source: trunk/random.php @ 1004

Last change on this file since 1004 was 1004, checked in by nikrou, 18 years ago

Improve security of sessions:

  • use only cookies to store session id on client side
  • use default php session system with database handler to store sessions on server side
  • Property svn:eol-style set to native
  • Property svn:keywords set to Author Date Id Revision
File size: 3.0 KB
Line 
1<?php
2// +-----------------------------------------------------------------------+
3// | PhpWebGallery - a PHP based picture gallery                           |
4// | Copyright (C) 2002-2003 Pierrick LE GALL - pierrick@phpwebgallery.net |
5// | Copyright (C) 2003-2005 PhpWebGallery Team - http://phpwebgallery.net |
6// +-----------------------------------------------------------------------+
7// | branch        : BSF (Best So Far)
8// | file          : $RCSfile$
9// | last update   : $Date: 2006-01-15 13:45:42 +0000 (Sun, 15 Jan 2006) $
10// | last modifier : $Author: nikrou $
11// | revision      : $Revision: 1004 $
12// +-----------------------------------------------------------------------+
13// | This program is free software; you can redistribute it and/or modify  |
14// | it under the terms of the GNU General Public License as published by  |
15// | the Free Software Foundation                                          |
16// |                                                                       |
17// | This program is distributed in the hope that it will be useful, but   |
18// | WITHOUT ANY WARRANTY; without even the implied warranty of            |
19// | MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU      |
20// | General Public License for more details.                              |
21// |                                                                       |
22// | You should have received a copy of the GNU General Public License     |
23// | along with this program; if not, write to the Free Software           |
24// | Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, |
25// | USA.                                                                  |
26// +-----------------------------------------------------------------------+
27
28// +-----------------------------------------------------------------------+
29// |                          define and include                           |
30// +-----------------------------------------------------------------------+
31define('PHPWG_ROOT_PATH','./');
32include_once( PHPWG_ROOT_PATH.'include/common.inc.php' );
33// +-----------------------------------------------------------------------+
34// |                     generate random element list                      |
35// +-----------------------------------------------------------------------+
36
37// we must not show pictures of a forbidden category
38$where = '';
39if ( $user['forbidden_categories'] != '' )
40{
41  $where = 'WHERE category_id NOT IN ('.$user['forbidden_categories'].')';
42}
43
44$query = '
45SELECT DISTINCT(id)
46  FROM '.IMAGES_TABLE.'
47    INNER JOIN '.IMAGE_CATEGORY_TABLE.' AS ic ON id = ic.image_id
48  '.$where.'
49  ORDER BY RAND(NOW())
50  LIMIT 0, '.$conf['top_number'].'
51;';
52$result = pwg_query($query);
53$ids = array();
54while ($row = mysql_fetch_array($result))
55{
56  array_push($ids, $row['id']);
57}
58// +-----------------------------------------------------------------------+
59// |                                redirect                               |
60// +-----------------------------------------------------------------------+
61$url = PHPWG_ROOT_PATH.'category.php?cat=list&amp;list='.implode(',', $ids);
62redirect($url);
63?>
Note: See TracBrowser for help on using the repository browser.