PageRenderTime 61ms CodeModel.GetById 27ms RepoModel.GetById 0ms app.codeStats 1ms

/campsite/src/include/phorum/include/db/mysql.php

https://github.com/joechrysler/Campsite
PHP | 4826 lines | 2735 code | 952 blank | 1139 comment | 641 complexity | 59bf8d53d9cc8b3908053949cfff1479 MD5 | raw file
Possible License(s): BSD-3-Clause, AGPL-1.0, LGPL-2.1, Apache-2.0

Large files files are truncated, but you can click here to view the full file

    

  1. <?php
    2. 

  2. 

  3. ////////////////////////////////////////////////////////////////////////////////
    4. 

  4. //                                                                            //
    5. 

  5. //   Copyright (C) 2006  Phorum Development Team                              //
    6. 

  6. //   http://www.phorum.org                                                    //
    7. 

  7. //                                                                            //
    8. 

  8. //   This program is free software. You can redistribute it and/or modify     //
    9. 

  9. //   it under the terms of either the current Phorum License (viewable at     //
    10. 

  10. //   phorum.org) or the Phorum License that was distributed with this file    //
    11. 

  11. //                                                                            //
    12. 

  12. //   This program is distributed in the hope that it will be useful,          //
    13. 

  13. //   but WITHOUT ANY WARRANTY, without even the implied warranty of           //
    14. 

  14. //   MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.                     //
    15. 

  15. //                                                                            //
    16. 

  16. //   You should have received a copy of the Phorum License                    //
    17. 

  17. //   along with this program.                                                 //
    18. 

  18. ////////////////////////////////////////////////////////////////////////////////
    19. 

  19. 

  20. // cvs-info: $Id: mysql.php 1039 2006-05-10 16:01:56Z brian $
    21. 

  21. 

  22. if (!defined("PHORUM")) return;
    23. 

  23. 

  24. /**
    25. 

  25.  * The other Phorum code does not care how the messages are stored.
    26. 

  26.  *    The only requirement is that they are returned from these functions
    27. 

  27.  *    in the right way.  This means each database can use as many or as
    28. 

  28.  *    few tables as it likes.  It can store the fields anyway it wants.
    29. 

  29.  *    The only thing to worry about is the table_prefix for the tables.
    30. 

  30.  *    all tables for a Phorum install should be prefixed with the
    31. 

  31.  *    table_prefix that will be entered in include/db/config.php.  This
    32. 

  32.  *    will allow multiple Phorum installations to use the same database.
    33. 

  33.  */
    34. 

  34. 

  35. /**
    36. 

  36.  * These are the table names used for this database system.
    37. 

  37.  */
    38. 

  38. 

  39. // tables needed to be "partitioned"
    40. 

  40. $PHORUM["message_table"] = "{$PHORUM['DBCONFIG']['table_prefix']}_messages";
    41. 

  41. $PHORUM["user_newflags_table"] = "{$PHORUM['DBCONFIG']['table_prefix']}_user_newflags";
    42. 

  42. $PHORUM["subscribers_table"] = "{$PHORUM['DBCONFIG']['table_prefix']}_subscribers";
    43. 

  43. $PHORUM["files_table"] = "{$PHORUM['DBCONFIG']['table_prefix']}_files";
    44. 

  44. $PHORUM["search_table"] = "{$PHORUM['DBCONFIG']['table_prefix']}_search";
    45. 

  45. 

  46. // tables common to all "partitions"
    47. 

  47. $PHORUM["settings_table"] = "{$PHORUM['DBCONFIG']['table_prefix']}_settings";
    48. 

  48. $PHORUM["forums_table"] = "{$PHORUM['DBCONFIG']['table_prefix']}_forums";
    49. 

  49. $PHORUM["user_table"] = "{$PHORUM['DBCONFIG']['table_prefix']}_users";
    50. 

  50. $PHORUM["user_permissions_table"] = "{$PHORUM['DBCONFIG']['table_prefix']}_user_permissions";
    51. 

  51. $PHORUM["groups_table"] = "{$PHORUM['DBCONFIG']['table_prefix']}_groups";
    52. 

  52. $PHORUM["forum_group_xref_table"] = "{$PHORUM['DBCONFIG']['table_prefix']}_forum_group_xref";
    53. 

  53. $PHORUM["user_group_xref_table"] = "{$PHORUM['DBCONFIG']['table_prefix']}_user_group_xref";
    54. 

  54. $PHORUM['user_custom_fields_table'] = "{$PHORUM['DBCONFIG']['table_prefix']}_user_custom_fields";
    55. 

  55. $PHORUM["banlist_table"] = "{$PHORUM['DBCONFIG']['table_prefix']}_banlists";
    56. 

  56. $PHORUM["pm_messages_table"] = "{$PHORUM['DBCONFIG']['table_prefix']}_pm_messages";
    57. 

  57. $PHORUM["pm_folders_table"] = "{$PHORUM['DBCONFIG']['table_prefix']}_pm_folders";
    58. 

  58. $PHORUM["pm_xref_table"] = "{$PHORUM['DBCONFIG']['table_prefix']}_pm_xref";
    59. 

  59. $PHORUM["pm_buddies_table"] = "{$PHORUM['DBCONFIG']['table_prefix']}_pm_buddies";
    60. 

  60. /*
    61. 

  61. * fields which are always strings, even if they contain only numbers
    62. 

  62. * used in post-message and update-message, otherwise strange things happen
    63. 

  63. */
    64. 

  64. $PHORUM['string_fields']= array('author', 'subject', 'body', 'email');
    65. 

  65. 

  66. /* A piece of SQL code that can be used for identifying moved messages. */
    67. 

  67. define('PHORUM_SQL_MOVEDMESSAGES', '(parent_id = 0 and thread != message_id)');
    68. 

  68. 

  69. /**
    70. 

  70.  * Get the visible messages for a given page offset. The main Phorum code
    71. 

  71.  * handles actually sorting the threads into a threaded list if needed.
    72. 

  72.  *
    73. 

  73.  * By default, the message body is not included in the fetch queries.
    74. 

  74.  * If the body is needed in the thread list, $PHORUM['TMP']['bodies_in_list']
    75. 

  75.  * must be set to "1" (for example using setting.tpl).
    76. 

  76.  *
    77. 

  77.  * NOTE: ALL dates should be returned as Unix timestamps
    78. 

  78.  *
    79. 

  79.  * @param int $offset - the index of the page to return, starting with 0
    80. 

  80.  *
    81. 

  81.  * @return array
    82. 

  82.  */
    83. 

  83. function phorum_db_get_thread_list($offset)
    84. 

  84. {
    85. 

  85.     $PHORUM = $GLOBALS["PHORUM"];
    86. 

  86. 

  87.     settype($offset, "int");
    88. 

  88. 

  89.     $conn = phorum_db_mysql_connect();
    90. 

  90. 

  91.     $table = $PHORUM["message_table"];
    92. 

  92. 

  93.     // The messagefields that we want to fetch from the database.
    94. 

  94.     $messagefields =
    95. 

  95.        "$table.author,
    96. 

  96.         $table.datestamp,
    97. 

  97.         $table.email,
    98. 

  98.         $table.message_id,
    99. 

  99.         $table.meta,
    100. 

  100.         $table.moderator_post,
    101. 

  101.         $table.modifystamp,
    102. 

  102.         $table.parent_id,
    103. 

  103.         $table.sort,
    104. 

  104.         $table.status,
    105. 

  105.         $table.subject,
    106. 

  106.         $table.thread,
    107. 

  107.         $table.thread_count,
    108. 

  108.         $table.user_id,
    109. 

  109.         $table.viewcount,
    110. 

  110.         $table.closed";
    111. 

  111.     if(isset($PHORUM['TMP']['bodies_in_list']) && $PHORUM['TMP']['bodies_in_list'] == 1) {
    112. 

  112.         $messagefields .= "\n,$table.body\n,$table.ip";
    113. 

  113.     }
    114. 

  114. 

  115.     // The sort mechanism to use.
    116. 

  116.     if($PHORUM["float_to_top"]){
    117. 

  117.             $sortfield = "modifystamp";
    118. 

  118.             $index = "list_page_float";
    119. 

  119.     } else{
    120. 

  120.             $sortfield = "thread";
    121. 

  121.             $index = "list_page_flat";
    122. 

  122.     }
    123. 

  123. 

  124.     // Initialize the return array.
    125. 

  125.     $messages = array();
    126. 

  126. 

  127.     // The groups of messages we want to fetch from the database.
    128. 

  128.     $groups = array();
    129. 

  129.     if ($offset == 0) $groups[] = "specials";
    130. 

  130.     $groups[] = "threads";
    131. 

  131.     if ($PHORUM["threaded_list"]) $groups[] = "replies";
    132. 

  132. 

  133.     // for remembering message ids for which we want to fetch the replies.
    134. 

  134.     $replymsgids = array();
    135. 

  135. 

  136.     // Process all groups.
    137. 

  137.     foreach ($groups as $group) {
    138. 

  138. 

  139. 

  140.         $sql = NULL;
    141. 

  141. 

  142.         switch ($group) {
    143. 

  143. 

  144.             // Announcements and stickies.
    145. 

  145.             case "specials":
    146. 

  146. 

  147.                 $sql = "select $messagefields
    148. 

  148.                        from $table
    149. 

  149.                        where
    150. 

  150.                          status=".PHORUM_STATUS_APPROVED." and
    151. 

  151.                          ((parent_id=0 and sort=".PHORUM_SORT_ANNOUNCEMENT."
    152. 

  152.                            and forum_id={$PHORUM['vroot']})
    153. 

  153.                          or
    154. 

  154.                          (parent_id=0 and sort=".PHORUM_SORT_STICKY."
    155. 

  155.                           and forum_id={$PHORUM['forum_id']}))
    156. 

  156.                        order by
    157. 

  157.                          sort, $sortfield desc";
    158. 

  158.                 break;
    159. 

  159. 

  160.             // Threads.
    161. 

  161.             case "threads":
    162. 

  162. 

  163.                 if ($PHORUM["threaded_list"]) {
    164. 

  164.                     $limit = $PHORUM['list_length_threaded'];
    165. 

  165.                     $extrasql = '';
    166. 

  166.                 } else {
    167. 

  167.                     $limit = $PHORUM['list_length_flat'];
    168. 

  168.                 }
    169. 

  169.                 $start = $offset * $limit;
    170. 

  170. 

  171.                 $sql = "select $messagefields
    172. 

  172.                         from $table use index ($index)
    173. 

  173.                         where
    174. 

  174.                           $sortfield > 0 and
    175. 

  175.                           forum_id = {$PHORUM["forum_id"]} and
    176. 

  176.                           status = ".PHORUM_STATUS_APPROVED." and
    177. 

  177.                           parent_id = 0 and
    178. 

  178.                           sort > 1
    179. 

  179.                         order by
    180. 

  180.                           $sortfield desc
    181. 

  181.                         limit $start, $limit";
    182. 

  182.                 break;
    183. 

  183. 

  184.             // Reply messages.
    185. 

  185.             case "replies":
    186. 

  186. 

  187.                 // We're done if we did not collect any messages with replies.
    188. 

  188.                 if (! count($replymsgids)) break;
    189. 

  189. 

  190.                 $sortorder = "sort, $sortfield desc, message_id";
    191. 

  191.                 if(isset($PHORUM["reverse_threading"]) && $PHORUM["reverse_threading"])
    192. 

  192.                     $sortorder.=" desc";
    193. 

  193. 

  194.                 $sql = "select $messagefields
    195. 

  195.                         from $table
    196. 

  196.                         where
    197. 

  197.                           status = ".PHORUM_STATUS_APPROVED." and
    198. 

  198.                           thread in (" . implode(",",$replymsgids) .")
    199. 

  199.                         order by $sortorder";
    200. 

  200.                 break;
    201. 

  201. 

  202.         } // End of switch ($group)
    203. 

  203. 

  204.         // Continue with the next group if no SQL query was formulated.
    205. 

  205.         if (is_null($sql)) continue;
    206. 

  206. 

  207.         // Fetch the messages for the current group.
    208. 

  208.         $res = mysql_query($sql, $conn);
    209. 

  209.         if ($err = mysql_error()) phorum_db_mysql_error("$err: $sql");
    210. 

  210.         $rows = mysql_num_rows($res);
    211. 

  211.         if($rows > 0){
    212. 

  212.             while ($rec = mysql_fetch_assoc($res)){
    213. 

  213.                 $messages[$rec["message_id"]] = $rec;
    214. 

  214.                 $messages[$rec["message_id"]]["meta"] = array();
    215. 

  215.                 if(!empty($rec["meta"])){
    216. 

  216.                     $messages[$rec["message_id"]]["meta"] = unserialize($rec["meta"]);
    217. 

  217.                 }
    218. 

  218. 

  219.                 // We need the message ids for fetching reply messages.
    220. 

  220.                 if ($group == 'threads' && $rec["thread_count"] > 1) {
    221. 

  221.                     $replymsgids[] = $rec["message_id"];
    222. 

  222.                 }
    223. 

  223.             }
    224. 

  224.         }
    225. 

  225.     }
    226. 

  226. 

  227.     return $messages;
    228. 

  228. }
    229. 

  229. 

  230. /**
    231. 

  231.  * Get the recent messages for all forums the user can read, a particular
    232. 

  232.  * forum, or a particular thread, and returns an array of the messages
    233. 

  233.  * order by message_id. You can optionally retrieve only new threads.
    234. 

  234.  *
    235. 

  235.  * The original version of this function came from Jim Winstead of mysql.com
    236. 

  236.  *
    237. 

  237.  * @param int $count
    238. 

  238.  * 		Limit the number of returned messages to this number.
    239. 

  239.  * @param int $forum_id
    240. 

  240.  * @param int $thread
    241. 

  241.  * @param boolean $threads_only
    242. 

  242.  * 		If set to TRUE, only get the top message from each thread.
    243. 

  243.  *
    244. 

  244.  * @return array
    245. 

  245.  */
    246. 

  246. function phorum_db_get_recent_messages($count, $forum_id = 0, $thread = 0, $threads_only = 0)
    247. 

  247. {
    248. 

  248.     $PHORUM = $GLOBALS["PHORUM"];
    249. 

  249.     settype($count, "int");
    250. 

  250.     settype($thread, "int");
    251. 

  251.     $arr = array();
    252. 

  252.     $allowed_forums = array();
    253. 

  253. 

  254.     $conn = phorum_db_mysql_connect();
    255. 

  255. 

  256.     // we need to differentiate on which key to use
    257. 

  257.     if($thread) {
    258. 

  258.         $use_key='thread_message';
    259. 

  259.     } else {
    260. 

  260.         $use_key='forum_max_message';
    261. 

  261.     }
    262. 

  262. 

  263.     $sql = "SELECT {$PHORUM['message_table']}.* FROM {$PHORUM['message_table']} USE KEY($use_key) WHERE status=".PHORUM_STATUS_APPROVED;
    264. 

  264. 

  265.     // have to check what forums they can read first.
    266. 

  266.     // even if $thread is passed, we have to make sure
    267. 

  267.     // the user can read the forum
    268. 

  268.     if($forum_id <= 0) {
    269. 

  269.         $allowed_forums=phorum_user_access_list(PHORUM_USER_ALLOW_READ);
    270. 

  270. 

  271.         // if they are not allowed to see any forums, return the emtpy $arr;
    272. 

  272.         if(empty($allowed_forums))
    273. 

  273.             return $arr;
    274. 

  274.     } elseif(is_array($forum_id)) {
    275. 

  275.         // for an array, check each one and return if none are allowed
    276. 

  276.         foreach($forum_id as $id){
    277. 

  277.             if(phorum_user_access_allowed(PHORUM_USER_ALLOW_READ,$id)) {
    278. 

  278.                 $allowed_forums[]=$id;
    279. 

  279.             }
    280. 

  280.         }
    281. 

  281. 

  282.         // if they are not allowed to see any forums, return the emtpy $arr;
    283. 

  283.         if(empty($allowed_forums))
    284. 

  284.             return $arr;
    285. 

  285.     } else {
    286. 

  286.         // only single forum, *much* fast this way
    287. 

  287.         if(!phorum_user_access_allowed(PHORUM_USER_ALLOW_READ,$forum_id)) {
    288. 

  288.             return $arr;
    289. 

  289.         }
    290. 

  290.         settype($forum_id, "int");
    291. 

  291.     }
    292. 

  292. 

  293.     if(count($allowed_forums)){
    294. 

  294.         $sql.=" and forum_id in (".implode(",", $allowed_forums).")";
    295. 

  295.     } else {
    296. 

  296.         $sql.=" and forum_id=$forum_id";
    297. 

  297.     }
    298. 

  298. 

  299.     if($thread){
    300. 

  300.         $sql.=" and thread=$thread";
    301. 

  301.     }
    302. 

  302. 

  303.     if($threads_only) {
    304. 

  304.         $sql.= " and parent_id = 0";
    305. 

  305.         $sql.= " ORDER BY thread DESC";
    306. 

  306.     } else {
    307. 

  307.         $sql.= " ORDER BY message_id DESC";
    308. 

  308.     }
    309. 

  309. 

  310.     if($count){
    311. 

  311.         $sql.= " LIMIT $count";
    312. 

  312.     }
    313. 

  313. 

  314.     $res = mysql_query($sql, $conn);
    315. 

  315.     if ($err = mysql_error()) phorum_db_mysql_error("$err: $sql");
    316. 

  316. 

  317.     while ($rec = mysql_fetch_assoc($res)){
    318. 

  318.         $arr[$rec["message_id"]] = $rec;
    319. 

  319. 

  320.         // convert meta field
    321. 

  321.         if(empty($rec["meta"])){
    322. 

  322.             $arr[$rec["message_id"]]["meta"]=array();
    323. 

  323.         } else {
    324. 

  324.             $arr[$rec["message_id"]]["meta"]=unserialize($rec["meta"]);
    325. 

  325.         }
    326. 

  326.         if(empty($arr['users'])) $arr['users']=array();
    327. 

  327.         if($rec["user_id"]){
    328. 

  328.             $arr['users'][]=$rec["user_id"];
    329. 

  329.         }
    330. 

  330. 

  331.     }
    332. 

  332. 

  333.     return $arr;
    334. 

  334. }
    335. 

  335. 

  336. 

  337. /**
    338. 

  338.  * Get messages which have not yet been approved by a moderator.
    339. 

  339.  * The main Phorum code handles actually sorting the threads into
    340. 

  340.  * a threaded list if needed.
    341. 

  341.  *
    342. 

  342.  * NOTE: ALL dates should be returned as Unix timestamps
    343. 

  343.  * @param mixed $forum
    344. 

  344.  * 		The forum id to work with.
    345. 

  345.  * 		Set to NULL if you want to search all forums.
    346. 

  346.  *      You can also pass an array of forum id's.
    347. 

  347.  * @param boolean $waiting_only
    348. 

  348.  * 		Only take into account messages which have to
    349. 

  349.  *      be approved directly after posting. Do not include
    350. 

  350.  *      messages which are hidden by a moderator.
    351. 

  351.  * @param int $moddays
    352. 

  352.  * 		Limit the search to the last $moddays number of days.
    353. 

  353.  * @return array
    354. 

  354.  * 		An array of messages, indexed by message ID.
    355. 

  355.  */
    356. 

  356. function phorum_db_get_unapproved_list($forum = NULL, $waiting_only=false,$moddays=0)
    357. 

  357. {
    358. 

  358.     $PHORUM = $GLOBALS["PHORUM"];
    359. 

  359. 

  360.     $conn = phorum_db_mysql_connect();
    361. 

  361. 

  362.     $table = $PHORUM["message_table"];
    363. 

  363. 

  364.     $arr = array();
    365. 

  365. 

  366.     $sql = "select
    367. 

  367.             $table.*
    368. 

  368.           from
    369. 

  369.             $table ";
    370. 

    371. 

  371.     if (is_array($forum)){
    372. 

  372.         $sql .= "where forum_id in (" . implode(",", $forum) . ") and ";
    373. 

  373.     } elseif (! is_null($forum)){
    374. 

  374.         settype($forum, "int");
    375. 

  375.         $sql .= "where forum_id = $forum and ";
    376. 

  376.     } else {
    377. 

  377.         $sql .= "where ";
    378. 

  378.     }
    379. 

  379. 

  380.     if($moddays > 0) {
    381. 

  381.         $checktime=time()-(86400*$moddays);
    382. 

  382.         $sql .=" datestamp > $checktime AND";
    383. 

  383.     }
    384. 

  384. 

  385.     if($waiting_only){
    386. 

  386.         $sql.=" status=".PHORUM_STATUS_HOLD;
    387. 

  387.     } else {
    388. 

  388.         $sql="($sql status=".PHORUM_STATUS_HOLD.") " .
    389. 

  389.              "union ($sql status=".PHORUM_STATUS_HIDDEN.")";
    390. 

  390.     }
    391. 

  391. 

  392. 

  393.     $sql .=" order by thread, message_id";
    394. 

  394. 

  395.     $res = mysql_query($sql, $conn);
    396. 

  396.     if ($err = mysql_error()) phorum_db_mysql_error("$err: $sql");
    397. 

  397. 

  398.     while ($rec = mysql_fetch_assoc($res)){
    399. 

  399.         $arr[$rec["message_id"]] = $rec;
    400. 

  400.         $arr[$rec["message_id"]]["meta"] = array();
    401. 

  401.         if(!empty($rec["meta"])){
    402. 

  402.             $arr[$rec["message_id"]]["meta"] = unserialize($rec["meta"]);
    403. 

  403.         }
    404. 

  404.     }
    405. 

  405. 

  406.     return $arr;
    407. 

  407. }
    408. 

  408. 

  409. 

  410. /**
    411. 

  411.  * Add a message.  The message will not be posted if it is a duplicate
    412. 

  412.  * and $PHORUM['check_duplicate'] is set.
    413. 

  413.  *
    414. 

  414.  * The $message is passed by reference and when the function completes
    415. 

  415.  * successfully, the "message_id" index will be set to the new value.
    416. 

  416.  * If the "thread" index is set to zero, a new thread will be started and the
    417. 

  417.  * "thread" index will be filled with the new thread ID upon return.
    418. 

  418.  *
    419. 

  419.  * @param array $message
    420. 

  420.  * 	The $message array must contain the following indexes:
    421. 

  421.  * 		forum_id, thread, parent_id, author, subject, email, ip,
    422. 

  422.  * 		user_id, moderator_post, status, sort, msgid, body, closed
    423. 

  423.  *
    424. 

  424.  * @param boolean $convert
    425. 

  425.  *
    426. 

  426.  * @return boolean
    427. 

  427.  * 		TRUE on success, FALSE on failure.
    428. 

  428.  *
    429. 

  429.  */
    430. 

  430. function phorum_db_post_message(&$message,$convert=false){
    431. 

  431.     $PHORUM = $GLOBALS["PHORUM"];
    432. 

  432.     $table = $PHORUM["message_table"];
    433. 

  433. 

  434.     $conn = phorum_db_mysql_connect();
    435. 

  435. 

  436.     $success = false;
    437. 

  437. 

  438.     foreach($message as $key => $value){
    439. 

  439.         if (is_numeric($value) && !in_array($key,$PHORUM['string_fields'])){
    440. 

  440.             $message[$key] = (int)$value;
    441. 

  441.         } elseif(is_array($value)) {
    442. 

  442.             $message[$key] = mysql_escape_string(serialize($value));
    443. 

  443.         } else{
    444. 

  444.             $message[$key] = mysql_escape_string($value);
    445. 

  445.         }
    446. 

  446.     }
    447. 

  447. 

  448.     if(!$convert) {
    449. 

  449.         $NOW = time();
    450. 

  450.     } else {
    451. 

  451.         $NOW = $message['datestamp'];
    452. 

  452.     }
    453. 

  453. 

  454.     // duplicate-check
    455. 

  455.     if(isset($PHORUM['check_duplicate']) && $PHORUM['check_duplicate'] && !$convert) {
    456. 

  456.         // we check for dupes in that number of minutes
    457. 

  457.         $check_minutes=60;
    458. 

  458.         $check_timestamp =$NOW - ($check_minutes*60);
    459. 

  459.         // check_query
    460. 

  460.         $chk_query="SELECT message_id FROM $table WHERE forum_id = {$message['forum_id']} AND author='{$message['author']}' AND subject='{$message['subject']}' AND body='{$message['body']}' AND datestamp > $check_timestamp";
    461. 

  461.         $res = mysql_query($chk_query, $conn);
    462. 

  462.         if ($err = mysql_error()) phorum_db_mysql_error("$err: $chk_query");
    463. 

  463.         if(mysql_num_rows($res))
    464. 

  464.             return 0;
    465. 

  465.     }
    466. 

  466. 

  467.     if(isset($message['meta'])){
    468. 

  468.         $metaval=",meta='{$message['meta']}'";
    469. 

  469.     } else {
    470. 

  470.         $metaval="";
    471. 

  471.     }
    472. 

  472. 

  473.     $sql = "Insert into $table set
    474. 

  474.             forum_id = {$message['forum_id']},
    475. 

  475.             datestamp=$NOW,
    476. 

  476.             thread={$message['thread']},
    477. 

  477.             parent_id={$message['parent_id']},
    478. 

  478.             author='{$message['author']}',
    479. 

  479.             subject='{$message['subject']}',
    480. 

  480.             email='{$message['email']}',
    481. 

  481.             ip='{$message['ip']}',
    482. 

  482.             user_id={$message['user_id']},
    483. 

  483.             moderator_post={$message['moderator_post']},
    484. 

  484.             status={$message['status']},
    485. 

  485.             sort={$message['sort']},
    486. 

  486.             msgid='{$message['msgid']}',
    487. 

  487.             body='{$message['body']}',
    488. 

  488.             closed={$message['closed']}
    489. 

  489.             $metaval";
    490. 

    491. 

  491.     // if in conversion we need the message-id too
    492. 

  492.     if($convert && isset($message['message_id'])) {
    493. 

  493.         $sql.=",message_id=".$message['message_id'];
    494. 

  494.     }
    495. 

  495. 

  496.     if(isset($message['modifystamp'])) {
    497. 

  497.         $sql.=",modifystamp=".$message['modifystamp'];
    498. 

  498.     }
    499. 

  499. 

  500.     if(isset($message['viewcount'])) {
    501. 

  501.         $sql.=",viewcount=".$message['viewcount'];
    502. 

  502.     }
    503. 

  503. 

  504. 

  505.     $res = mysql_query($sql, $conn);
    506. 

  506.     if ($err = mysql_error()) phorum_db_mysql_error("$err: $sql");
    507. 

  507. 

  508.     if ($res){
    509. 

  509.         $message["message_id"] = mysql_insert_id($conn);
    510. 

  510. 

  511.         if(!empty($message["message_id"])){
    512. 

  512. 

  513.             $message["datestamp"]=$NOW;
    514. 

  514. 

  515.             if ($message["thread"] == 0){
    516. 

  516.                 $message["thread"] = $message["message_id"];
    517. 

  517.                 $sql = "update $table set thread={$message['message_id']} where message_id={$message['message_id']}";
    518. 

  518.                 $res = mysql_query($sql, $conn);
    519. 

  519.                 if ($err = mysql_error()) phorum_db_mysql_error("$err: $sql");
    520. 

  520.             }
    521. 

  521. 

  522.             if ($err = mysql_error()) phorum_db_mysql_error("$err: $sql");
    523. 

  523. 

  524.             // start ft-search stuff
    525. 

  525.             if($PHORUM["DBCONFIG"]["mysql_use_ft"]){
    526. 

  526. 

  527.                 $search_text="$message[author] | $message[subject] | $message[body]";
    528. 

  528. 

  529.                 $sql="insert delayed into {$PHORUM['search_table']} set message_id={$message['message_id']}, forum_id={$message['forum_id']}, search_text='$search_text'";
    530. 

  530.                 $res = mysql_query($sql, $conn);
    531. 

  531.                 if ($err = mysql_error()) phorum_db_mysql_error("$err: $sql");
    532. 

  532.             }
    533. 

  533.             // end ft-search stuff
    534. 

  534. 

  535.             $success = true;
    536. 

  536.             // some data for later use, i.e. email-notification
    537. 

  537.             $GLOBALS['PHORUM']['post_returns']['message_id']=$message["message_id"];
    538. 

  538.             $GLOBALS['PHORUM']['post_returns']['thread_id']=$message["thread"];
    539. 

  539.         }
    540. 

  540.     }
    541. 

  541. 

  542.     return $success;
    543. 

  543. }
    544. 

  544. 

  545. 

  546. /**
    547. 

  547.  * Relate a message to Campsite.
    548. 

  548.  *
    549. 

  549.  * It affects campsite.ArticleComments
    550. 

  550.  *
    551. 

  551.  * @param array $message
    552. 

  552.  *  The $message array must contain the following indexes:
    553. 

  553.  *      thread, message_id
    554. 

  554.  *
    555. 

  555.  * @return boolean
    556. 

  556.  *      TRUE on success, FALSE on failure.
    557. 

  557.  *
    558. 

  558.  */
    559. 

  559. function phorum_db_relate_message_to_campsite($message)
    560. 

  560. {
    561. 

  561. 	$PHORUM = $GLOBALS["PHORUM"];
    562. 

  562. 

  563. 	$conn = phorum_db_mysql_connect();
    564. 

  564. 

  565. 	$success = false;
    566. 

  566. 	$sql = "SELECT fk_article_number, fk_language_id
    567. 

  567. 			FROM ArticleComments
    568. 

  568. 			WHERE fk_comment_id = '".$message['thread']."'";
    569. 

  569. 	$res = mysql_query($sql, $conn);
    570. 

  570. 	if ($err = mysql_error()) phorum_db_mysql_error("$err: $sql");
    571. 

  571. 

  572. 	if ($res) {
    573. 

  573. 		$data = mysql_fetch_array($res);
    574. 

  574. 		if (!empty($data['fk_article_number'])) {
    575. 

  575. 			$article_number = $data['fk_article_number'];
    576. 

  576. 			$article_language = $data['fk_language_id'];
    577. 

  577. 			$sql = "INSERT INTO ArticleComments
    578. 

  578. 					(fk_article_number, fk_language_id, fk_comment_id, is_first)
    579. 

  579. 					VALUES ('".$article_number."', '".$article_language."', '".
    580. 

  580. 							$message['message_id']."', '0')";
    581. 

  581. 			$res = mysql_query($sql, $conn);
    582. 

  582. 			if ($err = mysql_error()) phorum_db_mysql_error("$err: $sql");
    583. 

  583. 

  584. 			if ($res) {
    585. 

  585. 				$success = true;
    586. 

  586. 			}
    587. 

  587. 		}
    588. 

  588. 	}
    589. 

  589. 

  590. 	return $success;
    591. 

  591. }
    592. 

  592. 

  593. 

  594. /**
    595. 

  595.  * Delete a message.
    596. 

  596.  *
    597. 

  597.  * @param int $message_id The id of the message which should be deleted
    598. 

  598.  * @param int $mode The mode of deletion,
    599. 

  599.  * 		PHORUM_DELETE_MESSAGE for reconnecting the children,
    600. 

  600.  * 		PHORUM_DELETE_TREE for deleting the children
    601. 

  601.  */
    602. 

  602. function phorum_db_delete_message($message_id, $mode = PHORUM_DELETE_MESSAGE)
    603. 

  603. {
    604. 

  604.     $PHORUM = $GLOBALS["PHORUM"];
    605. 

  605. 

  606.     $conn = phorum_db_mysql_connect();
    607. 

  607. 

  608.     settype($message_id, "int");
    609. 

  609. 

  610.     $threadset = 0;
    611. 

  611.     // get the parents of the message to delete.
    612. 

  612.     $sql = "select forum_id, message_id, thread, parent_id from {$PHORUM['message_table']} where message_id = $message_id ";
    613. 

  613.     $res = mysql_query($sql, $conn);
    614. 

  614.     if ($err = mysql_error()) phorum_db_mysql_error("$err: $sql");
    615. 

  615. 

  616.     $rec = mysql_fetch_assoc($res);
    617. 

  617. 

  618.     if($mode == PHORUM_DELETE_TREE){
    619. 

  619.         $mids = phorum_db_get_messagetree($message_id, $rec['forum_id']);
    620. 

  620.     }else{
    621. 

  621.         $mids = $message_id;
    622. 

  622.     }
    623. 

  623. 

  624.     // unapprove the messages first so replies will not get posted
    625. 

  625.     $sql = "update {$PHORUM['message_table']} set status=".PHORUM_STATUS_HOLD." where message_id in ($mids)";
    626. 

  626.     $res = mysql_query($sql, $conn);
    627. 

  627.     if ($err = mysql_error()) phorum_db_mysql_error("$err: $sql");
    628. 

  628. 

  629.     $thread = $rec['thread'];
    630. 

  630.     if($thread == $message_id && $mode == PHORUM_DELETE_TREE){
    631. 

  631.         $threadset = 1;
    632. 

  632.     }else{
    633. 

  633.         $threadset = 0;
    634. 

  634.     }
    635. 

  635. 

  636.     if($mode == PHORUM_DELETE_MESSAGE){
    637. 

  637.         $count = 1;
    638. 

  638.         // change the children to point to their parent's parent
    639. 

  639.         // forum_id is in here for speed by using a key only
    640. 

  640.         $sql = "update {$PHORUM['message_table']} set parent_id=$rec[parent_id] where forum_id=$rec[forum_id] and parent_id=$rec[message_id]";
    641. 

  641.         mysql_query($sql, $conn);
    642. 

  642.         if ($err = mysql_error()) phorum_db_mysql_error("$err: $sql");
    643. 

  643.     }else{
    644. 

  644.         $count = count(explode(",", $mids));
    645. 

  645.     }
    646. 

  646. 

  647.     // delete the messages
    648. 

  648.     $sql = "delete from {$PHORUM['message_table']} where message_id in ($mids)";
    649. 

  649.     mysql_query($sql, $conn);
    650. 

  650.     if ($err = mysql_error()) phorum_db_mysql_error("$err: $sql");
    651. 

  651. 

  652.     // start ft-search stuff
    653. 

  653.     $sql="delete from {$PHORUM['search_table']} where message_id in ($mids)";
    654. 

  654.     $res = mysql_query($sql, $conn);
    655. 

  655.     if ($err = mysql_error()) phorum_db_mysql_error("$err: $sql");
    656. 

  656.     // end ft-search stuff
    657. 

  657. 

  658.     // it kind of sucks to have this here, but it is the best way
    659. 

  659.     // to ensure that it gets done if stuff is deleted.
    660. 

  660.     // leave this include here, it needs to be conditional
    661. 

  661.     include_once("./include/thread_info.php");
    662. 

  662.     phorum_update_thread_info($thread);
    663. 

  663. 

  664.     // we need to delete the subscriptions for that thread too
    665. 

  665.     $sql = "DELETE FROM {$PHORUM['subscribers_table']} WHERE forum_id > 0 AND thread=$thread";
    666. 

  666.     $res = mysql_query($sql, $conn);
    667. 

  667.     if ($err = mysql_error()) phorum_db_mysql_error("$err: $sql");
    668. 

  668. 

  669.     // this function will be slow with a lot of messages.
    670. 

  670.     phorum_db_update_forum_stats(true);
    671. 

  671. 

  672.     return explode(",", $mids);
    673. 

  673. }
    674. 

  674. 

  675. /**
    676. 

  676.  * Get all attached messages to a message.
    677. 

  677.  *
    678. 

  678.  * @param int $parent_id
    679. 

  679.  * @param int $forum_id
    680. 

  680.  *
    681. 

  681.  * @return string
    682. 

  682.  */
    683. 

  683. function phorum_db_get_messagetree($parent_id, $forum_id){
    684. 

  684.     $PHORUM = $GLOBALS["PHORUM"];
    685. 

  685. 

  686.     settype($parent_id, "int");
    687. 

  687.     settype($forum_id, "int");
    688. 

  688. 

  689.     $conn = phorum_db_mysql_connect();
    690. 

  690. 

  691.     $sql = "Select message_id from {$PHORUM['message_table']} where forum_id=$forum_id and parent_id=$parent_id";
    692. 

  692. 

  693.     $res = mysql_query($sql, $conn);
    694. 

  694.     if ($err = mysql_error()) phorum_db_mysql_error("$err: $sql");
    695. 

  695. 

  696.     $tree = "$parent_id";
    697. 

  697. 

  698.     while($rec = mysql_fetch_row($res)){
    699. 

  699.         $tree .= "," . phorum_db_get_messagetree($rec[0],$forum_id);
    700. 

  700.     }
    701. 

  701. 

  702.     return $tree;
    703. 

  703. }
    704. 

  704. 

  705. /**
    706. 

  706.  * Update a message with new data.
    707. 

  707.  *
    708. 

  708.  * @param int $message_id
    709. 

  709.  * @param array $message
    710. 

  710.  * 		See phorum_db_post_message() for a list of available fields.
    711. 

  711.  * 		You can pass in as many or as few fields as you wish to update.
    712. 

  712.  *
    713. 

  713.  * @return boolean
    714. 

  714.  * 		TRUE on success, FALSE on failure.
    715. 

  715.  */
    716. 

  716. function phorum_db_update_message($message_id, $message)
    717. 

  717. {
    718. 

  718.     $PHORUM = $GLOBALS["PHORUM"];
    719. 

  719. 

  720.     settype($message_id, "int");
    721. 

  721. 

  722.     if (count($message) > 0){
    723. 

  723.         $conn = phorum_db_mysql_connect();
    724. 

  724. 

  725.         foreach($message as $field => $value){
    726. 

  726.             if (is_numeric($value) && !in_array($field,$PHORUM['string_fields'])){
    727. 

  727.                 $fields[] = "$field=$value";
    728. 

  728.             }elseif (is_array($value)){
    729. 

  729.                 $value = mysql_escape_string(serialize($value));
    730. 

  730.                 $message[$field] = $value;
    731. 

  731.                 $fields[] = "$field='$value'";
    732. 

  732.             }else{
    733. 

  733.                 $value = mysql_escape_string($value);
    734. 

  734.                 $message[$field] = $value;
    735. 

  735.                 $fields[] = "$field='$value'";
    736. 

  736.             }
    737. 

  737.         }
    738. 

  738. 

  739.         $sql = "update {$PHORUM['message_table']} set " . implode(", ", $fields) . " where message_id=$message_id";
    740. 

  740.         $res = mysql_query($sql, $conn);
    741. 

  741.         if ($err = mysql_error()) phorum_db_mysql_error("$err: $sql");
    742. 

  742. 

  743.         if($res){
    744. 

  744.             // start ft-search stuff
    745. 

  745.             if(isset($message["author"]) && isset($message["subject"]) && isset($message["body"])){
    746. 

  746.                 $search_text="$message[author] | $message[subject] | $message[body]";
    747. 

  747.                 $sql="replace delayed into {$PHORUM['search_table']} set message_id={$message_id}, forum_id={$message['forum_id']}, search_text='$search_text'";
    748. 

  748.                 $res = mysql_query($sql, $conn);
    749. 

  749.                 if ($err = mysql_error()) phorum_db_mysql_error("$err: $sql");
    750. 

  750.             }
    751. 

  751.             // end ft-search stuff
    752. 

  752.         }
    753. 

  753. 

  754.         return ($res > 0) ? true : false;
    755. 

  755. 

  756.     }else{
    757. 

  757.         trigger_error("\$message cannot be empty in phorum_update_message()", E_USER_ERROR);
    758. 

  758.     }
    759. 

  759. }
    760. 

  760. 

  761. /**
    762. 

  762.  * Get the first message that matches the search parameters.  If
    763. 

  763.  * you pass in multiple matches targets, this will return an array
    764. 

  764.  * of messages.  Otherwise it will return a single message.
    765. 

  765.  *
    766. 

  766.  * @param mixed $value
    767. 

  767.  * 		The value in the database column that you want to match.
    768. 

  768.  * 		This can be an array, in which case this will return the messages
    769. 

  769.  * 		that match any of the given values in the array.
    770. 

  770.  * @param string $field
    771. 

  771.  * 		The database column you are searching to find $value.
    772. 

  772.  * @param boolean $ignore_forum_id
    773. 

  773.  * @return array
    774. 

  774.  */
    775. 

  775. function phorum_db_get_message($value, $field="message_id", $ignore_forum_id=false)
    776. 

  776. {
    777. 

  777.     $PHORUM = $GLOBALS["PHORUM"];
    778. 

  778.     $field=mysql_escape_string($field);
    779. 

  779.     $multiple=false;
    780. 

  780. 

  781.     $conn = phorum_db_mysql_connect();
    782. 

  782. 

  783. 

  784.     $forum_id_check = "";
    785. 

  785.     if (!$ignore_forum_id && !empty($PHORUM["forum_id"])){
    786. 

  786.         $forum_id_check = "(forum_id = {$PHORUM['forum_id']} OR forum_id={$PHORUM['vroot']}) and";
    787. 

  787.     }
    788. 

  788. 

  789.     if(is_array($value)) {
    790. 

  790.         $checkvar="$field IN('".implode("','",$value)."')";
    791. 

  791.         $multiple=true;
    792. 

  792.     } else {
    793. 

  793.         $value=mysql_escape_string($value);
    794. 

  794.         $checkvar="$field='$value'";
    795. 

  795.     }
    796. 

  796. 

  797. 

  798.     $sql = "select {$PHORUM['message_table']}.* from {$PHORUM['message_table']} where $forum_id_check $checkvar";
    799. 

  799.     $res = mysql_query($sql, $conn);
    800. 

  800.     if ($err = mysql_error()) phorum_db_mysql_error("$err: $sql");
    801. 

  801. 

  802.     $ret = $multiple ? array() : NULL;
    803. 

  803. 

  804.     if(mysql_num_rows($res)){
    805. 

  805.         if($multiple) {
    806. 

  806.             while($rec=mysql_fetch_assoc($res)) {
    807. 

  807.                 // convert meta field
    808. 

  808.                 if(empty($rec["meta"])){
    809. 

  809.                     $rec["meta"]=array();
    810. 

  810.                 } else {
    811. 

  811.                     $rec["meta"]=unserialize($rec["meta"]);
    812. 

  812.                 }
    813. 

  813.                 $ret[$rec['message_id']]=$rec;
    814. 

  814.             }
    815. 

  815.         } else {
    816. 

  816.             $rec = mysql_fetch_assoc($res);
    817. 

  817. 

  818.             // convert meta field
    819. 

  819.             if(empty($rec["meta"])){
    820. 

  820.                 $rec["meta"]=array();
    821. 

  821.             } else {
    822. 

  822.                 $rec["meta"]=unserialize($rec["meta"]);
    823. 

  823.             }
    824. 

  824.             $ret=$rec;
    825. 

  825.         }
    826. 

  826.     }
    827. 

  827. 

  828.     return $ret;
    829. 

  829. }
    830. 

  830. 

  831. /**
    832. 

  832.  * Get messages with the given thread id.  Returns an array of messages.
    833. 

  833.  *
    834. 

  834.  * @param int $thread
    835. 

  835.  * @param int $page
    836. 

  836.  * @return array
    837. 

  837.  */
    838. 

  838. function phorum_db_get_messages($thread,$page=0)
    839. 

  839. {
    840. 

  840.     $PHORUM = $GLOBALS["PHORUM"];
    841. 

  841. 

  842.     settype($thread, "int");
    843. 

  843. 

  844.     $conn = phorum_db_mysql_connect();
    845. 

  845. 

  846.     $forum_id_check = "";
    847. 

  847.     if (!empty($PHORUM["forum_id"])){
    848. 

  848.         $forum_id_check = "(forum_id = {$PHORUM['forum_id']} OR forum_id={$PHORUM['vroot']}) and";
    849. 

  849.     }
    850. 

  850. 

  851.     // are we really allowed to show this thread/message?
    852. 

  852.     $approvedval = "";
    853. 

  853.     if(!phorum_user_access_allowed(PHORUM_USER_ALLOW_MODERATE_MESSAGES)) {
    854. 

  854.         $approvedval="AND {$PHORUM['message_table']}.status =".PHORUM_STATUS_APPROVED;
    855. 

  855.     }
    856. 

  856. 

  857.     if($page > 0) {
    858. 

  858.            $start=$PHORUM["read_length"]*($page-1);
    859. 

  859.            $sql = "select {$PHORUM['message_table']}.* from {$PHORUM['message_table']} where $forum_id_check thread=$thread $approvedval order by message_id LIMIT $start,".$PHORUM["read_length"];
    860. 

  860.     } else {
    861. 

  861.            $sql = "select {$PHORUM['message_table']}.* from {$PHORUM['message_table']} where $forum_id_check thread=$thread $approvedval order by message_id";
    862. 

  862.            if(isset($PHORUM["reverse_threading"]) && $PHORUM["reverse_threading"]) $sql.=" desc";
    863. 

  863.     }
    864. 

  864. 

  865.     $res = mysql_query($sql, $conn);
    866. 

  866.     if ($err = mysql_error()) phorum_db_mysql_error("$err: $sql");
    867. 

  867. 

  868.     $arr = array();
    869. 

  869. 

  870.     while ($rec = mysql_fetch_assoc($res)){
    871. 

  871.         $arr[$rec["message_id"]] = $rec;
    872. 

  872. 

  873.         // convert meta field
    874. 

  874.         if(empty($rec["meta"])){
    875. 

  875.             $arr[$rec["message_id"]]["meta"]=array();
    876. 

  876.         } else {
    877. 

  877.             $arr[$rec["message_id"]]["meta"]=unserialize($rec["meta"]);
    878. 

  878.         }
    879. 

  879.         if(empty($arr['users'])) $arr['users']=array();
    880. 

  880.         if($rec["user_id"]){
    881. 

  881.             $arr['users'][]=$rec["user_id"];
    882. 

  882.         }
    883. 

  883. 

  884.     }
    885. 

  885. 

  886.     if(count($arr) && $page != 0) {
    887. 

  887.         // selecting the thread-starter
    888. 

  888.         $sql = "select {$PHORUM['message_table']}.* from {$PHORUM['message_table']} where $forum_id_check message_id=$thread $approvedval";
    889. 

  889.         $res = mysql_query($sql, $conn);
    890. 

  890.         if ($err = mysql_error()) phorum_db_mysql_error("$err: $sql");
    891. 

  891.         if(mysql_num_rows($res) > 0) {
    892. 

  892.             $rec = mysql_fetch_assoc($res);
    893. 

  893.             $arr[$rec["message_id"]] = $rec;
    894. 

  894.             $arr[$rec["message_id"]]["meta"]=unserialize($rec["meta"]);
    895. 

  895.         }
    896. 

  896.     }
    897. 

  897.     return $arr;
    898. 

  898. }
    899. 

  899. 

  900. /**
    901. 

  901.  * Return the index of a message in a thread.
    902. 

  902.  * @param int $thread
    903. 

  903.  * @param int $message_id
    904. 

  904.  * @return int
    905. 

  905.  */
    906. 

  906. function phorum_db_get_message_index($thread=0,$message_id=0) {
    907. 

  907.     $PHORUM = $GLOBALS["PHORUM"];
    908. 

  908. 

  909.     // check for valid values
    910. 

  910.     if(empty($message_id) || empty($message_id)) {
    911. 

  911.         return 0;
    912. 

  912.     }
    913. 

  913. 

  914.     settype($thread, "int");
    915. 

  915.     settype($message_id, "int");
    916. 

  916. 

  917.     $approvedval="";
    918. 

  918.     $forum_id_check="";
    919. 

  919. 

  920.     $conn = phorum_db_mysql_connect();
    921. 

  921. 

  922.     if (!empty($PHORUM["forum_id"])){
    923. 

  923.         $forum_id_check = "(forum_id = {$PHORUM['forum_id']} OR forum_id={$PHORUM['vroot']}) AND";
    924. 

  924.     }
    925. 

  925. 

  926.     if(!phorum_user_access_allowed(PHORUM_USER_ALLOW_MODERATE_MESSAGES)) {
    927. 

  927.         $approvedval="AND {$PHORUM['message_table']}.status =".PHORUM_STATUS_APPROVED;
    928. 

  928.     }
    929. 

  929. 

  930.     $sql = "select count(*) as msg_index from {$PHORUM['message_table']} where $forum_id_check thread=$thread $approvedval AND message_id <= $message_id order by message_id";
    931. 

  931. 

  932.     $res = mysql_query($sql, $conn);
    933. 

  933.     if ($err = mysql_error()) phorum_db_mysql_error("$err: $sql");
    934. 

  934. 

  935.     $rec = mysql_fetch_assoc($res);
    936. 

  936. 

  937.     return $rec['msg_index'];
    938. 

  938. }
    939. 

  939. 

  940. /**
    941. 

  941.  * Search the database for the supplied search criteria and returns
    942. 

  942.  * an array with two elements.  One is the count of total messages that
    943. 

  943.  * matched, the second is an array of the messages from the results
    944. 

  944.  * based on the $start (0 base) given and the $length given.
    945. 

  945.  *
    946. 

  946.  * @param string $search
    947. 

  947.  * @param int $offset
    948. 

  948.  * @param int $length
    949. 

  949.  * @param string $match_type
    950. 

  950.  * @param int $match_date
    951. 

  951.  * @param string $match_forum
    952. 

  952.  *
    953. 

  953.  * @return array
    954. 

  954.  */
    955. 

  955. function phorum_db_search($search, $offset, $length, $match_type, $match_date, $match_forum)
    956. 

  956. {
    957. 

  957.     $PHORUM = $GLOBALS["PHORUM"];
    958. 

  958. 

  959.     $start = $offset * $PHORUM["list_length"];
    960. 

  960. 

  961.     $arr = array("count" => 0, "rows" => array());
    962. 

  962. 

  963.     $conn = phorum_db_mysql_connect();
    964. 

  964. 

  965.     // have to check what forums they can read first.
    966. 

  966.     $allowed_forums=phorum_user_access_list(PHORUM_USER_ALLOW_READ);
    967. 

  967.     // if they are not allowed to search any forums, return the emtpy $arr;
    968. 

  968.     if(empty($allowed_forums) || ($PHORUM['forum_id']>0 && !in_array($PHORUM['forum_id'], $allowed_forums)) ) return $arr;
    969. 

  969. 

  970.     // Add forum 0 (for announcements) to the allowed forums.
    971. 

  971.     $allowed_forums[] = 0;
    972. 

  972. 

  973.     if($PHORUM['forum_id']!=0 && $match_forum!="ALL"){
    974. 

  974.         $forum_where=" and forum_id={$PHORUM['forum_id']}";
    975. 

  975.     } else {
    976. 

  976.         $forum_where=" and forum_id in (".implode(",", $allowed_forums).")";
    977. 

  977.     }
    978. 

  978. 

  979.     // prepare terms
    980. 

  980.     if($match_type=="PHRASE"){
    981. 

  981. 

  982.         $terms = array('"'.$search.'"');
    983. 

  983. 

  984.     } elseif($match_type=="AUTHOR"){
    985. 

  985. 

  986.         $terms = mysql_escape_string($search);
    987. 

  987. 

  988.     } else {
    989. 

  989. 

  990.         $quote_terms=array();
    991. 

  991.         if ( strstr( $search, '"' ) ){
    992. 

  992.             //first pull out all the double quoted strings (e.g. '"iMac DV" or -"iMac DV"')
    993. 

  993.             preg_match_all( '/-*"(.*?)"/', $search, $match );
    994. 

  994.             $search = preg_replace( '/-*".*?"/', '', $search );
    995. 

  995.             $quote_terms = $match[0];
    996. 

  996.         }
    997. 

  997. 

  998.         //finally pull out the rest words in the string
    999. 

  999.         $terms = preg_split( "/\s+/", $search, 0, PREG_SPLIT_NO_EMPTY );
    1000. 

  1000. 

  1001.         //merge them all together and return
    1002. 

  1002.         $terms = array_merge($terms, $quote_terms);
    1003. 

  1003. 

  1004.     }
    1005. 

  1005. 

  1006. 

  1007.     if($PHORUM["DBCONFIG"]["mysql_use_ft"]){
    1008. 

  1008. 

  1009.         if($match_type=="AUTHOR"){
    1010. 

  1010. 

  1011.             $id_table=$PHORUM['search_table']."_auth_".md5(microtime());
    1012. 

  1012. 

  1013.             $sql = "create temporary table $id_table (key(message_id)) ENGINE=HEAP select message_id from {$PHORUM['message_table']} where author='$terms' $forum_where";
    1014. 

  1014.             if($match_date>0){
    1015. 

  1015.                 $ts=time()-86400*$match_date;
    1016. 

  1016.                 $sql.=" and datestamp>=$ts";
    1017. 

  1017.             }
    1018. 

  1018. 

  1019.             $res = mysql_query($sql, $conn);
    1020. 

  1020.             if ($err = mysql_error()) phorum_db_mysql_error("$err: $sql");
    1021. 

  1021. 

  1022.         } else {
    1023. 

  1023. 

  1024. 

  1025.             if(count($terms)){
    1026. 

  1026. 

  1027.                 $use_key="";
    1028. 

  1028.                 $extra_where="";
    1029. 

  1029. 

  1030.                 /* using this code on larger forums has shown to make the search faster.
    1031. 

  1031.                    However, on smaller forums, it does not appear to help and in fact
    1032. 

  1032.                    appears to slow down searches.
    1033. 

    1034. 

  1034.                 if($match_date){
    1035. 

  1035.                     $min_time=time()-86400*$match_date;
    1036. 

  1036.                     $sql="select min(message_id) as min_id from {$PHORUM['message_table']} where datestamp>=$min_time";
    1037. 

  1037.                     $res=mysql_query($sql, $conn);
    1038. 

  1038.                     if ($err = mysql_error()) phorum_db_mysql_error("$err: $sql");
    1039. 

  1039.                     $min_id=mysql_result($res, 0, "min_id");
    1040. 

  1040.                     $use_key=" use key (primary)";
    1041. 

  1041.                     $extra_where="and message_id>=$min_id";
    1042. 

  1042.                 }
    1043. 

  1043.                 */
    1044. 

  1044. 

  1045.                 $id_table=$PHORUM['search_table']."_ft_".md5(microtime());
    1046. 

  1046. 

  1047.                 if($PHORUM["DBCONFIG"]["mysql_use_ft"]){
    1048. 

  1048. 

  1049.                     if($match_type=="ALL" && count($terms)>1){
    1050. 

  1050.                         $against="+".mysql_escape_string(implode(" +", $terms));
    1051. 

  1051.                     } else {
    1052. 

  1052.                         $against=mysql_escape_string(implode(" ", $terms));
    1053. 

  1053.                     }
    1054. 

  1054. 

  1055.                     $clause="MATCH (search_text) AGAINST ('$against' IN BOOLEAN MODE)";
    1056. 

  1056. 

  1057.                 } else {
    1058. 

  1058. 

  1059.                     if($match_type=="ALL"){
    1060. 

  1060.                         $conj="and";
    1061. 

  1061.                     } else {
    1062. 

  1062.                         $conj="or";
    1063. 

  1063.                     }
    1064. 

  1064. 

  1065.                     // quote strings correctly
    1066. 

  1066.                     foreach ($terms as $id => $term) {
    1067. 

  1067.                         $terms[$id] = mysql_escape_string($term);
    1068. 

  1068.                     }
    1069. 

  1069. 

  1070.                     $clause = "( search_text like '%".implode("%' $conj search_text like '%", $terms)."%' )";
    1071. 

  1071. 

  1072.                 }
    1073. 

  1073. 

  1074.                 $sql = "create temporary table $id_table (key(message_id)) ENGINE=HEAP select message_id from {$PHORUM['search_table']} $use_key where $clause $extra_where";
    1075. 

  1075.                 $res = mysql_unbuffered_query($sql, $conn);
    1076. 

  1076.                 if ($err = mysql_error()) phorum_db_mysql_error("$err: $sql");
    1077. 

  1077. 

  1078.             }
    1079. 

  1079.         }
    1080. 

  1080. 

  1081. 

  1082.         if(isset($id_table)){
    1083. 

  1083. 

  1084.             // create a temporary table of the messages we want
    1085. 

  1085.             $table=$PHORUM['search_table']."_".md5(microtime());
    1086. 

  1086.             $sql="create temporary table $table (key (forum_id, status, datestamp)) ENGINE=HEAP select {$PHORUM['message_table']}.message_id, {$PHORUM['message_table']}.datestamp, status, forum_id from {$PHORUM['message_table']} inner join $id_table using (message_id) where status=".PHORUM_STATUS_APPROVED." $forum_where";
    1087. 

  1087. 

  1088.             if($match_date>0){
    1089. 

  1089.                 $ts=time()-86400*$match_date;
    1090. 

  1090.                 $sql.=" and datestamp>=$ts";
    1091. 

  1091.             }
    1092. 

  1092. 

  1093.             $res=mysql_query($sql, $conn);
    1094. 

  1094.             if ($err = mysql_error()) phorum_db_mysql_error("$err: $sql");
    1095. 

  1095. 

  1096.             $sql="select count(*) as count from $table";
    1097. 

  1097.             $res = mysql_query($sql, $conn);
    1098. 

  1098. 

  1099.             if ($err = mysql_error()) phorum_db_mysql_error("$err: $sql");
    1100. 

  1100.             $total_count=mysql_result($res, 0, 0);
    1101. 

  1101. 

  1102.             $sql="select message_id from $table order by datestamp desc limit $start, $length";
    1103. 

  1103.             $res = mysql_unbuffered_query($sql, $conn);
    1104. 

  1104. 

  1105.             if ($err = mysql_error()) phorum_db_mysql_error("$err: $sql");
    1106. 

  1106. 

  1107.             $idstring="";
    1108. 

  1108.             while ($rec = mysql_fetch_row($res)){
    1109. 

  1109.                 $idstring.="$rec[0],";
    1110. 

  1110.             }
    1111. 

  1111.             $idstring=substr($idstring, 0, -1);
    1112. 

  1112. 

  1113.         }
    1114. 

  1114. 

  1115.     } else { // not using full text matching
    1116. 

  1116. 

  1117.         if($match_type=="AUTHOR"){
    1118. 

  1118. 

  1119.             $sql_core = "from {$PHORUM['message_table']} where author='$terms' $forum_where";
    1120. 

  1120. 

  1121.             if($match_date>0){
    1122. 

  1122.                 $ts=time()-86400*$match_date;
    1123. 

  1123.                 $sql_core.=" and datestamp>=$ts";
    1124. 

  1124.             }
    1125. 

  1125. 

  1126. 

  1127.             $sql = "select count(*) $sql_core";
    1128. 

  1128.             $res = mysql_query($sql, $conn);
    1129. 

  1129.             if ($err = mysql_error()) phorum_db_mysql_error("$err: $sql");
    1130. 

  1130.             $total_count=mysql_result($res, 0, 0);
    1131. 

  1131. 

  1132. 

  1133.             $sql = "select message_id $sql_core order by datestamp desc limit $start, $length";
    1134. 

  1134. 

  1135.             $res = mysql_unbuffered_query($sql, $conn);
    1136. 

  1136.             if ($err = mysql_error()) phorum_db_mysql_error("$err: $sql");
    1137. 

  1137. 

  1138.             $idstring="";
    1139. 

  1139.             while ($rec = mysql_fetch_row($res)){
    1140. 

  1140.                 $idstring.="$rec[0],";
    1141. 

  1141.             }
    1142. 

  1142.             $idstring=substr($idstring, 0, -1);
    1143. 

  1143. 

  1144.         } else {
    1145. 

  1145. 

  1146.             if(count($terms)){
    1147. 

  1147. 

  1148.                 $id_table=$PHORUM['search_table']."_ft_".md5(microtime());
    1149. 

  1149. 

  1150.                 if($match_type=="ALL"){
    1151. 

  1151.                     $conj="and";
    1152. 

  1152.                 } else {
    1153. 

  1153.                     $conj="or";
    1154. 

  1154.                 }
    1155. 

  1155. 

  1156.                 // quote strings correctly
    1157. 

  1157.                 foreach ($terms as $id => $term) {
    1158. 

  1158.                     $terms[$id] = mysql_escape_string($term);
    1159. 

  1159.                 }
    1160. 

  1160. 

  1161.                 $clause = "( concat(author, ' | ', subject, ' | ', body) like '%".implode("%' $conj concat(author, ' | ', subject, ' | ', body) like '%", $terms)."%' )";
    1162. 

  1162. 

  1163.                 $sql = "select count(*) from {$PHORUM['message_table']} where status=".PHORUM_STATUS_APPROVED." and $clause $forum_where";
    1164. 

  1164.                 $res = mysql_query($sql, $conn);
    1165. 

  1165. 

  1166.                 if ($err = mysql_error()) phorum_db_mysql_error("$err: $sql");
    1167. 

  1167.                 $total_count=mysql_result($res, 0, 0);
    1168. 

  1168. 

  1169.                 $sql = "select message_id from {$PHORUM['message_table']} where status=".PHORUM_STATUS_APPROVED." and $clause $forum_where order by datestamp desc limit $start, $length";
    1170. 

  1170.                 $res = mysql_unbuffered_query($sql, $conn);
    1171. 

  1171.                 if ($err = mysql_error()) phorum_db_mysql_error("$err: $sql");
    1172. 

  1172. 

  1173.                 $idstring="";
    1174. 

  1174.                 while ($rec = mysql_fetch_row($res)){
    1175. 

  1175.                     $idstring.="$rec[0],";
    1176. 

  1176.                 }
    1177. 

  1177.                 $idstring=substr($idstring, 0, -1);
    1178. 

  1178. 

  1179.             }
    1180. 

  1180. 

  1181.         }
    1182. 

  1182. 

  1183.     }
    1184. 

  1184. 

  1185.     if($idstring){
    1186. 

  1186.         $sql="select * from {$PHORUM['message_table']} where message_id in ($idstring) order by datestamp desc";
    1187. 

  1187.         $res = mysql_unbuffered_query($sql, $conn);
    1188. 

  1188. 

  1189.         if ($err = mysql_error()) phorum_db_mysql_error("$err: $sql");
    1190. 

  1190. 

  1191.         $rows = array();
    1192. 

  1192. 

  1193.         while ($rec = mysql_fetch_assoc($res)){
    1194. 

  1194.             $rows[$rec["message_id"]] = $rec;
    1195. 

  1195.         }
    1196. 

  1196. 

  1197.         $arr = array("count" => $total_count, "rows" => $rows);
    1198. 

  1198.     }
    1199. 

  1199. 

  1200.     return $arr;
    1201. 

  1201. }
    1202. 

  1202. 

  1203. /**
    1204. 

  1204.  * Return the closest thread that is greater than $key.
    1205. 

  1205.  * @param int $key
    1206. 

  1206.  * @return mixed
    1207. 

  1207.  */
    1208. 

  1208. function phorum_db_get_newer_thread($key){
    1209. 

  1209.     $PHORUM = $GLOBALS["PHORUM"];
    1210. 

  1210. 

  1211.     settype($key, "int");
    1212. 

  1212. 

  1213.     $conn = phorum_db_mysql_connect();
    1214. 

  1214. 

  1215.     $keyfield = ($PHORUM["float_to_top"]) ? "modifystamp" : "thread";
    1216. 

  1216. 

  1217.     // are we really allowed to show this thread/message?
    1218. 

  1218.     $approvedval = "";
    1219. 

  1219.     if(!phorum_user_access_allowed(PHORUM_USER_ALLOW_MODERATE_MESSAGES) && $PHORUM["moderation"] == PHORUM_MODERATE_ON) {
    1220. 

  1220.         $approvedval="AND {$PHORUM['message_table']}.status =".PHORUM_STATUS_APPROVED;
    1221. 

  1221.     } else {
    1222. 

  1222.         $approvedval="AND {$PHORUM['message_table']}.parent_id = 0";
    1223. 

  1223.     }
    1224. 

  1224. 

  1225.     $sql = "select thread from {$PHORUM['message_table']} where forum_id={$PHORUM['forum_id']} $approvedval and $keyfield>$key order by $keyfield limit 1";
    1226. 

  1226. 

  1227.     $res = mysql_query($sql, $conn);
    1228. 

  1228.     if ($err = mysql_error()) phorum_db_mysql_error("$err: $sql");
    1229. 

  1229. 

  1230.     return (mysql_num_rows($res)) ? mysql_result($res, 0, "thread") : 0;
    1231. 

  1231. }
    1232. 

  1232. 

  1233. /**
    1234. 

  1234.  * Returns the closest thread that is less than $key.
    1235. 

  1235.  * @param int $key
    1236. 

  1236.  * @return mixed
    1237. 

  1237.  */
    1238. 

  1238. function phorum_db_get_older_thread($key){
    1239. 

  1239.     $PHORUM = $GLOBALS["PHORUM"];
    1240. 

  1240. 

  1241.     settype($key, "int");
    1242. 

  1242. 

  1243.     $conn = phorum_db_mysql_connect();
    1244. 

  1244. 

  1245.     $keyfield = ($PHORUM["float_to_top"]) ? "modifystamp" : "thread";
    1246. 

  1246.     // are we really allowed to show this thread/message?
    1247. 

  1247.     $approvedval = "";
    1248. 

  1248.     if(!phorum_user_access_allowed(PHORUM_USER_ALLOW_MODERATE_MESSAGES) && $PHORUM["moderation"] == PHORUM_MODERATE_ON) {
    1249. 

  1249.         $approvedval="AND {$PHORUM['message_table']}.status=".PHORUM_STATUS_APPROVED;
    1250. 

  1250.     } else {
    1251. 

  1251.         $approvedval="AND {$PHORUM['message_table']}.parent_id = 0";
    1252. 

  1252.     }
    1253. 

  1253. 

  1254.     $sql = "select thread from {$PHORUM['message_table']} where forum_id={$PHORUM['forum_id']}  $approvedval and $keyfield<$key order by $keyfield desc limit 1";
    1255. 

  1255. 

  1256.     $res = mysql_query($sql, $conn);
    1257. 

  1257.     if ($err = mysql_error()) phorum_db_mysql_error("$err: $sql");
    1258. 

  1258. 

  1259.     return (mysql_num_rows($res)) ? mysql_result($res, 0, "thread") : 0;
    1260. 

  1260. }
    1261. 

  1261. 

  1262. /**
    1263. 

  1263.  * Load the settings in the global $PHORUM['SETTINGS'] variable.
    1264. 

  1264.  *
    1265. 

  1265.  * @return void
    1266. 

  1266.  */
    1267. 

  1267. function phorum_db_load_settings(){
    1268. 

  1268.     global $PHORUM;
    1269. 

  1269. 

  1270. 

  1271.     $conn = phorum_db_mysql_connect();
    1272. 

  1272. 

  1273.     $sql = "select * from {$PHORUM['settings_table']}";
    1274. 

  1274. 

  1275.     $res = mysql_query($sql, $conn);
    1276. 

  1276.     if(!$res && !defined("PHORUM_ADMIN")){
    1277. 

  1277.         if (mysql_errno($conn)==1146){
    1278. 

  1278.             // settings table does not exist
    1279. 

  1279.             return;
    1280. 

  1280.         } elseif(($err = mysql_error())){
    1281. 

  1281.             phorum_db_mysql_error("$err: $sql");
    1282. 

  1282.         }
    1283. 

  1283.     }
    1284. 

  1284. 

  1285.     if (empty($err) && $res){
    1286. 

  1286.         while ($rec = mysql_fetch_assoc($res)){
    1287. 

  1287. 

  1288.             // only load the default forum options in the admin
    1289. 

  1289.             if($rec["name"]=="default_forum_options" && !defined("PHORUM_ADMIN")) continue;
    1290. 

  1290. 

  1291.             if ($rec["type"] == "V"){
    1292. 

  1292.                 if ($rec["data"] == 'true'){
    1293. 

  1293.                     $val = true;
    1294. 

  1294.                 }elseif ($rec["data"] == 'false'){
    1295. 

  1295.                     $val = false;
    1296. 

  1296.                 }elseif (is_numeric($rec["data"])){
    1297. 

  1297.                     $val = $rec["data"];
    1298. 

  1298.                 }else{
    1299. 

  1299.                     $val = "$rec[data]";
    1300. 

  1300.                 }
    1301. 

  1301.             }else{
    1302. 

  1302.                 $val = unserialize($rec["data"]);
    1303. 

  1303.             }
    1304. 

  1304. 

  1305.             $PHORUM[$rec['name']]=$val;
    1306. 

  1306.             $PHORUM['SETTINGS'][$rec['name']]=$val;
    1307. 

  1307.         }
    1308. 

  1308.     }
    1309. 

  1309. }
    1310. 

  1310. 

  1311. /**
    1312. 

  1312.  * Update Phorum settings.
    1313. 

  1313.  *
    1314. 

  1314.  * @param array $settings
    1315. 

  1315.  *
    1316. 

  1316.  * @return boolean
    1317. 

  1317.  */
    1318. 

  1318. function phorum_db_update_settings($settings){
    1319. 

  1319.     global $PHORUM;
    1320. 

  1320. 

  1321.     if (count($settings) > 0){
    1322. 

  1322.         $conn = phorum_db_mysql_connect();
    1323. 

  1323. 

  1324.         foreach($settings as $field => $value){
    1325. 

  1325.             if (is_numeric($value)){
    1326. 

  1326.                 $type = 'V';
    1327. 

  1327.             }elseif (is_string($value)){
    1328. 

  1328.                 $value = mysql_escape_string($value);
    1329. 

  1329.                 $type = 'V';
    1330. 

  1330.             }else{
    1331. 

  1331.                 $value = mysql_escape_string(serialize($value));
    1332. 

  1332.                 $type = 'S';
    1333. 

  1333.             }
    1334. 

  1334. 

  1335.             $sql = "replace into {$PHORUM['settings_table']} set data='$value', type='$type', name='$field'";
    1336. 

  1336.             $res = mysql_query($sql, $conn);
    1337. 

  1337.             if ($err = mysql_error()) phorum_db_mysql_error("$err: $sql");
    1338. 

  1338.         }
    1339. 

  1339. 

  1340.         return ($res > 0) ? true : false;
    1341. 

  1341.     }else{
    1342. 

  1342.         trigger_error("\$settings cannot be empty in phorum_db_update_settings()", E_USER_ERROR);
    1343. 

  1343.     }
    1344. 

  1344. }
    1345. 

  1345. 

  1346. /**
    1347. 

  1347.  * Get all forums for a flat/collapsed display and return the data in
    1348. 

  1348.  * an array.
    1349. 

  1349.  *
    1350. 

  1350.  * @param mixed $forum_ids
    1351. 

  1351.  * 		Can be an array of forum IDs or an int for one forum ID.
    1352. 

  1352.  * @param int $parent_id
    1353. 

  1353.  * @param unknown $vroot
    1354. 

  1354.  * @param unknown $inherit_id
    1355. 

  1355.  *
    1356. 

  1356.  * @return array
    1357. 

  1357.  */
    1358. 

  1358. function phorum_db_get_forums($forum_ids = 0, $parent_id = -1, $vroot = null, $inherit_id = null){
    1359. 

  1359.     $PHORUM = $GLOBALS["PHORUM"];
    1360. 

  1360. 

  1361.     settype($parent_id, "int");
    1362. 

  1362. 

  1363.     $conn = phorum_db_mysql_connect();
    1364. 

  1364. 

  1365.     if (is_array($forum_ids)) {
    1366. 

  1366.         $int_ids = array();
    1367. 

  1367.         foreach ($forum_ids as $id) {
    1368. 

  1368.             settype($id, "int");
    1369. 

  1369.             $int_ids[] = $id;
    1370. 

  1370.         }
    1371. 

  1371.         $forum_ids = implode(",", $int_ids);
    1372. 

  1372.     } else {
    1373. 

  1373.         settype($forum_ids, "int");
    1374. 

  1374.     }
    1375. 

  1375. 

  1376.     $sql = "select * from {$PHORUM['forums_table']} ";
    1377. 

  1377.     if ($forum_ids){
    1378. 

  1378.         $sql .= " where forum_id in ($forum_ids)";
    1379. 

  1379.     } elseif ($inherit_id !== null) {
    1380. 

  1380.         $sql .= " where inherit_id = $inherit_id";
    1381. 

  1381.         if(!defined("PHORUM_ADMIN")) $sql.=" and active=1";
    1382. 

  1382.     } elseif ($parent_id >= 0) {
    1383. 

  1383.         $sql .= " where parent_id = $parent_id";
    1384. 

  1384.         if(!defined("PHORUM_ADMIN")) $sql.=" and active=1";
    1385. 

  1385.     }  elseif($vroot !== null) {
    1386. 

  1386.         $sql .= " where vroot = $vroot";
    1387. 

  1387.     } else {
    1388. 

  1388.         $sql .= " where forum_id <> 0";
    1389. 

  1389.     }
    1390. 

  1390. 

  1391.     $sql .= " order by display_order ASC, name";
    1392. 

  1392. 

  1393.     $res = mysql_query($sql, $conn);
    1394. 

  1394.     if ($err = mysql_error()) phorum_db_mysql_error("$err: $sql");
    1395. 

  1395. 

  1396.     $forums = array();
    1397. 

  1397. 

  1398.     while ($row = mysql_fetch_assoc($res)){
    1399. 

  1399.         $forums[$row["forum_id"]] = $row;
    1400. 

  1400.     }
    1401. 

  1401. 

  1402.     return $forums;
    1403. 

  1403. }
    1404. 

  1404. 

  1405. /**
    1406. 

  1406.  * Update the forums stats.
    1407. 

  1407.  *
    1408. 

  1408.  * @param boolean $refresh
    1409. 

  1409.  *   	If true, it pulls the numbers from the table.
    1410. 

  1410.  * @param int $msg_count_change
    1411. 

  1411.  * @param int $timestamp
    1412. 

  1412.  * @param int $thread_count_change
    1413. 

  1413.  * @param int $sticky_count_change
    1414. 

  1414.  *
    1415. 

  1415.  * @return void
    1416. 

  1416.  */
    1417. 

  1417. function phorum_db_update_forum_stats($refresh=false, $msg_count_change=0, $timestamp=0, $thread_count_change=0, $sticky_count_change=0)
    1418. 

  1418. {
    1419. 

  1419.     $PHORUM = $GLOBALS["PHORUM"];
    1420. 

  1420. 

  1421.     $conn = phorum_db_mysql_connect();
    1422. 

  1422. 

  1423.     // always refresh on small forums
    1424. 

  1424.     if (isset($PHORUM["message_count"]) && $PHORUM["message_count"]<1000) {
    1425. 

  1425.         $refresh=true;
    1426. 

  1426.     }
    1427. 

  1427. 

  1428.     if($refresh || empty($msg_count_change)){
    1429. 

  1429.         $sql = "select count(*) as message_count from {$PHORUM['message_table']} where forum_id={$PHORUM['forum_id']} and status=".PHORUM_STATUS_APPROVED;
    1430. 

  1430. 

  1431.         $res = mysql_query($sql, $conn);
    1432. 

  1432.         if ($err = mysql_error()) phorum_db_mysql_error("$err: $sql");
    1433. 

  1433. 

  1434.         $message_count = (int)mysql_result($res, 0, "message_count");
    1435. 

  1435.     } else {
    1436. 

  1436.         $message_count="message_count+$msg_count_change";
    1437. 

  1437.     }
    1438. 

  1438. 

  1439.     if($refresh || empty($timestamp)){
    1440. 

  1440. 

  1441.         $sql = "select max(modifystamp) as last_post_time from {$PHORUM['message_table']} where status=".PHORUM_STATUS_APPROVED." and forum_id={$PHORUM['forum_id']}";
    1442. 

  1442. 

  1443.         $res = mysql_query($sql, $conn);
    1444. 

  1444.         if ($err = mysql_error()) phorum_db_mysql_error("$err: $sql");
    1445. 

  1445. 

  1446.         $last_post_time = (int)mysql_result($res, 0, "last_post_time");
    1447. 

  1447.     } else {
    1448. 

  1448. 

  1449.         $last_post_time = $timestamp;
    1450. 

  1450.     }
    1451. 

  1451. 

  1452.     if($refresh || empty($thread_count_change)){
    1453. 

  1453. 

  1454.         $sql = "select count(*) as thread_count from {$PHORUM['message_table']} where forum_id={$PHORUM['forum_id']} and parent_id=0 and status=".PHORUM_STATUS_APPROVED;
    1455. 

  1455.         $res = mysql_query($sql, $conn);
    1456. 

  1456.         if ($err = mysql_error()) phorum_db_mysql_error("$err: $sql");
    1457. 

  1457.         $thread_count = (int)mysql_result($res, 0, "thread_count");
    1458. 

  1458. 

  1459.     } else {
    1460. 

  1460. 

  1461.         $thread_count="thread_count+$thread_count_change";
    1462. 

  1462.     }
    1463. 

  1463. 

  1464.     if($refresh || empty($sticky_count_change)){
    1465. 

  1465. 

  1466.         $sql = "select count(*) as sticky_count from {$PHORUM['message_table']} where forum_id={$PHORUM['forum_id']} and sort=".PHORUM_SORT_STICKY." and parent_id=0 and status=".PHORUM_STATUS_APPROVED;
    1467. 

  1467.         $res = mysql_query($sql, $conn);
    1468. 

  1468.         if ($err = mysql_error()) phorum_db_mysql_error("$err: $sql");
    1469. 

  1469.         $sticky_count = (int)mysql_result($res, 0, "sticky_count");
    1470. 

  1470. 

  1471.     } else {
    1472. 

  1472. 

  1473.         $sticky_count="sticky_count+$sticky_count_change";
    1474. 

  1474.     }
    1475. 

  1475. 

  1476.     $sql = "update {$PHORUM['forums_table']} set thread_count=$thread_count, message_count=$message_count, sticky_count=$sticky_count, last_post_time=$last_post_time where forum_id={$PHORUM['forum_id']}";
    1477. 

  1477.     mysql_query($sql, $conn);
    1478. 

  1478.     if ($err = mysql_error()) phorum_db_mysql_error("$err: $sql");
    1479. 

  1479. }
    1480. 

  1480. 

  1481. /**
    1482. 

  1482.  * Move a thread to the given forum.
    1483. 

  1483.  *
    1484. 

  1484.  * @param in…
    1485.

Large files files are truncated, but you can click here to view the full file