('torrents_edit') && !check_perms('screenshots_add') && !check_perms('screenshots_delete')) {

  11.   $DB->query("

  12.     SELECT UserID

  13.     FROM torrents

  14.     WHERE GroupID = $GroupID");

  15.   if (!in_array($LoggedUser['ID'], $DB->collect('UserID'))) {

  16.     error(403);

  17.   }

  18. }

  19. 

  20. $Screenshots = isset($_POST['screenshots']) ? $_POST['screenshots'] : array();

  21. 

  22. if (count($Screenshots) > 10) {

  23.   error(0);

  24. }

  25. 

  26. $ScreenshotsEscaped = array();

  27. 

  28. foreach ($Screenshots as $i => $Screenshot) {

  29.   if (!preg_match('/^'.IMAGE_REGEX.'$/i', trim($Screenshot)))

  30.     error(0);

  31.   $Screenshots[$i] = db_string(trim($Screenshot));

  32. }

  33. 

  34. $DB->query("

  35.   SELECT UserID, Image

  36.   FROM torrents_screenshots

  37.   WHERE GroupID = $GroupID");

  38. 

  39. // $Old is an array of the form URL => UserID where UserID is the ID of the User who originally uploaded that image.

  40. $Old = array();

  41. if ($DB->has_results()) {

  42.   while($S = $DB->next_record(MYSQLI_ASSOC)) {

  43.     $Old[$S['Image']] = $S['UserID'];

  44.   }

  45. }

  46. 

  47. if (!empty($Old)) {

  48.   $New = array_diff($Screenshots, array_keys($Old));

  49.   $Deleted = array_diff(array_keys($Old), $Screenshots);

  50. } else {

  51.   $New = $Screenshots;

  52. }

  53. 

  54. // Deletion

  55. if (!empty($Deleted)) {

  56.   $sql = "DELETE FROM torrents_screenshots WHERE Image IN ('";

  57. 

  58.   if (check_perms('screenshots_delete') || check_perms('torrents_edit')) {

  59.     $DeleteList = $Deleted;

  60.   } else {

  61.     $DeleteList = array();

  62.     foreach ($Deleted as $S) {

  63.       // If the user who submitted this request uploaded the image, add the image to the list.

  64.       if ($Old[$S] == $LoggedUser['ID']) {

  65.         $DeleteList[] = $S;

  66.       } else {

  67.         error(403);

  68.       }

  69.     }

  70.   }

  71. 

  72.   if (!empty($DeleteList)) {

  73.     $sql .= implode("', '", $DeleteList) . "')";

  74.     $DB->query($sql);

  75.   }

  76. 

  77. }

  78. 

  79. // New screenshots

  80. foreach ($New as $Screenshot) {

  81.   $DB->query("

  82.     INSERT INTO torrents_screenshots

  83.       (GroupID, UserID, Time, Image)

  84.     VALUES

  85.       ($GroupID, $LoggedUser[ID], '".sqltime()."', '$Screenshot')");

  86. }

  87. 

  88. if (!empty($New)) {

  89.   Torrents::write_group_log($GroupID, 0, $LoggedUser['ID'], "Added screenshot(s) ".implode(' , ', $New), 0);

  90.   Misc::write_log("Screenshots ( ".implode(' , ', $New)." ) added to Torrent Group ".$GroupID." by ".$LoggedUser['Username']);

  91. }

  92. if (!empty($DeleteList)) {

  93.   Torrents::write_group_log($GroupID, 0, $LoggedUser['ID'], "Deleted screenshot(s) ".implode(' , ', $DeleteList), 0);

  94.   Misc::write_log("Screenshots ( ".implode(' , ', $DeleteList)." ) deleted from Torrent Group ".$GroupID." by ".$LoggedUser['Username']);

  95. }

  96. 

  97. $Cache->delete_value("torrents_details_".$GroupID);

  98. header("Location: torrents.php?id=$GroupID");

  99. 

  100. ?>