drupal/modules/profile/profile.pages.inc

<?php
// $Id$

/**
 * @file
 * User page callbacks for the profile module.
 */

/**
 * Menu callback; display a list of user information.
 */
function profile_browse() {
  // Ensure that the path is converted to 3 levels always.
  list(, $name, $value) = array_pad(explode('/', $_GET['q'], 3), 3, '');

  $field = db_fetch_object(db_query("SELECT DISTINCT(fid), type, title, page, visibility FROM {profile_field} WHERE name = '%s'", $name));

  if ($name && $field->fid) {
    // Only allow browsing of fields that have a page title set.
    if (empty($field->page)) {
      drupal_not_found();
      return;
    }
    // Do not allow browsing of private and hidden fields by non-admins.
    if (!user_access('administer users') && ($field->visibility == PROFILE_PRIVATE || $field->visibility == PROFILE_HIDDEN)) {
      drupal_access_denied();
      return;
    }

    // Compile a list of fields to show.
    $fields = array();
    $result = db_query('SELECT name, title, type, weight, page FROM {profile_field} WHERE fid != %d AND visibility = %d ORDER BY weight', $field->fid, PROFILE_PUBLIC_LISTINGS);
    while ($record = db_fetch_object($result)) {
      $fields[] = $record;
    }

    // Determine what query to use:
    $arguments = array($field->fid);
    switch ($field->type) {
      case 'checkbox':
        $query = 'v.value = 1';
        break;
      case 'textfield':
      case 'selection':
        $query = "v.value = '%s'";
        $arguments[] = $value;
        break;
      case 'list':
        $query = "v.value LIKE '%%%s%%'";
        $arguments[] = $value;
        break;
      default:
        drupal_not_found();
        return;
    }

    // Extract the affected users:
    $result = pager_query("SELECT u.uid, u.access FROM {users} u INNER JOIN {profile_value} v ON u.uid = v.uid WHERE v.fid = %d AND $query AND u.access != 0 AND u.status != 0 ORDER BY u.access DESC", 20, 0, NULL, $arguments)->fetchAllAssoc('uid');

    // Load the users.
    $users = user_load_multiple(array_keys($result));

    $content = '';
    foreach ($users as $account) {
      $profile = _profile_update_user_fields($fields, $account);
      $content .= theme('profile_listing', $account, $profile);
    }
    $output = theme('profile_wrapper', $content);
    $output .= theme('pager', NULL);

    if ($field->type == 'selection' || $field->type == 'list' || $field->type == 'textfield') {
      $title = strtr(check_plain($field->page), array('%value' => theme('placeholder', $value)));
    }
    else {
      $title = check_plain($field->page);
    }

    drupal_set_title($title, PASS_THROUGH);
    return $output;
  }
  elseif ($name && !$field->fid) {
    drupal_not_found();
  }
  else {
    // Compile a list of fields to show.
    $fields = array();
    $result = db_query('SELECT name, title, type, weight, page, visibility FROM {profile_field} WHERE visibility = %d ORDER BY category, weight', PROFILE_PUBLIC_LISTINGS);
    while ($record = db_fetch_object($result)) {
      $fields[] = $record;
    }

    // Extract the affected users:
    $result = pager_query('SELECT uid, access FROM {users} WHERE uid > 0 AND status != 0 AND access != 0 ORDER BY access DESC', 20, 0, NULL)->fetchAllAssoc('uid');
    $users = user_load_multiple(array_keys($result));
    $content = '';
    foreach ($users as $account) {
      $profile = _profile_update_user_fields($fields, $account);
      $content .= theme('profile_listing', $account, $profile);
    }
    $output = theme('profile_wrapper', $content);
    $output .= theme('pager', NULL);

    drupal_set_title(t('User list'), PASS_THROUGH);
    return $output;
  }
}

/**
 * Callback to allow autocomplete of profile text fields.
 */
function profile_autocomplete($field, $string) {
  $matches = array();
  if (db_result(db_query("SELECT COUNT(*) FROM {profile_field} WHERE fid = %d AND autocomplete = 1", $field))) {
    $result = db_query_range("SELECT value FROM {profile_value} WHERE fid = :fid AND LOWER(value) LIKE LOWER(:value) GROUP BY value ORDER BY value ASC", array(
      ':fid' => $field,
      ':value' => $string .'%',
    ), 0, 10);
    while ($data = db_fetch_object($result)) {
      $matches[$data->value] = check_plain($data->value);
    }
  }

  drupal_json($matches);
}
- Patch #191544 by Crell: split up profile module. Tested by catch. 2007-11-13 12:28:36 +00:00			`<?php`
			`// $Id$`

			`/**`
			`* @file`
			`* User page callbacks for the profile module.`
			`*/`

			`/**`
			`* Menu callback; display a list of user information.`
			`*/`
			`function profile_browse() {`
			`// Ensure that the path is converted to 3 levels always.`
			`list(, $name, $value) = array_pad(explode('/', $_GET['q'], 3), 3, '');`

- Patch #288039 by sun, ff1, agentrickard, fgm, ultimateboy: improved usability of the aliased URL admin page. 2008-12-05 12:50:28 +00:00			`$field = db_fetch_object(db_query("SELECT DISTINCT(fid), type, title, page, visibility FROM {profile_field} WHERE name = '%s'", $name));`
- Patch #191544 by Crell: split up profile module. Tested by catch. 2007-11-13 12:28:36 +00:00
			`if ($name && $field->fid) {`
			`// Only allow browsing of fields that have a page title set.`
			`if (empty($field->page)) {`
			`drupal_not_found();`
			`return;`
			`}`
			`// Do not allow browsing of private and hidden fields by non-admins.`
			`if (!user_access('administer users') && ($field->visibility == PROFILE_PRIVATE \|\| $field->visibility == PROFILE_HIDDEN)) {`
#198579 by webernet and hswong3i: a huge set of coding style fixes, including: - whitespaces at end of lines - indentation - control structure usage - whitespace in empty lines - phpdoc comment formatting 2007-12-08 14:06:23 +00:00			`drupal_access_denied();`
			`return;`
- Patch #191544 by Crell: split up profile module. Tested by catch. 2007-11-13 12:28:36 +00:00			`}`

			`// Compile a list of fields to show.`
			`$fields = array();`
- Patch #288039 by sun, ff1, agentrickard, fgm, ultimateboy: improved usability of the aliased URL admin page. 2008-12-05 12:50:28 +00:00			`$result = db_query('SELECT name, title, type, weight, page FROM {profile_field} WHERE fid != %d AND visibility = %d ORDER BY weight', $field->fid, PROFILE_PUBLIC_LISTINGS);`
- Patch #191544 by Crell: split up profile module. Tested by catch. 2007-11-13 12:28:36 +00:00			`while ($record = db_fetch_object($result)) {`
			`$fields[] = $record;`
			`}`

			`// Determine what query to use:`
			`$arguments = array($field->fid);`
			`switch ($field->type) {`
			`case 'checkbox':`
			`$query = 'v.value = 1';`
			`break;`
			`case 'textfield':`
			`case 'selection':`
			`$query = "v.value = '%s'";`
			`$arguments[] = $value;`
			`break;`
			`case 'list':`
			`$query = "v.value LIKE '%%%s%%'";`
			`$arguments[] = $value;`
			`break;`
			`default:`
			`drupal_not_found();`
			`return;`
			`}`

			`// Extract the affected users:`
#347250 by catch, drewish, and Berdir: Add function for loading multiple users in one request. 2009-03-14 23:01:38 +00:00			`$result = pager_query("SELECT u.uid, u.access FROM {users} u INNER JOIN {profile_value} v ON u.uid = v.uid WHERE v.fid = %d AND $query AND u.access != 0 AND u.status != 0 ORDER BY u.access DESC", 20, 0, NULL, $arguments)->fetchAllAssoc('uid');`

			`// Load the users.`
			`$users = user_load_multiple(array_keys($result));`
- Patch #191544 by Crell: split up profile module. Tested by catch. 2007-11-13 12:28:36 +00:00
			`$content = '';`
#347250 by catch, drewish, and Berdir: Add function for loading multiple users in one request. 2009-03-14 23:01:38 +00:00			`foreach ($users as $account) {`
- Patch #191544 by Crell: split up profile module. Tested by catch. 2007-11-13 12:28:36 +00:00			`$profile = _profile_update_user_fields($fields, $account);`
			`$content .= theme('profile_listing', $account, $profile);`
			`}`
			`$output = theme('profile_wrapper', $content);`
- Patch #330748 by stBorchert: remove from theme_pager*. 2009-04-26 19:44:40 +00:00			`$output .= theme('pager', NULL);`
- Patch #191544 by Crell: split up profile module. Tested by catch. 2007-11-13 12:28:36 +00:00
			`if ($field->type == 'selection' \|\| $field->type == 'list' \|\| $field->type == 'textfield') {`
			`$title = strtr(check_plain($field->page), array('%value' => theme('placeholder', $value)));`
			`}`
			`else {`
			`$title = check_plain($field->page);`
			`}`

Re-commit of #242873 by pwolanin and bjaspan: Make drupal_set_title() check_plain() by default. 2008-10-13 00:33:05 +00:00			`drupal_set_title($title, PASS_THROUGH);`
- Patch #191544 by Crell: split up profile module. Tested by catch. 2007-11-13 12:28:36 +00:00			`return $output;`
			`}`
#282405 by Damien Tournoud, lilou, Dave Reid: Enforce coding standard on elseif. 2008-10-12 04:30:09 +00:00			`elseif ($name && !$field->fid) {`
- Patch #191544 by Crell: split up profile module. Tested by catch. 2007-11-13 12:28:36 +00:00			`drupal_not_found();`
			`}`
			`else {`
			`// Compile a list of fields to show.`
			`$fields = array();`
- Patch #288039 by sun, ff1, agentrickard, fgm, ultimateboy: improved usability of the aliased URL admin page. 2008-12-05 12:50:28 +00:00			`$result = db_query('SELECT name, title, type, weight, page, visibility FROM {profile_field} WHERE visibility = %d ORDER BY category, weight', PROFILE_PUBLIC_LISTINGS);`
- Patch #191544 by Crell: split up profile module. Tested by catch. 2007-11-13 12:28:36 +00:00			`while ($record = db_fetch_object($result)) {`
			`$fields[] = $record;`
			`}`

			`// Extract the affected users:`
#347250 by catch, drewish, and Berdir: Add function for loading multiple users in one request. 2009-03-14 23:01:38 +00:00			`$result = pager_query('SELECT uid, access FROM {users} WHERE uid > 0 AND status != 0 AND access != 0 ORDER BY access DESC', 20, 0, NULL)->fetchAllAssoc('uid');`
			`$users = user_load_multiple(array_keys($result));`
- Patch #191544 by Crell: split up profile module. Tested by catch. 2007-11-13 12:28:36 +00:00			`$content = '';`
#347250 by catch, drewish, and Berdir: Add function for loading multiple users in one request. 2009-03-14 23:01:38 +00:00			`foreach ($users as $account) {`
- Patch #191544 by Crell: split up profile module. Tested by catch. 2007-11-13 12:28:36 +00:00			`$profile = _profile_update_user_fields($fields, $account);`
			`$content .= theme('profile_listing', $account, $profile);`
			`}`
			`$output = theme('profile_wrapper', $content);`
- Patch #330748 by stBorchert: remove from theme_pager*. 2009-04-26 19:44:40 +00:00			`$output .= theme('pager', NULL);`
- Patch #191544 by Crell: split up profile module. Tested by catch. 2007-11-13 12:28:36 +00:00
Re-commit of #242873 by pwolanin and bjaspan: Make drupal_set_title() check_plain() by default. 2008-10-13 00:33:05 +00:00			`drupal_set_title(t('User list'), PASS_THROUGH);`
- Patch #191544 by Crell: split up profile module. Tested by catch. 2007-11-13 12:28:36 +00:00			`return $output;`
			`}`
			`}`

			`/**`
			`* Callback to allow autocomplete of profile text fields.`
			`*/`
			`function profile_autocomplete($field, $string) {`
			`$matches = array();`
- Patch #288039 by sun, ff1, agentrickard, fgm, ultimateboy: improved usability of the aliased URL admin page. 2008-12-05 12:50:28 +00:00			`if (db_result(db_query("SELECT COUNT(*) FROM {profile_field} WHERE fid = %d AND autocomplete = 1", $field))) {`
			`$result = db_query_range("SELECT value FROM {profile_value} WHERE fid = :fid AND LOWER(value) LIKE LOWER(:value) GROUP BY value ORDER BY value ASC", array(`
#308534 by Dave Reid: Remove stray whitespace core-wide. 2008-09-15 20:48:10 +00:00			`':fid' => $field,`
- Patch #225450 by Crell, chx, bjaspan, catch, swentel, recidive et al: next generation database layer for Drupal 7. 2008-08-21 19:36:39 +00:00			`':value' => $string .'%',`
			`), 0, 10);`
- Patch #191544 by Crell: split up profile module. Tested by catch. 2007-11-13 12:28:36 +00:00			`while ($data = db_fetch_object($result)) {`
			`$matches[$data->value] = check_plain($data->value);`
			`}`
			`}`

			`drupal_json($matches);`
			`}`