Home Explore Help
Register Sign In
Oppaitime
/
Gazelle
Watch 9
Star 11
Fork 18
Code Issues 21 Pull Requests 7 Releases 0 Wiki Activity
Oppaitime's version of Gazelle
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
470 Commits
1 Branch
Tree: 83c5b4fae3
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '83c5b4fae3'
${ noResults }
Gazelle/sections/torrents/takeedit.php

takeedit.php 14KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441442443444445 
  1. <?

  2. //******************************************************************************//

  3. //--------------- Take edit ----------------------------------------------------//

  4. // This pages handles the backend of the 'edit torrent' function. It checks     //

  5. // the data, and if it all validates, it edits the values in the database       //

  6. // that correspond to the torrent in question.                                  //

  7. //******************************************************************************//

  8. 

  9. enforce_login();

  10. authorize();

  11. 

  12. require_once(SERVER_ROOT.'/classes/validate.class.php');

  13. 

  14. $Validate = new VALIDATE;

  15. 

  16. //******************************************************************************//

  17. //--------------- Set $Properties array ----------------------------------------//

  18. // This is used if the form doesn't validate, and when the time comes to enter  //

  19. // it into the database.                                                        //

  20. //******************************************************************************//

  21. 

  22. $Properties=[];

  23. $_POST['type'] = $_POST['type'] + 1;

  24. $TypeID = (int)$_POST['type'];

  25. $Type = $Categories[$TypeID-1];

  26. $TorrentID = (int)$_POST['torrentid'];

  27. $Properties['Remastered'] = (isset($_POST['remaster']))? 1 : 0;

  28. if ($Properties['Remastered']) {

  29.   $Properties['UnknownRelease'] = (isset($_POST['unknown'])) ? 1 : 0;

  30. }

  31. if (!$Properties['Remastered']) {

  32.   $Properties['UnknownRelease'] = 0;

  33. }

  34. $Properties['BadTags'] = (isset($_POST['bad_tags']))? 1 : 0;

  35. $Properties['BadFolders'] = (isset($_POST['bad_folders']))? 1 : 0;

  36. $Properties['BadFiles'] = (isset($_POST['bad_files'])) ? 1 : 0;

  37. $Properties['Format'] = $_POST['format'];

  38. $Properties['Media'] = $_POST['media'];

  39. $Properties['Bitrate'] = $_POST['bitrate'];

  40. $Properties['Encoding'] = $_POST['bitrate'];

  41. $Properties['Trumpable'] = (isset($_POST['make_trumpable'])) ? 1 : 0;

  42. $Properties['TorrentDescription'] = $_POST['release_desc'];

  43. $Properties['MediaInfo'] = $_POST['mediainfo'];

  44. $Properties['Name'] = $_POST['title'];

  45. $Properties['Container'] = $_POST['container'];

  46. $Properties['Codec'] = $_POST['codec'];

  47. $Properties['Resolution'] = $_POST['resolution'];

  48. $Properties['AudioFormat'] = $_POST['audioformat'];

  49. $Properties['Subbing'] = $_POST['sub'];

  50. $Properties['Language'] = $_POST['lang'];

  51. $Properties['Subber']= $_POST['subber'];

  52. $Properties['Censored'] = (isset($_POST['censored'])) ? '1' : '0';

  53. $Properties['Anonymous'] = (isset($_POST['anonymous'])) ? '1' : '0';

  54. $Properties['Archive'] = (isset($_POST['archive']) && $_POST['archive'] != '---') ? $_POST['archive'] : '';

  55. 

  56. if ($_POST['album_desc']) {

  57.   $Properties['GroupDescription'] = $_POST['album_desc'];

  58. }

  59. if (check_perms('torrents_freeleech')) {

  60.   $Free = (int)$_POST['freeleech'];

  61.   if (!in_array($Free, array(0, 1, 2))) {

  62.     error(404);

  63.   }

  64.   $Properties['FreeLeech'] = $Free;

  65. 

  66.   if ($Free == 0) {

  67.     $FreeType = 0;

  68.   } else {

  69.     $FreeType = (int)$_POST['freeleechtype'];

  70.     if (!in_array($Free, array(0, 1, 2, 3))) {

  71.       error(404);

  72.     }

  73.   }

  74.   $Properties['FreeLeechType'] = $FreeType;

  75. }

  76. 

  77. //******************************************************************************//

  78. //--------------- Validate data in edit form -----------------------------------//

  79. 

  80. /*

  81. $DB->query("

  82.   SELECT UserID, Remastered, RemasterYear, FreeTorrent

  83.   FROM torrents

  84.   WHERE ID = $TorrentID");

  85. */

  86. $DB->query("

  87.   SELECT UserID, FreeTorrent

  88.   FROM torrents

  89.   WHERE ID = $TorrentID");

  90. if (!$DB->has_results()) {

  91.   error(404);

  92. }

  93. // list($UserID, $Remastered, $RemasterYear, $CurFreeLeech) = $DB->next_record(MYSQLI_BOTH, false);

  94. list($UserID, $CurFreeLeech) = $DB->next_record(MYSQLI_BOTH, false);

  95. 

  96. if ($LoggedUser['ID'] != $UserID && !check_perms('torrents_edit')) {

  97.   error(403);

  98. }

  99. 

  100. /*

  101. if ($Remastered == '1' && !$RemasterYear && !check_perms('edit_unknowns')) {

  102.   error(403);

  103. }

  104. */

  105. 

  106. if ($Properties['UnknownRelease'] && !($Remastered == '1' && !$RemasterYear) && !check_perms('edit_unknowns')) {

  107.   //It's Unknown now, and it wasn't before

  108.   if ($LoggedUser['ID'] != $UserID) {

  109.     //Hax

  110.     die();

  111.   }

  112. }

  113. 

  114. $Validate->SetFields('type', '1', 'number', 'Not a valid type.', array('maxlength' => count($Categories), 'minlength' => 1));

  115. switch ($Type) {

  116.   case 'Music':

  117.     if (!empty($Properties['Remastered']) && !$Properties['UnknownRelease']) {

  118.       $Validate->SetFields('remaster_year', '1', 'number', 'Year of remaster/re-issue must be entered.');

  119.     } else {

  120.       $Validate->SetFields('remaster_year', '0','number', 'Invalid remaster year.');

  121.     }

  122. 

  123.     if (!empty($Properties['Remastered']) && !$Properties['UnknownRelease'] && $Properties['RemasterYear'] < 1982 && $Properties['Media'] == 'CD') {

  124.       error('You have selected a year for an album that predates the medium you say it was created on.');

  125.       header("Location: torrents.php?action=edit&id=$TorrentID");

  126.       die();

  127.     }

  128. 

  129.     $Validate->SetFields('remaster_title', '0', 'string', 'Remaster title must be between 2 and 80 characters.', array('maxlength' => 80, 'minlength' => 2));

  130. 

  131.     if ($Properties['RemasterTitle'] == 'Original Release') {

  132.       error('"Original Release" is not a valid remaster title.');

  133.       header("Location: torrents.php?action=edit&id=$TorrentID");

  134.       die();

  135.     }

  136. 

  137.     $Validate->SetFields('remaster_record_label', '0', 'string', 'Remaster record label must be between 2 and 80 characters.', array('maxlength' => 80, 'minlength' => 2));

  138. 

  139.     $Validate->SetFields('remaster_catalogue_number', '0', 'string', 'Remaster catalogue number must be between 2 and 80 characters.', array('maxlength' => 80, 'minlength' => 2));

  140. 

  141. 

  142.     $Validate->SetFields('format', '1', 'inarray', 'Not a valid format.', array('inarray' => $Formats));

  143. 

  144.     $Validate->SetFields('bitrate', '1', 'inarray', 'You must choose a bitrate.', array('inarray' => $Bitrates));

  145. 

  146. 

  147.     // Handle 'other' bitrates

  148.     if ($Properties['Encoding'] == 'Other') {

  149.       $Validate->SetFields('other_bitrate', '1', 'text', 'You must enter the other bitrate (max length: 9 characters).', array('maxlength' => 9));

  150.       $enc = trim($_POST['other_bitrate']);

  151.       if (isset($_POST['vbr'])) {

  152.         $enc .= ' (VBR)';

  153.       }

  154. 

  155.       $Properties['Encoding'] = $enc;

  156.       $Properties['Bitrate'] = $enc;

  157.     } else {

  158.       $Validate->SetFields('bitrate', '1', 'inarray', 'You must choose a bitrate.', array('inarray' => $Bitrates));

  159.     }

  160. 

  161.     $Validate->SetFields('media', '1', 'inarray', 'Not a valid media.', array('inarray' => $Media));

  162. 

  163.     $Validate->SetFields('release_desc', '0', 'string', 'Invalid release description.', array('maxlength' => 1000000, 'minlength' => 0));

  164. 

  165.     break;

  166. 

  167.   case 'Audiobooks':

  168.   case 'Comedy':

  169.     /*$Validate->SetFields('title', '1', 'string', 'Title must be between 2 and 300 characters.', array('maxlength' => 300, 'minlength' => 2));

  170.     ^ this is commented out because there is no title field on these pages*/

  171.     $Validate->SetFields('year', '1', 'number', 'The year of the release must be entered.');

  172. 

  173.     $Validate->SetFields('format', '1', 'inarray', 'Not a valid format.', array('inarray' => $Formats));

  174. 

  175.     $Validate->SetFields('bitrate', '1', 'inarray', 'You must choose a bitrate.', array('inarray' => $Bitrates));

  176. 

  177. 

  178.     // Handle 'other' bitrates

  179.     if ($Properties['Encoding'] == 'Other') {

  180.       $Validate->SetFields('other_bitrate', '1', 'text', 'You must enter the other bitrate (max length: 9 characters).', array('maxlength' => 9));

  181.       $enc = trim($_POST['other_bitrate']);

  182.       if (isset($_POST['vbr'])) {

  183.         $enc .= ' (VBR)';

  184.       }

  185. 

  186.       $Properties['Encoding'] = $enc;

  187.       $Properties['Bitrate'] = $enc;

  188.     } else {

  189.       $Validate->SetFields('bitrate', '1', 'inarray', 'You must choose a bitrate.', array('inarray' => $Bitrates));

  190.     }

  191. 

  192.     $Validate->SetFields('release_desc', '0', 'string', 'The release description has a minimum length of 10 characters.', array('maxlength' => 1000000, 'minlength' => 10));

  193. 

  194.     break;

  195. 

  196.   case 'Applications':

  197.   case 'Comics':

  198.   case 'E-Books':

  199.   case 'E-Learning Videos':

  200.     /*$Validate->SetFields('title', '1', 'string', 'Title must be between 2 and 300 characters.', array('maxlength' => 300, 'minlength' => 2));

  201.       ^ this is commented out because there is no title field on these pages*/

  202.     break;

  203. }

  204. 

  205. $Err = $Validate->ValidateForm($_POST); // Validate the form

  206. 

  207. if ($Properties['Remastered'] && !$Properties['RemasterYear']) {

  208.   //Unknown Edit!

  209.   if ($LoggedUser['ID'] == $UserID || check_perms('edit_unknowns')) {

  210.     //Fine!

  211.   } else {

  212.     $Err = "You may not edit someone else's upload to unknown release.";

  213.   }

  214. }

  215. 

  216. // Strip out Amazon's padding

  217. $AmazonReg = '/(http:\/\/ecx.images-amazon.com\/images\/.+)(\._.*_\.jpg)/i';

  218. $Matches = [];

  219. if (preg_match($RegX, $Properties['Image'], $Matches)) {

  220.   $Properties['Image'] = $Matches[1].'.jpg';

  221. }

  222. ImageTools::blacklisted($Properties['Image']);

  223. 

  224. if ($Err) { // Show the upload form, with the data the user entered

  225.   if (check_perms('site_debug')) {

  226.     die($Err);

  227.   }

  228.   error($Err);

  229. }

  230. 

  231. 

  232. //******************************************************************************//

  233. //--------------- Make variables ready for database input ----------------------//

  234. 

  235. // Shorten and escape $Properties for database input

  236. $T = [];

  237. foreach ($Properties as $Key => $Value) {

  238.   $T[$Key] = "'".db_string(trim($Value))."'";

  239.   if (!$T[$Key]) {

  240.     $T[$Key] = null;

  241.   }

  242. }

  243. 

  244. $T['Censored'] = $Properties['Censored'];

  245. $T['Anonymous'] = $Properties['Anonymous'];

  246. 

  247. 

  248. //******************************************************************************//

  249. //--------------- Start database stuff -----------------------------------------//

  250. 

  251. $DBTorVals = [];

  252. $DB->query("

  253.   SELECT Media, Container, Codec, Resolution, AudioFormat, Subbing, Language, Description, MediaInfo, Censored, Anonymous, Archive, Subber

  254.   FROM torrents

  255.   WHERE ID = $TorrentID");

  256. $DBTorVals = $DB->to_array(false, MYSQLI_ASSOC);

  257. $DBTorVals = $DBTorVals[0];

  258. $LogDetails = '';

  259. foreach ($DBTorVals as $Key => $Value) {

  260.   $Value = "'$Value'";

  261.   if ($Value != $T[$Key]) {

  262.     if (!isset($T[$Key])) {

  263.       continue;

  264.     }

  265.     if ((empty($Value) && empty($T[$Key])) || ($Value == "'0'" && $T[$Key] == "''")) {

  266.       continue;

  267.     }

  268.     if ($LogDetails == '') {

  269.       $LogDetails = "$Key: $Value -> ".$T[$Key];

  270.     } else {

  271.       $LogDetails = "$LogDetails, $Key: $Value -> ".$T[$Key];

  272.     }

  273.   }

  274. }

  275. $T['Censored'] = $Properties['Censored'];

  276. $T['Anonymous'] = $Properties['Anonymous'];

  277. 

  278. // Update info for the torrent

  279. /*

  280. $SQL = "

  281.   UPDATE torrents

  282.   SET

  283.     Media = $T[Media],

  284.     Format = $T[Format],

  285.     Encoding = $T[Encoding],

  286.     RemasterYear = $T[RemasterYear],

  287.     Remastered = $T[Remastered],

  288.     RemasterTitle = $T[RemasterTitle],

  289.     RemasterRecordLabel = $T[RemasterRecordLabel],

  290.     RemasterCatalogueNumber = $T[RemasterCatalogueNumber],

  291.     Scene = $T[Scene],";

  292. */

  293. 

  294. $SQL = "

  295.   UPDATE torrents

  296.   SET

  297.     Media = $T[Media],

  298.     Container = $T[Container],

  299.     Codec = $T[Codec],

  300.     Resolution = $T[Resolution],

  301.     AudioFormat = $T[AudioFormat],

  302.     Subbing = $T[Subbing],

  303.     Language = $T[Language],

  304.     Subber = $T[Subber],

  305.     Archive = $T[Archive],

  306.     MediaInfo = $T[MediaInfo],

  307.     Censored = $T[Censored],

  308.     Anonymous = $T[Anonymous],";

  309. 

  310. if (check_perms('torrents_freeleech')) {

  311.   $SQL .= "FreeTorrent = $T[FreeLeech],";

  312.   $SQL .= "FreeLeechType = $T[FreeLeechType],";

  313. }

  314. 

  315. if (check_perms('users_mod')) {

  316. /*  if ($T[Format] != "'FLAC'") {

  317.     $SQL .= "

  318.       HasLog = '0',

  319.       HasCue = '0',";

  320.   } else {

  321.     $SQL .= "

  322.       HasLog = $T[HasLog],

  323.       HasCue = $T[HasCue],";

  324.   }

  325. */

  326.   $DB->query("

  327.     SELECT TorrentID

  328.     FROM torrents_bad_tags

  329.     WHERE TorrentID = '$TorrentID'");

  330.   list($btID) = $DB->next_record();

  331. 

  332.   if (!$btID && $Properties['BadTags']) {

  333.     $DB->query("

  334.       INSERT INTO torrents_bad_tags

  335.       VALUES ($TorrentID, $LoggedUser[ID], NOW())");

  336.   }

  337.   if ($btID && !$Properties['BadTags']) {

  338.     $DB->query("

  339.       DELETE FROM torrents_bad_tags

  340.       WHERE TorrentID = '$TorrentID'");

  341.   }

  342. 

  343.   $DB->query("

  344.     SELECT TorrentID

  345.     FROM torrents_bad_folders

  346.     WHERE TorrentID = '$TorrentID'");

  347.   list($bfID) = $DB->next_record();

  348. 

  349.   if (!$bfID && $Properties['BadFolders']) {

  350.     $DB->query("

  351.       INSERT INTO torrents_bad_folders

  352.       VALUES ($TorrentID, $LoggedUser[ID], NOW())");

  353.   }

  354.   if ($bfID && !$Properties['BadFolders']) {

  355.     $DB->query("

  356.       DELETE FROM torrents_bad_folders

  357.       WHERE TorrentID = '$TorrentID'");

  358.   }

  359. 

  360.   $DB->query("

  361.     SELECT TorrentID

  362.     FROM torrents_bad_files

  363.     WHERE TorrentID = '$TorrentID'");

  364.   list($bfiID) = $DB->next_record();

  365. 

  366.   if (!$bfiID && $Properties['BadFiles']) {

  367.     $DB->query("

  368.       INSERT INTO torrents_bad_files

  369.       VALUES ($TorrentID, $LoggedUser[ID], NOW())");

  370.   }

  371.   if ($bfiID && !$Properties['BadFiles']) {

  372.     $DB->query("

  373.       DELETE FROM torrents_bad_files

  374.       WHERE TorrentID = '$TorrentID'");

  375.   }

  376. 

  377.   $DB->query("

  378.     SELECT TorrentID

  379.     FROM library_contest

  380.     WHERE TorrentID = '$TorrentID'");

  381.   list($lbID) = $DB->next_record();

  382.   if (!$lbID && $Properties['LibraryUpload'] && $Properties['LibraryPoints'] > 0) {

  383.     $DB->query("

  384.       SELECT UserID

  385.       FROM torrents

  386.       WHERE ID = $TorrentID");

  387.     list($UploaderID) = $DB->next_record();

  388.     $DB->query("

  389.       INSERT INTO library_contest

  390.       VALUES ($UploaderID, $TorrentID, $Properties[LibraryPoints])");

  391.   }

  392.   if ($lbID && !$Properties['LibraryUpload']) {

  393.     $DB->query("

  394.       DELETE FROM library_contest

  395.       WHERE TorrentID = '$TorrentID'");

  396.   }

  397. }

  398. 

  399. $SQL .= "

  400.     Description = $T[TorrentDescription]

  401.   WHERE ID = $TorrentID";

  402. $DB->query($SQL);

  403. 

  404. if (check_perms('torrents_freeleech') && $Properties['FreeLeech'] != $CurFreeLeech) {

  405.   Torrents::freeleech_torrents($TorrentID, $Properties['FreeLeech'], $Properties['FreeLeechType']);

  406. }

  407. 

  408. $DB->query("

  409.   SELECT GroupID, Time

  410.   FROM torrents

  411.   WHERE ID = '$TorrentID'");

  412. list($GroupID, $Time) = $DB->next_record();

  413. 

  414. // Competition

  415. if (strtotime($Time) > 1241352173) {

  416.   if ($_POST['log_score'] == '100') {

  417.     $DB->query("

  418.       INSERT IGNORE into users_points (GroupID, UserID, Points)

  419.       VALUES ('$GroupID', '$UserID', '1')");

  420.   }

  421. }

  422. // End competiton

  423. 

  424. $DB->query("

  425.   SELECT Enabled

  426.   FROM users_main

  427.   WHERE ID = $UserID");

  428. list($Enabled) = $DB->next_record();

  429. 

  430. $DB->query("

  431.   SELECT Name

  432.   FROM torrents_group

  433.   WHERE ID = $GroupID");

  434. list($Name) = $DB->next_record(MYSQLI_NUM, false);

  435. 

  436. Misc::write_log("Torrent $TorrentID ($Name) in group $GroupID was edited by ".$LoggedUser['Username']." ($LogDetails)"); // TODO: this is probably broken

  437. Torrents::write_group_log($GroupID, $TorrentID, $LoggedUser['ID'], $LogDetails, 0);

  438. $Cache->delete_value("torrents_details_$GroupID");

  439. $Cache->delete_value("torrent_download_$TorrentID");

  440. 

  441. Torrents::update_hash($GroupID);

  442. // All done!

  443. 

  444. header("Location: torrents.php?id=$GroupID");

  445. ?>