misuzu/public/members.php

<?php
require_once '../misuzu.php';

$roleId = !empty($_GET['r']) && is_string($_GET['r']) ? (int)$_GET['r'] : MSZ_ROLE_MAIN;
$orderBy = !empty($_GET['ss']) && is_string($_GET['ss']) ? mb_strtolower($_GET['ss']) : '';
$orderDir = !empty($_GET['sd']) && is_string($_GET['sd']) ? mb_strtolower($_GET['sd']) : '';

$orderDirs = [
    'asc' => 'Ascending',
    'desc' => 'Descending',
];

$defaultOrder = 'last-online';
$orderFields = [
    'id' => [
        'column' => 'u.`user_id`',
        'default-dir' => 'asc',
        'title' => 'User ID',
    ],
    'name' => [
        'column' => 'u.`username`',
        'default-dir' => 'asc',
        'title' => 'Username',
    ],
    'country' => [
        'column' => 'u.`user_country`',
        'default-dir' => 'asc',
        'title' => 'Country',
    ],
    'registered' => [
        'column' => 'u.`user_created`',
        'default-dir' => 'desc',
        'title' => 'Registration Date',
    ],
    'last-online' => [
        'column' => 'u.`user_active`',
        'default-dir' => 'desc',
        'title' => 'Last Online',
    ],
    'forum-topics' => [
        'column' => '`user_count_topics`',
        'default-dir' => 'desc',
        'title' => 'Forum Topics',
    ],
    'forum-posts' => [
        'column' => '`user_count_posts`',
        'default-dir' => 'desc',
        'title' => 'Forum Posts',
    ],
    'following' => [
        'column' => '`user_count_following`',
        'default-dir' => 'desc',
        'title' => 'Following',
    ],
    'followers' => [
        'column' => '`user_count_followers`',
        'default-dir' => 'desc',
        'title' => 'Followers',
    ],
];

if (empty($orderBy)) {
    $orderBy = $defaultOrder;
} elseif (!array_key_exists($orderBy, $orderFields)) {
    echo render_error(400);
    return;
}

if (empty($orderDir)) {
    $orderDir = $orderFields[$orderBy]['default-dir'];
} elseif (!array_key_exists($orderDir, $orderDirs)) {
    echo render_error(400);
    return;
}

$canManageUsers = perms_check(
    perms_get_user(MSZ_PERMS_USER, user_session_current('user_id', 0)),
    MSZ_PERM_USER_MANAGE_USERS
);

$role = user_role_get($roleId);

if (empty($role)) {
    echo render_error(404);
    return;
}

$usersPagination = pagination_create($role['role_user_count'], 15);
$usersOffset = pagination_offset($usersPagination, pagination_param());

if (!pagination_is_valid_offset($usersOffset)) {
    echo render_error(404);
    return;
}

$roles = user_role_all();

$getUsers = db_prepare(sprintf(
    '
        SELECT
            :current_user_id AS `current_user_id`,
            u.`user_id`, u.`username`, u.`user_country`,
            u.`user_created`, u.`user_active`, r.`role_id`,
            COALESCE(u.`user_title`, r.`role_title`) as `user_title`,
            COALESCE(u.`user_colour`, r.`role_colour`) as `user_colour`,
            (
                SELECT COUNT(`topic_id`)
                FROM `msz_forum_topics`
                WHERE `user_id` = u.`user_id`
                AND `topic_deleted` IS NULL
            ) AS `user_count_topics`,
            (
                SELECT COUNT(`post_Id`)
                FROM `msz_forum_posts`
                WHERE `user_id` = u.`user_id`
                AND `post_deleted` IS NULL
            ) AS `user_count_posts`,
            (
                SELECT COUNT(`subject_id`)
                FROM `msz_user_relations`
                WHERE `user_id` = u.`user_id`
                AND `relation_type` = %4$d
            ) AS `user_count_following`,
            (
                SELECT COUNT(`user_id`)
                FROM `msz_user_relations`
                WHERE `subject_id` = u.`user_id`
                AND `relation_type` = %4$d
            ) AS `user_count_followers`,
            (
                SELECT `relation_type` = %4$d
                FROM `msz_user_relations`
                WHERE `user_id` = `current_user_id`
                AND `subject_id` = u.`user_id`
            ) AS `user_is_following`,
            (
                SELECT `relation_type` = %4$d
                FROM `msz_user_relations`
                WHERE `user_id` = u.`user_id`
                AND `subject_id` = `current_user_id`
            ) AS `user_is_follower`
        FROM `msz_users` as u
        LEFT JOIN `msz_roles` as r
        ON r.`role_id` = u.`display_role`
        LEFT JOIN `msz_user_roles` as ur
        ON ur.`user_id` = u.`user_id`
        WHERE ur.`role_id` = :role_id
        %1$s
        ORDER BY %2$s %3$s
        LIMIT :offset, :take
    ',
    $canManageUsers ? '' : 'AND u.`user_deleted` IS NULL',
    $orderFields[$orderBy]['column'],
    $orderDir,
    MSZ_USER_RELATION_FOLLOW
));
$getUsers->bindValue('role_id', $role['role_id']);
$getUsers->bindValue('offset', $usersOffset);
$getUsers->bindValue('take', $usersPagination['range']);
$getUsers->bindValue('current_user_id', user_session_current('user_id', 0));
$users = db_fetch_all($getUsers);

echo tpl_render('user.listing', [
    'roles' => $roles,
    'role' => $role,
    'users' => $users,
    'order_fields' => $orderFields,
    'order_directions' => $orderDirs,
    'order_field' => $orderBy,
    'order_direction' => $orderDir,
    'order_default' => $defaultOrder,
    'can_manage_users' => $canManageUsers,
    'users_pagination' => $usersPagination,
]);
member listing 2018-05-27 23:24:16 +00:00			`<?php`
New config system, define a root dir constant and deprecate more of Application. 2018-10-04 20:30:55 +00:00			`require_once '../misuzu.php';`
member listing 2018-05-27 23:24:16 +00:00
Stricter checking on GET variables. 2019-03-18 22:02:30 +00:00			`$roleId = !empty($_GET['r']) && is_string($_GET['r']) ? (int)$_GET['r'] : MSZ_ROLE_MAIN;`
			`$orderBy = !empty($_GET['ss']) && is_string($_GET['ss']) ? mb_strtolower($_GET['ss']) : '';`
			`$orderDir = !empty($_GET['sd']) && is_string($_GET['sd']) ? mb_strtolower($_GET['sd']) : '';`
member listing 2018-05-27 23:24:16 +00:00
			`$orderDirs = [`
Some memberlist things. 2018-07-11 20:03:43 +00:00			`'asc' => 'Ascending',`
			`'desc' => 'Descending',`
member listing 2018-05-27 23:24:16 +00:00			`];`

Some memberlist things. 2018-07-11 20:03:43 +00:00			`$defaultOrder = 'last-online';`
member listing 2018-05-27 23:24:16 +00:00			`$orderFields = [`
			`'id' => [`
Massive user card overhaul. 2019-02-28 21:06:30 +00:00			'column' => 'u.`user_id`',
Some memberlist things. 2018-07-11 20:03:43 +00:00			`'default-dir' => 'asc',`
member listing 2018-05-27 23:24:16 +00:00			`'title' => 'User ID',`
			`],`
			`'name' => [`
Massive user card overhaul. 2019-02-28 21:06:30 +00:00			'column' => 'u.`username`',
Some memberlist things. 2018-07-11 20:03:43 +00:00			`'default-dir' => 'asc',`
member listing 2018-05-27 23:24:16 +00:00			`'title' => 'Username',`
			`],`
			`'country' => [`
Massive user card overhaul. 2019-02-28 21:06:30 +00:00			'column' => 'u.`user_country`',
Some memberlist things. 2018-07-11 20:03:43 +00:00			`'default-dir' => 'asc',`
member listing 2018-05-27 23:24:16 +00:00			`'title' => 'Country',`
			`],`
			`'registered' => [`
Massive user card overhaul. 2019-02-28 21:06:30 +00:00			'column' => 'u.`user_created`',
Some memberlist things. 2018-07-11 20:03:43 +00:00			`'default-dir' => 'desc',`
member listing 2018-05-27 23:24:16 +00:00			`'title' => 'Registration Date',`
			`],`
			`'last-online' => [`
Massive user card overhaul. 2019-02-28 21:06:30 +00:00			'column' => 'u.`user_active`',
Some memberlist things. 2018-07-11 20:03:43 +00:00			`'default-dir' => 'desc',`
member listing 2018-05-27 23:24:16 +00:00			`'title' => 'Last Online',`
			`],`
Massive user card overhaul. 2019-02-28 21:06:30 +00:00			`'forum-topics' => [`
			'column' => '`user_count_topics`',
			`'default-dir' => 'desc',`
			`'title' => 'Forum Topics',`
			`],`
			`'forum-posts' => [`
			'column' => '`user_count_posts`',
			`'default-dir' => 'desc',`
			`'title' => 'Forum Posts',`
			`],`
			`'following' => [`
			'column' => '`user_count_following`',
			`'default-dir' => 'desc',`
			`'title' => 'Following',`
			`],`
			`'followers' => [`
			'column' => '`user_count_followers`',
			`'default-dir' => 'desc',`
			`'title' => 'Followers',`
			`],`
member listing 2018-05-27 23:24:16 +00:00			`];`

			`if (empty($orderBy)) {`
Some memberlist things. 2018-07-11 20:03:43 +00:00			`$orderBy = $defaultOrder;`
member listing 2018-05-27 23:24:16 +00:00			`} elseif (!array_key_exists($orderBy, $orderFields)) {`
			`echo render_error(400);`
			`return;`
			`}`

			`if (empty($orderDir)) {`
			`$orderDir = $orderFields[$orderBy]['default-dir'];`
			`} elseif (!array_key_exists($orderDir, $orderDirs)) {`
			`echo render_error(400);`
			`return;`
			`}`

//Merging management and public user listing. 2018-12-05 19:57:56 +00:00			`$canManageUsers = perms_check(`
			`perms_get_user(MSZ_PERMS_USER, user_session_current('user_id', 0)),`
			`MSZ_PERM_USER_MANAGE_USERS`
			`);`

Cleaned up random queries, closes #132. 2019-01-18 17:08:19 +00:00			`$role = user_role_get($roleId);`
member listing 2018-05-27 23:24:16 +00:00
Added more typesafe shorthands for fetching database operations. 2019-01-09 19:06:02 +00:00			`if (empty($role)) {`
member listing 2018-05-27 23:24:16 +00:00			`echo render_error(404);`
			`return;`
			`}`

Massive user card overhaul. 2019-02-28 21:06:30 +00:00			`$usersPagination = pagination_create($role['role_user_count'], 15);`
Rewrote the pagination system. 2019-01-03 00:33:02 +00:00			`$usersOffset = pagination_offset($usersPagination, pagination_param());`

			`if (!pagination_is_valid_offset($usersOffset)) {`
			`echo render_error(404);`
			`return;`
			`}`

Cleaned up random queries, closes #132. 2019-01-18 17:08:19 +00:00			`$roles = user_role_all();`
member listing 2018-05-27 23:24:16 +00:00
//Merging management and public user listing. 2018-12-05 19:57:56 +00:00			`$getUsers = db_prepare(sprintf(`
			`'`
			`SELECT`
Massive user card overhaul. 2019-02-28 21:06:30 +00:00			:current_user_id AS `current_user_id`,
			u.`user_id`, u.`username`, u.`user_country`,
			u.`user_created`, u.`user_active`, r.`role_id`,
Cleaned up random queries, closes #132. 2019-01-18 17:08:19 +00:00			COALESCE(u.`user_title`, r.`role_title`) as `user_title`,
Massive user card overhaul. 2019-02-28 21:06:30 +00:00			COALESCE(u.`user_colour`, r.`role_colour`) as `user_colour`,
			`(`
			SELECT COUNT(`topic_id`)
			FROM `msz_forum_topics`
			WHERE `user_id` = u.`user_id`
			AND `topic_deleted` IS NULL
			) AS `user_count_topics`,
			`(`
			SELECT COUNT(`post_Id`)
			FROM `msz_forum_posts`
			WHERE `user_id` = u.`user_id`
			AND `post_deleted` IS NULL
			) AS `user_count_posts`,
			`(`
			SELECT COUNT(`subject_id`)
			FROM `msz_user_relations`
			WHERE `user_id` = u.`user_id`
			AND `relation_type` = %4$d
			) AS `user_count_following`,
			`(`
			SELECT COUNT(`user_id`)
			FROM `msz_user_relations`
			WHERE `subject_id` = u.`user_id`
			AND `relation_type` = %4$d
			) AS `user_count_followers`,
			`(`
			SELECT `relation_type` = %4$d
			FROM `msz_user_relations`
Fixed backwards check. 2019-02-28 21:09:51 +00:00			WHERE `user_id` = `current_user_id`
			AND `subject_id` = u.`user_id`
Massive user card overhaul. 2019-02-28 21:06:30 +00:00			) AS `user_is_following`,
			`(`
			SELECT `relation_type` = %4$d
			FROM `msz_user_relations`
Fixed backwards check. 2019-02-28 21:09:51 +00:00			WHERE `user_id` = u.`user_id`
			AND `subject_id` = `current_user_id`
Massive user card overhaul. 2019-02-28 21:06:30 +00:00			) AS `user_is_follower`
//Merging management and public user listing. 2018-12-05 19:57:56 +00:00			FROM `msz_users` as u
			LEFT JOIN `msz_roles` as r
			ON r.`role_id` = u.`display_role`
			LEFT JOIN `msz_user_roles` as ur
			ON ur.`user_id` = u.`user_id`
			WHERE ur.`role_id` = :role_id
			`%1$s`
Massive user card overhaul. 2019-02-28 21:06:30 +00:00			`ORDER BY %2$s %3$s`
//Merging management and public user listing. 2018-12-05 19:57:56 +00:00			`LIMIT :offset, :take`
			`',`
			$canManageUsers ? '' : 'AND u.`user_deleted` IS NULL',
			`$orderFields[$orderBy]['column'],`
Massive user card overhaul. 2019-02-28 21:06:30 +00:00			`$orderDir,`
			`MSZ_USER_RELATION_FOLLOW`
//Merging management and public user listing. 2018-12-05 19:57:56 +00:00			`));`
member listing 2018-05-27 23:24:16 +00:00			`$getUsers->bindValue('role_id', $role['role_id']);`
			`$getUsers->bindValue('offset', $usersOffset);`
Rewrote the pagination system. 2019-01-03 00:33:02 +00:00			`$getUsers->bindValue('take', $usersPagination['range']);`
Massive user card overhaul. 2019-02-28 21:06:30 +00:00			`$getUsers->bindValue('current_user_id', user_session_current('user_id', 0));`
Added more typesafe shorthands for fetching database operations. 2019-01-09 19:06:02 +00:00			`$users = db_fetch_all($getUsers);`
member listing 2018-05-27 23:24:16 +00:00
Restructure templating system. 2018-08-15 01:12:58 +00:00			`echo tpl_render('user.listing', [`
member listing 2018-05-27 23:24:16 +00:00			`'roles' => $roles,`
			`'role' => $role,`
			`'users' => $users,`
			`'order_fields' => $orderFields,`
			`'order_directions' => $orderDirs,`
			`'order_field' => $orderBy,`
			`'order_direction' => $orderDir,`
Some memberlist things. 2018-07-11 20:03:43 +00:00			`'order_default' => $defaultOrder,`
//Merging management and public user listing. 2018-12-05 19:57:56 +00:00			`'can_manage_users' => $canManageUsers,`
Rewrote the pagination system. 2019-01-03 00:33:02 +00:00			`'users_pagination' => $usersPagination,`
member listing 2018-05-27 23:24:16 +00:00			`]);`