Context Navigation

source: trunk/include/ws_functions.inc.php @ 2126

Last change on this file since 2126 was 2126, checked in by rvelices, 17 years ago
some code refactoring before upgrade to utf (only cosmetic at this point...)
Property svn:eol-style set to `LF` Property svn:keywords set to `Author Date Id Revision`
File size: 30.4 KB

Line
1	<?php
2	// +-----------------------------------------------------------------------+
3	// \| PhpWebGallery - a PHP based picture gallery \|
4	// \| Copyright (C) 2003-2007 PhpWebGallery Team - http://phpwebgallery.net \|
5	// +-----------------------------------------------------------------------+
6	// \| file : $Id: ws_functions.inc.php 2126 2007-10-08 23:46:09Z rvelices $
7	// \| last update : $Date: 2007-10-08 23:46:09 +0000 (Mon, 08 Oct 2007) $
8	// \| last modifier : $Author: rvelices $
9	// \| revision : $Revision: 2126 $
10	// +-----------------------------------------------------------------------+
11	// \| This program is free software; you can redistribute it and/or modify \|
12	// \| it under the terms of the GNU General Public License as published by \|
13	// \| the Free Software Foundation \|
14	// \| \|
15	// \| This program is distributed in the hope that it will be useful, but \|
16	// \| WITHOUT ANY WARRANTY; without even the implied warranty of \|
17	// \| MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU \|
18	// \| General Public License for more details. \|
19	// \| \|
20	// \| You should have received a copy of the GNU General Public License \|
21	// \| along with this program; if not, write to the Free Software \|
22	// \| Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, \|
23	// \| USA. \|
24	// +-----------------------------------------------------------------------+
25
26	/** IMPLEMENTATION OF WEB SERVICE METHODS *********************************/
27
28	/**
29	* Event handler for method invocation security check. Should return a PwgError
30	* if the preconditions are not satifsied for method invocation.
31	*/
32	function ws_isInvokeAllowed($res, $methodName, $params)
33	{
34	global $conf, $calling_partner_id;
35
36	if ( strpos($methodName,'reflection.')===0 )
37	{ // OK for reflection
38	return $res;
39	}
40
41	if ( !is_autorize_status(ACCESS_GUEST) and
42	strpos($methodName,'pwg.session.')!==0 )
43	{
44	return new PwgError(401, 'Access denied');
45	}
46
47	if ( !$conf['ws_access_control'] )
48	{
49	return $res; // No controls are requested
50	}
51	$query = '
52	SELECT * FROM '.WEB_SERVICES_ACCESS_TABLE."
53	WHERE `name` = '$calling_partner_id'
54	AND NOW() <= end; ";
55	$result = pwg_query($query);
56	$row = mysql_fetch_assoc($result);
57	if ( empty($row) )
58	{
59	return new PwgError(403, 'Partner id does not exist or is expired');
60	}
61	if ( !empty($row['request'])
62	and strpos($methodName, $row['request'])==false
63	and strpos($methodName, 'session')==false
64	and strpos($methodName, 'getVersion')==false )
65	{ // session and getVersion are allowed to diagnose any failure reason
66	return new PwgError(403, 'Method not allowed');
67	}
68
69	return $res;
70	}
71
72	/**
73	* ws_addControls
74	* returns additionnal controls if requested
75	* usable for 99% of Web Service methods
76	*
77	* - Args
78	* $methodName: is the requested method
79	* $partner: is the key
80	* $tbl_name: is the alias_name in the query (sometimes called correlation name)
81	* null if !getting picture informations
82	* - Logic
83	* Access_control is not active: Return
84	* Key is incorrect: Return 0 = 1 (False condition for MySQL)
85	* One of Params doesn't match with type of request: return 0 = 1 again
86	* Access list(id/cat/tag) is converted in expended image-id list
87	* image-id list: converted to an in-where-clause
88	*
89	* The additionnal in-where-clause is return
90	*/
91	function ws_addControls( $methodName, &$params, $tbl_name )
92	{
93	global $conf, $calling_partner_id;
94	if ( !$conf['ws_access_control'] or !isset($calling_partner_id) )
95	{
96	return '1=1'; // No controls are requested
97	}
98
99	// Is it an active Partner?
100	$query = '
101	SELECT * FROM '.WEB_SERVICES_ACCESS_TABLE."
102	WHERE `name` = '$calling_partner_id'
103	AND NOW() <= end; ";
104	$result = pwg_query($query);
105	if ( mysql_num_rows( $result ) == 0 )
106	{
107	return '0=1'; // Unknown partner or Obsolate agreement
108	}
109
110	$row = mysql_fetch_array($result);
111
112	// Overide general object limit
113	$params['per_page'] = $row['limit'];
114
115	// Target restrict
116	// 3 cases: list, cat or tag
117	// Behind / we could found img-ids, cat-ids or tag-ids
118	$target = $row['access'];
119	if ( $target == '')
120	{
121	return '1=1'; // No controls are requested
122	}
123	list($type, $str_ids) = explode('/',$target); // Find type list
124
125	// (array) 1,2,21,3,22,4,5,9-12,6,11,12,13,2,4,6,
126	$arr_ids = expand_id_list( explode( ',',$str_ids ) );
127	$addings = implode(',', $arr_ids);
128	// (string) 1,2,3,4,5,6,9,10,11,12,13,21,22,
129	if ( $type == 'list')
130	{
131	return $tbl_name . 'id IN ( ' . $addings . ' ) ';
132	}
133
134	if ( $type == 'cat' )
135	{
136	$addings = implode(',', get_image_ids_for_cats($arr_ids));
137	return $tbl_name . 'id IN ( ' . $addings . ' ) ';
138	}
139
140	if ( $type == 'tag' )
141	{
142	$addings = implode(',', get_image_ids_for_tags($arr_ids, 'OR'));
143	return $tbl_name . 'id IN ( ' . $addings . ' ) ';
144	}
145	// Unmanaged new type?
146	return ' 0 = 1 '; // ???
147	}
148
149	/**
150	* returns a "standard" (for our web service) array of sql where clauses that
151	* filters the images (images table only)
152	*/
153	function ws_std_image_sql_filter( $params, $tbl_name='' )
154	{
155	$clauses = array();
156	if ( is_numeric($params['f_min_rate']) )
157	{
158	$clauses[] = $tbl_name.'average_rate>'.$params['f_min_rate'];
159	}
160	if ( is_numeric($params['f_max_rate']) )
161	{
162	$clauses[] = $tbl_name.'average_rate<='.$params['f_max_rate'];
163	}
164	if ( is_numeric($params['f_min_hit']) )
165	{
166	$clauses[] = $tbl_name.'hit>'.$params['f_min_hit'];
167	}
168	if ( is_numeric($params['f_max_hit']) )
169	{
170	$clauses[] = $tbl_name.'hit<='.$params['f_max_hit'];
171	}
172	if ( isset($params['f_min_date_posted']) )
173	{
174	$clauses[] = $tbl_name."date_available>='".$params['f_min_date_posted']."'";
175	}
176	if ( isset($params['f_max_date_posted']) )
177	{
178	$clauses[] = $tbl_name."date_available<'".$params['f_max_date_posted']."'";
179	}
180	if ( isset($params['f_min_date_created']) )
181	{
182	$clauses[] = $tbl_name."date_creation>='".$params['f_min_date_created']."'";
183	}
184	if ( isset($params['f_max_date_created']) )
185	{
186	$clauses[] = $tbl_name."date_creation<'".$params['f_max_date_created']."'";
187	}
188	if ( is_numeric($params['f_min_ratio']) )
189	{
190	$clauses[] = $tbl_name.'width/'.$tbl_name.'height>'.$params['f_min_ratio'];
191	}
192	if ( is_numeric($params['f_max_ratio']) )
193	{
194	$clauses[] = $tbl_name.'width/'.$tbl_name.'height<='.$params['f_max_ratio'];
195	}
196	if ( $params['f_with_thumbnail'] )
197	{
198	$clauses[] = $tbl_name.'tn_ext IS NOT NULL';
199	}
200	return $clauses;
201	}
202
203	/**
204	* returns a "standard" (for our web service) ORDER BY sql clause for images
205	*/
206	function ws_std_image_sql_order( $params, $tbl_name='' )
207	{
208	$ret = '';
209	if ( empty($params['order']) )
210	{
211	return $ret;
212	}
213	$matches = array();
214	preg_match_all('/([a-z_]+) (?:(asc\|desc)(?:ending)?)? (?:, *\|$)/i',
215	$params['order'], $matches);
216	for ($i=0; $i<count($matches[1]); $i++)
217	{
218	switch ($matches[1][$i])
219	{
220	case 'date_created':
221	$matches[1][$i] = 'date_creation'; break;
222	case 'date_posted':
223	$matches[1][$i] = 'date_available'; break;
224	case 'rand': case 'random':
225	$matches[1][$i] = 'RAND()'; break;
226	}
227	$sortable_fields = array('id', 'file', 'name', 'hit', 'average_rate',
228	'date_creation', 'date_available', 'RAND()' );
229	if ( in_array($matches[1][$i], $sortable_fields) )
230	{
231	if (!empty($ret))
232	$ret .= ', ';
233	if ($matches[1][$i] != 'RAND()' )
234	{
235	$ret .= $tbl_name;
236	}
237	$ret .= $matches[1][$i];
238	$ret .= ' '.$matches[2][$i];
239	}
240	}
241	return $ret;
242	}
243
244	/**
245	* returns an array map of urls (thumb/element) for image_row - to be returned
246	* in a standard way by different web service methods
247	*/
248	function ws_std_get_urls($image_row)
249	{
250	$ret = array(
251	'tn_url' => get_thumbnail_url($image_row),
252	'element_url' => get_element_url($image_row)
253	);
254	global $user;
255	if ($user['enabled_high'] and $image_row['has_high'] )
256	{
257	$ret['high_url'] = get_high_url($image_row);
258	}
259	return $ret;
260	}
261
262	/**
263	* returns an array of image attributes that are to be encoded as xml attributes
264	* instead of xml elements
265	*/
266	function ws_std_get_image_xml_attributes()
267	{
268	return array(
269	'id','tn_url','element_url','high_url', 'file','width','height','hit'
270	);
271	}
272
273	/**
274	* returns PWG version (web service method)
275	*/
276	function ws_getVersion($params, &$service)
277	{
278	global $conf;
279	if ($conf['show_version'])
280	return PHPWG_VERSION;
281	else
282	return new PwgError(403, 'Forbidden');
283	}
284
285
286	/**
287	* returns images per category (web service method)
288	*/
289	function ws_categories_getImages($params, &$service)
290	{
291	@include_once(PHPWG_ROOT_PATH.'include/functions_picture.inc.php');
292	global $user, $conf;
293
294	$images = array();
295
296	//------------------------------------------------- get the related categories
297	$where_clauses = array();
298	foreach($params['cat_id'] as $cat_id)
299	{
300	$cat_id = (int)$cat_id;
301	if ($cat_id<=0)
302	continue;
303	if ($params['recursive'])
304	{
305	$where_clauses[] = 'uppercats REGEXP \'(^\|,)'.$cat_id.'(,\|$)\'';
306	}
307	else
308	{
309	$where_clauses[] = 'id='.$cat_id;
310	}
311	}
312	if (!empty($where_clauses))
313	{
314	$where_clauses = array( '('.
315	implode('
316	OR ', $where_clauses) . ')'
317	);
318	}
319	$where_clauses[] = get_sql_condition_FandF(
320	array('forbidden_categories' => 'id'),
321	NULL, true
322	);
323
324	$query = '
325	SELECT id, name, permalink, image_order
326	FROM '.CATEGORIES_TABLE.'
327	WHERE '. implode('
328	AND ', $where_clauses);
329	$result = pwg_query($query);
330	$cats = array();
331	while ($row = mysql_fetch_assoc($result))
332	{
333	$row['id'] = (int)$row['id'];
334	$cats[ $row['id'] ] = $row;
335	}
336
337	//-------------------------------------------------------- get the images
338	if ( !empty($cats) )
339	{
340	$where_clauses = ws_std_image_sql_filter( $params, 'i.' );
341	$where_clauses[] = 'category_id IN ('
342	.implode(',', array_keys($cats) )
343	.')';
344	$where_clauses[] = get_sql_condition_FandF( array(
345	'visible_images' => 'i.id'
346	), null, true
347	);
348	$where_clauses[] = ws_addControls( 'categories.getImages', $params, 'i.' );
349
350	$order_by = ws_std_image_sql_order($params, 'i.');
351	if ( empty($order_by)
352	and count($params['cat_id'])==1
353	and isset($cats[ $params['cat_id'][0] ]['image_order'])
354	)
355	{
356	$order_by = $cats[ $params['cat_id'][0] ]['image_order'];
357	}
358	$order_by = empty($order_by) ? $conf['order_by'] : 'ORDER BY '.$order_by;
359
360	$query = '
361	SELECT i.*, GROUP_CONCAT(category_id) cat_ids
362	FROM '.IMAGES_TABLE.' i
363	INNER JOIN '.IMAGE_CATEGORY_TABLE.' ON i.id=image_id
364	WHERE '. implode('
365	AND ', $where_clauses).'
366	GROUP BY i.id
367	'.$order_by.'
368	LIMIT '.$params['per_page']*$params['page'].','.$params['per_page'];
369
370	$result = pwg_query($query);
371	while ($row = mysql_fetch_assoc($result))
372	{
373	$image = array();
374	foreach ( array('id', 'width', 'height', 'hit') as $k )
375	{
376	if (isset($row[$k]))
377	{
378	$image[$k] = (int)$row[$k];
379	}
380	}
381	foreach ( array('file', 'name', 'comment') as $k )
382	{
383	$image[$k] = $row[$k];
384	}
385	$image = array_merge( $image, ws_std_get_urls($row) );
386
387	$image_cats = array();
388	foreach ( explode(',', $row['cat_ids']) as $cat_id )
389	{
390	$url = make_index_url(
391	array(
392	'category' => $cats[$cat_id],
393	)
394	);
395	$page_url = make_picture_url(
396	array(
397	'category' => $cats[$cat_id],
398	'image_id' => $row['id'],
399	'image_file' => $row['file'],
400	)
401	);
402	array_push( $image_cats, array(
403	WS_XML_ATTRIBUTES => array (
404	'id' => (int)$cat_id,
405	'url' => $url,
406	'page_url' => $page_url,
407	)
408	)
409	);
410	}
411
412	$image['categories'] = new PwgNamedArray(
413	$image_cats,'category', array('id','url','page_url')
414	);
415	array_push($images, $image);
416	}
417	}
418
419	return array( 'images' =>
420	array (
421	WS_XML_ATTRIBUTES =>
422	array(
423	'page' => $params['page'],
424	'per_page' => $params['per_page'],
425	'count' => count($images)
426	),
427	WS_XML_CONTENT => new PwgNamedArray($images, 'image',
428	ws_std_get_image_xml_attributes() )
429	)
430	);
431	}
432
433
434	/**
435	* returns a list of categories (web service method)
436	*/
437	function ws_categories_getList($params, &$service)
438	{
439	global $user,$conf;
440
441	$where = array();
442
443	if (!$params['recursive'])
444	{
445	if ($params['cat_id']>0)
446	$where[] = '(id_uppercat='.(int)($params['cat_id']).'
447	OR id='.(int)($params['cat_id']).')';
448	else
449	$where[] = 'id_uppercat IS NULL';
450	}
451	else if ($params['cat_id']>0)
452	{
453	$where[] = 'uppercats REGEXP \'(^\|,)'.
454	(int)($params['cat_id'])
455	.'(,\|$)\'';
456	}
457
458	if ($params['public'])
459	{
460	$where[] = 'status = "public"';
461	$where[] = 'visible = "true"';
462	$where[]= 'user_id='.$conf['guest_id'];
463	}
464	else
465	{
466	$where[]= 'user_id='.$user['id'];
467	}
468
469	$query = '
470	SELECT id, name, permalink, uppercats, global_rank,
471	nb_images, count_images AS total_nb_images,
472	date_last, max_date_last, count_categories AS nb_categories
473	FROM '.CATEGORIES_TABLE.'
474	INNER JOIN '.USER_CACHE_CATEGORIES_TABLE.' ON id=cat_id
475	WHERE '. implode('
476	AND ', $where);
477
478	$result = pwg_query($query);
479
480	$cats = array();
481	while ($row = mysql_fetch_assoc($result))
482	{
483	$row['url'] = make_index_url(
484	array(
485	'category' => $row
486	)
487	);
488	foreach( array('id','nb_images','total_nb_images','nb_categories') as $key)
489	{
490	$row[$key] = (int)$row[$key];
491	}
492	array_push($cats, $row);
493	}
494	usort($cats, 'global_rank_compare');
495	return array(
496	'categories' =>
497	new PwgNamedArray($cats,'category',
498	array('id','url','nb_images','total_nb_images','nb_categories','date_last','max_date_last')
499	)
500	);
501	}
502
503
504	/**
505	* returns detailed information for an element (web service method)
506	*/
507	function ws_images_addComment($params, &$service)
508	{
509	if (!$service->isPost())
510	{
511	return new PwgError(405, "This method requires HTTP POST");
512	}
513	$params['image_id'] = (int)$params['image_id'];
514	$query = '
515	SELECT DISTINCT image_id
516	FROM '.IMAGE_CATEGORY_TABLE.' INNER JOIN '.CATEGORIES_TABLE.' ON category_id=id
517	WHERE commentable="true"
518	AND image_id='.$params['image_id'].
519	get_sql_condition_FandF(
520	array(
521	'forbidden_categories' => 'id',
522	'visible_categories' => 'id',
523	'visible_images' => 'image_id'
524	),
525	' AND'
526	);
527	if ( !mysql_num_rows( pwg_query( $query ) ) )
528	{
529	return new PwgError(WS_ERR_INVALID_PARAM, "Invalid image_id");
530	}
531
532	include_once(PHPWG_ROOT_PATH.'include/functions_comment.inc.php');
533
534	$comm = array(
535	'author' => trim( stripslashes($params['author']) ),
536	'content' => trim( stripslashes($params['content']) ),
537	'image_id' => $params['image_id'],
538	);
539
540	include_once(PHPWG_ROOT_PATH.'include/functions_comment.inc.php');
541
542	$comment_action = insert_user_comment(
543	$comm, $params['key'], $infos
544	);
545
546	switch ($comment_action)
547	{
548	case 'reject':
549	array_push($infos, l10n('comment_not_added') );
550	return new PwgError(403, implode("\n", $infos) );
551	case 'validate':
552	case 'moderate':
553	$ret = array(
554	'id' => $comm['id'],
555	'validation' => $comment_action=='validate',
556	);
557	return new PwgNamedStruct(
558	'comment',
559	$ret,
560	null, array()
561	);
562	default:
563	return new PwgError(500, "Unknown comment action ".$comment_action );
564	}
565	}
566
567	/**
568	* returns detailed information for an element (web service method)
569	*/
570	function ws_images_getInfo($params, &$service)
571	{
572	@include_once(PHPWG_ROOT_PATH.'include/functions_picture.inc.php');
573	global $user, $conf;
574	$params['image_id'] = (int)$params['image_id'];
575	if ( $params['image_id']<=0 )
576	{
577	return new PwgError(WS_ERR_INVALID_PARAM, "Invalid image_id");
578	}
579
580	$query='
581	SELECT * FROM '.IMAGES_TABLE.'
582	WHERE id='.$params['image_id'].
583	get_sql_condition_FandF(
584	array('visible_images' => 'id'),
585	' AND'
586	).' AND '.
587	ws_addControls( 'images.getInfo', $params, '' ).'
588	LIMIT 1;';
589
590	$image_row = mysql_fetch_assoc(pwg_query($query));
591	if ($image_row==null)
592	{
593	return new PwgError(404, "image_id not found");
594	}
595	$image_row = array_merge( $image_row, ws_std_get_urls($image_row) );
596
597	//-------------------------------------------------------- related categories
598	$query = '
599	SELECT id, name, permalink, uppercats, global_rank, commentable
600	FROM '.IMAGE_CATEGORY_TABLE.'
601	INNER JOIN '.CATEGORIES_TABLE.' ON category_id = id
602	WHERE image_id = '.$image_row['id'].
603	get_sql_condition_FandF(
604	array( 'forbidden_categories' => 'category_id' ),
605	' AND'
606	).'
607	;';
608	$result = pwg_query($query);
609	$is_commentable = false;
610	$related_categories = array();
611	while ($row = mysql_fetch_assoc($result))
612	{
613	if ($row['commentable']=='true')
614	{
615	$is_commentable = true;
616	}
617	unset($row['commentable']);
618	$row['url'] = make_index_url(
619	array(
620	'category' => $row
621	)
622	);
623
624	$row['page_url'] = make_picture_url(
625	array(
626	'image_id' => $image_row['id'],
627	'image_file' => $image_row['file'],
628	'category' => $row
629	)
630	);
631	$row['id']=(int)$row['id'];
632	array_push($related_categories, $row);
633	}
634	usort($related_categories, 'global_rank_compare');
635	if ( empty($related_categories) )
636	{
637	return new PwgError(401, 'Access denied');
638	}
639
640	//-------------------------------------------------------------- related tags
641	$related_tags = get_common_tags( array($image_row['id']), -1 );
642	foreach( $related_tags as $i=>$tag)
643	{
644	$tag['url'] = make_index_url(
645	array(
646	'tags' => array($tag)
647	)
648	);
649	$tag['page_url'] = make_picture_url(
650	array(
651	'image_id' => $image_row['id'],
652	'image_file' => $image_row['file'],
653	'tags' => array($tag),
654	)
655	);
656	unset($tag['counter']);
657	$tag['id']=(int)$tag['id'];
658	$related_tags[$i]=$tag;
659	}
660	//------------------------------------------------------------- related rates
661	$query = '
662	SELECT COUNT(rate) AS count
663	, ROUND(AVG(rate),2) AS average
664	, ROUND(STD(rate),2) AS stdev
665	FROM '.RATE_TABLE.'
666	WHERE element_id = '.$image_row['id'].'
667	;';
668	$rating = mysql_fetch_assoc(pwg_query($query));
669	$rating['count'] = (int)$rating['count'];
670
671	//---------------------------------------------------------- related comments
672	$related_comments = array();
673
674	$where_comments = 'image_id = '.$image_row['id'];
675	if ( !is_admin() )
676	{
677	$where_comments .= '
678	AND validated="true"';
679	}
680
681	$query = '
682	SELECT COUNT(id) nb_comments
683	FROM '.COMMENTS_TABLE.'
684	WHERE '.$where_comments;
685	list($nb_comments) = array_from_query($query, 'nb_comments');
686	$nb_comments = (int)$nb_comments;
687
688	if ( $nb_comments>0 and $params['comments_per_page']>0 )
689	{
690	$query = '
691	SELECT id, date, author, content
692	FROM '.COMMENTS_TABLE.'
693	WHERE '.$where_comments.'
694	ORDER BY date
695	LIMIT '.$params['comments_per_page']*(int)$params['comments_page'].
696	','.$params['comments_per_page'];
697
698	$result = pwg_query($query);
699	while ($row = mysql_fetch_assoc($result))
700	{
701	$row['id']=(int)$row['id'];
702	array_push($related_comments, $row);
703	}
704	}
705
706	$comment_post_data = null;
707	if ($is_commentable and
708	(!is_a_guest()
709	or (is_a_guest() and $conf['comments_forall'] )
710	)
711	)
712	{
713	include_once(PHPWG_ROOT_PATH.'include/functions_comment.inc.php');
714	$comment_post_data['author'] = $user['username'];
715	$comment_post_data['key'] = get_comment_post_key($params['image_id']);
716	}
717
718	$ret = $image_row;
719	foreach ( array('id','width','height','hit','filesize') as $k )
720	{
721	if (isset($ret[$k]))
722	{
723	$ret[$k] = (int)$ret[$k];
724	}
725	}
726	foreach ( array('path', 'storage_category_id') as $k )
727	{
728	unset($ret[$k]);
729	}
730
731	$ret['rates'] = array( WS_XML_ATTRIBUTES => $rating );
732	$ret['categories'] = new PwgNamedArray($related_categories, 'category', array('id','url', 'page_url') );
733	$ret['tags'] = new PwgNamedArray($related_tags, 'tag', array('id','url_name','url','page_url') );
734	if ( isset($comment_post_data) )
735	{
736	$ret['comment_post'] = array( WS_XML_ATTRIBUTES => $comment_post_data );
737	}
738	$ret['comments'] = array(
739	WS_XML_ATTRIBUTES =>
740	array(
741	'page' => $params['comments_page'],
742	'per_page' => $params['comments_per_page'],
743	'count' => count($related_comments),
744	'nb_comments' => $nb_comments,
745	),
746	WS_XML_CONTENT => new PwgNamedArray($related_comments, 'comment', array('id','date') )
747	);
748
749	return new PwgNamedStruct('image',$ret, null, array('name','comment') );
750	}
751
752	/**
753	* returns a list of elements corresponding to a query search
754	*/
755	function ws_images_search($params, &$service)
756	{
757	global $page;
758	$images = array();
759	include_once( PHPWG_ROOT_PATH .'include/functions_search.inc.php' );
760	include_once(PHPWG_ROOT_PATH.'include/functions_picture.inc.php');
761
762	$where_clauses = ws_std_image_sql_filter( $params );
763	$order_by = ws_std_image_sql_order($params);
764
765	if ( !empty($where_clauses) and !empty($order_by) )
766	{
767	$page['super_order_by']=1; // quick_search_result might be faster
768	}
769	$search_result = get_quick_search_results($params['query']);
770
771	global $image_ids; //needed for sorting by rank (usort)
772	if ( ( !isset($search_result['as_is'])
773	or !empty($where_clauses)
774	or !empty($order_by) )
775	and !empty($search_result['items']) )
776	{
777	$where_clauses[] = 'id IN ('
778	.wordwrap(implode(', ', $search_result['items']), 80, "\n")
779	.')';
780	$where_clauses[] = get_sql_condition_FandF(
781	array
782	(
783	'forbidden_categories' => 'category_id',
784	'visible_categories' => 'category_id',
785	'visible_images' => 'id'
786	),
787	'', true
788	);
789	$query = '
790	SELECT DISTINCT id FROM '.IMAGES_TABLE.' INNER JOIN '.IMAGE_CATEGORY_TABLE.' ON id=image_id
791	WHERE '.implode('
792	AND ', $where_clauses);
793	if (!empty($order_by))
794	{
795	$query .= '
796	ORDER BY '.$order_by;
797	}
798	$image_ids = array_from_query($query, 'id');
799	global $ranks;
800	$ranks = array_flip( $search_result['items'] );
801	usort(
802	$image_ids,
803	create_function('$i1,$i2', 'global $ranks; return $ranks[$i1]-$ranks[$i2];')
804	);
805	unset ($ranks);
806	}
807	else
808	{
809	$image_ids = $search_result['items'];
810	}
811
812	$image_ids = array_slice($image_ids,
813	$params['page']*$params['per_page'],
814	$params['per_page'] );
815
816	if ( count($image_ids) )
817	{
818	$query = '
819	SELECT * FROM '.IMAGES_TABLE.'
820	WHERE id IN ('
821	.wordwrap(implode(', ', $image_ids), 80, "\n")
822	.')';
823
824	$result = pwg_query($query);
825	while ($row = mysql_fetch_assoc($result))
826	{
827	$image = array();
828	foreach ( array('id', 'width', 'height', 'hit') as $k )
829	{
830	if (isset($row[$k]))
831	{
832	$image[$k] = (int)$row[$k];
833	}
834	}
835	foreach ( array('file', 'name', 'comment') as $k )
836	{
837	$image[$k] = $row[$k];
838	}
839	$image = array_merge( $image, ws_std_get_urls($row) );
840	array_push($images, $image);
841	}
842
843	$image_ids = array_flip($image_ids);
844	usort(
845	$images,
846	create_function('$i1,$i2', 'global $image_ids; return $image_ids[$i1["id"]]-$image_ids[$i2["id"]];')
847	);
848	}
849
850
851	return array( 'images' =>
852	array (
853	WS_XML_ATTRIBUTES =>
854	array(
855	'page' => $params['page'],
856	'per_page' => $params['per_page'],
857	'count' => count($images)
858	),
859	WS_XML_CONTENT => new PwgNamedArray($images, 'image',
860	ws_std_get_image_xml_attributes() )
861	)
862	);
863	}
864
865	/**
866	* perform a login (web service method)
867	*/
868	function ws_session_login($params, &$service)
869	{
870	global $conf;
871
872	if (!$service->isPost())
873	{
874	return new PwgError(405, "This method requires HTTP POST");
875	}
876	if (try_log_user($params['username'], $params['password'],false))
877	{
878	return true;
879	}
880	return new PwgError(999, 'Invalid username/password');
881	}
882
883
884	/**
885	* performs a logout (web service method)
886	*/
887	function ws_session_logout($params, &$service)
888	{
889	global $user, $conf;
890	if (!is_a_guest())
891	{
892	$_SESSION = array();
893	session_unset();
894	session_destroy();
895	setcookie(session_name(),'',0,
896	ini_get('session.cookie_path'),
897	ini_get('session.cookie_domain')
898	);
899	setcookie($conf['remember_me_name'], '', 0, cookie_path());
900	}
901	return true;
902	}
903
904	function ws_session_getStatus($params, &$service)
905	{
906	global $user, $lang_info;
907	$res = array();
908	$res['username'] = is_a_guest() ? 'guest' : $user['username'];
909	foreach ( array('status', 'template', 'theme', 'language') as $k )
910	{
911	$res[$k] = $user[$k];
912	}
913	$res['charset'] = get_pwg_charset();
914	return $res;
915	}
916
917
918	/**
919	* returns a list of tags (web service method)
920	*/
921	function ws_tags_getList($params, &$service)
922	{
923	$tags = get_available_tags();
924	if ($params['sort_by_counter'])
925	{
926	usort($tags, create_function('$a,$b', 'return -$a["counter"]+$b["counter"];') );
927	}
928	else
929	{
930	usort($tags, 'name_compare');
931	}
932	for ($i=0; $i<count($tags); $i++)
933	{
934	$tags[$i]['id'] = (int)$tags[$i]['id'];
935	$tags[$i]['counter'] = (int)$tags[$i]['counter'];
936	$tags[$i]['url'] = make_index_url(
937	array(
938	'section'=>'tags',
939	'tags'=>array($tags[$i])
940	)
941	);
942	}
943	return array('tags' => new PwgNamedArray($tags, 'tag', array('id','url_name','url', 'counter' )) );
944	}
945
946
947	/**
948	* returns a list of images for tags (web service method)
949	*/
950	function ws_tags_getImages($params, &$service)
951	{
952	@include_once(PHPWG_ROOT_PATH.'include/functions_picture.inc.php');
953	global $conf;
954
955	// first build all the tag_ids we are interested in
956	$params['tag_id'] = array_map( 'intval',$params['tag_id'] );
957	$tags = find_tags($params['tag_id'], $params['tag_url_name'], $params['tag_name']);
958	$tags_by_id = array();
959	foreach( $tags as $tag )
960	{
961	$tags['id'] = (int)$tag['id'];
962	$tags_by_id[ $tag['id'] ] = $tag;
963	}
964	unset($tags);
965	$tag_ids = array_keys($tags_by_id);
966
967
968	$image_ids = array();
969	$image_tag_map = array();
970
971	if ( !empty($tag_ids) )
972	{ // build list of image ids with associated tags per image
973	if ($params['tag_mode_and'])
974	{
975	$image_ids = get_image_ids_for_tags( $tag_ids );
976	}
977	else
978	{
979	$query = '
980	SELECT image_id, GROUP_CONCAT(tag_id) tag_ids
981	FROM '.IMAGE_TAG_TABLE.'
982	WHERE tag_id IN ('.implode(',',$tag_ids).')
983	GROUP BY image_id';
984	$result = pwg_query($query);
985	while ( $row=mysql_fetch_assoc($result) )
986	{
987	$row['image_id'] = (int)$row['image_id'];
988	array_push( $image_ids, $row['image_id'] );
989	$image_tag_map[ $row['image_id'] ] = explode(',', $row['tag_ids']);
990	}
991	}
992	}
993
994	$images = array();
995	if ( !empty($image_ids))
996	{
997	$where_clauses = ws_std_image_sql_filter($params);
998	$where_clauses[] = get_sql_condition_FandF(
999	array
1000	(
1001	'forbidden_categories' => 'category_id',
1002	'visible_categories' => 'category_id',
1003	'visible_images' => 'i.id'
1004	),
1005	'', true
1006	);
1007	$where_clauses[] = 'id IN ('.implode(',',$image_ids).')';
1008	$where_clauses[] = ws_addControls( 'tags.getImages', $params, 'i.' );
1009
1010	$order_by = ws_std_image_sql_order($params);
1011	if (empty($order_by))
1012	{
1013	$order_by = $conf['order_by'];
1014	}
1015	else
1016	{
1017	$order_by = 'ORDER BY '.$order_by;
1018	}
1019
1020	$query = '
1021	SELECT DISTINCT i.* FROM '.IMAGES_TABLE.' i
1022	INNER JOIN '.IMAGE_CATEGORY_TABLE.' ON i.id=image_id
1023	WHERE '. implode('
1024	AND ', $where_clauses).'
1025	'.$order_by.'
1026	LIMIT '.$params['per_page']*$params['page'].','.$params['per_page'];
1027
1028	$result = pwg_query($query);
1029	while ($row = mysql_fetch_assoc($result))
1030	{
1031	$image = array();
1032	foreach ( array('id', 'width', 'height', 'hit') as $k )
1033	{
1034	if (isset($row[$k]))
1035	{
1036	$image[$k] = (int)$row[$k];
1037	}
1038	}
1039	foreach ( array('file', 'name', 'comment') as $k )
1040	{
1041	$image[$k] = $row[$k];
1042	}
1043	$image = array_merge( $image, ws_std_get_urls($row) );
1044
1045	$image_tag_ids = ($params['tag_mode_and']) ? $tag_ids : $image_tag_map[$image['id']];
1046	$image_tags = array();
1047	foreach ($image_tag_ids as $tag_id)
1048	{
1049	$url = make_index_url(
1050	array(
1051	'section'=>'tags',
1052	'tags'=> array($tags_by_id[$tag_id])
1053	)
1054	);
1055	$page_url = make_picture_url(
1056	array(
1057	'section'=>'tags',
1058	'tags'=> array($tags_by_id[$tag_id]),
1059	'image_id' => $row['id'],
1060	'image_file' => $row['file'],
1061	)
1062	);
1063	array_push($image_tags, array(
1064	'id' => (int)$tag_id,
1065	'url' => $url,
1066	'page_url' => $page_url,
1067	)
1068	);
1069	}
1070	$image['tags'] = new PwgNamedArray($image_tags, 'tag',
1071	array('id','url_name','url','page_url')
1072	);
1073	array_push($images, $image);
1074	}
1075	}
1076
1077	return array( 'images' =>
1078	array (
1079	WS_XML_ATTRIBUTES =>
1080	array(
1081	'page' => $params['page'],
1082	'per_page' => $params['per_page'],
1083	'count' => count($images)
1084	),
1085	WS_XML_CONTENT => new PwgNamedArray($images, 'image',
1086	ws_std_get_image_xml_attributes() )
1087	)
1088	);
1089	}
1090
1091
1092	/**
1093	* expand_id_list($ids) convert a human list expression to a full ordered list
1094	* example : expand_id_list( array(5,2-3,2) ) returns array( 2, 3, 5)
1095	* */
1096	function expand_id_list($ids)
1097	{
1098	$tid = array();
1099	foreach ( $ids as $id )
1100	{
1101	if ( is_numeric($id) )
1102	{
1103	$tid[] = (int) $id;
1104	}
1105	else
1106	{
1107	$range = explode( '-', $id );
1108	if ( is_numeric($range[0]) and is_numeric($range[1]) )
1109	{
1110	$from = min($range[0],$range[1]);
1111	$to = max($range[0],$range[1]);
1112	for ($i = $from; $i <= $to; $i++)
1113	{
1114	$tid[] = (int) $i;
1115	}
1116	}
1117	}
1118	}
1119	$result = array_unique ($tid); // remove duplicates...
1120	sort ($result);
1121	return $result;
1122	}
1123
1124
1125	/**
1126	* converts a cat-ids array in image-ids array
1127	* FIXME Function which should already exist somewhere else
1128	* */
1129	function get_image_ids_for_cats($cat_ids)
1130	{
1131	$cat_list = implode(',', $cat_ids);
1132	$ret_ids = array();
1133	$query = '
1134	SELECT DISTINCT image_id
1135	FROM '.IMAGE_CATEGORY_TABLE.'
1136	WHERE category_id in ('.$cat_list.')
1137	;';
1138	return array_from_query($query, 'image_id');
1139	}
1140
1141	?>

Note: See TracBrowser for help on using the repository browser.

Download in other formats: