private function delete() { if (!$this->_user->entrycan("delentry", $this)) { return false; } $db = new CodeKBDatabase(); $db->dosql("SELECT id " . "FROM files " . "WHERE entry = {$db->number($this->_id)}"); while ($val = $db->row()) { $file = new CodeKBFile($val['id'], $this->_user); if (!$file->delete(true)) { return false; } unset($file); } $db->start(); $db->dosql("DELETE FROM entry_cat " . "WHERE entry = {$db->number($this->_id)}"); $db->dosql("DELETE FROM entries " . "WHERE id = {$db->number($this->_id)}"); $db->commit(); if ($db->success()) { return true; } throw new CodeKBException(__METHOD__, "entry", "faileddel"); }
public function joingroup($user, $group) { // return values // 1 already in group $db = new CodeKBDatabase(); $db->start(); $db->dosql("SELECT userid " . "FROM group_user " . "WHERE userid = {$db->number($user)} AND " . "groupid = {$db->number($group)}"); if ($db->countrows() > 0) { $db->abort(); throw new CodeKBException(__METHOD__, "admin", "alreadyingroup", null, 1); } $db->dosql("INSERT INTO group_user (groupid, userid) " . "VALUES ({$db->number($group)}, " . "{$db->number($user)})"); $db->commit(); if ($db->success()) { return true; } throw new CodeKBException(__METHOD__, "admin", "failedjoin"); }
public function register($name, $pass) { // return values // 1 duplicate user $pass = sha1($pass); global $lang; if ($name == $lang['admin']['nobody']) { throw new CodeKBException(__METHOD__, "admin", "duplicateuser", $name, 1); } $db = new CodeKBDatabase(); $db->start(); $db->dosql("SELECT id " . "FROM users " . "WHERE name = '{$db->string($name)}'"); if ($db->countrows() > 0) { $db->abort(); throw new CodeKBException(__METHOD__, "admin", "duplicateuser", $name, 1); } // We need a random id $succ = false; while ($succ == false) { $id = mt_rand(); $db->dosql("SELECT id " . "FROM users " . "WHERE id = {$db->number($id)}"); if ($db->countrows() == 0) { break; } } $db->dosql("INSERT INTO users (id, name, pass) " . "VALUES ({$db->number($id)}, " . "'{$db->string($name)}', " . "'{$db->string($pass)}')"); $db->commit(); if ($db->success()) { return true; } throw new CodeKBException(__METHOD__, "admin", "failedadduser", $name); }
public function change($name, $description, $parent = -1) { // return values // 1 child cannot be parent // 2 duplicate category if (!$this->_user->can("changecat", $this)) { return false; } $db = new CodeKBDatabase(); $db->start(); if ($parent == -1) { $db->dosql("SELECT parent " . "FROM categories " . "WHERE id = {$db->number($this->_id)}"); $parent = $db->column("parent"); } else { $i = $parent; if ($i == $this->_id) { throw new CodeKBException(__METHOD__, "category", "childnoparent", $name, 1); } while ($i != 0) { $db->dosql("SELECT parent " . "FROM categories " . "WHERE id = {$db->number($i)}"); $i = $db->column("parent"); if ($i == $this->_id) { $db->abort(); throw new CodeKBException(__METHOD__, "category", "childnoparent", $name, 1); } } } $db->dosql("SELECT id " . "FROM categories " . "WHERE parent = {$db->number($parent)} AND " . "id <> {$db->number($this->_id)} AND " . "name = '{$db->string($name)}'"); if ($db->countrows() > 0) { $db->abort(); throw new CodeKBException(__METHOD__, "category", "duplicate", $name, 2); } $db->dosql("UPDATE categories " . "SET name = '{$db->string($name)}', " . "description = '{$db->string($description)}', " . "parent = {$db->number($parent)} " . "WHERE id = {$db->number($this->_id)}"); $db->commit(); if ($db->success()) { $this->_name = $name; $this->_description = $description; if ($parent != -1) { $this->_parent = $parent; } return true; } $db->abort(); throw new CodeKBException(__METHOD__, "category", "failedchange", $name); }