2017-06-10 08:07:03 +00:00
|
|
|
<?php
|
|
|
|
/**
|
|
|
|
* Requests functions
|
|
|
|
*
|
|
|
|
* @author Pierre HUBERT
|
|
|
|
*/
|
|
|
|
|
|
|
|
/**
|
|
|
|
* Check $_POST parametres associated to a request
|
|
|
|
*
|
|
|
|
* @param Array $varList The list of variables to check
|
|
|
|
* @return Boolean True or false depending of the success of the operation
|
|
|
|
*/
|
|
|
|
function check_post_parametres(array $varList){
|
|
|
|
|
|
|
|
//Check each fields
|
|
|
|
foreach($varList as $process){
|
|
|
|
|
|
|
|
//Check variable existence
|
|
|
|
if(!isset($_POST[$process]))
|
|
|
|
return false; //The variable does not exists
|
|
|
|
|
|
|
|
//Check variable content
|
|
|
|
if($_POST[$process] == "")
|
|
|
|
return false; //The variable is empty
|
|
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
//If we arrive there, it is a success
|
|
|
|
return true;
|
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
2017-06-25 16:09:18 +00:00
|
|
|
* Convert a list of numbers (anything with IDs) comma-separated to an array
|
2017-06-10 08:07:03 +00:00
|
|
|
*
|
|
|
|
* @param String $list The input list
|
|
|
|
* @return Array The list of user / an empty list in case of errors
|
|
|
|
*/
|
2017-06-25 16:09:18 +00:00
|
|
|
function numbers_list_to_array($list) : array{
|
2017-06-10 08:07:03 +00:00
|
|
|
//Split the list into an array
|
|
|
|
$array = explode(",", $list);
|
|
|
|
$usersList = array();
|
|
|
|
|
|
|
|
foreach($array as $process){
|
|
|
|
|
|
|
|
//Check the entry is valid
|
2017-06-16 17:08:58 +00:00
|
|
|
if(toInt($process) < 1)
|
2017-06-18 08:07:52 +00:00
|
|
|
//return array();
|
|
|
|
continue; //Ignore entry
|
2017-06-10 08:07:03 +00:00
|
|
|
|
|
|
|
//Add the entry to the list
|
2017-06-16 17:08:58 +00:00
|
|
|
$usersList[toInt($process)] = toInt($process);
|
2017-06-10 08:07:03 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
//Return the result
|
|
|
|
return $usersList;
|
2017-06-16 17:08:58 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
|
|
|
* Securely transform user given number (mixed) to integer (int)
|
|
|
|
*
|
|
|
|
* @param Mixed $input The input variable (mixed)
|
|
|
|
* @return Integer $output The output (safe integer)
|
|
|
|
*/
|
|
|
|
function toInt($input){
|
|
|
|
return floor($input*1);
|
2017-06-23 17:00:40 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
|
|
|
* Remove HTML markup codes (<, >)
|
|
|
|
*
|
|
|
|
* @param String $input The string to change
|
|
|
|
* @return String The updated string
|
|
|
|
*/
|
|
|
|
function removeHTMLnodes($input){
|
|
|
|
$output = str_replace("<", "<", $input);
|
|
|
|
return str_replace(">", ">", $output);
|
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
|
|
|
* Check a string before inserting it
|
|
|
|
*
|
|
|
|
* @param String $string The string to check
|
|
|
|
* @return Boolean True if the string is valid / false else
|
|
|
|
*/
|
|
|
|
function check_string_before_insert($string){
|
|
|
|
|
|
|
|
//First, empty string are invalid
|
|
|
|
if($string == "")
|
|
|
|
return false;
|
|
|
|
|
|
|
|
//Remove HTML tags before continuing
|
|
|
|
$string = str_replace(array("<", ">"), "", $string);
|
|
|
|
|
|
|
|
//Check string size
|
2017-06-24 08:05:16 +00:00
|
|
|
if(strlen($string)<3)
|
2017-06-23 17:00:40 +00:00
|
|
|
return false;
|
|
|
|
|
|
|
|
//Check if the string has at least three different characters
|
|
|
|
if(strlen(count_chars($string,3)) < 3)
|
|
|
|
return false;
|
|
|
|
|
|
|
|
//Success
|
|
|
|
return true;
|
2017-12-10 10:38:23 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
|
|
|
* Make a string safe to be used to perform a query on a database
|
|
|
|
*
|
|
|
|
* @param string $input The string to process
|
|
|
|
* @return string The result string
|
|
|
|
*/
|
|
|
|
function safe_for_sql(string $input) : string {
|
|
|
|
|
|
|
|
//Perform safe adapation
|
|
|
|
$input = str_ireplace("\\", "\\\\", $input);
|
|
|
|
$input = str_ireplace("'", "\\'", $input);
|
|
|
|
$input = str_ireplace('"', "\\\"", $input);
|
|
|
|
|
|
|
|
return $input;
|
|
|
|
|
2017-12-24 15:48:08 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
|
|
|
* Check a given user ID
|
|
|
|
*
|
|
|
|
* @param int $userID The user ID to check
|
|
|
|
* @return bool True if userID is valid, false else
|
|
|
|
*/
|
|
|
|
function check_user_id(int $userID) : bool {
|
|
|
|
|
|
|
|
if($userID < 1)
|
|
|
|
return false; //Invalid
|
|
|
|
|
|
|
|
return true; //Valid
|
2017-06-10 08:07:03 +00:00
|
|
|
}
|