pkgfuncs.inc.php 19.1 KB
Newer Older
1
<?php
2
include_once("config.inc.php");
3
include_once("pkgbasefuncs.inc.php");
eric's avatar
eric committed
4

5
6
7
8
9
10
11
12
13
14
15
16
/**
 * Determine if the user can delete a specific package comment
 *
 * Only the comment submitter, Trusted Users, and Developers can delete
 * comments. This function is used for the backend side of comment deletion.
 *
 * @param string $comment_id The comment ID in the database
 * @param string $atype The account type of the user trying to delete a comment
 * @param string|int $uid The user ID of the individual trying to delete a comment
 *
 * @return bool True if the user can delete the comment, otherwise false
 */
17
function can_delete_comment($comment_id=0, $atype="", $uid=0) {
18
19
20
21
	if (!$uid) {
		/* Unauthenticated users cannot delete anything. */
		return false;
	}
22
	if ($atype == "Trusted User" || $atype == "Developer") {
23
		/* TUs and developers can delete any comment. */
24
		return true;
25
	}
Lukas Fleischer's avatar
Lukas Fleischer committed
26

27
	$dbh = DB::connect();
Lukas Fleischer's avatar
Lukas Fleischer committed
28
29
30

	$q = "SELECT COUNT(*) FROM PackageComments ";
	$q.= "WHERE ID = " . intval($comment_id) . " AND UsersID = " . $uid;
canyonknight's avatar
canyonknight committed
31
	$result = $dbh->query($q);
Lukas Fleischer's avatar
Lukas Fleischer committed
32
33
34

	if (!$result) {
		return false;
35
	}
Lukas Fleischer's avatar
Lukas Fleischer committed
36
37
38

	$row = $result->fetch(PDO::FETCH_NUM);
	return ($row[0] > 0);
39
}
eric's avatar
eric committed
40

41
42
43
44
45
46
47
48
49
50
51
52
/**
 * Determine if the user can delete a specific package comment using an array
 *
 * Only the comment submitter, Trusted Users, and Developers can delete
 * comments. This function is used for the frontend side of comment deletion.
 *
 * @param array $comment All database information relating a specific comment
 * @param string $atype The account type of the user trying to delete a comment
 * @param string|int $uid The user ID of the individual trying to delete a comment
 *
 * @return bool True if the user can delete the comment, otherwise false
 */
53
function can_delete_comment_array($comment, $atype="", $uid=0) {
54
55
56
57
	if (!$uid) {
		/* Unauthenticated users cannot delete anything. */
		return false;
	} elseif ($atype == "Trusted User" || $atype == "Developer") {
58
		/* TUs and developers can delete any comment. */
59
		return true;
60
	} else if ($comment['UsersID'] == $uid) {
61
		/* Users can delete their own comments. */
62
		return true;
63
	}
64
	return false;
65
66
}

67
68
69
70
71
72
73
74
75
76
/**
 * Determine if the visitor can submit blacklisted packages.
 *
 * Only Trusted Users and Developers can delete blacklisted packages. Packages
 * are blacklisted if they are include in the official repositories.
 *
 * @param string $atype The account type of the user
 *
 * @return bool True if the user can submit blacklisted packages, otherwise false
 */
77
function can_submit_blacklisted($atype = "") {
78
	if ($atype == "Trusted User" || $atype == "Developer") {
79
		/* Only TUs and developers can submit blacklisted packages. */
80
		return true;
81
82
	}
	else {
83
		return false;
84
85
86
	}
}

87
88
89
90
91
92
93
/**
 * Check to see if the package name already exists in the database
 *
 * @param string $name The package name to check
 *
 * @return string|void Package name if it already exists
 */
94
function pkg_from_name($name="") {
95
	if (!$name) {return NULL;}
96
	$dbh = DB::connect();
97
	$q = "SELECT ID FROM Packages ";
canyonknight's avatar
canyonknight committed
98
99
100
101
102
103
	$q.= "WHERE Name = " . $dbh->quote($name);
	$result = $dbh->query($q);
	if (!$result) {
		return;
	}
	$row = $result->fetch(PDO::FETCH_NUM);
104
105
106
	return $row[0];
}

107
108
109
110
111
112
113
/**
 * Get package dependencies for a specific package
 *
 * @param int $pkgid The package to get dependencies for
 *
 * @return array All package dependencies for the package
 */
114
function pkg_dependencies($pkgid) {
115
	$deps = array();
116
117
	$pkgid = intval($pkgid);
	if ($pkgid > 0) {
118
		$dbh = DB::connect();
Dan McGee's avatar
Dan McGee committed
119
120
121
122
		$q = "SELECT pd.DepName, pd.DepCondition, p.ID FROM PackageDepends pd ";
		$q.= "LEFT JOIN Packages p ON pd.DepName = p.Name ";
		$q.= "WHERE pd.PackageID = ". $pkgid . " ";
		$q.= "ORDER BY pd.DepName";
canyonknight's avatar
canyonknight committed
123
124
125
126
127
		$result = $dbh->query($q);
		if (!$result) {
			return array();
		}
		while ($row = $result->fetch(PDO::FETCH_NUM)) {
128
129
130
131
132
133
			$deps[] = $row;
		}
	}
	return $deps;
}

134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
/**
 * Get the ID of a dependency type given its name
 *
 * @param string $name The name of the dependency type
 *
 * @return int The ID of the dependency type
 */
function pkg_dependency_type_id_from_name($name) {
	$dbh = DB::connect();
	$q = "SELECT ID FROM DependencyTypes WHERE Name = ";
	$q.= $dbh->quote($name);
	$result = $dbh->query($q);
	return $result->fetch(PDO::FETCH_COLUMN, 0);
}

149
150
151
152
153
154
155
/**
 * Determine packages that depend on a package
 *
 * @param string $name The package name for the dependency search
 *
 * @return array All packages that depend on the specified package name
 */
156
function pkg_required($name="") {
157
	$deps = array();
Dan McGee's avatar
Dan McGee committed
158
	if ($name != "") {
159
		$dbh = DB::connect();
160
		$q = "SELECT DISTINCT p.Name, PackageID FROM PackageDepends pd ";
Dan McGee's avatar
Dan McGee committed
161
		$q.= "JOIN Packages p ON pd.PackageID = p.ID ";
canyonknight's avatar
canyonknight committed
162
		$q.= "WHERE DepName = " . $dbh->quote($name) . " ";
Dan McGee's avatar
Dan McGee committed
163
		$q.= "ORDER BY p.Name";
canyonknight's avatar
canyonknight committed
164
		$result = $dbh->query($q);
165
		if (!$result) {return array();}
canyonknight's avatar
canyonknight committed
166
		while ($row = $result->fetch(PDO::FETCH_NUM)) {
167
168
169
170
171
172
			$deps[] = $row;
		}
	}
	return $deps;
}

173
174
175
176
177
178
179
/**
 * Get all package sources for a specific package
 *
 * @param string $pkgid The package ID to get the sources for
 *
 * @return array All sources associated with a specific package
 */
180
function pkg_sources($pkgid) {
181
	$sources = array();
182
183
	$pkgid = intval($pkgid);
	if ($pkgid > 0) {
184
		$dbh = DB::connect();
185
		$q = "SELECT Source FROM PackageSources ";
186
		$q.= "WHERE PackageID = " . $pkgid;
187
		$q.= " ORDER BY Source";
canyonknight's avatar
canyonknight committed
188
189
190
191
192
		$result = $dbh->query($q);
		if (!$result) {
			return array();
		}
		while ($row = $result->fetch(PDO::FETCH_NUM)) {
193
194
195
196
197
198
			$sources[] = $row[0];
		}
	}
	return $sources;
}

199
200
201
202
203
204
205
/**
 * Determine package names from package IDs
 *
 * @param string|array $pkgids The package IDs to get names for
 *
 * @return array|string All names if multiple package IDs, otherwise package name
 */
206
function pkg_name_from_id($pkgids) {
207
208
209
	if (is_array($pkgids)) {
		$pkgids = sanitize_ids($pkgids);
		$names = array();
210
		$dbh = DB::connect();
canyonknight's avatar
canyonknight committed
211
212
213
214
215
		$q = "SELECT Name FROM Packages WHERE ID IN (";
		$q.= implode(",", $pkgids) . ")";
		$result = $dbh->query($q);
		if ($result) {
			while ($row = $result->fetch(PDO::FETCH_ASSOC)) {
216
217
218
219
220
221
				$names[] = $row['Name'];
			}
		}
		return $names;
	}
	elseif ($pkgids > 0) {
222
		$dbh = DB::connect();
223
		$q = "SELECT Name FROM Packages WHERE ID = " . $pkgids;
canyonknight's avatar
canyonknight committed
224
225
226
		$result = $dbh->query($q);
		if ($result) {
			$name = $result->fetch(PDO::FETCH_NUM);
227
		}
canyonknight's avatar
canyonknight committed
228
		return $name[0];
229
230
231
	}
	else {
		return NULL;
232
233
234
	}
}

235
236
237
238
239
240
241
/**
 * Determine if a package name is on the database blacklist
 *
 * @param string $name The package name to check
 *
 * @return bool True if the name is blacklisted, otherwise false
 */
242
function pkg_name_is_blacklisted($name) {
243
	$dbh = DB::connect();
canyonknight's avatar
canyonknight committed
244
245
246
	$q = "SELECT COUNT(*) FROM PackageBlacklist ";
	$q.= "WHERE Name = " . $dbh->quote($name);
	$result = $dbh->query($q);
247
248

	if (!$result) return false;
249
	return ($result->fetchColumn() > 0);
250
251
}

252
/**
253
 * Get the package details
254
 *
255
 * @param string $id The package ID to get description for
256
 *
257
258
 * @return array The package's details OR error message
 **/
259
function pkg_get_details($id=0) {
260
	$dbh = DB::connect();
261

262
263
264
265
266
267
268
269
	$q = "SELECT Packages.*, PackageBases.Name AS BaseName, ";
	$q.= "PackageBases.CategoryID, PackageBases.NumVotes, ";
	$q.= "PackageBases.OutOfDateTS, PackageBases.SubmittedTS, ";
	$q.= "PackageBases.ModifiedTS, PackageBases.SubmitterUID, ";
	$q.= "PackageBases.MaintainerUID, PackageCategories.Category ";
	$q.= "FROM Packages, PackageBases, PackageCategories ";
	$q.= "WHERE PackageBases.ID = Packages.PackageBaseID ";
	$q.= "AND PackageBases.CategoryID = PackageCategories.ID ";
Loui Chang's avatar
Loui Chang committed
270
	$q.= "AND Packages.ID = " . intval($id);
canyonknight's avatar
canyonknight committed
271
	$result = $dbh->query($q);
eric's avatar
eric committed
272

273
274
	$row = array();

canyonknight's avatar
canyonknight committed
275
	if (!$result) {
276
		$row['error'] = __("Error retrieving package details.");
277
278
	}
	else {
canyonknight's avatar
canyonknight committed
279
		$row = $result->fetch(PDO::FETCH_ASSOC);
eric's avatar
eric committed
280
		if (empty($row)) {
281
			$row['error'] = __("Package details could not be found.");
282
		}
283
284
285
286
287
288
289
290
291
292
293
	}

	return $row;
}

/**
 * Display the package details page
 *
 * @global string $AUR_LOCATION The AUR's URL used for notification e-mails
 * @global bool $USE_VIRTUAL_URLS True if using URL rewriting, otherwise false
 * @param string $id The package ID to get details page for
294
 * @param array $row Package details retrieved by pkg_get_details()
295
296
297
298
 * @param string $SID The session ID of the visitor
 *
 * @return void
 */
299
function pkg_display_details($id=0, $row, $SID="") {
300
301
302
	global $AUR_LOCATION;
	global $USE_VIRTUAL_URLS;

303
	$dbh = DB::connect();
304

305
306
307
308
	if (isset($row['error'])) {
		print "<p>" . $row['error'] . "</p>\n";
	}
	else {
309
310
311
		$base_id = pkgbase_from_pkgid($id);
		$pkgbase_name = pkgbase_name_from_id($base_id);

312
313
314
315
316
317
318
		include('pkg_details.php');

		if ($SID) {
			include('actions_form.php');
			include('pkg_comment_form.php');
		}

Lukas Fleischer's avatar
Lukas Fleischer committed
319
320
		$limit = isset($_GET['comments']) ? 0 : 10;
		$comments = pkgbase_comments($base_id, $limit);
321
322
		if (!empty($comments)) {
			include('pkg_comments.php');
eric's avatar
eric committed
323
324
325
326
		}
	}
}

Simo Leone's avatar
Simo Leone committed
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
/* pkg_search_page(SID)
 * outputs the body of search/search results page
 *
 * parameters:
 *  SID - current Session ID
 * preconditions:
 *  package search page has been accessed
 *  request variables have not been sanitized
 *
 *  request vars:
 *    O  - starting result number
 *    PP - number of search hits per page
 *    C  - package category ID number
 *    K  - package search string
 *    SO - search hit sort order:
 *          values: a - ascending
 *                  d - descending
 *    SB - sort search hits by:
345
 *          values: c - package category
Simo Leone's avatar
Simo Leone committed
346
347
348
349
 *                  n - package name
 *                  v - number of votes
 *                  m - maintainer username
 *    SeB- property that search string (K) represents
Andrea Scarpino's avatar
Andrea Scarpino committed
350
351
 *          values: n  - package name
 *                  nd - package name & description
352
 *                  x  - package name (exact match)
Simo Leone's avatar
Simo Leone committed
353
354
355
356
357
358
359
360
361
362
363
364
365
366
 *                  m  - package maintainer's username
 *                  s  - package submitter's username
 *    do_Orphans    - boolean. whether to search packages
 *                     without a maintainer
 *
 *
 *    These two are actually handled in packages.php.
 *
 *    IDs- integer array of ticked packages' IDs
 *    action - action to be taken on ticked packages
 *             values: do_Flag   - Flag out-of-date
 *                     do_UnFlag - Remove out-of-date flag
 *                     do_Adopt  - Adopt
 *                     do_Disown - Disown
367
 *                     do_Delete - Delete (requires confirm_Delete to be set)
368
369
 *                     do_Notify - Enable notification
 *                     do_UnNotify - Disable notification
Simo Leone's avatar
Simo Leone committed
370
 */
371
function pkg_search_page($SID="") {
372
	$dbh = DB::connect();
Loui Chang's avatar
Loui Chang committed
373

374
375
376
377
	/*
	 * Get commonly used variables.
	 * TODO: Reduce the number of database queries!
	 */
Loui Chang's avatar
Loui Chang committed
378
	if ($SID)
379
		$myuid = uid_from_sid($SID);
380
	$cats = pkgbase_categories($dbh);
Loui Chang's avatar
Loui Chang committed
381

382
	/* Sanitize paging variables. */
Loui Chang's avatar
Loui Chang committed
383
384
385
386
387
388
389
390
391
392
393
	if (isset($_GET['O'])) {
		$_GET['O'] = intval($_GET['O']);
		if ($_GET['O'] < 0)
			$_GET['O'] = 0;
	}
	else {
		$_GET['O'] = 0;
	}

	if (isset($_GET["PP"])) {
		$_GET["PP"] = intval($_GET["PP"]);
394
395
396
397
		if ($_GET["PP"] < 50)
			$_GET["PP"] = 50;
		else if ($_GET["PP"] > 250)
			$_GET["PP"] = 250;
Loui Chang's avatar
Loui Chang committed
398
399
	}
	else {
400
		$_GET["PP"] = 50;
Loui Chang's avatar
Loui Chang committed
401
402
	}

403
404
405
406
	/*
	 * FIXME: Pull out DB-related code. All of it! This one's worth a
	 * choco-chip cookie, one of those nice big soft ones.
	 */
Loui Chang's avatar
Loui Chang committed
407

408
	/* Build the package search query. */
409
	$q_select = "SELECT ";
Loui Chang's avatar
Loui Chang committed
410
	if ($SID) {
411
		$q_select .= "CommentNotify.UserID AS Notify,
412
			   PackageVotes.UsersID AS Voted, ";
Loui Chang's avatar
Loui Chang committed
413
	}
414
	$q_select .= "Users.Username AS Maintainer,
Loui Chang's avatar
Loui Chang committed
415
	PackageCategories.Category,
416
	Packages.Name, Packages.Version, Packages.Description,
417
418
	PackageBases.NumVotes, Packages.ID, Packages.PackageBaseID,
	PackageBases.OutOfDateTS ";
Loui Chang's avatar
Loui Chang committed
419

420
	$q_from = "FROM Packages
421
422
	LEFT JOIN PackageBases ON (PackageBases.ID = Packages.PackageBaseID)
	LEFT JOIN Users ON (PackageBases.MaintainerUID = Users.ID)
423
	LEFT JOIN PackageCategories
424
	ON (PackageBases.CategoryID = PackageCategories.ID) ";
Loui Chang's avatar
Loui Chang committed
425
	if ($SID) {
426
		/* This is not needed for the total row count query. */
427
		$q_from_extra = "LEFT JOIN PackageVotes
428
		ON (PackageBases.ID = PackageVotes.PackageBaseID AND PackageVotes.UsersID = $myuid)
Loui Chang's avatar
Loui Chang committed
429
		LEFT JOIN CommentNotify
430
		ON (PackageBases.ID = CommentNotify.PackageBaseID AND CommentNotify.UserID = $myuid) ";
431
432
	} else {
		$q_from_extra = "";
Loui Chang's avatar
Loui Chang committed
433
434
	}

Dan McGee's avatar
Dan McGee committed
435
	$q_where = "WHERE 1 = 1 ";
436
437
438
439
	/*
	 * TODO: Possibly do string matching on category to make request
	 * variable values more sensible.
	 */
440
	if (isset($_GET["C"]) && intval($_GET["C"])) {
Lukas Fleischer's avatar
Lukas Fleischer committed
441
		$q_where .= "AND PackageBases.CategoryID = ".intval($_GET["C"])." ";
Loui Chang's avatar
Loui Chang committed
442
443
	}

444
445
	if (isset($_GET['K'])) {
		if (isset($_GET["SeB"]) && $_GET["SeB"] == "m") {
446
			/* Search by maintainer. */
canyonknight's avatar
canyonknight committed
447
			$q_where .= "AND Users.Username = " . $dbh->quote($_GET['K']) . " ";
Loui Chang's avatar
Loui Chang committed
448
		}
449
		elseif (isset($_GET["SeB"]) && $_GET["SeB"] == "s") {
450
			/* Search by submitter. */
451
			$q_where .= "AND SubmitterUID = ".uid_from_username($_GET['K'])." ";
Loui Chang's avatar
Loui Chang committed
452
		}
453
		elseif (isset($_GET["SeB"]) && $_GET["SeB"] == "n") {
454
			/* Search by name. */
canyonknight's avatar
canyonknight committed
455
			$K = "%" . addcslashes($_GET['K'], '%_') . "%";
456
			$q_where .= "AND (Packages.Name LIKE " . $dbh->quote($K) . ") ";
Andrea Scarpino's avatar
Andrea Scarpino committed
457
		}
458
459
460
461
462
463
		elseif (isset($_GET["SeB"]) && $_GET["SeB"] == "b") {
			/* Search by package base name. */
			$K = "%" . addcslashes($_GET['K'], '%_') . "%";
			$q_where .= "AND (PackageBases.Name LIKE " . $dbh->quote($K) . ") ";
		}
		elseif (isset($_GET["SeB"]) && $_GET["SeB"] == "N") {
464
			/* Search by name (exact match). */
465
			$q_where .= "AND (Packages.Name = " . $dbh->quote($_GET['K']) . ") ";
466
		}
467
468
469
470
		elseif (isset($_GET["SeB"]) && $_GET["SeB"] == "B") {
			/* Search by package base name (exact match). */
			$q_where .= "AND (PackageBases.Name = " . $dbh->quote($_GET['K']) . ") ";
		}
Loui Chang's avatar
Loui Chang committed
471
		else {
472
			/* Search by name and description (default). */
canyonknight's avatar
canyonknight committed
473
			$K = "%" . addcslashes($_GET['K'], '%_') . "%";
474
			$q_where .= "AND (Packages.Name LIKE " . $dbh->quote($K) . " OR ";
canyonknight's avatar
canyonknight committed
475
			$q_where .= "Description LIKE " . $dbh->quote($K) . ") ";
Loui Chang's avatar
Loui Chang committed
476
477
478
		}
	}

479
	if (isset($_GET["do_Orphans"])) {
480
		$q_where .= "AND MaintainerUID IS NULL ";
Loui Chang's avatar
Loui Chang committed
481
	}
482

483
	if (isset($_GET['outdated'])) {
484
		if ($_GET['outdated'] == 'on') {
485
			$q_where .= "AND OutOfDateTS IS NOT NULL ";
486
487
		}
		elseif ($_GET['outdated'] == 'off') {
488
			$q_where .= "AND OutOfDateTS IS NULL ";
489
		}
490
491
	}

492
	$order = (isset($_GET["SO"]) && $_GET["SO"] == 'd') ? 'DESC' : 'ASC';
Loui Chang's avatar
Loui Chang committed
493

494
	$q_sort = "ORDER BY ";
495
496
	$sort_by = isset($_GET["SB"]) ? $_GET["SB"] : '';
	switch ($sort_by) {
Loui Chang's avatar
Loui Chang committed
497
	case 'c':
498
		$q_sort .= "CategoryID " . $order . ", ";
Loui Chang's avatar
Loui Chang committed
499
500
		break;
	case 'v':
501
		$q_sort .= "NumVotes " . $order . ", ";
Loui Chang's avatar
Loui Chang committed
502
		break;
503
504
	case 'w':
		if ($SID) {
505
			$q_sort .= "Voted " . $order . ", ";
506
507
508
509
		}
		break;
	case 'o':
		if ($SID) {
510
			$q_sort .= "Notify " . $order . ", ";
511
512
		}
		break;
Loui Chang's avatar
Loui Chang committed
513
	case 'm':
514
		$q_sort .= "Maintainer " . $order . ", ";
Loui Chang's avatar
Loui Chang committed
515
516
		break;
	case 'a':
517
		$q_sort .= "ModifiedTS " . $order . ", ";
Loui Chang's avatar
Loui Chang committed
518
519
520
521
		break;
	default:
		break;
	}
522
	$q_sort .= " Packages.Name " . $order . " ";
Loui Chang's avatar
Loui Chang committed
523

524
	$q_limit = "LIMIT ".$_GET["PP"]." OFFSET ".$_GET["O"];
525

526
527
	$q = $q_select . $q_from . $q_from_extra . $q_where . $q_sort . $q_limit;
	$q_total = "SELECT COUNT(*) " . $q_from . $q_where;
Loui Chang's avatar
Loui Chang committed
528

canyonknight's avatar
canyonknight committed
529
530
	$result = $dbh->query($q);
	$result_t = $dbh->query($q_total);
531
	if ($result_t) {
canyonknight's avatar
canyonknight committed
532
533
		$row = $result_t->fetch(PDO::FETCH_NUM);
		$total = $row[0];
534
535
536
537
	}
	else {
		$total = 0;
	}
Simo Leone's avatar
Simo Leone committed
538

539
	if ($result && $total > 0) {
540
541
		if (isset($_GET["SO"]) && $_GET["SO"] == "d"){
			$SO_next = "a";
Loui Chang's avatar
Loui Chang committed
542
543
		}
		else {
544
			$SO_next = "d";
Loui Chang's avatar
Loui Chang committed
545
		}
546
	}
Simo Leone's avatar
Simo Leone committed
547

548
	/* Calculate the results to use. */
Loui Chang's avatar
Loui Chang committed
549
	$first = $_GET['O'] + 1;
Simo Leone's avatar
Simo Leone committed
550

551
	/* Calculation of pagination links. */
552
553
554
555
	$per_page = ($_GET['PP'] > 0) ? $_GET['PP'] : 50;
	$current = ceil($first / $per_page);
	$pages = ceil($total / $per_page);
	$templ_pages = array();
556

557
	if ($current > 1) {
558
559
		$templ_pages['&laquo; ' . __('First')] = 0;
		$templ_pages['&lsaquo; ' . __('Previous')] = ($current - 2) * $per_page;
560
	}
561

562
563
	if ($current - 5 > 1)
		$templ_pages["..."] = false;
564

565
566
567
	for ($i = max($current - 5, 1); $i <= min($pages, $current + 5); $i++) {
		$templ_pages[$i] = ($i - 1) * $per_page;
	}
568

569
570
	if ($current + 5 < $pages)
		$templ_pages["... "] = false;
571

572
	if ($current < $pages) {
573
574
		$templ_pages[__('Next') . ' &rsaquo;'] = $current * $per_page;
		$templ_pages[__('Last') . ' &raquo;'] = ($pages - 1) * $per_page;
575
	}
Simo Leone's avatar
Simo Leone committed
576

577
	include('pkg_search_form.php');
578

canyonknight's avatar
canyonknight committed
579
580
581
582
	if ($result) {
		while ($row = $result->fetch(PDO::FETCH_ASSOC)) {
			$searchresults[] = $row;
		}
583
584
	}

585
586
	include('pkg_search_results.php');

Loui Chang's avatar
Loui Chang committed
587
	return;
eric's avatar
eric committed
588
589
}

590
591
592
593
594
595
596
/**
 * Determine if a POST string has been sent by a visitor
 *
 * @param string $action String to check has been sent via POST
 *
 * @return bool True if the POST string was used, otherwise false
 */
Dan McGee's avatar
Dan McGee committed
597
598
599
600
601
function current_action($action) {
	return (isset($_POST['action']) && $_POST['action'] == $action) ||
		isset($_POST[$action]);
}

602
/**
603
604
605
606
607
 * Determine if sent IDs are valid integers
 *
 * @param array $ids IDs to validate
 *
 * @return array All sent IDs that are valid integers
608
609
610
611
612
613
614
615
616
617
618
619
 */
function sanitize_ids($ids) {
	$new_ids = array();
	foreach ($ids as $id) {
		$id = intval($id);
		if ($id > 0) {
			$new_ids[] = $id;
		}
	}
	return $new_ids;
}

620
621
622
623
624
625
626
/**
 * Get all package information in the database for a specific package
 *
 * @param string $pkgname The name of the package to get details for
 *
 * @return array All package details for a specific package
 */
627
function pkg_details_by_name($pkgname) {
628
	$dbh = DB::connect();
629
630
631
632
633
634
635
636
	$q = "SELECT Packages.*, PackageBases.Name AS BaseName, ";
	$q.= "PackageBases.CategoryID, PackageBases.NumVotes, ";
	$q.= "PackageBases.OutOfDateTS, PackageBases.SubmittedTS, ";
	$q.= "PackageBases.ModifiedTS, PackageBases.SubmitterUID, ";
	$q.= "PackageBases.MaintainerUID FROM Packages ";
	$q.= "INNER JOIN PackageBases ";
	$q.= "ON PackageBases.ID = Packages.PackageBaseID WHERE ";
	$q.= "Packages.Name = " . $dbh->quote($pkgname);
canyonknight's avatar
canyonknight committed
637
	$result = $dbh->query($q);
canyonknight's avatar
canyonknight committed
638
	if ($result) {
canyonknight's avatar
canyonknight committed
639
		$row = $result->fetch(PDO::FETCH_ASSOC);
canyonknight's avatar
canyonknight committed
640
	}
canyonknight's avatar
canyonknight committed
641
	return $row;
canyonknight's avatar
canyonknight committed
642
643
}

644
645
646
/**
 * Add package information to the database for a specific package
 *
647
 * @param int $base_id ID of the package base
648
649
650
651
652
 * @param string $pkgname Name of the new package
 * @param string $license License of the new package
 * @param string $pkgver Version of the new package
 * @param string $pkgdesc Description of the new package
 * @param string $pkgurl Upstream URL for the new package
653
654
655
 *
 * @return int ID of the new package
 */
656
function pkg_create($base_id, $pkgname, $license, $pkgver, $pkgdesc, $pkgurl) {
657
658
659
660
661
662
663
664
665
666
	$dbh = DB::connect();
	$q = sprintf("INSERT INTO Packages (PackageBaseID, Name, License, " .
		"Version, Description, URL) VALUES (%d, %s, %s, %s, %s, %s)",
		$base_id, $dbh->quote($pkgname), $dbh->quote($license),
		$dbh->quote($pkgver), $dbh->quote($pkgdesc),
		$dbh->quote($pkgurl));
	$dbh->exec($q);
	return $dbh->lastInsertId();
}

667
668
669
670
/**
 * Add a dependency for a specific package to the database
 *
 * @param int $pkgid The package ID to add the dependency for
671
 * @param string $type The type of dependency to add
672
673
674
675
676
 * @param string $depname The name of the dependency to add
 * @param string $depcondition The  type of dependency for the package
 *
 * @return void
 */
677
function pkg_add_dep($pkgid, $type, $depname, $depcondition) {
678
	$dbh = DB::connect();
679
680
681
682
683
684
	$q = sprintf("INSERT INTO PackageDepends (PackageID, DepTypeID, DepName, DepCondition) VALUES (%d, %d, %s, %s)",
		$pkgid,
		pkg_dependency_type_id_from_name($type),
		$dbh->quote($depname),
		$dbh->quote($depcondition)
	);
canyonknight's avatar
canyonknight committed
685
	$dbh->exec($q);
canyonknight's avatar
canyonknight committed
686
687
}

688
689
690
691
692
693
694
695
/**
 * Add a source for a specific package to the database
 *
 * @param int $pkgid The package ID to add the source for
 * @param string $pkgsrc The package source to add to the database
 *
 * @return void
 */
696
function pkg_add_src($pkgid, $pkgsrc) {
697
	$dbh = DB::connect();
canyonknight's avatar
canyonknight committed
698
	$q = "INSERT INTO PackageSources (PackageID, Source) VALUES (";
canyonknight's avatar
canyonknight committed
699
	$q .= $pkgid . ", " . $dbh->quote($pkgsrc) . ")";
canyonknight's avatar
canyonknight committed
700

canyonknight's avatar
canyonknight committed
701
	$dbh->exec($q);
canyonknight's avatar
canyonknight committed
702
}