if (!empty($_GET['userid'])) { if (!is_number($_GET['userid'])) { error('User ID must be an integer'); } $UserInfo = Users::user_info($_GET['userid']); if (empty($UserInfo)) { error('That user does not exist'); } $Perms = Permissions::get_permissions($UserInfo['PermissionID']); $UserClass = $Perms['Class']; } $BookmarkView = false; if (empty($_GET['type'])) { $Title = 'Requests'; if (empty($_GET['showall'])) { $SphQL->where('visible', 1); } } else { switch ($_GET['type']) { case 'created': if (!empty($UserInfo)) { if (!check_paranoia('requestsvoted_list', $UserInfo['Paranoia'], $Perms['Class'], $UserInfo['ID'])) { error(403); } $Title = "Requests created by {$UserInfo['Username']}"; $SphQL->where('userid', $UserInfo['ID']); } else { $Title = 'My requests'; $SphQL->where('userid', $LoggedUser['ID']); } break;
foreach ($Words['exclude'] as $Word) { $QueryParts[] = '!' . Sphinxql::sph_escape_string(substr($Word, 1)); } } if (!empty($QueryParts)) { $SearchString = implode(' ', $QueryParts); $SphQL->where_match($SearchString, $Search, false); $SphQLTor->where_match($SearchString, $Search, false); } } if (!empty($_GET['year'])) { $Years = explode('-', $_GET['year']); if (is_number($Years[0]) || empty($Years[0]) && !empty($Years[1]) && is_number($Years[1])) { if (count($Years) === 1) { $SphQL->where('year', (int) $Years[0]); $SphQLTor->where('year', (int) $Years[0]); } else { if (empty($Years[1]) || !is_number($Years[1])) { $Years[1] = PHP_INT_MAX; } elseif ($Years[0] > $Years[1]) { $Years = array_reverse($Years); } $SphQL->where_between('year', array((int) $Years[0], (int) $Years[1])); $SphQLTor->where_between('year', array((int) $Years[0], (int) $Years[1])); } } } if (isset($_GET['haslog']) && $_GET['haslog'] !== '') { if ($_GET['haslog'] === '100') { $SphQL->where('logscore', 100); $SphQLTor->where('logscore', 100);