Home Explore Help
Register Sign In
biotorrents
/
Gazelle
forked from Oppaitime/Gazelle
Watch 2
Star 0
Fork 0
Code Issues 0 Pull Requests 0 Releases 2 Wiki Activity
BioTorrents.de’s version of Gazelle
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
1097 Commits
2 Branches
Tree: cfaf71c803
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'cfaf71c803'
${ noResults }
Gazelle/classes/paranoia.class.php

paranoia.class.php 4.2KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116 
  1. <?php

  2. #declare(strict_types=1);

  3. 

  4. // Note: at the time this file is loaded, check_perms is not defined.

  5. // Don't call check_paranoia in /classes/script_start.php without ensuring check_perms has been defined

  6. 

  7. // The following are used throughout the site:

  8. // uploaded, ratio, downloaded: stats

  9. // lastseen: approximate time the user last used the site

  10. // uploads: the full list of the user's uploads

  11. // uploads+: just how many torrents the user has uploaded

  12. // snatched, seeding, leeching: the list of the user's snatched torrents, seeding torrents, and leeching torrents respectively

  13. // snatched+, seeding+, leeching+: the length of those lists respectively

  14. // uniquegroups, perfectflacs: the list of the user's uploads satisfying a particular criterion

  15. // uniquegroups+, perfectflacs+: the length of those lists

  16. // If "uploads+" is disallowed, so is "uploads". So if "uploads" is in the array, the user is a little paranoid, "uploads+", very paranoid.

  17. 

  18. // The following are almost only used in /sections/user/user.php:

  19. // requiredratio

  20. // requestsfilled_count: the number of requests the user has filled

  21. //   requestsfilled_bounty: the bounty thus earned

  22. //   requestsfilled_list: the actual list of requests the user has filled

  23. // requestsvoted_...: similar

  24. // artistsadded: the number of artists the user has added

  25. // torrentcomments: the list of comments the user has added to torrents

  26. //   +

  27. // collages: the list of collages the user has created

  28. //   +

  29. // collagecontribs: the list of collages the user has contributed to

  30. //   +

  31. // invitedcount: the number of users this user has directly invited

  32. 

  33. /**

  34.  * Return whether currently logged in user can see $Property on a user with $Paranoia, $UserClass and (optionally) $UserID

  35.  * If $Property is an array of properties, returns whether currently logged in user can see *all* $Property ...

  36.  *

  37.  * @param $Property The property to check, or an array of properties.

  38.  * @param $Paranoia The paranoia level to check against.

  39.  * @param $UserClass The user class to check against (Staff can see through paranoia of lower classed staff)

  40.  * @param $UserID Optional. The user ID of the person being viewed

  41.  * @return mixed 1 representing the user has normal access

  42.  *               2 representing that the paranoia was overridden,

  43.  *               false representing access denied.

  44.  */

  45. define("PARANOIA_ALLOWED", 1);

  46. define("PARANOIA_OVERRIDDEN", 2);

  47. 

  48. function check_paranoia($Property, $Paranoia = false, $UserClass = false, $UserID = false)

  49. {

  50.     global $Classes;

  51.     if ($Property == false) {

  52.         return false;

  53.     }

  54. 

  55.     if (!is_array($Paranoia)) {

  56.         $Paranoia = json_decode($Paranoia, true);

  57.     }

  58. 

  59.     if (!is_array($Paranoia)) {

  60.         $Paranoia = [];

  61.     }

  62. 

  63.     if (is_array($Property)) {

  64.         $all = true;

  65.         foreach ($Property as $P) {

  66.             $all = $all && check_paranoia($P, $Paranoia, $UserClass, $UserID);

  67.         }

  68.         return $all;

  69.     } else {

  70.         if (($UserID !== false) && (G::$LoggedUser['ID'] == $UserID)) {

  71.             return PARANOIA_ALLOWED;

  72.         }

  73. 

  74.         $May = !in_array($Property, $Paranoia) && !in_array($Property . '+', $Paranoia);

  75.         if ($May) {

  76.             return PARANOIA_ALLOWED;

  77.         }

  78. 

  79.         if (check_perms('users_override_paranoia', $UserClass)) {

  80.             return PARANOIA_OVERRIDDEN;

  81.         }

  82. 

  83.         $Override=false;

  84.         switch ($Property) {

  85.           case 'downloaded':

  86.           case 'ratio':

  87.           case 'uploaded':

  88.           case 'lastseen':

  89.             if (check_perms('users_mod', $UserClass)) {

  90.                 return PARANOIA_OVERRIDDEN;

  91.             }

  92.             break;

  93. 

  94.           case 'snatched': case 'snatched+':

  95.             if (check_perms('users_view_torrents_snatchlist', $UserClass)) {

  96.                 return PARANOIA_OVERRIDDEN;

  97.             }

  98.             break;

  99. 

  100.           case 'uploads': case 'uploads+':

  101.           case 'seeding': case 'seeding+':

  102.           case 'leeching': case 'leeching+':

  103.             if (check_perms('users_view_seedleech', $UserClass)) {

  104.                 return PARANOIA_OVERRIDDEN;

  105.             }

  106.             break;

  107.             

  108.           case 'invitedcount':

  109.             if (check_perms('users_view_invites', $UserClass)) {

  110.                 return PARANOIA_OVERRIDDEN;

  111.             }

  112.             break;

  113.         }

  114.         return false;

  115.     }

  116. }