diff --git a/main/online/online_chat.php b/main/online/online_chat.php index 15ff04aafe..c13352bf01 100755 --- a/main/online/online_chat.php +++ b/main/online/online_chat.php @@ -41,7 +41,7 @@ $reset=$_GET['reset']?true:false; $tbl_user = Database::get_main_table(TABLE_MAIN_USER); $query="SELECT username FROM $tbl_user WHERE user_id='".$_user['user_id']."'"; -$result=Database::query($query,__FILE__,__LINE__); +$result=Database::query($query); list($pseudoUser)=Database::fetch_row($result); diff --git a/main/online/online_hidden1.php b/main/online/online_hidden1.php index 4e4209dccd..9272271116 100755 --- a/main/online/online_hidden1.php +++ b/main/online/online_hidden1.php @@ -42,7 +42,7 @@ $tbl_user=Database::get_main_table(TABLE_MAIN_USER); $tbl_online_connected=Database::get_course_table(TABLE_ONLINE_CONNECTED); $query="SELECT username FROM $tbl_user WHERE user_id='".$_user['user_id']."'"; -$result=Database::query($query,__FILE__,__LINE__); +$result=Database::query($query); list($pseudoUser)=Database::fetch_row($result); @@ -63,10 +63,10 @@ $chat_size_old=intval($_POST['chat_size_old']); $chat_size_new=filesize($onlinePath.'messages-'.$dateNow.'.log'); $query="REPLACE INTO $tbl_online_connected (user_id,last_connection) VALUES('".$_user['user_id']."',NOW())"; -Database::query($query,__FILE__,__LINE__); +Database::query($query); $query="SELECT COUNT(user_id) FROM $tbl_online_connected WHERE last_connection>'".date('Y-m-d H:i:s',time()-60*5)."'"; -$result=Database::query($query,__FILE__,__LINE__); +$result=Database::query($query); $connected_old=intval($_POST['connected_old']); list($connected_new)=Database::fetch_row($result); diff --git a/main/online/online_hidden2.php b/main/online/online_hidden2.php index 80d1caef40..d34fa96bbe 100755 --- a/main/online/online_hidden2.php +++ b/main/online/online_hidden2.php @@ -41,7 +41,7 @@ $this_section=SECTION_COURSES; $tbl_user = Database::get_main_table(TABLE_MAIN_USER); $query="SELECT username FROM $tbl_user WHERE user_id='".$_user['user_id']."'"; -$result=Database::query($query,__FILE__,__LINE__); +$result=Database::query($query); list($pseudoUser)=Database::fetch_row($result); diff --git a/main/online/online_htmlarea.php b/main/online/online_htmlarea.php index 2dac52b25f..7173dd3076 100755 --- a/main/online/online_htmlarea.php +++ b/main/online/online_htmlarea.php @@ -41,7 +41,7 @@ $this_section=SECTION_COURSES; $tbl_user = Database::get_main_table(TABLE_MAIN_USER); $query="SELECT username FROM $tbl_user WHERE user_id='".$_user['user_id']."'"; -$result=Database::query($query,__FILE__,__LINE__); +$result=Database::query($query); list($pseudoUser)=Database::fetch_row($result); diff --git a/main/online/online_links.php b/main/online/online_links.php index 647525108f..845b5be532 100755 --- a/main/online/online_links.php +++ b/main/online/online_links.php @@ -47,7 +47,7 @@ $tbl_user=Database::get_main_table(TABLE_MAIN_USER); $tbl_online_link=Database::get_course_table(TABLE_ONLINE_LINK); $query="SELECT username FROM $tbl_user WHERE user_id='".$_user['user_id']."'"; -$result=Database::query($query,__FILE__,__LINE__); +$result=Database::query($query); list($pseudoUser)=Database::fetch_row($result); @@ -118,12 +118,12 @@ if($_POST['sent']) SET name='".addslashes($link_name)."', url='".addslashes($link_url)."' WHERE id='$link'"; - Database::query($query,__FILE__,__LINE__); + Database::query($query); } else { $query="INSERT INTO $tbl_online_link (name,url) VALUES('".addslashes($link_name)."','".addslashes($link_url)."')"; - Database::query($query,__FILE__,__LINE__); + Database::query($query); } } @@ -137,7 +137,7 @@ if($action == 'delete') $link=intval($_GET['link']); $query="DELETE FROM $tbl_online_link WHERE id='$link'"; - Database::query($query,__FILE__,__LINE__); + Database::query($query); Database::close(); header('Location: '.api_get_self()); @@ -145,7 +145,7 @@ if($action == 'delete') } $query="SELECT id,name,url FROM $tbl_online_link ORDER BY name"; -$result=Database::query($query,__FILE__,__LINE__); +$result=Database::query($query); $Links=array(); diff --git a/main/online/online_master.php b/main/online/online_master.php index 0cf8062399..e195977085 100755 --- a/main/online/online_master.php +++ b/main/online/online_master.php @@ -45,7 +45,7 @@ $tbl_course_user = Database::get_main_table(TABLE_MAIN_COURSE_USER); $tbl_online_link=Database::get_course_table(TABLE_ONLINE_LINK); $query="SELECT t1.user_id,username,picture_uri,t2.status FROM $tbl_user t1,$tbl_course_user t2 WHERE t1.user_id=t2.user_id AND course_code='$_cid' AND (t1.user_id='".$_user['user_id']."' OR t2.status='1')"; -$result=Database::query($query,__FILE__,__LINE__); +$result=Database::query($query); while($row=Database::fetch_array($result)) { @@ -114,7 +114,7 @@ if(!$isMaster) } $query="SELECT id,name,url FROM $tbl_online_link ORDER BY name"; - $result=Database::query($query,__FILE__,__LINE__); + $result=Database::query($query); $Links=Database::store_result($result); } diff --git a/main/online/online_message.php b/main/online/online_message.php index e004ad9729..31fff6cb75 100755 --- a/main/online/online_message.php +++ b/main/online/online_message.php @@ -50,7 +50,7 @@ $question = $_REQUEST['question']; $tbl_user = Database::get_main_table(TABLE_MAIN_USER); $query="SELECT username FROM $tbl_user WHERE user_id='".$_user['user_id']."'"; -$result=Database::query($query,__FILE__,__LINE__); +$result=Database::query($query); list($pseudoUser)=Database::fetch_row($result); diff --git a/main/online/online_streaming.php b/main/online/online_streaming.php index 65d8a9df11..a4f31d5253 100755 --- a/main/online/online_streaming.php +++ b/main/online/online_streaming.php @@ -41,7 +41,7 @@ $this_section=SECTION_COURSES; $tbl_user = Database::get_main_table(TABLE_MAIN_USER); $query="SELECT username FROM $tbl_user WHERE user_id='".$_user['user_id']."'"; -$result=Database::query($query,__FILE__,__LINE__); +$result=Database::query($query); list($pseudoUser)=Database::fetch_row($result); diff --git a/main/online/online_whoisonline.php b/main/online/online_whoisonline.php index f6e2cecbaa..063cdde6bc 100755 --- a/main/online/online_whoisonline.php +++ b/main/online/online_whoisonline.php @@ -45,7 +45,7 @@ $tbl_course_user = Database::get_main_table(TABLE_MAIN_COURSE_USER); $tbl_online_connected = Database::get_course_table(TABLE_ONLINE_CONNECTED); $query="SELECT username FROM $tbl_user WHERE user_id='".$_user['user_id']."'"; -$result=Database::query($query,__FILE__,__LINE__); +$result=Database::query($query); list($pseudoUser)=Database::fetch_row($result); @@ -60,7 +60,7 @@ if(!$isAllowed) $pictureURL=api_get_path(WEB_CODE_PATH).'upload/users/'; $query="SELECT t1.user_id,t1.username,t1.firstname,t1.lastname,t1.picture_uri,t3.status FROM $tbl_user t1,$tbl_online_connected t2,$tbl_course_user t3 WHERE t1.user_id=t2.user_id AND t3.user_id=t1.user_id AND t3.course_code = '".$_course[sysCode]."' AND t2.last_connection>'".date('Y-m-d H:i:s',time()-60*5)."' ORDER BY t1.username"; -$result=Database::query($query,__FILE__,__LINE__); +$result=Database::query($query); $Users=Database::store_result($result); diff --git a/main/online/online_working_area.php b/main/online/online_working_area.php index 7b512060ee..7cb7b33c07 100755 --- a/main/online/online_working_area.php +++ b/main/online/online_working_area.php @@ -40,7 +40,7 @@ $this_section=SECTION_COURSES; $tbl_user = Database::get_main_table(TABLE_MAIN_USER); $query="SELECT username FROM $tbl_user WHERE user_id='".$_user['user_id']."'"; -$result=Database::query($query,__FILE__,__LINE__); +$result=Database::query($query); list($pseudoUser)=Database::fetch_row($result); diff --git a/main/permissions/blog_permissions.inc.php b/main/permissions/blog_permissions.inc.php index 054111f38d..5e85b7401a 100755 --- a/main/permissions/blog_permissions.inc.php +++ b/main/permissions/blog_permissions.inc.php @@ -19,7 +19,7 @@ $blog_users = Blog::get_blog_users(Database::escape_string($_GET['blog_id'])); // and we want to keep it that way. $tbl_course_rel_user = $table=Database::get_main_table(TABLE_MAIN_COURSE_USER); $sql = "SELECT user_id FROM $tbl_course_rel_user WHERE status = '1' AND course_code = '".$_SESSION['_cid']."'"; -$result = Database::query($sql,__FILE__,__LINE__); +$result = Database::query($sql); while ($user = Database::fetch_assoc($result)) { unset($blog_users[$user['user_id']]); } diff --git a/main/permissions/permissions_functions.inc.php b/main/permissions/permissions_functions.inc.php index 8a5ae986e5..24e632670f 100755 --- a/main/permissions/permissions_functions.inc.php +++ b/main/permissions/permissions_functions.inc.php @@ -42,7 +42,7 @@ function store_permissions($content, $id) // We first delete all the existing permissions for that user/group/role $sql="DELETE FROM $table WHERE $id_field = '".Database::escape_string($id)."'"; - $result=Database::query($sql, __FILE__, __LINE__); + $result=Database::query($sql); // looping through the post values to find the permission (containing the string permission* ) foreach ($_POST as $key => $value) @@ -51,7 +51,7 @@ function store_permissions($content, $id) { list($brol,$tool,$action)=explode("*",$key); $sql="INSERT INTO $table ($id_field,tool,action) VALUES ('".Database::escape_string($id)."','".Database::escape_string($tool)."','".Database::escape_string($action)."')"; - $result=Database::query($sql, __FILE__, __LINE__); + $result=Database::query($sql); } @@ -101,7 +101,7 @@ function store_one_permission($content, $action, $id, $tool,$permission) if($action=='grant') { $sql="INSERT INTO $table ($id_field,tool,action) VALUES ('".Database::escape_string($id)."','".Database::escape_string($tool)."','".Database::escape_string($permission)."')"; - $result=Database::query($sql, __FILE__, __LINE__); + $result=Database::query($sql); if($result) { $result_message=get_lang('PermissionGranted'); @@ -110,7 +110,7 @@ function store_one_permission($content, $action, $id, $tool,$permission) if($action=='revoke') { $sql="DELETE FROM $table WHERE $id_field = '".Database::escape_string($id)."' AND tool='".Database::escape_string($tool)."' AND action='".Database::escape_string($permission)."'"; - $result=Database::query($sql, __FILE__, __LINE__); + $result=Database::query($sql); if($result) { $result_message=get_lang('PermissionRevoked'); @@ -162,7 +162,7 @@ function get_permissions($content, $id) $sql=" SELECT * FROM " . $table . " WHERE " . $id_field . "='" . Database::escape_string($id) . "'"; - $result = Database::query($sql, __FILE__, __LINE__); + $result = Database::query($sql); while($row = Database::fetch_array($result)) $currentpermissions[$row['tool']][] = $row['action']; @@ -419,7 +419,7 @@ function display_role_list($current_course_roles, $current_platform_roles) /* // platform roles $sql="SELECT * FROM $platform_roles_table"; - $result=Database::query($sql, __FILE__, __LINE__); + $result=Database::query($sql); while ($row=Database::fetch_array($result)) { if(in_array($row['role_id'], $current_platform_roles)) @@ -448,7 +448,7 @@ function display_role_list($current_course_roles, $current_platform_roles) */ // course roles $sql="SELECT * FROM $coures_roles_table"; - $result=Database::query($sql, __FILE__, __LINE__); + $result=Database::query($sql); while ($row=Database::fetch_array($result)) { if(in_array($row['role_id'], $current_course_roles)) @@ -504,7 +504,7 @@ function get_roles($content,$id, $scope='course') $current_roles=array(); //$sql="SELECT role.role_id FROM $table role_group_user, $table_role role WHERE role_group_user.$id_field = '$id' AND role_group_user.role_id=role.role_id AND role_group_user.scope='".$scope."'";$sql="SELECT role.role_id FROM $table role_group_user, $table_role role WHERE role_group_user.$id_field = '$id' AND role_group_user.role_id=role.role_id AND role_group_user.scope='".$scope."'"; $sql="SELECT role_id FROM $table WHERE $id_field = '$id' AND scope='".$scope."'"; - $result=Database::query($sql, __FILE__, __LINE__); + $result=Database::query($sql); while ($row=Database::fetch_array($result)) { $current_roles[]=$row['role_id']; @@ -532,7 +532,7 @@ function get_all_roles($content='course') $current_roles=array(); $sql="SELECT * FROM $table_role"; - $result=Database::query($sql, __FILE__, __LINE__); + $result=Database::query($sql); while ($row=Database::fetch_array($result)) { $roles[]=$row; @@ -594,7 +594,7 @@ function get_roles_permissions($content,$id, $scope='course') role_group_user.role_id = role.role_id AND role.role_id = role_permissions.role_id"; - $result = Database::query($sql, __FILE__, __LINE__); + $result = Database::query($sql); while($row=Database::fetch_array($result)) $current_role_permissions[$row['tool']][]=$row['action']; @@ -633,7 +633,7 @@ function assign_role($content, $action, $id, $role_id, $scope='course') if($action=='grant') { $sql="INSERT INTO $table (role_id, scope, $id_field) VALUES ('".Database::escape_string($role_id)."','".Database::escape_string($scope)."','".Database::escape_string($id)."')"; - $result=Database::query($sql, __FILE__, __LINE__); + $result=Database::query($sql); if($result) { $result_message=get_lang('RoleGranted'); @@ -642,7 +642,7 @@ function assign_role($content, $action, $id, $role_id, $scope='course') if($action=='revoke') { $sql="DELETE FROM $table WHERE $id_field = '".Database::escape_string($id)."' AND role_id='".Database::escape_string($role_id)."'"; - $result=Database::query($sql, __FILE__, __LINE__); + $result=Database::query($sql); if($result) { $result_message=get_lang('RoleRevoked'); diff --git a/main/permissions/roles.php b/main/permissions/roles.php index a916ce3d93..a1dbcdb3ad 100755 --- a/main/permissions/roles.php +++ b/main/permissions/roles.php @@ -42,22 +42,22 @@ if (isset($_GET['action']) AND isset($_GET['role_id']) AND $_GET['action']=='del //deleting the assignments fo this role: users $table=Database::get_course_table(TABLE_ROLE_USER); $sql="DELETE FROM $table WHERE role_id='".Database::escape_string($_GET['role_id'])."'"; - $result=Database::query($sql, __LINE__, __FILE__); + $result=Database::query($sql); // deleting the assignments of this role: groups $table=Database::get_course_table(TABLE_ROLE_GROUP); $sql="DELETE FROM $table WHERE role_id='".Database::escape_string($_GET['role_id'])."'"; - $result=Database::query($sql, __LINE__, __FILE__); + $result=Database::query($sql); // deleting the permissions of this role $table=Database::get_course_table(TABLE_ROLE_PERMISSION); $sql="DELETE FROM $table WHERE role_id='".Database::escape_string($_GET['role_id'])."'"; - $result=Database::query($sql, __LINE__, __FILE__); + $result=Database::query($sql); // deleting the role $table_role=Database::get_course_table(TABLE_ROLE); $sql="DELETE FROM $table_role WHERE role_id='".Database::escape_string($_GET['role_id'])."'"; - $result=Database::query($sql, __LINE__, __FILE__); + $result=Database::query($sql); $result_message=get_lang('RoleDeleted'); } diff --git a/main/reservation/rsys.php b/main/reservation/rsys.php index e0d63de3c5..f26b9d4dd2 100755 --- a/main/reservation/rsys.php +++ b/main/reservation/rsys.php @@ -59,7 +59,7 @@ class Rsys { function get_num_subscriptions_reservationperiods($res_id) { $sql = "SELECT COUNT(*) FROM ".Rsys :: getTable("subscription")." s WHERE s.reservation_id = '".Database::escape_string($res_id)."'"; - return @ Database::result(Database::query($sql, __FILE__, __LINE__), 0, 0); + return @ Database::result(Database::query($sql), 0, 0); } /** @@ -166,7 +166,7 @@ class Rsys { function add_category($naam) { if (Rsys :: check_category($naam)) { $sql = "INSERT INTO ".Rsys :: getTable("category")." (name) VALUES ('".Database::escape_string($naam)."')"; - Database::query($sql, __FILE__, __LINE__); + Database::query($sql); return Database::insert_id(); } return false; @@ -180,7 +180,7 @@ class Rsys { */ function check_category($name, $id=0) { $sql = "SELECT name FROM ".Rsys :: getTable("category")." WHERE LCASE(name)='".strtolower(Database::escape_string($name))."' AND id<>".Database::escape_string($id).""; - $Result = Database::query($sql, __FILE__, __LINE__); + $Result = Database::query($sql); return (Database::num_rows($Result) == 0); } @@ -193,7 +193,7 @@ class Rsys { function edit_category($id, $name) { if (Rsys :: check_category($name, $id)) { $sql = "UPDATE ".Rsys :: getTable("category")." SET name = '".Database::escape_string($name)."' WHERE id =".Database::escape_string($id).""; - Database::query($sql, __FILE__, __LINE__); + Database::query($sql); return $id; } return false; @@ -206,10 +206,10 @@ class Rsys { */ function delete_category($id) { $sql = "SELECT id FROM ".Rsys :: getTable("item")." WHERE category_id=".Database::escape_string($id).""; - $result = Database::query($sql, __FILE__, __LINE__); + $result = Database::query($sql); if (Database::num_rows($result) == 0) { $sql2 = "DELETE FROM ".Rsys :: getTable("category")." WHERE id =".Database::escape_string($id).""; - Database::query($sql2, __FILE__, __LINE__); + Database::query($sql2); return 0; } else { return Database::num_rows($result); @@ -230,7 +230,7 @@ class Rsys { $sql .= " WHERE id = ".Database::escape_string($id).""; else $sql .= " ORDER BY ".$orderby; - $arr = Database::store_result(Database::query($sql, __FILE__, __LINE__)); + $arr = Database::store_result(Database::query($sql)); if (!empty ($id)) return $arr[0]; else @@ -252,7 +252,7 @@ class Rsys { WHERE (cu.user_id='".api_get_user_id()."' AND ir.view_right=1) OR i.creator='".api_get_user_id()."' OR 1=". (api_is_platform_admin() ? 1 : 0)." GROUP BY c.id ORDER BY ".$orderby; - $arr = Database::store_result(Database::query($sql, __FILE__, __LINE__)); + $arr = Database::store_result(Database::query($sql)); return $arr; } @@ -271,7 +271,7 @@ class Rsys { WHERE (cu.user_id='".api_get_user_id()."' AND (ir.edit_right=1 OR ir.delete_right=1)) OR i.creator='".api_get_user_id()."' OR 1=". (api_is_platform_admin() ? 1 : 0)." GROUP BY c.id ORDER BY ".$orderby; - $arr = Database::store_result(Database::query($sql, __FILE__, __LINE__)); + $arr = Database::store_result(Database::query($sql)); return $arr; } @@ -297,7 +297,7 @@ class Rsys { } $sql .= " ORDER BY col".$column." ".$direction." LIMIT ".$from.",".$per_page; - $result = Database::query($sql, __FILE__, __LINE__); + $result = Database::query($sql); while ($array = Database::fetch_array($result, 'NUM')) $arr[] = $array; return $arr; @@ -314,7 +314,7 @@ class Rsys { $keyword = Database::escape_string(trim($_GET['keyword'])); $sql .= " WHERE name LIKE '%".$keyword."%' OR id LIKE '%".$keyword."%'"; } - return @ Database::result(Database::query($sql, __FILE__, __LINE__), 0, 0); + return @ Database::result(Database::query($sql), 0, 0); } /* @@ -337,7 +337,7 @@ class Rsys { WHERE LCASE(name)='".strtolower(Database::escape_string($item))."' AND category_id=".Database::escape_string($category)." AND id<>".Database::escape_string($id).""; - $Result = Database::query($sql, __FILE__, __LINE__); + $Result = Database::query($sql); return (Database::num_rows($Result) == 0); } @@ -353,7 +353,7 @@ class Rsys { function add_item($name, $description, $category, $course = "") { if (Rsys :: check_item($name, $category)) { $sql = "INSERT INTO ".Rsys :: getTable("item")." (category_id,course_code,name,description,creator) VALUES ('".Database::escape_string($category)."','".Database::escape_string($course)."','".Database::escape_string($name)."','".Database::escape_string($description)."','".api_get_user_id()."')"; - Database::query($sql, __FILE__, __LINE__); + Database::query($sql); return Database::insert_id(); } return false; @@ -375,7 +375,7 @@ class Rsys { return false; $sql = "UPDATE ".Rsys :: getTable("item")." SET category_id='".Database::escape_string($category)."',course_code='".Database::escape_string($course)."',name='".Database::escape_string($name)."',description='".Database::escape_string($description)."' " . "WHERE id =".Database::escape_string($id).""; - Database::query($sql, __FILE__, __LINE__); + Database::query($sql); return $id; } @@ -388,18 +388,18 @@ class Rsys { if (!Rsys :: item_allow($id, 'delete')) return false; $sql = "SELECT id,end_at FROM".Rsys :: getTable('reservation')." WHERE item_id=".Database::escape_string($id).""; - $result = Database::query($sql, __FILE__, __LINE__); + $result = Database::query($sql); while ($array = Database::fetch_array($result)) { if (Rsys :: mysql_datetime_to_timestamp(date('Y-m-d H:i:s')) <= Rsys :: mysql_datetime_to_timestamp($array[1])) $checked = true; } if (!$checked) { $sql = "DELETE FROM ".Rsys :: getTable("item")." WHERE id =".Database::escape_string($id).""; - Database::query($sql, __FILE__, __LINE__); + Database::query($sql); $sql = "DELETE FROM ".Rsys :: getTable("item_rights")." WHERE item_id =".Database::escape_string($id).""; - Database::query($sql, __FILE__, __LINE__); + Database::query($sql); $sql = "DELETE FROM ".Rsys :: getTable("reservation")." WHERE item_id =".Database::escape_string($id).""; - Database::query($sql, __FILE__, __LINE__); + Database::query($sql); return '0'; } else { return Database::num_rows($result); @@ -431,7 +431,7 @@ class Rsys { LEFT JOIN ".Database :: get_main_table(TABLE_MAIN_CLASS)." c ON ir.class_id=c.id AND ir.item_id = i.id LEFT JOIN ".Database :: get_main_table(TABLE_MAIN_CLASS_USER)." cu ON cu.class_id = c.id WHERE i.id='".Database::escape_string($item_id)."' AND (". (!empty ($x) ? "(cu.user_id='".api_get_user_id()."' AND ".$x.") OR " : '')." i.creator='".api_get_user_id()."' OR 1=". (api_is_platform_admin() ? 1 : 0).")"; - return Database::num_rows(Database::query($sql, __FILE__, __LINE__)) > 0; + return Database::num_rows(Database::query($sql)) > 0; } /** @@ -450,7 +450,7 @@ class Rsys { $sql .= " WHERE i.id = '".$id."'"; } else $sql .= " LEFT JOIN ".Rsys :: getTable("item_rights")." ir ON ir.item_id=i.id LEFT JOIN ".Database :: get_main_table(TABLE_MAIN_CLASS)." c ON ir.class_id=c.id AND ir.item_id = i.id LEFT JOIN ".Database :: get_main_table(TABLE_MAIN_CLASS_USER)." cu ON cu.class_id = c.id WHERE (cu.user_id='".api_get_user_id()."' AND ir.view_right=1) OR i.creator='".api_get_user_id()."' OR 1=". (api_is_platform_admin() ? 1 : 0)." ORDER BY ".$orderby; - $arr = Database::store_result(Database::query($sql, __FILE__, __LINE__)); + $arr = Database::store_result(Database::query($sql)); if (!empty ($id)) return $arr[0]; // Return one row only else @@ -466,7 +466,7 @@ class Rsys { function is_blackout($itemid) { $sql = "SELECT id FROM ".Rsys :: getTable("item"); $sql .= " WHERE id = ".Database::escape_string($itemid)." AND blackout=1"; - return Database::num_rows(Database::query($sql, __FILE__, __LINE__)) == 1; + return Database::num_rows(Database::query($sql)) == 1; } /** @@ -478,7 +478,7 @@ class Rsys { */ function get_category_items($id, $orderby = "name ASC") { $sql = "SELECT * FROM ".Rsys :: getTable("item")." WHERE category_id = ".Database::escape_string($id)." ORDER BY ".$orderby; - $arr = Database::store_result(Database::query($sql, __FILE__, __LINE__)); + $arr = Database::store_result(Database::query($sql)); return $arr; } @@ -491,7 +491,7 @@ class Rsys { */ function get_course_items($id, $orderby = "name ASC") { $sql = "SELECT * FROM ".Rsys :: getTable("item")." WHERE course_id = ".Database::escape_string($id)." ORDER BY ".$orderby; - $arr = Database::store_result(Database::query($sql, __FILE__, __LINE__)); + $arr = Database::store_result(Database::query($sql)); return $arr; } @@ -524,7 +524,7 @@ class Rsys { } $sql .= " GROUP BY i.id ORDER BY col".$column." ".$direction." LIMIT ".$from.",".$per_page; - $result = Database::query($sql, __FILE__, __LINE__); + $result = Database::query($sql); while ($array = Database::fetch_array($result, 'NUM')) { if (!$array[4]) @@ -547,7 +547,7 @@ class Rsys { WHERE ( 1=". (api_is_platform_admin() ? 1 : 0)." OR ((cu.user_id='".api_get_user_id()."' AND (ir.edit_right=1 OR ir.delete_right=1)) OR i.creator='".api_get_user_id()."' ))"; - return @ Database::result(Database::query($sql, __FILE__, __LINE__), 0, 0); + return @ Database::result(Database::query($sql), 0, 0); } /** @@ -562,13 +562,13 @@ class Rsys { function get_table_itemrights($from, $per_page, $column, $direction) { $itemid = Database::escape_string($_GET['item_id']); $sql = "SELECT id, name FROM ".Database :: get_main_table(TABLE_MAIN_CLASS); - $result = Database::query($sql, __FILE__, __LINE__); + $result = Database::query($sql); while ($array = Database::fetch_array($result, 'NUM')) { $arr[] = $array; } $sql = "SELECT item_id, class_id,edit_right,delete_right,m_reservation,view_right FROM ".Rsys :: getTable("item_rights")." WHERE item_id=".$itemid; - $result = Database::query($sql, __FILE__, __LINE__); + $result = Database::query($sql); while ($array = Database::fetch_array($result, 'NUM')) { $arr1[] = $array; } @@ -624,14 +624,14 @@ class Rsys { $column = Database::escape_string($column); $sql = "SELECT item_id FROM ".Rsys :: getTable("item_rights")."WHERE item_id=".$item_id." AND class_id=".$class_id; - $result = Database::query($sql, __FILE__, __LINE__); + $result = Database::query($sql); $switcher = Database::num_rows($result); if ($switcher > 0) { $sql = $sql = "UPDATE ".Rsys :: getTable("item_rights")." SET ".$column."='".$value."' WHERE class_id = '".$class_id."' AND item_id ='".$item_id."'"; - Database::query($sql, __FILE__, __LINE__); + Database::query($sql); } else { $sql = "INSERT INTO ".Rsys :: getTable("item_rights")." (item_id,class_id,".$column.") VALUES ('".$item_id."','".$class_id."','".$value."')"; - Database::query($sql, __FILE__, __LINE__); + Database::query($sql); } } @@ -642,7 +642,7 @@ class Rsys { */ function get_num_itemrights() { $sql = "SELECT COUNT(id) FROM ".Database :: get_main_table(TABLE_MAIN_CLASS); - return @ Database::result(Database::query($sql, __FILE__, __LINE__), 0, 0); + return @ Database::result(Database::query($sql), 0, 0); } /** @@ -655,7 +655,7 @@ class Rsys { $item_id = Database::escape_string($item_id); $sql = "SELECT * FROM ".Database :: get_main_table(TABLE_MAIN_CLASS)." WHERE id NOT IN (SELECT class_id FROM ".Rsys :: getTable("item_rights")." WHERE item_id='".$item_id."') ORDER BY name ASC, code ASC"; - $arr = Database::store_result(Database::query($sql, __FILE__, __LINE__)); + $arr = Database::store_result(Database::query($sql)); return $arr; } @@ -668,7 +668,7 @@ class Rsys { function get_num_itemfiltered_class($item_id) { $item_id = Database::escape_string($item_id); $sql = "SELECT COUNT(id) FROM ".Database :: get_main_table(TABLE_MAIN_CLASS)." WHERE id NOT IN (SELECT class_id FROM ".Rsys :: getTable("item_rights")." WHERE item_id='".$item_id."') ORDER BY name ASC, code ASC"; - return Database::result(Database::query($sql, __FILE__, __LINE__), 0, 0); + return Database::result(Database::query($sql), 0, 0); } /** @@ -684,7 +684,7 @@ class Rsys { if (!Rsys :: item_allow($item_id, 'm_rights')) return false; $sql = "INSERT INTO ".Rsys :: getTable("item_rights")." (item_id,class_id,edit_right,delete_right,m_reservation) VALUES ('".Database::escape_string($item_id)."','".Database::escape_string($class_id)."','".Database::escape_string($edit)."','".Database::escape_string($delete)."','".Database::escape_string($m_reservation)."')"; - Database::query($sql, __FILE__, __LINE__); + Database::query($sql); } /** @@ -704,7 +704,7 @@ class Rsys { if (!Rsys :: item_allow($item_id, 'm_rights')) return false; $sql = "UPDATE ".Rsys :: getTable("item_rights")." SET edit_right='".Database::escape_string($edit)."', delete_right='".Database::escape_string($delete)."', m_reservation='".Database::escape_string($m_reservation)."' WHERE class_id = '".$class_id."' AND item_id ='".$item_id."'"; - Database::query($sql, __FILE__, __LINE__); + Database::query($sql); } /** @@ -719,13 +719,13 @@ class Rsys { if (!Rsys :: item_allow($item_id, 'm_rights')) return false; $sql = "DELETE FROM ".Rsys :: getTable("item_rights")." WHERE item_id='".$item_id."' AND class_id='".$class_id."'"; - Database::query($sql, __FILE__, __LINE__); + Database::query($sql); } function get_class_group($class_id) { $class_id = Database::escape_string($class_id); $sql = "SELECT * FROM ".Database :: get_main_table(TABLE_MAIN_CLASS)." WHERE id='".$class_id."'"; - $arr = Database::store_result(Database::query($sql, __FILE__, __LINE__)); + $arr = Database::store_result(Database::query($sql)); return $arr; } @@ -734,17 +734,17 @@ class Rsys { $class_id = Database::escape_string($class_id); $sql = "SELECT * FROM ".Rsys :: getTable('item_rights')." WHERE item_id='".$item_id."' AND class_id='".$class_id."'"; - $arr = Database::store_result(Database::query($sql, __FILE__, __LINE__)); + $arr = Database::store_result(Database::query($sql)); return $arr; } function black_out_changer($item_id) { $item_id = Database::escape_string($item_id); $sql = "SELECT blackout FROM ".Rsys :: getTable("item")." WHERE id='".$item_id."'"; - $Value = Database::store_result(Database::query($sql, __FILE__, __LINE__)); + $Value = Database::store_result(Database::query($sql)); ($Value[0][0] == 0 ? $changedValue = 1 : $changedValue = 0); $sql = "UPDATE ".Rsys :: getTable("item")." SET blackout='".$changedValue."' WHERE id = '".$item_id."'"; - Database::query($sql, __FILE__, __LINE__); + Database::query($sql); Rsys :: black_out_notifier($item_id, $Value[0][0]); return $changedValue; } @@ -756,17 +756,17 @@ class Rsys { $sql = "SELECT id, timepicker FROM ".Rsys :: getTable('reservation')." WHERE item_id='".$item_id."' AND subscribers > '0'"; $value == 1 ? $sql .= " AND end_at >= (NOW()-7000000) " : $sql .= " AND end_at >= NOW()"; - $reservations = Database::query($sql, __FILE__, __LINE__); + $reservations = Database::query($sql); while ($reservation = Database::fetch_array($reservations)) { $sql = "SELECT user_id FROM ".Rsys :: getTable('subscription')." WHERE reservation_id='".$reservation[0]."'"; if ($reservation[1] == 1) { $sql .= " AND end_at >= NOW() "; } - $subscriptions = Database::query($sql, __FILE__, __LINE__); + $subscriptions = Database::query($sql); while ($subscription = Database::fetch_array($subscriptions)) { $user_info = api_get_user_info($subscription[0]); $sql2 = "SELECT name FROM ".Rsys :: getTable('item')." WHERE id='".$item_id."'"; - $items = Database::query($sql2, __FILE__, __LINE__); + $items = Database::query($sql2); $item = Database::fetch_array($items); $item_name=$item['name']; if ($reservation[1] == 0) @@ -779,7 +779,7 @@ class Rsys { //er wordt gebruik gemaakt van een timepicker dus begin en einddatum kan opgehaald worden uit subscriptions $sql2 = "SELECT start_at,end_at FROM ".Rsys :: getTable('subscription')." WHERE reservation_id='".$reservation[0]."'"; } - $items = Database::query($sql2, __FILE__, __LINE__); + $items = Database::query($sql2); $item = Database::fetch_array($items); $begindatum = $item['start_at']; $einddatum = $item['end_at']; @@ -826,7 +826,7 @@ class Rsys { $sql = "SELECT * FROM ".Rsys :: getTable('reservation')." WHERE item_id='".$item_id."' ORDER BY start_at"; - $result = Database::query($sql, __FILE__, __LINE__); + $result = Database::query($sql); while ($array = Database::fetch_array($result)) { $GLOBALS['start_date'] = $array[5]; @@ -843,7 +843,7 @@ class Rsys { start_at < '".$end_at."') OR (end_at > '".$start_at."' AND end_at < '".$end_at."') OR (start_at <= '".$start_at."' AND end_at >= '".$end_at."')) AND item_id='".$item_id."'"; - $result = Database::fetch_array(Database::query($sql, __FILE__, __LINE__)); + $result = Database::fetch_array(Database::query($sql)); if (count($result) != 0){ $GLOBALS['start_date'] = $result[1]; $GLOBALS['end_date'] = $result[2]; @@ -862,7 +862,7 @@ class Rsys { $sql = "SELECT * FROM ".Rsys :: getTable('reservation')." WHERE item_id='".$item_id."' AND id <> '".$reservation_id."' ORDER BY start_at"; - $result = Database::query($sql, __FILE__, __LINE__); + $result = Database::query($sql); while ($array = Database::fetch_array($result)) { $GLOBALS['start_date'] = $array[5]; @@ -881,7 +881,7 @@ class Rsys { end_at < '".$end_at."') OR (start_at <= '".$start_at."' AND end_at >= '".$end_at."')) AND item_id='".$item_id."' AND id <> '".$reservation_id."'"; - $result = Database::fetch_array(Database::query($sql, __FILE__, __LINE__)); + $result = Database::fetch_array(Database::query($sql)); if (count($result) != 0){ $GLOBALS['start_date'] = $result[1]; @@ -899,7 +899,7 @@ class Rsys { LEFT JOIN ".Database :: get_main_table(TABLE_MAIN_CLASS)." c ON ir.class_id=c.id AND ir.item_id = i.id LEFT JOIN ".Database :: get_main_table(TABLE_MAIN_CLASS_USER)." cu ON cu.class_id = c.id WHERE (cu.user_id='".api_get_user_id()."' AND ir.m_reservation=1 ) OR i.creator='".api_get_user_id()."' OR 1=". (api_is_platform_admin() ? 1 : 0)." ORDER BY cat.name ASC"; - $result = Database::query($sql, __FILE__, __LINE__); + $result = Database::query($sql); while ($array = Database::fetch_array($result)) $arr[$array['catid']] = $array['catname']; return $arr; @@ -918,7 +918,7 @@ class Rsys { LEFT JOIN ".Database :: get_main_table(TABLE_MAIN_CLASS_USER)." cu ON cu.class_id = c.id WHERE ((cu.user_id='".api_get_user_id()."' AND ir.m_reservation=1 ) OR i.creator='".api_get_user_id()."' OR 1=". (api_is_platform_admin() ? 1 : 0).") AND (category_id =".$category.") ORDER BY cat.name ASC, i.name ASC"; - $result = Database::query($sql, __FILE__, __LINE__); + $result = Database::query($sql); while ($array = Database::fetch_array($result)) $arr[$array['id']] = $array['catitem']; return $arr; @@ -937,7 +937,7 @@ class Rsys { LEFT JOIN ".Database :: get_main_table(TABLE_MAIN_CLASS_USER)." cu ON cu.class_id = c.id WHERE ((cu.user_id='".api_get_user_id()."' AND ir.view_right=1 ) OR i.creator='".api_get_user_id()."' OR 1=". (api_is_platform_admin() ? 1 : 0).") AND (category_id =".$category.") ORDER BY cat.name ASC, i.name ASC"; - $result = Database::query($sql, __FILE__, __LINE__); + $result = Database::query($sql); while ($array = Database::fetch_array($result)) $arr[$array['id']] = $array['catitem']; return $arr; @@ -974,7 +974,7 @@ class Rsys { } $sql .= " ORDER BY col".$column." ".$direction." LIMIT ".$from.",".$per_page; - $result = Database::query($sql, __FILE__, __LINE__); + $result = Database::query($sql); while ($array = Database::fetch_array($result, 'NUM')) { $arr[] = $array; } @@ -990,7 +990,7 @@ class Rsys { LEFT JOIN ".Database :: get_main_table(TABLE_MAIN_CLASS)." c ON ir.class_id=c.id AND ir.item_id = i.id LEFT JOIN ".Database :: get_main_table(TABLE_MAIN_CLASS_USER)." cu ON cu.class_id = c.id WHERE ((cu.user_id='".api_get_user_id()."'AND ir.edit_right=1) OR 1=". (api_is_platform_admin() ? 1 : 0).") AND r.id='".$id."'"; - $result = Database::query($sql, __FILE__, __LINE__); + $result = Database::query($sql); while ($array = Database::fetch_array($result, 'NUM')) { $arr[] = $array; } @@ -1006,7 +1006,7 @@ class Rsys { LEFT JOIN ".Database :: get_main_table(TABLE_MAIN_CLASS)." c ON ir.class_id=c.id AND ir.item_id = i.id LEFT JOIN ".Database :: get_main_table(TABLE_MAIN_CLASS_USER)." cu ON cu.class_id = c.id WHERE ((cu.user_id='".api_get_user_id()."'AND ir.delete_right=1) OR 1=". (api_is_platform_admin() ? 1 : 0).") AND r.id='".$id."'"; - $result = Database::query($sql, __FILE__, __LINE__); + $result = Database::query($sql); while ($array = Database::fetch_array($result, 'NUM')) { $arr[] = $array; } @@ -1016,7 +1016,7 @@ class Rsys { function check_auto_accept($id) { $id = Database::escape_string($id); $sql = "SELECT auto_accept FROM ".Rsys :: getTable('reservation')." WHERE id='".$id."'"; - return Database::result(Database::query($sql, __FILE__, __LINE__), 0, 0); + return Database::result(Database::query($sql), 0, 0); } /** @@ -1036,7 +1036,7 @@ class Rsys { $keyword = Database::escape_string(trim($_GET['keyword'])); $sql .= " AND (i.name LIKE '%".$keyword."%' OR i.description LIKE '%".$keyword."%' OR r.notes LIKE '%".$keyword."%')"; } - return Database::result(Database::query($sql, __FILE__, __LINE__), 0, 0); + return Database::result(Database::query($sql), 0, 0); } /** @@ -1096,7 +1096,7 @@ class Rsys { } $sql = "INSERT INTO ".Rsys :: getTable("reservation")." (item_id,auto_accept,max_users,start_at,end_at,subscribe_from,subscribe_until,notes,timepicker,timepicker_min,timepicker_max,subid) VALUES ('".Database::escape_string($item_id)."','".Database::escape_string($auto_accept)."','". (intval($max_users) > 1 ? $max_users : 1)."','".Database::escape_string($start_at)."','".Database::escape_string($end_at)."','".Database::escape_string($subscribe_from)."','".Database::escape_string($subscribe_until)."','".Database::escape_string($notes)."','".$timepicker."','".$min."','".$max."','". ($subid == 0 ? 0 : $subid)."')"; - Database::query($sql, __FILE__, __LINE__); + Database::query($sql); return 0; } @@ -1126,7 +1126,7 @@ class Rsys { return 2; } $sql = "SELECT timepicker, subscribers FROM ".Rsys :: getTable("reservation")." WHERE id='".$id."'"; - $result = Database::fetch_array(Database::query($sql, __FILE__, __LINE__)); + $result = Database::fetch_array(Database::query($sql)); if ($result[0] == 0 && $result[1] > $max_users) { return 3; } @@ -1136,7 +1136,7 @@ class Rsys { } if ($auto_accept == 1) { $sql = "SELECT dummy FROM ".Rsys :: getTable("subscription")." WHERE reservation_id='".$id."'"; - $result = Database::query($sql, __FILE__, __LINE__); + $result = Database::query($sql); while ($array = Database::fetch_array($result, 'NUM')) { Rsys :: set_accepted($array[0], 1); } @@ -1144,7 +1144,7 @@ class Rsys { $auto_accept = 0; } $sql = "UPDATE ".Rsys :: getTable("reservation")." SET item_id='".Database::escape_string($item_id)."',auto_accept='".Database::escape_string($auto_accept)."',max_users='". ($max_users > 1 ? $max_users : 1)."',start_at='".Database::escape_string($start_at)."',end_at='".Database::escape_string($end_at)."',subscribe_from='".Database::escape_string($subscribe_from)."',subscribe_until='".Database::escape_string($subscribe_until)."',notes='".Database::escape_string($notes)."' WHERE id='".$id."'"; - Database::query($sql, __FILE__, __LINE__); + Database::query($sql); return 0; } @@ -1155,22 +1155,22 @@ class Rsys { $id = Database::escape_string($id); $sql = "SELECT id FROM ".Rsys :: getTable("reservation")."WHERE id='".$id."' OR subid='".$id."'"; - $result2 = Database::query($sql, __FILE__, __LINE__); + $result2 = Database::query($sql); while ($arr = Database::fetch_array($result2, 'NUM')) { $sql = "SELECT s.dummy, s.user_id, i.name, r.start_at, r.end_at FROM ".Rsys :: getTable("subscription")." s INNER JOIN ".Rsys :: getTable("reservation")." r ON s.reservation_id = r.id INNER JOIN ".Rsys :: getTable("item")." i ON r.item_id = i.id WHERE s.reservation_id='".$arr[0]."'"; - $result = Database::query($sql, __FILE__, __LINE__); + $result = Database::query($sql); while ($array = Database::fetch_array($result, 'NUM')) { $user_info = api_get_user_info($array[1]); api_send_mail($user_info['mail'], str_replace('#NAME#', $array[2], get_lang("ReservationDeleteTitle")), str_replace('#START#', $array[3], str_replace('#END#', $array[4], str_replace('#NAME#', $array[2], get_lang("ReservationDeleteMessage"))))); $sql = "DELETE FROM ".Rsys :: getTable("subscription")." WHERE dummy='".$array[0]."'"; - Database::query($sql, __FILE__, __LINE__); + Database::query($sql); } $sql = "DELETE FROM ".Rsys :: getTable("reservation")." WHERE id='".$arr[0]."'"; - Database::query($sql, __FILE__, __LINE__); + Database::query($sql); } } @@ -1180,7 +1180,7 @@ class Rsys { where i.id = r.item_id and r.id = '".$id."' and i.creator ='".api_get_user_id()."'"; - $result = Database::query($sql, __FILE__, __LINE__); + $result = Database::query($sql); if (Database::num_rows($result) != 0) return 1; return 0; @@ -1196,7 +1196,7 @@ class Rsys { LEFT JOIN ".Database :: get_main_table(TABLE_MAIN_CLASS)." c ON ir.class_id=c.id AND ir.item_id = i.id LEFT JOIN ".Database :: get_main_table(TABLE_MAIN_CLASS_USER)." cu ON cu.class_id = c.id WHERE (cu.user_id='".api_get_user_id()."' OR 1=". (api_is_platform_admin() ? 1 : 0)." OR 1=".(Rsys :: is_owner_item("$id")? 1 : 0).") AND r.id='".$id."'"; - $result = Database::query($sql, __FILE__, __LINE__); + $result = Database::query($sql); while ($array = Database::fetch_array($result, 'NUM')) $arr[] = $array; return $arr; @@ -1223,7 +1223,7 @@ class Rsys { $keyword = Database::escape_string(trim($_GET['keyword'])); $sql .= " AND (i1.name LIKE '%".$keyword."%' or r1.start_at LIKE '%".$keyword."%' or r1.end_at LIKE '%".$keyword."%' or u.lastname LIKE '%".$keyword."%' or u.firstname LIKE '%".$keyword."%' or s.start_at LIKE '%".$keyword."%' or s.end_at LIKE '%".$keyword."%')"; } - return Database::result(Database::query($sql, __FILE__, __LINE__), 0, 0); + return Database::result(Database::query($sql), 0, 0); } function get_table_subcribed_reservations($from, $per_page, $column, $direction) { @@ -1260,10 +1260,10 @@ class Rsys { $sql .= " AND (i1.name LIKE '%".$keyword."%' or c.name LIKE '%".$keyword."%' or r1.start_at LIKE '%".$keyword."%' or r1.end_at LIKE '%".$keyword."%' or u.lastname LIKE '%".$keyword."%' or u.firstname LIKE '%".$keyword."%' or s.start_at LIKE '%".$keyword."%' or s.end_at LIKE '%".$keyword."%')"; } $sql .= " ORDER BY col".$column." ".$direction." LIMIT ".$from.",".$per_page; - /*$result = Database::query($sql, __FILE__, __LINE__); + /*$result = Database::query($sql); while ($array = Database::fetch_array($result, 'NUM')) $arr[] = $array;*/ - $result = Database::query($sql, __FILE__, __LINE__); + $result = Database::query($sql); while ($array = Database::fetch_array($result, 'NUM')) { $row = array(); $row[] = $array[0]; @@ -1302,7 +1302,7 @@ class Rsys { if (isset ($_GET['rid'])) { $sql .= " WHERE reservation_id = '".intval($_GET['rid'])."'"; } - return Database::result(Database::query($sql, __FILE__, __LINE__), 0, 0); + return Database::result(Database::query($sql), 0, 0); } function get_table_waiting_users($from, $per_page, $column, $direction) { @@ -1331,7 +1331,7 @@ class Rsys { $sql .= " and r.id = '".Database::escape_string($_GET['rid'])."'"; } $sql .= " ORDER BY col".$column." ".$direction." LIMIT ".$from.",".$per_page; - $result = Database::query($sql, __FILE__, __LINE__); + $result = Database::query($sql); while ($array = Database::fetch_array($result, 'NUM')) { $arr[] = $array; } @@ -1342,7 +1342,7 @@ class Rsys { FROM ".Database :: get_main_table(TABLE_MAIN_CLASS)." cl INNER JOIN ".Database :: get_main_table(TABLE_MAIN_CLASS_USER)." cu ON cu.class_id = cl.id WHERE cu.user_id=".$arr[$count][2]." LIMIT 1"; - $result = Database::query($sql, __FILE__, __LINE__); + $result = Database::query($sql); while ($array = Database::fetch_array($result, 'NUM')) { $arr2[] = $array; } @@ -1384,13 +1384,13 @@ class Rsys { $id = Database::escape_string($id); $value = Database::escape_string($value); $sql = "UPDATE ".Rsys :: getTable('subscription')." SET ACCEPTED='".$value."' WHERE dummy='".$id."'"; - Database::query($sql, __FILE__, __LINE__); + Database::query($sql); $user_info = api_get_user_info($subscription[0]); $sql = "SELECT name FROM ".Rsys :: getTable('subscription')." s INNER JOIN ".Rsys :: getTable('reservation')." r ON s.reservation_id = r.id INNER JOIN ".Rsys :: getTable('item')." i ON r.item_id = i.id WHERE dummy='".$id."'"; - $items = Database::query($sql, __FILE__, __LINE__); + $items = Database::query($sql); $item = Database::fetch_array($items); $item_name = $item[0]; @@ -1399,14 +1399,14 @@ class Rsys { where id in ( SELECT reservation_id from ".Rsys :: getTable('subscription')." where dummy ='".$id."')"; - $items = Database::query($sql, __FILE__, __LINE__); + $items = Database::query($sql); $item = Database::fetch_array($items); if ($item['timepicker'] == '1') { $sql = "SELECT start_at, end_at from ".Rsys :: getTable('subscription')." where dummy ='".$id."'"; - $items = Database::query($sql, __FILE__, __LINE__); + $items = Database::query($sql); $item = Database::fetch_array($items); } $begin_datum = $item['start_at']; @@ -1441,7 +1441,7 @@ class Rsys { $sql = "SELECT id, start_at, end_at FROM ".Rsys :: getTable('reservation')." WHERE start_at > '".$start_at."' AND id='".$reservation_id."' "; - $result = Database::query($sql, __FILE__, __LINE__); + $result = Database::query($sql); if (Database::num_rows($result) != 0){ $result2 = Database::fetch_array($result); $GLOBALS['start_date'] = $result2[1]; @@ -1451,7 +1451,7 @@ class Rsys { $sql = "SELECT id, start_at, end_at FROM ".Rsys :: getTable('reservation')." WHERE end_at < '".$end_at."' AND id='".$reservation_id."' "; - $result = Database::query($sql, __FILE__, __LINE__); + $result = Database::query($sql); if (Database::num_rows($result) != 0){ $result2 = Database::fetch_array($result); $GLOBALS['start_date'] = $result2[1]; @@ -1461,7 +1461,7 @@ class Rsys { $sql = "SELECT * FROM ".Rsys :: getTable('subscription')." WHERE reservation_id='".$reservation_id."' ORDER BY start_at"; - $result = Database::query($sql, __FILE__, __LINE__); + $result = Database::query($sql); while ($array = Database::fetch_array($result)) { $GLOBALS['start_date'] = $array[4]; $GLOBALS['end_date'] = $array[5]; @@ -1478,7 +1478,7 @@ class Rsys { end_at < '".$end_at."')OR (start_at <= '".$start_at."' AND end_at >= '".$end_at."')) AND reservation_id='".$reservation_id."' "; - $result = Database::fetch_array(Database::query($sql, __FILE__, __LINE__)); + $result = Database::fetch_array(Database::query($sql)); if (count($result) != 0){ $GLOBALS['start_date'] = $result[1]; $GLOBALS['end_date'] = $result[2]; @@ -1500,7 +1500,7 @@ class Rsys { */ - $result = Database::query($sql, __FILE__, __LINE__); + $result = Database::query($sql); if (Database::num_rows($result) != 0) return true; return false; @@ -1517,17 +1517,17 @@ class Rsys { $accepted = Database::escape_string($accepted); $sql = "SELECT user_id FROM ".Rsys :: getTable("subscription")." WHERE user_id='".$user_id."' AND reservation_id='".$reservation_id."'"; - if (Database::num_rows(Database::query($sql, __FILE__, __LINE__)) == 0) { + if (Database::num_rows(Database::query($sql)) == 0) { $sql = "INSERT INTO ".Rsys :: getTable("subscription")." (user_id,reservation_id,accepted) VALUES ('".Database::escape_string($user_id)."','".Database::escape_string($reservation_id)."','". ($accepted ? '1' : '0')."')"; - Database::query($sql, __FILE__, __LINE__); + Database::query($sql); $sql = "UPDATE ".Rsys :: getTable("reservation")." SET subscribers=subscribers+1 WHERE id='".$reservation_id."'"; - Database::query($sql, __FILE__, __LINE__); + Database::query($sql); $sql = "SELECT s.user_id, i.name, r.start_at, r.end_at FROM ".Rsys :: getTable("subscription")." s INNER JOIN ".Rsys :: getTable("reservation")." r ON s.reservation_id = r.id INNER JOIN ".Rsys :: getTable("item")." i ON r.item_id = i.id WHERE reservation_id='".$reservation_id."' AND user_id='".$user_id."'"; - $result = Database::store_result(Database::query($sql, __FILE__, __LINE__)); + $result = Database::store_result(Database::query($sql)); $user_info = api_get_user_info(); $titel = str_replace('#ITEM#', $result[0][1], get_lang("ReservationMadeTitle")); $inhoud = str_replace('#ITEM#', $result[0][1], str_replace('#START#', $result[0][2], str_replace('#END#', $result[0][3], get_lang("ReservationMadeMessage")))); @@ -1556,7 +1556,7 @@ class Rsys { return 3; } $sql = "INSERT INTO ".Rsys :: getTable("subscription")." (user_id,reservation_id,accepted,start_at,end_at) VALUES ('".Database::escape_string($user_id)."','".Database::escape_string($reservation_id)."','". ($accepted ? '1' : '0')."','".$start_date."','".$end_date."')"; - Database::query($sql, __FILE__, __LINE__); + Database::query($sql); return 0; } @@ -1565,9 +1565,9 @@ class Rsys { */ function delete_subscription($reservation_id, $dummy) { $sql = "DELETE FROM ".Rsys :: getTable("subscription")." WHERE dummy='".Database::escape_string($dummy)."'"; - Database::query($sql, __FILE__, __LINE__); + Database::query($sql); $sql = "UPDATE ".Rsys :: getTable("reservation")." SET subscribers=subscribers-1 WHERE id='".Database::escape_string($reservation_id)."'"; - Database::query($sql, __FILE__, __LINE__); + Database::query($sql); } /** @@ -1594,7 +1594,7 @@ class Rsys { INNER JOIN ".Rsys :: getTable("item")." i ON i.id=r.item_id WHERE s.user_id = '".api_get_user_id()."'"; $sql .= "ORDER BY col".$column." ".$direction." LIMIT ".$from.",".$per_page; - $result = Database::query($sql, __FILE__, __LINE__); + $result = Database::query($sql); while ($array = Database::fetch_array($result, 'NUM')) { $row = array(); $row[] = $array[0]; @@ -1641,7 +1641,7 @@ class Rsys { INNER JOIN ".Rsys :: getTable("reservation")." r ON r.id = s.reservation_id INNER JOIN ".Rsys :: getTable("item")." i ON i.id=r.item_id WHERE s.user_id = '".api_get_user_id()."'"; - return @ Database::result(Database::query($sql, __FILE__, __LINE__), 0, 0); + return @ Database::result(Database::query($sql), 0, 0); } /** @@ -1652,7 +1652,7 @@ class Rsys { FROM ".Rsys::getTable('reservation')." r INNER JOIN ".Rsys::getTable('item')." i ON r.item_id=i.id WHERE i.id='".$item_id."'"; // AND r.subscribe_until < NOW() // TODO: subscribe_until controle - $result=Database::query($sql, __FILE__, __LINE__); + $result=Database::query($sql); while($array=Database::fetch_array($result)) $arr[$array['reservation_id']]=$array['start_at'].' - '.$array['end_at']; return $arr; @@ -1682,7 +1682,7 @@ class Rsys { LEFT JOIN ".Database :: get_main_table(TABLE_MAIN_CLASS_USER)." cu ON cu.class_id = c.id WHERE r.item_id='".$itemid."' AND (((cu.user_id='".api_get_user_id()."' AND ir.view_right=1) OR 1=". (api_is_platform_admin() ? 1 : 0).") AND (r.start_at<='".$from."' AND r.end_at>='".$from."') OR (r.start_at>='".$from."' AND r.start_at<='".$till."')) ORDER BY start_at ASC"; - $result = Database::query($sql, __FILE__, __LINE__); + $result = Database::query($sql); $max_start_at = -1; $min_end_at = -1; $ids = ''; @@ -1705,7 +1705,7 @@ class Rsys { } $ids = substr($ids, 0, -1); $sql = "SELECT * FROM ".Rsys :: getTable('subscription')." WHERE reservation_id IN (".$ids.") AND (start_at='0000-00-00 00:00:00' OR (start_at<='".$from."' AND end_at>='".$from."') OR (start_at>='".$from."' AND start_at<='".$till."')) ORDER BY start_at ASC"; - $result = Database::query($sql, __FILE__, __LINE__); + $result = Database::query($sql); while ($array = Database::fetch_array($result, 'ASSOC')) { // echo $array['reservation_id'].': '.$array['start_at'].'-'.$array['end_at'].'
'; if ($rarr['reservations'][$array['reservation_id']]['info']['timepicker']) { @@ -1730,7 +1730,7 @@ class Rsys { FROM ".Rsys :: getTable('reservation')." r INNER JOIN ".Rsys :: getTable('item')." i ON r.item_id=i.id WHERE r.id NOT IN (SELECT s.reservation_id FROM ".Rsys :: getTable('subscription')." s WHERE r.id=s.reservation_id AND s.user_id='".api_get_user_id()."') AND i.id='".$item_id."'"; // AND r.subscribe_until < NOW() // TODO: subscribe_until controle - $result = Database::query($sql, __FILE__, __LINE__); + $result = Database::query($sql); while ($array = Database::fetch_array($result)) $arr[$array['reservation_id']] = $array['start_at'].' - '.$array['end_at']; return $arr; @@ -1748,7 +1748,7 @@ class Rsys { // TODO: only return for current user... $sql = "SELECT r.*,s.start_at AS tp_start,s.end_at AS tp_end,s.accepted FROM ".Rsys :: getTable('subscription')." s INNER JOIN ".Rsys :: getTable('reservation')." r ON s.reservation_id = r.id WHERE ((r.timepicker=0 AND r.start_at>='".$from."' AND r.end_at<='".$till."') OR (s.start_at>='".$from."' AND s.end_at<='".$till."'))"; - $result = Database::query($sql, __FILE__, __LINE__); + $result = Database::query($sql); while ($array = Database::fetch_array($result)) { $arr[] = $array; if ($arr['timepicker'] == 1) { @@ -1762,7 +1762,7 @@ class Rsys { { $item_name = Database::escape_string($item_name); $sql = "SELECT id FROM ".Rsys :: getTable('item')." WHERE name='".$item_name."'"; - $result = Database::query($sql, __FILE__, __LINE__); + $result = Database::query($sql); $result_array = Database::fetch_array($result); return $result_array['id']; } diff --git a/main/reservation/subscribe.php b/main/reservation/subscribe.php index aa9465a071..19b7d00c9d 100755 --- a/main/reservation/subscribe.php +++ b/main/reservation/subscribe.php @@ -88,7 +88,7 @@ if ($reservation[0][9] < $reservation[0][4]) { $sql = "SELECT start_at, end_at FROM ".Rsys :: getTable('subscription')." WHERE reservation_id='".$reservationid."' and end_at > NOW() ORDER BY start_at"; - $result = Database::query($sql, __FILE__, __LINE__); + $result = Database::query($sql); if (Database::num_rows($result) != 0){ $start_end = "