352 lines
15 KiB
PHP
352 lines
15 KiB
PHP
|
<?php
|
||
|
|
||
|
/*
|
||
|
[UCenter] (C)2001-2009 Comsenz Inc.
|
||
|
This is NOT a freeware, use is subject to license terms
|
||
|
|
||
|
$Id: pm.php 643 2008-09-25 10:20:59Z monkey $
|
||
|
*/
|
||
|
|
||
|
!defined('IN_UC') && exit('Access Denied');
|
||
|
|
||
|
class pmmodel {
|
||
|
|
||
|
var $db;
|
||
|
var $base;
|
||
|
var $lang;
|
||
|
|
||
|
function __construct(&$base) {
|
||
|
$this->pmmodel($base);
|
||
|
}
|
||
|
|
||
|
function pmmodel(&$base) {
|
||
|
$this->base = $base;
|
||
|
$this->db = $base->db;
|
||
|
}
|
||
|
|
||
|
function pmintval($pmid) {
|
||
|
return @is_numeric($pmid) ? $pmid : 0;
|
||
|
}
|
||
|
|
||
|
function get_pm_by_pmid($uid, $pmid) {
|
||
|
$arr = array();
|
||
|
$arr = $this->db->fetch_all("SELECT * FROM ".UC_DBTABLEPRE."pms WHERE related='$pmid' AND (msgtoid='$uid' OR msgfromid='$uid') ORDER BY dateline");
|
||
|
if(!$arr) {
|
||
|
$arr = $this->db->fetch_all("SELECT * FROM ".UC_DBTABLEPRE."pms WHERE pmid='$pmid' AND (msgtoid IN ('$uid','0') OR msgfromid='$uid')");
|
||
|
}
|
||
|
return $arr;
|
||
|
}
|
||
|
|
||
|
function get_pm_by_touid($uid, $touid, $starttime, $endtime) {
|
||
|
$arr1 = $this->db->fetch_all("SELECT * FROM ".UC_DBTABLEPRE."pms WHERE msgfromid='$uid' AND msgtoid='$touid' AND dateline>='$starttime' AND dateline<'$endtime' AND related>'0' AND delstatus IN (0,2) ORDER BY dateline");
|
||
|
$arr2 = $this->db->fetch_all("SELECT * FROM ".UC_DBTABLEPRE."pms WHERE msgfromid='$touid' AND msgtoid='$uid' AND dateline>='$starttime' AND dateline<'$endtime' AND related>'0' AND delstatus IN (0,1) ORDER BY dateline");
|
||
|
$arr = array_merge($arr1, $arr2);
|
||
|
uasort($arr, 'pm_datelinesort');
|
||
|
return $arr;
|
||
|
}
|
||
|
|
||
|
function get_pmnode_by_pmid($uid, $pmid, $type = 0) {
|
||
|
$arr = array();
|
||
|
if($type == 1) {
|
||
|
$arr = $this->db->fetch_first("SELECT * FROM ".UC_DBTABLEPRE."pms WHERE msgfromid='$uid' and folder='inbox' ORDER BY dateline DESC LIMIT 1");
|
||
|
} elseif($type == 2) {
|
||
|
$arr = $this->db->fetch_first("SELECT * FROM ".UC_DBTABLEPRE."pms WHERE msgtoid='$uid' and folder='inbox' ORDER BY dateline DESC LIMIT 1");
|
||
|
} else {
|
||
|
$arr = $this->db->fetch_first("SELECT * FROM ".UC_DBTABLEPRE."pms WHERE pmid='$pmid'");
|
||
|
}
|
||
|
return $arr;
|
||
|
}
|
||
|
|
||
|
function set_pm_status($uid, $touid) {
|
||
|
$this->db->query("UPDATE ".UC_DBTABLEPRE."pms SET new='0' WHERE msgfromid='$touid' AND msgtoid='$uid' AND new='1'", 'UNBUFFERED');
|
||
|
}
|
||
|
|
||
|
function get_pm_num($uid, $folder, $filter, $a) {
|
||
|
$folder = $folder;
|
||
|
$get_pm_num = 0;
|
||
|
$pm_num = isset($_COOKIE['uc_pmnum']) && ($pm_num = explode('|', $_COOKIE['uc_pmnum'])) && $pm_num[0] == $uid ? $pm_num : array(0,0,0,0);
|
||
|
switch($folder) {
|
||
|
case 'newbox':
|
||
|
$get_pm_num = $this->get_num($uid, 'newbox');
|
||
|
break;
|
||
|
case 'inbox':
|
||
|
if(!$filter && $a != 'view') {
|
||
|
$get_pm_num = $this->get_num($uid, 'inbox');
|
||
|
} else {
|
||
|
$get_pm_num = $pm_num[1];
|
||
|
}
|
||
|
break;
|
||
|
}
|
||
|
if($a == 'ls') {
|
||
|
$get_announcepm_num = $this->get_num($uid, 'inbox', 'announcepm');
|
||
|
$get_systempm_num = $this->get_num($uid, 'inbox', 'systempm');
|
||
|
$get_newinbox_num = $this->get_num($uid, 'inbox', 'newpm');
|
||
|
} else {
|
||
|
list(, $get_newinbox_num, $get_systempm_num, $get_announcepm_num) = $pm_num;
|
||
|
}
|
||
|
if($pm_num[2] != $get_newinbox_num || $pm_num[3] != $get_systempm_num || $pm_num[4] != $get_announcepm_num) {
|
||
|
header('P3P: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"');
|
||
|
$this->base->setcookie('uc_pmnum', $uid.'|'.$get_pm_num.'|'.$get_systempm_num.'|'.$get_announcepm_num, 3600);
|
||
|
}
|
||
|
return array($get_pm_num, $get_newinbox_num, 0, $get_systempm_num, $get_announcepm_num);
|
||
|
}
|
||
|
|
||
|
function get_num($uid, $folder, $filter = '') {
|
||
|
switch($folder) {
|
||
|
case 'newbox':
|
||
|
$sql = "SELECT count(*) FROM ".UC_DBTABLEPRE."pms WHERE msgtoid='$uid' AND (related='0' AND msgfromid>'0' OR msgfromid='0') AND folder='inbox' AND new='1'";
|
||
|
$num = $this->db->result_first($sql);
|
||
|
return $num;
|
||
|
case 'inbox':
|
||
|
if($filter == 'newpm') {
|
||
|
$filteradd = "msgtoid='$uid' AND (related='0' AND msgfromid>'0' OR msgfromid='0') AND folder='inbox' AND new='1'";
|
||
|
} elseif($filter == 'systempm') {
|
||
|
$filteradd = "msgtoid='$uid' AND msgfromid='0' AND folder='inbox'";
|
||
|
} elseif($filter == 'privatepm') {
|
||
|
$filteradd = "msgtoid='$uid' AND related='0' AND msgfromid>'0' AND folder='inbox'";
|
||
|
} elseif($filter == 'announcepm') {
|
||
|
$filteradd = "msgtoid='0' AND folder='inbox'";
|
||
|
} else {
|
||
|
$filteradd = "msgtoid='$uid' AND related='0' AND folder='inbox'";
|
||
|
}
|
||
|
$sql = "SELECT count(*) FROM ".UC_DBTABLEPRE."pms WHERE $filteradd";
|
||
|
break;
|
||
|
}
|
||
|
$num = $this->db->result_first($sql);
|
||
|
return $num;
|
||
|
}
|
||
|
|
||
|
function get_pm_list($uid, $pmnum, $folder, $filter, $page, $ppp = 10, $new = 0) {
|
||
|
$ppp = $ppp ? $ppp : 10;
|
||
|
$start_limit = $this->base->page_get_start($page, $ppp, $pmnum);
|
||
|
switch($folder) {
|
||
|
case 'newbox':
|
||
|
$folder = 'inbox';
|
||
|
$filter = 'newpm';
|
||
|
case 'inbox':
|
||
|
if($filter == 'newpm') {
|
||
|
$filteradd = "pm.msgtoid='$uid' AND (pm.related='0' AND pm.msgfromid>'0' OR pm.msgfromid='0') AND pm.folder='inbox' AND pm.new='1'";
|
||
|
} elseif($filter == 'systempm') {
|
||
|
$filteradd = "pm.msgtoid='$uid' AND pm.msgfromid='0' AND pm.folder='inbox'";
|
||
|
} elseif($filter == 'privatepm') {
|
||
|
$filteradd = "pm.msgtoid='$uid' AND pm.related='0' AND pm.msgfromid>'0' AND pm.folder='inbox'";
|
||
|
} elseif($filter == 'announcepm') {
|
||
|
$filteradd = "pm.msgtoid='0' AND pm.folder='inbox'";
|
||
|
} else {
|
||
|
$filteradd = "pm.msgtoid='$uid' AND pm.related='0' AND pm.folder='inbox'";
|
||
|
}
|
||
|
$sql = "SELECT pm.*,m.username as msgfrom FROM ".UC_DBTABLEPRE."pms pm
|
||
|
LEFT JOIN ".UC_DBTABLEPRE."members m ON pm.msgfromid = m.uid
|
||
|
WHERE $filteradd ORDER BY pm.dateline DESC LIMIT $start_limit, $ppp";
|
||
|
break;
|
||
|
}
|
||
|
$query = $this->db->query($sql);
|
||
|
$array = array();
|
||
|
$today = $this->base->time - ($this->base->time + $this->base->settings['timeoffset']) % 86400;
|
||
|
while($data = $this->db->fetch_array($query)) {
|
||
|
$daterange = 5;
|
||
|
if($data['dateline'] >= $today) {
|
||
|
$daterange = 1;
|
||
|
} elseif($data['dateline'] >= $today - 86400) {
|
||
|
$daterange = 2;
|
||
|
} elseif($data['dateline'] >= $today - 172800) {
|
||
|
$daterange = 3;
|
||
|
} elseif($data['dateline'] >= $today - 604800) {
|
||
|
$daterange = 4;
|
||
|
}
|
||
|
$data['daterange'] = $daterange;
|
||
|
$data['daterangetext'] = !empty($this->lang['pm_daterange_'.$daterange]) ? $this->lang['pm_daterange_'.$daterange] : $daterange;
|
||
|
$data['dbdateline'] = $data['dateline'];
|
||
|
$data['datelinetime'] = $this->base->date($data['dateline'], 1);
|
||
|
$data['dateline'] = $this->base->date($data['dateline']);
|
||
|
$data['subject'] = $data['subject'] != '' ? htmlspecialchars($data['subject']) : $this->lang['pm_notitle'];
|
||
|
$data['newstatus'] = $data['new'];
|
||
|
$data['touid'] = $data['avataruid'] = $uid == $data['msgfromid'] ? $data['msgtoid'] : $data['msgfromid'];
|
||
|
$data['message'] = $this->removecode($data['message'], 80);
|
||
|
$array[] = $data;
|
||
|
}
|
||
|
if($folder == 'inbox') {
|
||
|
$this->db->query("DELETE FROM ".UC_DBTABLEPRE."newpm WHERE uid='$uid'", 'UNBUFFERED');
|
||
|
}
|
||
|
return $array;
|
||
|
}
|
||
|
|
||
|
function sendpm($subject, $message, $msgfrom, $msgto, $pmid = 0, $related = 0) {
|
||
|
//note 过滤关键词
|
||
|
$_CACHE['badwords'] = $this->base->cache('badwords');
|
||
|
if($_CACHE['badwords']['findpattern']) {
|
||
|
$subject = @preg_replace($_CACHE['badwords']['findpattern'], $_CACHE['badwords']['replace'], $subject);
|
||
|
$message = @preg_replace($_CACHE['badwords']['findpattern'], $_CACHE['badwords']['replace'], $message);
|
||
|
}
|
||
|
|
||
|
if($msgfrom['uid'] && $msgfrom['uid'] == $msgto) {
|
||
|
return 0;
|
||
|
}
|
||
|
$box = 'inbox';
|
||
|
$subject = trim($subject);
|
||
|
if($subject == '' && !$related) {
|
||
|
$subject = $this->removecode(trim($message), 75);
|
||
|
} else {
|
||
|
$subject = $this->base->cutstr(trim($subject), 75, '');
|
||
|
}
|
||
|
|
||
|
if($msgfrom['uid']) {
|
||
|
if($msgto) {
|
||
|
$sessionexist = $this->db->result_first("SELECT count(*) FROM ".UC_DBTABLEPRE."pms WHERE msgfromid='$msgfrom[uid]' AND msgtoid='$msgto' AND folder='inbox' AND related='0'");
|
||
|
} else {
|
||
|
$sessionexist = 0;
|
||
|
}
|
||
|
if(!$sessionexist || $sessionexist > 1) {
|
||
|
if($sessionexist > 1) {
|
||
|
$this->db->query("DELETE FROM ".UC_DBTABLEPRE."pms WHERE msgfromid='$msgfrom[uid]' AND msgtoid='$msgto' AND folder='inbox' AND related='0'");
|
||
|
}
|
||
|
$this->db->query("INSERT INTO ".UC_DBTABLEPRE."pms (msgfrom,msgfromid,msgtoid,folder,new,subject,dateline,related,message,fromappid) VALUES
|
||
|
('".$msgfrom['username']."','".$msgfrom['uid']."','$msgto','$box','1','$subject','".$this->base->time."','0','$message','".$this->base->app['appid']."')");
|
||
|
$lastpmid = $this->db->insert_id();
|
||
|
} else {
|
||
|
$this->db->query("UPDATE ".UC_DBTABLEPRE."pms SET subject='$subject', message='$message', dateline='".$this->base->time."', new='1', fromappid='".$this->base->app['appid']."'
|
||
|
WHERE msgfromid='$msgfrom[uid]' AND msgtoid='$msgto' AND folder='inbox' AND related='0'");
|
||
|
}
|
||
|
if($msgto) {
|
||
|
$sessionexist = $this->db->result_first("SELECT count(*) FROM ".UC_DBTABLEPRE."pms WHERE msgfromid='$msgto' AND msgtoid='$msgfrom[uid]' AND folder='inbox' AND related='0'");
|
||
|
if($msgfrom['uid'] && !$sessionexist) {
|
||
|
$this->db->query("INSERT INTO ".UC_DBTABLEPRE."pms (msgfrom,msgfromid,msgtoid,folder,new,subject,dateline,related,message,fromappid) VALUES
|
||
|
('".$msgfrom['username']."','$msgto','".$msgfrom['uid']."','$box','0','$subject','".$this->base->time."','0','$message','0')");
|
||
|
}
|
||
|
$this->db->query("INSERT INTO ".UC_DBTABLEPRE."pms (msgfrom,msgfromid,msgtoid,folder,new,subject,dateline,related,message,fromappid) VALUES
|
||
|
('".$msgfrom['username']."','".$msgfrom['uid']."','$msgto','$box','1','$subject','".$this->base->time."','".($msgfrom['uid'] ? 1 : 0)."','$message','".$this->base->app['appid']."')");
|
||
|
$lastpmid = $this->db->insert_id();
|
||
|
}
|
||
|
if($msgto) {
|
||
|
$this->db->query("REPLACE INTO ".UC_DBTABLEPRE."newpm (uid) VALUES ('$msgto')");
|
||
|
}
|
||
|
} else {
|
||
|
$this->db->query("INSERT INTO ".UC_DBTABLEPRE."pms (msgfrom,msgfromid,msgtoid,folder,new,subject,dateline,related,message,fromappid) VALUES
|
||
|
('".$msgfrom['username']."','".$msgfrom['uid']."','$msgto','$box','1','$subject','".$this->base->time."','0','$message','".$this->base->app['appid']."')");
|
||
|
$lastpmid = $this->db->insert_id();
|
||
|
}
|
||
|
return $lastpmid;
|
||
|
}
|
||
|
|
||
|
function set_ignore($uid) {
|
||
|
$this->db->query("DELETE FROM ".UC_DBTABLEPRE."newpm WHERE uid='$uid'");
|
||
|
}
|
||
|
|
||
|
function check_newpm($uid, $more) {
|
||
|
if($more < 2) {
|
||
|
$newpm = $this->db->result_first("SELECT count(*) FROM ".UC_DBTABLEPRE."newpm WHERE uid='$uid'");
|
||
|
if($newpm) {
|
||
|
$newpm = $this->db->result_first("SELECT count(*) FROM ".UC_DBTABLEPRE."pms WHERE (related='0' AND msgfromid>'0' OR msgfromid='0') AND msgtoid='$uid' AND folder='inbox' AND new='1'");
|
||
|
if($more) {
|
||
|
$newprvpm = $this->db->result_first("SELECT count(*) FROM ".UC_DBTABLEPRE."pms WHERE related='0' AND msgfromid>'0' AND msgtoid='$uid' AND folder='inbox' AND new='1'");
|
||
|
return array('newpm' => $newpm, 'newprivatepm' => $newprvpm);
|
||
|
} else {
|
||
|
return $newpm;
|
||
|
}
|
||
|
}
|
||
|
} else {
|
||
|
$newpm = $this->db->result_first("SELECT count(*) FROM ".UC_DBTABLEPRE."pms WHERE (related='0' AND msgfromid>'0' OR msgfromid='0') AND msgtoid='$uid' AND folder='inbox' AND new='1'");
|
||
|
$newprvpm = $this->db->result_first("SELECT count(*) FROM ".UC_DBTABLEPRE."pms WHERE related='0' AND msgfromid>'0' AND msgtoid='$uid' AND folder='inbox' AND new='1'");
|
||
|
if($more == 2 || $more == 3) {
|
||
|
$annpm = $this->db->result_first("SELECT count(*) FROM ".UC_DBTABLEPRE."pms WHERE related='0' AND msgtoid='0' AND folder='inbox'");
|
||
|
$syspm = $this->db->result_first("SELECT count(*) FROM ".UC_DBTABLEPRE."pms WHERE related='0' AND msgtoid='$uid' AND folder='inbox' AND msgfromid='0'");
|
||
|
}
|
||
|
if($more == 2) {
|
||
|
return array('newpm' => $newpm, 'newprivatepm' => $newprvpm, 'announcepm' => $annpm, 'systempm' => $syspm);
|
||
|
} if($more == 4) {
|
||
|
return array('newpm' => $newpm, 'newprivatepm' => $newprvpm);
|
||
|
} else {
|
||
|
$pm = $this->db->fetch_first("SELECT pm.dateline,pm.msgfromid,m.username as msgfrom,pm.message FROM ".UC_DBTABLEPRE."pms pm LEFT JOIN ".UC_DBTABLEPRE."members m ON pm.msgfromid = m.uid WHERE (pm.related='0' OR pm.msgfromid='0') AND pm.msgtoid='$uid' AND pm.folder='inbox' ORDER BY pm.dateline DESC LIMIT 1");
|
||
|
return array('newpm' => $newpm, 'newprivatepm' => $newprvpm, 'announcepm' => $annpm, 'systempm' => $syspm, 'lastdate' => $pm['dateline'], 'lastmsgfromid' => $pm['msgfromid'], 'lastmsgfrom' => $pm['msgfrom'], 'lastmsg' => $pm['message']);
|
||
|
}
|
||
|
}
|
||
|
}
|
||
|
|
||
|
function deletepm($uid, $pmids) {
|
||
|
$this->db->query("DELETE FROM ".UC_DBTABLEPRE."pms WHERE msgtoid='$uid' AND pmid IN (".$this->base->implode($pmids).")");
|
||
|
$delnum = $this->db->affected_rows();
|
||
|
return $delnum;
|
||
|
}
|
||
|
|
||
|
function get_blackls($uid, $uids = array()) {
|
||
|
if(!$uids) {
|
||
|
$blackls = $this->db->result_first("SELECT blacklist FROM ".UC_DBTABLEPRE."memberfields WHERE uid='$uid'");
|
||
|
} else {
|
||
|
$uids = $this->base->implode($uids);
|
||
|
$blackls = array();
|
||
|
$query = $this->db->query("SELECT uid, blacklist FROM ".UC_DBTABLEPRE."memberfields WHERE uid IN ($uids)");
|
||
|
while($data = $this->db->fetch_array($query)) {
|
||
|
$blackls[$data['uid']] = explode(',', $data['blacklist']);
|
||
|
}
|
||
|
}
|
||
|
return $blackls;
|
||
|
}
|
||
|
|
||
|
function set_blackls($uid, $blackls) {
|
||
|
$this->db->query("UPDATE ".UC_DBTABLEPRE."memberfields SET blacklist='$blackls' WHERE uid='$uid'");
|
||
|
return $this->db->affected_rows();
|
||
|
}
|
||
|
|
||
|
function update_blackls($uid, $username, $action = 1) {
|
||
|
$username = !is_array($username) ? array($username) : $username;
|
||
|
if($action == 1) {
|
||
|
if(!in_array('{ALL}', $username)) {
|
||
|
$usernames = $this->base->implode($username);
|
||
|
$query = $this->db->query("SELECT username FROM ".UC_DBTABLEPRE."members WHERE username IN ($usernames)");
|
||
|
$usernames = array();
|
||
|
while($data = $this->db->fetch_array($query)) {
|
||
|
$usernames[addslashes($data['username'])] = addslashes($data['username']);
|
||
|
}
|
||
|
if(!$usernames) {
|
||
|
return 0;
|
||
|
}
|
||
|
$blackls = addslashes($this->db->result_first("SELECT blacklist FROM ".UC_DBTABLEPRE."memberfields WHERE uid='$uid'"));
|
||
|
if($blackls) {
|
||
|
$list = explode(',', $blackls);
|
||
|
foreach($list as $k => $v) {
|
||
|
if(in_array($v, $usernames)) {
|
||
|
unset($usernames[$v]);
|
||
|
}
|
||
|
}
|
||
|
}
|
||
|
if(!$usernames) {
|
||
|
return 1;
|
||
|
}
|
||
|
$listnew = implode(',', $usernames);
|
||
|
$blackls .= $blackls !== '' ? ','.$listnew : $listnew;
|
||
|
} else {
|
||
|
$blackls = addslashes($this->db->result_first("SELECT blacklist FROM ".UC_DBTABLEPRE."memberfields WHERE uid='$uid'"));
|
||
|
$blackls .= ',{ALL}';
|
||
|
}
|
||
|
} else {
|
||
|
$blackls = addslashes($this->db->result_first("SELECT blacklist FROM ".UC_DBTABLEPRE."memberfields WHERE uid='$uid'"));
|
||
|
$list = $blackls = explode(',', $blackls);
|
||
|
foreach($list as $k => $v) {
|
||
|
if(in_array($v, $username)) {
|
||
|
unset($blackls[$k]);
|
||
|
}
|
||
|
}
|
||
|
$blackls = implode(',', $blackls);
|
||
|
}
|
||
|
$this->db->query("UPDATE ".UC_DBTABLEPRE."memberfields SET blacklist='$blackls' WHERE uid='$uid'");
|
||
|
return 1;
|
||
|
}
|
||
|
|
||
|
function removecode($str, $length) {
|
||
|
return trim($this->base->cutstr(preg_replace(array(
|
||
|
"/\[(email|code|quote|img)=?.*\].*?\[\/(email|code|quote|img)\]/siU",
|
||
|
"/\[\/?(b|i|url|u|color|size|font|align|list|indent|float)=?.*\]/siU",
|
||
|
"/\r\n/",
|
||
|
), '', $str), $length));
|
||
|
}
|
||
|
|
||
|
}
|
||
|
|
||
|
function pm_datelinesort($a, $b) {
|
||
|
if ($a['dateline'] == $b['dateline']) {
|
||
|
return 0;
|
||
|
}
|
||
|
return ($a['dateline'] < $b['dateline']) ? -1 : 1;
|
||
|
}
|
||
|
|
||
|
?>
|