Просмотр файла attach_mod/includes/functions_attach.php

Конкурс дизайнеров на 15000 рублей
Скрипты | CMS | Боты
Размер файла: 19.91Kb 
  1. <?php
  2. /***************************************************************************
  3.  *                                mides.ru
  4.  *                            -------------------
  5.  ***************************************************************************/
  6. if ( !defined('IN_PHPBB') )
  7. {
  8. 	die("ERROR!!! THIS FILE PROTECTED. IF YOU SAW THIS REPORT, MEANS HACKERS HERE IS NOTHING TO DO ");
  9. }
  10.  
  11. if (!function_exists('html_entity_decode'))
  12. {
  13. 	function html_entity_decode($given_html, $quote_style = ENT_QUOTES)
  14. 	{
  15. 		$trans_table = array_flip(get_html_translation_table(HTML_SPECIALCHARS, $quote_style));
  16. 		$trans_table['&#39;'] = "'";
  17. 		return (strtr($given_html, $trans_table));
  18. 	}
  19. }
  20.  
  21. function base64_pack($number) 
  22. { 
  23. 	$chars = '0123456789abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ+-';
  24. 	$base = strlen($chars);
  25.  
  26. 	if ($number > 4096)
  27. 	{
  28. 		return;
  29. 	}
  30. 	else if ($number < $base)
  31. 	{
  32. 		return $chars[$number];
  33. 	}
  34. 	
  35. 	$hexval = '';
  36. 	
  37. 	while ($number > 0) 
  38. 	{ 
  39. 		$remainder = $number%$base;
  40. 	
  41. 		if ($remainder < $base)
  42. 		{
  43. 			$hexval = $chars[$remainder] . $hexval;
  44. 		}
  45.  
  46. 		$number = floor($number/$base); 
  47. 	} 
  48.  
  49. 	return $hexval; 
  50. }
  51.  
  52. function base64_unpack($string)
  53. {
  54. 	$chars = '0123456789abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ+-';
  55. 	$base = strlen($chars);
  56.  
  57. 	$length = strlen($string); 
  58. 	$number = 0; 
  59.  
  60. 	for($i = 1; $i <= $length; $i++)
  61. 	{ 
  62. 		$pos = $length - $i; 
  63. 		$operand = strpos($chars, substr($string,$pos,1));
  64. 		$exponent = pow($base, $i-1); 
  65. 		$decValue = $operand * $exponent; 
  66. 		$number += $decValue; 
  67. 	} 
  68.  
  69. 	return $number; 
  70. }
  71.  
  72. function auth_pack($auth_array)
  73. {
  74. 	$one_char_encoding = '#';
  75. 	$two_char_encoding = '.';
  76. 	$one_char = $two_char = false;
  77. 	$auth_cache = '';
  78. 	
  79. 	for ($i = 0; $i < sizeof($auth_array); $i++)
  80. 	{
  81. 		$val = base64_pack(intval($auth_array[$i]));
  82. 		if (strlen($val) == 1 && !$one_char)
  83. 		{
  84. 			$auth_cache .= $one_char_encoding;
  85. 			$one_char = true;
  86. 		}
  87. 		else if (strlen($val) == 2 && !$two_char)
  88. 		{		
  89. 			$auth_cache .= $two_char_encoding;
  90. 			$two_char = true;
  91. 		}
  92. 		
  93. 		$auth_cache .= $val;
  94. 	}
  95.  
  96. 	return $auth_cache;
  97. }
  98.  
  99. function auth_unpack($auth_cache)
  100. {
  101. 	$one_char_encoding = '#';
  102. 	$two_char_encoding = '.';
  103.  
  104. 	$auth = array();
  105. 	$auth_len = 1;
  106. 	
  107. 	for ($pos = 0; $pos < strlen($auth_cache); $pos += $auth_len)
  108. 	{
  109. 		$forum_auth = substr($auth_cache, $pos, 1);
  110. 		if ($forum_auth == $one_char_encoding)
  111. 		{
  112. 			$auth_len = 1;
  113. 			continue;
  114. 		}
  115. 		else if ($forum_auth == $two_char_encoding)
  116. 		{
  117. 			$auth_len = 2;
  118. 			$pos--;
  119. 			continue;
  120. 		}
  121. 		
  122. 		$forum_auth = substr($auth_cache, $pos, $auth_len);
  123. 		$forum_id = base64_unpack($forum_auth);
  124. 		$auth[] = intval($forum_id);
  125. 	}
  126. 	return $auth;
  127. }
  128.  
  129. function is_forum_authed($auth_cache, $check_forum_id)
  130. {
  131. 	$one_char_encoding = '#';
  132. 	$two_char_encoding = '.';
  133.  
  134. 	if (trim($auth_cache) == '')
  135. 	{
  136. 		return true;
  137. 	}
  138.  
  139. 	$auth = array();
  140. 	$auth_len = 1;
  141. 	
  142. 	for ($pos = 0; $pos < strlen($auth_cache); $pos+=$auth_len)
  143. 	{
  144. 		$forum_auth = substr($auth_cache, $pos, 1);
  145. 		if ($forum_auth == $one_char_encoding)
  146. 		{
  147. 			$auth_len = 1;
  148. 			continue;
  149. 		}
  150. 		else if ($forum_auth == $two_char_encoding)
  151. 		{
  152. 			$auth_len = 2;
  153. 			$pos--;
  154. 			continue;
  155. 		}
  156. 		
  157. 		$forum_auth = substr($auth_cache, $pos, $auth_len);
  158. 		$forum_id = (int) base64_unpack($forum_auth);
  159. 		if ($forum_id == $check_forum_id)
  160. 		{
  161. 			return true;
  162. 		}
  163. 	}
  164. 	return false;
  165. }
  166.  
  167. function attach_init_ftp($mode = false)
  168. {
  169. 	global $lang, $attach_config;
  170.  
  171. 	$server = (trim($attach_config['ftp_server']) == '') ? 'localhost' : trim($attach_config['ftp_server']);
  172. 	
  173. 	$ftp_path = ($mode == MODE_THUMBNAIL) ? trim($attach_config['ftp_path']) . '/' . THUMB_DIR : trim($attach_config['ftp_path']);
  174.  
  175. 	$conn_id = @ftp_connect($server);
  176.  
  177. 	if (!$conn_id)
  178. 	{
  179. 		message_die(GENERAL_ERROR, sprintf($lang['Ftp_error_connect'], $server));
  180. 	}
  181.  
  182. 	$login_result = @ftp_login($conn_id, $attach_config['ftp_user'], $attach_config['ftp_pass']);
  183.  
  184. 	if (!$login_result)
  185. 	{
  186. 		message_die(GENERAL_ERROR, sprintf($lang['Ftp_error_login'], $attach_config['ftp_user']));
  187. 	}
  188. 		
  189. 	if (!@ftp_pasv($conn_id, intval($attach_config['ftp_pasv_mode'])))
  190. 	{
  191. 		message_die(GENERAL_ERROR, $lang['Ftp_error_pasv_mode']);
  192. 	}
  193. 	
  194. 	$result = @ftp_chdir($conn_id, $ftp_path);
  195.  
  196. 	if (!$result)
  197. 	{
  198. 		message_die(GENERAL_ERROR, sprintf($lang['Ftp_error_path'], $ftp_path));
  199. 	}
  200.  
  201. 	return $conn_id;
  202. }
  203.  
  204. function unlink_attach($filename, $mode = false)
  205. {
  206. 	global $upload_dir, $attach_config, $lang;
  207.  
  208. 	$filename = basename($filename);
  209. 	
  210. 	if (!intval($attach_config['allow_ftp_upload']))
  211. 	{
  212. 		if ($mode == MODE_THUMBNAIL)
  213. 		{
  214. 			$filename = $upload_dir . '/' . THUMB_DIR . '/t_' . $filename;
  215. 		}
  216. 		else
  217. 		{
  218. 			$filename = $upload_dir . '/' . $filename;
  219. 		}
  220.  
  221. 		$deleted = @unlink($filename);
  222. 	}
  223. 	else
  224. 	{
  225. 		$conn_id = attach_init_ftp($mode);
  226.  
  227. 		if ($mode == MODE_THUMBNAIL)
  228. 		{
  229. 			$filename = 't_' . $filename;
  230. 		}
  231. 		
  232. 		$res = @ftp_delete($conn_id, $filename);
  233. 		if (!$res)
  234. 		{
  235. 			if (ATTACH_DEBUG)
  236. 			{
  237. 				$add = ($mode == MODE_THUMBNAIL) ? '/' . THUMB_DIR : ''; 
  238. 				message_die(GENERAL_ERROR, sprintf($lang['Ftp_error_delete'], $attach_config['ftp_path'] . $add));
  239. 			}
  240.  
  241. 			return $deleted;
  242. 		}
  243.  
  244. 		@ftp_quit($conn_id);
  245.  
  246. 		$deleted = true;
  247. 	}
  248.  
  249. 	return $deleted;
  250. }
  251.  
  252. function ftp_file($source_file, $dest_file, $mimetype, $disable_error_mode = false)
  253. {
  254. 	global $attach_config, $lang, $error, $error_msg;
  255.  
  256. 	$conn_id = attach_init_ftp();
  257.  
  258. 	$mode = FTP_BINARY;
  259. 	if (preg_match("/text/i", $mimetype) || preg_match("/html/i", $mimetype))
  260. 	{
  261. 		$mode = FTP_ASCII;
  262. 	}
  263.  
  264. 	$res = @ftp_put($conn_id, $dest_file, $source_file, $mode);
  265.  
  266. 	if (!$res && !$disable_error_mode)
  267. 	{
  268. 		$error = true;
  269. 		if (!empty($error_msg))
  270. 		{
  271. 			$error_msg .= '<br />';
  272. 		}
  273. 		$error_msg = sprintf($lang['Ftp_error_upload'], $attach_config['ftp_path']) . '<br />';
  274. 		@ftp_quit($conn_id);
  275. 		return false;
  276. 	}
  277.  
  278. 	if (!$res)
  279. 	{
  280. 		return false;
  281. 	}
  282.  
  283. 	@ftp_site($conn_id, 'CHMOD 0644 ' . $dest_file);
  284. 	@ftp_quit($conn_id);
  285. 	return true;
  286. }
  287.  
  288. function attachment_exists($filename)
  289. {
  290. 	global $upload_dir, $attach_config;
  291.  
  292. 	$filename = basename($filename);
  293.  
  294. 	if (!intval($attach_config['allow_ftp_upload']))
  295. 	{
  296. 		if (!@file_exists(@amod_realpath($upload_dir . '/' . $filename)))
  297. 		{
  298. 			return false;
  299. 		}
  300. 		else
  301. 		{
  302. 			return true;
  303. 		}
  304. 	}
  305. 	else
  306. 	{
  307. 		$found = false;
  308.  
  309. 		$conn_id = attach_init_ftp();
  310.  
  311. 		$file_listing = array();
  312.  
  313. 		$file_listing = @ftp_rawlist($conn_id, $filename);
  314.  
  315. 		for ($i = 0, $size = sizeof($file_listing); $i < $size; $i++)
  316. 		{
  317. 			if (ereg("([-d])[rwxst-]{9}.* ([0-9]*) ([a-zA-Z]+[0-9: ]*[0-9]) ([0-9]{2}:[0-9]{2}) (.+)", $file_listing[$i], $regs))
  318. 			{
  319. 				if ($regs[1] == 'd') 
  320. 				{	
  321. 					$dirinfo[0] = 1;
  322. 				}
  323. 				$dirinfo[1] = $regs[2]; 
  324. 				$dirinfo[2] = $regs[3]; 
  325. 				$dirinfo[3] = $regs[4];
  326. 				$dirinfo[4] = $regs[5]; 
  327. 			}
  328. 			
  329. 			if ($dirinfo[0] != 1 && $dirinfo[4] == $filename)
  330. 			{
  331. 				$found = true;
  332. 			}
  333. 		}
  334.  
  335. 		@ftp_quit($conn_id);	
  336. 		
  337. 		return $found;
  338. 	}
  339. }
  340.  
  341. function thumbnail_exists($filename)
  342. {
  343. 	global $upload_dir, $attach_config;
  344.  
  345. 	$filename = basename($filename);
  346.  
  347. 	if (!intval($attach_config['allow_ftp_upload']))
  348. 	{
  349. 		if (!@file_exists(@amod_realpath($upload_dir . '/' . THUMB_DIR . '/t_' . $filename)))
  350. 		{
  351. 			return false;
  352. 		}
  353. 		else
  354. 		{
  355. 			return true;
  356. 		}
  357. 	}
  358. 	else
  359. 	{
  360. 		$found = false;
  361.  
  362. 		$conn_id = attach_init_ftp(MODE_THUMBNAIL);
  363.  
  364. 		$file_listing = array();
  365.  
  366. 		$filename = 't_' . $filename;
  367. 		$file_listing = @ftp_rawlist($conn_id, $filename);
  368.  
  369. 		for ($i = 0, $size = sizeof($file_listing); $i < $size; $i++)
  370. 		{
  371. 			if (ereg("([-d])[rwxst-]{9}.* ([0-9]*) ([a-zA-Z]+[0-9: ]*[0-9]) ([0-9]{2}:[0-9]{2}) (.+)", $file_listing[$i], $regs))
  372. 			{
  373. 				if ($regs[1] == 'd')
  374. 				{	
  375. 					$dirinfo[0] = 1;
  376. 				}
  377. 				$dirinfo[1] = $regs[2]; 
  378. 				$dirinfo[2] = $regs[3]; 
  379. 				$dirinfo[3] = $regs[4]; 
  380. 				$dirinfo[4] = $regs[5]; 
  381. 			}
  382. 			
  383. 			if ($dirinfo[0] != 1 && $dirinfo[4] == $filename)
  384. 			{
  385. 				$found = true;
  386. 			}
  387. 		}
  388.  
  389. 		@ftp_quit($conn_id);	
  390. 		
  391. 		return $found;
  392. 	}
  393. }
  394.  
  395. function physical_filename_already_stored($filename)
  396. {
  397. 	global $db;
  398.  
  399. 	if ($filename == '')
  400. 	{
  401. 		return false;
  402. 	}
  403.  
  404. 	$filename = basename($filename);
  405.  
  406. 	$sql = 'SELECT attach_id 
  407. 		FROM ' . ATTACHMENTS_DESC_TABLE . "
  408. 		WHERE physical_filename = '" . attach_mod_sql_escape($filename) . "' 
  409. 		LIMIT 1";
  410.  
  411. 	if (!($result = $db->sql_query($sql)))
  412. 	{
  413. 		message_die(GENERAL_ERROR, 'Could not get attachment information for filename: ' . htmlspecialchars($filename), '', __LINE__, __FILE__, $sql);
  414. 	}
  415. 	$num_rows = $db->sql_numrows($result);
  416. 	$db->sql_freeresult($result);
  417.  
  418. 	return ($num_rows == 0) ? false : true;
  419. }
  420.  
  421. function attachment_exists_db($post_id, $page = 0)
  422. {
  423. 	global $db;
  424.  
  425. 	$post_id = (int) $post_id;
  426.  
  427. 	if ($page == PAGE_PRIVMSGS)
  428. 	{
  429. 		$sql_id = 'privmsgs_id';
  430. 	}
  431. 	else
  432. 	{
  433. 		$sql_id = 'post_id';
  434. 	}
  435.  
  436. 	$sql = 'SELECT attach_id
  437. 		FROM ' . ATTACHMENTS_TABLE . "
  438. 		WHERE $sql_id = $post_id 
  439. 		LIMIT 1";
  440.  
  441. 	if (!($result = $db->sql_query($sql)))
  442. 	{
  443. 		message_die(GENERAL_ERROR, 'Could not get attachment informations for specific posts', '', __LINE__, __FILE__, $sql);
  444. 	}
  445. 	
  446. 	$num_rows = $db->sql_numrows($result);
  447. 	$db->sql_freeresult($result);
  448.  
  449. 	if ($num_rows > 0)
  450. 	{
  451. 		return true;
  452. 	}
  453. 	else
  454. 	{
  455. 		return false;
  456. 	}
  457. }
  458.  
  459. function get_attachments_from_post($post_id_array)
  460. {
  461. 	global $db, $attach_config;
  462.  
  463. 	$attachments = array();
  464.  
  465. 	if (!is_array($post_id_array))
  466. 	{
  467. 		if (empty($post_id_array))
  468. 		{
  469. 			return $attachments;
  470. 		}
  471.  
  472. 		$post_id = intval($post_id_array);
  473.  
  474. 		$post_id_array = array();
  475. 		$post_id_array[] = $post_id;
  476. 	}
  477.  
  478. 	$post_id_array = implode(', ', array_map('intval', $post_id_array));
  479.  
  480. 	if ($post_id_array == '')
  481. 	{
  482. 		return $attachments;
  483. 	}
  484.  
  485. 	$display_order = (intval($attach_config['display_order']) == 0) ? 'DESC' : 'ASC';
  486. 	
  487. 	$sql = 'SELECT a.post_id, d.*
  488. 		FROM ' . ATTACHMENTS_TABLE . ' a, ' . ATTACHMENTS_DESC_TABLE . " d
  489. 		WHERE a.post_id IN ($post_id_array)
  490. 			AND a.attach_id = d.attach_id
  491. 		ORDER BY d.filetime $display_order";
  492.  
  493. 	if ( !($result = $db->sql_query($sql)) )
  494. 	{
  495. 		message_die(GENERAL_ERROR, 'Could not get Attachment Informations for post number ' . $post_id_array, '', __LINE__, __FILE__, $sql);
  496. 	}
  497. 	
  498. 	$num_rows = $db->sql_numrows($result);
  499. 	$attachments = $db->sql_fetchrowset($result);
  500. 	$db->sql_freeresult($result);
  501.  
  502. 	if ($num_rows == 0)
  503. 	{
  504. 		return array();
  505. 	}
  506. 		
  507. 	return $attachments;
  508. }
  509.  
  510. function get_attachments_from_pm($privmsgs_id_array)
  511. {
  512. 	global $db, $attach_config;
  513.  
  514. 	$attachments = array();
  515.  
  516. 	if (!is_array($privmsgs_id_array))
  517. 	{
  518. 		if (empty($privmsgs_id_array))
  519. 		{
  520. 			return $attachments;
  521. 		}
  522.  
  523. 		$privmsgs_id = intval($privmsgs_id_array);
  524.  
  525. 		$privmsgs_id_array = array();
  526. 		$privmsgs_id_array[] = $privmsgs_id;
  527. 	}
  528.  
  529. 	$privmsgs_id_array = implode(', ', array_map('intval', $privmsgs_id_array));
  530.  
  531. 	if ($privmsgs_id_array == '')
  532. 	{
  533. 		return $attachments;
  534. 	}
  535.  
  536. 	$display_order = (intval($attach_config['display_order']) == 0) ? 'DESC' : 'ASC';
  537. 	
  538. 	$sql = 'SELECT a.privmsgs_id, d.*
  539. 		FROM ' . ATTACHMENTS_TABLE . ' a, ' . ATTACHMENTS_DESC_TABLE . " d
  540. 		WHERE a.privmsgs_id IN ($privmsgs_id_array) 
  541. 			AND a.attach_id = d.attach_id
  542. 		ORDER BY d.filetime $display_order";
  543.  
  544. 	if ( !($result = $db->sql_query($sql)) )
  545. 	{
  546. 		message_die(GENERAL_ERROR, 'Could not get Attachment Informations for private message number ' . $privmsgs_id_array, '', __LINE__, __FILE__, $sql);
  547. 	}
  548. 	
  549. 	$num_rows = $db->sql_numrows($result);
  550. 	$attachments = $db->sql_fetchrowset($result);
  551. 	$db->sql_freeresult($result);
  552.  
  553. 	if ($num_rows == 0 )
  554. 	{
  555. 		return array();
  556. 	}
  557.  
  558. 	return $attachments;
  559. }
  560.  
  561. function get_total_attach_filesize($attach_ids)
  562. {
  563. 	global $db;
  564.  
  565. 	if (!is_array($attach_ids) || !sizeof($attach_ids))
  566. 	{
  567. 		return 0;
  568. 	}
  569.  
  570. 	$attach_ids = implode(', ', array_map('intval', $attach_ids));
  571.  
  572. 	if (!$attach_ids)
  573. 	{
  574. 		return 0;
  575. 	}
  576.  
  577. 	$sql = 'SELECT filesize
  578. 		FROM ' . ATTACHMENTS_DESC_TABLE . "
  579. 		WHERE attach_id IN ($attach_ids)";
  580.  
  581. 	if ( !($result = $db->sql_query($sql)) )
  582. 	{
  583. 		message_die(GENERAL_ERROR, 'Could not query Total Filesize', '', __LINE__, __FILE__, $sql);
  584. 	}
  585.  
  586. 	$total_filesize = 0;
  587.  
  588. 	while ($row = $db->sql_fetchrow($result))
  589. 	{
  590. 		$total_filesize += (int) $row['filesize'];
  591. 	}
  592. 	$db->sql_freeresult($result);
  593.  
  594. 	return $total_filesize;
  595. }
  596.  
  597. function get_total_attach_pm_filesize($direction, $user_id)
  598. {
  599. 	global $db;
  600.  
  601. 	if ($direction != 'from_user' && $direction != 'to_user')
  602. 	{
  603. 		return 0;
  604. 	}
  605. 	else
  606. 	{
  607. 		$user_sql = ($direction == 'from_user') ? '(a.user_id_1 = ' . intval($user_id) . ')' : '(a.user_id_2 = ' . intval($user_id) . ')';
  608. 	}
  609.  
  610. 	$sql = 'SELECT a.attach_id
  611. 		FROM ' . ATTACHMENTS_TABLE . ' a, ' . PRIVMSGS_TABLE . " p
  612. 		WHERE $user_sql 
  613. 			AND a.privmsgs_id <> 0 AND a.privmsgs_id = p.privmsgs_id
  614. 			AND p.privmsgs_type <> " . PRIVMSGS_SENT_MAIL;
  615.  
  616. 	if ( !($result = $db->sql_query($sql)) )
  617. 	{
  618. 		message_die(GENERAL_ERROR, 'Could not query Attachment Informations', '', __LINE__, __FILE__, $sql);
  619. 	}
  620. 				
  621. 	$pm_filesize_total = 0;
  622. 	$attach_id = array();
  623. 	$num_rows = $db->sql_numrows($result);
  624.  
  625. 	if ($num_rows == 0)
  626. 	{
  627. 		$db->sql_freeresult($result);
  628. 		return $pm_filesize_total;
  629. 	}
  630. 	
  631. 	while ($row = $db->sql_fetchrow($result))
  632. 	{
  633. 		$attach_id[] = $row['attach_id'];
  634. 	}
  635. 	$db->sql_freeresult($result);
  636.  
  637. 	$pm_filesize_total = get_total_attach_filesize($attach_id);
  638. 	return $pm_filesize_total;
  639. }
  640.  
  641. function get_extension_informations()
  642. {
  643. 	global $db;
  644.  
  645. 	$extensions = array();
  646.  
  647. 	$sql = 'SELECT e.extension, g.cat_id, g.download_mode, g.upload_icon
  648. 		FROM ' . EXTENSIONS_TABLE . ' e, ' . EXTENSION_GROUPS_TABLE . ' g
  649. 		WHERE e.group_id = g.group_id
  650. 			AND g.allow_group = 1';
  651. 	
  652. 	if (!($result = $db->sql_query($sql)))
  653. 	{
  654. 		message_die(GENERAL_ERROR, 'Could not query Allowed Extensions.', '', __LINE__, __FILE__, $sql);
  655. 	}
  656.  
  657. 	$extensions = $db->sql_fetchrowset($result);
  658. 	$db->sql_freeresult($result);
  659. 	return $extensions;
  660. }
  661.  
  662. function attachment_sync_topic($topic_id)
  663. {
  664. 	global $db;
  665.  
  666. 	if (!$topic_id)
  667. 	{
  668. 		return;
  669. 	}
  670.  
  671. 	$topic_id = (int) $topic_id;
  672.  
  673. 	$sql = 'SELECT post_id 
  674. 		FROM ' . POSTS_TABLE . " 
  675. 		WHERE topic_id = $topic_id
  676. 		GROUP BY post_id";
  677. 		
  678. 	if (!($result = $db->sql_query($sql)))
  679. 	{
  680. 		message_die(GENERAL_ERROR, 'Couldn\'t select Post ID\'s', '', __LINE__, __FILE__, $sql);
  681. 	}
  682.  
  683. 	$post_list = $db->sql_fetchrowset($result);
  684. 	$num_posts = $db->sql_numrows($result);
  685. 	$db->sql_freeresult($result);
  686.  
  687. 	if ($num_posts == 0)
  688. 	{
  689. 		return;
  690. 	}
  691. 	
  692. 	$post_ids = array();
  693.  
  694. 	for ($i = 0; $i < $num_posts; $i++)
  695. 	{
  696. 		$post_ids[] = intval($post_list[$i]['post_id']);
  697. 	}
  698.  
  699. 	$post_id_sql = implode(', ', $post_ids);
  700. 	
  701. 	if ($post_id_sql == '')
  702. 	{
  703. 		return;
  704. 	}
  705. 	
  706. 	$sql = 'SELECT attach_id 
  707. 		FROM ' . ATTACHMENTS_TABLE . " 
  708. 		WHERE post_id IN ($post_id_sql) 
  709. 		LIMIT 1";
  710. 		
  711. 	if ( !($result = $db->sql_query($sql)) )
  712. 	{
  713. 		message_die(GENERAL_ERROR, 'Couldn\'t select Attachment ID\'s', '', __LINE__, __FILE__, $sql);
  714. 	}
  715.  
  716. 	$set_id = ($db->sql_numrows($result) == 0) ? 0 : 1;
  717.  
  718. 	$sql = 'UPDATE ' . TOPICS_TABLE . " SET topic_attachment = $set_id WHERE topic_id = $topic_id";
  719.  
  720. 	if ( !($db->sql_query($sql)) )
  721. 	{
  722. 		message_die(GENERAL_ERROR, 'Couldn\'t update Topics Table', '', __LINE__, __FILE__, $sql);
  723. 	}
  724. 		
  725. 	for ($i = 0; $i < sizeof($post_ids); $i++)
  726. 	{
  727. 		$sql = 'SELECT attach_id 
  728. 			FROM ' . ATTACHMENTS_TABLE . ' 
  729. 			WHERE post_id = ' . $post_ids[$i] . '
  730. 			LIMIT 1';
  731.  
  732. 		if ( !($result = $db->sql_query($sql)) )
  733. 		{
  734. 			message_die(GENERAL_ERROR, 'Couldn\'t select Attachment ID\'s', '', __LINE__, __FILE__, $sql);
  735. 		}
  736.  
  737. 		$set_id = ( $db->sql_numrows($result) == 0) ? 0 : 1;
  738. 		
  739. 		$sql = 'UPDATE ' . POSTS_TABLE . " SET post_attachment = $set_id WHERE post_id = {$post_ids[$i]}";
  740.  
  741. 		if ( !($db->sql_query($sql)) )
  742. 		{
  743. 			message_die(GENERAL_ERROR, 'Couldn\'t update Posts Table', '', __LINE__, __FILE__, $sql);
  744. 		}
  745. 	}
  746. }
  747.  
  748. function get_extension($filename)
  749. {
  750. 	if (!stristr($filename, '.'))
  751. 	{
  752. 		return '';
  753. 	}
  754.  
  755. 	$extension = strrchr(strtolower($filename), '.');
  756. 	$extension[0] = ' ';
  757. 	$extension = strtolower(trim($extension));
  758. 	
  759. 	if (is_array($extension))
  760. 	{
  761. 		return '';
  762. 	}
  763. 	else
  764. 	{
  765. 		return $extension;
  766. 	}
  767. }
  768.  
  769. function delete_extension($filename)
  770. {
  771. 	return substr($filename, 0, strrpos(strtolower(trim($filename)), '.'));
  772. }
  773.  
  774. function user_in_group($user_id, $group_id)
  775. {
  776. 	global $db;
  777.  
  778. 	$user_id = (int) $user_id;
  779. 	$group_id = (int) $group_id;
  780.  
  781. 	if (!$user_id || !$group_id)
  782. 	{
  783. 		return false;
  784. 	}
  785. 	
  786. 	$sql = 'SELECT u.group_id 
  787. 		FROM ' . USER_GROUP_TABLE . ' u, ' . GROUPS_TABLE . " g 
  788. 		WHERE g.group_single_user = 0
  789. 			AND u.user_pending = 0
  790. 			AND u.group_id = g.group_id
  791. 			AND u.user_id = $user_id 
  792. 			AND g.group_id = $group_id
  793. 		LIMIT 1";
  794. 			
  795. 	if (!($result = $db->sql_query($sql)))
  796. 	{
  797. 		message_die(GENERAL_ERROR, 'Could not get User Group', '', __LINE__, __FILE__, $sql);
  798. 	}
  799.  
  800. 	$num_rows = $db->sql_numrows($result);
  801. 	$db->sql_freeresult($result);
  802.  
  803. 	if ($num_rows == 0)
  804. 	{
  805. 		return false;
  806. 	}
  807. 	
  808. 	return true;
  809. }
  810.  
  811. function amod_realpath($path)
  812. {
  813. 	return (function_exists('realpath')) ? realpath($path) : $path;
  814. }
  815.  
  816. function _set_var(&$result, $var, $type, $multibyte = false)
  817. {
  818. 	settype($var, $type);
  819. 	$result = $var;
  820.  
  821. 	if ($type == 'string')
  822. 	{
  823. 		$result = trim(htmlspecialchars(str_replace(array("\r\n", "\r", '\xFF'), array("\n", "\n", ' '), $result)));
  824. 		$result = stripslashes($result);
  825. 		if ($multibyte)
  826. 		{
  827. 			$result = preg_replace('#&amp;(\#[0-9]+;)#', '&\1', $result);
  828. 		}
  829. 	}
  830. }
  831.  
  832. function get_var($var_name, $default, $multibyte = false)
  833. {
  834. 	global $HTTP_POST_VARS, $HTTP_GET_VARS;
  835.  
  836. 	$request_var = (isset($HTTP_POST_VARS[$var_name])) ? $HTTP_POST_VARS : $HTTP_GET_VARS;
  837.  
  838. 	if (!isset($request_var[$var_name]) || (is_array($request_var[$var_name]) && !is_array($default)) || (is_array($default) && !is_array($request_var[$var_name])))
  839. 	{
  840. 		return (is_array($default)) ? array() : $default;
  841. 	}
  842.  
  843. 	$var = $request_var[$var_name];
  844.  
  845. 	if (!is_array($default))
  846. 	{
  847. 		$type = gettype($default);
  848. 	}
  849. 	else
  850. 	{
  851. 		list($key_type, $type) = each($default);
  852. 		$type = gettype($type);
  853. 		$key_type = gettype($key_type);
  854. 	}
  855.  
  856. 	if (is_array($var))
  857. 	{
  858. 		$_var = $var;
  859. 		$var = array();
  860.  
  861. 		foreach ($_var as $k => $v)
  862. 		{
  863. 			if (is_array($v))
  864. 			{
  865. 				foreach ($v as $_k => $_v)
  866. 				{
  867. 					_set_var($k, $k, $key_type);
  868. 					_set_var($_k, $_k, $key_type);
  869. 					_set_var($var[$k][$_k], $_v, $type, $multibyte);
  870. 				}
  871. 			}
  872. 			else
  873. 			{
  874. 				_set_var($k, $k, $key_type);
  875. 				_set_var($var[$k], $v, $type, $multibyte);
  876. 			}
  877. 		}
  878. 	}
  879. 	else
  880. 	{
  881. 		_set_var($var, $var, $type, $multibyte);
  882. 	}
  883. 		
  884. 	return $var;
  885. }
  886.  
  887. function attach_mod_sql_escape($text)
  888. {
  889. 	switch (SQL_LAYER)
  890. 	{
  891. 		case 'postgresql':
  892. 			return pg_escape_string($text);
  893. 		break;
  894.  
  895. 		case 'mysql':
  896. 		case 'mysql4':
  897. 			if (function_exists('mysql_escape_string'))
  898. 			{
  899. 				return mysql_escape_string($text);
  900. 			}
  901. 			else
  902. 			{
  903. 				return str_replace("'", "''", str_replace('\\', '\\\\', $text));
  904. 			}
  905. 		break;
  906.  
  907. 		default:
  908. 			return str_replace("'", "''", str_replace('\\', '\\\\', $text));
  909. 		break;
  910. 	}
  911. }
  912.  
  913. function attach_mod_sql_build_array($query, $assoc_ary = false)
  914. {
  915. 	if (!is_array($assoc_ary))
  916. 	{
  917. 		return false;
  918. 	}
  919.  
  920. 	$fields = array();
  921. 	$values = array();
  922. 	if ($query == 'INSERT' || $query == 'INSERT_SELECT')
  923. 	{
  924. 		foreach ($assoc_ary as $key => $var)
  925. 		{
  926. 			$fields[] = $key;
  927.  
  928. 			if (is_null($var))
  929. 			{
  930. 				$values[] = 'NULL';
  931. 			}
  932. 			else if (is_string($var))
  933. 			{
  934. 				$values[] = "'" . attach_mod_sql_escape($var) . "'";
  935. 			}
  936. 			else if (is_array($var) && is_string($var[0]))
  937. 			{
  938. 				$values[] = $var[0];
  939. 			}
  940. 			else
  941. 			{
  942. 				$values[] = (is_bool($var)) ? intval($var) : $var;
  943. 			}
  944. 		}
  945.  
  946. 		$query = ($query == 'INSERT') ? ' (' . implode(', ', $fields) . ') VALUES (' . implode(', ', $values) . ')' : ' (' . implode(', ', $fields) . ') SELECT ' . implode(', ', $values) . ' ';
  947. 	}
  948. 	else if ($query == 'MULTI_INSERT')
  949. 	{
  950. 		$ary = array();
  951. 		foreach ($assoc_ary as $id => $sql_ary)
  952. 		{
  953. 			$values = array();
  954. 			foreach ($sql_ary as $key => $var)
  955. 			{
  956. 				if (is_null($var))
  957. 				{
  958. 					$values[] = 'NULL';
  959. 				}
  960. 				elseif (is_string($var))
  961. 				{
  962. 					$values[] = "'" . attach_mod_sql_escape($var) . "'";
  963. 				}
  964. 				else
  965. 				{
  966. 					$values[] = (is_bool($var)) ? intval($var) : $var;
  967. 				}
  968. 			}
  969. 			$ary[] = '(' . implode(', ', $values) . ')';
  970. 		}
  971.  
  972. 		$query = ' (' . implode(', ', array_keys($assoc_ary[0])) . ') VALUES ' . implode(', ', $ary);
  973. 	}
  974. 	else if ($query == 'UPDATE' || $query == 'SELECT')
  975. 	{
  976. 		$values = array();
  977. 		foreach ($assoc_ary as $key => $var)
  978. 		{
  979. 			if (is_null($var))
  980. 			{
  981. 				$values[] = "$key = NULL";
  982. 			}
  983. 			elseif (is_string($var))
  984. 			{
  985. 				$values[] = "$key = '" . attach_mod_sql_escape($var) . "'";
  986. 			}
  987. 			else
  988. 			{
  989. 				$values[] = (is_bool($var)) ? "$key = " . intval($var) : "$key = $var";
  990. 			}
  991. 		}
  992. 		$query = implode(($query == 'UPDATE') ? ', ' : ' AND ', $values);
  993. 	}
  994.  
  995. 	return $query;
  996. }
  997.  
  998. ?>