|
Server : nginx/1.22.1 System : Linux iZwz9daxib3w3i063fw434Z 3.10.0-1127.19.1.el7.x86_64 #1 SMP Tue Aug 25 17:23:54 UTC 2020 x86_64 User : www ( 1000) PHP Version : 7.2.33 Disable Function : passthru,exec,system,putenv,chroot,chgrp,chown,shell_exec,popen,proc_open,pcntl_exec,ini_alter,ini_restore,dl,openlog,syslog,readlink,symlink,popepassthru,pcntl_alarm,pcntl_fork,pcntl_waitpid,pcntl_wait,pcntl_wifexited,pcntl_wifstopped,pcntl_wifsignaled,pcntl_wifcontinued,pcntl_wexitstatus,pcntl_wtermsig,pcntl_wstopsig,pcntl_signal,pcntl_signal_dispatch,pcntl_get_last_error,pcntl_strerror,pcntl_sigprocmask,pcntl_sigwaitinfo,pcntl_sigtimedwait,pcntl_exec,pcntl_getpriority,pcntl_setpriority,imap_open,apache_setenv Directory : /www/wwwroot/www.jkmold.com/phpsso_server/api/uc_client_1_5/model/ |
<?php
/*
[UCenter] (C)2001-2009 Comsenz Inc.
This is NOT a freeware, use is subject to license terms
$Id: pm.php 908 2008-12-26 07:27:51Z monkey $
*/
!defined('IN_UC') && exit('Access Denied');
class pmmodel {
var $db;
var $base;
function __construct(&$base) {
$this->pmmodel($base);
}
function pmmodel(&$base) {
$this->base = $base;
$this->db = $base->db;
}
function pmintval($pmid) {
return @is_numeric($pmid) ? $pmid : 0;
}
function get_pm_by_pmid($uid, $pmid) {
$arr = $this->db->fetch_all("SELECT * FROM ".UC_DBTABLEPRE."pms WHERE pmid='$pmid' AND (msgtoid IN ('$uid','0') OR msgfromid='$uid')");
return $arr;
}
function get_pm_by_touid($uid, $touid, $starttime, $endtime) {
$arr1 = $this->db->fetch_all("SELECT * FROM ".UC_DBTABLEPRE."pms WHERE msgfromid='$uid' AND msgtoid='$touid' AND dateline>='$starttime' AND dateline<'$endtime' AND related>'0' AND delstatus IN (0,2) ORDER BY dateline");
$arr2 = $this->db->fetch_all("SELECT * FROM ".UC_DBTABLEPRE."pms WHERE msgfromid='$touid' AND msgtoid='$uid' AND dateline>='$starttime' AND dateline<'$endtime' AND related>'0' AND delstatus IN (0,1) ORDER BY dateline");
$arr = array_merge($arr1, $arr2);
uasort($arr, 'pm_datelinesort');
return $arr;
}
function get_pmnode_by_pmid($uid, $pmid, $type = 0) {
$arr = array();
if($type == 1) {
$arr = $this->db->fetch_first("SELECT * FROM ".UC_DBTABLEPRE."pms WHERE msgfromid='$uid' and folder='inbox' ORDER BY dateline DESC LIMIT 1");
} elseif($type == 2) {
$arr = $this->db->fetch_first("SELECT * FROM ".UC_DBTABLEPRE."pms WHERE msgtoid='$uid' and folder='inbox' ORDER BY dateline DESC LIMIT 1");
} else {
$arr = $this->db->fetch_first("SELECT * FROM ".UC_DBTABLEPRE."pms WHERE pmid='$pmid'");
}
return $arr;
}
function set_pm_status($uid, $touid, $pmid = 0, $status = 0) {
if(!$status) {
$oldstatus = 1;
$newstatus = 0;
} else {
$oldstatus = 0;
$newstatus = 1;
}
if($touid) {
$ids = is_array($touid) ? $this->base->implode($touid) : $touid;
$this->db->query("UPDATE ".UC_DBTABLEPRE."pms SET new='$newstatus' WHERE msgfromid IN ($ids) AND msgtoid='$uid' AND new='$oldstatus'", 'UNBUFFERED');
}
if($pmid) {
$ids = is_array($pmid) ? $this->base->implode($pmid) : $pmid;
$this->db->query("UPDATE ".UC_DBTABLEPRE."pms SET new='$newstatus' WHERE pmid IN ($ids) AND msgtoid='$uid' AND new='$oldstatus'", 'UNBUFFERED');
}
}
function get_pm_num() {
}
function get_num($uid, $folder, $filter = '') {
switch($folder) {
case 'newbox':
$sql = "SELECT count(*) FROM ".UC_DBTABLEPRE."pms WHERE msgtoid='$uid' AND (related='0' AND msgfromid>'0' OR msgfromid='0') AND folder='inbox' AND new='1'";
$num = $this->db->result_first($sql);
return $num;
case 'outbox':
case 'inbox':
if($filter == 'newpm') {
$filteradd = "msgtoid='$uid' AND (related='0' AND msgfromid>'0' OR msgfromid='0') AND folder='inbox' AND new='1'";
} elseif($filter == 'systempm') {
$filteradd = "msgtoid='$uid' AND msgfromid='0' AND folder='inbox'";
} elseif($filter == 'privatepm') {
$filteradd = "msgtoid='$uid' AND related='0' AND msgfromid>'0' AND folder='inbox'";
} elseif($filter == 'announcepm') {
$filteradd = "msgtoid='0' AND folder='inbox'";
} else {
$filteradd = "msgtoid='$uid' AND related='0' AND folder='inbox'";
}
$sql = "SELECT count(*) FROM ".UC_DBTABLEPRE."pms WHERE $filteradd";
break;
case 'savebox':
break;
}
$num = $this->db->result_first($sql);
return $num;
}
function get_pm_list($uid, $pmnum, $folder, $filter, $start, $ppp = 10) {
$ppp = $ppp ? $ppp : 10;
switch($folder) {
case 'newbox':
$folder = 'inbox';
$filter = 'newpm';
case 'outbox':
case 'inbox':
if($filter == 'newpm') {
$filteradd = "pm.msgtoid='$uid' AND (pm.related='0' AND pm.msgfromid>'0' OR pm.msgfromid='0') AND pm.folder='inbox' AND pm.new='1'";
} elseif($filter == 'systempm') {
$filteradd = "pm.msgtoid='$uid' AND pm.msgfromid='0' AND pm.folder='inbox'";
} elseif($filter == 'privatepm') {
$filteradd = "pm.msgtoid='$uid' AND pm.related='0' AND pm.msgfromid>'0' AND pm.folder='inbox'";
} elseif($filter == 'announcepm') {
$filteradd = "pm.msgtoid='0' AND pm.folder='inbox'";
} else {
$filteradd = "pm.msgtoid='$uid' AND pm.related='0' AND pm.folder='inbox'";
}
$sql = "SELECT pm.*,m.username as msgfrom FROM ".UC_DBTABLEPRE."pms pm
LEFT JOIN ".UC_DBTABLEPRE."members m ON pm.msgfromid = m.uid
WHERE $filteradd ORDER BY pm.dateline DESC LIMIT $start, $ppp";
break;
case 'searchbox':
$filteradd = "msgtoid='$uid' AND folder='inbox' AND message LIKE '%".(str_replace('_', '\_', addcslashes($filter, '%_')))."%'";
$sql = "SELECT * FROM ".UC_DBTABLEPRE."pms
WHERE $filteradd ORDER BY dateline DESC LIMIT $start, $ppp";
break;
case 'savebox':
break;
}
$query = $this->db->query($sql);
$array = array();
$today = $this->base->time - $this->base->time % 86400;
while($data = $this->db->fetch_array($query)) {
$daterange = 5;
if($data['dateline'] >= $today) {
$daterange = 1;
} elseif($data['dateline'] >= $today - 86400) {
$daterange = 2;
} elseif($data['dateline'] >= $today - 172800) {
$daterange = 3;
} elseif($data['dateline'] >= $today - 604800) {
$daterange = 4;
}
$data['daterange'] = $daterange;
$data['subject'] = htmlspecialchars($data['subject']);
if($filter == 'announcepm') {
unset($data['msgfromid'], $data['msgfrom']);
}
$data['touid'] = $uid == $data['msgfromid'] ? $data['msgtoid'] : $data['msgfromid'];
$array[] = $data;
}
if($folder == 'inbox') {
$this->db->query("DELETE FROM ".UC_DBTABLEPRE."newpm WHERE uid='$uid'", 'UNBUFFERED');
}
return $array;
}
function sendpm($subject, $message, $msgfrom, $msgto, $related = 0) {
if($msgfrom['uid'] && $msgfrom['uid'] == $msgto) {
return 0;
}
$_CACHE['badwords'] = $this->base->cache('badwords');
if($_CACHE['badwords']['findpattern']) {
$subject = @preg_replace($_CACHE['badwords']['findpattern'], $_CACHE['badwords']['replace'], $subject);
$message = @preg_replace($_CACHE['badwords']['findpattern'], $_CACHE['badwords']['replace'], $message);
}
$box = 'inbox';
$subject = trim($subject);
if($subject == '' && !$related) {
$subject = $this->removecode(trim($message), 75);
} else {
$subject = $this->base->cutstr(trim($subject), 75, ' ');
}
if($msgfrom['uid']) {
$sessionexist = $this->db->result_first("SELECT count(*) FROM ".UC_DBTABLEPRE."pms WHERE msgfromid='$msgfrom[uid]' AND msgtoid='$msgto' AND folder='inbox' AND related='0'");
if(!$sessionexist || $sessionexist > 1) {
if($sessionexist > 1) {
$this->db->query("DELETE FROM ".UC_DBTABLEPRE."pms WHERE msgfromid='$msgfrom[uid]' AND msgtoid='$msgto' AND folder='inbox' AND related='0'");
}
$this->db->query("INSERT INTO ".UC_DBTABLEPRE."pms (msgfrom,msgfromid,msgtoid,folder,new,subject,dateline,related,message,fromappid) VALUES
('".$msgfrom['username']."','".$msgfrom['uid']."','$msgto','$box','1','$subject','".$this->base->time."','0','$message','".$this->base->app['appid']."')");
$lastpmid = $this->db->insert_id();
} else {
$this->db->query("UPDATE ".UC_DBTABLEPRE."pms SET subject='$subject', message='$message', dateline='".$this->base->time."', new='1', fromappid='".$this->base->app['appid']."'
WHERE msgfromid='$msgfrom[uid]' AND msgtoid='$msgto' AND folder='inbox' AND related='0'");
}
if(!$savebox) {
$sessionexist = $this->db->result_first("SELECT count(*) FROM ".UC_DBTABLEPRE."pms WHERE msgfromid='$msgto' AND msgtoid='$msgfrom[uid]' AND folder='inbox' AND related='0'");
if($msgfrom['uid'] && !$sessionexist) {
$this->db->query("INSERT INTO ".UC_DBTABLEPRE."pms (msgfrom,msgfromid,msgtoid,folder,new,subject,dateline,related,message,fromappid) VALUES
('".$msgfrom['username']."','$msgto','".$msgfrom['uid']."','$box','0','$subject','".$this->base->time."','0','$message','0')");
}
$this->db->query("INSERT INTO ".UC_DBTABLEPRE."pms (msgfrom,msgfromid,msgtoid,folder,new,subject,dateline,related,message,fromappid) VALUES
('".$msgfrom['username']."','".$msgfrom['uid']."','$msgto','$box','1','$subject','".$this->base->time."','1','$message','".$this->base->app['appid']."')");
$lastpmid = $this->db->insert_id();
}
} else {
$this->db->query("INSERT INTO ".UC_DBTABLEPRE."pms (msgfrom,msgfromid,msgtoid,folder,new,subject,dateline,related,message,fromappid) VALUES
('".$msgfrom['username']."','".$msgfrom['uid']."','$msgto','$box','1','$subject','".$this->base->time."','0','$message','".$this->base->app['appid']."')");
$lastpmid = $this->db->insert_id();
}
$this->db->query("REPLACE INTO ".UC_DBTABLEPRE."newpm (uid) VALUES ('$msgto')");
return $lastpmid;
}
function set_ignore($uid) {
$this->db->query("DELETE FROM ".UC_DBTABLEPRE."newpm WHERE uid='$uid'");
}
function check_newpm($uid, $more) {
if($more < 2) {
$newpm = $this->db->result_first("SELECT count(*) FROM ".UC_DBTABLEPRE."newpm WHERE uid='$uid'");
if($newpm) {
$newpm = $this->db->result_first("SELECT count(*) FROM ".UC_DBTABLEPRE."pms WHERE (related='0' AND msgfromid>'0' OR msgfromid='0') AND msgtoid='$uid' AND folder='inbox' AND new='1'");
if($more) {
$newprvpm = $this->db->result_first("SELECT count(*) FROM ".UC_DBTABLEPRE."pms WHERE related='0' AND msgfromid>'0' AND msgtoid='$uid' AND folder='inbox' AND new='1'");
return array('newpm' => $newpm, 'newprivatepm' => $newprvpm);
} else {
return $newpm;
}
}
} else {
$newpm = $this->db->result_first("SELECT count(*) FROM ".UC_DBTABLEPRE."pms WHERE (related='0' AND msgfromid>'0' OR msgfromid='0') AND msgtoid='$uid' AND folder='inbox' AND new='1'");
$newprvpm = $this->db->result_first("SELECT count(*) FROM ".UC_DBTABLEPRE."pms WHERE related='0' AND msgfromid>'0' AND msgtoid='$uid' AND folder='inbox' AND new='1'");
if($more == 2 || $more == 3) {
$annpm = $this->db->result_first("SELECT count(*) FROM ".UC_DBTABLEPRE."pms WHERE related='0' AND msgtoid='0' AND folder='inbox'");
$syspm = $this->db->result_first("SELECT count(*) FROM ".UC_DBTABLEPRE."pms WHERE related='0' AND msgtoid='$uid' AND folder='inbox' AND msgfromid='0'");
}
if($more == 2) {
return array('newpm' => $newpm, 'newprivatepm' => $newprvpm, 'announcepm' => $annpm, 'systempm' => $syspm);
} if($more == 4) {
return array('newpm' => $newpm, 'newprivatepm' => $newprvpm);
} else {
$pm = $this->db->fetch_first("SELECT pm.dateline,pm.msgfromid,m.username as msgfrom,pm.message FROM ".UC_DBTABLEPRE."pms pm LEFT JOIN ".UC_DBTABLEPRE."members m ON pm.msgfromid = m.uid WHERE (pm.related='0' OR pm.msgfromid='0') AND pm.msgtoid='$uid' AND pm.folder='inbox' ORDER BY pm.dateline DESC LIMIT 1");
return array('newpm' => $newpm, 'newprivatepm' => $newprvpm, 'announcepm' => $annpm, 'systempm' => $syspm, 'lastdate' => $pm['dateline'], 'lastmsgfromid' => $pm['msgfromid'], 'lastmsgfrom' => $pm['msgfrom'], 'lastmsg' => $pm['message']);
}
}
}
function deletepm($uid, $pmids) {
$this->db->query("DELETE FROM ".UC_DBTABLEPRE."pms WHERE msgtoid='$uid' AND pmid IN (".$this->base->implode($pmids).")");
$delnum = $this->db->affected_rows();
return $delnum;
}
function deleteuidpm($uid, $ids) {
$delnum = 0;
if($ids) {
$delnum = 1;
$deluids = $this->base->implode($ids);
$this->db->query("DELETE FROM ".UC_DBTABLEPRE."pms
WHERE msgfromid IN ($deluids) AND msgtoid='$uid' AND folder='inbox' AND related='0'", 'UNBUFFERED');
$this->db->query("UPDATE ".UC_DBTABLEPRE."pms SET delstatus=2
WHERE msgfromid IN ($deluids) AND msgtoid='$uid' AND folder='inbox' AND delstatus=0", 'UNBUFFERED');
$this->db->query("UPDATE ".UC_DBTABLEPRE."pms SET delstatus=1
WHERE msgtoid IN ($deluids) AND msgfromid='$uid' AND folder='inbox' AND delstatus=0", 'UNBUFFERED');
$this->db->query("DELETE FROM ".UC_DBTABLEPRE."pms
WHERE msgfromid IN ($deluids) AND msgtoid='$uid' AND delstatus=1 AND folder='inbox'", 'UNBUFFERED');
$this->db->query("DELETE FROM ".UC_DBTABLEPRE."pms
WHERE msgtoid IN ($deluids) AND msgfromid='$uid' AND delstatus=2 AND folder='inbox'", 'UNBUFFERED');
}
return $delnum;
}
function get_blackls($uid, $uids = array()) {
if(!$uids) {
$blackls = $this->db->result_first("SELECT blacklist FROM ".UC_DBTABLEPRE."memberfields WHERE uid='$uid'");
} else {
$uids = $this->base->implode($uids);
$blackls = array();
$query = $this->db->query("SELECT uid, blacklist FROM ".UC_DBTABLEPRE."memberfields WHERE uid IN ($uids)");
while($data = $this->db->fetch_array($query)) {
$blackls[$data['uid']] = explode(',', $data['blacklist']);
}
}
return $blackls;
}
function set_blackls($uid, $blackls) {
$this->db->query("UPDATE ".UC_DBTABLEPRE."memberfields SET blacklist='$blackls' WHERE uid='$uid'");
return $this->db->affected_rows();
}
function update_blackls($uid, $username, $action = 1) {
$username = !is_array($username) ? array($username) : $username;
if($action == 1) {
if(!in_array('{ALL}', $username)) {
$usernames = $this->base->implode($username);
$query = $this->db->query("SELECT username FROM ".UC_DBTABLEPRE."members WHERE username IN ($usernames)");
$usernames = array();
while($data = $this->db->fetch_array($query)) {
$usernames[addslashes($data['username'])] = addslashes($data['username']);
}
if(!$usernames) {
return 0;
}
$blackls = addslashes($this->db->result_first("SELECT blacklist FROM ".UC_DBTABLEPRE."memberfields WHERE uid='$uid'"));
if($blackls) {
$list = explode(',', $blackls);
foreach($list as $k => $v) {
if(in_array($v, $usernames)) {
unset($usernames[$v]);
}
}
}
if(!$usernames) {
return 1;
}
$listnew = implode(',', $usernames);
$blackls .= $blackls !== '' ? ','.$listnew : $listnew;
} else {
$blackls = addslashes($this->db->result_first("SELECT blacklist FROM ".UC_DBTABLEPRE."memberfields WHERE uid='$uid'"));
$blackls .= ',{ALL}';
}
} else {
$blackls = addslashes($this->db->result_first("SELECT blacklist FROM ".UC_DBTABLEPRE."memberfields WHERE uid='$uid'"));
$list = $blackls = explode(',', $blackls);
foreach($list as $k => $v) {
if(in_array($v, $username)) {
unset($blackls[$k]);
}
}
$blackls = implode(',', $blackls);
}
$this->db->query("UPDATE ".UC_DBTABLEPRE."memberfields SET blacklist='$blackls' WHERE uid='$uid'");
return 1;
}
function removecode($str, $length) {
return trim($this->base->cutstr(preg_replace(array(
"/\[(email|code|quote|img)=?.*\].*?\[\/(email|code|quote|img)\]/siU",
"/\[\/?(b|i|url|u|color|size|font|align|list|indent|float)=?.*\]/siU",
"/\r\n/",
), '', $str), $length));
}
function count_pm_by_fromuid($uid, $timeoffset = 86400) {
$dateline = $this->base->time - intval($timeoffset);
return $this->db->result_first("SELECT COUNT(*) FROM ".UC_DBTABLEPRE."pms WHERE msgfromid='$uid' AND dateline>'$dateline'");
}
function is_reply_pm($uid, $touids) {
$touid_str = implode("', '", $touids);
$pm_reply = $this->db->fetch_all("SELECT msgfromid, msgtoid FROM ".UC_DBTABLEPRE."pms WHERE msgfromid IN ('$touid_str') AND msgtoid='$uid' AND related=1", 'msgfromid');
foreach($touids as $val) {
if(!isset($pm_reply[$val])) {
return false;
}
}
return true;
}
}
function pm_datelinesort($a, $b) {
if ($a['dateline'] == $b['dateline']) {
return 0;
}
return ($a['dateline'] < $b['dateline']) ? -1 : 1;
}
?>