misuzu/public/news.php

<?php
use Misuzu\Database;

require_once __DIR__ . '/../misuzu.php';

$db = Database::connection();
$templating = $app->getTemplating();

$category_id = isset($_GET['c']) ? (int)$_GET['c'] : null;
$post_id = isset($_GET['p']) ? (int)$_GET['p'] : (isset($_GET['n']) ? (int)$_GET['n'] : null);
$posts_offset = (int)($_GET['o'] ?? 0);
$posts_take = 5;

$templating->vars(compact('posts_offset', 'posts_take'));

if ($post_id !== null) {
    $getPost = $db->prepare('
        SELECT
            p.`post_id`, p.`post_title`, p.`post_text`, p.`created_at`,
            c.`category_id`, c.`category_name`,
            u.`user_id`, u.`username`,
            COALESCE(r.`role_colour`, CAST(0x40000000 AS UNSIGNED)) as `display_colour`
        FROM `msz_news_posts` as p
        LEFT JOIN `msz_news_categories` as c
        ON p.`category_id` = c.`category_id`
        LEFT JOIN `msz_users` as u
        ON p.`user_id` = u.`user_id`
        LEFT JOIN `msz_roles` as r
        ON u.`display_role` = r.`role_id`
        WHERE `post_id` = :post_id
    ');
    $getPost->bindValue(':post_id', $post_id, PDO::PARAM_INT);
    $post = $getPost->execute() ? $getPost->fetch() : false;

    if ($post === false) {
        http_response_code(404);
        echo $templating->render('errors.404');
        return;
    }

    echo $templating->render('news.post', compact('post'));
    return;
}

if ($category_id !== null) {
    $getCategory = $db->prepare('
        SELECT
            c.`category_id`, c.`category_name`, c.`category_description`,
            COUNT(p.`post_id`) AS `posts_count`
        FROM `msz_news_categories` as c
        LEFT JOIN `msz_news_posts` as p
        ON c.`category_id` = p.`category_id`
        WHERE c.`category_id` = :category_id
        GROUP BY c.`category_id`
    ');
    $getCategory->bindValue(':category_id', $category_id, PDO::PARAM_INT);
    $category = $getCategory->execute() ? $getCategory->fetch() : false;

    if ($category === false || $posts_offset < 0 || $posts_offset >= $category['posts_count']) {
        http_response_code(404);
        echo $templating->render('errors.404');
        return;
    }

    $getPosts = $db->prepare('
        SELECT
            p.`post_id`, p.`post_title`, p.`post_text`, p.`created_at`,
            c.`category_id`, c.`category_name`,
            u.`user_id`, u.`username`,
            COALESCE(r.`role_colour`, CAST(0x40000000 AS UNSIGNED)) as `display_colour`
        FROM `msz_news_posts` as p
        LEFT JOIN `msz_news_categories` as c
        ON p.`category_id` = c.`category_id`
        LEFT JOIN `msz_users` as u
        ON p.`user_id` = u.`user_id`
        LEFT JOIN `msz_roles` as r
        ON u.`display_role` = r.`role_id`
        WHERE p.`category_id` = :category_id
        ORDER BY `created_at` DESC
        LIMIT :offset, :take
    ');
    $getPosts->bindValue('offset', $posts_offset);
    $getPosts->bindValue('take', $posts_take);
    $getPosts->bindValue('category_id', $category['category_id'], PDO::PARAM_INT);
    $posts = $getPosts->execute() ? $getPosts->fetchAll() : false;

    $getFeatured = $db->prepare('
        SELECT `post_id`, `post_title`
        FROM `msz_news_posts`
        WHERE `category_id` = :category_id
        AND `is_featured` = true
        ORDER BY `created_at` DESC
        LIMIT 10
    ');
    $getFeatured->bindValue('category_id', $category['category_id'], PDO::PARAM_INT);
    $featured = $getFeatured->execute() ? $getFeatured->fetchAll() : [];

    echo $templating->render('news.category', compact('category', 'posts', 'featured'));
    return;
}

$getCategories = $db->prepare('
    SELECT
        c.`category_id`, c.`category_name`,
        COUNT(p.`post_id`) AS count
    FROM `msz_news_categories` as c
    LEFT JOIN `msz_news_posts` as p
    ON c.`category_id` = p.`category_id`
    WHERE `is_hidden` = false
    GROUP BY c.`category_id`
    HAVING count > 0
');
$categories = $getCategories->execute() ? $getCategories->fetchAll() : [];

$postsCount = (int)$db->query('
    SELECT COUNT(p.`post_id`) as `posts_count`
    FROM `msz_news_posts` as p
    LEFT JOIN `msz_news_categories` as c
    ON p.`category_id` = c.`category_id`
    WHERE p.`is_featured` = true
    AND c.`is_hidden` = false
')->fetchColumn();

$templating->var('posts_count', $postsCount);

if ($posts_offset < 0 || $posts_offset >= $postsCount) {
    http_response_code(404);
    echo $templating->render('errors.404');
    return;
}

$getPosts = $db->prepare('
    SELECT
        p.`post_id`, p.`post_title`, p.`post_text`, p.`created_at`,
        c.`category_id`, c.`category_name`,
        u.`user_id`, u.`username`,
        COALESCE(r.`role_colour`, CAST(0x40000000 AS UNSIGNED)) as `display_colour`
    FROM `msz_news_posts` as p
    LEFT JOIN `msz_news_categories` as c
    ON p.`category_id` = c.`category_id`
    LEFT JOIN `msz_users` as u
    ON p.`user_id` = u.`user_id`
    LEFT JOIN `msz_roles` as r
    ON u.`display_role` = r.`role_id`
    WHERE p.`is_featured` = true
    AND c.`is_hidden` = false
    ORDER BY p.`created_at` DESC
    LIMIT :offset, :take
');
$getPosts->bindValue('offset', $posts_offset);
$getPosts->bindValue('take', $posts_take);
$posts = $getPosts->execute() ? $getPosts->fetchAll() : [];

if (!$posts) {
    http_response_code(404);
    echo $templating->render('errors.404');
    return;
}

echo $templating->render('news.index', compact('categories', 'posts'));