/**
* Helper function to fetch and optionally paginate the list of
* incidents/reports via the Incident Model using one or all of the
* following URL parameters
* - category
* - location bounds
* - incident mode
* - media
* - location radius
*
* @param $paginate Optionally paginate the incidents - Default is FALSE
* @return Database_Result
*/
public static function fetch_incidents($paginate = FALSE, $items_per_page = 0)
{
// Reset the paramters
self::$params = array();
// Initialize the category id
$category_id = 0;
$table_prefix = Kohana::config('database.default.table_prefix');
// Fetch the URL data into a local variable
$url_data = array_merge($_GET);
// Check if some parameter values are separated by "," except the location bounds
$exclude_params = array('c' => '', 'v' => '', 'm' => '', 'mode' => '', 'sw' => '', 'ne' => '');
foreach ($url_data as $key => $value) {
if (array_key_exists($key, $exclude_params) and !is_array($value)) {
if (is_array(explode(",", $value))) {
$url_data[$key] = explode(",", $value);
}
}
}
//> BEGIN PARAMETER FETCH
//
// Check for the category parameter
//
if (isset($url_data['c']) and !is_array($url_data['c']) and intval($url_data['c']) > 0) {
// Get the category ID
$category_id = intval($_GET['c']);
// Add category parameter to the parameter list
array_push(self::$params, '(c.id = ' . $category_id . ' OR c.parent_id = ' . $category_id . ')', 'c.category_visible = 1');
} elseif (isset($url_data['c']) and is_array($url_data['c'])) {
// Sanitize each of the category ids
$category_ids = array();
foreach ($url_data['c'] as $c_id) {
if (intval($c_id) > 0) {
$category_ids[] = intval($c_id);
}
}
// Check if there are any category ids
if (count($category_ids) > 0) {
$category_ids = implode(",", $category_ids);
array_push(self::$params, '(c.id IN (' . $category_ids . ') OR c.parent_id IN (' . $category_ids . '))', 'c.category_visible = 1');
}
}
//
// Incident modes
//
if (isset($url_data['mode']) and is_array($url_data['mode'])) {
$incident_modes = array();
// Sanitize the modes
foreach ($url_data['mode'] as $mode) {
if (intval($mode) > 0) {
$incident_modes[] = intval($mode);
}
}
// Check if any modes exist and add them to the parameter list
if (count($incident_modes) > 0) {
array_push(self::$params, 'i.incident_mode IN (' . implode(",", $incident_modes) . ')');
}
}
//
// Location bounds parameters
//
if (isset($url_data['sw']) and isset($url_data['ne'])) {
$southwest = $url_data['sw'];
$northeast = $url_data['ne'];
if (count($southwest) == 2 and count($northeast) == 2) {
$lon_min = (double) $southwest[0];
$lon_max = (double) $northeast[0];
$lat_min = (double) $southwest[1];
$lat_max = (double) $northeast[1];
// Add the location conditions to the parameter list
array_push(self::$params, 'l.latitude >= ' . $lat_min, 'l.latitude <= ' . $lat_max, 'l.longitude >= ' . $lon_min, 'l.longitude <= ' . $lon_max);
}
}
//
// Location bounds - based on start location and radius
//
if (isset($url_data['radius']) and isset($url_data['start_loc'])) {
//if $url_data['start_loc'] is just comma delimited strings, then make it into an array
if (!is_array($url_data['start_loc'])) {
$url_data['start_loc'] = explode(",", $url_data['start_loc']);
}
if (intval($url_data['radius']) > 0 and is_array($url_data['start_loc'])) {
$bounds = $url_data['start_loc'];
if (count($bounds) == 2 and is_numeric($bounds[0]) and is_numeric($bounds[1])) {
self::$params['radius'] = array('distance' => intval($url_data['radius']), 'latitude' => $bounds[0], 'longitude' => $bounds[1]);
}
}
}
//
// Check for incident date range parameters
//
if (isset($url_data['from']) and isset($url_data['to'])) {
$date_from = date('Y-m-d', strtotime($url_data['from']));
$date_to = date('Y-m-d', strtotime($url_data['to']));
array_push(self::$params, 'i.incident_date >= "' . $date_from . '"', 'i.incident_date <= "' . $date_to . '"');
}
/**
* ---------------------------
* NOTES: E.Kala July 13, 2011
* ---------------------------
* Additional checks for date parameters specified in timestamp format
* This only affects those submitted from the main page
*/
// Start Date
if (isset($_GET['s']) and intval($_GET['s']) > 0) {
$start_date = intval($_GET['s']);
array_push(self::$params, 'i.incident_date >= "' . date("Y-m-d H:i:s", $start_date) . '"');
}
// End Date
if (isset($_GET['e']) and intval($_GET['e'])) {
$end_date = intval($_GET['e']);
array_push(self::$params, 'i.incident_date <= "' . date("Y-m-d H:i:s", $end_date) . '"');
}
//
// Check for media type parameter
//
if (isset($url_data['m']) and is_array($url_data['m'])) {
// An array of media filters has been specified
// Validate the media types
$media_types = array();
foreach ($url_data['m'] as $media_type) {
if (intval($media_type) > 0) {
$media_types[] = intval($media_type);
}
}
if (count($media_types) > 0) {
array_push(self::$params, 'i.id IN (SELECT DISTINCT incident_id FROM ' . $table_prefix . 'media WHERE media_type IN (' . implode(",", $media_types) . '))');
}
} elseif (isset($url_data['m']) and !is_array($url_data['m'])) {
// A single media filter has been specified
$media_type = $url_data['m'];
// Sanitization
if (intval($media_type) > 0) {
array_push(self::$params, 'i.id IN (SELECT DISTINCT incident_id FROM ' . $table_prefix . 'media WHERE media_type = ' . $media_type . ')');
}
}
//
// Check if the verification status has been specified
//
if (isset($url_data['v']) and is_array($url_data['v'])) {
$verified_status = array();
foreach ($url_data['v'] as $verified) {
if (intval($verified) >= 0) {
$verified_status[] = intval($verified);
}
}
if (count($verified_status) > 0) {
array_push(self::$params, 'i.incident_verified IN (' . implode(",", $verified_status) . ')');
}
} elseif (isset($url_data['v']) and !is_array($url_data['v']) and intval($url_data) >= 0) {
array_push(self::$param, 'i.incident_verified = ' . intval($url_data['v']));
}
//
// Check if they're filtering over custom form fields
//
if (isset($url_data['cff']) and is_array($url_data['cff'])) {
$where_text = "";
$i = 0;
foreach ($url_data['cff'] as $field) {
$field_id = $field[0];
if (intval($field_id) < 1) {
break;
}
$field_value = $field[1];
if (is_array($field_value)) {
$field_value = implode(",", $field_value);
}
$i++;
if ($i > 1) {
$where_text .= " OR ";
}
$where_text .= "(form_field_id = " . intval($field_id) . " AND form_response = '" . Database::instance()->escape_str(trim($field_value)) . "')";
}
// Make sure there was some valid input in there
if ($i > 0) {
array_push(self::$params, 'i.id IN (SELECT DISTINCT incident_id FROM ' . $table_prefix . 'form_response WHERE ' . $where_text . ')');
}
}
// End of handling cff
// In case a plugin or something wants to get in on the parameter fetching fun
Event::run('ushahidi_filter.fetch_incidents_set_params', self::$params);
//> END PARAMETER FETCH
// Fetch all the incidents
$all_incidents = Incident_Model::get_incidents(self::$params);
if ($paginate) {
// Set up pagination
$page_limit = intval($items_per_page) > 0 ? $items_per_page : intval(Kohana::config('settings.items_per_page'));
$pagination = new Pagination(array('style' => 'front-end-reports', 'query_string' => 'page', 'items_per_page' => $page_limit, 'total_items' => $all_incidents->count()));
// Return paginated results
return Incident_Model::get_incidents(self::$params, $pagination);
} else {
// Return
return $all_incidents;
}
}
static function init()
{
// Set Table Prefix
self::$table_prefix = Kohana::config('database.default.table_prefix');
}
/**
* Helper function to fetch and optionally paginate the list of
* incidents/reports via the Incident Model using one or all of the
* following URL parameters
* - category
* - location bounds
* - incident mode
* - media
* - location radius
*
* @param bool $paginate Optionally paginate the incidents - Default is FALSE
* @param int $items_per_page No. of items to show per page
* @return Database_Result
*/
public static function fetch_incidents($paginate = FALSE, $items_per_page = 0)
{
// Reset the paramters
self::$params = array();
// Initialize the category id
$category_id = 0;
$table_prefix = Kohana::config('database.default.table_prefix');
// Fetch the URL data into a local variable
$url_data = $_GET;
// Split selected parameters on ","
// For simplicity, always turn them into arrays even theres just one value
$exclude_params = array('c', 'v', 'm', 'mode', 'sw', 'ne', 'start_loc');
foreach ($url_data as $key => $value) {
if (in_array($key, $exclude_params) and !is_array($value)) {
$url_data[$key] = explode(",", $value);
}
}
//> BEGIN PARAMETER FETCH
//
// Check for the category parameter
//
if (isset($url_data['c']) and is_array($url_data['c'])) {
// Sanitize each of the category ids
$category_ids = array();
foreach ($url_data['c'] as $c_id) {
if (intval($c_id) > 0) {
$category_ids[] = intval($c_id);
}
}
// Check if there are any category ids
if (count($category_ids) > 0) {
$category_ids = implode(",", $category_ids);
array_push(self::$params, '(c.id IN (' . $category_ids . ') OR c.parent_id IN (' . $category_ids . '))', 'c.category_visible = 1');
}
}
//
// Incident modes
//
if (isset($url_data['mode']) and is_array($url_data['mode'])) {
$incident_modes = array();
// Sanitize the modes
foreach ($url_data['mode'] as $mode) {
if (intval($mode) > 0) {
$incident_modes[] = intval($mode);
}
}
// Check if any modes exist and add them to the parameter list
if (count($incident_modes) > 0) {
array_push(self::$params, 'i.incident_mode IN (' . implode(",", $incident_modes) . ')');
}
}
//
// Location bounds parameters
//
if (isset($url_data['sw']) and isset($url_data['ne'])) {
$southwest = $url_data['sw'];
$northeast = $url_data['ne'];
if (count($southwest) == 2 and count($northeast) == 2) {
$lon_min = (double) $southwest[0];
$lon_max = (double) $northeast[0];
$lat_min = (double) $southwest[1];
$lat_max = (double) $northeast[1];
// Add the location conditions to the parameter list
array_push(self::$params, 'l.latitude >= ' . $lat_min, 'l.latitude <= ' . $lat_max, 'l.longitude >= ' . $lon_min, 'l.longitude <= ' . $lon_max);
}
}
//
// Location bounds - based on start location and radius
//
if (isset($url_data['radius']) and isset($url_data['start_loc'])) {
//if $url_data['start_loc'] is just comma delimited strings, then make it into an array
if (intval($url_data['radius']) > 0 and is_array($url_data['start_loc'])) {
$bounds = $url_data['start_loc'];
if (count($bounds) == 2 and is_numeric($bounds[0]) and is_numeric($bounds[1])) {
self::$params['radius'] = array('distance' => intval($url_data['radius']), 'latitude' => $bounds[0], 'longitude' => $bounds[1]);
}
}
}
//
// Check for incident date range parameters
//
if (!empty($url_data['from'])) {
// Add hours/mins/seconds so we still get reports if from and to are the same day
$date_from = date('Y-m-d 00:00:00', strtotime($url_data['from']));
array_push(self::$params, 'i.incident_date >= "' . $date_from . '"');
}
if (!empty($url_data['to'])) {
// Add hours/mins/seconds so we still get reports if from and to are the same day
$date_to = date('Y-m-d 23:59:59', strtotime($url_data['to']));
array_push(self::$params, 'i.incident_date <= "' . $date_to . '"');
}
// Additional checks for date parameters specified in timestamp format
// This only affects those submitted from the main page
// Start Date
if (isset($_GET['s']) and intval($_GET['s']) > 0) {
$start_date = intval($_GET['s']);
array_push(self::$params, 'i.incident_date >= "' . date("Y-m-d H:i:s", $start_date) . '"');
}
// End Date
if (isset($_GET['e']) and intval($_GET['e'])) {
$end_date = intval($_GET['e']);
array_push(self::$params, 'i.incident_date <= "' . date("Y-m-d H:i:s", $end_date) . '"');
}
//
// Check for media type parameter
//
if (isset($url_data['m']) and is_array($url_data['m'])) {
// An array of media filters has been specified
// Validate the media types
$media_types = array();
foreach ($url_data['m'] as $media_type) {
if (intval($media_type) > 0) {
$media_types[] = intval($media_type);
}
}
if (count($media_types) > 0) {
array_push(self::$params, 'i.id IN (SELECT DISTINCT incident_id FROM ' . $table_prefix . 'media WHERE media_type IN (' . implode(",", $media_types) . '))');
}
}
//
// Check if the verification status has been specified
//
if (isset($url_data['v']) and is_array($url_data['v'])) {
$verified_status = array();
foreach ($url_data['v'] as $verified) {
if (intval($verified) >= 0) {
$verified_status[] = intval($verified);
}
}
if (count($verified_status) > 0) {
array_push(self::$params, 'i.incident_verified IN (' . implode(",", $verified_status) . ')');
}
}
//
// Check if they're filtering over custom form fields
//
if (isset($url_data['cff']) and is_array($url_data['cff'])) {
$where_text = "";
$i = 0;
foreach ($url_data['cff'] as $field) {
$field_id = $field[0];
if (intval($field_id) < 1) {
continue;
}
$field_value = $field[1];
if (is_array($field_value)) {
$field_value = implode(",", $field_value);
}
$i++;
if ($i > 1) {
$where_text .= " OR ";
}
$where_text .= "(form_field_id = " . intval($field_id) . " AND form_response = '" . Database::instance()->escape_str(trim($field_value)) . "')";
}
// Make sure there was some valid input in there
if ($i > 0) {
// Get the valid IDs - faster in a separate query as opposed
// to a subquery within the main query
$db = new Database();
$rows = $db->query('SELECT DISTINCT incident_id FROM ' . $table_prefix . 'form_response WHERE ' . $where_text);
$incident_ids = '';
foreach ($rows as $row) {
if ($incident_ids != '') {
$incident_ids .= ',';
}
$incident_ids .= $row->incident_id;
}
//make sure there are IDs found
if ($incident_ids != '') {
array_push(self::$params, 'i.id IN (' . $incident_ids . ')');
} else {
array_push(self::$params, 'i.id IN (0)');
}
}
}
// End of handling cff
// In case a plugin or something wants to get in on the parameter fetching fun
Event::run('ushahidi_filter.fetch_incidents_set_params', self::$params);
//> END PARAMETER FETCH
// Check for order and sort params
$order_field = NULL;
$sort = NULL;
$order_options = array('title' => 'i.incident_title', 'date' => 'i.incident_date', 'id' => 'i.id');
if (isset($url_data['order']) and isset($order_options[$url_data['order']])) {
$order_field = $order_options[$url_data['order']];
}
if (isset($url_data['sort'])) {
$sort = strtoupper($url_data['sort']) == 'ASC' ? 'ASC' : 'DESC';
}
if ($paginate) {
// Fetch incident count
$incident_count = Incident_Model::get_incidents(self::$params, false, $order_field, $sort, TRUE);
// Set up pagination
$page_limit = intval($items_per_page) > 0 ? $items_per_page : intval(Kohana::config('settings.items_per_page'));
$total_items = $incident_count->current() ? $incident_count->current()->report_count : 0;
$pagination = new Pagination(array('style' => 'front-end-reports', 'query_string' => 'page', 'items_per_page' => $page_limit, 'total_items' => $total_items));
Event::run('ushahidi_filter.pagination', $pagination);
self::$pagination = $pagination;
// Return paginated results
return Incident_Model::get_incidents(self::$params, self::$pagination, $order_field, $sort);
} else {
// Return
return Incident_Model::get_incidents(self::$params, false, $order_field, $sort);
}
}
/**
* Helper function to fetch and optionally paginate the list of
* incidents/reports via the Incident Model using one or all of the
* following URL parameters
* - category
* - location bounds
* - incident mode
* - media
* - location radius
* JP: added one additional URL parameter:
* - search
*
* @param bool $paginate Optionally paginate the incidents - Default is FALSE
* @param int $items_per_page No. of items to show per page
* @return Database_Result
*/
public static function fetch_incidents($paginate = FALSE, $items_per_page = 0)
{
// Reset the paramters
self::$params = array();
// Initialize the category id
$category_id = 0;
$table_prefix = Kohana::config('database.default.table_prefix');
// Fetch the URL data into a local variable
$url_data = $_GET;
// Split selected parameters on ","
// For simplicity, always turn them into arrays even theres just one value
$exclude_params = array('c', 'v', 'm', 'mode', 'sw', 'ne', 'start_loc');
foreach ($url_data as $key => $value) {
if (in_array($key, $exclude_params) and !is_array($value)) {
$url_data[$key] = explode(",", $value);
}
}
//> BEGIN PARAMETER FETCH
//
// Check for the category parameter
//
if (isset($url_data['c']) and is_array($url_data['c'])) {
// Sanitize each of the category ids
$category_ids = array();
foreach ($url_data['c'] as $c_id) {
if (intval($c_id) > 0) {
$category_ids[] = intval($c_id);
}
}
// Check if there are any category ids
if (count($category_ids) > 0) {
$category_ids = implode(",", $category_ids);
array_push(self::$params, '(c.id IN (' . $category_ids . ') OR c.parent_id IN (' . $category_ids . '))', 'c.category_visible = 1');
}
}
//
// Incident modes
//
if (isset($url_data['mode']) and is_array($url_data['mode'])) {
$incident_modes = array();
// Sanitize the modes
foreach ($url_data['mode'] as $mode) {
if (intval($mode) > 0) {
$incident_modes[] = intval($mode);
}
}
// Check if any modes exist and add them to the parameter list
if (count($incident_modes) > 0) {
array_push(self::$params, 'i.incident_mode IN (' . implode(",", $incident_modes) . ')');
}
}
//
// Location bounds parameters
//
if (isset($url_data['sw']) and isset($url_data['ne'])) {
$southwest = $url_data['sw'];
$northeast = $url_data['ne'];
if (count($southwest) == 2 and count($northeast) == 2) {
$lon_min = (double) $southwest[0];
$lon_max = (double) $northeast[0];
$lat_min = (double) $southwest[1];
$lat_max = (double) $northeast[1];
// Add the location conditions to the parameter list
array_push(self::$params, 'l.latitude >= ' . $lat_min, 'l.latitude <= ' . $lat_max, 'l.longitude >= ' . $lon_min, 'l.longitude <= ' . $lon_max);
}
}
//
// Location bounds - based on start location and radius
//
if (isset($url_data['radius']) and isset($url_data['start_loc'])) {
//if $url_data['start_loc'] is just comma delimited strings, then make it into an array
if (intval($url_data['radius']) > 0 and is_array($url_data['start_loc'])) {
$bounds = $url_data['start_loc'];
if (count($bounds) == 2 and is_numeric($bounds[0]) and is_numeric($bounds[1])) {
self::$params['radius'] = array('distance' => intval($url_data['radius']), 'latitude' => $bounds[0], 'longitude' => $bounds[1]);
}
}
}
//
// Check for incident date range parameters
//
if (!empty($url_data['from'])) {
// Add hours/mins/seconds so we still get reports if from and to are the same day
$date_from = date('Y-m-d 00:00:00', strtotime($url_data['from']));
array_push(self::$params, 'i.incident_date >= "' . $date_from . '"');
}
if (!empty($url_data['to'])) {
// Add hours/mins/seconds so we still get reports if from and to are the same day
$date_to = date('Y-m-d 23:59:59', strtotime($url_data['to']));
array_push(self::$params, 'i.incident_date <= "' . $date_to . '"');
}
// Additional checks for date parameters specified in timestamp format
// This only affects those submitted from the main page
// Start Date
if (isset($_GET['s']) and intval($_GET['s']) > 0) {
$start_date = intval($_GET['s']);
array_push(self::$params, 'i.incident_date >= "' . date("Y-m-d H:i:s", $start_date) . '"');
}
// End Date
if (isset($_GET['e']) and intval($_GET['e'])) {
$end_date = intval($_GET['e']);
array_push(self::$params, 'i.incident_date <= "' . date("Y-m-d H:i:s", $end_date) . '"');
}
//
// Check for media type parameter
//
if (isset($url_data['m']) and is_array($url_data['m'])) {
// An array of media filters has been specified
// Validate the media types
$media_types = array();
foreach ($url_data['m'] as $media_type) {
if (intval($media_type) > 0) {
$media_types[] = intval($media_type);
}
}
if (count($media_types) > 0) {
array_push(self::$params, 'i.id IN (SELECT DISTINCT incident_id FROM ' . $table_prefix . 'media WHERE media_type IN (' . implode(",", $media_types) . '))');
}
}
//
// Check if the verification status has been specified
//
if (isset($url_data['v']) and is_array($url_data['v'])) {
$verified_status = array();
foreach ($url_data['v'] as $verified) {
if (intval($verified) >= 0) {
$verified_status[] = intval($verified);
}
}
if (count($verified_status) > 0) {
array_push(self::$params, 'i.incident_verified IN (' . implode(",", $verified_status) . ')');
}
}
//Search for Keyword in all Custom Form Fields
if (isset($url_data['custom_field_0'])) {
$keywords = $url_data['custom_field_0'];
$db = new Database();
$rows = $db->query('SELECT DISTINCT incident_id FROM ' . $table_prefix . 'form_response WHERE form_response LIKE "%' . $keywords . '%"');
$incident_ids = '';
foreach ($rows as $row) {
if ($incident_ids != '') {
$incident_ids .= ',';
}
$incident_ids .= $row->incident_id;
}
//make sure there are IDs found
if ($incident_ids != '') {
array_push(self::$params, 'i.id IN (' . $incident_ids . ')');
} else {
array_push(self::$params, 'i.id IN (0)');
}
}
// End of handling cff
//
// Check if they're filtering over custom form fields
//
if (isset($url_data['cff']) and is_array($url_data['cff'])) {
$where_text = "";
$i = 0;
foreach ($url_data['cff'] as $field) {
$field_id = $field[0];
if (intval($field_id) < 1) {
continue;
}
$field_value = $field[1];
if (is_array($field_value)) {
$field_value = implode(",", $field_value);
}
$i++;
if ($i > 1) {
$where_text .= " OR ";
}
$where_text .= "(form_field_id = " . intval($field_id) . " AND form_response LIKE '%" . Database::instance()->escape_str(trim($field_value)) . "%')";
}
// Make sure there was some valid input in there
if ($i > 0) {
// Get the valid IDs - faster in a separate query as opposed
// to a subquery within the main query
$db = new Database();
$rows = $db->query('SELECT DISTINCT incident_id FROM ' . $table_prefix . 'form_response WHERE ' . $where_text);
$incident_ids = '';
foreach ($rows as $row) {
if ($incident_ids != '') {
$incident_ids .= ',';
}
$incident_ids .= $row->incident_id;
}
//make sure there are IDs found
if ($incident_ids != '') {
array_push(self::$params, 'i.id IN (' . $incident_ids . ')');
} else {
array_push(self::$params, 'i.id IN (0)');
}
}
}
// End of handling cff
// JP: Check if the reports are being filtered via search.
if (isset($url_data['q']) and is_string($url_data['q'])) {
$filter_search_query = $url_data['q'];
if (!empty($filter_search_query)) {
$search_query = "";
$keyword_string = "";
$where_string = "";
$plus = "";
$or = "";
$search_info = "";
$html = "";
$pagination = "";
// Stop words that we won't search for
// Add words as needed!!
$stop_words = array('the', 'and', 'a', 'to', 'of', 'in', 'i', 'is', 'that', 'it', 'on', 'you', 'this', 'for', 'but', 'with', 'are', 'have', 'be', 'at', 'or', 'as', 'was', 'so', 'if', 'out', 'not');
// Phase 1 - Fetch the search string and perform initial sanitization
$keyword_raw = preg_replace('#/\\w+/#', '', $filter_search_query);
// Phase 2 - Strip the search string of any HTML and PHP tags that may be present for additional safety
$keyword_raw = strip_tags($keyword_raw);
// Phase 3 - Apply Kohana's XSS cleaning mechanism
$keyword_raw = security::xss_clean($keyword_raw);
// Database instance
$db = new Database();
$keywords = explode(' ', $keyword_raw);
if (is_array($keywords) and !empty($keywords)) {
array_change_key_case($keywords, CASE_LOWER);
$i = 0;
foreach ($keywords as $value) {
if (!in_array($value, $stop_words) and !empty($value)) {
// Escape the string for query safety
$chunk = $db->escape_str($value);
if ($i > 0) {
$plus = ' + ';
$or = ' OR ';
}
$where_string = $where_string . $or . "(incident_title LIKE '%{$chunk}%' OR incident_description LIKE '%{$chunk}%')";
$i++;
}
}
if (!empty($keyword_string) and !empty($where_string)) {
// Limit the result set to only those reports that have been approved
$where_string = '(' . $where_string . ') AND incident_active = 1';
$search_query = "SELECT *, (" . $keyword_string . ") AS relevance FROM " . $table_prefix . "incident " . "WHERE " . $where_string . " " . "ORDER BY relevance DESC LIMIT ?, ?";
}
}
$rows = $db->query('SELECT DISTINCT id FROM ' . $table_prefix . 'incident WHERE ' . $where_string);
$incident_ids = '';
foreach ($rows as $row) {
if ($incident_ids != '') {
$incident_ids .= ',';
}
$incident_ids .= $row->id;
}
//make sure there are IDs found
if ($incident_ids != '') {
array_push(self::$params, 'i.id IN (' . $incident_ids . ')');
} else {
array_push(self::$params, 'i.id IN (0)');
}
}
}
// In case a plugin or something wants to get in on the parameter fetching fun
Event::run('ushahidi_filter.fetch_incidents_set_params', self::$params);
//> END PARAMETER FETCH
// Check for order and sort params
$order_field = NULL;
$sort = NULL;
$order_options = array('title' => 'i.incident_title', 'date' => 'i.incident_date', 'id' => 'i.id');
if (isset($url_data['order']) and isset($order_options[$url_data['order']])) {
$order_field = $order_options[$url_data['order']];
}
if (isset($url_data['sort'])) {
$sort = strtoupper($url_data['sort']) == 'ASC' ? 'ASC' : 'DESC';
}
if ($paginate) {
// Fetch incident count
$incident_count = Incident_Model::get_incidents(self::$params, false, $order_field, $sort, TRUE);
// Set up pagination
$page_limit = intval($items_per_page) > 0 ? $items_per_page : intval(Kohana::config('settings.items_per_page'));
$total_items = $incident_count->current() ? $incident_count->current()->report_count : 0;
$pagination = new Pagination(array('style' => 'front-end-reports', 'query_string' => 'page', 'items_per_page' => $page_limit, 'total_items' => $total_items));
Event::run('ushahidi_filter.pagination', $pagination);
self::$pagination = $pagination;
// Return paginated results
return Incident_Model::get_incidents(self::$params, self::$pagination, $order_field, $sort);
} else {
// Return
return Incident_Model::get_incidents(self::$params, false, $order_field, $sort);
}
}
