X-Git-Url: https://git.mxchange.org/?a=blobdiff_plain;f=mod%2Fdirfind.php;h=2d728f8e730f0bb4e309d783c8899ae8588260fc;hb=5c254ee401ed5cc77d11648d1e2c6e9223188e99;hp=9db4eeb7b61d629f75436dd3856cb88274df014c;hpb=f04d40a37eb36e903433478d671a9dcd5bb6aacb;p=friendica.git diff --git a/mod/dirfind.php b/mod/dirfind.php index 9db4eeb7b6..2d728f8e73 100644 --- a/mod/dirfind.php +++ b/mod/dirfind.php @@ -2,6 +2,7 @@ /** * @file mod/dirfind.php */ + use Friendica\App; use Friendica\Content\ContactSelector; use Friendica\Content\Widget; @@ -9,12 +10,13 @@ use Friendica\Core\Config; use Friendica\Core\L10n; use Friendica\Core\System; use Friendica\Core\Worker; +use Friendica\Database\DBA; use Friendica\Model\Contact; use Friendica\Model\GContact; -use Friendica\Model\Profile; use Friendica\Network\Probe; use Friendica\Protocol\PortableContact; use Friendica\Util\Network; +use Friendica\Util\Proxy as ProxyUtils; require_once 'mod/contacts.php'; @@ -43,6 +45,8 @@ function dirfind_content(App $a, $prefix = "") { $search = $prefix.notags(trim($_REQUEST['search'])); + $header = ''; + if (strpos($search,'@') === 0) { $search = substr($search,1); $header = L10n::t('People Search - %s', $search); @@ -111,51 +115,48 @@ function dirfind_content(App $a, $prefix = "") { $search2 = "%".$search."%"; - /// @TODO These 2 SELECTs are not checked on validity with DBM::is_result() + /// @TODO These 2 SELECTs are not checked on validity with DBA::isResult() $count = q("SELECT count(*) AS `total` FROM `gcontact` - LEFT JOIN `contact` ON `contact`.`nurl` = `gcontact`.`nurl` - AND `contact`.`network` = `gcontact`.`network` - AND `contact`.`uid` = %d AND NOT `contact`.`blocked` - AND NOT `contact`.`pending` AND `contact`.`rel` IN ('%s', '%s') - WHERE (`contact`.`id` > 0 OR (NOT `gcontact`.`hide` AND `gcontact`.`network` IN ('%s', '%s', '%s') AND - ((`gcontact`.`last_contact` >= `gcontact`.`last_failure`) OR (`gcontact`.`updated` >= `gcontact`.`last_failure`)))) AND - (`gcontact`.`url` LIKE '%s' OR `gcontact`.`name` LIKE '%s' OR `gcontact`.`location` LIKE '%s' OR - `gcontact`.`addr` LIKE '%s' OR `gcontact`.`about` LIKE '%s' OR `gcontact`.`keywords` LIKE '%s') $extra_sql", - intval(local_user()), dbesc(CONTACT_IS_SHARING), dbesc(CONTACT_IS_FRIEND), - dbesc(NETWORK_DFRN), dbesc($ostatus), dbesc($diaspora), - dbesc(escape_tags($search2)), dbesc(escape_tags($search2)), dbesc(escape_tags($search2)), - dbesc(escape_tags($search2)), dbesc(escape_tags($search2)), dbesc(escape_tags($search2))); - - $results = q("SELECT `contact`.`id` AS `cid`, `gcontact`.`url`, `gcontact`.`name`, `gcontact`.`photo`, `gcontact`.`network`, `gcontact`.`keywords`, `gcontact`.`addr` + WHERE NOT `hide` AND `network` IN ('%s', '%s', '%s') AND + ((`last_contact` >= `last_failure`) OR (`updated` >= `last_failure`)) AND + (`url` LIKE '%s' OR `name` LIKE '%s' OR `location` LIKE '%s' OR + `addr` LIKE '%s' OR `about` LIKE '%s' OR `keywords` LIKE '%s') $extra_sql", + DBA::escape(NETWORK_DFRN), DBA::escape($ostatus), DBA::escape($diaspora), + DBA::escape(escape_tags($search2)), DBA::escape(escape_tags($search2)), DBA::escape(escape_tags($search2)), + DBA::escape(escape_tags($search2)), DBA::escape(escape_tags($search2)), DBA::escape(escape_tags($search2))); + + $results = q("SELECT `nurl` FROM `gcontact` - LEFT JOIN `contact` ON `contact`.`nurl` = `gcontact`.`nurl` - AND `contact`.`network` = `gcontact`.`network` - AND `contact`.`uid` = %d AND NOT `contact`.`blocked` - AND NOT `contact`.`pending` AND `contact`.`rel` IN ('%s', '%s') - WHERE (`contact`.`id` > 0 OR (NOT `gcontact`.`hide` AND `gcontact`.`network` IN ('%s', '%s', '%s') AND - ((`gcontact`.`last_contact` >= `gcontact`.`last_failure`) OR (`gcontact`.`updated` >= `gcontact`.`last_failure`)))) AND - (`gcontact`.`url` LIKE '%s' OR `gcontact`.`name` LIKE '%s' OR `gcontact`.`location` LIKE '%s' OR - `gcontact`.`addr` LIKE '%s' OR `gcontact`.`about` LIKE '%s' OR `gcontact`.`keywords` LIKE '%s') $extra_sql - GROUP BY `gcontact`.`nurl` - ORDER BY `gcontact`.`updated` DESC LIMIT %d, %d", - intval(local_user()), dbesc(CONTACT_IS_SHARING), dbesc(CONTACT_IS_FRIEND), - dbesc(NETWORK_DFRN), dbesc($ostatus), dbesc($diaspora), - dbesc(escape_tags($search2)), dbesc(escape_tags($search2)), dbesc(escape_tags($search2)), - dbesc(escape_tags($search2)), dbesc(escape_tags($search2)), dbesc(escape_tags($search2)), + WHERE NOT `hide` AND `network` IN ('%s', '%s', '%s') AND + ((`last_contact` >= `last_failure`) OR (`updated` >= `last_failure`)) AND + (`url` LIKE '%s' OR `name` LIKE '%s' OR `location` LIKE '%s' OR + `addr` LIKE '%s' OR `about` LIKE '%s' OR `keywords` LIKE '%s') $extra_sql + GROUP BY `nurl` + ORDER BY `updated` DESC LIMIT %d, %d", + DBA::escape(NETWORK_DFRN), DBA::escape($ostatus), DBA::escape($diaspora), + DBA::escape(escape_tags($search2)), DBA::escape(escape_tags($search2)), DBA::escape(escape_tags($search2)), + DBA::escape(escape_tags($search2)), DBA::escape(escape_tags($search2)), DBA::escape(escape_tags($search2)), intval($startrec), intval($perpage)); $j = new stdClass(); $j->total = $count[0]["total"]; $j->items_page = $perpage; $j->page = $a->pager['page']; foreach ($results AS $result) { - if (PortableContact::alternateOStatusUrl($result["url"])) { + if (PortableContact::alternateOStatusUrl($result["nurl"])) { + continue; + } + + $urlparts = parse_url($result["nurl"]); + + // Ignore results that look strange. + // For historic reasons the gcontact table does contain some garbage. + if (!empty($urlparts['query']) || !empty($urlparts['fragment'])) { continue; } - $result = Contact::getDetailsByURL($result["url"], local_user(), $result); + $result = Contact::getDetailsByURL($result["nurl"], local_user()); if ($result["name"] == "") { - $urlparts = parse_url($result["url"]); $result["name"] = end(explode("/", $urlparts["path"])); } @@ -188,7 +189,7 @@ function dirfind_content(App $a, $prefix = "") { $a->set_pager_itemspage($j->items_page); } - if (count($j->results)) { + if (!empty($j->results)) { $id = 0; @@ -204,20 +205,19 @@ function dirfind_content(App $a, $prefix = "") { if ($jj->cid > 0) { $connlnk = ""; $conntxt = ""; - $contact = q("SELECT * FROM `contact` WHERE `id` = %d", - intval($jj->cid)); - if ($contact) { - $photo_menu = Contact::photoMenu($contact[0]); - $details = _contact_detail_for_template($contact[0]); + $contact = DBA::selectFirst('contact', [], ['id' => $jj->cid]); + if (DBA::isResult($contact)) { + $photo_menu = Contact::photoMenu($contact); + $details = _contact_detail_for_template($contact); $alt_text = $details['alt_text']; } else { $photo_menu = []; } } else { - $connlnk = System::baseUrl().'/follow/?url='.(($jj->connect) ? $jj->connect : $jj->url); + $connlnk = System::baseUrl().'/follow/?url='.(!empty($jj->connect) ? $jj->connect : $jj->url); $conntxt = L10n::t('Connect'); $photo_menu = [ - 'profile' => [L10n::t("View Profile"), Profile::zrl($jj->url)], + 'profile' => [L10n::t("View Profile"), Contact::magicLink($jj->url)], 'follow' => [L10n::t("Connect/Follow"), $connlnk] ]; } @@ -226,10 +226,10 @@ function dirfind_content(App $a, $prefix = "") { $entry = [ 'alt_text' => $alt_text, - 'url' => Profile::zrl($jj->url), + 'url' => Contact::magicLink($jj->url), 'itemurl' => $itemurl, 'name' => htmlentities($jj->name), - 'thumb' => proxy_url($jj->photo, false, PROXY_SIZE_THUMB), + 'thumb' => ProxyUtils::proxifyUrl($jj->photo, false, ProxyUtils::SIZE_THUMB), 'img_hover' => $jj->tags, 'conntxt' => $conntxt, 'connlnk' => $connlnk,