Home Explore Help
Register Sign In
biotorrents
/
Gazelle
forked from Oppaitime/Gazelle
Watch 2
Star 0
Fork 0
Code Issues 0 Pull Requests 0 Releases 2 Wiki Activity
BioTorrents.de’s version of Gazelle
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
1100 Commits
2 Branches
Tree: f16b4bbfe2
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'f16b4bbfe2'
${ noResults }
Gazelle/sections/torrents/takegroupedit.php

takegroupedit.php 5.7KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257 
  1. <?php

  2. declare(strict_types = 1);

  3. 

  4. /**

  5.  * Input validation

  6.  */

  7. 

  8. # User permissions

  9. authorize();

  10. 

  11. if (!check_perms('site_edit_wiki')) {

  12.     error(403);

  13. }

  14. 

  15. # Variables for database input

  16. $user_id = (int) $LoggedUser['ID'];

  17. $group_id = (int) $_REQUEST['groupid'];

  18. Security::checkInt([$user_id, $group_id]);

  19. 

  20. # If we're reverting to a previous revision

  21. if (!empty($_GET['action']) && $_GET['action'] === 'revert') {

  22.     $revision_id = (int) $_GET['revisionid'];

  23.     Security::checkInt($revision_id);

  24. 

  25.     # To cite from merge: "Everything is legit, let's just confim they're not retarded"

  26.     if (empty($_GET['confirm'])) {

  27.         View::show_header();

  28.     } ?>

  29. 

  30. <div class="center">

  31.   <div class="header">

  32.     <h2>

  33.       Revert Confirm!

  34.     </h2>

  35.   </div>

  36. 

  37.   <div class="box">

  38.     <form class="confirm_form" name="torrent_group" action="torrents.php" method="get">

  39.       <input type="hidden" name="action" value="revert" />

  40.       <input type="hidden" name="auth"

  41.         value="<?=$LoggedUser['AuthKey']?>" />

  42.       <input type="hidden" name="confirm" value="true" />

  43.       <input type="hidden" name="groupid" value="<?=$group_id?>" />

  44.       <input type="hidden" name="revisionid"

  45.         value="<?=$revision_id?>" />

  46. 

  47.       <h3>

  48.         You are attempting to revert to the revision

  49.         <a

  50.           href="torrents.php?id=<?=$group_id?>&amp;revisionid=<?=$revision_id?>"><?=$revision_id?></a>.

  51.       </h3>

  52.       <input type="submit" value="Confirm" />

  53.     </form>

  54.   </div>

  55. </div>

  56. 

  57. <?php

  58.     View::show_footer();

  59.     error();

  60. }

  61. 

  62. 

  63. # With edit, the variables are passed with POST

  64. else {

  65.     $description = $_POST['body'];

  66.     $picture = $_POST['image'];

  67. 

  68.     if (($GroupInfo = $Cache->get_value('torrents_details_'.$group_id)) && !isset($GroupInfo[0][0])) {

  69.         $GroupCategoryID = $GroupInfo[0]['category_id'];

  70.     } else {

  71.         $DB->query("

  72.         SELECT

  73.           `category_id`

  74.         FROM

  75.           `torrents_group`

  76.         WHERE

  77.           `id` = '$group_id'

  78.         ");

  79.         list($GroupCategoryID) = $DB->next_record();

  80.     }

  81. 

  82.     // Trickery

  83.     if (!preg_match("/^".IMAGE_REGEX."$/i", $picture)) {

  84.         $picture = '';

  85.     }

  86. 

  87.     ImageTools::blacklisted($picture);

  88.     $Summary = db_string($_POST['summary']);

  89. }

  90. 

  91. // Insert revision

  92. if (empty($revision_id)) { // edit

  93.   $DB->prepare_query("

  94.   INSERT INTO `wiki_torrents`(

  95.     `PageID`,

  96.     `Body`,

  97.     `Image`,

  98.     `UserID`,

  99.     `Summary`,

  100.     `Time`

  101.   )

  102.   VALUES(

  103.     '$group_id',

  104.     '$description',

  105.     '$picture',

  106.     '$user_id',

  107.     '$Summary',

  108.     NOW()

  109.   )

  110.   ");

  111.     $DB->exec_prepared_query();

  112. } else { // revert

  113.     $DB->query("

  114.     SELECT

  115.       `PageID`,

  116.       `Body`,

  117.       `Image`

  118.     FROM

  119.       `wiki_torrents`

  120.     WHERE

  121.       `RevisionID` = '$revision_id'

  122.     ");

  123.     list($PossibleGroupID, $Body, $Image) = $DB->next_record();

  124. 

  125.     if ($PossibleGroupID !== $group_id) {

  126.         error(404);

  127.     }

  128. 

  129.     $DB->query("

  130.     INSERT INTO `wiki_torrents`(

  131.       `PageID`,

  132.       `Body`,

  133.       `Image`,

  134.       `UserID`,

  135.       `Summary`,

  136.       `Time`

  137.     )

  138.     SELECT

  139.       '$group_id',

  140.       `Body`,

  141.       `Image`,

  142.       '$user_id',

  143.       'Reverted to revision $revision_id',

  144.       NOW()

  145.     FROM

  146.       `wiki_artists`

  147.     WHERE

  148.       `RevisionID` = '$revision_id'

  149.     ");

  150. }

  151. 

  152. $revision_id = $DB->inserted_id();

  153. $description = db_string($description);

  154. $picture = db_string($picture);

  155. 

  156. // Update torrents table (technically, we don't need the revision_id column, but we can use it for a join which is nice and fast)

  157. $DB->query("

  158. UPDATE

  159.   `torrents_group`

  160. SET

  161.   `revision_id` = '$revision_id',

  162.   `description` = '$description',

  163.   `picture` = '$picture'

  164. WHERE

  165.   `id` = '$group_id'

  166. ");

  167. 

  168. // There we go, all done!

  169. $Cache->delete_value('torrents_details_'.$group_id);

  170. $Cache->delete_value('torrent_group_'.$group_id);

  171. 

  172. $DB->query("

  173. SELECT

  174.   `CollageID`

  175. FROM

  176.   `collages_torrents`

  177. WHERE

  178.   `GroupID` = '$group_id'

  179. ");

  180. 

  181. if ($DB->has_results()) {

  182.     while (list($CollageID) = $DB->next_record()) {

  183.         $Cache->delete_value('collage_'.$CollageID);

  184.     }

  185. }

  186. 

  187. // Fix Recent Uploads/Downloads for image change

  188. $DB->query("

  189. SELECT DISTINCT

  190.   `UserID`

  191. FROM

  192.   `torrents` AS t

  193. LEFT JOIN `torrents_group` AS tg

  194. ON

  195.   t.`GroupID` = tg.`id`

  196. WHERE

  197.   tg.`id` = '$group_id'

  198. ");

  199. 

  200. $user_ids = $DB->collect('UserID');

  201. foreach ($user_ids as $user_id) {

  202.     $RecentUploads = $Cache->get_value('recent_uploads_'.$user_id);

  203. 

  204.     if (is_array($RecentUploads)) {

  205.         foreach ($RecentUploads as $Key => $Recent) {

  206.             if ($Recent['id'] === $group_id) {

  207.                 if ($Recent['picture'] !== $picture) {

  208.                     $Recent['picture'] = $picture;

  209.                     $Cache->begin_transaction('recent_uploads_'.$user_id);

  210.                     $Cache->update_row($Key, $Recent);

  211.                     $Cache->commit_transaction(0);

  212.                 }

  213.             }

  214.         }

  215.     }

  216. }

  217. 

  218. $DB->query("

  219. SELECT

  220.   `ID`

  221. FROM

  222.   `torrents`

  223. WHERE

  224.   `GroupID` = '$group_id'

  225. ");

  226. 

  227. if ($DB->has_results()) {

  228.     $TorrentIDs = implode(',', $DB->collect('ID'));

  229.     $DB->query("

  230.     SELECT DISTINCT

  231.       `uid`

  232.     FROM

  233.       `xbt_snatched`

  234.     WHERE

  235.       `fid` IN($TorrentIDs)

  236.     ");

  237. 

  238.     $Snatchers = $DB->collect('uid');

  239.     foreach ($Snatchers as $user_id) {

  240.         $RecentSnatches = $Cache->get_value('recent_snatches_'.$user_id);

  241. 

  242.         if (is_array($RecentSnatches)) {

  243.             foreach ($RecentSnatches as $Key => $Recent) {

  244.                 if ($Recent['id'] == $group_id) {

  245.                     if ($Recent['picture'] !== $picture) {

  246.                         $Recent['picture'] = $picture;

  247.                         $Cache->begin_transaction('recent_snatches_'.$user_id);

  248.                         $Cache->update_row($Key, $Recent);

  249.                         $Cache->commit_transaction(0);

  250.                     }

  251.                 }

  252.             }

  253.         }

  254.     }

  255. }

  256. 

  257. header("Location: torrents.php?id=$group_id");