Commit | Line | Data |
---|---|---|
0337d704 | 1 | <?php |
2 | /*************************************************************************** | |
179afa7f | 3 | * Copyright (C) 2003-2008 Polytechnique.org * |
0337d704 | 4 | * http://opensource.polytechnique.org/ * |
5 | * * | |
6 | * This program is free software; you can redistribute it and/or modify * | |
7 | * it under the terms of the GNU General Public License as published by * | |
8 | * the Free Software Foundation; either version 2 of the License, or * | |
9 | * (at your option) any later version. * | |
10 | * * | |
11 | * This program is distributed in the hope that it will be useful, * | |
12 | * but WITHOUT ANY WARRANTY; without even the implied warranty of * | |
13 | * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * | |
14 | * GNU General Public License for more details. * | |
15 | * * | |
16 | * You should have received a copy of the GNU General Public License * | |
17 | * along with this program; if not, write to the Free Software * | |
18 | * Foundation, Inc., * | |
19 | * 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA * | |
20 | ***************************************************************************/ | |
21 | ||
0337d704 | 22 | // {{{ Global variables used for the search Queries |
23 | ||
35fa92e8 | 24 | @$globals->search->result_fields = ' |
94f6c381 | 25 | u.user_id, u.promo, u.matricule, u.matricule_ax, |
26 | if(u.nom_usage=\'\', u.nom, u.nom_usage) AS NomSortKey, | |
27 | u.nom_usage,u.date, | |
28 | u.deces!=0 AS dcd,u.deces, | |
29 | u.perms IN (\'admin\',\'user\', \'disabled\') AS inscrit, | |
30 | u.perms != \'pending\' AS wasinscrit, | |
31 | FIND_IN_SET(\'femme\', u.flags) AS sexe, | |
32 | a.alias AS forlife, | |
1504ac45 SJ |
33 | ede0.name AS eduname0, ede0.url AS eduurl0, edd0.degree AS edudegree0, |
34 | edu0.grad_year AS edugrad_year0, f0.field AS edufield0, edu0.program AS eduprogram0, | |
35 | ede1.name AS eduname1, ede1.url AS eduurl1, edd1.degree AS edudegree1, | |
36 | edu1.grad_year AS edugrad_year1, f1.field AS edufield1, edu1.program AS eduprogram1, | |
37 | ede2.name AS eduname2, ede2.url AS eduurl2, edd2.degree AS edudegree2, | |
38 | edu2.grad_year AS edugrad_year2, f2.field AS edufield2, edu2.program AS eduprogram2, | |
39 | ede3.name AS eduname3, ede3.url AS eduurl3, edd3.degree AS edudegree3, | |
40 | edu3.grad_year AS edugrad_year3, f3.field AS edufield3, edu3.program AS eduprogram3, | |
94f6c381 | 41 | es.label AS secteur, ef.fonction_fr AS fonction, |
f781871c SJ |
42 | IF(n1.nat=\'\',n1.pays,n1.nat) AS nat1, n1.a2 AS iso3166_1, |
43 | IF(n2.nat=\'\',n2.pays,n2.nat) AS nat2, n2.a2 AS iso3166_2, | |
44 | IF(n3.nat=\'\',n3.pays,n3.nat) AS nat3, n3.a2 AS iso3166_3, | |
0e5ec860 | 45 | (COUNT(em.email) > 0 OR FIND_IN_SET("googleapps", u.mail_storage) > 0) AS actif,'; |
0337d704 | 46 | // hide private information if not logged |
eaf30d86 | 47 | if (S::logged()) |
94f6c381 | 48 | $globals->search->result_fields .=' |
94f6c381 | 49 | q.profile_freetext AS freetext, |
50 | adr.city, gp.pays AS countrytxt, gr.name AS region, | |
14256b08 GB |
51 | e.entreprise, |
52 | nw.address AS networking_address, | |
53 | nwe.name AS networking_name,'; | |
0337d704 | 54 | else |
94f6c381 | 55 | $globals->search->result_fields .=" |
94f6c381 | 56 | IF(q.profile_freetext_pub='public', q.profile_freetext, '') AS freetext, |
2398e553 SJ |
57 | IF(adr.pub='public', adr.city, '') AS city, |
58 | IF(adr.pub='public', gp.pays, '') AS countrytxt, | |
59 | IF(adr.pub='public', gr.name, '') AS region, | |
14256b08 | 60 | IF(e.pub='public', e.entreprise, '') AS entreprise, |
2398e553 SJ |
61 | IF(nw.pub='public', nw.address, '') AS networking_address, |
62 | IF(nw.pub='public', nwe.name, '') AS networking_name,"; | |
35fa92e8 | 63 | @$globals->search->result_where_statement = ' |
043bbacf SJ |
64 | LEFT JOIN profile_education AS edu0 ON (u.user_id = edu0.uid AND edu0.id = 0) |
65 | LEFT JOIN profile_education_enum AS ede0 ON (ede0.id = edu0.eduid) | |
66 | LEFT JOIN profile_education_degree_enum AS edd0 ON (edd0.id = edu0.degreeid) | |
67 | LEFT JOIN profile_education_field_enum AS f0 ON (f0.id = edu0.fieldid) | |
68 | LEFT JOIN profile_education AS edu1 ON (u.user_id = edu1.uid AND edu1.id = 1) | |
69 | LEFT JOIN profile_education_enum AS ede1 ON (ede1.id = edu1.eduid) | |
70 | LEFT JOIN profile_education_degree_enum AS edd1 ON (edd1.id = edu1.degreeid) | |
71 | LEFT JOIN profile_education_field_enum AS f1 ON (f1.id = edu1.fieldid) | |
72 | LEFT JOIN profile_education AS edu2 ON (u.user_id = edu2.uid AND edu2.id = 2) | |
73 | LEFT JOIN profile_education_enum AS ede2 ON (ede2.id = edu2.eduid) | |
74 | LEFT JOIN profile_education_degree_enum AS edd2 ON (edd2.id = edu2.degreeid) | |
75 | LEFT JOIN profile_education_field_enum AS f2 ON (f2.id = edu2.fieldid) | |
76 | LEFT JOIN profile_education AS edu3 ON (u.user_id = edu3.uid AND edu3.id = 3) | |
77 | LEFT JOIN profile_education_enum AS ede3 ON (ede3.id = edu3.eduid) | |
78 | LEFT JOIN profile_education_degree_enum AS edd3 ON (edd3.id = edu3.degreeid) | |
79 | LEFT JOIN profile_education_field_enum AS f3 ON (f3.id = edu3.fieldid) | |
2398e553 SJ |
80 | LEFT JOIN entreprises AS e ON (e.entrid = 0 AND e.uid = u.user_id) |
81 | LEFT JOIN emploi_secteur AS es ON (e.secteur = es.id) | |
82 | LEFT JOIN fonctions_def AS ef ON (e.fonction = ef.id) | |
83 | LEFT JOIN geoloc_pays AS n1 ON (u.nationalite = n1.a2) | |
84 | LEFT JOIN geoloc_pays AS n2 ON (u.nationalite2 = n2.a2) | |
85 | LEFT JOIN geoloc_pays AS n3 ON (u.nationalite3 = n3.a2) | |
86 | LEFT JOIN adresses AS adr ON (u.user_id = adr.uid AND FIND_IN_SET(\'active\',adr.statut)) | |
87 | LEFT JOIN geoloc_pays AS gp ON (adr.country = gp.a2) | |
88 | LEFT JOIN geoloc_region AS gr ON (adr.country = gr.a2 AND adr.region = gr.region) | |
89 | LEFT JOIN emails AS em ON (em.uid = u.user_id AND em.flags = \'active\') | |
90 | LEFT JOIN profile_networking AS nw ON (nw.uid = u.user_id) | |
91 | LEFT JOIN profile_networking_enum AS nwe ON (nwe.network_type = nw.network_type)'; | |
0337d704 | 92 | |
93 | // }}} | |
0337d704 | 94 | // {{{ class ThrowError |
95 | ||
96 | /** handle errors for end-users queries | |
97 | * assign the error message and runs the templates | |
98 | * | |
99 | * @author Jean-Sebastien Bedo | |
100 | */ | |
101 | class ThrowError | |
102 | { | |
a2aa8436 | 103 | public static $throwHook = array('ThrowError', 'defaultHandler'); |
104 | ||
0337d704 | 105 | /** constuctor |
106 | * @param $explain string the error (in natural language) | |
107 | */ | |
92432704 | 108 | public function __construct($explain) |
0337d704 | 109 | { |
a2aa8436 | 110 | call_user_func(ThrowError::$throwHook, $explain); |
111 | } | |
112 | ||
113 | /** defaut error handler | |
114 | */ | |
115 | private static function defaultHandler($explain) | |
116 | { | |
d7610c35 FB |
117 | global $globals; |
118 | $page =& Platal::page(); | |
bc67c37c | 119 | $page->changeTpl('search/index.tpl'); |
143ba7c9 | 120 | $page->setTitle('Polytechnique.org - Annuaire'); |
bc67c37c | 121 | $page->assign('baseurl', $globals->baseurl); |
a7d35093 | 122 | $page->trigError($explain); |
c9110c6c | 123 | $page->run(); |
0337d704 | 124 | } |
125 | } | |
126 | ||
127 | // }}} | |
128 | // {{{ class SField [Base class] | |
129 | ||
a7de4ef7 | 130 | /** classe de base représentant un champ de recherche |
131 | * (correspond à un champ du formulaire mais peut être à plusieurs champs de la bdd) | |
132 | * interface étendue pour chaque type de champ particulier | |
0337d704 | 133 | */ |
134 | class SField | |
135 | { | |
136 | // {{{ properties | |
94f6c381 | 137 | |
0337d704 | 138 | /** le nom du champ dans le formulaire HTML */ |
139 | var $fieldFormName; | |
a7de4ef7 | 140 | /** champs de la bdd correspondant à ce champ sous forme d'un tableau */ |
0337d704 | 141 | var $fieldDbName; |
a7de4ef7 | 142 | /** champ résultat dans la requête MySQL correspondant à ce champ |
143 | * (alias utilisé pour la clause ORDER BY) */ | |
0337d704 | 144 | var $fieldResultName; |
a7de4ef7 | 145 | /** valeur du champ instanciée par l'utilisateur */ |
0337d704 | 146 | var $value; |
147 | ||
148 | // }}} | |
149 | // {{{ constructor | |
150 | ||
151 | /** constructeur | |
a7de4ef7 | 152 | * (récupère la requête de l'utilisateur pour ce champ) */ |
0337d704 | 153 | function SField($_fieldFormName, $_fieldDbName='', $_fieldResultName='') |
154 | { | |
155 | $this->fieldFormName = $_fieldFormName; | |
156 | $this->fieldDbName = $_fieldDbName; | |
157 | $this->fieldResultName = $_fieldResultName; | |
158 | $this->get_request(); | |
159 | } | |
160 | ||
161 | // }}} | |
162 | // {{{ function get_request() | |
163 | ||
eaf30d86 | 164 | /** récupérer la requête de l'utilisateur |
a7de4ef7 | 165 | * on met une chaîne vide si le champ n'a pas été complété */ |
0337d704 | 166 | function get_request() |
167 | { | |
5e2307dc | 168 | $this->value = trim(Env::v($this->fieldFormName)); |
0337d704 | 169 | } |
170 | ||
171 | // }}} | |
172 | // {{{ function get_where_statement() | |
94f6c381 | 173 | |
a7de4ef7 | 174 | /** récupérer la clause correspondant au champ dans la clause WHERE de la requête |
eaf30d86 | 175 | * on parcourt l'ensemble des champs de la bdd de $fieldDbName et on associe |
a7de4ef7 | 176 | * à chacun d'entre eux une clause spécifique |
177 | * la clause totale et la disjonction de ces clauses spécifiques */ | |
0337d704 | 178 | function get_where_statement() |
179 | { | |
180 | if ($this->value=='') { | |
181 | return false; | |
182 | } | |
183 | $res = implode(' OR ', array_filter(array_map(array($this, 'get_single_where_statement'), $this->fieldDbName))); | |
184 | return empty($res) ? '' : "($res)"; | |
185 | } | |
186 | ||
187 | // }}} | |
188 | // {{{ function get_order_statement() | |
94f6c381 | 189 | |
a7de4ef7 | 190 | /** récupérer la clause correspondant au champ dans la clause ORDER BY de la requête |
191 | * utilisé par exemple pour placer d'abord le nom égal à la requête avant les approximations */ | |
0337d704 | 192 | function get_order_statement() |
193 | { | |
194 | return false; | |
195 | } | |
196 | ||
197 | // }}} | |
198 | // {{{ function get_select_statement() | |
199 | ||
200 | function get_select_statement() | |
201 | { | |
202 | return false; | |
203 | } | |
204 | ||
205 | // }}} | |
206 | // {{{ function get_url() | |
207 | ||
a7de4ef7 | 208 | /** récupérer le bout d'URL correspondant aux paramètres permettant d'imiter une requête d'un |
209 | * utilisateur assignant la valeur $this->value à ce champ */ | |
0337d704 | 210 | function get_url() |
211 | { | |
212 | if (empty($this->value)) { | |
213 | return false; | |
214 | } else { | |
215 | return $this->fieldFormName.'='.urlencode($this->value); | |
216 | } | |
217 | } | |
218 | ||
219 | // }}} | |
220 | } | |
221 | ||
222 | // }}} | |
223 | // {{{ class QuickSearch [Google Like] | |
224 | ||
225 | class QuickSearch extends SField | |
226 | { | |
227 | // {{{ properties | |
94f6c381 | 228 | |
0337d704 | 229 | /** stores tokens */ |
230 | var $strings; | |
231 | /** stores numerical ranges */ | |
232 | var $ranges; | |
bbf610b8 | 233 | /** stores admin searches */ |
234 | var $email; | |
235 | var $ip; | |
9e7e21fc GB |
236 | /** stores phone number */ |
237 | var $phone; | |
0337d704 | 238 | |
239 | // }}} | |
240 | // {{{ constructor | |
94f6c381 | 241 | |
0337d704 | 242 | function QuickSearch($_fieldFormName) |
243 | { | |
244 | $this->fieldFormName = $_fieldFormName; | |
245 | $this->get_request(); | |
a14159bf | 246 | if (preg_match(":[\]\[{}~/§_`|%$^=+]|\*\*:u", $this->value)) { |
a7de4ef7 | 247 | new ThrowError('Un champ contient un caractère interdit rendant la recherche impossible.'); |
0337d704 | 248 | } |
249 | } | |
250 | ||
251 | // }}} | |
252 | // {{{ function isempty() | |
253 | ||
254 | function isempty() | |
255 | { | |
9e7e21fc | 256 | return empty($this->strings) && empty($this->ranges) && empty($this->email) && empty($this->ip) && empty($this->phone); |
0337d704 | 257 | } |
258 | ||
259 | // }}} | |
260 | // {{{ function get_request() | |
94f6c381 | 261 | |
0337d704 | 262 | function get_request() |
263 | { | |
94f6c381 | 264 | parent::get_request(); |
265 | $s = replace_accent(trim($this->value)); | |
bbf610b8 | 266 | $r = $s = str_replace('*','%',$s); |
267 | ||
268 | if (S::has_perms() && strpos($s, '@') !== false) { | |
269 | $this->email = $s; | |
270 | } else if (S::has_perms() && preg_match('/[0-9]+\.([0-9]+|%)\.([0-9]+|%)\.([0-9]+|%)/', $s)) { | |
271 | $this->ip = $s; | |
272 | } | |
273 | if ($this->email || $this->ip) { | |
274 | $this->strings = $this->ranges = array(); | |
275 | return; | |
276 | } | |
277 | ||
94f6c381 | 278 | $s = preg_replace('!\d+!', ' ', $s); |
94f6c381 | 279 | $this->strings = preg_split("![^a-zA-Z%]+!",$s, -1, PREG_SPLIT_NO_EMPTY); |
8b035281 | 280 | if (count($this->strings) > 5) { |
d7610c35 | 281 | Platal::page()->trigWarning("Tu as indiqué trop d'éléments dans ta recherche, seuls les 5 premiers seront pris en compte"); |
8b035281 FB |
282 | $this->strings = array_slice($this->strings, 0, 5); |
283 | } | |
94f6c381 | 284 | |
bbf610b8 | 285 | $s = preg_replace('! *- *!', '-', $r); |
94f6c381 | 286 | $s = preg_replace('!([<>]) *!', ' \1', $s); |
287 | $s = preg_replace('![^0-9\-><]!', ' ', $s); | |
288 | $s = preg_replace('![<>\-] !', '', $s); | |
289 | $ranges = preg_split('! +!', $s, -1, PREG_SPLIT_NO_EMPTY); | |
290 | $this->ranges=Array(); | |
291 | foreach ($ranges as $r) { | |
292 | if (preg_match('!^([<>]\d{4}|\d{4}(-\d{4})?)$!', $r)) $this->ranges[] = $r; | |
293 | } | |
9e7e21fc GB |
294 | |
295 | $t = preg_replace('!(\d{4}-\d{4}|>\d{4}|<\d{4})!', '', $s); | |
296 | $t = preg_replace('![<>\- ]!', '', $t); | |
297 | if (strlen($t) > 4) { | |
298 | $this->phone = $t; | |
299 | } | |
0337d704 | 300 | } |
301 | ||
302 | // }}} | |
303 | // {{{ function get_where_statement() | |
94f6c381 | 304 | |
0337d704 | 305 | function get_where_statement() |
306 | { | |
94f6c381 | 307 | $where = Array(); |
308 | foreach ($this->strings as $i => $s) { | |
c16b5562 | 309 | if (Env::i('with_soundex') && strlen($s) > 1) { |
94f6c381 | 310 | $t = soundex_fr($s); |
311 | $where[] = "sn$i.soundex = '$t'"; | |
b8c2ada6 SJ |
312 | } elseif (Env::i('exact')) { |
313 | $where[] = "sn$i.token = '$s'"; | |
94f6c381 | 314 | } else { |
315 | $t = str_replace('*', '%', $s).'%'; | |
316 | $t = str_replace('%%', '%', $t); | |
317 | $where[] = "sn$i.token LIKE '$t'"; | |
318 | } | |
319 | } | |
320 | ||
321 | $wherep = Array(); | |
322 | foreach ($this->ranges as $r) { | |
323 | if (preg_match('!^\d{4}$!', $r)) { | |
324 | $wherep[] = "u.promo=$r"; | |
325 | } elseif (preg_match('!^(\d{4})-(\d{4})$!', $r, $matches)) { | |
326 | $p1=min(intval($matches[1]), intval($matches[2])); | |
327 | $p2=max(intval($matches[1]), intval($matches[2])); | |
328 | $wherep[] = "(u.promo>=$p1 AND u.promo<=$p2)"; | |
329 | } elseif (preg_match('!^<(\d{4})!', $r, $matches)) { | |
330 | $wherep[] = "u.promo<={$matches[1]}"; | |
331 | } elseif (preg_match('!^>(\d{4})!', $r, $matches)) { | |
332 | $wherep[] = "u.promo>={$matches[1]}"; | |
333 | } | |
334 | } | |
335 | if (!empty($wherep)) { | |
0337d704 | 336 | $where[] = '('.join(' OR ',$wherep).')'; |
337 | } | |
bbf610b8 | 338 | if (!empty($this->email)) { |
339 | $where[] = 'ems.email = ' . XDB::escape($this->email); | |
340 | } | |
341 | if (!empty($this->ip)) { | |
9797734d | 342 | $ip = ip_to_uint($this->ip); |
2dc1c17f | 343 | $where[] = "( ls.ip = $ip OR ls.forward_ip = $ip ) AND ls.suid = 0"; |
bbf610b8 | 344 | } |
9e7e21fc GB |
345 | if (!empty($this->phone)){ |
346 | require_once("profil.func.inc.php"); | |
347 | $phone = format_phone_number($this->phone) . "%"; | |
348 | $where[] = 't.search_tel LIKE ' . XDB::escape($phone); | |
349 | } | |
3b2f9d11 | 350 | |
94f6c381 | 351 | return join(" AND ", $where); |
0337d704 | 352 | } |
353 | ||
354 | // }}} | |
355 | // {{{ get_select_statement | |
356 | function get_select_statement() | |
357 | { | |
358 | $join = ""; | |
c0c9f772 | 359 | $and = ''; |
c16b5562 | 360 | $uniq = ''; |
94f6c381 | 361 | foreach ($this->strings as $i => $s) { |
c0c9f772 | 362 | if (!S::logged()) { |
363 | $and = "AND FIND_IN_SET('public', sn$i.flags)"; | |
c16b5562 | 364 | } |
365 | $myu = str_replace('snv', "sn$i", $uniq); | |
366 | $join .= "INNER JOIN search_name AS sn$i ON (u.user_id = sn$i.uid $and$myu)\n"; | |
367 | $uniq .= " AND sn$i.token != snv.token"; | |
0337d704 | 368 | } |
bbf610b8 | 369 | if (!empty($this->email)) { |
370 | $join .= "LEFT JOIN emails AS ems ON (ems.uid = u.user_id)"; | |
371 | } | |
372 | if (!empty($this->ip)) { | |
373 | $join .= "INNER JOIN logger.sessions AS ls ON (ls.uid = u.user_id)\n"; | |
374 | } | |
9e7e21fc GB |
375 | if (!empty($this->phone)) { |
376 | if (!S::logged()) { | |
b235d980 | 377 | $join .= "INNER JOIN profile_phones AS t ON (t.uid = u.user_id AND t.pub = 'public')"; |
9e7e21fc | 378 | } else { |
b235d980 | 379 | $join .= "INNER JOIN profile_phones AS t ON (t.uid = u.user_id)"; |
9e7e21fc GB |
380 | } |
381 | } | |
0337d704 | 382 | return $join; |
383 | } | |
384 | // }}} | |
385 | // {{{ function get_order_statement() | |
94f6c381 | 386 | |
0337d704 | 387 | function get_order_statement() |
388 | { | |
389 | return false; | |
390 | } | |
391 | ||
392 | // }}} | |
393 | // {{{ function get_score_statement | |
94f6c381 | 394 | |
0337d704 | 395 | function get_score_statement() |
396 | { | |
397 | $sum = array('0'); | |
94f6c381 | 398 | foreach ($this->strings as $i => $s) { |
0337d704 | 399 | $sum[] .= "SUM(sn$i.score + IF('$s'=sn$i.token,5,0))"; |
400 | } | |
401 | return join('+', $sum).' AS score'; | |
402 | } | |
403 | ||
404 | // }}} | |
405 | } | |
406 | ||
407 | // }}} | |
408 | // {{{ class NumericSField [Integer fields] | |
409 | ||
a7de4ef7 | 410 | /** classe de champ numérique entier (offset par exemple) |
0337d704 | 411 | */ |
412 | class NumericSField extends SField | |
413 | { | |
414 | // {{{ constructor | |
94f6c381 | 415 | |
0337d704 | 416 | /** constructeur |
a7de4ef7 | 417 | * (récupère la requête de l'utilisateur pour ce champ) */ |
0337d704 | 418 | function NumericSField($_fieldFormName) |
419 | { | |
420 | $this->fieldFormName = $_fieldFormName; | |
421 | $this->get_request(); | |
422 | } | |
423 | ||
424 | // }}} | |
425 | // {{{ function get_request() | |
94f6c381 | 426 | |
a7de4ef7 | 427 | /** récupère la requête de l'utilisateur et échoue s'il ne s'agit pas d'un entier */ |
0337d704 | 428 | function get_request() |
429 | { | |
430 | parent::get_request(); | |
431 | if (empty($this->value)) { | |
432 | $this->value = 0; | |
433 | } | |
434 | if (!preg_match("/^[0-9]+$/", $this->value)) { | |
a7de4ef7 | 435 | new ThrowError('Un champ numérique contient des caractères alphanumériques.'); |
0337d704 | 436 | } |
437 | } | |
94f6c381 | 438 | |
0337d704 | 439 | // }}} |
440 | } | |
441 | ||
442 | // }}} | |
443 | // {{{ class RefSField [ ??? ] | |
444 | ||
445 | class RefSField extends SField | |
446 | { | |
447 | // {{{ properties | |
94f6c381 | 448 | |
0337d704 | 449 | var $refTable; |
450 | var $refAlias; | |
451 | var $refCondition; | |
452 | var $exact = true; | |
453 | ||
454 | // }}} | |
455 | // {{{ constructor | |
456 | ||
457 | function RefSField($_fieldFormName, $_fieldDbName='', $_refTable, $_refAlias, $_refCondition, $_exact=true) | |
458 | { | |
459 | $this->fieldFormName = $_fieldFormName; | |
460 | $this->fieldDbName = $_fieldDbName; | |
461 | $this->refTable = $_refTable; | |
462 | $this->refAlias = $_refAlias; | |
463 | $this->refCondition = $_refCondition; | |
464 | $this->exact = $_exact; | |
465 | $this->get_request(); | |
466 | } | |
467 | ||
468 | // }}} | |
469 | // {{{ function get_request() | |
94f6c381 | 470 | |
0337d704 | 471 | function get_request() { |
472 | parent::get_request(); | |
473 | if ($this->value=='00' || $this->value=='0') { | |
474 | $this->value=''; | |
475 | } | |
476 | } | |
477 | ||
478 | // }}} | |
479 | // {{{ function too_large() | |
480 | ||
481 | function too_large() | |
482 | { | |
483 | return ($this->value==''); | |
484 | } | |
485 | ||
486 | // }}} | |
487 | // {{{ function compare() | |
488 | ||
489 | function compare() | |
490 | { | |
491 | $val = addslashes($this->value); | |
b8c2ada6 | 492 | if (Env::i('exact')) return "='$val'"; |
0337d704 | 493 | return $this->exact ? "='$val'" : " LIKE '%$val%'"; |
494 | } | |
495 | ||
496 | // }}} | |
497 | // {{{ function get_single_match_statement() | |
498 | ||
499 | function get_single_match_statement($field) | |
500 | { | |
501 | return $field.$this->compare(); | |
502 | } | |
503 | ||
504 | // }}} | |
505 | // {{{ function get_single_where_statement() | |
506 | ||
507 | function get_single_where_statement($field) | |
508 | { | |
509 | return $this->refTable=='' ? $this->get_single_match_statement($field) : false; | |
510 | } | |
511 | ||
512 | // }}} | |
513 | // {{{ function get_select_statement() | |
514 | ||
515 | function get_select_statement() | |
516 | { | |
517 | if ($this->value=='' || $this->refTable=='') { | |
518 | return false; | |
519 | } | |
520 | $res = implode(' OR ', array_filter(array_map(array($this, 'get_single_match_statement'), $this->fieldDbName))); | |
137e819f FB |
521 | if (is_array($this->refTable)) { |
522 | foreach ($this->refTable as $i => $refT) | |
523 | $last = $i; | |
524 | $inner = ""; | |
525 | foreach ($this->refTable as $i => $refT) | |
526 | $inner .= " INNER JOIN {$refT} AS {$this->refAlias[$i]} ON ({$this->refCondition[$i]} ".(($i == $last)?"AND ($res) ":"").")\n"; | |
527 | return $inner; | |
528 | } else { | |
529 | return "INNER JOIN {$this->refTable} AS {$this->refAlias} ON ({$this->refCondition} AND ($res) )"; | |
530 | } | |
0337d704 | 531 | } |
532 | ||
533 | // }}} | |
534 | } | |
535 | ||
536 | // }}} | |
56670b6a | 537 | |
538 | // {{{ class RefSFieldMultipleTable | |
93f3f260 GB |
539 | class PhoneSField extends RefSField |
540 | { | |
541 | function PhoneSField($_fieldFormName, $_fieldDbName='', $_refTable, $_refAlias, $_refCondition) | |
542 | { | |
543 | $this->RefSField($_fieldFormName, $_fieldDbName, $_refTable, $_refAlias, $_refCondition, true); | |
544 | } | |
545 | ||
546 | function get_request() | |
547 | { | |
548 | require_once("profil.func.inc.php"); | |
549 | $this->value = trim(Env::v($this->fieldFormName)); | |
550 | $this->value = format_phone_number($this->value); | |
551 | } | |
552 | ||
553 | function compare() | |
554 | { | |
555 | return " LIKE '" . addslashes($this->value) . "%'"; | |
556 | } | |
557 | } | |
558 | ||
92c3f9e5 GB |
559 | class IndexSField extends RefSField |
560 | { | |
561 | function IndexSField($_fieldFormName, $_fieldDbName='', $_refTable, $_refAlias, $_refCondition) | |
562 | { | |
563 | $this->RefSField($_fieldFormName, $_fieldDbName, $_refTable, $_refAlias, $_refCondition, true); | |
564 | } | |
565 | ||
566 | function get_request() | |
567 | { | |
568 | $this->value = trim(Env::v($this->fieldFormName)); | |
569 | } | |
570 | } | |
571 | ||
56670b6a | 572 | class MapSField extends RefSField |
573 | { | |
94f6c381 | 574 | var $mapId; |
575 | ||
56670b6a | 576 | function MapSField($_fieldFormName, $_fieldDbName='', $_refTable, $_refAlias, $_refCondition, $_mapId=false) |
577 | { | |
350e6926 | 578 | if ($_mapId === false) |
5e2307dc | 579 | $this->mapId = Env::v($_fieldFormName, ''); |
350e6926 | 580 | else |
581 | $this->mapId = $_mapId; | |
a2aa8436 | 582 | $this->value = $this->mapId; |
350e6926 | 583 | $this->RefSField($_fieldFormName, $_fieldDbName, $_refTable, $_refAlias, $_refCondition, true, false); |
56670b6a | 584 | } |
eaf30d86 | 585 | |
56670b6a | 586 | function get_select_statement() |
587 | { | |
350e6926 | 588 | if ($this->mapId === '') return false; |
56670b6a | 589 | $res = implode(' OR ', array_filter(array_map(array($this, 'get_single_match_statement'), $this->fieldDbName))); |
590 | foreach ($this->refTable as $i => $refT) | |
591 | $last = $i; | |
592 | $inner = ""; | |
593 | foreach ($this->refTable as $i => $refT) | |
594 | $inner .= " INNER JOIN {$refT} AS {$this->refAlias[$i]} ON ({$this->refCondition[$i]} ".(($i == $last)?"AND ($res) ":"").")"; | |
595 | return $inner; | |
596 | } | |
597 | function get_request() | |
598 | { | |
350e6926 | 599 | $this->value = $this->mapId; |
56670b6a | 600 | } |
601 | } | |
602 | ||
0337d704 | 603 | // {{{ class RefWithSoundexSField [ ??? ] |
604 | ||
605 | class RefWithSoundexSField extends RefSField | |
606 | { | |
607 | // {{{ function compare() | |
94f6c381 | 608 | |
0337d704 | 609 | function compare() |
610 | { | |
94f6c381 | 611 | return "='".soundex_fr($this->value)."'"; |
0337d704 | 612 | } |
613 | ||
614 | // }}} | |
615 | } | |
616 | ||
617 | // }}} | |
618 | // {{{ class StringSField [String fields] | |
619 | ||
620 | /** classe de champ texte (nom par exemple) | |
621 | */ | |
622 | class StringSField extends SField | |
623 | { | |
624 | // {{{ function get_request() | |
94f6c381 | 625 | |
a7de4ef7 | 626 | /** récupère la requête de l'utilisateur et échoue si la chaîne contient des caractères |
0337d704 | 627 | * interdits */ |
628 | function get_request() | |
629 | { | |
630 | parent::get_request(); | |
a14159bf | 631 | if (preg_match(":[\]\[<>{}~/§_`|%$^=+]|\*\*:u", $this->value)) { |
a7de4ef7 | 632 | new ThrowError('Un champ contient un caractère interdit rendant la recherche impossible.'); |
0337d704 | 633 | } |
634 | } | |
635 | ||
636 | // }}} | |
637 | // {{{ function length() | |
638 | ||
a7de4ef7 | 639 | /** donne la longueur de la requête de l'utilisateur |
640 | * (au sens strict i.e. pas d'* ni d'espace ou de trait d'union -> les contraintes réellement | |
641 | * imposées par l'utilisateur) */ | |
0337d704 | 642 | function length() |
643 | { | |
a14159bf | 644 | $cleaned = replace_accent(strtolower($this->value)); |
645 | $length = strlen(ereg_replace('[a-z0-9]', '', $cleaned)); | |
646 | return strlen($this->value) - $length; | |
0337d704 | 647 | } |
648 | ||
649 | // }}} | |
650 | // {{{ function too_large() | |
651 | ||
652 | function too_large() | |
653 | { | |
654 | return ($this->length()<2); | |
655 | } | |
656 | ||
657 | // }}} | |
658 | // {{{ function get_single_where_statement() | |
659 | ||
a7de4ef7 | 660 | /** clause WHERE correspondant à un champ de la bdd et à ce champ de formulaire |
661 | * @param field nom de champ de la bdd concerné par la clause */ | |
0337d704 | 662 | function get_single_where_statement($field) |
663 | { | |
b8c2ada6 SJ |
664 | $val = addslashes($this->value); |
665 | if (Env::i('exact')) return "$field = '$val'"; | |
666 | $regexp = strtr($val, '-*', '_%'); | |
0337d704 | 667 | return "$field LIKE '$regexp%'"; |
668 | } | |
669 | ||
670 | // }}} | |
671 | // {{{ function get_order_statement() | |
672 | ||
a7de4ef7 | 673 | /** clause ORDER BY correspondant à ce champ de formulaire */ |
0337d704 | 674 | function get_order_statement() |
675 | { | |
676 | if ($this->value!='' && $this->fieldResultName!='') { | |
677 | return "{$this->fieldResultName}!='".addslashes($this->value)."'"; | |
678 | } else { | |
679 | return false; | |
680 | } | |
681 | } | |
682 | ||
683 | // }}} | |
684 | } | |
685 | ||
686 | // }}} | |
687 | // {{{ class NameSField [Names : serach 'n%' + '% b'] | |
688 | ||
689 | /** classe pour les noms : on cherche en plus du like 'foo%' le like '% foo' (particules) | |
690 | +*/ | |
691 | class NameSField extends StringSField | |
692 | { | |
693 | // {{{ function get_single_where_statement() | |
94f6c381 | 694 | |
0337d704 | 695 | function get_single_where_statement($field) |
696 | { | |
b8c2ada6 SJ |
697 | $val = addslashes($this->value); |
698 | if (Env::i('exact')) return "$field = '$val'"; | |
699 | $regexp = strtr($val, '-*', '_%'); | |
0337d704 | 700 | return "$field LIKE '$regexp%' OR $field LIKE '% $regexp%' OR $field LIKE '%-$regexp%'"; |
701 | } | |
702 | ||
703 | // }}} | |
704 | // {{{ function get_order_statement() | |
94f6c381 | 705 | |
0337d704 | 706 | function get_order_statement() |
707 | { | |
708 | if ($this->value!='' && $this->fieldResultName!='') { | |
709 | return "{$this->fieldResultName} NOT LIKE '".addslashes($this->value)."'"; | |
710 | } else { | |
711 | return false; | |
712 | } | |
713 | } | |
714 | ||
715 | // }}} | |
716 | } | |
717 | ||
718 | // }}} | |
719 | // {{{ class StringWithSoundexSField [Strings + soundex] | |
720 | ||
721 | /** classe de champ texte avec soundex (nom par exemple) | |
722 | */ | |
723 | class StringWithSoundexSField extends StringSField | |
724 | { | |
725 | // {{{ function get_single_where_statement() | |
726 | ||
a7de4ef7 | 727 | /** clause WHERE correspondant à un champ de la bdd et à ce champ de formulaire |
728 | * @param field nom de champ de la bdd concerné par la clause */ | |
0337d704 | 729 | function get_single_where_statement($field) { |
730 | return $field.'="'.soundex_fr($this->value).'"'; | |
731 | } | |
732 | ||
733 | // }}} | |
734 | } | |
735 | ||
736 | // }}} | |
737 | // {{{ class PromoSField [Prom field] | |
738 | ||
739 | /** classe de champ de promotion */ | |
740 | class PromoSField extends SField | |
741 | { | |
742 | // {{{ properties | |
94f6c381 | 743 | |
a7de4ef7 | 744 | /** opérateur de comparaison (<,>,=) de la promo utilisé pour ce champ de formulaire */ |
0337d704 | 745 | var $compareField; |
746 | ||
747 | // }}} | |
748 | // {{{ constructor | |
749 | ||
eaf30d86 | 750 | /** constructeur |
a7de4ef7 | 751 | * compareField est un champ de formulaire très simple qui ne sert qu'à la construction de la |
0337d704 | 752 | * clause WHERE de la promo */ |
753 | function PromoSField($_fieldFormName, $_compareFieldFormName, $_fieldDbName, $_fieldResultName) | |
754 | { | |
755 | parent::SField($_fieldFormName, $_fieldDbName, $_fieldResultName); | |
756 | $this->compareField = new SField($_compareFieldFormName); | |
757 | } | |
758 | ||
759 | // }}} | |
760 | // {{{ function get_request() | |
761 | ||
a7de4ef7 | 762 | /** récupère la requête utilisateur et échoue si le champ du formulaire ne représente pas une |
763 | * promotion (nombre à 4 chiffres) */ | |
0337d704 | 764 | function get_request() |
765 | { | |
766 | parent::get_request(); | |
767 | if (preg_match('/^[0-9]{2}$/', $this->value)){ | |
768 | $this->value = intval($this->value) + 1900; | |
769 | } | |
770 | if (!(empty($this->value) or preg_match('/^[0-9]{4}$/', $this->value))) { | |
a7de4ef7 | 771 | new ThrowError('La promotion est une année à quatre chiffres.'); |
0337d704 | 772 | } |
773 | } | |
774 | ||
775 | // }}} | |
776 | // {{{ function is_a_single_promo() | |
777 | ||
a7de4ef7 | 778 | /** teste si la requête est de la forme =promotion -> contrainte forte imposée -> elle suffit |
779 | * pour autoriser un affichage des résultats alors que <promotion est insuffisant */ | |
0337d704 | 780 | function is_a_single_promo() |
781 | { | |
782 | return ($this->compareField->value=='=' && $this->value!=''); | |
783 | } | |
784 | ||
785 | // }}} | |
786 | // {{{ function too_large() | |
787 | ||
788 | function too_large() | |
789 | { | |
790 | return !$this->is_a_single_promo(); | |
791 | } | |
792 | ||
793 | // }}} | |
794 | // {{{ function get_single_where_statement() | |
795 | ||
a7de4ef7 | 796 | /** clause WHERE correspondant à ce champ */ |
0337d704 | 797 | function get_single_where_statement($field) |
798 | { | |
799 | return $field.$this->compareField->value.$this->value; | |
800 | } | |
801 | ||
802 | // }}} | |
803 | // {{{ function get_url() | |
804 | ||
a7de4ef7 | 805 | /** récupérer le bout d'URL correspondant aux paramètres permettant d'imiter une requête |
806 | * d'un utilisateur assignant la valeur $this->value à ce champ et assignant l'opérateur de | |
807 | * comparaison adéquat */ | |
0337d704 | 808 | function get_url() |
809 | { | |
810 | if (!($u=parent::get_url())) { | |
811 | return false; | |
812 | } | |
813 | return $u.'&'.$this->compareField->get_url(); | |
814 | } | |
815 | ||
816 | // }}} | |
817 | } | |
818 | ||
819 | // }}} | |
820 | // {{{ class SFieldGroup [Group fields] | |
821 | ||
822 | /** classe groupant des champs de formulaire de recherche */ | |
823 | class SFieldGroup | |
824 | { | |
825 | // {{{ properties | |
94f6c381 | 826 | |
a7de4ef7 | 827 | /** tableau des classes correspondant aux champs groupés */ |
0337d704 | 828 | var $fields; |
829 | /** type de groupe : ET ou OU */ | |
830 | var $and; | |
831 | ||
832 | // }}} | |
833 | // {{{ constuctor | |
834 | ||
835 | /** constructeur */ | |
836 | function SFieldGroup($_and, $_fields) | |
837 | { | |
838 | $this->fields = $_fields; | |
839 | $this->and = $_and; | |
63fac48e FB |
840 | foreach ($this->fields as $key=>&$field) { |
841 | if (is_null($field)) { | |
842 | unset($this->fields[$key]); | |
843 | } | |
844 | } | |
0337d704 | 845 | } |
846 | ||
847 | // }}} | |
848 | // {{{ function too_large() | |
849 | ||
850 | function too_large() | |
851 | { | |
852 | $b = true; | |
a2aa8436 | 853 | for ($i=0 ; $b && $i<count($this->fields) ; $i++) { |
63fac48e FB |
854 | if (!is_null($this->fields[$i])) { |
855 | $b = $b && $this->fields[$i]->too_large(); | |
856 | } | |
0337d704 | 857 | } |
858 | return $b; | |
859 | } | |
860 | ||
861 | // }}} | |
862 | // {{{ function field_get_select() | |
863 | ||
864 | function field_get_select($f) | |
865 | { | |
866 | return $f->get_select_statement(); | |
867 | } | |
868 | ||
869 | // }}} | |
870 | // {{{ function field_get_where() | |
871 | ||
a7de4ef7 | 872 | /** récupérer la clause WHERE d'un objet champ de recherche */ |
0337d704 | 873 | function field_get_where($f) |
874 | { | |
875 | return $f->get_where_statement(); | |
876 | } | |
877 | ||
878 | // }}} | |
879 | // {{{ function field_get_order() | |
880 | ||
a7de4ef7 | 881 | /** récupérer la clause ORDER BY d'un objet champ de recherche */ |
0337d704 | 882 | function field_get_order($f) |
883 | { | |
884 | return $f->get_order_statement(); | |
885 | } | |
886 | ||
887 | // }}} | |
888 | // {{{ function field_get_url() | |
889 | ||
a7de4ef7 | 890 | /** récupérer le bout d'URL correspondant à un objet champ de recherche */ |
0337d704 | 891 | function field_get_url($f) |
892 | { | |
893 | return $f->get_url(); | |
894 | } | |
94f6c381 | 895 | |
0337d704 | 896 | // }}} |
897 | // {{{ function get_select_statement() | |
898 | ||
899 | function get_select_statement() | |
900 | { | |
901 | return implode(' ', array_filter(array_map(array($this, 'field_get_select'), $this->fields))); | |
902 | } | |
903 | ||
904 | // }}} | |
905 | // {{{ function get_where_statement() | |
906 | ||
a7de4ef7 | 907 | /** récupérer la clause WHERE du groupe de champs = conjonction (ET) ou disjonction (OU) de |
908 | * clauses des champs élémentaires */ | |
0337d704 | 909 | function get_where_statement() |
910 | { | |
911 | $joinText = $this->and ? ' AND ' : ' OR '; | |
912 | $res = implode($joinText, array_filter(array_map(array($this, 'field_get_where'), $this->fields))); | |
913 | return $res == '' ? '' : "($res)"; | |
914 | } | |
915 | ||
916 | // }}} | |
917 | // {{{ function get_order_statement() | |
918 | ||
a7de4ef7 | 919 | /** récupérer la clause ORDER BY du groupe de champs = conjonction (ET) ou disjonction (OU) de |
920 | * clauses des champs élémentaires */ | |
0337d704 | 921 | function get_order_statement() |
922 | { | |
923 | $order = array_filter(array_map(array($this, 'field_get_order'), $this->fields)); | |
924 | return count($order)>0 ? implode(',', $order) : false; | |
925 | } | |
926 | ||
927 | // }}} | |
928 | // {{{ function get_url() | |
929 | ||
a7de4ef7 | 930 | /** récupérer le bout d'URL correspondant à ce groupe de champs = concaténation des bouts d'URL |
931 | * des champs élémentaires */ | |
0337d704 | 932 | function get_url($others=Array()) |
933 | { | |
934 | $url = array_filter(array_map(array($this, 'field_get_url'), $this->fields)); | |
935 | foreach ($url as $key=>$val) { | |
936 | if (empty($val)) { | |
937 | unset($url[$key]); | |
938 | } | |
939 | } | |
940 | foreach ($others as $key=>$val) { | |
941 | if (!empty($val)) { | |
942 | $url[] = "$key=$val"; | |
943 | } | |
944 | } | |
945 | return count($url)>0 ? implode('&', $url) : false; | |
946 | } | |
947 | ||
948 | // }}} | |
949 | } | |
950 | ||
951 | // }}} | |
952 | ||
a7de4ef7 | 953 | // vim:set et sw=4 sts=4 sws=4 foldmethod=marker enc=utf-8: |
0337d704 | 954 | ?> |