X-Git-Url: https://git.mxchange.org/?a=blobdiff_plain;f=mod%2Flockview.php;h=a2301b4ccb7e73e20b47862cc62fe74929477152;hb=7357de411d80f7159934cc5acc6334281c3682ec;hp=48227cc1eaf47aa0d973e71a621f34e134f71ebf;hpb=1f58bcc114928a5a3cd97bd0de34a5aa7d585931;p=friendica.git

diff --git a/mod/lockview.php b/mod/lockview.php
index 48227cc1ea..a2301b4ccb 100644
--- a/mod/lockview.php
+++ b/mod/lockview.php
@@ -1,89 +1,113 @@
 <?php
-
+/**
+ * @file mod/lockview.php
+ */
 use Friendica\App;
+use Friendica\Core\Addon;
+use Friendica\Core\L10n;
+use Friendica\Database\DBA;
+use Friendica\Model\Item;
 
-function lockview_content(App $a) {
-
+function lockview_content(App $a)
+{
 	$type = (($a->argc > 1) ? $a->argv[1] : 0);
 	if (is_numeric($type)) {
 		$item_id = intval($type);
-		$type='item';
+		$type = 'item';
 	} else {
 		$item_id = (($a->argc > 2) ? intval($a->argv[2]) : 0);
 	}
 
-	if(! $item_id)
-		killme();
-
-	if (!in_array($type, array('item','photo','event')))
+	if (!$item_id) {
 		killme();
+	}
 
-	$r = q("SELECT * FROM `%s` WHERE `id` = %d LIMIT 1",
-		dbesc($type),
-		intval($item_id)
-	);
-	if (! dbm::is_result($r)) {
+	if (!in_array($type, ['item','photo','event'])) {
 		killme();
 	}
-	$item = $r[0];
 
-	call_hooks('lockview_content', $item);
+	$fields = ['uid', 'allow_cid', 'allow_gid', 'deny_cid', 'deny_gid'];
+	$condition = ['id' => $item_id];
+
+	if ($type != 'item') {
+		$item = DBA::selectFirst($type, $fields, $condition);
+	} else {
+		$fields[] = 'private';
+		$item = Item::selectFirst($fields, $condition);
+	}
 
-	if($item['uid'] != local_user()) {
-		echo t('Remote privacy information not available.') . '<br />';
+	if (!DBA::isResult($item)) {
 		killme();
 	}
 
+	Addon::callHooks('lockview_content', $item);
 
-	if(($item['private'] == 1) && (! strlen($item['allow_cid'])) && (! strlen($item['allow_gid']))
-		&& (! strlen($item['deny_cid'])) && (! strlen($item['deny_gid']))) {
+	if ($item['uid'] != local_user()) {
+		echo L10n::t('Remote privacy information not available.') . '<br />';
+		killme();
+	}
 
-		echo t('Remote privacy information not available.') . '<br />';
+	if (isset($item['private'])
+		&& $item['private'] == 1
+		&& empty($item['allow_cid'])
+		&& empty($item['allow_gid'])
+		&& empty($item['deny_cid'])
+		&& empty($item['deny_gid']))
+	{
+		echo L10n::t('Remote privacy information not available.') . '<br />';
 		killme();
 	}
 
-	$allowed_users = expand_acl($item['allow_cid']);
+	$allowed_users  = expand_acl($item['allow_cid']);
 	$allowed_groups = expand_acl($item['allow_gid']);
-	$deny_users = expand_acl($item['deny_cid']);
-	$deny_groups = expand_acl($item['deny_gid']);
+	$deny_users     = expand_acl($item['deny_cid']);
+	$deny_groups    = expand_acl($item['deny_gid']);
 
-	$o = t('Visible to:') . '<br />';
-	$l = array();
+	$o = L10n::t('Visible to:') . '<br />';
+	$l = [];
 
-	if(count($allowed_groups)) {
+	if (count($allowed_groups)) {
 		$r = q("SELECT `name` FROM `group` WHERE `id` IN ( %s )",
-			dbesc(implode(', ', $allowed_groups))
+			DBA::escape(implode(', ', $allowed_groups))
 		);
-		if (dbm::is_result($r))
-			foreach($r as $rr)
+		if (DBA::isResult($r)) {
+			foreach ($r as $rr) {
 				$l[] = '<b>' . $rr['name'] . '</b>';
+			}
+		}
 	}
-	if(count($allowed_users)) {
+
+	if (count($allowed_users)) {
 		$r = q("SELECT `name` FROM `contact` WHERE `id` IN ( %s )",
-			dbesc(implode(', ',$allowed_users))
+			DBA::escape(implode(', ', $allowed_users))
 		);
-		if (dbm::is_result($r))
-			foreach($r as $rr)
+		if (DBA::isResult($r)) {
+			foreach ($r as $rr) {
 				$l[] = $rr['name'];
-
+			}
+		}
 	}
 
-	if(count($deny_groups)) {
+	if (count($deny_groups)) {
 		$r = q("SELECT `name` FROM `group` WHERE `id` IN ( %s )",
-			dbesc(implode(', ', $deny_groups))
+			DBA::escape(implode(', ', $deny_groups))
 		);
-		if (dbm::is_result($r))
-			foreach($r as $rr)
+		if (DBA::isResult($r)) {
+			foreach ($r as $rr) {
 				$l[] = '<b><strike>' . $rr['name'] . '</strike></b>';
+			}
+		}
 	}
-	if(count($deny_users)) {
+
+	if (count($deny_users)) {
 		$r = q("SELECT `name` FROM `contact` WHERE `id` IN ( %s )",
-			dbesc(implode(', ',$deny_users))
+			DBA::escape(implode(', ', $deny_users))
 		);
-		if (dbm::is_result($r))
-			foreach($r as $rr)
+		if (DBA::isResult($r)) {
+			foreach ($r as $rr) {
 				$l[] = '<strike>' . $rr['name'] . '</strike>';
-
+			}
+		}
 	}
 
 	echo $o . implode(', ', $l);