PageRenderTime 25ms CodeModel.GetById 15ms RepoModel.GetById 0ms app.codeStats 0ms

/www/source/search.php

http://firmkernel.googlecode.com/
PHP | 220 lines | 209 code | 1 blank | 10 comment | 1 complexity | 293ea95635c710f0c850178870edc1fc MD5 | raw file
Possible License(s): LGPL-3.0 
    

  1. <?php

    2. 

  2. /*

    3. 

  3. +-----------------------------------------------------------------------------+

    4. 

  4. | $Id: search.php 2010-05-24 12:37:44Z Bleakwind $

    5. 

  5. | Site search

    6. 

  6. | Copyright (c) 2003-2010 Bleakwind (www.weaverdream.com)

    7. 

  7. | http://www.weaverdream.com/

    8. 

  8. | Release under the GNU Lesser General Public License Version 3 (LGPLv3):

    9. 

  9. |   http://www.gnu.org/licenses/lgpl.html

    10. 

  10. +-----------------------------------------------------------------------------+

    11. 

  11. */

    12. 

  12. 

    13. 

  13. if (!defined( 'ENTRY_INDEX')){

    14. 

  14.     echo "<h1>Forbidden</h1><p>You don't have permission to access on this server.</p>";

    15. 

  15.     exit;

    16. 

  16. }

    17. 

  17. 

    18. 

  18. if ($sys->get['ope'] == "save"){

    19. 

  19. 

    20. 

  20.     $sys->post['search_type']       = strtolower(trim($sys->post['search_type']));

    21. 

  21.     $sys->get['search_type']        = strtolower(trim($sys->get['search_type']));

    22. 

  22.     $search_type                    = !empty($sys->post['search_type']) ? $sys->post['search_type'] : $sys->get['search_type'];

    23. 

  23.     if(!preg_match("/^content$/i", $search_type)){ $search_type = "content"; }

    24. 

  24.     $sys->post['search_model']      = strtolower(trim($sys->post['search_model']));

    25. 

  25.     $sys->get['search_model']       = strtolower(trim($sys->get['search_model']));

    26. 

  26.     $search_model                   = !empty($sys->post['search_model']) ? $sys->post['search_model'] : $sys->get['search_model'];

    27. 

  27.     if(!preg_match("/^[1-9][0-9]{0,10}$/i", $search_model)){ $search_model = "0"; }

    28. 

  28.     $sys->post['search_keyword']    = strtolower(trim($sys->post['search_keyword']));

    29. 

  29.     $sys->get['search_keyword']     = strtolower(trim($sys->get['search_keyword']));

    30. 

  30.     $search_keyword                 = !empty($sys->post['search_keyword']) ? $sys->post['search_keyword'] : $sys->get['search_keyword'];

    31. 

  31.     if(empty($search_keyword)){

    32. 

  32.         $sys->prompt("failed", $LANGUAGE['s']['search']['keyword_empty']);

    33. 

  33.     } elseif(mb_strwidth($search_keyword,"UTF-8") > 30){

    34. 

  34.         $sys->prompt("failed", $LANGUAGE['s']['search']['keyword_long']);

    35. 

  35.     } elseif(in_array($search_keyword, $LANGUAGE['s']['search']['keyword_default'])){

    36. 

  36.         $sys->prompt("failed", $$LANGUAGE['s']['search']['keyword_default_error']);

    37. 

  37.     } else {

    38. 

  38. 

    39. 

  39.         $keyword_array = preg_split("/[\s,]+/", $search_keyword);

    40. 

  40.         if (is_array($keyword_array) && count($keyword_array) > 0) {

    41. 

  41.             $where_keyword  = "";

    42. 

  42.             foreach ($keyword_array as $v) {

    43. 

  43.                 $where_keyword .= " AND FIND_IN_SET('".addslashes($v)."', content.keyword) > 0";

    44. 

  44.             }

    45. 

  45.             $where_keyword  = substr(trim($where_keyword), 0, 3) == "AND" ? substr(trim($where_keyword), 3) : trim($where_keyword);

    46. 

  46.         }

    47. 

  47.         $where = " AND (".$where_keyword.")";

    48. 

  48. 

    49. 

  49.         if (preg_match("/^[1-9][0-9]{0,10}$/i", $search_model)) {

    50. 

  50.             $where .= " AND channel.setmodel_id=".$search_model."";

    51. 

  51.         }

    52. 

  52.         $where  .= " AND ((content.if_enable=1) || (content.if_enable=3 AND content.if_enable_begin<".time()." AND content.if_enable_begin>".time()."))";

    53. 

  53.         $where = substr(trim($where), 0, 3) == "AND" ? substr(trim($where), 3) : trim($where);

    54. 

  54.         $where = $where != "" ? "WHERE ".$where : "";

    55. 

  55.         //////

    56. 

  56. 

    57. 

  57.         $search_result['id_array']   = array();

    58. 

  58.         $sql = "SELECT scheduler.id as scheduler_id

    59. 

  59.                 FROM ".DB_TABLE_SCHEDULER." scheduler

    60. 

  60.                     LEFT JOIN ".DB_TABLE_CONTENT." content ON content.content_id=scheduler.content_id

    61. 

  61.                     LEFT JOIN ".DB_TABLE_CONTENT_COVER." cover ON cover.content_id=scheduler.content_id

    62. 

  62.                     LEFT JOIN ".DB_TABLE_CHANNEL." channel ON channel.id=scheduler.channel_id

    63. 

  63.                 ".$where."

    64. 

  64.                 GROUP BY scheduler.id

    65. 

  65.                 ORDER BY content.if_top DESC, content.post_time DESC";

    66. 

  66.         $result = &$db->Execute($sql);

    67. 

  67.         if (!$result) {

    68. 

  68.             echo $db->ErrorMsg();

    69. 

  69.         } else {

    70. 

  70.             while (!$result->EOF) {

    71. 

  71.                 $search_result['id_array'][] = $result->fields['scheduler_id'];

    72. 

  72.                 $result->MoveNext();

    73. 

  73.             }

    74. 

  74.         }

    75. 

  75. 

    76. 

  76.         if (!is_array($search_result['id_array']) || count($search_result['id_array'])<=0) {

    77. 

  77.             $sys->prompt("failed", $LANGUAGE['s']['search']['result_empty']);

    78. 

  78.         } else {

    79. 

  79. 

    80. 

  80.             $search_result['id_list'] = implode(",", $search_result['id_array']);

    81. 

  81.             

    82. 

  82.             $error = false;

    83. 

  83.             for($i=0;$i<3;$i++) {

    84. 

  84.                 $search_id = sha1($MEMBER['id'].microtime());

    85. 

  85.                 $total_record = func::db_count_record(DB_TABLE_SEARCH, "sid='".$search_id."'");

    86. 

  86.                 if ($total_record <= 0) {

    87. 

  87.                     break;

    88. 

  88.                 }else {

    89. 

  89.                     if ($i == "2") {

    90. 

  90.                         $error = true;

    91. 

  91.                         $sys->prompt("failed", $LANGUAGE['s']['search']['build_sid_error']);

    92. 

  92.                     }

    93. 

  93.                 }

    94. 

  94.             }

    95. 

  95.             if (!$error) {

    96. 

  96.                 $sql_data = array(

    97. 

  97.                     "sid"       => "'".$search_id."'",

    98. 

  98.                     "type"      => "'".$search_type."'",

    99. 

  99.                     "keyword"   => "'".$search_keyword."'",

    100. 

  100.                     "result"    => "'".$search_result['id_list']."'",

    101. 

  101.                     "mid"       => "'".(int)$MEMBER['id']."'",

    102. 

  102.                     "time"      => "'".time()."'",

    103. 

  103.                     "ip"        => "'".func::return_ip()."'",

    104. 

  104.                 );

    105. 

  105.                 $result = func::db_insert(DB_TABLE_SEARCH, $sql_data);

    106. 

  106.                 if (!$result) {

    107. 

  107.                     $sys->prompt("failed", $LANGUAGE['s']['search']['insert_error']);

    108. 

  108.                 } else {

    109. 

  109.                     $sys->prompt("jump",$CONFIGURE['common']['control_index']."?act=search&sid=".$search_id."&pag=".$sys->get['pag']);

    110. 

  110.                 }

    111. 

  111.             }

    112. 

  112.         }

    113. 

  113.     }

    114. 

  114. 

    115. 

  115. } else {

    116. 

  116. 

    117. 

  117.     if(!preg_match("/^[a-z0-9_]{40}$/i", $sys->get['sid'])){

    118. 

  118.         $sys->prompt("failed", $LANGUAGE['s']['search']['sid_error']);

    119. 

  119.     } else {

    120. 

  120. 

    121. 

  121.         $sid            = $sys->get['sid'];

    122. 

  122.         $search_info    = func::db_select(DB_TABLE_SEARCH, "*", "sid='".$sid."'");

    123. 

  123.         $search_info    = $search_info[0];

    124. 

  124. 

    125. 

  125.         if(!preg_match("/^[a-z0-9_]{40}$/i", $search_info['sid'])){

    126. 

  126.             $sys->prompt("failed", $LANGUAGE['s']['search']['select_sid_error']);

    127. 

  127.         } else {

    128. 

  128. 

    129. 

  129.             $search_result  = $search_info['result'];

    130. 

  130.             $search_array   = explode(",", $search_result);

    131. 

  131.             $total_record   = count($search_array);

    132. 

  132.             $bwpage->set_record($total_record);

    133. 

  133.             $bwpage->set_record_listnum($CONFIG['page_record_content_search']);

    134. 

  134.             $bwpage->page($CONFIGURE['common']['control_index']."?act=search&sid=".$sid."&pag=%s");

    135. 

  135.             $sql = "SELECT scheduler.id as scheduler_id,

    136. 

  136.                         content.*,

    137. 

  137.                         cover.id as cover_id, cover.dir as cover_dir, cover.filename as cover_filename,

    138. 

  138.                         channel.id as channel_id, channel.name as channel_name

    139. 

  139.                     FROM ".DB_TABLE_SCHEDULER." scheduler

    140. 

  140.                         LEFT JOIN ".DB_TABLE_CONTENT." content ON content.content_id=scheduler.content_id

    141. 

  141.                         LEFT JOIN ".DB_TABLE_CONTENT_COVER." cover ON cover.content_id=scheduler.content_id

    142. 

  142.                         LEFT JOIN ".DB_TABLE_CHANNEL." channel ON channel.id=scheduler.channel_id

    143. 

  143.                     WHERE scheduler.id IN (".$search_result.")

    144. 

  144.                         AND ((content.if_enable=1) || (content.if_enable=3 AND content.if_enable_begin<".time()." AND content.if_enable_begin>".time()."))

    145. 

  145.                     GROUP BY scheduler.id

    146. 

  146.                     ORDER BY content.if_top DESC, content.post_time DESC

    147. 

  147.                     LIMIT ".$bwpage->record_listfirst.",".$bwpage->record_listnum;

    148. 

  148.             $result = &$db->Execute($sql);

    149. 

  149.             if (!$result) {

    150. 

  150.                 echo $db->ErrorMsg();

    151. 

  151.             } else {

    152. 

  152.                 while (!$result->EOF) {

    153. 

  153.                     $search_content_list[] = array(

    154. 

  154.                         'scheduler_id'              => $result->fields['scheduler_id'],

    155. 

  155. 

    156. 

  156.                         'content_id'                => $result->fields['content_id'],

    157. 

  157.                         'phrase'                    => $result->fields['phrase'],

    158. 

  158.                         'phrase_len'                => mb_strwidth($result->fields['phrase'],"UTF-8"),

    159. 

  159.                         'subject'                   => $result->fields['subject'],

    160. 

  160.                         'subject_len'               => mb_strwidth($result->fields['subject'],"UTF-8"),

    161. 

  161.                         'color'                     => $result->fields['color'],

    162. 

  162.                         'fontstyle'                 => $result->fields['fontstyle'],

    163. 

  163.                         'decoration'                => $result->fields['decoration'],

    164. 

  164.                         'prefix'                    => $result->fields['prefix'],

    165. 

  165.                         'author'                    => $result->fields['author'],

    166. 

  166.                         'excerpt'                   => $result->fields['excerpt'],

    167. 

  167.                         'template_content'          => $result->fields['template_content'],

    168. 

  168.                         'click'                     => $result->fields['click'],

    169. 

  169.                         'keyword'                   => $result->fields['keyword'],

    170. 

  170.                         'brief'                     => $result->fields['brief'],

    171. 

  171.                         'post_id'                   => $result->fields['post_id'],

    172. 

  172.                         'post_username'             => $result->fields['post_username'],

    173. 

  173.                         'post_ip'                   => $result->fields['post_ip'],

    174. 

  174.                         'post_time'                 => $result->fields['post_time'],

    175. 

  175.                         'verify_id'                 => $result->fields['verify_id'],

    176. 

  176.                         'verify_username'           => $result->fields['verify_username'],

    177. 

  177.                         'verify_ip'                 => $result->fields['verify_ip'],

    178. 

  178.                         'verify_time'               => $result->fields['verify_time'],

    179. 

  179.                         'if_enable'                 => $result->fields['if_enable'],

    180. 

  180.                         'if_enable_begin'           => $result->fields['if_enable_begin'],

    181. 

  181.                         'if_enable_end'             => $result->fields['if_enable_end'],

    182. 

  182.                         'if_top'                    => $result->fields['if_top'],

    183. 

  183.                         'if_top_begin'              => $result->fields['if_top_begin'],

    184. 

  184.                         'if_top_end'                => $result->fields['if_top_end'],

    185. 

  185.                         'if_view'                   => $result->fields['if_view'],

    186. 

  186.                         'if_view_privilege'         => $result->fields['if_view_privilege'],

    187. 

  187.                         'if_inerface'               => $result->fields['if_inerface'],

    188. 

  188.                         'if_inerface_privilege'     => $result->fields['if_inerface_privilege'],

    189. 

  189.                         'if_inerface_identity'      => $result->fields['if_inerface_identity'],

    190. 

  190.                         'if_inerface_check'         => $result->fields['if_inerface_check'],

    191. 

  191.                         'if_turn'                   => $result->fields['if_turn'],

    192. 

  192.                         'if_turn_type'              => $result->fields['if_turn_type'],

    193. 

  193.                         'if_turn_url'               => $result->fields['if_turn_url'],

    194. 

  194.                         'rank'                      => $result->fields['rank'],

    195. 

  195. 

    196. 

  196.                         'cover_id'                  => $result->fields['cover_id'],

    197. 

  197.                         'cover_dir'                 => $result->fields['cover_dir'],

    198. 

  198.                         'cover_filename'            => $result->fields['cover_filename'],

    199. 

  199. 

    200. 

  200.                         'channel_id'                => $result->fields['channel_id'],

    201. 

  201.                         'channel_name'              => $result->fields['channel_name'],

    202. 

  202.                         'channel_name_len'          => mb_strwidth($result->fields['channel_name'],"UTF-8"),

    203. 

  203.                     );

    204. 

  204.                     $result->MoveNext();

    205. 

  205.                 }

    206. 

  206.             }

    207. 

  207.             if (!is_array($search_content_list) || count($search_content_list)<=0) {

    208. 

  208.                 $sys->prompt("failed", $LANGUAGE['s']['search']['result_empty']);

    209. 

  209.             } else {

    210. 

  210.                 $t->assign(array(

    211. 

  211.                     "search_info"           => $search_info,

    212. 

  212.                     "search_content_list"   => $search_content_list,

    213. 

  213.                     "pagination"            => $bwpage->pagination,

    214. 

  214.                 ));

    215. 

  215.             }

    216. 

  216.         }

    217. 

  217.     }

    218. 

  218. }

    219. 

  219. $public_var['page_place'][] = $LANGUAGE['s']['search']['page_place'];

    220. 

  220. ?>

    221. 

  221.