public static function getAllPostHeadersByCategoryId($categoryId)
{
$pdoMysql = new PdoMysql();
$pdoMysql->conn();
$sql = "SELECT id\n , headline\n , category_id\n , online\n , post_date\n FROM post_data\n WHERE category_id = {$categoryId}";
$rv = $pdoMysql->query($sql, array());
if (is_a($rv, 'ErrorObject')) {
$rv->caller = $_SERVER['SCRIPT_FILENAME'];
return $rv;
}
return self::parseResults($pdoMysql->getResultsSet());
}
public static function getSubCategories($parentId)
{
$pdoMysql = new PdoMysql();
$pdoMysql->conn();
$sql = "SELECT cat.* from categories cat, sub_categories sub\n WHERE cat.id = sub.category_id\n AND sub.parent_id=:parentId";
$bindValues = array('parentId' => $parentId);
$rv = $pdoMysql->query($sql, $bindValues);
if (is_a($rv, 'ErrorObject')) {
$rv->caller = $_SERVER['SCRIPT_FILENAME'];
return $rv;
}
return self::parseResults($pdoMysql->getResultsSet());
}
/**
*
* @return int
*/
public static function checkAuthenticationToken($token)
{
$tokenFailure = new ErrorObject(self::AUTH_FAILURE, 'Auth Token Failure');
$pdoMysql = new PdoMysql();
$pdoMysql->conn();
$tkn = isset($_COOKIE['eggstok']) ? $_COOKIE['eggstok'] : false;
if (!$tkn || $tkn != $token) {
return $tokenFailure;
}
$sql = "SELECT * FROM session_tokens WHERE token = '{$token}'";
$rv = $pdoMysql->query($sql, array());
if (is_a($rv, 'ErrorObject')) {
$rv->caller = $_SERVER['SCRIPT_FILENAME'];
return $tokenFailure;
}
if (count($pdoMysql->getResultsSet()) <= 0) {
return $tokenFailure;
}
self::deleteToken($token);
self::getAuthenticationToken(true);
return 200;
}
public static function getRepliesByParentId($parentId)
{
$pdoMysql = new PdoMysql();
$pdoMysql->conn();
$sql = "SELECT comments.id\n , comments.user_id\n , comments.body\n , comments.post_id\n , comments.date_posted\n , users.user_name\n FROM comments, replies, users\n WHERE comments.approved != 0\n AND comments.id = replies.comment_id\n AND replies.parent_id=:parentId\n AND users.id = comments.user_id";
$bindValues = array('parentId' => (int) $parentId);
$rv = $pdoMysql->query($sql, $bindValues);
if (is_a($rv, 'ErrorObject')) {
$rv->caller = $_SERVER['SCRIPT_FILENAME'];
return $rv;
}
return self::parseResults($pdoMysql->getResultsSet());
}
public static function getFakeUser($postId = null)
{
$pdoMysql = new PdoMysql();
$pdoMysql->conn();
if (!is_null($postId)) {
$sql = "SELECT id\n , user_name\n , user_type\n , email\n , user_pw\n , date_joined\n FROM users\n WHERE user_type = 4\n AND id NOT IN (\n SELECT user_id FROM comments\n WHERE post_id = {$postId})";
} else {
$sql = "SELECT id\n , user_name\n , user_type\n , email\n , user_pw\n , date_joined\n FROM users\n WHERE user_type = 4";
}
$rv = $pdoMysql->query($sql, array());
if (is_a($rv, 'ErrorObject')) {
$rv->caller = $_SERVER['SCRIPT_FILENAME'];
return $rv;
}
$rs = $pdoMysql->getResultsSet();
if (count($rs) <= 0) {
return self::getAllFakeUsers();
}
return self::parseResults($rs);
}
