2016-10-02 17:07:17 -04:00
< ? php
2017-11-16 20:23:18 -05:00
/** @ license MIT
* Copyright 2017 J . King , Dustin Wilson et al .
* See LICENSE and AUTHORS files for details */
2016-10-05 22:08:43 -04:00
declare ( strict_types = 1 );
2017-03-27 23:12:12 -05:00
namespace JKingWeb\Arsse ;
2017-08-29 10:50:31 -04:00
2017-09-16 19:57:33 -04:00
use JKingWeb\DrUUID\UUID ;
2018-11-28 17:18:33 -05:00
use JKingWeb\Arsse\Db\Statement ;
2017-06-18 10:23:37 -04:00
use JKingWeb\Arsse\Misc\Query ;
use JKingWeb\Arsse\Misc\Context ;
2017-07-17 07:47:57 -04:00
use JKingWeb\Arsse\Misc\Date ;
2017-09-26 16:45:41 -04:00
use JKingWeb\Arsse\Misc\ValueInfo ;
2016-10-02 17:07:17 -04:00
class Database {
2018-12-04 20:41:21 -05:00
const SCHEMA_VERSION = 4 ;
2017-11-06 23:32:29 -05:00
const LIMIT_ARTICLES = 50 ;
2018-10-26 14:58:04 -04:00
2017-07-17 07:47:57 -04:00
/** @var Db\Driver */
2017-08-29 10:50:31 -04:00
public $db ;
2016-10-15 09:45:23 -04:00
2017-07-22 15:29:12 -04:00
public function __construct ( $initialize = true ) {
2017-07-17 07:47:57 -04:00
$driver = Arsse :: $conf -> dbDriver ;
2017-12-18 18:29:32 -05:00
$this -> db = $driver :: create ();
2017-05-03 20:00:29 -04:00
$ver = $this -> db -> schemaVersion ();
2017-08-29 10:50:31 -04:00
if ( $initialize && $ver < self :: SCHEMA_VERSION ) {
2017-05-03 20:00:29 -04:00
$this -> db -> schemaUpdate ( self :: SCHEMA_VERSION );
2017-02-16 14:29:42 -06:00
}
}
2016-10-02 17:07:17 -04:00
2017-05-18 13:21:17 -04:00
protected function caller () : string {
return debug_backtrace ( DEBUG_BACKTRACE_IGNORE_ARGS , 3 )[ 2 ][ 'function' ];
}
2018-10-26 14:58:04 -04:00
2017-08-29 10:50:31 -04:00
public static function driverList () : array {
2017-02-16 14:29:42 -06:00
$sep = \DIRECTORY_SEPARATOR ;
$path = __DIR__ . $sep . " Db " . $sep ;
$classes = [];
2017-08-29 10:50:31 -04:00
foreach ( glob ( $path . " * " . $sep . " Driver.php " ) as $file ) {
2017-03-07 18:01:13 -05:00
$name = basename ( dirname ( $file ));
$class = NS_BASE . " Db \\ $name\\Driver " ;
$classes [ $class ] = $class :: driverName ();
2017-02-16 14:29:42 -06:00
}
return $classes ;
}
2016-10-05 22:08:43 -04:00
2017-07-18 16:38:23 -04:00
public function driverSchemaVersion () : int {
2017-02-16 14:29:42 -06:00
return $this -> db -> schemaVersion ();
}
2016-10-15 09:45:23 -04:00
2017-07-18 16:38:23 -04:00
public function driverSchemaUpdate () : bool {
2017-08-29 10:50:31 -04:00
if ( $this -> db -> schemaVersion () < self :: SCHEMA_VERSION ) {
2017-07-20 22:40:09 -04:00
return $this -> db -> schemaUpdate ( self :: SCHEMA_VERSION );
}
2017-02-16 14:29:42 -06:00
return false ;
}
2016-10-18 11:42:21 -04:00
2017-11-29 18:14:59 -05:00
public function driverCharsetAcceptable () : bool {
return $this -> db -> charsetAcceptable ();
}
2017-04-20 21:59:12 -04:00
protected function generateSet ( array $props , array $valid ) : array {
$out = [
[], // query clause
[], // binding types
[], // binding values
];
2017-08-29 10:50:31 -04:00
foreach ( $valid as $prop => $type ) {
if ( ! array_key_exists ( $prop , $props )) {
2017-07-20 22:40:09 -04:00
continue ;
}
2018-12-20 21:23:06 -05:00
$out [ 0 ][] = " \" $prop\ " = ? " ;
2017-04-20 21:59:12 -04:00
$out [ 1 ][] = $type ;
$out [ 2 ][] = $props [ $prop ];
}
$out [ 0 ] = implode ( " , " , $out [ 0 ]);
return $out ;
}
2018-11-02 11:52:55 -04:00
protected function generateIn ( array $values , string $type ) : array {
2017-04-20 21:59:12 -04:00
$out = [
2018-11-28 17:18:33 -05:00
" " , // query clause
2017-04-20 21:59:12 -04:00
[], // binding types
];
2018-11-28 17:18:33 -05:00
if ( sizeof ( $values )) {
// the query clause is just a series of question marks separated by commas
$out [ 0 ] = implode ( " , " , array_fill ( 0 , sizeof ( $values ), " ? " ));
// the binding types are just a repetition of the supplied type
$out [ 1 ] = array_fill ( 0 , sizeof ( $values ), $type );
} else {
2018-12-20 21:23:06 -05:00
// if the set is empty, some databases require an explicit null
$out [ 0 ] = " null " ;
2018-11-28 17:18:33 -05:00
}
2017-04-20 21:59:12 -04:00
return $out ;
}
2017-05-18 23:03:33 -04:00
public function begin () : Db\Transaction {
return $this -> db -> begin ();
}
2017-07-05 10:59:13 -04:00
2017-07-16 14:55:37 -04:00
public function metaGet ( string $key ) {
2018-12-20 21:23:06 -05:00
return $this -> db -> prepare ( " SELECT value from arsse_meta where \" key \" = ? " , " str " ) -> run ( $key ) -> getValue ();
2017-07-05 10:59:13 -04:00
}
2018-10-26 14:58:04 -04:00
2017-07-18 16:38:23 -04:00
public function metaSet ( string $key , $value , string $type = " str " ) : bool {
2018-12-20 21:23:06 -05:00
$out = $this -> db -> prepare ( " UPDATE arsse_meta set value = ? where \" key \" = ? " , $type , " str " ) -> run ( $value , $key ) -> changes ();
2017-08-29 10:50:31 -04:00
if ( ! $out ) {
2018-12-20 21:23:06 -05:00
$out = $this -> db -> prepare ( " INSERT INTO arsse_meta( \" key \" ,value) values(?,?) " , " str " , $type ) -> run ( $key , $value ) -> changes ();
2017-02-16 14:29:42 -06:00
}
2017-06-01 16:24:11 -04:00
return ( bool ) $out ;
2017-02-16 14:29:42 -06:00
}
2016-10-17 16:49:39 -04:00
2017-07-16 14:55:37 -04:00
public function metaRemove ( string $key ) : bool {
2018-12-20 21:23:06 -05:00
return ( bool ) $this -> db -> prepare ( " DELETE from arsse_meta where \" key \" = ? " , " str " ) -> run ( $key ) -> changes ();
2017-02-16 14:29:42 -06:00
}
2016-10-17 16:49:39 -04:00
2017-02-16 14:29:42 -06:00
public function userExists ( string $user ) : bool {
2017-08-29 10:50:31 -04:00
if ( ! Arsse :: $user -> authorize ( $user , __FUNCTION__ )) {
2017-07-20 22:40:09 -04:00
throw new User\ExceptionAuthz ( " notAuthorized " , [ " action " => __FUNCTION__ , " user " => $user ]);
}
2017-12-06 22:26:06 -05:00
return ( bool ) $this -> db -> prepare ( " SELECT count(*) from arsse_users where id = ? " , " str " ) -> run ( $user ) -> getValue ();
2017-02-16 14:29:42 -06:00
}
2016-10-18 11:42:21 -04:00
2018-11-02 11:52:55 -04:00
public function userAdd ( string $user , string $password ) : bool {
2017-08-29 10:50:31 -04:00
if ( ! Arsse :: $user -> authorize ( $user , __FUNCTION__ )) {
2017-07-20 22:40:09 -04:00
throw new User\ExceptionAuthz ( " notAuthorized " , [ " action " => __FUNCTION__ , " user " => $user ]);
2017-08-29 10:50:31 -04:00
} elseif ( $this -> userExists ( $user )) {
2017-07-20 22:40:09 -04:00
throw new User\Exception ( " alreadyExists " , [ " action " => __FUNCTION__ , " user " => $user ]);
}
2018-11-02 11:52:55 -04:00
$hash = ( strlen ( $password ) > 0 ) ? password_hash ( $password , \PASSWORD_DEFAULT ) : " " ;
2017-03-27 23:12:12 -05:00
$this -> db -> prepare ( " INSERT INTO arsse_users(id,password) values(?,?) " , " str " , " str " ) -> runArray ([ $user , $hash ]);
2018-11-02 11:52:55 -04:00
return true ;
2017-02-16 14:29:42 -06:00
}
2016-10-28 08:27:35 -04:00
2017-02-16 14:29:42 -06:00
public function userRemove ( string $user ) : bool {
2017-08-29 10:50:31 -04:00
if ( ! Arsse :: $user -> authorize ( $user , __FUNCTION__ )) {
2017-07-20 22:40:09 -04:00
throw new User\ExceptionAuthz ( " notAuthorized " , [ " action " => __FUNCTION__ , " user " => $user ]);
}
2017-12-06 22:26:06 -05:00
if ( $this -> db -> prepare ( " DELETE from arsse_users where id = ? " , " str " ) -> run ( $user ) -> changes () < 1 ) {
2017-07-20 22:40:09 -04:00
throw new User\Exception ( " doesNotExist " , [ " action " => __FUNCTION__ , " user " => $user ]);
}
2017-02-16 14:29:42 -06:00
return true ;
}
2016-10-28 08:27:35 -04:00
2018-10-28 10:59:17 -04:00
public function userList () : array {
2017-03-29 23:41:05 -04:00
$out = [];
2018-10-28 10:59:17 -04:00
if ( ! Arsse :: $user -> authorize ( " " , __FUNCTION__ )) {
throw new User\ExceptionAuthz ( " notAuthorized " , [ " action " => __FUNCTION__ , " user " => " " ]);
}
foreach ( $this -> db -> query ( " SELECT id from arsse_users " ) as $user ) {
$out [] = $user [ 'id' ];
2017-02-16 14:29:42 -06:00
}
2017-03-29 23:41:05 -04:00
return $out ;
2017-02-16 14:29:42 -06:00
}
2017-02-19 16:02:03 -06:00
2017-02-16 14:29:42 -06:00
public function userPasswordGet ( string $user ) : string {
2017-08-29 10:50:31 -04:00
if ( ! Arsse :: $user -> authorize ( $user , __FUNCTION__ )) {
2017-07-20 22:40:09 -04:00
throw new User\ExceptionAuthz ( " notAuthorized " , [ " action " => __FUNCTION__ , " user " => $user ]);
2017-08-29 10:50:31 -04:00
} elseif ( ! $this -> userExists ( $user )) {
2017-07-20 22:40:09 -04:00
throw new User\Exception ( " doesNotExist " , [ " action " => __FUNCTION__ , " user " => $user ]);
}
2017-12-06 22:26:06 -05:00
return ( string ) $this -> db -> prepare ( " SELECT password from arsse_users where id = ? " , " str " ) -> run ( $user ) -> getValue ();
2017-02-16 14:29:42 -06:00
}
2017-02-19 16:02:03 -06:00
2018-11-02 11:52:55 -04:00
public function userPasswordSet ( string $user , string $password ) : bool {
2017-08-29 10:50:31 -04:00
if ( ! Arsse :: $user -> authorize ( $user , __FUNCTION__ )) {
2017-07-20 22:40:09 -04:00
throw new User\ExceptionAuthz ( " notAuthorized " , [ " action " => __FUNCTION__ , " user " => $user ]);
2017-08-29 10:50:31 -04:00
} elseif ( ! $this -> userExists ( $user )) {
2017-07-20 22:40:09 -04:00
throw new User\Exception ( " doesNotExist " , [ " action " => __FUNCTION__ , " user " => $user ]);
}
2018-11-02 11:52:55 -04:00
$hash = ( strlen ( $password ) > 0 ) ? password_hash ( $password , \PASSWORD_DEFAULT ) : " " ;
2017-12-06 22:26:06 -05:00
$this -> db -> prepare ( " UPDATE arsse_users set password = ? where id = ? " , " str " , " str " ) -> run ( $hash , $user );
2018-11-02 11:52:55 -04:00
return true ;
2017-02-16 14:29:42 -06:00
}
2016-10-28 08:27:35 -04:00
2017-09-16 19:57:33 -04:00
public function sessionCreate ( string $user ) : string {
// If the user isn't authorized to perform this action then throw an exception.
if ( ! Arsse :: $user -> authorize ( $user , __FUNCTION__ )) {
throw new User\ExceptionAuthz ( " notAuthorized " , [ " action " => __FUNCTION__ , " user " => $user ]);
}
// generate a new session ID and expiry date
$id = UUID :: mint () -> hex ;
$expires = Date :: add ( Arsse :: $conf -> userSessionTimeout );
// save the session to the database
2018-11-28 14:21:36 -05:00
$this -> db -> prepare ( " INSERT INTO arsse_sessions(id,expires, \" user \" ) values(?,?,?) " , " str " , " datetime " , " str " ) -> run ( $id , $expires , $user );
2017-09-16 19:57:33 -04:00
// return the ID
return $id ;
}
public function sessionDestroy ( string $user , string $id ) : bool {
// If the user isn't authorized to perform this action then throw an exception.
if ( ! Arsse :: $user -> authorize ( $user , __FUNCTION__ )) {
throw new User\ExceptionAuthz ( " notAuthorized " , [ " action " => __FUNCTION__ , " user " => $user ]);
}
// delete the session and report success.
2018-11-28 14:21:36 -05:00
return ( bool ) $this -> db -> prepare ( " DELETE FROM arsse_sessions where id = ? and \" user \" = ? " , " str " , " str " ) -> run ( $id , $user ) -> changes ();
2017-09-16 19:57:33 -04:00
}
public function sessionResume ( string $id ) : array {
2017-09-24 10:09:36 -04:00
$maxAge = Date :: sub ( Arsse :: $conf -> userSessionLifetime );
2018-11-28 14:21:36 -05:00
$out = $this -> db -> prepare ( " SELECT id,created,expires, \" user \" from arsse_sessions where id = ? and expires > CURRENT_TIMESTAMP and created > ? " , " str " , " datetime " ) -> run ( $id , $maxAge ) -> getRow ();
2017-09-16 19:57:33 -04:00
// if the session does not exist or is expired, throw an exception
if ( ! $out ) {
throw new User\ExceptionSession ( " invalid " , $id );
}
// if we're more than half-way from the session expiring, renew it
if ( $this -> sessionExpiringSoon ( Date :: normalize ( $out [ 'expires' ], " sql " ))) {
$expires = Date :: add ( Arsse :: $conf -> userSessionTimeout );
2017-12-06 22:26:06 -05:00
$this -> db -> prepare ( " UPDATE arsse_sessions set expires = ? where id = ? " , " datetime " , " str " ) -> run ( $expires , $id );
2017-09-16 19:57:33 -04:00
}
return $out ;
}
public function sessionCleanup () : int {
2017-09-24 10:09:36 -04:00
$maxAge = Date :: sub ( Arsse :: $conf -> userSessionLifetime );
return $this -> db -> prepare ( " DELETE FROM arsse_sessions where expires < CURRENT_TIMESTAMP or created < ? " , " datetime " ) -> run ( $maxAge ) -> changes ();
2017-09-16 19:57:33 -04:00
}
2017-09-24 12:45:07 -04:00
protected function sessionExpiringSoon ( \DateTimeInterface $expiry ) : bool {
2017-09-16 19:57:33 -04:00
// calculate half the session timeout as a number of seconds
$now = time ();
$max = Date :: add ( Arsse :: $conf -> userSessionTimeout , $now ) -> getTimestamp ();
$diff = intdiv ( $max - $now , 2 );
// determine if the expiry time is less than half the session timeout into the future
return (( $now + $diff ) >= $expiry -> getTimestamp ());
}
2017-03-07 18:01:13 -05:00
public function folderAdd ( string $user , array $data ) : int {
// If the user isn't authorized to perform this action then throw an exception.
2017-08-29 10:50:31 -04:00
if ( ! Arsse :: $user -> authorize ( $user , __FUNCTION__ )) {
2017-03-07 18:01:13 -05:00
throw new User\ExceptionAuthz ( " notAuthorized " , [ " action " => __FUNCTION__ , " user " => $user ]);
}
// normalize folder's parent, if there is one
2017-09-26 16:45:41 -04:00
$parent = array_key_exists ( " parent " , $data ) ? $this -> folderValidateId ( $user , $data [ 'parent' ])[ 'id' ] : null ;
// validate the folder name and parent (if specified); this also checks for duplicates
2017-09-28 10:16:24 -04:00
$name = array_key_exists ( " name " , $data ) ? $data [ 'name' ] : " " ;
2017-09-26 16:45:41 -04:00
$this -> folderValidateName ( $name , true , $parent );
// actually perform the insert
return $this -> db -> prepare ( " INSERT INTO arsse_folders(owner,parent,name) values(?,?,?) " , " str " , " int " , " str " ) -> run ( $user , $parent , $name ) -> lastId ();
2017-03-07 18:01:13 -05:00
}
2017-03-24 22:39:18 -04:00
2017-09-28 10:16:24 -04:00
public function folderList ( string $user , $parent = null , bool $recursive = true ) : Db\Result {
2017-03-24 22:39:18 -04:00
// if the user isn't authorized to perform this action then throw an exception.
2017-08-29 10:50:31 -04:00
if ( ! Arsse :: $user -> authorize ( $user , __FUNCTION__ )) {
2017-03-24 22:39:18 -04:00
throw new User\ExceptionAuthz ( " notAuthorized " , [ " action " => __FUNCTION__ , " user " => $user ]);
}
2017-03-31 17:42:28 -04:00
// check to make sure the parent exists, if one is specified
2017-10-20 19:02:42 -04:00
$parent = $this -> folderValidateId ( $user , $parent )[ 'id' ];
2017-10-06 20:26:22 -04:00
$q = new Query (
" SELECT
id , name , parent ,
2017-12-06 22:26:06 -05:00
( select count ( * ) from arsse_folders as parents where coalesce ( parents . parent , 0 ) = coalesce ( arsse_folders . id , 0 )) as children ,
( select count ( * ) from arsse_subscriptions where coalesce ( folder , 0 ) = coalesce ( arsse_folders . id , 0 )) as feeds
2017-10-06 20:26:22 -04:00
FROM arsse_folders "
);
2017-08-29 10:50:31 -04:00
if ( ! $recursive ) {
2017-12-06 22:26:06 -05:00
$q -> setWhere ( " owner = ? " , " str " , $user );
$q -> setWhere ( " coalesce(parent,0) = ? " , " strict int " , $parent );
2017-03-24 22:39:18 -04:00
} else {
2017-12-06 22:26:06 -05:00
$q -> setCTE ( " folders " , " SELECT id from arsse_folders where owner = ? and coalesce(parent,0) = ? union select arsse_folders.id from arsse_folders join folders on arsse_folders.parent=folders.id " , [ " str " , " strict int " ], [ $user , $parent ]);
2017-10-06 20:26:22 -04:00
$q -> setWhere ( " id in (SELECT id from folders) " );
2017-03-24 22:39:18 -04:00
}
2017-10-06 20:26:22 -04:00
$q -> setOrder ( " name " );
return $this -> db -> prepare ( $q -> getQuery (), $q -> getTypes ()) -> run ( $q -> getValues ());
2017-03-24 22:39:18 -04:00
}
2017-03-26 15:16:15 -05:00
2017-09-28 10:16:24 -04:00
public function folderRemove ( string $user , $id ) : bool {
2017-08-29 10:50:31 -04:00
if ( ! Arsse :: $user -> authorize ( $user , __FUNCTION__ )) {
2017-07-20 22:40:09 -04:00
throw new User\ExceptionAuthz ( " notAuthorized " , [ " action " => __FUNCTION__ , " user " => $user ]);
}
2017-09-28 10:16:24 -04:00
if ( ! ValueInfo :: id ( $id )) {
2017-10-05 17:42:12 -04:00
throw new Db\ExceptionInput ( " typeViolation " , [ " action " => __FUNCTION__ , " field " => " folder " , 'type' => " int > 0 " ]);
2017-09-28 10:16:24 -04:00
}
2018-12-21 17:02:34 -05:00
$changes = $this -> db -> prepare ( " WITH RECURSIVE folders(folder) as (SELECT ? union select id from arsse_folders join folders on parent = folder) DELETE FROM arsse_folders where owner = ? and id in (select folder from folders) " , " int " , " str " ) -> run ( $id , $user ) -> changes ();
2017-08-29 10:50:31 -04:00
if ( ! $changes ) {
2017-07-20 22:40:09 -04:00
throw new Db\ExceptionInput ( " subjectMissing " , [ " action " => __FUNCTION__ , " field " => " folder " , 'id' => $id ]);
}
2017-04-01 10:27:26 -04:00
return true ;
}
2017-09-28 10:16:24 -04:00
public function folderPropertiesGet ( string $user , $id ) : array {
2017-08-29 10:50:31 -04:00
if ( ! Arsse :: $user -> authorize ( $user , __FUNCTION__ )) {
2017-07-20 22:40:09 -04:00
throw new User\ExceptionAuthz ( " notAuthorized " , [ " action " => __FUNCTION__ , " user " => $user ]);
}
2017-09-28 10:16:24 -04:00
if ( ! ValueInfo :: id ( $id )) {
2017-10-05 17:42:12 -04:00
throw new Db\ExceptionInput ( " typeViolation " , [ " action " => __FUNCTION__ , " field " => " folder " , 'type' => " int > 0 " ]);
2017-09-28 10:16:24 -04:00
}
2017-12-06 22:26:06 -05:00
$props = $this -> db -> prepare ( " SELECT id,name,parent from arsse_folders where owner = ? and id = ? " , " str " , " int " ) -> run ( $user , $id ) -> getRow ();
2017-08-29 10:50:31 -04:00
if ( ! $props ) {
2017-07-20 22:40:09 -04:00
throw new Db\ExceptionInput ( " subjectMissing " , [ " action " => __FUNCTION__ , " field " => " folder " , 'id' => $id ]);
}
2017-04-01 10:27:26 -04:00
return $props ;
}
2017-09-28 10:16:24 -04:00
public function folderPropertiesSet ( string $user , $id , array $data ) : bool {
2017-08-29 10:50:31 -04:00
if ( ! Arsse :: $user -> authorize ( $user , __FUNCTION__ )) {
2017-07-20 22:40:09 -04:00
throw new User\ExceptionAuthz ( " notAuthorized " , [ " action " => __FUNCTION__ , " user " => $user ]);
}
2017-09-26 16:45:41 -04:00
// verify the folder belongs to the user
$in = $this -> folderValidateId ( $user , $id , true );
$name = array_key_exists ( " name " , $data );
$parent = array_key_exists ( " parent " , $data );
if ( $name && $parent ) {
// if a new name and parent are specified, validate both together
2017-05-18 13:21:17 -04:00
$this -> folderValidateName ( $data [ 'name' ]);
2017-09-26 16:45:41 -04:00
$in [ 'name' ] = $data [ 'name' ];
2017-09-28 10:16:24 -04:00
$in [ 'parent' ] = $this -> folderValidateMove ( $user , ( int ) $id , $data [ 'parent' ], $data [ 'name' ]);
2017-09-26 16:45:41 -04:00
} elseif ( $name ) {
2017-09-28 10:16:24 -04:00
// if we're trying to rename the root folder, this simply fails
if ( ! $id ) {
return false ;
}
2017-09-26 16:45:41 -04:00
// if a new name is specified, validate it
$this -> folderValidateName ( $data [ 'name' ], true , $in [ 'parent' ]);
$in [ 'name' ] = $data [ 'name' ];
} elseif ( $parent ) {
// if a new parent is specified, validate it
2017-09-28 10:16:24 -04:00
$in [ 'parent' ] = $this -> folderValidateMove ( $user , ( int ) $id , $data [ 'parent' ]);
2017-09-26 16:45:41 -04:00
} else {
2017-10-05 17:42:12 -04:00
// if no changes would actually be applied, just return
2017-09-26 16:45:41 -04:00
return false ;
2017-04-01 10:27:26 -04:00
}
$valid = [
'name' => " str " ,
'parent' => " int " ,
];
2017-09-26 16:45:41 -04:00
list ( $setClause , $setTypes , $setValues ) = $this -> generateSet ( $in , $valid );
2017-12-06 22:26:06 -05:00
return ( bool ) $this -> db -> prepare ( " UPDATE arsse_folders set $setClause , modified = CURRENT_TIMESTAMP where owner = ? and id = ? " , $setTypes , " str " , " int " ) -> run ( $setValues , $user , $id ) -> changes ();
2017-03-31 18:48:24 -04:00
}
2017-09-26 16:45:41 -04:00
protected function folderValidateId ( string $user , $id = null , bool $subject = false ) : array {
2017-09-28 10:16:24 -04:00
// if the specified ID is not a non-negative integer (or null), this will always fail
if ( ! ValueInfo :: id ( $id , true )) {
throw new Db\ExceptionInput ( " typeViolation " , [ " action " => $this -> caller (), " field " => " folder " , 'type' => " int >= 0 " ]);
2017-09-26 16:45:41 -04:00
}
2017-09-28 10:16:24 -04:00
// if a null or zero ID is specified this is a no-op
if ( ! $id ) {
return [ 'id' => null , 'name' => null , 'parent' => null ];
2017-05-18 13:21:17 -04:00
}
// check whether the folder exists and is owned by the user
2017-12-06 22:26:06 -05:00
$f = $this -> db -> prepare ( " SELECT id,name,parent from arsse_folders where owner = ? and id = ? " , " str " , " int " ) -> run ( $user , $id ) -> getRow ();
2017-08-29 10:50:31 -04:00
if ( ! $f ) {
2017-09-26 16:45:41 -04:00
throw new Db\ExceptionInput ( $subject ? " subjectMissing " : " idMissing " , [ " action " => $this -> caller (), " field " => " folder " , 'id' => $id ]);
2017-05-18 13:21:17 -04:00
}
return $f ;
}
2017-12-19 19:08:08 -05:00
protected function folderValidateMove ( string $user , $id = null , $parent = null , string $name = null ) {
2017-09-26 16:45:41 -04:00
$errData = [ " action " => $this -> caller (), " field " => " parent " , 'id' => $parent ];
if ( ! $id ) {
// the root cannot be moved
throw new Db\ExceptionInput ( " circularDependence " , $errData );
}
$info = ValueInfo :: int ( $parent );
// the root is always a valid parent
if ( $info & ( ValueInfo :: NULL | ValueInfo :: ZERO )) {
$parent = null ;
} else {
// if a negative integer or non-integer is specified this will always fail
if ( ! ( $info & ValueInfo :: VALID ) || (( $info & ValueInfo :: NEG ))) {
throw new Db\ExceptionInput ( " idMissing " , $errData );
}
$parent = ( int ) $parent ;
}
// if the target parent is the folder itself, this is a circular dependence
if ( $id == $parent ) {
throw new Db\ExceptionInput ( " circularDependence " , $errData );
}
2017-09-28 10:16:24 -04:00
// make sure both that the prospective parent exists, and that the it is not one of its children (a circular dependence);
// also make sure that a folder with the same prospective name and parent does not already exist: if the parent is null,
// SQL will happily accept duplicates (null is not unique), so we must do this check ourselves
2017-09-26 16:45:41 -04:00
$p = $this -> db -> prepare (
" WITH RECURSIVE
2018-12-20 21:23:06 -05:00
target as ( select ? as userid , ? as source , ? as dest , ? as new_name ),
2018-11-28 14:21:36 -05:00
folders as ( SELECT id from arsse_folders join target on owner = userid and coalesce ( parent , 0 ) = source union select arsse_folders . id as id from arsse_folders join folders on arsse_folders . parent = folders . id )
2017-09-26 16:45:41 -04:00
" .
2018-10-26 14:58:04 -04:00
" SELECT
2018-12-13 19:47:51 -05:00
case when (( select dest from target ) is null or exists ( select id from arsse_folders join target on owner = userid and coalesce ( id , 0 ) = coalesce ( dest , 0 ))) then 1 else 0 end as extant ,
case when not exists ( select id from folders where id = coalesce (( select dest from target ), 0 )) then 1 else 0 end as valid ,
2018-12-20 21:23:06 -05:00
case when not exists ( select id from arsse_folders join target on coalesce ( parent , 0 ) = coalesce ( dest , 0 ) and name = coalesce (( select new_name from target ),( select name from arsse_folders join target on id = source ))) then 1 else 0 end as available
2017-12-07 15:18:25 -05:00
" ,
" str " ,
" strict int " ,
" int " ,
" str "
2017-09-26 16:45:41 -04:00
) -> run ( $user , $id , $parent , $name ) -> getRow ();
if ( ! $p [ 'extant' ]) {
// if the parent doesn't exist or doesn't below to the user, throw an exception
throw new Db\ExceptionInput ( " idMissing " , $errData );
} elseif ( ! $p [ 'valid' ]) {
// if using the desired parent would create a circular dependence, throw a different exception
throw new Db\ExceptionInput ( " circularDependence " , $errData );
} elseif ( ! $p [ 'available' ]) {
2017-09-28 10:16:24 -04:00
// if a folder with the same parent and name already exists, throw another different exception
2017-09-26 16:45:41 -04:00
throw new Db\ExceptionInput ( " constraintViolation " , [ " action " => $this -> caller (), " field " => ( is_null ( $name ) ? " parent " : " name " )]);
}
return $parent ;
}
2017-12-19 19:08:08 -05:00
protected function folderValidateName ( $name , bool $checkDuplicates = false , $parent = null ) : bool {
2017-09-26 16:45:41 -04:00
$info = ValueInfo :: str ( $name );
if ( $info & ( ValueInfo :: NULL | ValueInfo :: EMPTY )) {
2017-05-18 13:21:17 -04:00
throw new Db\ExceptionInput ( " missing " , [ " action " => $this -> caller (), " field " => " name " ]);
2017-09-26 16:45:41 -04:00
} elseif ( $info & ValueInfo :: WHITE ) {
2017-05-18 13:21:17 -04:00
throw new Db\ExceptionInput ( " whitespace " , [ " action " => $this -> caller (), " field " => " name " ]);
2017-09-26 16:45:41 -04:00
} elseif ( ! ( $info & ValueInfo :: VALID )) {
throw new Db\ExceptionInput ( " typeViolation " , [ " action " => $this -> caller (), " field " => " name " , 'type' => " string " ]);
2017-09-28 10:16:24 -04:00
} elseif ( $checkDuplicates ) {
// make sure that a folder with the same prospective name and parent does not already exist: if the parent is null,
// SQL will happily accept duplicates (null is not unique), so we must do this check ourselves
$parent = $parent ? $parent : null ;
2018-12-13 19:47:51 -05:00
if ( $this -> db -> prepare ( " SELECT count(*) from arsse_folders where coalesce(parent,0) = ? and name = ? " , " strict int " , " str " ) -> run ( $parent , $name ) -> getValue ()) {
2017-09-26 16:45:41 -04:00
throw new Db\ExceptionInput ( " constraintViolation " , [ " action " => $this -> caller (), " field " => " name " ]);
}
return true ;
2017-05-18 13:21:17 -04:00
} else {
return true ;
}
}
2017-09-30 12:52:05 -04:00
public function subscriptionAdd ( string $user , string $url , string $fetchUser = " " , string $fetchPassword = " " , bool $discover = true ) : int {
2017-08-29 10:50:31 -04:00
if ( ! Arsse :: $user -> authorize ( $user , __FUNCTION__ )) {
2017-07-20 22:40:09 -04:00
throw new User\ExceptionAuthz ( " notAuthorized " , [ " action " => __FUNCTION__ , " user " => $user ]);
}
2017-05-04 11:13:24 -04:00
// check to see if the feed exists
2017-12-06 22:26:06 -05:00
$check = $this -> db -> prepare ( " SELECT id from arsse_feeds where url = ? and username = ? and password = ? " , " str " , " str " , " str " );
2017-10-02 15:42:15 -04:00
$feedID = $check -> run ( $url , $fetchUser , $fetchPassword ) -> getValue ();
if ( $discover && is_null ( $feedID )) {
// if the feed doesn't exist, first perform discovery if requested and check for the existence of that URL
$url = Feed :: discover ( $url , $fetchUser , $fetchPassword );
$feedID = $check -> run ( $url , $fetchUser , $fetchPassword ) -> getValue ();
}
2017-08-29 10:50:31 -04:00
if ( is_null ( $feedID )) {
2017-10-02 15:42:15 -04:00
// if the feed still doesn't exist in the database, add it to the database; we do this unconditionally so as to lock SQLite databases for as little time as possible
2017-05-04 11:13:24 -04:00
$feedID = $this -> db -> prepare ( 'INSERT INTO arsse_feeds(url,username,password) values(?,?,?)' , 'str' , 'str' , 'str' ) -> run ( $url , $fetchUser , $fetchPassword ) -> lastId ();
try {
// perform an initial update on the newly added feed
2017-10-02 15:42:15 -04:00
$this -> feedUpdate ( $feedID , true );
2017-08-29 10:50:31 -04:00
} catch ( \Throwable $e ) {
2017-05-04 11:13:24 -04:00
// if the update fails, delete the feed we just added
2017-12-06 22:26:06 -05:00
$this -> db -> prepare ( 'DELETE from arsse_feeds where id = ?' , 'int' ) -> run ( $feedID );
2017-05-04 11:13:24 -04:00
throw $e ;
}
2017-03-31 18:48:24 -04:00
}
2017-05-04 11:13:24 -04:00
// Add the feed to the user's subscriptions and return the new subscription's ID.
2017-04-13 22:17:53 -04:00
return $this -> db -> prepare ( 'INSERT INTO arsse_subscriptions(owner,feed) values(?,?)' , 'str' , 'int' ) -> run ( $user , $feedID ) -> lastId ();
}
2017-10-31 18:09:16 -04:00
public function subscriptionList ( string $user , $folder = null , bool $recursive = true , int $id = null ) : Db\Result {
2017-08-29 10:50:31 -04:00
if ( ! Arsse :: $user -> authorize ( $user , __FUNCTION__ )) {
2017-07-20 22:40:09 -04:00
throw new User\ExceptionAuthz ( " notAuthorized " , [ " action " => __FUNCTION__ , " user " => $user ]);
}
2017-09-28 10:16:24 -04:00
// validate inputs
$folder = $this -> folderValidateId ( $user , $folder )[ 'id' ];
2017-06-04 18:00:18 -04:00
// create a complex query
$q = new Query (
2018-10-26 14:58:04 -04:00
" SELECT
2017-10-03 10:43:09 -04:00
arsse_subscriptions . id as id ,
2017-10-03 16:14:37 -04:00
feed , url , favicon , source , folder , pinned , err_count , err_msg , order_type , added ,
2017-10-11 12:55:50 -04:00
arsse_feeds . updated as updated ,
2017-06-01 18:12:08 -04:00
topmost . top as top_folder ,
2017-06-10 13:29:46 -04:00
coalesce ( arsse_subscriptions . title , arsse_feeds . title ) as title ,
2018-12-20 21:23:06 -05:00
( SELECT count ( * ) from arsse_articles where feed = arsse_subscriptions . feed ) - ( SELECT count ( * ) from arsse_marks where subscription = arsse_subscriptions . id and \ " read \" = 1) as unread
2018-10-26 14:58:04 -04:00
from arsse_subscriptions
2018-11-28 14:21:36 -05:00
join userdata on userid = owner
2018-10-26 14:58:04 -04:00
join arsse_feeds on feed = arsse_feeds . id
2017-07-07 15:25:47 -04:00
left join topmost on folder = f_id "
2017-06-04 18:00:18 -04:00
);
2018-12-14 09:18:56 -05:00
$nocase = $this -> db -> sqlToken ( " nocase " );
$q -> setOrder ( " pinned desc, coalesce(arsse_subscriptions.title, arsse_feeds.title) collate $nocase " );
2017-06-04 18:00:18 -04:00
// define common table expressions
2018-11-28 14:21:36 -05:00
$q -> setCTE ( " userdata(userid) " , " SELECT ? " , " str " , $user ); // the subject user; this way we only have to pass it to prepare() once
2017-06-04 18:00:18 -04:00
// topmost folders belonging to the user
2018-11-28 14:21:36 -05:00
$q -> setCTE ( " topmost(f_id,top) " , " SELECT id,id from arsse_folders join userdata on owner = userid where parent is null union select id,top from arsse_folders join topmost on parent=f_id " );
2017-09-28 10:16:24 -04:00
if ( $id ) {
2017-06-04 18:00:18 -04:00
// this condition facilitates the implementation of subscriptionPropertiesGet, which would otherwise have to duplicate the complex query; it takes precedence over a specified folder
// if an ID is specified, add a suitable WHERE condition and bindings
2017-12-06 22:26:06 -05:00
$q -> setWhere ( " arsse_subscriptions.id = ? " , " int " , $id );
2017-10-31 18:09:16 -04:00
} elseif ( $folder && $recursive ) {
// if a folder is specified and we're listing recursively, add a common table expression to list it and its children so that we select from the entire subtree
2017-12-06 22:26:06 -05:00
$q -> setCTE ( " folders(folder) " , " SELECT ? union select id from arsse_folders join folders on parent = folder " , " int " , $folder );
2017-06-04 18:00:18 -04:00
// add a suitable WHERE condition
$q -> setWhere ( " folder in (select folder from folders) " );
2017-10-31 18:09:16 -04:00
} elseif ( ! $recursive ) {
// if we're not listing recursively, match against only the specified folder (even if it is null)
2017-12-06 22:26:06 -05:00
$q -> setWhere ( " coalesce(folder,0) = ? " , " strict int " , $folder );
2017-06-04 18:00:18 -04:00
}
2017-07-07 11:49:54 -04:00
return $this -> db -> prepare ( $q -> getQuery (), $q -> getTypes ()) -> run ( $q -> getValues ());
2017-05-04 19:12:33 -04:00
}
2017-10-03 12:43:46 -04:00
public function subscriptionCount ( string $user , $folder = null ) : int {
if ( ! Arsse :: $user -> authorize ( $user , __FUNCTION__ )) {
throw new User\ExceptionAuthz ( " notAuthorized " , [ " action " => __FUNCTION__ , " user " => $user ]);
}
// validate inputs
$folder = $this -> folderValidateId ( $user , $folder )[ 'id' ];
// create a complex query
$q = new Query ( " SELECT count(*) from arsse_subscriptions " );
2017-12-06 22:26:06 -05:00
$q -> setWhere ( " owner = ? " , " str " , $user );
2017-10-03 12:43:46 -04:00
if ( $folder ) {
2017-12-06 22:26:06 -05:00
// if the specified folder exists, add a common table expression to list it and its children so that we select from the entire subtree
$q -> setCTE ( " folders(folder) " , " SELECT ? union select id from arsse_folders join folders on parent = folder " , " int " , $folder );
2017-10-03 12:43:46 -04:00
// add a suitable WHERE condition
$q -> setWhere ( " folder in (select folder from folders) " );
}
2017-12-19 19:08:08 -05:00
return ( int ) $this -> db -> prepare ( $q -> getQuery (), $q -> getTypes ()) -> run ( $q -> getValues ()) -> getValue ();
2017-10-03 12:43:46 -04:00
}
2017-09-28 10:16:24 -04:00
public function subscriptionRemove ( string $user , $id ) : bool {
2017-08-29 10:50:31 -04:00
if ( ! Arsse :: $user -> authorize ( $user , __FUNCTION__ )) {
2017-07-20 22:40:09 -04:00
throw new User\ExceptionAuthz ( " notAuthorized " , [ " action " => __FUNCTION__ , " user " => $user ]);
}
2017-09-28 10:16:24 -04:00
if ( ! ValueInfo :: id ( $id )) {
2017-10-05 17:42:12 -04:00
throw new Db\ExceptionInput ( " typeViolation " , [ " action " => __FUNCTION__ , " field " => " feed " , 'type' => " int > 0 " ]);
2017-09-28 10:16:24 -04:00
}
2017-12-06 22:26:06 -05:00
$changes = $this -> db -> prepare ( " DELETE from arsse_subscriptions where owner = ? and id = ? " , " str " , " int " ) -> run ( $user , $id ) -> changes ();
2017-08-29 10:50:31 -04:00
if ( ! $changes ) {
2017-09-28 10:16:24 -04:00
throw new Db\ExceptionInput ( " subjectMissing " , [ " action " => __FUNCTION__ , " field " => " feed " , 'id' => $id ]);
2017-07-20 22:40:09 -04:00
}
2017-05-11 18:00:35 -04:00
return true ;
2017-05-04 19:12:33 -04:00
}
2017-09-28 10:16:24 -04:00
public function subscriptionPropertiesGet ( string $user , $id ) : array {
2017-08-29 10:50:31 -04:00
if ( ! Arsse :: $user -> authorize ( $user , __FUNCTION__ )) {
2017-07-20 22:40:09 -04:00
throw new User\ExceptionAuthz ( " notAuthorized " , [ " action " => __FUNCTION__ , " user " => $user ]);
}
2017-09-28 10:16:24 -04:00
if ( ! ValueInfo :: id ( $id )) {
2017-10-05 17:42:12 -04:00
throw new Db\ExceptionInput ( " typeViolation " , [ " action " => __FUNCTION__ , " field " => " feed " , 'type' => " int > 0 " ]);
2017-09-28 10:16:24 -04:00
}
2017-10-31 18:09:16 -04:00
$sub = $this -> subscriptionList ( $user , null , true , ( int ) $id ) -> getRow ();
2017-08-29 10:50:31 -04:00
if ( ! $sub ) {
2017-07-20 22:40:09 -04:00
throw new Db\ExceptionInput ( " subjectMissing " , [ " action " => __FUNCTION__ , " field " => " feed " , 'id' => $id ]);
}
2017-05-04 19:12:33 -04:00
return $sub ;
}
2017-09-28 10:16:24 -04:00
public function subscriptionPropertiesSet ( string $user , $id , array $data ) : bool {
2017-08-29 10:50:31 -04:00
if ( ! Arsse :: $user -> authorize ( $user , __FUNCTION__ )) {
2017-07-20 22:40:09 -04:00
throw new User\ExceptionAuthz ( " notAuthorized " , [ " action " => __FUNCTION__ , " user " => $user ]);
}
2017-05-06 12:02:27 -04:00
$tr = $this -> db -> begin ();
2017-09-28 10:16:24 -04:00
// validate the ID
$id = $this -> subscriptionValidateId ( $user , $id , true )[ 'id' ];
2017-08-29 10:50:31 -04:00
if ( array_key_exists ( " folder " , $data )) {
2017-05-18 13:21:17 -04:00
// ensure the target folder exists and belong to the user
2017-09-26 16:45:41 -04:00
$data [ 'folder' ] = $this -> folderValidateId ( $user , $data [ 'folder' ])[ 'id' ];
2017-05-18 13:21:17 -04:00
}
2017-08-29 10:50:31 -04:00
if ( array_key_exists ( " title " , $data )) {
2017-05-21 10:10:36 -04:00
// if the title is null, this signals intended use of the default title; otherwise make sure it's not effectively an empty string
2017-08-29 10:50:31 -04:00
if ( ! is_null ( $data [ 'title' ])) {
2017-09-26 16:45:41 -04:00
$info = ValueInfo :: str ( $data [ 'title' ]);
if ( $info & ValueInfo :: EMPTY ) {
2017-07-20 22:40:09 -04:00
throw new Db\ExceptionInput ( " missing " , [ " action " => __FUNCTION__ , " field " => " title " ]);
2017-09-26 16:45:41 -04:00
} elseif ( $info & ValueInfo :: WHITE ) {
2017-07-20 22:40:09 -04:00
throw new Db\ExceptionInput ( " whitespace " , [ " action " => __FUNCTION__ , " field " => " title " ]);
2017-09-26 16:45:41 -04:00
} elseif ( ! ( $info & ValueInfo :: VALID )) {
throw new Db\ExceptionInput ( " typeViolation " , [ " action " => __FUNCTION__ , " field " => " title " , 'type' => " string " ]);
2017-07-20 22:40:09 -04:00
}
2017-05-21 10:10:36 -04:00
}
2017-05-18 13:21:17 -04:00
}
2017-05-04 19:12:33 -04:00
$valid = [
'title' => " str " ,
'folder' => " int " ,
'order_type' => " strict int " ,
'pinned' => " strict bool " ,
];
list ( $setClause , $setTypes , $setValues ) = $this -> generateSet ( $data , $valid );
2017-10-05 17:42:12 -04:00
if ( ! $setClause ) {
// if no changes would actually be applied, just return
return false ;
}
2017-12-06 22:26:06 -05:00
$out = ( bool ) $this -> db -> prepare ( " UPDATE arsse_subscriptions set $setClause , modified = CURRENT_TIMESTAMP where owner = ? and id = ? " , $setTypes , " str " , " int " ) -> run ( $setValues , $user , $id ) -> changes ();
2017-05-06 12:02:27 -04:00
$tr -> commit ();
return $out ;
2017-05-04 14:42:40 -04:00
}
2018-10-26 14:40:20 -04:00
public function subscriptionFavicon ( int $id , string $user = null ) : string {
$q = new Query ( " SELECT favicon from arsse_feeds join arsse_subscriptions on feed = arsse_feeds.id " );
$q -> setWhere ( " arsse_subscriptions.id = ? " , " int " , $id );
if ( isset ( $user )) {
if ( ! Arsse :: $user -> authorize ( $user , __FUNCTION__ )) {
throw new User\ExceptionAuthz ( " notAuthorized " , [ " action " => __FUNCTION__ , " user " => $user ]);
}
$q -> setWhere ( " arsse_subscriptions.owner = ? " , " str " , $user );
}
return ( string ) $this -> db -> prepare ( $q -> getQuery (), $q -> getTypes ()) -> run ( $q -> getValues ()) -> getValue ();
2017-11-10 12:02:59 -05:00
}
2017-09-28 10:16:24 -04:00
protected function subscriptionValidateId ( string $user , $id , bool $subject = false ) : array {
if ( ! ValueInfo :: id ( $id )) {
2017-10-05 17:42:12 -04:00
throw new Db\ExceptionInput ( " typeViolation " , [ " action " => $this -> caller (), " field " => " feed " , 'type' => " int > 0 " ]);
2017-09-28 10:16:24 -04:00
}
2017-12-06 22:26:06 -05:00
$out = $this -> db -> prepare ( " SELECT id,feed from arsse_subscriptions where id = ? and owner = ? " , " int " , " str " ) -> run ( $id , $user ) -> getRow ();
2017-08-29 10:50:31 -04:00
if ( ! $out ) {
2017-09-28 10:16:24 -04:00
throw new Db\ExceptionInput ( $subject ? " subjectMissing " : " idMissing " , [ " action " => $this -> caller (), " field " => " subscription " , 'id' => $id ]);
2017-07-20 22:40:09 -04:00
}
2017-05-18 23:03:33 -04:00
return $out ;
}
public function feedListStale () : array {
2017-08-02 18:27:04 -04:00
$feeds = $this -> db -> query ( " SELECT id from arsse_feeds where next_fetch <= CURRENT_TIMESTAMP " ) -> getAll ();
2017-08-29 10:50:31 -04:00
return array_column ( $feeds , 'id' );
2017-05-18 23:03:33 -04:00
}
2018-10-26 14:58:04 -04:00
2017-10-02 15:42:15 -04:00
public function feedUpdate ( $feedID , bool $throwError = false ) : bool {
2017-05-06 12:02:27 -04:00
// check to make sure the feed exists
2017-09-28 10:16:24 -04:00
if ( ! ValueInfo :: id ( $feedID )) {
throw new Db\ExceptionInput ( " typeViolation " , [ " action " => __FUNCTION__ , " field " => " feed " , 'id' => $feedID , 'type' => " int > 0 " ]);
}
2017-12-06 22:26:06 -05:00
$f = $this -> db -> prepare ( " SELECT url, username, password, modified, etag, err_count, scrape FROM arsse_feeds where id = ? " , " int " ) -> run ( $feedID ) -> getRow ();
2017-08-29 10:50:31 -04:00
if ( ! $f ) {
2017-07-20 22:40:09 -04:00
throw new Db\ExceptionInput ( " subjectMissing " , [ " action " => __FUNCTION__ , " field " => " feed " , 'id' => $feedID ]);
}
2017-07-17 14:56:50 -04:00
// determine whether the feed's items should be scraped for full content from the source Web site
$scrape = ( Arsse :: $conf -> fetchEnableScraping && $f [ 'scrape' ]);
2017-05-06 12:02:27 -04:00
// the Feed object throws an exception when there are problems, but that isn't ideal
// here. When an exception is thrown it should update the database with the
// error instead of failing; if other exceptions are thrown, we should simply roll back
2017-04-09 18:15:00 -04:00
try {
2017-10-02 15:42:15 -04:00
$feed = new Feed (( int ) $feedID , $f [ 'url' ], ( string ) Date :: transform ( $f [ 'modified' ], " http " , " sql " ), $f [ 'etag' ], $f [ 'username' ], $f [ 'password' ], $scrape );
2017-08-29 10:50:31 -04:00
if ( ! $feed -> modified ) {
2017-05-06 12:02:27 -04:00
// if the feed hasn't changed, just compute the next fetch time and record it
2017-12-06 22:26:06 -05:00
$this -> db -> prepare ( " UPDATE arsse_feeds SET updated = CURRENT_TIMESTAMP, next_fetch = ? WHERE id = ? " , 'datetime' , 'int' ) -> run ( $feed -> nextFetch , $feedID );
2017-04-15 22:07:22 -04:00
return false ;
2017-04-20 21:59:12 -04:00
}
2017-05-06 12:02:27 -04:00
} catch ( Feed\Exception $e ) {
// update the database with the resultant error and the next fetch time, incrementing the error count
2017-04-30 17:54:29 -04:00
$this -> db -> prepare (
2017-12-06 22:26:06 -05:00
" UPDATE arsse_feeds SET updated = CURRENT_TIMESTAMP, next_fetch = ?, err_count = err_count + 1, err_msg = ? WHERE id = ? " ,
2017-12-07 15:18:25 -05:00
'datetime' ,
'str' ,
'int'
2017-08-29 10:50:31 -04:00
) -> run ( Feed :: nextFetchOnError ( $f [ 'err_count' ]), $e -> getMessage (), $feedID );
if ( $throwError ) {
2017-07-20 22:40:09 -04:00
throw $e ;
}
2017-05-06 12:02:27 -04:00
return false ;
}
//prepare the necessary statements to perform the update
2017-08-29 10:50:31 -04:00
if ( sizeof ( $feed -> newItems ) || sizeof ( $feed -> changedItems )) {
2017-06-03 14:08:33 -04:00
$qInsertEnclosure = $this -> db -> prepare ( " INSERT INTO arsse_enclosures(article,url,type) values(?,?,?) " , 'int' , 'str' , 'str' );
$qInsertCategory = $this -> db -> prepare ( " INSERT INTO arsse_categories(article,name) values(?,?) " , 'int' , 'str' );
$qInsertEdition = $this -> db -> prepare ( " INSERT INTO arsse_editions(article) values(?) " , 'int' );
2017-05-06 12:02:27 -04:00
}
2017-08-29 10:50:31 -04:00
if ( sizeof ( $feed -> newItems )) {
2017-05-06 12:02:27 -04:00
$qInsertArticle = $this -> db -> prepare (
2017-06-03 17:34:37 -04:00
" INSERT INTO arsse_articles(url,title,author,published,edited,guid,content,url_title_hash,url_content_hash,title_content_hash,feed) values(?,?,?,?,?,?,?,?,?,?,?) " ,
2017-12-07 15:18:25 -05:00
'str' ,
'str' ,
'str' ,
'datetime' ,
'datetime' ,
'str' ,
'str' ,
'str' ,
'str' ,
'str' ,
'int'
2017-05-06 12:02:27 -04:00
);
}
2017-08-29 10:50:31 -04:00
if ( sizeof ( $feed -> changedItems )) {
2017-12-06 22:26:06 -05:00
$qDeleteEnclosures = $this -> db -> prepare ( " DELETE FROM arsse_enclosures WHERE article = ? " , 'int' );
$qDeleteCategories = $this -> db -> prepare ( " DELETE FROM arsse_categories WHERE article = ? " , 'int' );
2018-12-20 21:23:06 -05:00
$qClearReadMarks = $this -> db -> prepare ( " UPDATE arsse_marks SET \" read \" = 0, modified = CURRENT_TIMESTAMP WHERE article = ? and \" read \" = 1 " , 'int' );
2017-05-06 12:02:27 -04:00
$qUpdateArticle = $this -> db -> prepare (
2017-12-06 22:26:06 -05:00
" UPDATE arsse_articles SET url = ?, title = ?, author = ?, published = ?, edited = ?, modified = CURRENT_TIMESTAMP, guid = ?, content = ?, url_title_hash = ?, url_content_hash = ?, title_content_hash = ? WHERE id = ? " ,
2017-12-07 15:18:25 -05:00
'str' ,
'str' ,
'str' ,
'datetime' ,
'datetime' ,
'str' ,
'str' ,
'str' ,
'str' ,
'str' ,
'int'
2017-05-06 12:02:27 -04:00
);
}
// actually perform updates
2017-12-01 16:37:58 -05:00
$tr = $this -> db -> begin ();
2017-08-29 10:50:31 -04:00
foreach ( $feed -> newItems as $article ) {
2017-05-06 12:02:27 -04:00
$articleID = $qInsertArticle -> run (
$article -> url ,
$article -> title ,
$article -> author ,
$article -> publishedDate ,
$article -> updatedDate ,
$article -> id ,
$article -> content ,
$article -> urlTitleHash ,
$article -> urlContentHash ,
$article -> titleContentHash ,
2017-04-13 22:17:53 -04:00
$feedID
2017-05-06 12:02:27 -04:00
) -> lastId ();
2017-08-29 10:50:31 -04:00
if ( $article -> enclosureUrl ) {
$qInsertEnclosure -> run ( $articleID , $article -> enclosureUrl , $article -> enclosureType );
2017-06-03 14:08:33 -04:00
}
2017-08-29 10:50:31 -04:00
foreach ( $article -> categories as $c ) {
2017-05-06 12:02:27 -04:00
$qInsertCategory -> run ( $articleID , $c );
}
$qInsertEdition -> run ( $articleID );
}
2017-08-29 10:50:31 -04:00
foreach ( $feed -> changedItems as $articleID => $article ) {
2017-05-06 12:02:27 -04:00
$qUpdateArticle -> run (
$article -> url ,
$article -> title ,
$article -> author ,
$article -> publishedDate ,
$article -> updatedDate ,
$article -> id ,
$article -> content ,
$article -> urlTitleHash ,
$article -> urlContentHash ,
$article -> titleContentHash ,
$articleID
2017-04-13 22:17:53 -04:00
);
2017-06-03 14:08:33 -04:00
$qDeleteEnclosures -> run ( $articleID );
2017-05-06 12:02:27 -04:00
$qDeleteCategories -> run ( $articleID );
2017-08-29 10:50:31 -04:00
if ( $article -> enclosureUrl ) {
$qInsertEnclosure -> run ( $articleID , $article -> enclosureUrl , $article -> enclosureType );
2017-06-03 14:08:33 -04:00
}
2017-08-29 10:50:31 -04:00
foreach ( $article -> categories as $c ) {
2017-05-06 12:02:27 -04:00
$qInsertCategory -> run ( $articleID , $c );
}
$qInsertEdition -> run ( $articleID );
$qClearReadMarks -> run ( $articleID );
2017-03-31 18:48:24 -04:00
}
2017-05-06 12:02:27 -04:00
// lastly update the feed database itself with updated information.
$this -> db -> prepare (
2017-12-06 22:26:06 -05:00
" UPDATE arsse_feeds SET url = ?, title = ?, favicon = ?, source = ?, updated = CURRENT_TIMESTAMP, modified = ?, etag = ?, err_count = 0, err_msg = '', next_fetch = ?, size = ? WHERE id = ? " ,
2017-12-07 15:18:25 -05:00
'str' ,
'str' ,
'str' ,
'str' ,
'datetime' ,
'str' ,
'datetime' ,
'int' ,
'int'
2017-05-06 12:02:27 -04:00
) -> run (
$feed -> data -> feedUrl ,
$feed -> data -> title ,
$feed -> favicon ,
$feed -> data -> siteUrl ,
$feed -> lastModified ,
$feed -> resource -> getEtag (),
$feed -> nextFetch ,
2017-08-14 20:07:31 -04:00
sizeof ( $feed -> data -> items ),
2017-05-06 12:02:27 -04:00
$feedID
);
$tr -> commit ();
2017-04-13 22:17:53 -04:00
return true ;
2017-03-31 18:48:24 -04:00
}
2017-04-15 22:07:22 -04:00
2017-08-02 18:27:04 -04:00
public function feedCleanup () : bool {
$tr = $this -> begin ();
// first unmark any feeds which are no longer orphaned
2017-12-06 22:26:06 -05:00
$this -> db -> query ( " UPDATE arsse_feeds set orphaned = null where exists(SELECT id from arsse_subscriptions where feed = arsse_feeds.id) " );
2017-08-02 18:27:04 -04:00
// next mark any newly orphaned feeds with the current date and time
2017-12-06 22:26:06 -05:00
$this -> db -> query ( " UPDATE arsse_feeds set orphaned = CURRENT_TIMESTAMP where orphaned is null and not exists(SELECT id from arsse_subscriptions where feed = arsse_feeds.id) " );
2017-08-02 18:27:04 -04:00
// finally delete feeds that have been orphaned longer than the retention period
$limit = Date :: normalize ( " now " );
2017-08-29 10:50:31 -04:00
if ( Arsse :: $conf -> purgeFeeds ) {
2017-08-02 18:27:04 -04:00
// if there is a retention period specified, compute it; otherwise feed are deleted immediatelty
2018-01-02 16:27:58 -05:00
$limit = Date :: sub ( Arsse :: $conf -> purgeFeeds , $limit );
2017-08-02 18:27:04 -04:00
}
$out = ( bool ) $this -> db -> prepare ( " DELETE from arsse_feeds where orphaned <= ? " , " datetime " ) -> run ( $limit );
// commit changes and return
$tr -> commit ();
return $out ;
}
2017-05-30 20:18:04 -04:00
public function feedMatchLatest ( int $feedID , int $count ) : Db\Result {
2017-04-22 23:40:57 -04:00
return $this -> db -> prepare (
2017-12-06 22:26:06 -05:00
" SELECT id, edited, guid, url_title_hash, url_content_hash, title_content_hash FROM arsse_articles WHERE feed = ? ORDER BY modified desc, id desc limit ? " ,
2017-12-07 15:18:25 -05:00
'int' ,
'int'
2017-04-22 23:40:57 -04:00
) -> run ( $feedID , $count );
}
2017-05-30 20:18:04 -04:00
public function feedMatchIds ( int $feedID , array $ids = [], array $hashesUT = [], array $hashesUC = [], array $hashesTC = []) : Db\Result {
2017-04-22 23:40:57 -04:00
// compile SQL IN() clauses and necessary type bindings for the four identifier lists
2017-08-29 10:50:31 -04:00
list ( $cId , $tId ) = $this -> generateIn ( $ids , " str " );
2017-04-22 23:40:57 -04:00
list ( $cHashUT , $tHashUT ) = $this -> generateIn ( $hashesUT , " str " );
list ( $cHashUC , $tHashUC ) = $this -> generateIn ( $hashesUC , " str " );
list ( $cHashTC , $tHashTC ) = $this -> generateIn ( $hashesTC , " str " );
// perform the query
return $articles = $this -> db -> prepare (
2017-12-06 22:26:06 -05:00
" SELECT id, edited, guid, url_title_hash, url_content_hash, title_content_hash FROM arsse_articles WHERE feed = ? and (guid in( $cId ) or url_title_hash in( $cHashUT ) or url_content_hash in( $cHashUC ) or title_content_hash in( $cHashTC )) " ,
2017-12-07 15:18:25 -05:00
'int' ,
$tId ,
$tHashUT ,
$tHashUC ,
$tHashTC
2017-04-22 23:40:57 -04:00
) -> run ( $feedID , $ids , $hashesUT , $hashesUC , $hashesTC );
}
2017-06-04 08:15:10 -04:00
2018-12-04 20:41:21 -05:00
protected function articleQuery ( string $user , Context $context , array $cols = [ " id " ]) : Query {
$greatest = $this -> db -> sqlToken ( " greatest " );
// prepare the output column list
$colDefs = [
2018-12-05 17:28:11 -05:00
'id' => " arsse_articles.id " ,
'edition' => " latest_editions.edition " ,
'url' => " arsse_articles.url " ,
'title' => " arsse_articles.title " ,
'author' => " arsse_articles.author " ,
'content' => " arsse_articles.content " ,
'guid' => " arsse_articles.guid " ,
2018-12-04 20:41:21 -05:00
'fingerprint' => " arsse_articles.url_title_hash || ':' || arsse_articles.url_content_hash || ':' || arsse_articles.title_content_hash " ,
'subscription' => " arsse_subscriptions.id " ,
'feed' => " arsse_subscriptions.feed " ,
'starred' => " coalesce(arsse_marks.starred,0) " ,
'unread' => " abs(coalesce(arsse_marks.read,0) - 1) " ,
'note' => " coalesce(arsse_marks.note,'') " ,
2018-12-05 17:28:11 -05:00
'published_date' => " arsse_articles.published " ,
2018-12-04 20:41:21 -05:00
'edited_date' => " arsse_articles.edited " ,
'modified_date' => " arsse_articles.modified " ,
'marked_date' => " $greatest (arsse_articles.modified, coalesce(arsse_marks.modified, '0001-01-01 00:00:00'), coalesce(arsse_label_members.modified, '0001-01-01 00:00:00')) " ,
'subscription_title' => " coalesce(arsse_subscriptions.title, arsse_feeds.title) " ,
'media_url' => " arsse_enclosures.url " ,
'media_type' => " arsse_enclosures.type " ,
];
if ( ! $cols ) {
// if no columns are specified return a count
$columns = " count(distinct arsse_articles.id) as count " ;
} else {
$columns = [];
foreach ( $cols as $col ) {
$col = trim ( strtolower ( $col ));
if ( ! isset ( $colDefs [ $col ])) {
continue ;
}
$columns [] = $colDefs [ $col ] . " as " . $col ;
}
$columns = implode ( " , " , $columns );
2017-07-20 22:40:09 -04:00
}
2018-12-04 20:41:21 -05:00
// define the basic query, to which we add lots of stuff where necessary
2017-06-18 10:23:37 -04:00
$q = new Query (
2018-12-04 20:41:21 -05:00
" SELECT
$columns
from arsse_articles
join arsse_subscriptions on arsse_subscriptions . feed = arsse_articles . feed and arsse_subscriptions . owner = ?
join arsse_feeds on arsse_subscriptions . feed = arsse_feeds . id
left join arsse_marks on arsse_marks . subscription = arsse_subscriptions . id and arsse_marks . article = arsse_articles . id
left join arsse_enclosures on arsse_enclosures . article = arsse_articles . id
left join arsse_label_members on arsse_label_members . subscription = arsse_subscriptions . id and arsse_label_members . article = arsse_articles . id and arsse_label_members . assigned = 1
left join arsse_labels on arsse_labels . owner = arsse_subscriptions . owner and arsse_label_members . label = arsse_labels . id " ,
2018-12-05 17:28:11 -05:00
[ " str " ],
[ $user ]
2017-06-18 10:23:37 -04:00
);
2018-12-04 20:41:21 -05:00
$q -> setCTE ( " latest_editions(article,edition) " , " SELECT article,max(id) from arsse_editions group by article " , [], [], " join latest_editions on arsse_articles.id = latest_editions.article " );
if ( $cols ) {
// if there are no output columns requested we're getting a count and should not group, but otherwise we should
$q -> setGroup ( " arsse_articles.id " , " arsse_marks.note " , " arsse_enclosures.url " , " arsse_enclosures.type " , " arsse_subscriptions.title " , " arsse_feeds.title " , " arsse_subscriptions.id " , " arsse_marks.modified " , " arsse_label_members.modified " , " arsse_marks.read " , " arsse_marks.starred " , " latest_editions.edition " );
}
2017-07-07 11:49:54 -04:00
$q -> setLimit ( $context -> limit , $context -> offset );
2017-08-29 10:50:31 -04:00
if ( $context -> subscription ()) {
2017-06-18 10:23:37 -04:00
// if a subscription is specified, make sure it exists
2018-12-04 20:41:21 -05:00
$this -> subscriptionValidateId ( $user , $context -> subscription );
// filter for the subscription
$q -> setWhere ( " arsse_subscriptions.id = ? " , " int " , $context -> subscription );
2017-08-29 10:50:31 -04:00
} elseif ( $context -> folder ()) {
2017-06-18 10:23:37 -04:00
// if a folder is specified, make sure it exists
$this -> folderValidateId ( $user , $context -> folder );
// if it does exist, add a common table expression to list it and its children so that we select from the entire subtree
2017-12-06 22:26:06 -05:00
$q -> setCTE ( " folders(folder) " , " SELECT ? union select id from arsse_folders join folders on parent = folder " , " int " , $context -> folder );
2018-12-04 20:41:21 -05:00
// limit subscriptions to the listed folders
$q -> setWhere ( " arsse_subscriptions.folder in (select folder from folders) " );
2017-11-16 15:56:14 -05:00
} elseif ( $context -> folderShallow ()) {
// if a shallow folder is specified, make sure it exists
$this -> folderValidateId ( $user , $context -> folderShallow );
2018-12-04 20:41:21 -05:00
// if it does exist, filter for that folder only
$q -> setWhere ( " coalesce(arsse_subscriptions.folder,0) = ? " , " int " , $context -> folderShallow );
2017-10-06 20:26:22 -04:00
}
if ( $context -> edition ()) {
2018-12-04 20:41:21 -05:00
// if an edition is specified, first validate it, then filter for it
$this -> articleValidateEdition ( $user , $context -> edition );
$q -> setWhere ( " latest_editions.edition = ? " , " int " , $context -> edition );
2017-10-06 20:26:22 -04:00
} elseif ( $context -> article ()) {
2018-12-04 20:41:21 -05:00
// if an article is specified, first validate it, then filter for it
$this -> articleValidateId ( $user , $context -> article );
2017-12-06 22:26:06 -05:00
$q -> setWhere ( " arsse_articles.id = ? " , " int " , $context -> article );
2017-10-06 20:26:22 -04:00
}
if ( $context -> editions ()) {
2018-12-04 20:41:21 -05:00
// if multiple specific editions have been requested, filter against the list
2017-10-06 20:26:22 -04:00
if ( ! $context -> editions ) {
throw new Db\ExceptionInput ( " tooShort " , [ 'field' => " editions " , 'action' => __FUNCTION__ , 'min' => 1 ]); // must have at least one array element
2017-11-06 23:32:29 -05:00
} elseif ( sizeof ( $context -> editions ) > self :: LIMIT_ARTICLES ) {
throw new Db\ExceptionInput ( " tooLong " , [ 'field' => " editions " , 'action' => __FUNCTION__ , 'max' => self :: LIMIT_ARTICLES ]); // @codeCoverageIgnore
2017-10-06 20:26:22 -04:00
}
list ( $inParams , $inTypes ) = $this -> generateIn ( $context -> editions , " int " );
2018-12-04 20:41:21 -05:00
$q -> setWhere ( " latest_editions.edition in ( $inParams ) " , $inTypes , $context -> editions );
2017-10-06 20:26:22 -04:00
} elseif ( $context -> articles ()) {
// if multiple specific articles have been requested, prepare a CTE to list them and their articles
if ( ! $context -> articles ) {
throw new Db\ExceptionInput ( " tooShort " , [ 'field' => " articles " , 'action' => __FUNCTION__ , 'min' => 1 ]); // must have at least one array element
2017-11-06 23:32:29 -05:00
} elseif ( sizeof ( $context -> articles ) > self :: LIMIT_ARTICLES ) {
throw new Db\ExceptionInput ( " tooLong " , [ 'field' => " articles " , 'action' => __FUNCTION__ , 'max' => self :: LIMIT_ARTICLES ]); // @codeCoverageIgnore
2017-10-06 20:26:22 -04:00
}
list ( $inParams , $inTypes ) = $this -> generateIn ( $context -> articles , " int " );
2018-12-04 20:41:21 -05:00
$q -> setWhere ( " arsse_articles.id in ( $inParams ) " , $inTypes , $context -> articles );
2017-06-18 10:23:37 -04:00
}
2017-10-13 00:04:26 -04:00
// filter based on label by ID or name
2017-11-16 15:56:14 -05:00
if ( $context -> labelled ()) {
// any label (true) or no label (false)
2018-12-04 20:41:21 -05:00
$isOrIsNot = ( ! $context -> labelled ? " is " : " is not " );
$q -> setWhere ( " arsse_labels.id $isOrIsNot null " );
2017-11-16 15:56:14 -05:00
} elseif ( $context -> label () || $context -> labelName ()) {
// specific label ID or name
2017-10-13 00:04:26 -04:00
if ( $context -> label ()) {
$id = $this -> labelValidateId ( $user , $context -> label , false )[ 'id' ];
} else {
$id = $this -> labelValidateId ( $user , $context -> labelName , true )[ 'id' ];
}
2018-12-04 20:41:21 -05:00
$q -> setWhere ( " arsse_labels.id = ? " , " int " , $id );
2017-10-13 00:04:26 -04:00
}
2017-11-18 16:06:49 -05:00
// filter based on article or edition offset
if ( $context -> oldestArticle ()) {
$q -> setWhere ( " arsse_articles.id >= ? " , " int " , $context -> oldestArticle );
}
if ( $context -> latestArticle ()) {
$q -> setWhere ( " arsse_articles.id <= ? " , " int " , $context -> latestArticle );
}
2017-08-29 10:50:31 -04:00
if ( $context -> oldestEdition ()) {
2018-12-04 20:41:21 -05:00
$q -> setWhere ( " latest_editions.edition >= ? " , " int " , $context -> oldestEdition );
2017-07-20 22:40:09 -04:00
}
2017-08-29 10:50:31 -04:00
if ( $context -> latestEdition ()) {
2018-12-04 20:41:21 -05:00
$q -> setWhere ( " latest_editions.edition <= ? " , " int " , $context -> latestEdition );
2017-07-20 22:40:09 -04:00
}
2017-11-17 17:52:00 -05:00
// filter based on time at which an article was changed by feed updates (modified), or by user action (marked)
2017-08-29 10:50:31 -04:00
if ( $context -> modifiedSince ()) {
2018-12-04 20:41:21 -05:00
$q -> setWhere ( " arsse_articles.modified >= ? " , " datetime " , $context -> modifiedSince );
2017-07-20 22:40:09 -04:00
}
2017-08-29 10:50:31 -04:00
if ( $context -> notModifiedSince ()) {
2018-12-04 20:41:21 -05:00
$q -> setWhere ( " arsse_articles.modified <= ? " , " datetime " , $context -> notModifiedSince );
2017-07-20 22:40:09 -04:00
}
2017-11-17 17:52:00 -05:00
if ( $context -> markedSince ()) {
2018-12-04 20:41:21 -05:00
$q -> setWhere ( $colDefs [ 'marked_date' ] . " >= ? " , " datetime " , $context -> markedSince );
2017-11-17 17:52:00 -05:00
}
if ( $context -> notMarkedSince ()) {
2018-12-04 20:41:21 -05:00
$q -> setWhere ( $colDefs [ 'marked_date' ] . " <= ? " , " datetime " , $context -> notMarkedSince );
2017-11-17 17:52:00 -05:00
}
2017-06-18 10:23:37 -04:00
// filter for un/read and un/starred status if specified
2017-08-29 10:50:31 -04:00
if ( $context -> unread ()) {
2018-12-04 20:41:21 -05:00
$q -> setWhere ( " coalesce(arsse_marks.read,0) = ? " , " bool " , ! $context -> unread );
2017-07-20 22:40:09 -04:00
}
2017-08-29 10:50:31 -04:00
if ( $context -> starred ()) {
2018-12-04 20:41:21 -05:00
$q -> setWhere ( " coalesce(arsse_marks.starred,0) = ? " , " bool " , $context -> starred );
2017-07-20 22:40:09 -04:00
}
2017-11-17 19:08:35 -05:00
// filter based on whether the article has a note
if ( $context -> annotated ()) {
2018-12-04 20:41:21 -05:00
$comp = ( $context -> annotated ) ? " <> " : " = " ;
$q -> setWhere ( " coalesce(arsse_marks.note,'') $comp '' " );
2017-11-17 19:08:35 -05:00
}
2017-10-06 20:26:22 -04:00
// return the query
return $q ;
}
2018-12-04 20:41:21 -05:00
protected function contextChunk ( Context $context ) : array {
2017-11-06 23:32:29 -05:00
$exception = " " ;
if ( $context -> editions ()) {
// editions take precedence over articles
if ( sizeof ( $context -> editions ) > self :: LIMIT_ARTICLES ) {
$exception = " editions " ;
}
} elseif ( $context -> articles ()) {
if ( sizeof ( $context -> articles ) > self :: LIMIT_ARTICLES ) {
$exception = " articles " ;
}
}
if ( $exception ) {
$out = [];
$list = array_chunk ( $context -> $exception , self :: LIMIT_ARTICLES );
foreach ( $list as $chunk ) {
$out [] = ( clone $context ) -> $exception ( $chunk );
}
return $out ;
} else {
return [];
}
}
2018-12-05 16:55:14 -05:00
public function articleList ( string $user , Context $context = null , array $fields = [ " id " ]) : Db\Result {
2017-10-06 20:26:22 -04:00
if ( ! Arsse :: $user -> authorize ( $user , __FUNCTION__ )) {
throw new User\ExceptionAuthz ( " notAuthorized " , [ " action " => __FUNCTION__ , " user " => $user ]);
}
$context = $context ? ? new Context ;
2017-11-06 23:32:29 -05:00
// if the context has more articles or editions than we can process in one query, perform a series of queries and return an aggregate result
2018-12-04 20:41:21 -05:00
if ( $contexts = $this -> contextChunk ( $context )) {
2017-11-06 23:32:29 -05:00
$out = [];
$tr = $this -> begin ();
foreach ( $contexts as $context ) {
2017-11-17 17:52:00 -05:00
$out [] = $this -> articleList ( $user , $context , $fields );
2017-11-06 23:32:29 -05:00
}
$tr -> commit ();
return new Db\ResultAggregate ( ... $out );
} else {
2018-12-05 16:55:14 -05:00
$q = $this -> articleQuery ( $user , $context , $fields );
$q -> setOrder ( " arsse_articles.edited " . ( $context -> reverse ? " desc " : " " ));
$q -> setOrder ( " latest_editions.edition " . ( $context -> reverse ? " desc " : " " ));
2017-11-06 23:32:29 -05:00
// perform the query and return results
return $this -> db -> prepare ( $q -> getQuery (), $q -> getTypes ()) -> run ( $q -> getValues ());
}
2017-06-18 10:23:37 -04:00
}
2017-10-13 17:05:06 -04:00
public function articleCount ( string $user , Context $context = null ) : int {
if ( ! Arsse :: $user -> authorize ( $user , __FUNCTION__ )) {
throw new User\ExceptionAuthz ( " notAuthorized " , [ " action " => __FUNCTION__ , " user " => $user ]);
}
$context = $context ? ? new Context ;
2017-11-06 23:32:29 -05:00
// if the context has more articles or editions than we can process in one query, perform a series of queries and return an aggregate result
2018-12-04 20:41:21 -05:00
if ( $contexts = $this -> contextChunk ( $context )) {
2017-11-06 23:32:29 -05:00
$out = 0 ;
$tr = $this -> begin ();
foreach ( $contexts as $context ) {
$out += $this -> articleCount ( $user , $context );
}
$tr -> commit ();
return $out ;
} else {
2018-12-04 20:41:21 -05:00
$q = $this -> articleQuery ( $user , $context , []);
2017-12-19 19:08:08 -05:00
return ( int ) $this -> db -> prepare ( $q -> getQuery (), $q -> getTypes ()) -> run ( $q -> getValues ()) -> getValue ();
2017-11-06 23:32:29 -05:00
}
2017-10-13 17:05:06 -04:00
}
2017-10-20 18:17:47 -04:00
public function articleMark ( string $user , array $data , Context $context = null ) : int {
2017-08-29 10:50:31 -04:00
if ( ! Arsse :: $user -> authorize ( $user , __FUNCTION__ )) {
2017-07-20 22:40:09 -04:00
throw new User\ExceptionAuthz ( " notAuthorized " , [ " action " => __FUNCTION__ , " user " => $user ]);
}
2018-12-04 20:41:21 -05:00
$data = [
'read' => $data [ 'read' ] ? ? null ,
'starred' => $data [ 'starred' ] ? ? null ,
'note' => $data [ 'note' ] ? ? null ,
];
if ( ! isset ( $data [ 'read' ]) && ! isset ( $data [ 'starred' ]) && ! isset ( $data [ 'note' ])) {
return 0 ;
}
2017-10-13 00:04:26 -04:00
$context = $context ? ? new Context ;
2017-11-06 23:32:29 -05:00
// if the context has more articles or editions than we can process in one query, perform a series of queries and return an aggregate result
2018-12-04 20:41:21 -05:00
if ( $contexts = $this -> contextChunk ( $context )) {
2017-11-06 23:32:29 -05:00
$out = 0 ;
$tr = $this -> begin ();
foreach ( $contexts as $context ) {
$out += $this -> articleMark ( $user , $data , $context );
2017-07-20 22:40:09 -04:00
}
2017-11-06 23:32:29 -05:00
$tr -> commit ();
return $out ;
} else {
$tr = $this -> begin ();
2018-12-04 20:41:21 -05:00
$out = 0 ;
if ( $data [ 'read' ] || $data [ 'starred' ] || strlen ( $data [ 'note' ] ? ? " " )) {
// first prepare a query to insert any missing marks rows for the articles we want to mark
// but only insert new mark records if we're setting at least one "positive" mark
2018-12-21 12:35:10 -05:00
$q = $this -> articleQuery ( $user , $context , [ " id " , " subscription " , " note " ]);
2018-12-04 20:41:21 -05:00
$q -> setWhere ( " arsse_marks.starred is null " ); // null means there is no marks row for the article
2018-12-21 12:35:10 -05:00
$this -> db -> prepare ( " INSERT INTO arsse_marks(article,subscription,note) " . $q -> getQuery (), $q -> getTypes ()) -> run ( $q -> getValues ());
2017-11-06 23:32:29 -05:00
}
2018-12-04 20:41:21 -05:00
if ( isset ( $data [ 'read' ]) && ( isset ( $data [ 'starred' ]) || isset ( $data [ 'note' ])) && ( $context -> edition () || $context -> editions ())) {
// if marking by edition both read and something else, do separate marks for starred and note than for read
// marking as read is ignored if the edition is not the latest, but the same is not true of the other two marks
$this -> db -> query ( " UPDATE arsse_marks set touched = 0 where touched <> 0 " );
// set read marks
$q = $this -> articleQuery ( $user , $context , [ " id " , " subscription " ]);
$q -> setWhere ( " arsse_marks.read <> coalesce(?,arsse_marks.read) " , " bool " , $data [ 'read' ]);
$q -> pushCTE ( " target_articles(article,subscription) " );
2018-12-20 21:23:06 -05:00
$q -> setBody ( " UPDATE arsse_marks set \" read \" = ?, touched = 1 where article in(select article from target_articles) and subscription in(select distinct subscription from target_articles) " , " bool " , $data [ 'read' ]);
2018-12-04 20:41:21 -05:00
$this -> db -> prepare ( $q -> getQuery (), $q -> getTypes ()) -> run ( $q -> getValues ());
// get the articles associated with the requested editions
if ( $context -> edition ()) {
$context -> article ( $this -> articleValidateEdition ( $user , $context -> edition )[ 'article' ]) -> edition ( null );
} else {
$context -> articles ( $this -> editionArticle ( ... $context -> editions )) -> editions ( null );
}
// set starred and/or note marks (unless all requested editions actually do not exist)
if ( $context -> article || $context -> articles ) {
$q = $this -> articleQuery ( $user , $context , [ " id " , " subscription " ]);
$q -> setWhere ( " (arsse_marks.note <> coalesce(?,arsse_marks.note) or arsse_marks.starred <> coalesce(?,arsse_marks.starred)) " , [ " str " , " bool " ], [ $data [ 'note' ], $data [ 'starred' ]]);
$q -> pushCTE ( " target_articles(article,subscription) " );
$data = array_filter ( $data , function ( $v ) {
return isset ( $v );
});
list ( $set , $setTypes , $setValues ) = $this -> generateSet ( $data , [ 'starred' => " bool " , 'note' => " str " ]);
$q -> setBody ( " UPDATE arsse_marks set touched = 1, $set where article in(select article from target_articles) and subscription in(select distinct subscription from target_articles) " , $setTypes , $setValues );
$this -> db -> prepare ( $q -> getQuery (), $q -> getTypes ()) -> run ( $q -> getValues ());
}
// finally set the modification date for all touched marks and return the number of affected marks
$out = $this -> db -> query ( " UPDATE arsse_marks set modified = CURRENT_TIMESTAMP, touched = 0 where touched = 1 " ) -> changes ();
} else {
if ( ! isset ( $data [ 'read' ]) && ( $context -> edition () || $context -> editions ())) {
// get the articles associated with the requested editions
if ( $context -> edition ()) {
$context -> article ( $this -> articleValidateEdition ( $user , $context -> edition )[ 'article' ]) -> edition ( null );
} else {
$context -> articles ( $this -> editionArticle ( ... $context -> editions )) -> editions ( null );
}
if ( ! $context -> article && ! $context -> articles ) {
return 0 ;
}
}
$q = $this -> articleQuery ( $user , $context , [ " id " , " subscription " ]);
$q -> setWhere ( " (arsse_marks.note <> coalesce(?,arsse_marks.note) or arsse_marks.starred <> coalesce(?,arsse_marks.starred) or arsse_marks.read <> coalesce(?,arsse_marks.read)) " , [ " str " , " bool " , " bool " ], [ $data [ 'note' ], $data [ 'starred' ], $data [ 'read' ]]);
$q -> pushCTE ( " target_articles(article,subscription) " );
$data = array_filter ( $data , function ( $v ) {
return isset ( $v );
});
list ( $set , $setTypes , $setValues ) = $this -> generateSet ( $data , [ 'read' => " bool " , 'starred' => " bool " , 'note' => " str " ]);
$q -> setBody ( " UPDATE arsse_marks set $set , modified = CURRENT_TIMESTAMP where article in(select article from target_articles) and subscription in(select distinct subscription from target_articles) " , $setTypes , $setValues );
$out = $this -> db -> prepare ( $q -> getQuery (), $q -> getTypes ()) -> run ( $q -> getValues ()) -> changes ();
2017-11-06 23:32:29 -05:00
}
$tr -> commit ();
return $out ;
}
2017-06-04 18:00:18 -04:00
}
2017-06-30 13:53:19 -04:00
2017-10-11 12:55:50 -04:00
public function articleStarred ( string $user ) : array {
if ( ! Arsse :: $user -> authorize ( $user , __FUNCTION__ )) {
throw new User\ExceptionAuthz ( " notAuthorized " , [ " action " => __FUNCTION__ , " user " => $user ]);
}
return $this -> db -> prepare (
" SELECT
count ( * ) as total ,
2018-12-20 21:23:06 -05:00
coalesce ( sum ( abs ( \ " read \" - 1)),0) as unread,
coalesce ( sum ( \ " read \" ),0) as \" read \"
2017-10-11 12:55:50 -04:00
FROM (
2018-12-20 21:23:06 -05:00
select \ " read \" from arsse_marks where starred = 1 and subscription in (select id from arsse_subscriptions where owner = ?)
2018-12-04 20:41:21 -05:00
) as starred_data " ,
2017-12-07 15:18:25 -05:00
" str "
2017-10-11 12:55:50 -04:00
) -> run ( $user ) -> getRow ();
}
2017-10-13 17:05:06 -04:00
public function articleLabelsGet ( string $user , $id , bool $byName = false ) : array {
if ( ! Arsse :: $user -> authorize ( $user , __FUNCTION__ )) {
throw new User\ExceptionAuthz ( " notAuthorized " , [ " action " => __FUNCTION__ , " user " => $user ]);
}
$id = $this -> articleValidateId ( $user , $id )[ 'article' ];
2017-12-06 22:26:06 -05:00
$out = $this -> db -> prepare ( " SELECT id,name from arsse_labels where owner = ? and exists(select id from arsse_label_members where article = ? and label = arsse_labels.id and assigned = 1) " , " str " , " int " ) -> run ( $user , $id ) -> getAll ();
2018-12-05 09:05:43 -05:00
// flatten the result to return just the label ID or name, sorted
$out = $out ? array_column ( $out , ! $byName ? " id " : " name " ) : [];
sort ( $out );
return $out ;
2017-10-13 17:05:06 -04:00
}
2017-11-21 09:22:58 -05:00
public function articleCategoriesGet ( string $user , $id ) : array {
if ( ! Arsse :: $user -> authorize ( $user , __FUNCTION__ )) {
throw new User\ExceptionAuthz ( " notAuthorized " , [ " action " => __FUNCTION__ , " user " => $user ]);
}
$id = $this -> articleValidateId ( $user , $id )[ 'article' ];
2017-12-06 22:26:06 -05:00
$out = $this -> db -> prepare ( " SELECT name from arsse_categories where article = ? order by name " , " int " ) -> run ( $id ) -> getAll ();
2017-11-21 09:22:58 -05:00
if ( ! $out ) {
return $out ;
} else {
// flatten the result
return array_column ( $out , " name " );
}
}
2017-08-17 22:36:15 -04:00
public function articleCleanup () : bool {
$query = $this -> db -> prepare (
" WITH target_feed(id,subs) as ( " .
2018-10-26 14:58:04 -04:00
" SELECT
2017-12-06 22:26:06 -05:00
id , ( select count ( * ) from arsse_subscriptions where feed = arsse_feeds . id ) as subs
from arsse_feeds where id = ? " .
2018-12-05 11:05:01 -05:00
" ), latest_editions(article,edition) as ( " .
" SELECT article,max(id) from arsse_editions group by article " .
2017-08-17 22:36:15 -04:00
" ), excepted_articles(id,edition) as ( " .
2018-10-26 14:58:04 -04:00
" SELECT
2018-12-05 11:05:01 -05:00
arsse_articles . id as id ,
latest_editions . edition as edition
2017-08-17 22:36:15 -04:00
from arsse_articles
2018-10-26 14:58:04 -04:00
join target_feed on arsse_articles . feed = target_feed . id
2018-12-05 11:05:01 -05:00
join latest_editions on arsse_articles . id = latest_editions . article
2017-08-17 22:36:15 -04:00
order by edition desc limit ? " .
" ) " .
2018-10-26 14:58:04 -04:00
" DELETE from arsse_articles where
feed = ( select max ( id ) from target_feed )
2017-08-17 22:36:15 -04:00
and id not in ( select id from excepted_articles )
2017-12-06 22:26:06 -05:00
and ( select count ( * ) from arsse_marks where article = arsse_articles . id and starred = 1 ) = 0
2017-08-17 22:36:15 -04:00
and (
2017-12-06 22:26:06 -05:00
coalesce (( select max ( modified ) from arsse_marks where article = arsse_articles . id ), modified ) <= ?
2018-12-20 21:23:06 -05:00
or (( select max ( subs ) from target_feed ) = ( select count ( * ) from arsse_marks where article = arsse_articles . id and \ " read \" = 1) and coalesce((select max(modified) from arsse_marks where article = arsse_articles.id),modified) <= ?)
2017-08-17 22:36:15 -04:00
)
2017-12-07 15:18:25 -05:00
" ,
" int " ,
" int " ,
" datetime " ,
" datetime "
2017-08-17 22:36:15 -04:00
);
$limitRead = null ;
$limitUnread = null ;
2017-08-29 10:50:31 -04:00
if ( Arsse :: $conf -> purgeArticlesRead ) {
2017-08-20 15:46:35 -04:00
$limitRead = Date :: sub ( Arsse :: $conf -> purgeArticlesRead );
2017-08-17 22:36:15 -04:00
}
2017-08-29 10:50:31 -04:00
if ( Arsse :: $conf -> purgeArticlesUnread ) {
2017-08-20 15:46:35 -04:00
$limitUnread = Date :: sub ( Arsse :: $conf -> purgeArticlesUnread );
2017-08-17 22:36:15 -04:00
}
$feeds = $this -> db -> query ( " SELECT id, size from arsse_feeds " ) -> getAll ();
2017-08-29 10:50:31 -04:00
foreach ( $feeds as $feed ) {
2017-08-17 22:36:15 -04:00
$query -> run ( $feed [ 'id' ], $feed [ 'size' ], $limitUnread , $limitRead );
}
return true ;
}
2017-09-28 10:16:24 -04:00
protected function articleValidateId ( string $user , $id ) : array {
if ( ! ValueInfo :: id ( $id )) {
2017-10-05 17:42:12 -04:00
throw new Db\ExceptionInput ( " typeViolation " , [ " action " => $this -> caller (), " field " => " article " , 'type' => " int > 0 " ]); // @codeCoverageIgnore
2017-09-28 10:16:24 -04:00
}
2017-06-30 13:53:19 -04:00
$out = $this -> db -> prepare (
2018-10-26 14:58:04 -04:00
" SELECT
arsse_articles . id as article ,
2017-12-06 22:26:06 -05:00
( select max ( id ) from arsse_editions where article = arsse_articles . id ) as edition
2017-06-30 13:53:19 -04:00
FROM arsse_articles
2017-12-06 22:26:06 -05:00
join arsse_feeds on arsse_feeds . id = arsse_articles . feed
join arsse_subscriptions on arsse_subscriptions . feed = arsse_feeds . id
2018-10-26 14:58:04 -04:00
WHERE
2017-12-06 22:26:06 -05:00
arsse_articles . id = ? and arsse_subscriptions . owner = ? " ,
2017-12-07 15:18:25 -05:00
" int " ,
" str "
2017-06-30 13:53:19 -04:00
) -> run ( $id , $user ) -> getRow ();
2017-08-29 10:50:31 -04:00
if ( ! $out ) {
2017-07-20 22:40:09 -04:00
throw new Db\ExceptionInput ( " subjectMissing " , [ " action " => $this -> caller (), " field " => " article " , 'id' => $id ]);
}
2017-06-30 13:53:19 -04:00
return $out ;
}
2017-07-05 09:09:38 -04:00
protected function articleValidateEdition ( string $user , int $id ) : array {
2017-09-28 10:16:24 -04:00
if ( ! ValueInfo :: id ( $id )) {
2017-10-05 17:42:12 -04:00
throw new Db\ExceptionInput ( " typeViolation " , [ " action " => $this -> caller (), " field " => " edition " , 'type' => " int > 0 " ]); // @codeCoverageIgnore
2017-09-28 10:16:24 -04:00
}
2017-06-30 13:53:19 -04:00
$out = $this -> db -> prepare (
2018-10-26 14:58:04 -04:00
" SELECT
arsse_editions . id as edition ,
2017-06-30 13:53:19 -04:00
arsse_editions . article as article ,
2017-12-06 22:26:06 -05:00
( arsse_editions . id = ( select max ( id ) from arsse_editions where article = arsse_editions . article )) as current
2017-06-30 13:53:19 -04:00
FROM arsse_editions
2017-12-06 22:26:06 -05:00
join arsse_articles on arsse_editions . article = arsse_articles . id
join arsse_feeds on arsse_feeds . id = arsse_articles . feed
join arsse_subscriptions on arsse_subscriptions . feed = arsse_feeds . id
2018-10-26 14:58:04 -04:00
WHERE
2018-12-04 20:41:21 -05:00
arsse_editions . id = ? and arsse_subscriptions . owner = ? " ,
2017-12-07 15:18:25 -05:00
" int " ,
" str "
2017-06-30 13:53:19 -04:00
) -> run ( $id , $user ) -> getRow ();
2017-08-29 10:50:31 -04:00
if ( ! $out ) {
2017-07-20 22:40:09 -04:00
throw new Db\ExceptionInput ( " subjectMissing " , [ " action " => $this -> caller (), " field " => " edition " , 'id' => $id ]);
}
2018-12-04 20:41:21 -05:00
return array_map ( " intval " , $out );
2017-06-30 13:53:19 -04:00
}
2017-08-02 18:27:04 -04:00
public function editionLatest ( string $user , Context $context = null ) : int {
2017-08-29 10:50:31 -04:00
if ( ! Arsse :: $user -> authorize ( $user , __FUNCTION__ )) {
2017-08-02 18:27:04 -04:00
throw new User\ExceptionAuthz ( " notAuthorized " , [ " action " => __FUNCTION__ , " user " => $user ]);
}
2017-10-06 20:26:22 -04:00
$context = $context ? ? new Context ;
2018-12-04 20:41:21 -05:00
$q = new Query ( " SELECT max(arsse_editions.id) from arsse_editions left join arsse_articles on article = arsse_articles.id join arsse_subscriptions on arsse_articles.feed = arsse_subscriptions.feed and arsse_subscriptions.owner = ? " , " str " , $user );
2017-08-29 10:50:31 -04:00
if ( $context -> subscription ()) {
2017-08-02 18:27:04 -04:00
// if a subscription is specified, make sure it exists
2018-12-04 20:41:21 -05:00
$this -> subscriptionValidateId ( $user , $context -> subscription );
2017-08-02 18:27:04 -04:00
// a simple WHERE clause is required here
2018-12-04 20:41:21 -05:00
$q -> setWhere ( " arsse_subscriptions.id = ? " , " int " , $context -> subscription );
2017-08-02 18:27:04 -04:00
}
return ( int ) $this -> db -> prepare ( $q -> getQuery (), $q -> getTypes ()) -> run ( $q -> getValues ()) -> getValue ();
}
2017-10-05 17:42:12 -04:00
2018-12-04 20:41:21 -05:00
public function editionArticle ( int ... $edition ) : array {
$out = [];
$context = ( new Context ) -> editions ( $edition );
// if the context has more articles or editions than we can process in one query, perform a series of queries and return an aggregate result
if ( $contexts = $this -> contextChunk ( $context )) {
$articles = $editions = [];
foreach ( $contexts as $context ) {
$out = $this -> editionArticle ( ... $context -> editions );
$editions = array_merge ( $editions , array_map ( " intval " , array_keys ( $out )));
$articles = array_merge ( $articles , array_map ( " intval " , array_values ( $out )));
}
return array_combine ( $editions , $articles );
} else {
list ( $in , $inTypes ) = $this -> generateIn ( $context -> editions , " int " );
$out = $this -> db -> prepare ( " SELECT id as edition, article from arsse_editions where id in( $in ) " , $inTypes ) -> run ( $context -> editions ) -> getAll ();
return $out ? array_combine ( array_column ( $out , " edition " ), array_column ( $out , " article " )) : [];
}
}
2017-10-05 17:42:12 -04:00
public function labelAdd ( string $user , array $data ) : int {
// if the user isn't authorized to perform this action then throw an exception.
if ( ! Arsse :: $user -> authorize ( $user , __FUNCTION__ )) {
throw new User\ExceptionAuthz ( " notAuthorized " , [ " action " => __FUNCTION__ , " user " => $user ]);
}
// validate the label name
$name = array_key_exists ( " name " , $data ) ? $data [ 'name' ] : " " ;
$this -> labelValidateName ( $name , true );
// perform the insert
return $this -> db -> prepare ( " INSERT INTO arsse_labels(owner,name) values(?,?) " , " str " , " str " ) -> run ( $user , $name ) -> lastId ();
}
public function labelList ( string $user , bool $includeEmpty = true ) : Db\Result {
// if the user isn't authorized to perform this action then throw an exception.
if ( ! Arsse :: $user -> authorize ( $user , __FUNCTION__ )) {
throw new User\ExceptionAuthz ( " notAuthorized " , [ " action " => __FUNCTION__ , " user " => $user ]);
}
return $this -> db -> prepare (
2018-12-04 20:41:21 -05:00
" SELECT * FROM (
SELECT
id , name ,
( select count ( * ) from arsse_label_members where label = id and assigned = 1 ) as articles ,
( select count ( * ) from arsse_label_members
join arsse_marks on arsse_label_members . article = arsse_marks . article and arsse_label_members . subscription = arsse_marks . subscription
2018-12-20 21:23:06 -05:00
where label = id and assigned = 1 and \ " read \" = 1
) as \ " read \"
2018-12-04 20:41:21 -05:00
FROM arsse_labels where owner = ? ) as label_data
where articles >= ? order by name
2017-12-07 15:18:25 -05:00
" ,
" str " ,
" int "
2017-10-06 20:26:22 -04:00
) -> run ( $user , ! $includeEmpty );
2017-10-05 17:42:12 -04:00
}
public function labelRemove ( string $user , $id , bool $byName = false ) : bool {
if ( ! Arsse :: $user -> authorize ( $user , __FUNCTION__ )) {
throw new User\ExceptionAuthz ( " notAuthorized " , [ " action " => __FUNCTION__ , " user " => $user ]);
}
2017-10-13 00:04:26 -04:00
$this -> labelValidateId ( $user , $id , $byName , false );
2017-10-05 17:42:12 -04:00
$field = $byName ? " name " : " id " ;
$type = $byName ? " str " : " int " ;
2017-12-06 22:26:06 -05:00
$changes = $this -> db -> prepare ( " DELETE FROM arsse_labels where owner = ? and $field = ? " , " str " , $type ) -> run ( $user , $id ) -> changes ();
2017-10-05 17:42:12 -04:00
if ( ! $changes ) {
throw new Db\ExceptionInput ( " subjectMissing " , [ " action " => __FUNCTION__ , " field " => " label " , 'id' => $id ]);
}
return true ;
}
public function labelPropertiesGet ( string $user , $id , bool $byName = false ) : array {
if ( ! Arsse :: $user -> authorize ( $user , __FUNCTION__ )) {
throw new User\ExceptionAuthz ( " notAuthorized " , [ " action " => __FUNCTION__ , " user " => $user ]);
}
2017-10-13 00:04:26 -04:00
$this -> labelValidateId ( $user , $id , $byName , false );
2017-10-05 17:42:12 -04:00
$field = $byName ? " name " : " id " ;
$type = $byName ? " str " : " int " ;
$out = $this -> db -> prepare (
2018-10-26 14:58:04 -04:00
" SELECT
2017-10-05 17:42:12 -04:00
id , name ,
2017-12-06 22:26:06 -05:00
( select count ( * ) from arsse_label_members where label = id and assigned = 1 ) as articles ,
2018-10-26 14:58:04 -04:00
( select count ( * ) from arsse_label_members
2017-12-06 22:26:06 -05:00
join arsse_marks on arsse_label_members . article = arsse_marks . article and arsse_label_members . subscription = arsse_marks . subscription
2018-12-20 21:23:06 -05:00
where label = id and assigned = 1 and \ " read \" = 1
) as \ " read \"
2017-12-06 22:26:06 -05:00
FROM arsse_labels where $field = ? and owner = ?
2017-12-07 15:18:25 -05:00
" ,
$type ,
" str "
2017-10-13 00:04:26 -04:00
) -> run ( $id , $user ) -> getRow ();
2017-10-05 17:42:12 -04:00
if ( ! $out ) {
throw new Db\ExceptionInput ( " subjectMissing " , [ " action " => __FUNCTION__ , " field " => " label " , 'id' => $id ]);
}
return $out ;
}
public function labelPropertiesSet ( string $user , $id , array $data , bool $byName = false ) : bool {
if ( ! Arsse :: $user -> authorize ( $user , __FUNCTION__ )) {
throw new User\ExceptionAuthz ( " notAuthorized " , [ " action " => __FUNCTION__ , " user " => $user ]);
}
2017-10-13 00:04:26 -04:00
$this -> labelValidateId ( $user , $id , $byName , false );
2017-10-05 17:42:12 -04:00
if ( isset ( $data [ 'name' ])) {
$this -> labelValidateName ( $data [ 'name' ]);
}
$field = $byName ? " name " : " id " ;
$type = $byName ? " str " : " int " ;
$valid = [
'name' => " str " ,
];
list ( $setClause , $setTypes , $setValues ) = $this -> generateSet ( $data , $valid );
if ( ! $setClause ) {
// if no changes would actually be applied, just return
return false ;
}
2017-12-06 22:26:06 -05:00
$out = ( bool ) $this -> db -> prepare ( " UPDATE arsse_labels set $setClause , modified = CURRENT_TIMESTAMP where owner = ? and $field = ? " , $setTypes , " str " , $type ) -> run ( $setValues , $user , $id ) -> changes ();
2017-10-05 17:42:12 -04:00
if ( ! $out ) {
throw new Db\ExceptionInput ( " subjectMissing " , [ " action " => __FUNCTION__ , " field " => " label " , 'id' => $id ]);
}
return $out ;
}
2017-10-13 00:04:26 -04:00
public function labelArticlesGet ( string $user , $id , bool $byName = false ) : array {
if ( ! Arsse :: $user -> authorize ( $user , __FUNCTION__ )) {
throw new User\ExceptionAuthz ( " notAuthorized " , [ " action " => __FUNCTION__ , " user " => $user ]);
}
// just do a syntactic check on the label ID
$this -> labelValidateId ( $user , $id , $byName , false );
$field = ! $byName ? " id " : " name " ;
$type = ! $byName ? " int " : " str " ;
2018-12-05 09:05:43 -05:00
$out = $this -> db -> prepare ( " SELECT article from arsse_label_members join arsse_labels on label = id where assigned = 1 and $field = ? and owner = ? order by article " , $type , " str " ) -> run ( $id , $user ) -> getAll ();
2017-10-13 00:04:26 -04:00
if ( ! $out ) {
// if no results were returned, do a full validation on the label ID
$this -> labelValidateId ( $user , $id , $byName , true , true );
// if the validation passes, return the empty result
return $out ;
} else {
// flatten the result to return just the article IDs in a simple array
return array_column ( $out , " article " );
}
}
2017-10-20 18:17:47 -04:00
public function labelArticlesSet ( string $user , $id , Context $context = null , bool $remove = false , bool $byName = false ) : int {
2017-10-13 00:04:26 -04:00
if ( ! Arsse :: $user -> authorize ( $user , __FUNCTION__ )) {
throw new User\ExceptionAuthz ( " notAuthorized " , [ " action " => __FUNCTION__ , " user " => $user ]);
}
// validate the label ID, and get the numeric ID if matching by name
$id = $this -> labelValidateId ( $user , $id , $byName , true )[ 'id' ];
$context = $context ? ? new Context ;
$out = 0 ;
// wrap this UPDATE and INSERT together into a transaction
$tr = $this -> begin ();
// first update any existing entries with the removal or re-addition of their association
$q = $this -> articleQuery ( $user , $context );
2017-12-06 22:26:06 -05:00
$q -> setWhere ( " exists(select article from arsse_label_members where label = ? and article = arsse_articles.id) " , " int " , $id );
2017-10-13 00:04:26 -04:00
$q -> pushCTE ( " target_articles " );
$q -> setBody (
2018-12-04 20:41:21 -05:00
" UPDATE arsse_label_members set assigned = ?, modified = CURRENT_TIMESTAMP where label = ? and assigned <> ? and article in (select id from target_articles) " ,
2017-10-20 19:02:42 -04:00
[ " bool " , " int " , " bool " ],
2017-10-13 00:04:26 -04:00
[ ! $remove , $id , ! $remove ]
);
$out += $this -> db -> prepare ( $q -> getQuery (), $q -> getTypes ()) -> run ( $q -> getValues ()) -> changes ();
// next, if we're not removing, add any new entries that need to be added
if ( ! $remove ) {
2018-12-04 20:41:21 -05:00
$q = $this -> articleQuery ( $user , $context , [ " id " , " feed " ]);
2017-12-06 22:26:06 -05:00
$q -> setWhere ( " not exists(select article from arsse_label_members where label = ? and article = arsse_articles.id) " , " int " , $id );
2017-10-13 00:04:26 -04:00
$q -> pushCTE ( " target_articles " );
$q -> setBody (
2018-12-20 21:23:06 -05:00
" SELECT
2017-10-13 00:04:26 -04:00
? , id ,
2018-12-04 20:41:21 -05:00
( select id from arsse_subscriptions where owner = ? and arsse_subscriptions . feed = target_articles . feed )
2017-10-13 00:04:26 -04:00
FROM target_articles " ,
2018-12-04 20:41:21 -05:00
[ " int " , " str " ],
[ $id , $user ]
2017-10-13 00:04:26 -04:00
);
2018-12-20 21:23:06 -05:00
$out += $this -> db -> prepare ( " INSERT INTO arsse_label_members(label,article,subscription) " . $q -> getQuery (), $q -> getTypes ()) -> run ( $q -> getValues ()) -> changes ();
2017-10-13 00:04:26 -04:00
}
// commit the transaction
$tr -> commit ();
2017-10-20 18:17:47 -04:00
return $out ;
2017-10-13 00:04:26 -04:00
}
protected function labelValidateId ( string $user , $id , bool $byName , bool $checkDb = true , bool $subject = false ) : array {
if ( ! $byName && ! ValueInfo :: id ( $id )) {
// if we're not referring to a label by name and the ID is invalid, throw an exception
throw new Db\ExceptionInput ( " typeViolation " , [ " action " => $this -> caller (), " field " => " label " , 'type' => " int > 0 " ]);
} elseif ( $byName && ! ( ValueInfo :: str ( $id ) & ValueInfo :: VALID )) {
// otherwise if we are referring to a label by name but the ID is not a string, also throw an exception
throw new Db\ExceptionInput ( " typeViolation " , [ " action " => $this -> caller (), " field " => " label " , 'type' => " string " ]);
} elseif ( $checkDb ) {
$field = ! $byName ? " id " : " name " ;
$type = ! $byName ? " int " : " str " ;
2017-12-06 22:26:06 -05:00
$l = $this -> db -> prepare ( " SELECT id,name from arsse_labels where $field = ? and owner = ? " , $type , " str " ) -> run ( $id , $user ) -> getRow ();
2017-10-13 00:04:26 -04:00
if ( ! $l ) {
throw new Db\ExceptionInput ( $subject ? " subjectMissing " : " idMissing " , [ " action " => $this -> caller (), " field " => " label " , 'id' => $id ]);
} else {
return $l ;
}
}
return [
'id' => ! $byName ? $id : null ,
'name' => $byName ? $id : null ,
];
}
2017-10-05 17:42:12 -04:00
protected function labelValidateName ( $name ) : bool {
$info = ValueInfo :: str ( $name );
if ( $info & ( ValueInfo :: NULL | ValueInfo :: EMPTY )) {
throw new Db\ExceptionInput ( " missing " , [ " action " => $this -> caller (), " field " => " name " ]);
} elseif ( $info & ValueInfo :: WHITE ) {
throw new Db\ExceptionInput ( " whitespace " , [ " action " => $this -> caller (), " field " => " name " ]);
} elseif ( ! ( $info & ValueInfo :: VALID )) {
throw new Db\ExceptionInput ( " typeViolation " , [ " action " => $this -> caller (), " field " => " name " , 'type' => " string " ]);
} else {
return true ;
}
}
2017-08-29 10:50:31 -04:00
}