Please read carefully User Conduct
#!/usr/bin/perl
use CGI::Carp qw(fatalsToBrowser);
##########################################################
# CGInews Xtra 12/April/2004
##########################################################
my $script_name = 'http://www.dealsfordivas.com/cgi/adds.pl';
my $databasefile = "/home/content/N/i/n/NinaSutton/html/cgi/adds.txt";
my $image_dir = "/home/content/N/i/n/NinaSutton/html/templates/adds_images";
my $image_url = "http://www.dealsfordivas.com/templates/adds_images";
my $records_per_page = 500;
my $html_template = "/home/content/N/i/n/NinaSutton/html/templates/adds_headline.htm";
my $record_template = "/home/content/N/i/n/NinaSutton/html/templates/adds_details.htm";
my $select_image = 0;
my $add_fields = 0;
my $hspace = 0;
my $vspace = 0;
my $Username = '';
my $Password = '';
my $not_found = '';
my $news_up = 0;
##########################################################
my $ID_autoincrement_name = "ID"; # autoincrement id-key
my @DateFields =('DATE', 'date'); # date fileds, describe for sort function
##########################################################
# Page Selector
my $textPrevious = "";
my $textNext = "Next";
my $pageSelectorRange = 10;
my $records_per_page = 500;
##########################################################
# Scrolling News Headlines
my $Number_of_headlines_to_scroll = 5;
my $speed = 4;
my $bgcolor = "#eeeeee";
##########################################################
# News letter
my $Number_of_news = 10;
my $head_news_separator = ";
close F;
return @data;
}
sub read_base{
my @content;
my @data = read_file("$databasefile");
for(@DateFields){$DateFields{$_}=1;}
chomp $data[0];
@field_name=split('\|',$data[0]);
my $p=0;
$show_position = -1;
$keyPosition = -1;
foreach(@field_name){
$show_position=$p if $_ eq 'show';
$keyPosition = $p if $_ eq $ID_autoincrement_name;
$p++;
}
error("Can't find key in db-file") if $keyPosition==-1;
error('Bad database file') if @field_name<1;
$word = param('search');
my @keys;
$method = param('method');
@fields = param('field');
foreach $field (@field_name){
$position{$field}=-1;
$p=0;
foreach(@field_name){if($_ eq $field){$position{$field}=$p; last;}$p++;}
}
for(@fields){error("Can't find $field-position in db-file") if $position{$_}<0;}
for (@field_name){
$searchByField{$_} = param($_) if param($_);
}
$exPression = param('exPression');
$value = param('value');
error("Can use exPression only with search in ONE field!") if ($exPression or $value) and @fields>1;
if($word=~m/\A"(.*)"\Z/){$keys[0]=$1;}
elsif(!$action and ($method eq "perfect" or $method eq "exact")){$keys[0]=$word;}
else{@keys= split(" ", $word);}
my $b =0;
$Total =0;
$Found =0;
for(1..@data-1){
chomp $data[$_];
@line=split('\|',$data[$_]);
my $a=0;
if($_[0] == 1){
if($line[$show_position] eq 'Yes'){
if($exPression and $value){
error("Please select field") unless $fields[0];
$field=$fields[0];
if ($DateFields{$field}){
$tmpLine= modify_date($line[$position{$field}]);
$values = modify_date($value);
}
else{$values = $value;}
my $found=0;
if ($exPression eq ">="){if ($tmpLine >= $values){ $found++; }}
elsif ($exPression eq "<"){if ($tmpLine < $values){ $found++; }}
elsif ($exPression eq ">"){if ($tmpLine > $values){ $found++; }}
elsif ($exPression eq "<="){if ($tmpLine <= $values){ $found++; }}
elsif ($exPression eq "=="){if ($tmpLine == $values){ $found++; }}
elsif ($exPression eq "!="){if ($tmpLine != $values){ $found++; }}
elsif ($exPression eq "!!"){if ($tmpLine != $values){ $found++; }}
elsif ($exPression eq "ne"){if ($tmpLine ne $values){ $found++; }}
else{error("Incorrect exPression - $exPression")}
if($found){
$Found++;
$content->{$line[$keyPosition]}->{'record'} = $line[$keyPosition];
foreach $name (@field_name){$content->{$line[$keyPosition]}->{$name} = $line[$a++];}
}
}
elsif(%searchByField){
my $found=0; my $length=0;
for $field (keys %searchByField){
if($method eq "perfect"){if ($line[$position{$field}] eq $searchByField{$field}){ $found++; } }
elsif($line[$position{$field}] =~m/$searchByField{$field}/i){$found++;}
$length++;
}
if($found == $length){
$Found++;
$content->{$line[$keyPosition]}->{'record'} = $line[$keyPosition];
foreach $name (@field_name){$content->{$line[$keyPosition]}->{$name} = $line[$a++];}
}
}
elsif(@keys){
if(@fields){
my $found=0;
for $field (@fields){
foreach $word (@keys){
if($method eq "perfect"){if ($line[$position{$field}] eq $word){$found++; last;} }
elsif($line[$position{$field}] =~m/$word/i){$found++;}
}
}
if(($method eq "all" && $found>=@keys) or ($method ne "all" && $found)){
$Found++;
$content->{$line[$keyPosition]}->{'record'} = $line[$keyPosition];
foreach $name (@field_name){$content->{$line[$keyPosition]}->{$name} = $line[$a++];}
}
}
else{
my $found=0;
foreach $word (@keys){
foreach $value (@line){
if($method eq "perfect"){if($value eq $word){$found++; last;}}
elsif($value=~m/$word/i){$found++;}
}
}
if(($method eq "all" && $found>=@keys) or ($method ne "all" && $found)){
$Found++;
$content->{$line[$keyPosition]}->{'record'} = $line[$keyPosition];
foreach $name (@field_name){$content->{$line[$keyPosition]}->{$name} = $line[$a++];}
}
}
}
else{
$Found++;
$content->{$line[$keyPosition]}->{'record'} = $line[$keyPosition];
foreach $name (@field_name){$content->{$line[$keyPosition]}->{$name} = $line[$a++];}
}
$Total++;
}
}
else{
$content->{$line[$keyPosition]}->{'record'} = $line[$keyPosition];
foreach $name (@field_name){$content->{$line[$keyPosition]}->{$name} = $line[$a++];}
}
}
return $content;
}
sub get_record{
my $text = $_[0];
$text =~ s{<<(.*?)>>}{exists($INSERT{$1}) ? $INSERT{$1} : ""}gsex;
return $text;
}
sub get_html{
my @txt = read_file($_[0]);
foreach(@txt){$txt.=$_;}
$txt=~/(.*)(.*)<\/template>(.*)/s;
error("Template-tag not found!") if !$1 or !$2;
return ($1,$2,$3);
}
##########################################################
#CREATE DATABASE COMAND LINE
##########################################################
sub create_db{
open(F, ">$databasefile") || error ("Can't create DB-file!");
print F "ID|headline|address|city|province|postalcode|manager|telephone|email|description|available|bedrooms|price|image|image2|feature|show|DATE\n";
close F;
}
##########################################################
sub default{
$records=$FORM{'headlines'};
if($FORM{mode} eq 'admin'){main(); return;}
record($FORM{record}) if $FORM{record};
show() unless $default_mode;
if($default_mode ==3){
$records=$Number_of_headlines_to_scroll;
}
elsif($default_mode ==2){
($head2, $tmp2, $foot2) = get_html($record_template);
$records=$Number_of_news;
}
$data=read_base(1);
my $i=0;
for(sort {$a <=> $b} keys %$data){@records[$i++]=$_;}
if($news_up){@records = reverse @records;}
$records=@records if $records > @records;
$records=@records if !$records;
my $txt;
($head, $tmp, $foot) = get_html($html_template);
##########################################################
#HEADLINE IMAGE
##########################################################
for(0..$records-1){
%INSERT={};
foreach $name (@field_name){$INSERT{$name}=$data->{$records[$_]}->{$name};}
$INSERT{image} = "{$records[$_]}->{'record'}.">More Info » ";
}
if ($default_mode ==2){
$INSERT{headline} = "$INSERT{headline} ";
$down.= get_record($tmp2)."Top
$news_news_separator";
$INSERT{headline} =~s/name="news$_"/href="#news$_"/s;
$INSERT{more} = " More Info ";
}
elsif ($default_mode ==3){$marquee.=" {$records[$_]}->{'record'}.">$INSERT{headline} ";}
else{$INSERT{headline} = "{$records[$_]}->{'record'}.">$INSERT{headline} " if $INSERT{biography} ne '';}
$result.= get_record($tmp);
}
if($default_mode ==3){$result="$marquee ";}
print $result;
print $head_news_separator.$down if $default_mode ==2;
exit;
}
##########################################################
#INSERT IMAGE
##########################################################
sub record{
$data=read_base();
($head, $tmp, $foot) = get_html($record_template);
foreach $name (@field_name){$INSERT{$name}=$data->{$_[0]}->{$name};}
$INSERT{image} = "Diva's Advertising Administration
Add new person
Return to list |;
$txt .= qq| Logout
Add new field in database |;
if($FORM{new_field}){
add_new_field($FORM{new_field});
$txt.= qq|$FORM{new_field} > has added!
\n";
return;
}
sub add_new_field{
my @data = read_file("$databasefile");
my $name = shift;
$name =~ s/ /_/g;
my $a=0;
chomp $data[0];
@fields = split('\|', $data[0]);
foreach(@fields){
error("Field <$name > already use in database!") if $name eq $_;
}
foreach (@data){
chomp $data[$a];
$data[0].="|".$name."\n" if $a==0;
$data[$a].="|\n" if $a!=0;
$a++;
}
open (F, ">$databasefile") || error("Can't open file for alter table");
print F join ("", @data);
close F;
}
##########################################################
sub show{
$data=read_base(1);
($head, $tmp, $foot) = get_html($html_template);
$FORM{order_by} ||= "number";
$FORM{order} ||="123";
for(@DateFields){$DateFields{$_}=1;}
$i=0;
$myOrder = $FORM{order_by};
if($DateFields{$FORM{order_by}}){
for(keys %$data){($data->{$_}->{"DATE_".$myOrder}=$data->{$_}->{$FORM{order_by}})=~s/-//g;}
$FORM{order_by} = "DATE_".$myOrder;
}
if($FORM{order} eq "123"){for(sort { $data->{$a}->{$FORM{order_by}} <=> $data->{$b}->{$FORM{order_by}} } keys %$data){$records[$i++]=$_;}}
elsif($FORM{order} eq "321"){for(sort { $data->{$b}->{$FORM{order_by}} <=> $data->{$a}->{$FORM{order_by}} } keys %$data){$records[$i++]=$_;}}
elsif($FORM{order} eq "cba"){for(sort { $data->{$b}->{$FORM{order_by}} cmp $data->{$a}->{$FORM{order_by}} } keys %$data){$records[$i++]=$_;}}
else{for(sort { $data->{$a}->{$FORM{order_by}} cmp $data->{$b}->{$FORM{order_by}} } keys %$data){$records[$i++]=$_;}}
$FORM{order_by} = $myOrder;
my $txt;
$page = param('page');
$show_records = @records;
$records_per_page = $FORM{headlines} if $FORM{headlines};
$start = $page*$records_per_page;
$end = $start + $records_per_page-1;
$end = $show_records-1 if $end>$show_records-1;
for($start..$end){
%INSERT={};
foreach $name (@field_name){$INSERT{$name}=$data->{$records[$_]}->{$name};}
$INSERT{image} = "{$records[$_]}->{'record'}>Details » ";
$INSERT{headline} = "$INSERT{headline}";
}
$result.= get_record($tmp);
}
$heads = "&headlines=$FORM{headlines}" if $FORM{headlines};
#set page selector
my $qs = "&order_by=$FORM{order_by}" if $FORM{order_by};
$qs .= "&order=$FORM{order}" if $FORM{order};
$INSERT{records} = @records-1;
$INSERT{page_selector} = "";
my $searchRec =param('search');
$INSERT{page_selector}= "$textPrevious " if $page>0;
my $pageStart=0;
my $pageEnd = 0;
$pageEnd = $INSERT{records}/$records_per_page if $records_per_page;
if($pageSelectorRange){
$pageStart=$page- int($pageSelectorRange/2) if $page- int($pageSelectorRange/2)>0;
if($page$p|;}
}
$INSERT{page_selector}.= " $textNext " if $page < $INSERT{records}/$records_per_page-1 && $records_per_page>1;
$INSERT{search}.=param('search');
$INSERT{'#_matches'}=$Found;
$INSERT{'#_total'}=$Total;
$foot = get_record($foot);
$head = get_record($head);
$result = $not_found unless @records;
print $head, $result, $foot;
exit;
}
##########################################################
#MAIN WINDOW
##########################################################
sub main{
$data=read_base();
$txt .= qq|Diva's Advertising Administration Add new Advertiser » |;
$txt .= qq| Add new field | if $add_fields;
$txt .= qq| Options Advertiser Date Position Show Delete Edit $data->{$_}->{'headline'} |;
$txt.= qq|$data->{$_}->{'DATE'} |;
$txt.= qq|$data->{$_}->{'position'} |;
$txt.= qq|$data->{$_}->{'show'} |;
$txt.= qq|
\n";
}
##########################################################
#VIEW WINDOW
##########################################################
sub view{
$data=read_base();
$current = $FORM{record};
$txt .= qq|Diva's Advertising Administration Return to Main List Course: $data->{$FORM{record}}->{'headline'}$data->{$FORM{record}}->{'last_name'} Edit this Course Course Date: $data->{$FORM{record}}->{'course_date'} Numerical Date: $data->{$FORM{record}}->{'DATE'} Course: $data->{$FORM{record}}->{'headline'} Course Overview: $data->{$FORM{record}}->{'titles'} Instructor: $data->{$FORM{record}}->{'instructor'} Fee: $data->{$FORM{record}}->{'fee'} Location: $data->{$FORM{record}}->{'location'} Course Description: $data->{$FORM{record}}->{'description'} Show: $data->{$FORM{record}}->{'show'} |;
$txt .= qq|<< previous | unless $current==1;
for(sort {$a <=> $b} keys %$data){
$txt .= qq| [|;
$txt .= qq|| unless $_ eq $FORM{record};
$txt .= qq|$_|;
$txt .= qq| | unless $_ eq $FORM{record};
$txt .= qq|] |;
}
$txt .= qq| next >>| if $current<$length;
$txt .= qq| ;
close F;
for(1..@data-1){
@row = split('\|', $data[$_]);
if($row[$keyPosition] eq $FORM{record}){$data[$_] = $new_record; last;}
}
open (F, ">$databasefile") || error("Can't open databasefile!");
foreach(@data) {print F }
close F;
}
else{
open (F, ">>$databasefile") || error("Can't open databasefile!");
print F $new_record;
close F;
}
main();
}
sub delete{
if($FORM{record}){
open (F, "$databasefile") || error("Can't open databasefile!");
@data = ;
close F;
@field_name=split('\|',$data[0]);
my $p=0;
$keyPosition = -1;
foreach(@field_name){
$keyPosition = $p if $_ eq $ID_autoincrement_name;
$p++;
}
error("Can't find key in db file!") if $keyPosition == -1;
for(1..@data-1){
@row = split('\|', $data[$_]);
if($row[$keyPosition] eq $FORM{record}){$data[$_] = ""; last;}
}
open (F, ">$databasefile") || error("Can't open databasefile!");
foreach(@data) {print F }
close F;
}
main();
}
sub add{
$data=read_base();
if ($_[0]){
$hidden=qq|{$FORM{record}}->{'image'} target=_blank>$data->{$FORM{record}}->{'image'} {$FORM{record}}->{'image2'} target=_blank>$data->{$FORM{record}}->{'image2'} {$FORM{record}}->{'image3'} target=_blank>$data->{$FORM{record}}->{'image3'} {$FORM{record}}->{'image4'} target=_blank>$data->{$FORM{record}}->{'image4'} {$FORM{record}}->{'image5'} target=_blank>$data->{$FORM{record}}->{'image5'} {$FORM{record}}->{'image6'} target=_blank>$data->{$FORM{record}}->{'image6'} $_ \n" if -f "$image_dir/$_" && $_=~m/.\gif|.\jpg/i;
}
close DIR;
$img_select1 = "or select image $img_selector select image $img_select
|
|
)) {
chomp ($idiotfilterline);
$idiotfiltertime = int($idiotfilterline);
unless (($time-$idiotfiltertime) > 1800) {
push (@idiotfilter,$idiotfilterline);
if ($idiotfilterline =~ /^\d+ $doc_uri $ENV{'REMOTE_ADDR'}/) {
$NoCountHit = 1;
}
}
}
seek(IDIOTFILTER, 0, 0);
foreach $idiotfilterline (@idiotfilter) {
print IDIOTFILTER "$idiotfilterline\n";
}
unless ($NoCountHit) {
print IDIOTFILTER "$time $doc_uri $ENV{'REMOTE_ADDR'}\n";
}
truncate (IDIOTFILTER, tell(IDIOTFILTER));
&LockClose (IDIOTFILTER,"$IdiotFilterFile");
}
&LockOpen (COUNT,"$AccessFile");
$location = tell COUNT;
while ($line = ) {
if (($acc,$day,$dayacc,$uri) = ($line =~ /^(\d+) (\d+) (\d+) '(\S+)'$/)) {
if ($uri eq $doc_uri) {
last;
}
}
last if ($uri eq $doc_uri);
$location = tell COUNT;
$acc = 0;
$dayacc = 0;
}
$acc = int($acc);
unless ($NoCountHit) { $acc += 1; }
($mday,$mon,$year) = (localtime($time))[3,4,5];
$year += 1900;
if ($mday < 10) { $mday = "0".$mday; }
$mon += 1;
if ($mon < 10) { $mon = "0".$mon; }
$today = $year.$mon.$mday;
$dayacc = int($dayacc);
unless ($day eq $today) { $dayacc = 0; }
unless ($NoCountHit) { $dayacc += 1; }
foreach $key (@PlainCounter) {
if ($doc_uri eq $key) {
$printacc = &commas($acc);
$printdayacc = &commas($dayacc);
last;
}
}
foreach $key (@OrdCounter) {
if ($doc_uri eq $key) {
$printacc = &commas($acc) . &ordinalize($acc);
$printdayacc = &commas($dayacc) . &ordinalize($dayacc);
last;
}
}
if ($printacc) {
$printline = "$printacc";
if ($ENV{'QUERY_STRING'} =~ /jscript/) {
$printline = &JSoutput($printline);
}
print "$printline";
}
if ($doc_uri) {
seek(COUNT, $location, 0);
$longacc = sprintf("%010.10d", $acc);
$longdayacc = sprintf("%010.10d", $dayacc);
print COUNT "$longacc $today $longdayacc '$doc_uri'\n";
}
&LockClose (COUNT,"$AccessFile");
##############
# AGENT FILE #
##############
if ($AgentFile && !($NoCountHit)) {
open (COUNT,">>$AgentFile");
if (defined $ENV{'HTTP_USER_AGENT'}) {
$doc_agent = $ENV{'HTTP_USER_AGENT'};
}
else { $doc_agent = ""; }
if ($doc_agent) {
print COUNT "$doc_agent\n";
}
close (COUNT);
}
################
# REFERER FILE #
################
if ($RefererFile && !($NoCountHit)) {
open (COUNT,">>$RefererFile");
if (defined $ENV{'HTTP_REFERER'}) {
$doc_referer = $ENV{'HTTP_REFERER'};
}
else { $doc_referer = ""; }
if ($doc_referer && $doc_uri) {
unless ($IgnoreIntRefs && ($doc_referer =~ m#$server#oi)) {
print COUNT "$doc_referer -> $doc_uri\n";
}
}
close (COUNT);
}
###############
# SUBROUTINES #
###############
sub LockOpen {
local(*FILE,$lockfilename) = @_;
local($TrysLeft) = 100;
unless (-e "$lockfilename") {
open (FILE,">$lockfilename");
print FILE "\n";
close (FILE);
}
if ($UseLocking) {
open (FILE,"+<$lockfilename") || &Error;
flock(FILE,2) || &Error;
}
else {
if ((-e "$lockfilename.lok") && ((stat("$lockfilename.lok"))[9]+30<$time)) {
unlink ("$lockfilename.lok");
}
while ($TrysLeft--) {
if (-e "$lockfilename.lok") {
select(undef,undef,undef,0.01);
}
else {
open (LOCKFILE,">$lockfilename.lok");
print LOCKFILE "\n";
close (LOCKFILE);
last;
}
}
if ($TrysLeft >= 0) {
open (FILE,"+<$lockfilename") || &Error;
}
else {
&Error;
}
}
}
sub LockClose {
local(*FILE,$lockfilename) = @_;
close (FILE);
unlink ("$lockfilename.lok");
}
sub Error {
$printline = "[File Lock Error]";
if ($ENV{'QUERY_STRING'} =~ /jscript/) {
$printline = &JSoutput($printline);
}
print "$printline";
exit(0);
}
sub ordinalize {
local($count) = @_;
local($last, $last2);
$last2 = $count % 100;
$last = $count % 10;
if ($last2 < 10 || $last2 > 13) {
return "st" if $last == 1;
return "nd" if $last == 2;
return "rd" if $last == 3;
}
return "th";
}
sub commas {
local($_)=@_;
1 while s/(.*\d)(\d\d\d)/$1,$2/;
$_;
}
sub JSoutput {
$_[0] =~ s/\"/\\"/g;
$_[0] =~ s/\r//g;
$_[0] =~ s/\n/\")\;\ndocument.write(\" /g;
$_[0] = "document.write(\" $_[0] \");document.close();";
return $_[0];
}
