function _eventsInRange($start, $end = false, $cat = '', $aud = '', $user = '', $fields = '*', $limit = false)
{
if (session_admin()) {
$append = session_allowed_sql();
} else {
$append = session_approved_sql();
}
if (!empty($user)) {
$usr = '******' . db_quote($user);
} else {
$usr = '******';
}
if (!empty($cat)) {
$cat = ' and category = ' . db_quote($cat);
} else {
$cat = ' ';
}
if (!empty($aud)) {
$aud = ' and audience like ' . db_quote('%' . $aud . '%');
} else {
$aud = ' ';
}
if ($limit !== false) {
$lim = ' limit ' . $limit;
} else {
$lim = ' ';
}
$start = db_quote($start);
$sql = 'select ' . $fields . ' from siteevent_event where (';
if ($end) {
$end = db_quote($end);
$sql .= sprintf('(recurring = "no" and date >= %s and date <= %s and until_date = "0000-00-00") or ', $start, $end);
$sql .= sprintf('(recurring != "no" and date <= %s and until_date = "0000-00-00") or ', $end);
$sql .= sprintf('(date <= %s and until_date >= %s)', $end, $start);
} else {
$sql .= sprintf('(recurring = "no" and date >= %s and until_date = "0000-00-00") or ', $start);
// not recurring, starts after $start
$sql .= sprintf('(recurring != "no" and until_date = "0000-00-00") or ');
// no end recurring date
$sql .= sprintf('(until_date >= %s)', $start);
// ends after $start
}
$sql .= ') ' . $usr . $cat . $aud . ' and ' . $append . ' order by date asc, time asc, until_date asc, until_time asc' . $lim;
return db_fetch_array($sql);
}
function getTopics()
{
if (session_admin()) {
$perms = session_allowed_sql();
} else {
$perms = session_approved_sql();
}
$list = db_fetch_array('select * from siteforum_topic where ' . $perms . ' order by
name asc');
foreach (array_keys($list) as $k) {
$list[$k]->threads = db_shift('select count(*) from siteforum_post where topic_id = ? and post_id = ""', $list[$k]->id);
$list[$k]->posts = db_shift('select count(*) from siteforum_post where topic_id = ?', $list[$k]->id);
$obj = db_single('select ts, user_id, id from siteforum_post where topic_id = ? order by ts desc limit 1', $list[$k]->id);
$list[$k]->last_post = $obj->ts;
$list[$k]->last_post_user = $obj->user_id;
$list[$k]->last_post_id = $obj->id;
$list[$k]->last_post_user_public = db_shift('select public from sitellite_user where username = ?', $obj->user_id);
}
return $list;
}
function getLatest($limit = 5, $topic = false)
{
if (session_admin()) {
$perms = session_allowed_sql();
} else {
$perms = session_approved_sql();
}
if ($topic) {
$list = db_fetch_array('select id, topic_id, user_id, ts, subject from siteforum_post where topic_id = ? and ' . $perms . ' order by ts desc limit ' . $limit, $topic);
} else {
$list = db_fetch_array('select id, topic_id, user_id, ts, subject from siteforum_post where ' . $perms . ' order by ts desc limit ' . $limit);
}
if (!$list) {
return array();
}
loader_import('siteforum.Topic');
$t = new SiteForum_Topic();
foreach (array_keys($list) as $k) {
$list[$k]->topic_name = $t->getTitle($list[$k]->topic_id);
$list[$k]->user_public = db_shift('select public from sitellite_user where username = ?', $list[$k]->user_id);
}
return $list;
}
<?php
if (session_admin()) {
$acl = session_allowed_sql();
} else {
$acl = session_approved_sql();
}
$res = db_fetch_array('select name, display_title, extension, description from sitellite_filesystem where path = ? and ' . $acl . ' order by name asc', $parameters['path']);
$valid = appconf('valid');
foreach (array_keys($res) as $k) {
if (!in_array(strtolower($res[$k]->extension), $valid)) {
unset($res[$k]);
}
}
if ($parameters['title']) {
if ($box['context'] == 'action') {
page_title($parameters['title']);
} else {
echo '<h2>' . $parameters['title'] . '</h2>';
}
}
page_add_script(site_prefix() . '/js/rollover.js');
template_simple_register('results', $res);
template_simple_register('first', array_shift($res));
echo template_simple('slideshow.spt', array('path' => $parameters['path'], 'total' => count($res) + 1, 'desc' => $parameters['descriptions'], 'delay' => $parameters['delay']));
<?php
if (session_admin()) {
$allowed = session_allowed_sql();
} else {
$allowed = session_approved_sql();
}
$pres = db_single('select * from sitepresenter_presentation where id = ? and ' . $allowed, $parameters['id']);
if (!$pres) {
header('Location: ' . site_prefix() . '/index/sitepresenter-app');
exit;
}
loader_import('saf.Date');
$pres->date = Date::format($pres->ts, 'Ymd');
$pres->fmdate = Date::format($pres->ts, 'F j, Y');
$res = db_single('select concat(firstname, " ", lastname) as author, company from sitellite_user where username = ?', $pres->sitellite_owner);
$pres->author = $res->author;
$pres->company = $res->company;
$doms = explode('.', site_domain());
$pres->domain = array_pop($doms);
$pres->domain = '.' . $pres->domain;
$pres->domain = array_pop($doms) . $pres->domain;
$pres->slides = db_fetch_array('select * from sitepresenter_slide where presentation = ? order by number asc', $parameters['id']);
db_execute('insert into sitepresenter_view (presentation, ts, ip) values (?, now(), ?)', $parameters['id'], $_SERVER['REMOTE_ADDR']);
if (isset($parameters['theme']) && !strpos($parameters['theme'], '..') && @is_dir('inc/app/sitepresenter/themes/' . $parameters['theme'])) {
$pres->theme = $parameters['theme'];
}
echo template_simple('presentation.spt', $pres);
exit;
<?php
if (session_admin()) {
$clause = session_allowed_sql();
} else {
$clause = session_approved_sql();
}
$list = db_fetch_array('select
id, title, year(date_added) as year, date_added
from
sitepoll_poll
where ' . $clause . '
order by
date_added desc');
loader_import('sitepoll.Poll');
$p = new SitePoll();
$p->usePermissions = true;
$p->multilingual = true;
$p->orderBy('date_added desc');
$list = $p->find(array());
foreach ($list as $k => $v) {
$list[$k]->year = substr($v->date_added, 0, 4);
}
$years = array();
foreach ($list as $k => $v) {
if (!is_array($years[$v->year])) {
$years[$v->year] = array($v);
} else {
$years[$v->year][] = $v;
}
}
/**
* Returns a single object with the specified $id.
*
* @access public
* @param mixed
* @return object
*/
function &get($id)
{
if ($this->usePermissions) {
if (session_admin()) {
$and = ' and ' . session_allowed_sql();
} else {
$and = ' and ' . session_approved_sql();
}
} else {
$and = '';
}
$res = db_fetch('SELECT * FROM ' . $this->table . ' WHERE ' . $this->pkey . ' = ?' . $and . $this->_end(), $id);
if (!$res) {
$this->error = db_error();
return false;
}
if ($this->multilingual && intl_lang() != intl_default_lang()) {
loader_import('multilingual.Translation');
$tr = new Translation($this->table, intl_lang());
if (session_admin()) {
$translated = $tr->get($res->{$this->pkey});
} else {
$translated = $tr->get($res->{$this->pkey}, true);
}
if ($translated) {
foreach ($translated->data as $key => $value) {
$res->{$key} = $value;
}
}
}
return $res;
}
