public static function getAllPostHeadersByCategoryId($categoryId) { $pdoMysql = new PdoMysql(); $pdoMysql->conn(); $sql = "SELECT id\n , headline\n , category_id\n , online\n , post_date\n FROM post_data\n WHERE category_id = {$categoryId}"; $rv = $pdoMysql->query($sql, array()); if (is_a($rv, 'ErrorObject')) { $rv->caller = $_SERVER['SCRIPT_FILENAME']; return $rv; } return self::parseResults($pdoMysql->getResultsSet()); }
public static function getSubCategories($parentId) { $pdoMysql = new PdoMysql(); $pdoMysql->conn(); $sql = "SELECT cat.* from categories cat, sub_categories sub\n WHERE cat.id = sub.category_id\n AND sub.parent_id=:parentId"; $bindValues = array('parentId' => $parentId); $rv = $pdoMysql->query($sql, $bindValues); if (is_a($rv, 'ErrorObject')) { $rv->caller = $_SERVER['SCRIPT_FILENAME']; return $rv; } return self::parseResults($pdoMysql->getResultsSet()); }
/** * * @return int */ public static function checkAuthenticationToken($token) { $tokenFailure = new ErrorObject(self::AUTH_FAILURE, 'Auth Token Failure'); $pdoMysql = new PdoMysql(); $pdoMysql->conn(); $tkn = isset($_COOKIE['eggstok']) ? $_COOKIE['eggstok'] : false; if (!$tkn || $tkn != $token) { return $tokenFailure; } $sql = "SELECT * FROM session_tokens WHERE token = '{$token}'"; $rv = $pdoMysql->query($sql, array()); if (is_a($rv, 'ErrorObject')) { $rv->caller = $_SERVER['SCRIPT_FILENAME']; return $tokenFailure; } if (count($pdoMysql->getResultsSet()) <= 0) { return $tokenFailure; } self::deleteToken($token); self::getAuthenticationToken(true); return 200; }
public static function getRepliesByParentId($parentId) { $pdoMysql = new PdoMysql(); $pdoMysql->conn(); $sql = "SELECT comments.id\n , comments.user_id\n , comments.body\n , comments.post_id\n , comments.date_posted\n , users.user_name\n FROM comments, replies, users\n WHERE comments.approved != 0\n AND comments.id = replies.comment_id\n AND replies.parent_id=:parentId\n AND users.id = comments.user_id"; $bindValues = array('parentId' => (int) $parentId); $rv = $pdoMysql->query($sql, $bindValues); if (is_a($rv, 'ErrorObject')) { $rv->caller = $_SERVER['SCRIPT_FILENAME']; return $rv; } return self::parseResults($pdoMysql->getResultsSet()); }
public static function getFakeUser($postId = null) { $pdoMysql = new PdoMysql(); $pdoMysql->conn(); if (!is_null($postId)) { $sql = "SELECT id\n , user_name\n , user_type\n , email\n , user_pw\n , date_joined\n FROM users\n WHERE user_type = 4\n AND id NOT IN (\n SELECT user_id FROM comments\n WHERE post_id = {$postId})"; } else { $sql = "SELECT id\n , user_name\n , user_type\n , email\n , user_pw\n , date_joined\n FROM users\n WHERE user_type = 4"; } $rv = $pdoMysql->query($sql, array()); if (is_a($rv, 'ErrorObject')) { $rv->caller = $_SERVER['SCRIPT_FILENAME']; return $rv; } $rs = $pdoMysql->getResultsSet(); if (count($rs) <= 0) { return self::getAllFakeUsers(); } return self::parseResults($rs); }