Issues in search.inc.php - New Issues - Inspection of "updates" - XoopsModules25x/news - Measure and Improve Code Quality continuously with Scrutinizer

Completed

Pull Request — master (#16)

by Michael

created 2017-11-03 05:11 UTC

include/search.inc.php (1 issue)

Labels

Severity

Minor 1

Upgrade to new PHP Analysis Engine

These results are based on our legacy PHP analysis, consider migrating to our new PHP analysis engine instead. Learn more

<?php
/*
 * You may not change or alter any portion of this comment or credits
 * of supporting developers from this source code or any supporting source code
 * which is considered copyrighted (c) material of the original comment or credit authors.
 *
 * This program is distributed in the hope that it will be useful,
 * but WITHOUT ANY WARRANTY; without even the implied warranty of
 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.
 */

/**
 * @copyright      {@link https://xoops.org/ XOOPS Project}
 * @license        {@link http://www.gnu.org/licenses/gpl-2.0.html GNU GPL 2 or later}
 * @package
 * @since
 * @author         XOOPS Development Team
 */

// defined('XOOPS_ROOT_PATH') || exit('Restricted access.');


/**
 * @param $queryarray
 * @param $andor
 * @param $limit
 * @param $offset
 * @param $userid
 *
 * @return array
 */
function news_search($queryarray, $andor, $limit, $offset, $userid)
{
    global $xoopsDB, $xoopsUser;
    require_once XOOPS_ROOT_PATH . '/modules/news/class/utility.php';
    $restricted = NewsUtility::getModuleOption('restrictindex');
    $highlight  = false;
    $highlight  = NewsUtility::getModuleOption('keywordshighlight'); // keywords highlighting

    /** @var XoopsModuleHandler $moduleHandler */
    $moduleHandler = xoops_getHandler('module');
    $module        = $moduleHandler->getByDirname('news');
    $modid         = $module->getVar('mid');
    $searchparam   = '';

    $gpermHandler = xoops_getHandler('groupperm');
    if (is_object($xoopsUser)) {
        $groups = $xoopsUser->getGroups();
    } else {
        $groups = XOOPS_GROUP_ANONYMOUS;
    }

    $sql = 'SELECT storyid, topicid, uid, title, created FROM ' . $xoopsDB->prefix('news_stories') . ' WHERE (published>0 AND published<=' . time() . ') AND (expired = 0 OR expired > ' . time() . ') ';

    if (0 != $userid) {
        $sql .= ' AND uid=' . $userid . ' ';
    }
    // because count() returns 1 even if a supplied variable
    // is not an array, we must check if $querryarray is really an array
    if (is_array($queryarray) && $count = count($queryarray)) {
        $sql .= " AND ((hometext LIKE '%$queryarray[0]%' OR bodytext LIKE '%$queryarray[0]%' OR title LIKE '%$queryarray[0]%' OR keywords LIKE '%$queryarray[0]%' OR description LIKE '%$queryarray[0]%')";
        for ($i = 1; $i < $count; ++$i) {
            $sql .= " $andor ";
            $sql .= "(hometext LIKE '%$queryarray[$i]%' OR bodytext LIKE '%$queryarray[$i]%' OR title LIKE '%$queryarray[$i]%' OR keywords LIKE '%$queryarray[$i]%' OR description LIKE '%$queryarray[$i]%')";
        }
        $sql .= ') ';
        // keywords highlighting
        if ($highlight) {
            $searchparam = '&keywords=' . urlencode(trim(implode(' ', $queryarray)));
        }
    }

    $sql    .= 'ORDER BY created DESC';
    $result = $xoopsDB->query($sql, $limit, $offset);
    $ret    = [];
    $i      = 0;
    while ($myrow = $xoopsDB->fetchArray($result)) {
        $display = true;
        if ($modid && $gpermHandler) {
            if ($restricted && !$gpermHandler->checkRight('news_view', $myrow['topicid'], $groups, $modid)) {
                $display = false;
            }
        }

        if ($display) {
            $ret[$i]['image'] = 'assets/images/news.png';
            $ret[$i]['link']  = 'article.php?storyid=' . $myrow['storyid'] . '' . $searchparam;
            $ret[$i]['title'] = $myrow['title'];
            $ret[$i]['time']  = $myrow['created'];
            $ret[$i]['uid']   = $myrow['uid'];
            ++$i;
        }
    }

    require_once XOOPS_ROOT_PATH . '/modules/news/config.php';
    $searchincomments = $cfg['config_search_comments'];

    if ($searchincomments && (isset($limit) && $i <= $limit)) {
        require_once XOOPS_ROOT_PATH . '/include/comment_constants.php';
        $ind = $i;
        $sql = 'SELECT com_id, com_modid, com_itemid, com_created, com_uid, com_title, com_text, com_status FROM ' . $xoopsDB->prefix('xoopscomments') . " WHERE (com_id>0) AND (com_modid=$modid) AND (com_status=" . XOOPS_COMMENT_ACTIVE . ') ';
        if (0 != $userid) {
            $sql .= ' AND com_uid=' . $userid . ' ';
        }

        if (is_array($queryarray) && $count = count($queryarray)) {
            $sql .= " AND ((com_title LIKE '%$queryarray[0]%' OR com_text LIKE '%$queryarray[0]%')";
            for ($i = 1; $i < $count; ++$i) {
                $sql .= " $andor ";
                $sql .= "(com_title LIKE '%$queryarray[$i]%' OR com_text LIKE '%$queryarray[$i]%')";
            }
            $sql .= ') ';
        }
        $i      = $ind;
        $sql    .= 'ORDER BY com_created DESC';
        $result = $xoopsDB->query($sql, $limit, $offset);
        while ($myrow = $xoopsDB->fetchArray($result)) {
            $display = true;
            if ($modid && $gpermHandler) {
                if ($restricted && !$gpermHandler->checkRight('news_view', $myrow['com_itemid'], $groups, $modid)) {
                    $display = false;
                }
            }
            if ($i + 1 > $limit) {
                $display = false;
            }

            if ($display) {
                $ret[$i]['image'] = 'assets/images/news.png';
                $ret[$i]['link']  = 'article.php?storyid=' . $myrow['com_itemid'] . '' . $searchparam;
                $ret[$i]['title'] = $myrow['com_title'];
                $ret[$i]['time']  = $myrow['com_created'];
                $ret[$i]['uid']   = $myrow['com_uid'];
                ++$i;
            }
        }
    }

    return $ret;
}


1		<?php
2		/*
3		* You may not change or alter any portion of this comment or credits
4		* of supporting developers from this source code or any supporting source code
5		* which is considered copyrighted (c) material of the original comment or credit authors.
6		*
7		* This program is distributed in the hope that it will be useful,
8		* but WITHOUT ANY WARRANTY; without even the implied warranty of
9		* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.
10		*/
11
12		/**
13		* @copyright {@link https://xoops.org/ XOOPS Project}
14		* @license {@link http://www.gnu.org/licenses/gpl-2.0.html GNU GPL 2 or later}
15		* @package
16		* @since
17		* @author XOOPS Development Team
18		*/
19
20		// defined('XOOPS_ROOT_PATH') \|\| exit('Restricted access.');
		0 ignored issues – show Unused Code Comprehensibility introduced 2017-11-03 05:13 UTC by Report Bug Copy Issue Report Show Similar Issues like this `70%` of this comment could be valid code. Did you maybe forget this after debugging? Sometimes obsolete code just ends up commented out instead of removed. In this case it is better to remove the code once you have checked you do not need it. The code might also have been commented out for debugging purposes. In this case it is vital that someone uncomments it again or your project may behave in very unexpected ways in production. This check looks for comments that seem to be mostly valid code and reports them. Loading history...
21
22		/**
23		* @param $queryarray
24		* @param $andor
25		* @param $limit
26		* @param $offset
27		* @param $userid
28		*
29		* @return array
30		*/
31		function news_search($queryarray, $andor, $limit, $offset, $userid)
32		{
33		global $xoopsDB, $xoopsUser;
34		require_once XOOPS_ROOT_PATH . '/modules/news/class/utility.php';
35		$restricted = NewsUtility::getModuleOption('restrictindex');
36		$highlight = false;
37		$highlight = NewsUtility::getModuleOption('keywordshighlight'); // keywords highlighting
38
39		/** @var XoopsModuleHandler $moduleHandler */
40		$moduleHandler = xoops_getHandler('module');
41		$module = $moduleHandler->getByDirname('news');
42		$modid = $module->getVar('mid');
43		$searchparam = '';
44
45		$gpermHandler = xoops_getHandler('groupperm');
46		if (is_object($xoopsUser)) {
47		$groups = $xoopsUser->getGroups();
48		} else {
49		$groups = XOOPS_GROUP_ANONYMOUS;
50		}
51
52		$sql = 'SELECT storyid, topicid, uid, title, created FROM ' . $xoopsDB->prefix('news_stories') . ' WHERE (published>0 AND published<=' . time() . ') AND (expired = 0 OR expired > ' . time() . ') ';
53
54		if (0 != $userid) {
55		$sql .= ' AND uid=' . $userid . ' ';
56		}
57		// because count() returns 1 even if a supplied variable
58		// is not an array, we must check if $querryarray is really an array
59		if (is_array($queryarray) && $count = count($queryarray)) {
60		$sql .= " AND ((hometext LIKE '%$queryarray[0]%' OR bodytext LIKE '%$queryarray[0]%' OR title LIKE '%$queryarray[0]%' OR keywords LIKE '%$queryarray[0]%' OR description LIKE '%$queryarray[0]%')";
61		for ($i = 1; $i < $count; ++$i) {
62		$sql .= " $andor ";
63		$sql .= "(hometext LIKE '%$queryarray[$i]%' OR bodytext LIKE '%$queryarray[$i]%' OR title LIKE '%$queryarray[$i]%' OR keywords LIKE '%$queryarray[$i]%' OR description LIKE '%$queryarray[$i]%')";
64		}
65		$sql .= ') ';
66		// keywords highlighting
67		if ($highlight) {
68		$searchparam = '&keywords=' . urlencode(trim(implode(' ', $queryarray)));
69		}
70		}
71
72		$sql .= 'ORDER BY created DESC';
73		$result = $xoopsDB->query($sql, $limit, $offset);
74		$ret = [];
75		$i = 0;
76		while ($myrow = $xoopsDB->fetchArray($result)) {
77		$display = true;
78	View Code Duplication	if ($modid && $gpermHandler) {
79		if ($restricted && !$gpermHandler->checkRight('news_view', $myrow['topicid'], $groups, $modid)) {
80		$display = false;
81		}
82		}
83
84		if ($display) {
85		$ret[$i]['image'] = 'assets/images/news.png';
86		$ret[$i]['link'] = 'article.php?storyid=' . $myrow['storyid'] . '' . $searchparam;
87		$ret[$i]['title'] = $myrow['title'];
88		$ret[$i]['time'] = $myrow['created'];
89		$ret[$i]['uid'] = $myrow['uid'];
90		++$i;
91		}
92		}
93
94		require_once XOOPS_ROOT_PATH . '/modules/news/config.php';
95		$searchincomments = $cfg['config_search_comments'];
96
97		if ($searchincomments && (isset($limit) && $i <= $limit)) {
98		require_once XOOPS_ROOT_PATH . '/include/comment_constants.php';
99		$ind = $i;
100		$sql = 'SELECT com_id, com_modid, com_itemid, com_created, com_uid, com_title, com_text, com_status FROM ' . $xoopsDB->prefix('xoopscomments') . " WHERE (com_id>0) AND (com_modid=$modid) AND (com_status=" . XOOPS_COMMENT_ACTIVE . ') ';
101		if (0 != $userid) {
102		$sql .= ' AND com_uid=' . $userid . ' ';
103		}
104
105		if (is_array($queryarray) && $count = count($queryarray)) {
106		$sql .= " AND ((com_title LIKE '%$queryarray[0]%' OR com_text LIKE '%$queryarray[0]%')";
107		for ($i = 1; $i < $count; ++$i) {
108		$sql .= " $andor ";
109		$sql .= "(com_title LIKE '%$queryarray[$i]%' OR com_text LIKE '%$queryarray[$i]%')";
110		}
111		$sql .= ') ';
112		}
113		$i = $ind;
114		$sql .= 'ORDER BY com_created DESC';
115		$result = $xoopsDB->query($sql, $limit, $offset);
116		while ($myrow = $xoopsDB->fetchArray($result)) {
117		$display = true;
118	View Code Duplication	if ($modid && $gpermHandler) {
119		if ($restricted && !$gpermHandler->checkRight('news_view', $myrow['com_itemid'], $groups, $modid)) {
120		$display = false;
121		}
122		}
123		if ($i + 1 > $limit) {
124		$display = false;
125		}
126
127		if ($display) {
128		$ret[$i]['image'] = 'assets/images/news.png';
129		$ret[$i]['link'] = 'article.php?storyid=' . $myrow['com_itemid'] . '' . $searchparam;
130		$ret[$i]['title'] = $myrow['com_title'];
131		$ret[$i]['time'] = $myrow['com_created'];
132		$ret[$i]['uid'] = $myrow['com_uid'];
133		++$i;
134		}
135		}
136		}
137
138		return $ret;
139		}
140

XoopsModules25x / news

Pull Request — master (#16)

include/search.inc.php (1 issue)

Labels

Severity

Introduced By

Upgrade to new PHP Analysis Engine

Duplication Side-by-Side

Filter issues like