gitphp 0.2.9.1 :: contractdashboard.git/blobdiff

blob:a/cutenews/search.php -> blob:b/cutenews/search.php

<?php	<?php
error_reporting (E_ALL ^ E_NOTICE);	error_reporting (E_ALL ^ E_NOTICE);

$cutepath = __FILE__;	$cutepath = __FILE__;
$cutepath = preg_replace( "'\\\search\.php'", "", $cutepath);	$cutepath = preg_replace( "'\\\search\.php'", "", $cutepath);
$cutepath = preg_replace( "'/search\.php'", "", $cutepath);	$cutepath = preg_replace( "'/search\.php'", "", $cutepath);

$files_arch = array();	$files_arch = array();

require_once("$cutepath/inc/functions.inc.php");	require_once("$cutepath/inc/functions.inc.php");

//check for bad _GET and _POST	//check for bad _GET and _POST
if($dosearch == "yes"){	if($dosearch == "yes"){
$check_params = array_merge($_GET, $_POST);	$check_params = array_merge($_GET, $_POST);
foreach($check_params as $param_key=>$param_val){	foreach($check_params as $param_key=>$param_val){
if( !empty($param_val) && !preg_match('/^[a-zA-Z0-9\- ]{0,255}$/', $param_val) ){	if( !empty($param_val) && !preg_match('/^[a-zA-Z0-9\- ]{0,255}$/', $param_val) ){
die("Error! the parameter '$param_key' contains illigal characters");	die("Error! the parameter '$param_key' contains illigal characters");
}	}
}	}
}	}

$user_query = cute_query_string($QUERY_STRING, array("search_in_archives", "start_from", "archive", "subaction", "id", "cnshow",	$user_query = cute_query_string($QUERY_STRING, array("search_in_archives", "start_from", "archive", "subaction", "id", "cnshow",
"ucat","dosearch", "story", "title", "user", "from_date_day", "from_date_month", "from_date_year", "to_date_day", "to_date_month", "to_date_year"));	"ucat","dosearch", "story", "title", "user", "from_date_day", "from_date_month", "from_date_year", "to_date_day", "to_date_month", "to_date_year"));
$user_post_query = cute_query_string($QUERY_STRING, array("search_in_archives", "start_from", "archive", "subaction", "id", "cnshow",	$user_post_query = cute_query_string($QUERY_STRING, array("search_in_archives", "start_from", "archive", "subaction", "id", "cnshow",
"ucat","dosearch", "story", "title", "user", "from_date_day", "from_date_month", "from_date_year", "to_date_day", "to_date_month", "to_date_year"), "post");	"ucat","dosearch", "story", "title", "user", "from_date_day", "from_date_month", "from_date_year", "to_date_day", "to_date_month", "to_date_year"), "post");

// Define Users	// Define Users
$all_users = file("$cutepath/data/users.db.php");	$all_users = file("$cutepath/data/users.db.php");
$my_names = array();	$my_names = array();
foreach($all_users as $my_user)	foreach($all_users as $my_user)
{	{
if(!eregi("<\?",$member_db_line)){	if(!eregi("<\?",$member_db_line)){
$user_arr = explode("\|",$my_user);	$user_arr = explode("\|",$my_user);
if($user_arr[4] != ""){ $my_names[$user_arr[2]] = "$user_arr[4]"; }	if($user_arr[4] != ""){ $my_names[$user_arr[2]] = "$user_arr[4]"; }
else{ $my_names[$user_arr[2]] = "$user_arr[2]"; }	else{ $my_names[$user_arr[2]] = "$user_arr[2]"; }
}	}
}	}
// Show Search Form	// Show Search Form
echo<<<HTML	echo<<<HTML
<script language='javascript' type="text/javascript">	<script language='javascript' type="text/javascript">
function mySelect(form){	function mySelect(form){
form.select();	form.select();
}	}
function ShowOrHide(d1, d2) {	function ShowOrHide(d1, d2) {
if (d1 != '') DoDiv(d1);	if (d1 != '') DoDiv(d1);
if (d2 != '') DoDiv(d2);	if (d2 != '') DoDiv(d2);
}	}
function DoDiv(id) {	function DoDiv(id) {
var item = null;	var item = null;
if (document.getElementById) {	if (document.getElementById) {
item = document.getElementById(id);	item = document.getElementById(id);
} else if (document.all){	} else if (document.all){
item = document.all[id];	item = document.all[id];
} else if (document.layers){	} else if (document.layers){
item = document.layers[id];	item = document.layers[id];
}	}
if (!item) {	if (!item) {
}	}
else if (item.style) {	else if (item.style) {
if (item.style.display == "none"){ item.style.display = ""; }	if (item.style.display == "none"){ item.style.display = ""; }
else {item.style.display = "none"; }	else {item.style.display = "none"; }
}else{ item.visibility = "show"; }	}else{ item.visibility = "show"; }
}	}
</script>	</script>
<form method=GET action="$PHP_SELF?subaction=search">	<form method=GET action="$PHP_SELF?subaction=search">
<input type=hidden name=dosearch value=yes>	<input type=hidden name=dosearch value=yes>

<div align="center">	<div align="center">
<table border="0" cellspacing="0" cellpadding="0">	<table border="0" cellspacing="0" cellpadding="0">
<tr>	<tr>
<td><table width="100%" cellspacing="0" cellpadding="0">	<td><table width="100%" cellspacing="0" cellpadding="0">
<td width="100%">	<td width="100%">
<p align="right">News <input type=text value="$story" name=story size="24">	<p align="right">News <input type=text value="$story" name=story size="24">
</table></td>	</table></td>
</tr>	</tr>
<tr>	<tr>
<td>	<td>

<div id='advanced' style='display:none;z-index:1;'>	<div id='advanced' style='display:none;z-index:1;'>
<table width="100%" cellspacing="0" cellpadding="0">	<table width="100%" cellspacing="0" cellpadding="0">
<td width="100%" align="right">	<td width="100%" align="right">
<p align="right">Title <input type=text value="$title" name=title size="24">	<p align="right">Title <input type=text value="$title" name=title size="24">
<tr>	<tr>
<td width="100%" align="right">Author <input type=text value="$user" name=user size="24">	<td width="100%" align="right">Author <input type=text value="$user" name=user size="24">
</tr>	</tr>



<tr>	<tr>
<td width="100%" align="right">From date	<td width="100%" align="right">From date
<select name=from_date_day>	<select name=from_date_day>
<option value=""> </option>	<option value=""> </option>
HTML;	HTML;
for($i=1;$i<32;$i++){	for($i=1;$i<32;$i++){
if($from_date_day == $i){ echo"<option selected value=$i>$i</option>"; }	if($from_date_day == $i){ echo"<option selected value=$i>$i</option>"; }
else{ echo"<option value=$i>$i</option>"; }	else{ echo"<option value=$i>$i</option>"; }
}	}

echo"</select><select name=from_date_month> <option value=\"\"> </option>";	echo"</select><select name=from_date_month> <option value=\"\"> </option>";

for($i=1;$i<13;$i++){	for($i=1;$i<13;$i++){
$timestamp = mktime(0,0,0,$i,1,2003);	$timestamp = mktime(0,0,0,$i,1,2003);
if($from_date_month == $i){ echo"<option selected value=$i>". date("M", $timestamp) ."</option>"; }	if($from_date_month == $i){ echo"<option selected value=$i>". date("M", $timestamp) ."</option>"; }
else{ echo"<option value=$i>". date("M", $timestamp) ."</option>"; }	else{ echo"<option value=$i>". date("M", $timestamp) ."</option>"; }
}	}

echo"</select><select name=from_date_year> <option value=\"\"> </option>";	echo"</select><select name=from_date_year> <option value=\"\"> </option>";

for($i=2003;$i<2011;$i++){	for($i=2003;$i<2011;$i++){
if($from_date_year == $i){ echo"<option selected value=$i>$i</option>"; }	if($from_date_year == $i){ echo"<option selected value=$i>$i</option>"; }
else{ echo"<option value=$i>$i</option>"; }	else{ echo"<option value=$i>$i</option>"; }
}	}
//////////////////////////////////////////////////////////////////////////	//////////////////////////////////////////////////////////////////////////
echo<<<HTML	echo<<<HTML
</tr>	</tr>
<tr>	<tr>
<td width="100%" align="right">To date	<td width="100%" align="right">To date
<select name=to_date_day>	<select name=to_date_day>
<option value=""> </option>	<option value=""> </option>
HTML;	HTML;
for($i=1;$i<32;$i++){	for($i=1;$i<32;$i++){
if($to_date_day == $i){ echo"<option selected value=$i>$i</option>"; }	if($to_date_day == $i){ echo"<option selected value=$i>$i</option>"; }
else{ echo"<option value=$i>$i</option>"; }	else{ echo"<option value=$i>$i</option>"; }
}	}

echo"</select><select name=to_date_month><option value=\"\"> </option>";	echo"</select><select name=to_date_month><option value=\"\"> </option>";

for($i=1;$i<13;$i++){	for($i=1;$i<13;$i++){
$timestamp = mktime(0,0,0,$i,1,2003);	$timestamp = mktime(0,0,0,$i,1,2003);
if($to_date_month == $i){ echo"<option selected value=$i>". date("M", $timestamp) ."</option>"; }	if($to_date_month == $i){ echo"<option selected value=$i>". date("M", $timestamp) ."</option>"; }
else{ echo"<option value=$i>". date("M", $timestamp) ."</option>"; }	else{ echo"<option value=$i>". date("M", $timestamp) ."</option>"; }
}	}

echo"</select><select name=to_date_year><option value=\"\"> </option>";	echo"</select><select name=to_date_year><option value=\"\"> </option>";

for($i=2003;$i<2011;$i++){	for($i=2003;$i<2011;$i++){
if($to_date_year == $i){ echo"<option selected value=$i>$i</option>"; }	if($to_date_year == $i){ echo"<option selected value=$i>$i</option>"; }
else{ echo"<option value=$i>$i</option>"; }	else{ echo"<option value=$i>$i</option>"; }
}	}

if($search_in_archives){ $selected_search_arch = "checked=\"checked\""; }	if($search_in_archives){ $selected_search_arch = "checked=\"checked\""; }

echo<<<HTML	echo<<<HTML
</select>	</select>
</tr>	</tr>
<tr>	<tr>
<td width="100%" align="right">	<td width="100%" align="right">
<p align="right"><label>Search and archives	<p align="right"><label>Search and archives
<input type=checkbox $selected_search_arch name="search_in_archives" value="TRUE"></label>	<input type=checkbox $selected_search_arch name="search_in_archives" value="TRUE"></label>
</tr>	</tr>
</table>	</table>
</div>	</div>

</td>	</td>
</tr>	</tr>
<tr>	<tr>
<td>	<td>
<p align="right">	<p align="right">
<a href="javascript:ShowOrHide('advanced','')">advanced</a>   <input type=submit value=Search>	<a href="javascript:ShowOrHide('advanced','')">advanced</a>   <input type=submit value=Search>
</td>	</td>
</tr>	</tr>
</table>	</table>
</div>	</div>
$user_post_query	$user_post_query
</form>	</form>
<center>	<center>
HTML;	HTML;

// Don't edit below this line unless you know what you are doing !!!	// Don't edit below this line unless you know what you are doing !!!

if($dosearch == "yes")	if($dosearch == "yes")
{	{

if( $from_date_day != "" and $from_date_month != "" and $from_date_year != "" and $to_date_day != "" and $to_date_month != "" and $to_date_year != "" )	if( $from_date_day != "" and $from_date_month != "" and $from_date_year != "" and $to_date_day != "" and $to_date_month != "" and $to_date_year != "" )
{	{
$date_from = mktime(0,0,0,$from_date_month,$from_date_day,$from_date_year);	$date_from = mktime(0,0,0,$from_date_month,$from_date_day,$from_date_year);
$date_to = mktime(0,0,0,$to_date_month,$to_date_day,$to_date_year);	$date_to = mktime(0,0,0,$to_date_month,$to_date_day,$to_date_year);

$do_date = TRUE;	$do_date = TRUE;
}	}


$story = trim($story);	$story = trim($story);

if($search_in_archives){	if($search_in_archives){
if(!$handle = opendir("$cutepath/data/archives")){ die("<center>Can not open directory $cutepath/data/archives "); }	if(!$handle = opendir("$cutepath/data/archives")){ die("<center>Can not open directory $cutepath/data/archives "); }
while (false !== ($file = readdir($handle)))	while (false !== ($file = readdir($handle)))
{	{
if($file != "." and $file != ".." and eregi("news", $file))	if($file != "." and $file != ".." and eregi("news", $file))
{	{
$files_arch[] = "$cutepath/data/archives/$file";	$files_arch[] = "$cutepath/data/archives/$file";
}	}
}	}
}	}
$files_arch[] = "$cutepath/data/news.txt";	$files_arch[] = "$cutepath/data/news.txt";

foreach($files_arch as $file)	foreach($files_arch as $file)
{	{
$archive = FALSE;	$archive = FALSE;
if(ereg("([[:digit:]]{0,})\.news\.arch", $file, $regs)){ $archive = $regs[1]; }	if(ereg("([[:digit:]]{0,})\.news\.arch", $file, $regs)){ $archive = $regs[1]; }
$all_news_db = file("$file");	$all_news_db = file("$file");
foreach($all_news_db as $news_line){	foreach($all_news_db as $news_line){
$news_db_arr = explode("\|",$news_line);	$news_db_arr = explode("\|",$news_line);
$found = 0;	$found = 0;

$fuser = FALSE;	$fuser = FALSE;
$ftitle = FALSE;	$ftitle = FALSE;
$fstory = FALSE;	$fstory = FALSE;
if($title and @preg_match("/$title/i", "$news_db_arr[2]")){ $ftitle = TRUE; }	if($title and @preg_match("/$title/i", "$news_db_arr[2]")){ $ftitle = TRUE; }
if($user and @preg_match("/\b$user\b/i", "$news_db_arr[1]")){ $fuser = TRUE; }	if($user and @preg_match("/\b$user\b/i", "$news_db_arr[1]")){ $fuser = TRUE; }
if($story and (@preg_match("/$story/i", "$news_db_arr[4]") or @preg_match("/$story/i", "$news_db_arr[3]"))){ $fstory = TRUE;}	if($story and (@preg_match("/$story/i", "$news_db_arr[4]") or @preg_match("/$story/i", "$news_db_arr[3]"))){ $fstory = TRUE;}

if($title and $ftitle){ $ftitle = TRUE; }elseif(!$title){ $ftitle = TRUE; }else{ $ftitle = FALSE; }	if($title and $ftitle){ $ftitle = TRUE; }elseif(!$title){ $ftitle = TRUE; }else{ $ftitle = FALSE; }
if($story and $fstory){ $fstory = TRUE; }elseif(!$story){ $fstory = TRUE; }else{ $fstory = FALSE; }	if($story and $fstory){ $fstory = TRUE; }elseif(!$story){ $fstory = TRUE; }else{ $fstory = FALSE; }
if($user and $fuser) { $fuser = TRUE; }elseif(!$user) { $fuser = TRUE; }else{ $fuser = FALSE; }	if($user and $fuser) { $fuser = TRUE; }elseif(!$user) { $fuser = TRUE; }else{ $fuser = FALSE; }
if($do_date)	if($do_date)
{	{
if($date_from < $news_db_arr[0] and $news_db_arr[0] < $date_to){ $fdate = TRUE; }else{ $fdate = FALSE; }	if($date_from < $news_db_arr[0] and $news_db_arr[0] < $date_to){ $fdate = TRUE; }else{ $fdate = FALSE; }
}else{ $fdate = TRUE; }	}else{ $fdate = TRUE; }

if($fdate and $ftitle and $fuser and $fstory){ $found_arr[$news_db_arr[0]] = $archive; }	if($fdate and $ftitle and $fuser and $fstory){ $found_arr[$news_db_arr[0]] = $archive; }

}//foreach news line	}//foreach news line
}	}


echo"<br /><b>Founded News articles [". count($found_arr)."]:</b><br />";	echo"<br /><b>Founded News articles [". count($found_arr)."]:</b><br />";


if($do_date){echo"from ".@date("d F Y",$date_from)." to ".@date("d F Y",$date_to)."<br />";}	if($do_date){echo"from ".@date("d F Y",$date_from)." to ".@date("d F Y",$date_to)."<br />";}


// Display Search Results	// Display Search Results
if(is_array($found_arr)){	if(is_array($found_arr)){
foreach($found_arr as $news_id => $archive)	foreach($found_arr as $news_id => $archive)
{	{
if($archive){$all_news = file("$cutepath/data/archives/$archive.news.arch");}	if($archive){$all_news = file("$cutepath/data/archives/$archive.news.arch");}
else{ $all_news = file("$cutepath/data/news.txt"); }	else{ $all_news = file("$cutepath/data/news.txt"); }

foreach($all_news as $single_line)	foreach($all_news as $single_line)
{	{
$item_arr = explode("\|",$single_line);	$item_arr = explode("\|",$single_line);
$local_id = $item_arr[0];	$local_id = $item_arr[0];

if($local_id == $news_id){	if($local_id == $news_id){
////////// Showing Result	////////// Showing Result

echo"<br /><b><a href=\"$PHP_SELF?misc=search&subaction=showfull&id=$local_id&archive=$archive&cnshow=news&ucat=$item_arr[6]&start_from=&$user_query\">$item_arr[2]</a></b> (". date("d F, Y", $item_arr[0]) .")";	echo"<br /><b><a href=\"$PHP_SELF?misc=search&subaction=showfull&id=$local_id&archive=$archive&cnshow=news&ucat=$item_arr[6]&start_from=&$user_query\">$item_arr[2]</a></b> (". date("d F, Y", $item_arr[0]) .")";

////////// End Showing Result	////////// End Showing Result
}	}
}	}
}	}
}else{ echo"There are no news matching your search criteria"; }	}else{ echo"There are no news matching your search criteria"; }

}//if user wants to search	}//if user wants to search
elseif( ($misc == "search") and ($subaction == "showfull" or $subaction == "showcomments" or $_POST["subaction"] == "addcomment" or $subaction == "addcomment")){	elseif( ($misc == "search") and ($subaction == "showfull" or $subaction == "showcomments" or $_POST["subaction"] == "addcomment" or $subaction == "addcomment")){

require_once("$cutepath/show_news.php");	require_once("$cutepath/show_news.php");

unset($action,$subaction);	unset($action,$subaction);
}	}

?>	?>