Home Explore Help
Register Sign In
NSHkD
/
Gazelle
forked from Oppaitime/Gazelle
Watch 1
Star 0
Fork 0
Code Issues 0 Pull Requests 0 Releases 0 Wiki Activity
Oppaitime's version of Gazelle
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
19 Commits
1 Branch
Tree: 2e283fa9f6
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '2e283fa9f6'
${ noResults }
Gazelle/sections/torrents/takeedit.php

takeedit.php 14KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441442443444445446447 
  1. <?

  2. //******************************************************************************//

  3. //--------------- Take edit ----------------------------------------------------//

  4. // This pages handles the backend of the 'edit torrent' function. It checks    //

  5. // the data, and if it all validates, it edits the values in the database    //

  6. // that correspond to the torrent in question.                  //

  7. //******************************************************************************//

  8. 

  9. enforce_login();

  10. authorize();

  11. 

  12. require(SERVER_ROOT.'/classes/validate.class.php');

  13. 

  14. $Validate = new VALIDATE;

  15. 

  16. //******************************************************************************//

  17. //--------------- Set $Properties array ----------------------------------------//

  18. // This is used if the form doesn't validate, and when the time comes to enter  //

  19. // it into the database.                            //

  20. //******************************************************************************//

  21. 

  22. $Properties=array();

  23. $_POST['type'] = $_POST['type'] + 1;

  24. $TypeID = (int)$_POST['type'];

  25. $Type = $Categories[$TypeID-1];

  26. $TorrentID = (int)$_POST['torrentid'];

  27. $Properties['Remastered'] = (isset($_POST['remaster']))? 1 : 0;

  28. if ($Properties['Remastered']) {

  29.   $Properties['UnknownRelease'] = (isset($_POST['unknown'])) ? 1 : 0;

  30. }

  31. if (!$Properties['Remastered']) {

  32.   $Properties['UnknownRelease'] = 0;

  33. }

  34. $Properties['BadTags'] = (isset($_POST['bad_tags']))? 1 : 0;

  35. $Properties['BadFolders'] = (isset($_POST['bad_folders']))? 1 : 0;

  36. $Properties['BadFiles'] = (isset($_POST['bad_files'])) ? 1 : 0;

  37. $Properties['Format'] = $_POST['format'];

  38. $Properties['Media'] = $_POST['media'];

  39. $Properties['Bitrate'] = $_POST['bitrate'];

  40. $Properties['Encoding'] = $_POST['bitrate'];

  41. $Properties['Trumpable'] = (isset($_POST['make_trumpable'])) ? 1 : 0;

  42. $Properties['TorrentDescription'] = $_POST['release_desc'];

  43. $Properties['MediaInfo'] = $_POST['mediainfo'];

  44. $Properties['Name'] = $_POST['title'];

  45. $Properties['Container'] = $_POST['container'];

  46. $Properties['Codec'] = $_POST['codec'];

  47. $Properties['Resolution'] = $_POST['resolution'];

  48. $Properties['AudioFormat'] = $_POST['audioformat'];

  49. $Properties['Subbing'] = $_POST['sub'];

  50. $Properties['Language'] = $_POST['lang'];

  51. $Properties['Subber']= $_POST['subber'];

  52. $Properties['Censored'] = (isset($_POST['censored'])) ? 1 : 0;

  53. $Properties['Archive'] = (isset($_POST['archive']) && $_POST['archive'] != '---') ? $_POST['archive'] : '';

  54. 

  55. if ($_POST['album_desc']) {

  56.   $Properties['GroupDescription'] = $_POST['album_desc'];

  57. }

  58. if (check_perms('torrents_freeleech')) {

  59.   $Free = (int)$_POST['freeleech'];

  60.   if (!in_array($Free, array(0, 1, 2))) {

  61.     error(404);

  62.   }

  63.   $Properties['FreeLeech'] = $Free;

  64. 

  65.   if ($Free == 0) {

  66.     $FreeType = 0;

  67.   } else {

  68.     $FreeType = (int)$_POST['freeleechtype'];

  69.     if (!in_array($Free, array(0, 1, 2, 3))) {

  70.       error(404);

  71.     }

  72.   }

  73.   $Properties['FreeLeechType'] = $FreeType;

  74. }

  75. 

  76. //******************************************************************************//

  77. //--------------- Validate data in edit form -----------------------------------//

  78. 

  79. /*

  80. $DB->query("

  81.   SELECT UserID, Remastered, RemasterYear, FreeTorrent

  82.   FROM torrents

  83.   WHERE ID = $TorrentID");

  84. */

  85. $DB->query("

  86.   SELECT UserID, FreeTorrent

  87.   FROM torrents

  88.   WHERE ID = $TorrentID");

  89. if (!$DB->has_results()) {

  90.   error(404);

  91. }

  92. // list($UserID, $Remastered, $RemasterYear, $CurFreeLeech) = $DB->next_record(MYSQLI_BOTH, false);

  93. list($UserID, $CurFreeLeech) = $DB->next_record(MYSQLI_BOTH, false);

  94. 

  95. if ($LoggedUser['ID'] != $UserID && !check_perms('torrents_edit')) {

  96.   error(403);

  97. }

  98. 

  99. /*

  100. if ($Remastered == '1' && !$RemasterYear && !check_perms('edit_unknowns')) {

  101.   error(403);

  102. }

  103. */

  104. 

  105. if ($Properties['UnknownRelease'] && !($Remastered == '1' && !$RemasterYear) && !check_perms('edit_unknowns')) {

  106.   //It's Unknown now, and it wasn't before

  107.   if ($LoggedUser['ID'] != $UserID) {

  108.     //Hax

  109.     die();

  110.   }

  111. }

  112. 

  113. $Validate->SetFields('type', '1', 'number', 'Not a valid type.', array('maxlength' => count($Categories), 'minlength' => 1));

  114. switch ($Type) {

  115.   case 'Music':

  116.     if (!empty($Properties['Remastered']) && !$Properties['UnknownRelease']) {

  117.       $Validate->SetFields('remaster_year', '1', 'number', 'Year of remaster/re-issue must be entered.');

  118.     } else {

  119.       $Validate->SetFields('remaster_year', '0','number', 'Invalid remaster year.');

  120.     }

  121. 

  122.     if (!empty($Properties['Remastered']) && !$Properties['UnknownRelease'] && $Properties['RemasterYear'] < 1982 && $Properties['Media'] == 'CD') {

  123.       error('You have selected a year for an album that predates the medium you say it was created on.');

  124.       header("Location: torrents.php?action=edit&id=$TorrentID");

  125.       die();

  126.     }

  127. 

  128.     $Validate->SetFields('remaster_title', '0', 'string', 'Remaster title must be between 2 and 80 characters.', array('maxlength' => 80, 'minlength' => 2));

  129. 

  130.     if ($Properties['RemasterTitle'] == 'Original Release') {

  131.       error('"Original Release" is not a valid remaster title.');

  132.       header("Location: torrents.php?action=edit&id=$TorrentID");

  133.       die();

  134.     }

  135. 

  136.     $Validate->SetFields('remaster_record_label', '0', 'string', 'Remaster record label must be between 2 and 80 characters.', array('maxlength' => 80, 'minlength' => 2));

  137. 

  138.     $Validate->SetFields('remaster_catalogue_number', '0', 'string', 'Remaster catalogue number must be between 2 and 80 characters.', array('maxlength' => 80, 'minlength' => 2));

  139. 

  140. 

  141.     $Validate->SetFields('format', '1', 'inarray', 'Not a valid format.', array('inarray' => $Formats));

  142. 

  143.     $Validate->SetFields('bitrate', '1', 'inarray', 'You must choose a bitrate.', array('inarray' => $Bitrates));

  144. 

  145. 

  146.     // Handle 'other' bitrates

  147.     if ($Properties['Encoding'] == 'Other') {

  148.       $Validate->SetFields('other_bitrate', '1', 'text', 'You must enter the other bitrate (max length: 9 characters).', array('maxlength' => 9));

  149.       $enc = trim($_POST['other_bitrate']);

  150.       if (isset($_POST['vbr'])) {

  151.         $enc .= ' (VBR)';

  152.       }

  153. 

  154.       $Properties['Encoding'] = $enc;

  155.       $Properties['Bitrate'] = $enc;

  156.     } else {

  157.       $Validate->SetFields('bitrate', '1', 'inarray', 'You must choose a bitrate.', array('inarray' => $Bitrates));

  158.     }

  159. 

  160.     $Validate->SetFields('media', '1', 'inarray', 'Not a valid media.', array('inarray' => $Media));

  161. 

  162.     $Validate->SetFields('release_desc', '0', 'string', 'Invalid release description.', array('maxlength' => 1000000, 'minlength' => 0));

  163. 

  164.     break;

  165. 

  166.   case 'Audiobooks':

  167.   case 'Comedy':

  168.     /*$Validate->SetFields('title', '1', 'string', 'Title must be between 2 and 300 characters.', array('maxlength' => 300, 'minlength' => 2));

  169.     ^ this is commented out because there is no title field on these pages*/

  170.     $Validate->SetFields('year', '1', 'number', 'The year of the release must be entered.');

  171. 

  172.     $Validate->SetFields('format', '1', 'inarray', 'Not a valid format.', array('inarray' => $Formats));

  173. 

  174.     $Validate->SetFields('bitrate', '1', 'inarray', 'You must choose a bitrate.', array('inarray' => $Bitrates));

  175. 

  176. 

  177.     // Handle 'other' bitrates

  178.     if ($Properties['Encoding'] == 'Other') {

  179.       $Validate->SetFields('other_bitrate', '1', 'text', 'You must enter the other bitrate (max length: 9 characters).', array('maxlength' => 9));

  180.       $enc = trim($_POST['other_bitrate']);

  181.       if (isset($_POST['vbr'])) {

  182.         $enc .= ' (VBR)';

  183.       }

  184. 

  185.       $Properties['Encoding'] = $enc;

  186.       $Properties['Bitrate'] = $enc;

  187.     } else {

  188.       $Validate->SetFields('bitrate', '1', 'inarray', 'You must choose a bitrate.', array('inarray' => $Bitrates));

  189.     }

  190. 

  191.     $Validate->SetFields('release_desc', '0', 'string', 'The release description has a minimum length of 10 characters.', array('maxlength' => 1000000, 'minlength' => 10));

  192. 

  193.     break;

  194. 

  195.   case 'Applications':

  196.   case 'Comics':

  197.   case 'E-Books':

  198.   case 'E-Learning Videos':

  199.     /*$Validate->SetFields('title', '1', 'string', 'Title must be between 2 and 300 characters.', array('maxlength' => 300, 'minlength' => 2));

  200.       ^ this is commented out because there is no title field on these pages*/

  201.     break;

  202. }

  203. 

  204. $Err = $Validate->ValidateForm($_POST); // Validate the form

  205. 

  206. if ($Properties['Remastered'] && !$Properties['RemasterYear']) {

  207.   //Unknown Edit!

  208.   if ($LoggedUser['ID'] == $UserID || check_perms('edit_unknowns')) {

  209.     //Fine!

  210.   } else {

  211.     $Err = "You may not edit someone else's upload to unknown release.";

  212.   }

  213. }

  214. 

  215. // Strip out Amazon's padding

  216. $AmazonReg = '/(http:\/\/ecx.images-amazon.com\/images\/.+)(\._.*_\.jpg)/i';

  217. $Matches = array();

  218. if (preg_match($RegX, $Properties['Image'], $Matches)) {

  219.   $Properties['Image'] = $Matches[1].'.jpg';

  220. }

  221. ImageTools::blacklisted($Properties['Image']);

  222. 

  223. if ($Err) { // Show the upload form, with the data the user entered

  224.   if (check_perms('site_debug')) {

  225.     die($Err);

  226.   }

  227.   error($Err);

  228. }

  229. 

  230. 

  231. //******************************************************************************//

  232. //--------------- Make variables ready for database input ----------------------//

  233. 

  234. // Shorten and escape $Properties for database input

  235. $T = array();

  236. foreach ($Properties as $Key => $Value) {

  237.   $T[$Key] = "'".db_string(trim($Value))."'";

  238.   if (!$T[$Key]) {

  239.     $T[$Key] = null;

  240.   }

  241. }

  242. 

  243. $T['Censored'] = $Properties['Censored'];

  244. 

  245. 

  246. //******************************************************************************//

  247. //--------------- Start database stuff -----------------------------------------//

  248. 

  249. $DBTorVals = array();

  250. /*

  251. $DB->query("

  252.   SELECT Media, Format, Encoding, RemasterYear, Remastered, RemasterTItle, RemasterRecordLabel, RemasterCatalogueNumber, Scene, Description

  253.   FROM torrents

  254.   WHERE ID = $TorrentID");

  255.   */

  256. $DB->query("

  257.   SELECT Media, Container, Codec, Resolution, AudioFormat, Subbing, Language, Description, MediaInfo,  Censored, Archive, Subber

  258.   FROM torrents

  259.   WHERE ID = $TorrentID");

  260. $DBTorVals = $DB->to_array(false, MYSQLI_ASSOC);

  261. $DBTorVals = $DBTorVals[0];

  262. $LogDetails = '';

  263. foreach ($DBTorVals as $Key => $Value) {

  264.   $Value = "'$Value'";

  265.   if ($Value != $T[$Key]) {

  266.     if (!isset($T[$Key])) {

  267.       continue;

  268.     }

  269.     if ((empty($Value) && empty($T[$Key])) || ($Value == "'0'" && $T[$Key] == "''")) {

  270.       continue;

  271.     }

  272.     if ($LogDetails == '') {

  273.       $LogDetails = "$Key: $Value -> ".$T[$Key];

  274.     } else {

  275.       $LogDetails = "$LogDetails, $Key: $Value -> ".$T[$Key];

  276.     }

  277.   }

  278. }

  279. $T['Censored'] = $Properties['Censored'];

  280. 

  281. // Update info for the torrent

  282. /*

  283. $SQL = "

  284.   UPDATE torrents

  285.   SET

  286.     Media = $T[Media],

  287.     Format = $T[Format],

  288.     Encoding = $T[Encoding],

  289.     RemasterYear = $T[RemasterYear],

  290.     Remastered = $T[Remastered],

  291.     RemasterTitle = $T[RemasterTitle],

  292.     RemasterRecordLabel = $T[RemasterRecordLabel],

  293.     RemasterCatalogueNumber = $T[RemasterCatalogueNumber],

  294.     Scene = $T[Scene],";

  295. */

  296. 

  297. $SQL = "

  298.   UPDATE torrents

  299.   SET

  300.     Media = $T[Media],

  301.     Container = $T[Container],

  302.     Codec = $T[Codec],

  303.     Resolution = $T[Resolution],

  304.     AudioFormat = $T[AudioFormat],

  305.     Subbing = $T[Subbing],

  306.     Language = $T[Language],

  307.     Subber = $T[Subber],

  308.     Archive = $T[Archive],

  309.     MediaInfo = $T[MediaInfo],

  310.     Censored = $T[Censored],";

  311. 

  312. if (check_perms('torrents_freeleech')) {

  313.   $SQL .= "FreeTorrent = $T[FreeLeech],";

  314.   $SQL .= "FreeLeechType = $T[FreeLeechType],";

  315. }

  316. 

  317. if (check_perms('users_mod')) {

  318. /*  if ($T[Format] != "'FLAC'") {

  319.     $SQL .= "

  320.       HasLog = '0',

  321.       HasCue = '0',";

  322.   } else {

  323.     $SQL .= "

  324.       HasLog = $T[HasLog],

  325.       HasCue = $T[HasCue],";

  326.   }

  327. */

  328.   $DB->query("

  329.     SELECT TorrentID

  330.     FROM torrents_bad_tags

  331.     WHERE TorrentID = '$TorrentID'");

  332.   list($btID) = $DB->next_record();

  333. 

  334.   if (!$btID && $Properties['BadTags']) {

  335.     $DB->query("

  336.       INSERT INTO torrents_bad_tags

  337.       VALUES ($TorrentID, $LoggedUser[ID], '".sqltime()."')");

  338.   }

  339.   if ($btID && !$Properties['BadTags']) {

  340.     $DB->query("

  341.       DELETE FROM torrents_bad_tags

  342.       WHERE TorrentID = '$TorrentID'");

  343.   }

  344. 

  345.   $DB->query("

  346.     SELECT TorrentID

  347.     FROM torrents_bad_folders

  348.     WHERE TorrentID = '$TorrentID'");

  349.   list($bfID) = $DB->next_record();

  350. 

  351.   if (!$bfID && $Properties['BadFolders']) {

  352.     $DB->query("

  353.       INSERT INTO torrents_bad_folders

  354.       VALUES ($TorrentID, $LoggedUser[ID], '".sqltime()."')");

  355.   }

  356.   if ($bfID && !$Properties['BadFolders']) {

  357.     $DB->query("

  358.       DELETE FROM torrents_bad_folders

  359.       WHERE TorrentID = '$TorrentID'");

  360.   }

  361. 

  362.   $DB->query("

  363.     SELECT TorrentID

  364.     FROM torrents_bad_files

  365.     WHERE TorrentID = '$TorrentID'");

  366.   list($bfiID) = $DB->next_record();

  367. 

  368.   if (!$bfiID && $Properties['BadFiles']) {

  369.     $DB->query("

  370.       INSERT INTO torrents_bad_files

  371.       VALUES ($TorrentID, $LoggedUser[ID], '".sqltime()."')");

  372.   }

  373.   if ($bfiID && !$Properties['BadFiles']) {

  374.     $DB->query("

  375.       DELETE FROM torrents_bad_files

  376.       WHERE TorrentID = '$TorrentID'");

  377.   }

  378. 

  379.   $DB->query("

  380.     SELECT TorrentID

  381.     FROM library_contest

  382.     WHERE TorrentID = '$TorrentID'");

  383.   list($lbID) = $DB->next_record();

  384.   if (!$lbID && $Properties['LibraryUpload'] && $Properties['LibraryPoints'] > 0) {

  385.     $DB->query("

  386.       SELECT UserID

  387.       FROM torrents

  388.       WHERE ID = $TorrentID");

  389.     list($UploaderID) = $DB->next_record();

  390.     $DB->query("

  391.       INSERT INTO library_contest

  392.       VALUES ($UploaderID, $TorrentID, $Properties[LibraryPoints])");

  393.   }

  394.   if ($lbID && !$Properties['LibraryUpload']) {

  395.     $DB->query("

  396.       DELETE FROM library_contest

  397.       WHERE TorrentID = '$TorrentID'");

  398.   }

  399. }

  400. 

  401. $SQL .= "

  402.     Description = $T[TorrentDescription]

  403.   WHERE ID = $TorrentID";

  404. $DB->query($SQL);

  405. 

  406. if (check_perms('torrents_freeleech') && $Properties['FreeLeech'] != $CurFreeLeech) {

  407.   Torrents::freeleech_torrents($TorrentID, $Properties['FreeLeech'], $Properties['FreeLeechType']);

  408. }

  409. 

  410. $DB->query("

  411.   SELECT GroupID, Time

  412.   FROM torrents

  413.   WHERE ID = '$TorrentID'");

  414. list($GroupID, $Time) = $DB->next_record();

  415. 

  416. // Competition

  417. if (strtotime($Time) > 1241352173) {

  418.   if ($_POST['log_score'] == '100') {

  419.     $DB->query("

  420.       INSERT IGNORE into users_points (GroupID, UserID, Points)

  421.       VALUES ('$GroupID', '$UserID', '1')");

  422.   }

  423. }

  424. // End competiton

  425. 

  426. $DB->query("

  427.   SELECT Enabled

  428.   FROM users_main

  429.   WHERE ID = $UserID");

  430. list($Enabled) = $DB->next_record();

  431. 

  432. $DB->query("

  433.   SELECT Name

  434.   FROM torrents_group

  435.   WHERE ID = $GroupID");

  436. list($Name) = $DB->next_record(MYSQLI_NUM, false);

  437. 

  438. Misc::write_log("Torrent $TorrentID ($Name) in group $GroupID was edited by ".$LoggedUser['Username']." ($LogDetails)"); // TODO: this is probably broken

  439. Torrents::write_group_log($GroupID, $TorrentID, $LoggedUser['ID'], $LogDetails, 0);

  440. $Cache->delete_value("torrents_details_$GroupID");

  441. $Cache->delete_value("torrent_download_$TorrentID");

  442. 

  443. Torrents::update_hash($GroupID);

  444. // All done!

  445. 

  446. header("Location: torrents.php?id=$GroupID");

  447. ?>