X-Git-Url: https://git.mxchange.org/?a=blobdiff_plain;f=mod%2Fmanage.php;h=f81afb09a6e30e18ca2ba0bcecd23151adb2a7da;hb=635c8d7450866cb8b77a6d1d42260257e286a940;hp=11aa09b78fd1e0e4816622d13183a0d18c3e0bb4;hpb=d49f986d1eb6894dd948577288357b6c1755e3d3;p=friendica.git diff --git a/mod/manage.php b/mod/manage.php index 11aa09b78f..f81afb09a6 100644 --- a/mod/manage.php +++ b/mod/manage.php @@ -6,7 +6,7 @@ use Friendica\App; use Friendica\Core\Addon; use Friendica\Core\L10n; use Friendica\Core\System; -use Friendica\Database\DBM; +use Friendica\Database\DBA; require_once "include/text.php"; @@ -23,7 +23,7 @@ function manage_post(App $a) { $r = q("select * from user where uid = %d limit 1", intval($_SESSION['submanage']) ); - if (DBM::is_result($r)) { + if (DBA::isResult($r)) { $uid = intval($r[0]['uid']); $orig_record = $r[0]; } @@ -35,15 +35,15 @@ function manage_post(App $a) { $submanage = $r; - $identity = ((x($_POST['identity'])) ? intval($_POST['identity']) : 0); - if (! $identity) { + $identity = (x($_POST['identity']) ? intval($_POST['identity']) : 0); + if (!$identity) { return; } $limited_id = 0; $original_id = $uid; - if (DBM::is_result($submanage)) { + if (DBA::isResult($submanage)) { foreach ($submanage as $m) { if ($identity == $m['mid']) { $limited_id = $m['mid']; @@ -57,14 +57,36 @@ function manage_post(App $a) { intval($limited_id) ); } else { - $r = q("SELECT * FROM `user` WHERE `uid` = %d AND `email` = '%s' AND `password` = '%s' LIMIT 1", + // Check if the target user is one of our children + $r = q("SELECT * FROM `user` WHERE `uid` = %d AND `parent-uid` = %d LIMIT 1", intval($identity), - dbesc($orig_record['email']), - dbesc($orig_record['password']) + DBA::escape($orig_record['uid']) ); + + // Check if the target user is one of our siblings + if (!DBA::isResult($r) && ($orig_record['parent-uid'] != 0)) { + $r = q("SELECT * FROM `user` WHERE `uid` = %d AND `parent-uid` = %d LIMIT 1", + intval($identity), + DBA::escape($orig_record['parent-uid']) + ); + } + + // Check if it's our parent + if (!DBA::isResult($r) && ($orig_record['parent-uid'] != 0) && ($orig_record['parent-uid'] == $identity)) { + $r = q("SELECT * FROM `user` WHERE `uid` = %d LIMIT 1", + intval($identity) + ); + } + + // Finally check if it's out own user + if (!DBA::isResult($r) && ($orig_record['uid'] != 0) && ($orig_record['uid'] == $identity)) { + $r = q("SELECT * FROM `user` WHERE `uid` = %d LIMIT 1", + intval($identity) + ); + } } - if (! DBM::is_result($r)) { + if (!DBA::isResult($r)) { return; } @@ -110,7 +132,7 @@ function manage_content(App $a) { return; } - if ($_GET['identity']) { + if (!empty($_GET['identity'])) { $_POST['identity'] = $_GET['identity']; manage_post($a); return; @@ -121,7 +143,7 @@ function manage_content(App $a) { //getting additinal information for each identity foreach ($identities as $key=>$id) { $thumb = q("SELECT `thumb` FROM `contact` WHERE `uid` = '%s' AND `self` = 1", - dbesc($id['uid']) + DBA::escape($id['uid']) ); $identities[$key]['thumb'] = $thumb[0]['thumb']; @@ -133,21 +155,21 @@ function manage_content(App $a) { $r = q("SELECT DISTINCT(`parent`) FROM `notify` WHERE `uid` = %d AND NOT `seen` AND NOT (`type` IN (%d, %d))", intval($id['uid']), intval(NOTIFY_INTRO), intval(NOTIFY_MAIL)); - if (DBM::is_result($r)) { + if (DBA::isResult($r)) { $notifications = sizeof($r); } $r = q("SELECT DISTINCT(`convid`) FROM `mail` WHERE `uid` = %d AND NOT `seen`", intval($id['uid'])); - if (DBM::is_result($r)) { + if (DBA::isResult($r)) { $notifications = $notifications + sizeof($r); } $r = q("SELECT COUNT(*) AS `introductions` FROM `intro` WHERE NOT `blocked` AND NOT `ignore` AND `uid` = %d", intval($id['uid'])); - if (DBM::is_result($r)) { + if (DBA::isResult($r)) { $notifications = $notifications + $r[0]["introductions"]; } @@ -155,11 +177,11 @@ function manage_content(App $a) { } $o = replace_macros(get_markup_template('manage.tpl'), [ - '$title' => t('Manage Identities and/or Pages'), - '$desc' => t('Toggle between different identities or community/group pages which share your account details or which you have been granted "manage" permissions'), - '$choose' => t('Select an identity to manage: '), + '$title' => L10n::t('Manage Identities and/or Pages'), + '$desc' => L10n::t('Toggle between different identities or community/group pages which share your account details or which you have been granted "manage" permissions'), + '$choose' => L10n::t('Select an identity to manage: '), '$identities' => $identities, - '$submit' => t('Submit'), + '$submit' => L10n::t('Submit'), ]); return $o;