includes/stats.php
author Dan
Sat, 23 Jun 2007 09:55:58 -0400
changeset 15 ad5986a53197
parent 1 fe660c52c48f
child 16 64e0d3d4cf14
permissions -rw-r--r--
Fixed complicated SQL injection vulnerability in URL handler, updated license info for Tigra Tree Menu, and killed one XSS vulnerability

<?php
/*
 * Enano - an open-source CMS capable of wiki functions, Drupal-like sidebar blocks, and everything in between
 * Version 1.0 (Banshee)
 * Copyright (C) 2006-2007 Dan Fuhry
 * stats.php - handles statistics for pages (disablable in the admin CP)
 *
 *   ***** UNFINISHED ***** 
 *
 * This program is Free Software; you can redistribute and/or modify it under the terms of the GNU General Public License
 * as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version.
 *
 * This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied
 * warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for details.
 */

function doStats( $page_id = false, $namespace = false )
{
  global $db, $session, $paths, $template, $plugins; // Common objects
  if(getConfig('log_hits') == '1')
  {
    if(!$page_id || !$namespace)
    {
      $page_id = $paths->cpage['urlname_nons'];
      $namespace = $paths->namespace;
    }
    if($namespace == 'Special' || $namespace == 'Admin') return false;
    static $stats_done = false;
    static $stats_data = Array();
    if(!$stats_done)
    {
      $q = $db->sql_query('INSERT INTO '.table_prefix.'hits (username,time,page_id,namespace) VALUES(\''.$db->escape($session->username).'\', '.time().', \''.$db->escape($page_id).'\', \''.$db->escape($namespace).'\')');
      if(!$q)
      {
        echo $db->get_error();
        return false;
      }
      $db->free_result();
      $stats_done = true;
      return true;
    }
  }
}

/**
 * Fetch a list of the most-viewed pages
 * @param int the number of pages to return, send -1 to get all pages (suicide for large sites)
 * @return array key names are a string set to the page ID/namespace, and values are an int with the number of hits
 */

function stats_top_pages($num = 5)
{
  global $db, $session, $paths, $template, $plugins; // Common objects
  if(!is_int($num)) return false;
  $q = $db->sql_query('SELECT page_id,namespace FROM '.table_prefix.'hits ORDER BY page_id ASC, namespace ASC;');
  if(!$q)
  {
    echo $db->get_error();
    return false;
  }
  $counter = Array();
  while ( $row = $db->fetchrow() )
  {
    $kname = $paths->nslist[$row['namespace']] . $row['page_id'];
    if(isset($counter[$kname])) $counter[$kname]++;
    else $counter[$kname] = 1;
  }
  $db->free_result();
  // Pure magic! At least I don't have to do the work...
  arsort($counter);
  // Can't use array_slice here because key names are only preserved in PHP5
  $k = array_keys($counter);
  $final = Array();
  if(sizeof($counter) < $num || $num == -1) $num = sizeof($counter);
  for ( $i = 0; $i < $num; $i++ )
  {
    $final[$k[$i]] = $counter[$k[$i]];
  }
  unset($counter, $k, $row);
  return $final;
}

?>