my browse.php
Code:
<?
ob_start("ob_gzhandler");
require_once("include/bittorrent.php");
parked();
dbconn(false);
$cats = genrelist();
$searchstr = unesc($_GET["search"]);
$cleansearchstr = searchfield($searchstr);
if (empty($cleansearchstr))
unset($cleansearchstr);
$orderby = "ORDER BY torrents.id DESC";
$addparam = "";
$wherea = array();
$wherecatina = array();
if ($_GET["incldead"] == 1)
{
$addparam .= "incldead=1&";
if (!$CURUSER || get_user_class() < UC_ADMINISTRATOR)
$wherea[] = "banned != 'yes'";
}
elseif ($_GET["incldead"] == 2)
{
$addparam .= "incldead=2&";
$wherea[] = "visible = 'no'";
}
elseif ($_GET["incldead"] == 3)
{
$addparam .= "incldead=3&";
$wherea[] = "free = 'yes'";
$wherea[] = "visible = 'yes'";
}
else
$wherea[] = "visible = 'yes'";
$category = (int)$_GET["cat"];
$all = $_GET["all"];
if (!$all)
if (!$_GET && $CURUSER["notifs"])
{
$all = True;
foreach ($cats as $cat)
{
$all &= $cat[id];
if (strpos($CURUSER["notifs"], "[cat" . $cat[id] . "]") !== False)
{
$wherecatina[] = $cat[id];
$addparam .= "c$cat[id]=1&";
}
}
}
elseif ($category)
{
if (!is_valid_id($category))
stderr("Error", "Invalid category ID.");
$wherecatina[] = $category;
$addparam .= "cat=$category&";
}
else
{
$all = True;
foreach ($cats as $cat)
{
$all &= $_GET["c$cat[id]"];
if ($_GET["c$cat[id]"])
{
$wherecatina[] = $cat[id];
$addparam .= "c$cat[id]=1&";
}
}
}
if ($all)
{
$wherecatina = array();
$addparam = "";
}
if (count($wherecatina) > 1)
$wherecatin = implode(",",$wherecatina);
elseif (count($wherecatina) == 1)
$wherea[] = "category = $wherecatina[0]";
$wherebase = $wherea;
if (isset($cleansearchstr))
{
$wherea[] = "MATCH (search_text, ori_descr) AGAINST (" . sqlesc($searchstr) . ")";
//$wherea[] = "0";
$addparam .= "search=" . urlencode($searchstr) . "&";
$orderby = "";
}
$where = implode(" AND ", $wherea);
if ($wherecatin)
$where .= ($where ? " AND " : "") . "category IN(" . $wherecatin . ")";
if ($where != "")
$where = "WHERE $where";
$res = mysql_query("SELECT COUNT(*) FROM torrents $where") or die(mysql_error());
$row = mysql_fetch_array($res);
$count = $row[0];
if (!$count && isset($cleansearchstr)) {
$wherea = $wherebase;
$orderby = "ORDER BY id DESC";
$searcha = explode(" ", $cleansearchstr);
$sc = 0;
foreach ($searcha as $searchss) {
if (strlen($searchss) <= 1)
continue;
$sc++;
if ($sc > 5)
break;
$ssa = array();
foreach (array("search_text", "ori_descr") as $sss)
$ssa[] = "$sss LIKE '%" . sqlwildcardesc($searchss) . "%'";
$wherea[] = "(" . implode(" OR ", $ssa) . ")";
}
if ($sc) {
$where = implode(" AND ", $wherea);
if ($where != "")
$where = "WHERE $where";
$res = mysql_query("SELECT COUNT(*) FROM torrents $where");
$row = mysql_fetch_array($res);
$count = $row[0];
}
}
$torrentsperpage = $CURUSER["torrentsperpage"];
if (!$torrentsperpage)
$torrentsperpage = 15;
if ($count)
{
list($pagertop, $pagerbottom, $limit) = pager($torrentsperpage, $count, "browse.php?" . $addparam);
$query = "SELECT torrents.id, torrents.category, torrents.leechers, torrents.seeders, torrents.name, torrents.free, torrents.times_completed, torrents.size, torrents.added, torrents.comments, torrents.numfiles, torrents.filename, torrents.description, torrents.owner,IF(torrents.nfo <> '', 1, 0) as nfoav," .
"IF(torrents.numratings < $minvotes, NULL, ROUND(torrents.ratingsum / torrents.numratings, 1)) AS rating, categories.name AS cat_name, categories.image AS cat_pic, users.username FROM torrents LEFT JOIN categories ON category = categories.id LEFT JOIN users ON torrents.owner = users.id $where $orderby $limit";
"categories.name AS cat_name, categories.image AS cat_pic, users.username FROM torrents LEFT JOIN categories ON category = categories.id LEFT JOIN users ON torrents.owner = users.id $where $orderby $limit";
$res = mysql_query($query) or die(mysql_error());
}
else
unset($res);
if (isset($cleansearchstr))
stdhead("Search results for \"$searchstr\"");
else
stdhead();
?>
<form method="get" action="browse.php">
<table class="bottom">
<tr>
<td class="bottom">
<table class="bottom">
<tr>
<?
$i = 0;
foreach ($cats as $cat)
{
$catsperrow = 7;
print(($i && $i % $catsperrow == 0) ? "</tr><tr>" : "");
print("<td align=center class=bottom style=\"padding-bottom: 2px;padding-left: 7px\"><input name=c$cat[id] type=\"hidden\" " . (in_array($cat[id],$wherecatina) ? "checked " : "") . "value=1><a class=catlink href=browse.php?cat=$cat[id]><img src=pic/" . htmlspecialchars($cat[image]) . "></a></td>\n");
$i++;
}
$alllink = "<div align=\"left\">(<a href=\"browse.php?all=1\"><b>Show all</b></a>)</div>";
$ncats = count($cats);
if ($lastrowcols != 0)
{
if ($catsperrow - $lastrowcols != 1)
{
print("<td class=\"bottom\" rowspan=" . ($catsperrow - $lastrowcols - 1) . "> </td>");
}
print("<td class=\"bottom\" style=\"padding-left: 5px\">$alllink</td>\n");
}
?>
</tr>
</table>
</td>
<td class="bottom">
<table class="main">
<tr>
<td class="bottom" style="padding: 1px;padding-left: 10px">
<select name="incldead"><option value="0">active</option>
<option value="1"<? print($_GET["incldead"] == 1 ? " selected=\"selected\"" : ""); ?>>including dead</option>
<option value="2"<? print($_GET["incldead"] == 2 ? " selected=\"selected\"" : ""); ?>>only dead</option>
<option value="3"<? print($_GET["incldead"] == 3 ? " selected" : ""); ?>>FREE</option>
</select>
</td>
<?
print("<td class=\"bottom\" style=\"padding-left: 15px\" rowspan=$nrows valign=\"center\" align=\"right\">$alllink</td>\n");
?>
</tr>
<tr>
<td class="bottom" style="padding: 1px;padding-left: 10px">
<div align="center">
<input type="submit" class="btn" value="Go!"/>
</div>
</td>
</tr>
</table>
</td>
</tr>
</table>
</form>
<?
if (isset($cleansearchstr))
print("<h2>Search results for \"" . htmlspecialchars($searchstr) . "\"</h2>\n");
if ($count) {
print($pagertop);
torrenttable($res);
//torrenttable($res, "mytorrents");
print($pagerbottom);
}
else {
if (isset($cleansearchstr)) {
print("<h2>Nothing found!</h2>\n");
print("<p>Try again with a refined search string.</p>\n");
}
else {
print("<h2>Nothing here!</h2>\n");
print("<p>Sorry pal :(</p>\n");
}
}
mysql_query("UPDATE users SET last_browse=".gmtime()." where id=".$CURUSER['id']);
stdfoot();
?>