--- fenglin/bbs/search_user.php	2004/06/07 06:04:16	1.1
+++ fenglin/bbs/search_user.php	2025/04/23 05:13:56	1.25
@@ -1,206 +1,157 @@
-<?
+<?php
+	require_once "../lib/db_open.inc.php";
 	require_once "./session_init.inc.php";
-?>
-<? 
-$page_max_record=60;
+	require_once "./user_level.inc.php";
+	require_once "./theme.inc.php";
 
-if (isset($_GET["page"]))
-	$page=intval($_GET["page"]);
-else
-	$page=1;
-if ($page<1)
-	$page=1;
-
-if (isset($_GET["type"]))
-	$type=intval($_GET["type"]);
-else
-	$type=1;
-if (!($_SESSION["BBS_priv"]->checklevel(P_ADMIN_M) || 
-	$_SESSION["BBS_priv"]->checklevel(P_ADMIN_S) || 
-	$_SESSION["BBS_priv"]->checklevel(P_MAN_C)))
-{
-	$type=1;
-}
-
-if (isset($_GET["search_text"]))
-	$search_text=trim($_GET["search_text"]);
-else
-	$search_text="";
-$search_author=addslashes(stripslashes($search_text));
-
-$db_conn=include "./db_open.inc.php";
-
-$rs=mysql_query("select count(user_list.UID) as rec_count from user_list".
-	" inner join user_pubinfo on user_list.UID=user_pubinfo.UID where".
-	" user_list.enable and ".($type==1?"user_pubinfo.nickname":"user_list.username").
-	" like '%$search_author%'")
-	or die("Query user error!");
-
-$row=mysql_fetch_array($rs);
-$toa=$u_count=$row["rec_count"];
-
-mysql_free_result($rs);
-
-if ($toa==0)
-	$toa=1;
-
-$page_total=intval($toa/$page_max_record);
-if (($toa % $page_max_record)>0)
-	$page_total++;
-if ($page>$page_total)
-	$page=$page_total;
-?>
-<html>
-	<head>
-		<meta http-equiv="Content-Type" content="text/html; charset=gb2312">
-		<title>用户查找结果</title>
-		<link rel="stylesheet" href="css/default.css" type="text/css">
-			<script language="JavaScript" src="/js/nw_open.js"></script>
-	</head>
-	<body>
-		<center>
-			<table border="0" cellpadding="1" cellspacing="0" width="770">
-				<tr bgcolor="#d0d3F0" height="20">
-					<td align="center" class="title">
-						<? if ($u_count==0)
-{
-?>
-						未找到指定用户<? }
-	else
-{
-?>用户查找结果（共<?	 echo $u_count; ?>位）<? } ?>
-					</td>
-				</tr>
-			</table>
-			<table bgcolor="#f0F3Fa" border="0" cellpadding="5" cellspacing="0" width="770">
-				<tr>
-					<td width="5%">
-					</td>
-					<td width="15%">
-					</td>
-					<td width="15%">
-					</td>
-					<td width="15%">
-					</td>
-					<td width="15%">
-					</td>
-					<td width="15%">
-					</td>
-					<td width="15%">
-					</td>
-					<td width="5%">
-					</td>
-				</tr>
-				<? 
-$color[0]="#f0F3Fa";
-$color[1]="#FAFBFC";
-$color_index=-1;
-$color_count=2;
-
-$rs=mysql_query("select user_list.UID,username,nickname,".
-	"IF(user_pubinfo.gender_pub,IF(user_pubinfo.gender='M',".
-	"'<font color=blue>♂</font>','<font color=red>♀</font>'),'') as gender".
-	" from user_list".
-	" inner join user_pubinfo on user_list.UID=user_pubinfo.UID where".
-	" user_list.enable and ".($type==1?"user_pubinfo.nickname":"user_list.username").
-	" like '%$search_author%' order by ".($type==1?"nickname":"username").
-	" limit ".($page-1)*$page_max_record.",$page_max_record")
-	or die("Query user error!");
-
-do
-{
-	$color_index=($color_index+1)%$color_count;
-?>
-				<tr bgcolor="<?	 echo $color[$color_index]; ?>">
-					<td align="center">
-					</td>
-					<? 
-	for ($i=1; $i<=6; $i=$i+1)
+	$result_set = array(
+		"return" => array(
+			"code" => 0,
+			"message" => "",
+			"errorFields" => array(),
+		)
+	);
+
+	$page = (isset($_GET["page"]) ? intval($_GET["page"]) : 1);
+	$rpp = (isset($_GET["rpp"]) ? intval($_GET["rpp"]) : 20);
+
+	$type = (isset($_GET["type"]) ? intval($_GET["type"]) : 0);
+	$online = (isset($_GET["online"]) && $_GET["online"] == "1" ? 1 : 0);
+	$friend = (isset($_GET["friend"]) && $_GET["friend"] == "1" ? 1 : 0);
+	$search_text = (isset($_GET["search_text"]) ? $_GET["search_text"] : "");
+
+	$sql = "SELECT IF(UID = 0, 1, 0) AS is_guest, COUNT(*) AS u_count FROM user_online
+			WHERE last_tm >= SUBDATE(NOW(), INTERVAL $BBS_user_off_line SECOND)
+			GROUP BY is_guest";
+
+	$rs = mysqli_query($db_conn, $sql);
+	if ($rs == false)
 	{
-		if ($row=mysql_fetch_array($rs))
+		echo("Count online user error" . mysqli_error($db_conn));
+		exit();
+	}
+
+	$guest_online = 0;
+	$user_online = 0;
+
+	while ($row = mysqli_fetch_array($rs))
+	{
+		if ($row["is_guest"])
 		{
-?>
-					<td align="center" onmouseover="this.bgColor='#f0FaFf';" onmouseout="this.bgColor='<? echo $color[$color_index]; ?>';">
-						<? echo $row["gender"]; ?><a class="s2" href="javascript:show_profile(<? echo $row["UID"]; ?>)"><? echo ($type==1?$row["nickname"]:$row["username"]); ?></a>
-					</td>
-					<? 
+			$guest_online = $row["u_count"];
 		}
-			else
+		else
 		{
-?>
-					<td align="center">
-					</td>
-<? 
-		} 
-	} 
-?>
-					<td align="center">
-					</td>
-				</tr>
-<? 
-}while($row);
-?>
-			</table>
-<? 
-mysql_free_result($rs);
-mysql_close($db_conn);
-?>
-			<table cols="3" border="0" cellpadding="5" cellspacing="0" width="770">
-				<tr bgcolor="#d0d3F0" height="10">
-					<td colspan="3" >
-					</td>
-				</tr>
-				<tr height="10">
-					<td colspan="3" >
-					</td>
-				</tr>
-				<tr>
-    <td width="25%" align="center" style="color:#909090">
-    <form action="search_user.php" method="get" id="change_page" name="change_page">
-      <input type="hidden" id="search_text" name="search_text" value="<? echo $search_text;?>">
-      分页: <? echo $page; ?>/<? echo $page_total; ?>页
-<? if ($page>1)
-{
-?><a class="s8" title="首页" href="search_user.php?page=1&amp;type=<? echo $type; ?><? if ($search_text!="") echo "&amp;search_text=".$search_text;?>"><font face=webdings>9</font></a><a class="s8" title="上一页" href="search_user.php?page=<? echo $page-1; ?>&amp;type=<? echo $type; ?><? if ($search_text!="") echo "&amp;search_text=".$search_text;?>"><font face=webdings>7</font></a><? }
-  else
-{
-?><font face=webdings>97</font><? } ?>
-      <input id="page_id" name="page" value="<? echo ($page) ; ?>" size="2">
-<? if ($page<$page_total)
-{
-?><a class="s8" title="下一页" href="search_user.php?page=<? echo $page+1; ?>&amp;type=<? echo $type; ?><? if ($search_text!="") echo "&amp;search_text=".$search_text;?>"><font face=webdings>8</font></a><a class="s8" title="尾页" href="search_user.php?page=<? echo $page_total; ?>&amp;type=<? echo $type; ?><? if ($search_text!="") echo "&amp;search_text=".$search_text;?>"><font face=webdings>:</font></a><? }
-  else
-{
-?><font face=webdings>8:</font><? } ?>
-    </form>
-    </td>
-					<td width="50" align="center">
-						<form action="search_user.php" method="get" id="search">
-							<font color=#909090>查找用户</font>
-							<select name="type">
-								<option value="1" <? if ($type==1) echo "selected"; ?> >按昵称</option>
-<?
-	if ($_SESSION["BBS_priv"]->checklevel(P_ADMIN_M) || 
-		$_SESSION["BBS_priv"]->checklevel(P_ADMIN_S) || 
-		$_SESSION["BBS_priv"]->checklevel(P_MAN_C))
+			$user_online = $row["u_count"];
+		}
+	}
+	mysqli_free_result($rs);
+
+	$sql = "SELECT COUNT(user_list.UID) AS rec_count FROM user_list" .
+			($online ? " INNER JOIN user_online ON user_list.UID = user_online.UID" : "") .
+			($friend ? " INNER JOIN friend_list ON user_list.UID = friend_list.fUID" : "") .
+			($type == 1 ? " INNER JOIN user_pubinfo ON user_list.UID = user_pubinfo.UID" : "") .
+			" WHERE user_list.enable AND ".
+			($type == 1 ? "nickname" : "username") .
+			" LIKE '%" . mysqli_real_escape_string($db_conn, $search_text) . "%'" .
+			($online ? " AND last_tm >= SUBDATE(NOW(), INTERVAL $BBS_user_off_line SECOND)" : "").
+			($friend ? " AND friend_list.UID = " . $_SESSION["BBS_uid"] : "");
+
+	$rs = mysqli_query($db_conn, $sql);
+	if ($rs == false)
 	{
-?>
-								<option value="2" <? if ($type==2) echo "selected"; ?> >按用户名</option>
-<?
+		echo("Query user error" . mysqli_error($db_conn));
+		exit();
+	}
+
+	if ($row = mysqli_fetch_array($rs))
+	{
+		$toa = $row["rec_count"];
+	}
+
+	mysqli_free_result($rs);
+
+	if (!in_array($rpp, $BBS_list_rpp_options))
+	{
+		$rpp = $BBS_list_rpp_options[0];
+	}
+
+	$page_total = ceil($toa / $rpp);
+	if ($page > $page_total)
+	{
+		$page = $page_total;
+	}
+
+	if ($page <= 0)
+	{
+		$page = 1;
+	}
+
+	// Fill up result data
+	$result_set["data"] = array(
+		"type" => $type,
+		"online" => $online,
+		"friend" => $friend,
+		"search_text" => $search_text,
+		"page" => $page,
+		"rpp" => $rpp,
+		"page_total" => $page_total,
+		"toa" => $toa,
+		"user_online" => $user_online,
+		"guest_online" => $guest_online,
+
+		"users" => array(),
+	);
+
+	$sql = "SELECT user_list.UID, username, nickname, exp, gender, gender_pub, last_login_dt FROM user_list" .
+			($online ? " INNER JOIN user_online ON user_list.UID = user_online.UID" : "") .
+			($friend ? " INNER JOIN friend_list ON user_list.UID = friend_list.fUID" : "") .
+			" INNER JOIN user_pubinfo ON user_list.UID = user_pubinfo.UID WHERE user_list.enable AND ".
+			($type == 1 ? "nickname" : "username") .
+			" LIKE '%" . mysqli_real_escape_string($db_conn, $search_text) . "%'" .
+			($online ? " AND last_tm >= SUBDATE(NOW(), INTERVAL $BBS_user_off_line SECOND)" : "").
+			($friend ? " AND friend_list.UID = " . $_SESSION["BBS_uid"] : "") .
+			" ORDER BY " . ($type == 1 ? "nickname" : "username") .
+			" LIMIT " . ($page - 1) * $rpp . ", $rpp";
+
+	$rs = mysqli_query($db_conn, $sql);
+	if ($rs == false)
+	{
+		echo("Query user error" . mysqli_error($db_conn));
+		exit();
 	}
-?>
-							</select>
-							<input type="text" id="search_text" name="search_text" size="15"> <input type=image src="images/search.gif" alt="按昵称查找注册用户" border="0" name="image"></a>
-						</form>
-					</td>
-					<td width="25">
-					</td>
-				</tr>
-			</table>
-		</center>
-<?
-	include "./foot.inc.php";
-?>
-	</body>
-</html>
 
+	while ($row = mysqli_fetch_array($rs))
+	{
+		array_push($result_set["data"]["users"], array(
+			"uid" => $row["UID"],
+			"username" => $row["username"],
+			"nickname" => $row["nickname"],
+			"exp" => $row["exp"],
+			"gender" => $row["gender"],
+			"gender_pub" => $row["gender_pub"],
+			"last_login_dt" => (new DateTimeImmutable($row["last_login_dt"]))->setTimezone($_SESSION["BBS_user_tz"]),
+		));
+	}
+	mysqli_free_result($rs);
+
+	// Cleanup
+	unset($type);
+	unset($online);
+	unset($friend);
+	unset($search_text);
+	unset($page);
+	unset($rpp);
+	unset($page_total);
+	unset($toa);
+	unset($user_online);
+	unset($guest_online);
+
+	// Output with theme view
+	$theme_view_file = get_theme_file("view/search_user", $_SESSION["BBS_theme_name"]);
+	if ($theme_view_file == null)
+	{
+		exit(json_encode($result_set)); // Output data in Json
+	}
+	include $theme_view_file;
+?>