'.$conf['guest_id']; } elseif ($_GET['users'] == 'guest') { $page['user_filter'] = ' AND r.user_id = '.$conf['guest_id']; } } if (isset($_GET['del']) and !is_adviser()) { $del_params = urldecode( $_GET['del'] ); parse_str($del_params, $vars); if ( !is_numeric($vars['e']) or !is_numeric($vars['u']) ) { die('Hacking attempt'); } $query = ' DELETE FROM '. RATE_TABLE .' WHERE element_id=' . $vars['e'] . ' AND user_id=' . $vars['u'] . ' AND anonymous_id=\'' . $vars['a'] . '\' ;'; pwg_query($query); update_average_rate( $vars['e'] ); } $users = array(); $query = ' SELECT '.$conf['user_fields']['username'].' as username, '.$conf['user_fields']['id'].' as id FROM '.USERS_TABLE.' ;'; $result = pwg_query($query); while ($row = pwg_db_fetch_assoc($result)) { $users[$row['id']]=stripslashes($row['username']); } $query = 'SELECT COUNT(DISTINCT(i.id)) FROM '.RATE_TABLE.' AS r, '.IMAGES_TABLE.' AS i WHERE r.element_id=i.id'. $page['user_filter'] . ';'; list($nb_images) = pwg_db_fetch_row(pwg_query($query)); // +-----------------------------------------------------------------------+ // | template init | // +-----------------------------------------------------------------------+ $template->set_filename('rating', 'rating.tpl'); $template->assign( array( 'navbar' => create_navigation_bar( PHPWG_ROOT_PATH.'admin.php'.get_query_string_diff(array('start','del')), $nb_images, $start, $elements_per_page ), 'F_ACTION' => PHPWG_ROOT_PATH.'admin.php', 'DISPLAY' => $elements_per_page, 'NB_ELEMENTS' => $nb_images, ) ); $available_order_by= array( array(l10n('Rate date'), 'recently_rated DESC'), array(l10n('Average rate'), 'average_rate DESC'), array(l10n('Number of rates'), 'nb_rates DESC'), array(l10n('Sum of rates'), 'sum_rates DESC'), array(l10n('File name'), 'file DESC'), array(l10n('Creation date'), 'date_creation DESC'), array(l10n('Post date'), 'date_available DESC'), ); for ($i=0; $iappend( 'order_by_options', $available_order_by[$i][0] ); } $template->assign('order_by_options_selected', array($order_by_index) ); $user_options = array( 'all' => l10n('all'), 'user' => l10n('Users'), 'guest' => l10n('Guests'), ); $template->assign('user_options', $user_options ); $template->assign('user_options_selected', array(@$_GET['users']) ); $query = ' SELECT i.id, i.path, i.file, i.tn_ext, i.average_rate, MAX(r.date) AS recently_rated, COUNT(r.rate) AS nb_rates, SUM(r.rate) AS sum_rates FROM '.RATE_TABLE.' AS r LEFT JOIN '.IMAGES_TABLE.' AS i ON r.element_id = i.id WHERE 1 = 1 ' . $page['user_filter'] . ' GROUP BY r.element_id ORDER BY ' . $available_order_by[$order_by_index][1] .' LIMIT '.$elements_per_page.' OFFSET '.$start.' ;'; $images = array(); $result = pwg_query($query); while ($row = pwg_db_fetch_assoc($result)) { array_push($images, $row); } $template->assign( 'images', array() ); foreach ($images as $image) { $thumbnail_src = get_thumbnail_url($image); $image_url = PHPWG_ROOT_PATH.'admin.php?page=picture_modify'. '&image_id='.$image['id']; $query = 'SELECT * FROM '.RATE_TABLE.' AS r WHERE r.element_id='.$image['id'] . ' ORDER BY date DESC;'; $result = pwg_query($query); $nb_rates = pwg_db_num_rows($result); $tpl_image = array( 'U_THUMB' => $thumbnail_src, 'U_URL' => $image_url, 'AVG_RATE' => $image['average_rate'], 'SUM_RATE' => $image['sum_rates'], 'NB_RATES' => (int)$image['nb_rates'], 'NB_RATES_TOTAL' => (int)$nb_rates, 'FILE' => $image['file'], 'rates' => array() ); while ($row = pwg_db_fetch_assoc($result)) { $url_del = PHPWG_ROOT_PATH.'admin.php'. get_query_string_diff(array('del')); $del_param = 'e='.$image['id']. '&u='.$row['user_id']. '&a='.$row['anonymous_id']; $url_del .= '&del='.urlencode(urlencode($del_param)); if ( isset($users[$row['user_id']]) ) { $user_rate = $users[$row['user_id']]; } else { $user_rate = '? '. $row['user_id']; } if ( strlen($row['anonymous_id'])>0 ) { $user_rate .= '('.$row['anonymous_id'].')'; } $tpl_image['rates'][] = array( 'DATE' => format_date($row['date']), 'RATE' => $row['rate'], 'USER' => $user_rate, 'U_DELETE' => $url_del ); } $template->append( 'images', $tpl_image ); } // +-----------------------------------------------------------------------+ // | sending html code | // +-----------------------------------------------------------------------+ $template->assign_var_from_handle('ADMIN_CONTENT', 'rating'); ?>