mirror of
https://github.com/friendica/friendica
synced 2025-04-23 12:30:10 +00:00
Rename dbesc to DBA::escape
This commit is contained in:
Hypolite Petovan
Hypolite Petovan
parent
d3a598f589
commit
a6fb3568f9
79 changed files with 665 additions and 670 deletions
|
|
@ -536,7 +536,7 @@ class Contact extends BaseObject
|
|||
$r = q("SELECT `id`, `id` AS `cid`, 0 AS `gid`, 0 AS `zid`, `uid`, `url`, `nurl`, `alias`, `network`, `name`, `nick`, `addr`, `location`, `about`, `xmpp`,
|
||||
`keywords`, `gender`, `photo`, `thumb`, `micro`, `forum`, `prv`, (`forum` | `prv`) AS `community`, `contact-type`, `bd` AS `birthday`, `self`
|
||||
FROM `contact` WHERE `addr` = '%s' AND `uid` = %d",
|
||||
dbesc($addr),
|
||||
DBA::escape($addr),
|
||||
intval($uid)
|
||||
);
|
||||
// Fetch the data from the contact table with "uid=0" (which is filled automatically)
|
||||
|
|
@ -544,7 +544,7 @@ class Contact extends BaseObject
|
|||
$r = q("SELECT `id`, 0 AS `cid`, `id` AS `zid`, 0 AS `gid`, `uid`, `url`, `nurl`, `alias`, `network`, `name`, `nick`, `addr`, `location`, `about`, `xmpp`,
|
||||
`keywords`, `gender`, `photo`, `thumb`, `micro`, `forum`, `prv`, (`forum` | `prv`) AS `community`, `contact-type`, `bd` AS `birthday`, 0 AS `self`
|
||||
FROM `contact` WHERE `addr` = '%s' AND `uid` = 0",
|
||||
dbesc($addr)
|
||||
DBA::escape($addr)
|
||||
);
|
||||
}
|
||||
|
||||
|
|
@ -553,7 +553,7 @@ class Contact extends BaseObject
|
|||
$r = q("SELECT 0 AS `id`, 0 AS `cid`, `id` AS `gid`, 0 AS `zid`, 0 AS `uid`, `url`, `nurl`, `alias`, `network`, `name`, `nick`, `addr`, `location`, `about`, '' AS `xmpp`,
|
||||
`keywords`, `gender`, `photo`, `photo` AS `thumb`, `photo` AS `micro`, `community` AS `forum`, 0 AS `prv`, `community`, `contact-type`, `birthday`, 0 AS `self`
|
||||
FROM `gcontact` WHERE `addr` = '%s'",
|
||||
dbesc($addr)
|
||||
DBA::escape($addr)
|
||||
);
|
||||
}
|
||||
|
||||
|
|
@ -1014,7 +1014,7 @@ class Contact extends BaseObject
|
|||
// This speeds up the query a lot
|
||||
$r = q("SELECT `network`, `id` AS `author-id`, `contact-type` FROM `contact`
|
||||
WHERE `contact`.`nurl` = '%s' AND `contact`.`uid` = 0",
|
||||
dbesc(normalise_link($contact_url))
|
||||
DBA::escape(normalise_link($contact_url))
|
||||
);
|
||||
|
||||
if (!DBA::isResult($r)) {
|
||||
|
|
@ -1297,16 +1297,16 @@ class Contact extends BaseObject
|
|||
|
||||
$r = q("SELECT * FROM `contact` WHERE `uid` = %d AND `poll` IN ('%s', '%s') AND `network` = '%s' AND NOT `pending` LIMIT 1",
|
||||
intval($uid),
|
||||
dbesc($ret['poll']),
|
||||
dbesc(normalise_link($ret['poll'])),
|
||||
dbesc($ret['network'])
|
||||
DBA::escape($ret['poll']),
|
||||
DBA::escape(normalise_link($ret['poll'])),
|
||||
DBA::escape($ret['network'])
|
||||
);
|
||||
|
||||
if (!DBA::isResult($r)) {
|
||||
$r = q("SELECT * FROM `contact` WHERE `uid` = %d AND `nurl` = '%s' AND `network` = '%s' AND NOT `pending` LIMIT 1",
|
||||
intval($uid),
|
||||
dbesc(normalise_link($url)),
|
||||
dbesc($ret['network'])
|
||||
DBA::escape(normalise_link($url)),
|
||||
DBA::escape($ret['network'])
|
||||
);
|
||||
}
|
||||
|
||||
|
|
@ -1517,13 +1517,13 @@ class Contact extends BaseObject
|
|||
`blocked`, `readonly`, `pending`, `writable`)
|
||||
VALUES (%d, '%s', '%s', '%s', '%s', '%s', '%s', '%s', %d, 0, 0, 1, 1)",
|
||||
intval($importer['uid']),
|
||||
dbesc(DateTimeFormat::utcNow()),
|
||||
dbesc($url),
|
||||
dbesc(normalise_link($url)),
|
||||
dbesc($name),
|
||||
dbesc($nick),
|
||||
dbesc($photo),
|
||||
dbesc(NETWORK_OSTATUS),
|
||||
DBA::escape(DateTimeFormat::utcNow()),
|
||||
DBA::escape($url),
|
||||
DBA::escape(normalise_link($url)),
|
||||
DBA::escape($name),
|
||||
DBA::escape($nick),
|
||||
DBA::escape($photo),
|
||||
DBA::escape(NETWORK_OSTATUS),
|
||||
intval(CONTACT_IS_FOLLOWER)
|
||||
);
|
||||
|
||||
|
|
@ -1574,7 +1574,7 @@ class Contact extends BaseObject
|
|||
} elseif (DBA::isResult($user) && in_array($user['page-flags'], [PAGE_SOAPBOX, PAGE_FREELOVE, PAGE_COMMUNITY])) {
|
||||
q("UPDATE `contact` SET `pending` = 0 WHERE `uid` = %d AND `url` = '%s' AND `pending` LIMIT 1",
|
||||
intval($importer['uid']),
|
||||
dbesc($url)
|
||||
DBA::escape($url)
|
||||
);
|
||||
}
|
||||
}
|
||||
|
|
@ -1625,7 +1625,7 @@ class Contact extends BaseObject
|
|||
|
||||
// Check for duplicates
|
||||
$s = q("SELECT `id` FROM `event` WHERE `uid` = %d AND `cid` = %d AND `start` = '%s' AND `type` = '%s' LIMIT 1",
|
||||
intval($rr['uid']), intval($rr['id']), dbesc(DateTimeFormat::utc($nextbd)), dbesc('birthday'));
|
||||
intval($rr['uid']), intval($rr['id']), DBA::escape(DateTimeFormat::utc($nextbd)), DBA::escape('birthday'));
|
||||
|
||||
if (DBA::isResult($s)) {
|
||||
continue;
|
||||
|
|
@ -1636,15 +1636,15 @@ class Contact extends BaseObject
|
|||
|
||||
q("INSERT INTO `event` (`uid`,`cid`,`created`,`edited`,`start`,`finish`,`summary`,`desc`,`type`,`adjust`)
|
||||
VALUES ( %d, %d, '%s', '%s', '%s', '%s', '%s', '%s', '%s', '%d' ) ", intval($rr['uid']), intval($rr['id']),
|
||||
dbesc(DateTimeFormat::utcNow()), dbesc(DateTimeFormat::utcNow()), dbesc(DateTimeFormat::utc($nextbd)),
|
||||
dbesc(DateTimeFormat::utc($nextbd . ' + 1 day ')), dbesc($bdtext), dbesc($bdtext2), dbesc('birthday'),
|
||||
DBA::escape(DateTimeFormat::utcNow()), DBA::escape(DateTimeFormat::utcNow()), DBA::escape(DateTimeFormat::utc($nextbd)),
|
||||
DBA::escape(DateTimeFormat::utc($nextbd . ' + 1 day ')), DBA::escape($bdtext), DBA::escape($bdtext2), DBA::escape('birthday'),
|
||||
intval(0)
|
||||
);
|
||||
|
||||
|
||||
// update bdyear
|
||||
q("UPDATE `contact` SET `bdyear` = '%s', `bd` = '%s' WHERE `uid` = %d AND `id` = %d", dbesc(substr($nextbd, 0, 4)),
|
||||
dbesc($nextbd), intval($rr['uid']), intval($rr['id'])
|
||||
q("UPDATE `contact` SET `bdyear` = '%s', `bd` = '%s' WHERE `uid` = %d AND `id` = %d", DBA::escape(substr($nextbd, 0, 4)),
|
||||
DBA::escape($nextbd), intval($rr['uid']), intval($rr['id'])
|
||||
);
|
||||
}
|
||||
}
|
||||
|
|
@ -1661,7 +1661,7 @@ class Contact extends BaseObject
|
|||
return;
|
||||
}
|
||||
|
||||
$str = dbesc(implode(',', $contact_ids));
|
||||
$str = DBA::escape(implode(',', $contact_ids));
|
||||
|
||||
$stmt = DBA::p("SELECT `id` FROM `contact` WHERE `id` IN ( " . $str . ") AND `blocked` = 0 AND `pending` = 0 AND `archive` = 0");
|
||||
|
||||
|
|
|
|||
|
|
@ -510,12 +510,12 @@ class Event extends BaseObject
|
|||
$sql_extra ",
|
||||
intval($owner_uid),
|
||||
intval($event_params["ignore"]),
|
||||
dbesc($event_params["start"]),
|
||||
dbesc($event_params["start"]),
|
||||
dbesc($event_params["finish"]),
|
||||
dbesc($event_params["adjust_start"]),
|
||||
dbesc($event_params["adjust_start"]),
|
||||
dbesc($event_params["adjust_finish"])
|
||||
DBA::escape($event_params["start"]),
|
||||
DBA::escape($event_params["start"]),
|
||||
DBA::escape($event_params["finish"]),
|
||||
DBA::escape($event_params["adjust_start"]),
|
||||
DBA::escape($event_params["adjust_start"]),
|
||||
DBA::escape($event_params["adjust_finish"])
|
||||
);
|
||||
|
||||
if (DBA::isResult($r)) {
|
||||
|
|
|
|||
|
|
@ -112,12 +112,12 @@ class GContact
|
|||
intval($uid),
|
||||
intval($gcid),
|
||||
intval($zcid),
|
||||
dbesc(DateTimeFormat::utcNow())
|
||||
DBA::escape(DateTimeFormat::utcNow())
|
||||
);
|
||||
} else {
|
||||
q(
|
||||
"UPDATE `glink` SET `updated` = '%s' WHERE `cid` = %d AND `uid` = %d AND `gcid` = %d AND `zcid` = %d",
|
||||
dbesc(DateTimeFormat::utcNow()),
|
||||
DBA::escape(DateTimeFormat::utcNow()),
|
||||
intval($cid),
|
||||
intval($uid),
|
||||
intval($gcid),
|
||||
|
|
@ -176,8 +176,8 @@ class GContact
|
|||
if (!isset($gcontact['network'])) {
|
||||
$r = q(
|
||||
"SELECT `network` FROM `contact` WHERE `uid` = 0 AND `nurl` = '%s' AND `network` != '' AND `network` != '%s' LIMIT 1",
|
||||
dbesc(normalise_link($gcontact['url'])),
|
||||
dbesc(NETWORK_STATUSNET)
|
||||
DBA::escape(normalise_link($gcontact['url'])),
|
||||
DBA::escape(NETWORK_STATUSNET)
|
||||
);
|
||||
if (DBA::isResult($r)) {
|
||||
$gcontact['network'] = $r[0]["network"];
|
||||
|
|
@ -186,9 +186,9 @@ class GContact
|
|||
if (($gcontact['network'] == "") || ($gcontact['network'] == NETWORK_OSTATUS)) {
|
||||
$r = q(
|
||||
"SELECT `network`, `url` FROM `contact` WHERE `uid` = 0 AND `alias` IN ('%s', '%s') AND `network` != '' AND `network` != '%s' LIMIT 1",
|
||||
dbesc($gcontact['url']),
|
||||
dbesc(normalise_link($gcontact['url'])),
|
||||
dbesc(NETWORK_STATUSNET)
|
||||
DBA::escape($gcontact['url']),
|
||||
DBA::escape(normalise_link($gcontact['url'])),
|
||||
DBA::escape(NETWORK_STATUSNET)
|
||||
);
|
||||
if (DBA::isResult($r)) {
|
||||
$gcontact['network'] = $r[0]["network"];
|
||||
|
|
@ -201,7 +201,7 @@ class GContact
|
|||
|
||||
$x = q(
|
||||
"SELECT * FROM `gcontact` WHERE `nurl` = '%s' LIMIT 1",
|
||||
dbesc(normalise_link($gcontact['url']))
|
||||
DBA::escape(normalise_link($gcontact['url']))
|
||||
);
|
||||
|
||||
if (DBA::isResult($x)) {
|
||||
|
|
@ -489,7 +489,7 @@ class GContact
|
|||
intval($uid),
|
||||
intval($uid),
|
||||
intval($uid),
|
||||
dbesc(NULL_DATE),
|
||||
DBA::escape(NULL_DATE),
|
||||
$sql_network,
|
||||
intval($start),
|
||||
intval($limit)
|
||||
|
|
@ -518,7 +518,7 @@ class GContact
|
|||
intval($uid),
|
||||
intval($uid),
|
||||
intval($uid),
|
||||
dbesc(NULL_DATE),
|
||||
DBA::escape(NULL_DATE),
|
||||
$sql_network,
|
||||
intval($start),
|
||||
intval($limit)
|
||||
|
|
@ -580,8 +580,8 @@ class GContact
|
|||
// Query your contacts from Friendica and Redmatrix/Hubzilla for their contacts
|
||||
$r = q(
|
||||
"SELECT DISTINCT(`poco`) AS `poco` FROM `contact` WHERE `network` IN ('%s', '%s')",
|
||||
dbesc(NETWORK_DFRN),
|
||||
dbesc(NETWORK_DIASPORA)
|
||||
DBA::escape(NETWORK_DFRN),
|
||||
DBA::escape(NETWORK_DIASPORA)
|
||||
);
|
||||
|
||||
if (DBA::isResult($r)) {
|
||||
|
|
@ -690,7 +690,7 @@ class GContact
|
|||
DBA::lock('gcontact');
|
||||
$r = q(
|
||||
"SELECT `id`, `last_contact`, `last_failure`, `network` FROM `gcontact` WHERE `nurl` = '%s' LIMIT 1",
|
||||
dbesc(normalise_link($contact["url"]))
|
||||
DBA::escape(normalise_link($contact["url"]))
|
||||
);
|
||||
|
||||
if (DBA::isResult($r)) {
|
||||
|
|
@ -708,24 +708,24 @@ class GContact
|
|||
q(
|
||||
"INSERT INTO `gcontact` (`name`, `nick`, `addr` , `network`, `url`, `nurl`, `photo`, `created`, `updated`, `location`, `about`, `hide`, `generation`)
|
||||
VALUES ('%s', '%s', '%s', '%s', '%s', '%s', '%s', '%s', '%s', '%s', '%s', %d, %d)",
|
||||
dbesc($contact["name"]),
|
||||
dbesc($contact["nick"]),
|
||||
dbesc($contact["addr"]),
|
||||
dbesc($contact["network"]),
|
||||
dbesc($contact["url"]),
|
||||
dbesc(normalise_link($contact["url"])),
|
||||
dbesc($contact["photo"]),
|
||||
dbesc(DateTimeFormat::utcNow()),
|
||||
dbesc(DateTimeFormat::utcNow()),
|
||||
dbesc($contact["location"]),
|
||||
dbesc($contact["about"]),
|
||||
DBA::escape($contact["name"]),
|
||||
DBA::escape($contact["nick"]),
|
||||
DBA::escape($contact["addr"]),
|
||||
DBA::escape($contact["network"]),
|
||||
DBA::escape($contact["url"]),
|
||||
DBA::escape(normalise_link($contact["url"])),
|
||||
DBA::escape($contact["photo"]),
|
||||
DBA::escape(DateTimeFormat::utcNow()),
|
||||
DBA::escape(DateTimeFormat::utcNow()),
|
||||
DBA::escape($contact["location"]),
|
||||
DBA::escape($contact["about"]),
|
||||
intval($contact["hide"]),
|
||||
intval($contact["generation"])
|
||||
);
|
||||
|
||||
$r = q(
|
||||
"SELECT `id`, `network` FROM `gcontact` WHERE `nurl` = '%s' ORDER BY `id` LIMIT 2",
|
||||
dbesc(normalise_link($contact["url"]))
|
||||
DBA::escape(normalise_link($contact["url"]))
|
||||
);
|
||||
|
||||
if (DBA::isResult($r)) {
|
||||
|
|
@ -1048,8 +1048,8 @@ class GContact
|
|||
|
||||
$r = q(
|
||||
"SELECT `nurl`, `url` FROM `gserver` WHERE `last_contact` >= `last_failure` AND `network` = '%s' AND `last_poco_query` < '%s' ORDER BY RAND() LIMIT 5",
|
||||
dbesc(NETWORK_OSTATUS),
|
||||
dbesc($last_update)
|
||||
DBA::escape(NETWORK_OSTATUS),
|
||||
DBA::escape($last_update)
|
||||
);
|
||||
|
||||
if (!DBA::isResult($r)) {
|
||||
|
|
@ -1058,7 +1058,7 @@ class GContact
|
|||
|
||||
foreach ($r as $server) {
|
||||
self::fetchGsUsers($server["url"]);
|
||||
q("UPDATE `gserver` SET `last_poco_query` = '%s' WHERE `nurl` = '%s'", dbesc(DateTimeFormat::utcNow()), dbesc($server["nurl"]));
|
||||
q("UPDATE `gserver` SET `last_poco_query` = '%s' WHERE `nurl` = '%s'", DBA::escape(DateTimeFormat::utcNow()), DBA::escape($server["nurl"]));
|
||||
}
|
||||
}
|
||||
|
||||
|
|
@ -1072,7 +1072,7 @@ class GContact
|
|||
AND `last_contact` >= `last_failure`
|
||||
AND `updated` > UTC_TIMESTAMP - INTERVAL 1 MONTH
|
||||
ORDER BY rand() LIMIT 1",
|
||||
dbesc(NETWORK_DFRN)
|
||||
DBA::escape(NETWORK_DFRN)
|
||||
);
|
||||
|
||||
if (DBA::isResult($r)) {
|
||||
|
|
|
|||
|
|
@ -58,8 +58,8 @@ class Mail
|
|||
$reply = true;
|
||||
$r = q("SELECT `convid` FROM `mail` WHERE `uid` = %d AND (`uri` = '%s' OR `parent-uri` = '%s') LIMIT 1",
|
||||
intval(local_user()),
|
||||
dbesc($replyto),
|
||||
dbesc($replyto)
|
||||
DBA::escape($replyto),
|
||||
DBA::escape($replyto)
|
||||
);
|
||||
if (DBA::isResult($r)) {
|
||||
$convid = $r[0]['convid'];
|
||||
|
|
|
|||
|
|
@ -239,8 +239,8 @@ class Photo
|
|||
WHERE `uid` = %d AND `album` != '%s' AND `album` != '%s' $sql_extra
|
||||
GROUP BY `album` ORDER BY `created` DESC",
|
||||
intval($uid),
|
||||
dbesc('Contact Photos'),
|
||||
dbesc(L10n::t('Contact Photos'))
|
||||
DBA::escape('Contact Photos'),
|
||||
DBA::escape(L10n::t('Contact Photos'))
|
||||
);
|
||||
} else {
|
||||
// This query doesn't do the count and is much faster
|
||||
|
|
@ -248,8 +248,8 @@ class Photo
|
|||
FROM `photo` USE INDEX (`uid_album_scale_created`)
|
||||
WHERE `uid` = %d AND `album` != '%s' AND `album` != '%s' $sql_extra",
|
||||
intval($uid),
|
||||
dbesc('Contact Photos'),
|
||||
dbesc(L10n::t('Contact Photos'))
|
||||
DBA::escape('Contact Photos'),
|
||||
DBA::escape(L10n::t('Contact Photos'))
|
||||
);
|
||||
}
|
||||
Cache::set($key, $albums, CACHE_DAY);
|
||||
|
|
|
|||
|
|
@ -346,7 +346,7 @@ class Profile
|
|||
$r = q(
|
||||
"SELECT `url` FROM `contact` WHERE `uid` = %d AND `nurl` = '%s' AND `rel` = %d",
|
||||
intval($profile['uid']),
|
||||
dbesc(normalise_link(self::getMyURL())),
|
||||
DBA::escape(normalise_link(self::getMyURL())),
|
||||
intval(CONTACT_IS_FRIEND)
|
||||
);
|
||||
}
|
||||
|
|
@ -463,9 +463,9 @@ class Profile
|
|||
AND NOT `hidden` AND NOT `archive`
|
||||
AND `network` IN ('%s', '%s', '%s', '')",
|
||||
intval($profile['uid']),
|
||||
dbesc(NETWORK_DFRN),
|
||||
dbesc(NETWORK_DIASPORA),
|
||||
dbesc(NETWORK_OSTATUS)
|
||||
DBA::escape(NETWORK_DFRN),
|
||||
DBA::escape(NETWORK_DIASPORA),
|
||||
DBA::escape(NETWORK_OSTATUS)
|
||||
);
|
||||
if (DBA::isResult($r)) {
|
||||
$contacts = intval($r[0]['total']);
|
||||
|
|
|
|||
Loading…
Add table
Add a link
Reference in a new issue