get_jail()) {
$categlib->getSqlJoin($jail, 'blog', '`tiki_blogs`.`blogId`', $join, $where, $bindvars);
}
if ($find) {
$findesc = '%' . $find . '%';
$where .= ' and (`tiki_blogs`.`title` like ? or `tiki_blogs`.`description` like ?) ';
$bindvars = array_merge($bindvars, [$findesc, $findesc]);
}
if (isset($with['showlastpost'])) {
$query = "SELECT tb.*, tbp.`postId`, tbp.`created` as postCreated, tbp.`user` as postUser, tbp.`title` as postTitle, tbp.`data` as postData FROM `tiki_blogs` tb, `tiki_blog_posts` tbp $join where tb.`blogId` = tbp.`blogId` and tbp.`created` = (select max(`created`) from `tiki_blog_posts` tbp2 where tbp2.`blogId`=tb.`blogId` order by `created` desc) $where order by tb." . $this->convertSortMode($sort_mode);
} else {
$query = "select * from `tiki_blogs` $join WHERE 1=1 $where order by `tiki_blogs`." . $this->convertSortMode($sort_mode);
}
$result = $this->fetchAll($query, $bindvars);
$ret = [];
$cant = 0;
$nb = 0;
$i = 0;
switch ($ref) {
case 'post':
$perm = ['read_blog', 'blog_post_view_ref'];
break;
case 'blog':
$perm = ['read_blog', 'blog_view_ref'];
break;
default:
$perm = 'read_blog';
}
$result = Perms::filter(['type' => 'blog'], 'object', $result, ['object' => 'blogId'], $perm);
foreach ($result as $res) {
++$cant;
if ($maxRecords == - 1 || ($i >= $offset && $nb < $maxRecords)) {
$ret[] = $res;
++$nb;
}
++$i;
}
$retval = [];
$retval["data"] = $ret;
$retval["cant"] = $cant;
return $retval;
}
/**
* Return all blog information
*
* @param int $blogId
* @return array
*/
public function get_blog($blogId)
{
global $prefs, $user;
$tikilib = TikiLib::lib('tiki');
$categlib = TikiLib::lib('categ');
$bindvars = [];
if ($jail = $categlib->get_jail()) {
$categlib->getSqlJoin($jail, 'blog', '`tiki_blogs`.`blogId`', $join, $where, $bindvars);
} else {
$join = '';
$where = '';
}
array_push($bindvars, $blogId);
if (! empty($where)) {
$where = '1=1 ' . $where . ' AND ';
}
$query = "SELECT * FROM `tiki_blogs` $join WHERE $where `blogId`=?";
$result = $this->query($query, $bindvars);
if ($result->numRows()) {
$res = $result->fetchRow();
} else {
return false;
}
if ($user != $res['user']) {
TikiLib::events()->trigger(
'tiki.blog.view',
[
'type' => 'blog',
'object' => $blogId,
'user' => $user,
'author' => $res['user'],
]
);
}
return $res;
}
/**
* Return a blog by its title
*
* @param string $blogTitle
* @return array or false if no blog is found
*/
public function get_blog_by_title($blogTitle)
{
// Avoiding select by name so as to avoid SQL injection problems.
$query = "select `title`, `blogId` from `tiki_blogs`";
$result = $this->fetchAll($query);
if (! empty($result)) {
foreach ($result as $res) {
if (TikiLib::strtolower($res['title']) == TikiLib::strtolower($blogTitle)) {
return $this->get_blog($res['blogId']);
}
}
}
return false;
}
/**
* Returns an array of blogs that belong to the user with the given name,
* or which are public, if $include_public is set to true.
* A blog is represented by an array like a tiki_blogs record.
*
* @param string $user
* @param bool $include_public whether or include public blogs (that belongs to other users)
* @return array
*/
public function list_user_blogs($user, $include_public = false)
{
$tikilib = TikiLib::lib('tiki');
$query = "select * from `tiki_blogs` where `user`=? ";
$bindvars = [$user];
if ($include_public) {
$query .= " or `public`=?";
$bindvars[] = 'y';
}
$query .= "order by `title` asc";
$result = $this->fetchAll($query, $bindvars);
$ret = [];
//FIXME Perm::filter ?
foreach ($result as $res) {
if ($tikilib->user_has_perm_on_object($user, $res['blogId'], 'blog', 'tiki_p_read_blog')) {
$ret[] = $res;
}
}
return $ret;
}
/**
* Return a list of blogs that the user has permission to post
*
* @return array
*/
public function list_blogs_user_can_post()
{
global $tiki_p_blog_admin, $user;
$tikilib = TikiLib::lib('tiki');
$query = "select * from `tiki_blogs` order by `title` asc";
$result = $this->fetchAll($query);
$ret = [];
//FIXME Perm:filter ?
foreach ($result as $res) {
if ((! empty($user) and $user == $res['user']) || $tiki_p_blog_admin == 'y' || $tikilib->user_has_perm_on_object($user, $res['blogId'], 'blog', 'tiki_p_blog_admin') || ($res['public'] == 'y' && $tikilib->user_has_perm_on_object($user, $res['blogId'], 'blog', 'tiki_p_blog_post'))) {
$ret[] = $res;
}
}
return $ret;
}
/**
* List all posts
*
* @param int $offset
* @param int $maxRecords
* @param string $sort_mode
* @param string $find
* @param int $filterByBlogId
* @param string $author
* @param string $ref
* @param int $date_min
* @param int $data_max
* @return array
*/
public function list_posts($offset = 0, $maxRecords = -1, $sort_mode = 'created_desc', $find = '', $filterByBlogId = -1, $author = '', $ref = '', $date_min = 0, $date_max = 0)
{
$tikilib = TikiLib::lib('tiki');
$filterByBlogIds = explode(':', $filterByBlogId);
$authorized_blogs = $this->list_blogs(0, -1, 'created_desc', '', $ref);
$permit_blogs = [];
for ($i = 0; $i < $authorized_blogs["cant"]; $i++) {
$permit_blogs[] = $authorized_blogs["data"][$i]['blogId'];
}
if (count($filterByBlogIds) == 1 && $filterByBlogId >= 0) { // There is one single blog Id
// get posts for a given blogId:
$mid = " where ( `blogId` = ? ) ";
$bindvars = [$filterByBlogId];
} elseif (count($filterByBlogIds) > 1) { // There is more than one blog Id
$multimid = [];
foreach ($filterByBlogIds as $blogId) {
if ($blogId > 0) {
$multimid[] = ' `blogId` = ? ';
$bindvars[] = (int)$blogId;
}
}
if (count($multimid) > 1) {
$mid = ' WHERE ( ' . implode(' or ', $multimid) . ' ) ';
} elseif (count($multimid) == 1) {
$mid = ' where ( ' . $multimid[0] . ' ) ';
}
} else {
// get posts from all blogs
$mid = '';
$bindvars = [];
}
if ($find) {
$findesc = '%' . $find . '%';
if ($mid == "") {
$mid = " where ";
} else {
$mid .= " and ";
}
$mid .= " ( `data` like ? ) ";
$bindvars[] = $findesc;
}
if ($date_min !== 0 || $date_max !== 0) {
if ($date_max <= 0) {
// show articles published today
$date_max = $tikilib->now;
}
if ($mid == '') {
$mid = ' where ';
} else {
$mid .= ' and ';
}
$mid .= '(`created`>=? and `created`<=?)';
$bindvars[] = $date_min;
$bindvars[] = $date_max;
}
if (! empty($author)) {
if ($mid == '') {
$mid = ' where ';
} else {
$mid .= ' and ';
}
$mid .= 'user =?';
$bindvars[] = $author;
}
$query = "select * from `tiki_blog_posts` $mid order by " . $this->convertSortMode($sort_mode);
$query_cant = "select count(*) from `tiki_blog_posts` $mid";
$result = $this->fetchAll($query, $bindvars, $maxRecords, $offset);
$cant = $this->getOne($query_cant, $bindvars);
$ret = [];
foreach ($result as $res) {
$blogId = $res["blogId"];
if (! in_array($blogId, $permit_blogs)) {
continue;
}
$query = "select `title` from `tiki_blogs` where `blogId`=?";
$cant_com = $this->getOne(
"select count(*) from `tiki_comments` where `object`=? and `objectType` = ?",
[(string) $res["postId"],'blog']
);
$res["comments"] = $cant_com;
$res["blogTitle"] = $this->getOne($query, [(int)$blogId]);
$res["size"] = strlen($res["data"]);
$ret[] = $res;
}
$retval = [];
$retval["data"] = $ret;
$retval["cant"] = $cant;
return $retval;
}
/**
* get_number_of_pages Returns the number of pages
*
* @param string $data
* @access public
* @return int number of pages
*/
public function get_number_of_pages($data)
{
$parts = explode("...page...", $data);
return count($parts);
}
/**
* get_page Returns a spcific page of a post
*
* @param string $data
* @param int $i
* @access public
* @return string the page $i of the post
*/
public function get_page($data, $i)
{
$parts = explode("...page...", $data);
$ret = $parts[$i - 1];
if (substr($parts[$i - 1], 1, 5) == "
") {
$ret = substr($parts[$i - 1], 6);
}
if (substr($parts[$i - 1], 1, 6) == "
") {
$ret = substr($parts[$i - 1], 7);
}
return $ret;
}
/**
* add_blog_hit Add a hit for the blog $blogId
*
* @param int $blogId
* @access public
* @return boolean unconditionnal true
*/
public function add_blog_hit($blogId)
{
global $prefs, $user;
if (StatsLib::is_stats_hit()) {
$query = "update `tiki_blogs` set `hits` = `hits`+1 where `blogId`=?";
$result = $this->query($query, [(int) $blogId]);
}
return true;
}
/**
* add_blog_post_hit Add a hit for the blog post $postId
*
* @param int $postId
* @access public
* @return boolean unconditionnal true
*/
public function add_blog_post_hit($postId)
{
global $prefs, $user;
if (StatsLib::is_stats_hit()) {
$query = "update `tiki_blog_posts` set `hits` = `hits`+1 where `postId`=?";
$result = $this->query($query, [(int) $postId]);
}
return true;
}
/**
* get_post_image Returns the image $imgId
*
* @param mixed $imgId
* @access public
* @return array all fields that are associated with an image in tiki_blog_post_images database table
*/
public function get_post_image($imgId)
{
$query = "select * from `tiki_blog_posts_images` where `imgId`=?";
$result = $this->query($query, [$imgId]);
$res = $result->fetchRow();
return $res;
}
/**
* get_post_images Returns all the images joined to a post
*
* @param int $postId
* @access public
* @return array with the permalink and the absolute link for each image
*/
public function get_post_images($postId)
{
$tikilib = TikiLib::lib('tiki');
$query = "select `postId`,`filename`,`filesize`,`imgId` from `tiki_blog_posts_images` where `postId`=?";
$result = $this->query($query, [(int) $postId]);
$ret = [];
while ($res = $result->fetchRow()) {
$imgId = $res['imgId'];
$res['link'] = "
";
$parts = parse_url($_SERVER['REQUEST_URI']);
$path = str_replace('tiki-blog_post.php', 'tiki-view_blog_post_image.php', $parts['path']);
$res['absolute'] = $tikilib->httpPrefix() . $path . "?imgId=$imgId";
$ret[] = $res;
}
return $ret;
}
/**
* remove_post_image Removes an image
*
* @param int $imgId
* @access public
* @return void
*/
public function remove_post_image($imgId)
{
$query = "delete from `tiki_blog_posts_images` where `imgId`=?";
$this->query($query, [$imgId]);
}
/**
* replace_blog Change the attributes of a blog
*
* @param string $title
* @param string $description
* @param string $user
* @param $public
* @param int $maxPosts
* @param int $blogId
* @param string $heading
* @param $use_title
* @param $use_title_in_post
* @param $use_description
* @param $use_breadcrumbs
* @param $use_author
* @param $add_date
* @param $use_find
* @param $allow_comments
* @param $show_avatar
* @param $alwaysOwner
* @param string $post_heading
* @param $show_related
* @param int $related_max control the maximum number of related posts displayed per post
* @param int $use_excerpt use a post excerpt instead of the main content when listing posts of a blog
* @param int $created if 0 use $tikilib->now
* @param int $lastModif if 0 use $tikilib->now
* @return int blogId
* @throws Exception
* @access public
*/
public function replace_blog(
$title,
$description,
$user,
$public,
$maxPosts,
$blogId,
$heading,
$use_title,
$use_title_in_post,
$use_description,
$use_breadcrumbs,
$use_author,
$add_date,
$use_find,
$allow_comments,
$show_avatar,
$alwaysOwner,
$post_heading,
$show_related,
$related_max,
$use_excerpt,
$created = 0,
$lastModif = 0
) {
//TODO: all the display parameters can be one single array parameter
global $prefs;
$tikilib = TikiLib::lib('tiki');
if ($lastModif == 0) {
$lastModif = $tikilib->now;
}
if ($blogId) {
$query = "update `tiki_blogs` set `title`=? ,`description`=?,`user`=?,`public`=?,`lastModif`=?,`maxPosts`=?,`heading`=?,`use_title`=?,`use_title_in_post`=?,`use_description`=?,`use_breadcrumbs`=?,`use_author`=?,`add_date`=?,`use_find`=?,`allow_comments`=?,`show_avatar`=?,`always_owner`=?, `post_heading`=?, `show_related`=?, `related_max`=?, `use_excerpt`=? where `blogId`=?";
$result = $this->query($query, [$title, $description, $user, $public, $lastModif, $maxPosts, $heading, $use_title, $use_title_in_post, $use_description, $use_breadcrumbs, $use_author, $add_date, $use_find, $allow_comments, $show_avatar, $alwaysOwner, $post_heading, $show_related, $related_max, $use_excerpt, $blogId]);
$tikilib->object_post_save(['type' => 'blog', 'object' => $blogId], ['content' => $heading]);
$query2 = "UPDATE `tiki_objects` SET `name`=? ,`description`=? WHERE `itemId`=? AND `type`='blog'";
$this->query($query2, [$title, $description, $blogId]);
} else {
if ($created == 0) {
$created = $tikilib->now;
}
$query = "insert into `tiki_blogs`(`created`,`lastModif`,`title`,`description`,`user`,`public`,`posts`,`maxPosts`,`hits`,`heading`,`use_title`,`use_title_in_post`,`use_description`,`use_breadcrumbs`,`use_author`,`add_date`,`use_find`,`allow_comments`,`show_avatar`,`always_owner`,`post_heading`, `show_related`, `related_max`, `use_excerpt`) values(?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?)";
$result = $this->query($query, [$created, $lastModif, $title, $description, $user, $public, 0, (int) $maxPosts, 0, $heading, $use_title, $use_title_in_post, $use_description, $use_breadcrumbs, $use_author, $add_date, $use_find, $allow_comments, $show_avatar, $alwaysOwner, $post_heading, $show_related, $related_max, $use_excerpt]);
$query2 = "select max(`blogId`) from `tiki_blogs` where `lastModif`=?";
$blogId = $this->getOne($query2, [$lastModif]);
TikiLib::events()->trigger(
'tiki.blog.create',
[
'type' => 'blog',
'object' => $blogId,
'user' => $user,
]
);
$tikilib->object_post_save(['type' => 'blog', 'object' => $blogId, 'description' => $description, 'name' => $title, 'href' => "tiki-view_blog.php?blogId=$blogId"], [ 'content' => $heading ]);
}
require_once(__DIR__ . '/../search/refresh-functions.php');
refresh_index('blogs', $blogId);
return $blogId;
}
/**
* list_blog_posts Returns all the posts for the blog $blogId
* $blogId can express more than one blog like "1:11"
* but then own draft posts (private posts) are not shown (FIXME)
*
* @param int $blogId
* @param bool $allowDrafts
* @param int $offset
* @param int $maxRecords
* @param string $sort_mode
* @param string $find
* @param string $date_min
* @param string $date_max
* @param string $approved
* @access public
* @return array posts
*/
public function list_blog_posts(
$blogId = 0,
$allowDrafts = false,
$offset = 0,
$maxRecords = -1,
$sort_mode = 'created_desc',
$find = '',
$date_min = '',
$date_max = '',
$approved = 'y'
) {
global $tiki_p_blog_admin, $tiki_p_blog_post, $user, $prefs;
$parserlib = TikiLib::lib('parser');
$categlib = TikiLib::lib('categ');
$tikilib = TikiLib::lib('tiki');
$mid = [];
$bindvars = [];
$blogIds = explode(':', $blogId);
$ownsblog = 'n';
if (count($blogIds) == 1 && $blogIds[0] > 0) { // There is one single blog Id
$mid[] = "tbp.`blogId`=?";
$bindvars[] = (int)$blogId;
$blog_data = $this->get_blog($blogId);
if ($user && $user == $blog_data["user"]) {
$ownsblog = 'y';
}
} elseif (count($blogIds) > 1) { // There is more than one blog Id
$multimid = [];
foreach ($blogIds as $objId) {
if ($objId > 0) {
$multimid[] = ' tbp.`blogId`=? ';
$bindvars[] = (int)$objId;
// Note: when there is more than one blog Id, own draft posts (private posts) are not shown (FIXME)
}
}
if (count($multimid) > 1) {
$mid[] = ' ( ' . implode(' or ', $multimid) . ' ) ';
} elseif (count($multimid) == 1) {
$mid[] = $multimid[0];
}
}
$mid[] = "tbp.blogId = tb.blogId";
if (! $allowDrafts) {
$mid[] = "`priv`!='y'";
} else {
/* Private posts can be accessed on the following conditions:
user has tiki_p_admin or tiki_p_blog_admin or has written the post
If blog is configured with 'Allow other user to post in this blog', then also if user has tiki_p_blog_post or is owner of this blog
Basically, if the user can post to the post's blog. */
if (
! (
$tiki_p_blog_admin == 'y'
|| (isset($blog_data["public"]) && $blog_data["public"] == 'y' && ($tiki_p_blog_post == 'y' || $ownsblog == 'y'))
)
) {
if (isset($user)) { // Is this needed? How can a user have a post in a blog without owning the blog nor tiki_p_blog_post? Chealer9 2017-12-07
$mid[] = "(tbp.`priv`!='y' or tbp.`user`=?)";
$bindvars[] = "$user";
} else {
$mid[] = "tbp.`priv`!='y'";
}
}
}
if ($find) {
$findesc = '%' . $find . '%';
$mid[] = "(tbp.`data` like ? or tbp.`title` like ?)";
$bindvars[] = $findesc;
$bindvars[] = $findesc;
}
if ($date_min) {
$mid[] = "tbp.`created`>=?";
$bindvars[] = (int)$date_min;
}
if ($date_max) {
$mid[] = "tbp.`created`<=?";
$bindvars[] = (int)$date_max;
}
$mid = empty($mid) ? '' : 'where ' . implode(' and ', $mid);
$join = '';
if ($jail = $categlib->get_jail()) {
$categlib->getSqlJoin($jail, 'blog post', '`tbp`.`postId`', $join, $mid, $bindvars);
}
$query = "select tbp.*,tb.title as blogTitle from `tiki_blog_posts` as tbp, `tiki_blogs` as tb $join $mid order by " . $this->convertSortMode($sort_mode);
$query_cant = "select count(*) from `tiki_blog_posts` as tbp, `tiki_blogs` as tb $join $mid";
$result = $this->query($query, $bindvars, $maxRecords, $offset);
$cant = $this->getOne($query_cant, $bindvars);
$ret = [];
while ($res = $result->fetchRow()) {
$res["comments"] = TikiLib::lib('comments')->count_comments('blog post:' . $res['postId']);
$res['pages'] = $this->get_number_of_pages($res['data']);
$res['avatar'] = $tikilib->get_user_avatar($res['user']);
$is_html = $res['wysiwyg'] === 'y' && $prefs['wysiwyg_htmltowiki'] !== 'y';
$res['parsed_excerpt'] = $parserlib->parse_data($res['excerpt'], ['is_html' => $is_html]);
$res['parsed_data'] = $parserlib->parse_data($res['data'], ['is_html' => $is_html]);
if ($prefs['feature_freetags'] == 'y') { // And get the Tags for the posts
$res['freetags'] = TikiLib::lib('freetag')->get_tags_on_object($res['postId'], 'blog post');
} else {
$res['freetags'] = [];
}
$ret[] = $res;
}
$ret = Perms::filter([ 'type' => 'blog post', 'parentId' => $blogId ], 'object', $ret, [ 'object' => 'postId' ], ['read_blog', 'blog_post_view_ref']);
$retval = [];
$retval['data'] = $ret;
$retval['cant'] = $cant;
return $retval;
}
/**
* list_blog_post_comments List all the comments in posts for all the blogs
*
* @param string $approved
* @param int $maxRecords
* @access public
* @return void
*/
public function list_blog_post_comments($approved = 'y', $maxRecords = -1)
{
global $user, $tiki_p_admin, $tiki_p_blog_admin, $tiki_p_blog_post;
$userlib = TikiLib::lib('user');
$tikilib = TikiLib::lib('tiki');
// TODO: use commentslib instead of querying database directly
// Blog Recent Comments
$query = "SELECT b.`title`, b.`postId`, b.`priv`, blog.`user`, blog.`public`, c.`threadId`, c.`title` as commentTitle, c.`website`, `commentDate`, `userName` FROM `tiki_comments` c, `tiki_blog_posts` b, `tiki_blogs` blog WHERE `objectType`='blog post' AND b.`postId`=c.`object` AND blog.`blogId`=b.`blogId`";
$bindvars = [];
$globalperms = Perms::get();
if (! $globalperms->admin_comment) {
$query .= ' AND `approved`=?';
$bindvars[] = $approved;
} else {
$approved = null;
}
$query .= " ORDER BY `commentDate` desc";
$result = $this->fetchAll($query, $bindvars, $maxRecords);
$result = Perms::filter(['type' => 'blog post'], 'object', $result, ['object' => 'postId'], ['read_blog', 'blog_post_view_ref']);
$ret = [];
foreach ($result as $res) {
// Private posts can be accessed on the following conditions:
// user has tiki_p_admin or tiki_p_blog_admin or has written the post
// If blog is configured with 'Allow other user to post in this blog', then also if user has tiki_p_blog_post or is owner of this blog
if (
($res['priv'] != 'y')
or ($tiki_p_admin == 'y' )
or ($tiki_p_blog_admin == 'y')
or ( ($res["public"] == 'y') && ($user && $user == $res["user"]) )
or ( ($res["public"] == 'y') && ($tiki_p_blog_post == 'y') )
) {
$ret[] = $res;
}
}
// just to distinct between user and anonymous (should be done in commentslib and not here)
foreach ($ret as $key => $comment) {
if (! $userlib->user_exists($comment['userName'])) {
$ret[$key]['anonymous_name'] = $comment['userName'];
}
}
return ['data' => $ret, 'cant' => count($ret)];
}
/**
* list_all_blog_posts Returns all the posts filtered by $date and $find
*
* @param int $offset
* @param int $maxRecords
* @param string $sort_mode
* @param string $find
* @param string $date
* @access public
* @return void
*/
public function list_all_blog_posts($offset = 0, $maxRecords = -1, $sort_mode = 'created_desc', $find = '', $date = '')
{
if ($find) {
$findesc = '%' . $find . '%';
$mid = " where (`data` like ?) ";
$bindvars = [$findesc];
} else {
$mid = "";
$bindvars = [];
}
if ($date) {
$bindvars[] = $date;
if ($mid) {
$mid .= " and `created`<=? ";
} else {
$mid .= " where `created`<=? ";
}
}
$query = "select * from `tiki_blog_posts` $mid order by " . $this->convertSortMode($sort_mode);
$query_cant = "select count(*) from `tiki_blog_posts` $mid";
$result = $this->fetchAll($query, $bindvars, $maxRecords, $offset);
$cant = $this->getOne($query_cant, $bindvars);
$ret = [];
$result = Perms::filter(['type' => 'blog post'], 'object', $result, ['object' => 'postId'], ['read_blog', 'blog_post_view_ref']);
foreach ($result as $res) {
$query2 = "select `title` from `tiki_blogs` where `blogId`=?";
$title = $this->getOne($query2, [$res["blogId"]]);
$res["blogtitle"] = $title;
$ret[] = $res;
}
$retval = [];
$retval["data"] = $ret;
$retval["cant"] = $cant;
return $retval;
}
/**
* blog_post Stores a blog post
*
* @param int $blogId
* @param string $data
* @param string $excerpt
* @param string $user
* @param string $title
* @param string $contributions
* @param string $priv
* @param bool $is_wysiwyg
* @access public
* @return int postId
*/
public function blog_post($blogId, $data, $excerpt, $user, $title = '', $contributions = '', $priv = 'n', $created = 0, $is_wysiwyg = false)
{
// update tiki_blogs and call activity functions
global $prefs;
$tikilib = TikiLib::lib('tiki');
$smarty = TikiLib::lib('smarty');
if ($is_wysiwyg) {
$data = TikiFilter::get('purifier')->filter($data);
$excerpt = TikiFilter::get('purifier')->filter($excerpt);
}
$wysiwyg = $is_wysiwyg == true ? 'y' : 'n';
if (! $created) {
$created = $tikilib->now;
}
$query = "insert into `tiki_blog_posts`(`blogId`,`data`,`excerpt`,`created`,`user`,`title`,`priv`,`wysiwyg`) values(?,?,?,?,?,?,?,?)";
$result = $this->query($query, [(int) $blogId, $data, $excerpt, (int) $created, $user, $title, $priv, $wysiwyg]);
$query = "select max(`postId`) from `tiki_blog_posts` where `created`=? and `user`=?";
$id = $this->getOne($query, [(int) $created, $user]);
$query = "update `tiki_blogs` set `lastModif`=?,`posts`=`posts`+1 where `blogId`=?";
$result = $this->query($query, [(int) $created, (int) $blogId]);
$this->add_blog_activity($blogId);
$wikilib = TikiLib::lib('wiki');
$wikilib->update_wikicontent_relations($data, 'post', $id);
$wikilib->update_wikicontent_links($data, 'post', $id);
if ($prefs['feature_user_watches'] == 'y' or $prefs['feature_group_watches'] == 'y') {
$nots = $tikilib->get_event_watches('blog_post', $blogId);
if (! isset($_SERVER["SERVER_NAME"])) {
$_SERVER["SERVER_NAME"] = $_SERVER["HTTP_HOST"];
}
if ($prefs['user_blog_watch_editor'] != "y") {
for ($i = count($nots) - 1; $i >= 0; --$i) {
if ($nots[$i]['user'] == $user) {
unset($nots[$i]);
break;
}
}
}
if ($prefs['feature_daily_report_watches'] == 'y') {
$query = "select `title` from `tiki_blogs` where `blogId`=?";
$blogTitle = $this->getOne($query, [(int)$blogId]);
$reportsManager = Reports_Factory::build('Reports_Manager');
$reportsManager->addToCache($nots, ["event" => 'blog_post', "blogId" => $blogId, "blogTitle" => $blogTitle, "postId" => $id, "user" => $user]);
}
if (count($nots)) {
include_once("lib/notifications/notificationemaillib.php");
$smarty->assign('mail_site', $_SERVER["SERVER_NAME"]);
$smarty->assign('mail_title', $this->get_title($blogId));
$smarty->assign('mail_post_title', $title);
$smarty->assign('mail_blogid', $blogId);
$smarty->assign('mail_postid', $id);
$smarty->assign('mail_user', $user);
$smarty->assign('mail_data', $data);
if ($prefs['feature_contribution'] == 'y' && ! empty($contributions)) {
$contributionlib = TikiLib::lib('contribution');
$smarty->assign('mail_contributions', $contributionlib->print_contributions($contributions));
}
sendEmailNotification($nots, "watch", "user_watch_blog_post_subject.tpl", $_SERVER["SERVER_NAME"], "user_watch_blog_post.tpl");
}
}
TikiLib::events()->trigger(
'tiki.blogpost.create',
[
'type' => 'blog post',
'object' => $id,
'blog' => $blogId,
'user' => $user,
]
);
if ($prefs['feature_actionlog'] == 'y') {
$logslib = TikiLib::lib('logs');
$logslib->add_action('Posted', $blogId, 'blog', "blogId=$blogId&postId=$id&add=" . strlen($data) . "#postId$id", '', '', '', '', $contributions);
}
require_once(__DIR__ . '/../search/refresh-functions.php');
refresh_index('blog_posts', $id);
$tikilib->object_post_save(['type' => 'blog post', 'object' => $id, 'description' => substr($data, 0, 200), 'name' => $title, 'href' => "tiki-view_blog_post.php?postId=$id"], ['content' => $data]);
return $id;
}
/**
* remove_blog Removes a blog and all the posts of a blog
*
* @param int $blogId
* @access public
* @return boolean unconditionnal true
*/
public function remove_blog($blogId)
{
global $user;
$tikilib = TikiLib::lib('tiki');
$query = "delete from `tiki_blogs` where `blogId`=?";
$result = $this->query($query, [(int) $blogId]);
$query = "select `postId` from `tiki_blog_posts` where `blogId`=?";
$result = $this->query($query, [(int) $blogId]);
if ($res = $result->fetchRow()) {
$tikilib->remove_object('post', $res['postId']);
}
$query = "delete from `tiki_blog_posts` where `blogId`=?";
$result = $this->query($query, [(int) $blogId]);
$tikilib->remove_object('blog', $blogId);
TikiLib::events()->trigger(
'tiki.blog.delete',
[
'type' => 'blog',
'object' => $blogId,
'user' => $user,
]
);
return true;
}
/**
* remove_post Removes a post identified by $postId
*
* @param int $postId
* @access public
* @return boolean inconditionnal true
*/
public function remove_post($postId)
{
$tikilib = TikiLib::lib('tiki');
$objectlib = TikiLib::lib('object');
$query = "select `blogId`, `data` from `tiki_blog_posts` where `postId`=?";
$result = $this->query($query, [(int) $postId]);
if ($res = $result->fetchRow()) {
$blogId = $res['blogId'];
} else {
$blogId = 0;
}
global $prefs;
if ($prefs['feature_actionlog'] == 'y') {
$logslib = TikiLib::lib('logs');
$param = "blogId=$blogId&postId=$postId";
if ($blogId) {
$param .= "&del=" . strlen($res['data']);
}
$logslib->add_action('Removed', $blogId, 'blog', $param);
}
if ($blogId) {
$tikilib->remove_object('post', (int)$postId);
$query = "delete from `tiki_blog_posts` where `postId`=?";
$result = $this->query($query, [(int) $postId]);
$query = "update `tiki_blogs` set `posts`=`posts`-1 where `blogId`=?";
$result = $this->query($query, [(int) $blogId]);
}
/*
* TODO: this should be a method in freetaglib or maybe even better $tikilib->remove_object() should
* remove the relation between the object and the tags, no?
*/
// When a post is deleted, all freetags asociated must also be deleted
$objectId = $objectlib->get_object_id('blog post', $postId);
$query = "DELETE FROM `tiki_freetagged_objects` WHERE `objectId` = ?";
$this->query($query, [(int) $objectId]);
$query = "delete from `tiki_blog_posts_images` where `postId`=?";
$this->query($query, [(int) $postId]);
$tikilib->remove_object('blog post', $postId);
TikiLib::events()->trigger(
'tiki.blogpost.delete',
[
'type' => 'blog post',
'object' => $postId,
'blog' => $blogId,
'user' => $GLOBALS['user'],
]
);
return true;
}
/**
* get_post Returns the post identfied by $postId
* Returns false if the post does not exist
*
* @param mixed $postId
* @param bool $adjacent whether to return or not adjacent posts
* @access public
* @return The post
*/
public function get_post($postId, $adjacent = false)
{
$tikilib = TikiLib::lib('tiki');
$query = "select * from `tiki_blog_posts` where `postId`=?";
$result = $this->query($query, [(int) $postId]);
if ($result->numRows()) {
$res = $result->fetchRow();
$res['avatar'] = $tikilib->get_user_avatar($res['user']);
if ($adjacent) {
$res['adjacent'] = $this->_get_adjacent_posts($res['blogId'], $res['created']);
}
} else {
return false;
}
return $res;
}
/**
* Get post related content using $freetaglib->get_similar()
*
* @param int $postId
* @param int $maxResults
* @return array
*/
public function get_related_posts($postId, $maxResults = 5)
{
$freetaglib = TikiLib::lib('freetag');
$related_posts = $freetaglib->get_similar('blog post', $postId, $maxResults);
// extract 'postId' from href to be able to use {self_link}
foreach ($related_posts as $key => $post) {
$related_posts[$key]['postId'] = str_replace('tiki-view_blog_post.php?postId=', '', $post['href']);
}
return $related_posts;
}
/**
* Get adjacent posts (previous and next by created date)
*
* @param int $blogId which blog the post belongs to
* @param int $created when the post was created
* @return array
*/
public function _get_adjacent_posts($blogId, $created, $publishDate = null, $user = null, $allowprivate = null)
{
$res = [];
$next_query = 'SELECT postId, title FROM `tiki_blog_posts` WHERE `blogId` = ? AND `created` > ? ';
$bindvars = [$blogId, $created];
if ($publishDate) {
$next_query .= 'AND (`created` <= ? OR `user` = ?)';
$bindvars[] = $publishDate;
$bindvars[] = $user;
}
if ($allowprivate == 'n') {
$next_query .= ' AND `priv` = "n"';
}
$next_query .= ' ORDER BY created ASC';
$result = $this->fetchAll($next_query, $bindvars, 1);
$res['next'] = ! empty($result[0]) ? $result[0] : null;
$prev_query = 'SELECT postId, title FROM `tiki_blog_posts` WHERE `blogId` = ? AND `created` < ? ';
$bindvars = [$blogId, $created];
if ($publishDate) {
$prev_query .= 'AND (`created` <= ? OR `user` = ?)';
$bindvars[] = $publishDate;
$bindvars[] = $user;
}
if ($allowprivate == 'n') {
$prev_query .= ' AND `priv` = "n"';
}
$prev_query .= ' ORDER BY created DESC';
$result = $this->fetchAll($prev_query, $bindvars, 1);
$res['prev'] = ! empty($result[0]) ? $result[0] : null;
return $res;
}
/**
* Updates a blog post
*
* @param int $postId
* @param int $blogId
* @param string $data
* @param string $excerpt
* @param string $user
* @param string $title
* @param string $contributions
* @param string $priv
* @param bool $is_wysiwyg
* @access public
* @return void
*/
public function update_post(
$postId,
$blogId,
$data,
$excerpt,
$user,
$title = '',
$contributions = '',
$priv = 'n',
$created = 0,
$is_wysiwyg = false
) {
global $prefs;
$tikilib = TikiLib::lib('tiki');
if ($is_wysiwyg) {
$data = TikiFilter::get('purifier')->filter($data);
$excerpt = TikiFilter::get('purifier')->filter($excerpt);
}
$wysiwyg = $is_wysiwyg == true ? 'y' : 'n';
if ($prefs['feature_blog_edit_publish_date'] == 'y') {
if (! $created) {
$created = $tikilib->now;
}
$query = "update `tiki_blog_posts` set `blogId`=?,`data`=?,`excerpt`=?,`created`=?,`user`=?,`title`=?, `priv`=?, `wysiwyg`=? where `postId`=?";
$result = $this->query($query, [$blogId, $data, $excerpt, $created,$user, $title, $priv, $wysiwyg, $postId]);
} else {
$query = "update `tiki_blog_posts` set `blogId`=?,`data`=?,`excerpt`=?,`user`=?,`title`=?, `priv`=?, `wysiwyg`=? where `postId`=?";
$result = $this->query($query, [$blogId, $data, $excerpt, $user, $title, $priv, $wysiwyg, $postId]);
}
$wikilib = TikiLib::lib('wiki');
$wikilib->update_wikicontent_relations($data, 'post', $postId);
$wikilib->update_wikicontent_links($data, 'post', $postId);
if ($prefs['feature_actionlog'] == 'y') {
$logslib = TikiLib::lib('logs');
$logslib->add_action('Updated', $blogId, 'blog', "blogId=$blogId&postId=$postId#postId$postId", '', '', '', '', $contributions);
}
require_once('lib/search/refresh-functions.php');
refresh_index('blog_posts', $postId);
$tikilib->object_post_save(['type' => 'blog post', 'object' => $postId], ['content' => $data]);
}
/**
* list_user_posts Returns all the posts from a user
*
* @param string $user login name of the user
* @param int $offset
* @param int $maxRecords
* @param string $sort_mode
* @param string $find
* @access public
* @return void
*/
public function list_user_posts($user, $offset = 0, $maxRecords = -1, $sort_mode = 'created_desc', $find = '')
{
if ($find) {
$findesc = '%' . $find . '%';
$mid = " where `user`=? and (`data` like ?) ";
$bindvars = [$user, $findesc];
} else {
$mid = ' where `user`=? ';
$bindvars = [$user];
}
$query = "select * from `tiki_blog_posts` $mid order by " . $this->convertSortMode($sort_mode);
$query_cant = "select count(*) from `tiki_blog_posts` $mid";
$result = $this->query($query, $bindvars, $maxRecords, $offset);
$cant = $this->getOne($query_cant, $bindvars);
$ret = [];
while ($res = $result->fetchRow()) {
$ret[] = $res;
}
$retval = [];
$retval["data"] = $ret;
$retval["cant"] = $cant;
return $retval;
}
/**
* add_blog_activity
*
* @param mixed $blogId
* @access public
* @return void
*/
public function add_blog_activity($blogId)
{
$tikilib = TikiLib::lib('tiki');
//Caclulate activity, update tiki_blogs and purge activity table
$today = $tikilib->make_time(0, 0, 0, $tikilib->date_format("%m"), $tikilib->date_format("%d"), $tikilib->date_format("%Y"));
$day0 = $today - (24 * 60 * 60);
$day1 = $today - (2 * 24 * 60 * 60);
$day2 = $today - (3 * 24 * 60 * 60);
// Purge old activity
$query = "delete from `tiki_blog_activity` where `day`query($query, [(int) $day2]);
// Register new activity
$query = "select count(*) from `tiki_blog_activity` where `blogId`=? and `day`=?";
$result = $this->getOne($query, [(int) $blogId, (int)$today]);
if ($result) {
$query = "update `tiki_blog_activity` set `posts`=`posts`+1 where `blogId`=? and `day`=?";
} else {
$query = "insert into `tiki_blog_activity`(`blogId`,`day`,`posts`) values(?,?,1)";
}
$result = $this->query($query, [(int) $blogId, (int) $today]);
// Calculate activity
$query = "select `posts` from `tiki_blog_activity` where `blogId`=? and `day`=?";
$vtoday = $this->getOne($query, [(int) $blogId, (int) $today]);
$day0 = $this->getOne($query, [(int) $blogId, (int) $day0]);
$day1 = $this->getOne($query, [(int) $blogId, (int) $day1]);
$day2 = $this->getOne($query, [(int) $blogId, (int) $day2]);
$activity = (2 * $vtoday) + ($day0) + (0.5 * $day1) + (0.25 * $day2);
// Update tiki_blogs with activity information
$query = "update `tiki_blogs` set `activity`=? where `blogId`=?";
$result = $this->query($query, [$activity, (int) $blogId]);
}
/**
* Returns the title of the blog "blogId"
*
* @param int $blogId
* @access public
* @return string the title of the blog
*/
public function get_title($blogId)
{
$query = 'select `title` from `tiki_blogs` where `blogId`=?';
return $this->getOne($query, [(int)$blogId]);
}
/**
* Return true if blog exist or false if not
*
* @param int $blogId
* @return bool true or false depending if blog exist or not
*/
public function blog_exists($blogId)
{
$query = 'SELECT `blogId` FROM `tiki_blogs` WHERE `blogId`=?';
if (is_null($this->getOne($query, [$blogId]))) {
return false;
} else {
return true;
}
}
/**
* Check if a blog exists
*
* @param int $blogId
* @return bool true or false if blog exists or not
*/
public function check_blog_exists($blogId)
{
$smarty = TikiLib::lib('smarty');
if (! $this->blog_exists($blogId)) {
$msg = tra('Blog cannot be found');
$smarty->assign('msg', $msg);
$smarty->display('error.tpl');
die;
}
}
/**
* Returns a list of posts that belongs to a particular blog
*
* @param int $blogId
* @return array list of post ids
*/
public function get_blog_posts_ids($blogId)
{
$query = 'SELECT `postId` FROM `tiki_blog_posts` WHERE `blogId`=?';
$result = $this->fetchMap($query, [$blogId]);
return array_keys($result);
}
public function top_bloggers($limit, $blogId = null)
{
$mid = '';
$bindvars = [];
if ($blogId) {
$mid = 'where `blogId`=?';
$bindvars = [$blogId];
}
$query = 'select distinct(`user`), count(`user`) as posts from `tiki_blog_posts` ' . $mid . ' group by `user` order by `posts` desc';
$result = $this->query($query, $bindvars, $limit, 0);
$ret = [];
while ($res = $result->fetchRow()) {
$ret[] = $res;
}
$query = 'select count(distinct(`user`)) from `tiki_blog_posts`';
$nb = $this->getOne($query);
return ['data' => $ret, 'count' => $nb];
}
public function mod_blog_posts(&$blogItems, $charCount, $wordBoundary = 'y', $ellipsis = 'y', $more = 'y')
{
$smarty = TikiLib::lib('smarty');
/* The function takes an argument asking if the break should occur on a
word boundary. The truncate function asks if words can be broken.
The same question is asked inversely so the supplied parameter needs
to be reversed to remain accurate. */
$breakword = ($wordBoundary == 'y') ? false : true;
$etc = ($ellipsis == 'y') ? ' ... ' : ' ';
$numBlogs = count($blogItems["data"]);
for ($i = 0; $i < $numBlogs; $i++) {
$pos = 0;
$counter = 'char';
$arrString = [];
$tally = [ "char" => 0, "tags" => 0 ];
// preg_match_all("[\s|\w]",$blogItems['data'][$i]['parsed_data'],$arrString);
$arrString = $blogItems['data'][$i]['parsed_data'];
/* We don't want to stop this loop until we've counted sufficient displaying
characters, not just string positions */
for ($pos = 0; $tally['char'] < $charCount; $pos++) {
if ($arrString[$pos] == '<' && $counter == 'char') {
$counter = 'tags';
} elseif ($arrString[$pos] == '>' && $counter == 'tags') {
$counter = 'char';
}
$tally[$counter]++;
}
$segLength = $charCount + $tally['tags'];
$smarty->loadPlugin('smarty_modifier_truncate');
$blogItems['data'][$i]['parsed_data'] =
smarty_modifier_truncate(
$blogItems['data'][$i]['parsed_data'],
$segLength,
$etc,
$breakword
);
if ($more == 'y') {
$blogItems['data'][$i]['parsed_data'] .=
' <more>';
}
unset($arrString);
}
return( $blogItems );
}
/**
* Return blogId from postId
*
* @param int $postId
*
* @return int $blogId or false
*/
public function get_blogId_from_post($postId)
{
$query = "SELECT `blogId` FROM `tiki_blog_posts` WHERE postId=?";
$result = $this->query($query, [$postId]);
if ($result->numRows()) {
$res = $result->fetchRow();
return $res['blogId'];
} else {
return false;
}
}
}