mirror of
https://github.com/torrentpier/torrentpier
synced 2025-08-22 14:23:57 -07:00
r318
фикс git-svn-id: https://torrentpier2.googlecode.com/svn/trunk@318 a8ac35ab-4ca4-ca47-4c2d-a49a94f06293
This commit is contained in:
stalker.psd@gmail.com
parent
bf34c64493
commit
f65a513ce0
1 changed files with 290 additions and 290 deletions
|
|
@ -1,290 +1,290 @@
|
||||||
<?php
|
<?php
|
||||||
|
|
||||||
if (!defined('IN_AJAX')) die(basename(__FILE__));
|
if (!defined('IN_AJAX')) die(basename(__FILE__));
|
||||||
|
|
||||||
global $lang, $bb_cfg, $userdata;
|
global $lang, $bb_cfg, $userdata;
|
||||||
|
|
||||||
if (!isset($this->request['type']))
|
if (!isset($this->request['type']))
|
||||||
{
|
{
|
||||||
$this->ajax_die('empty type');
|
$this->ajax_die('empty type');
|
||||||
}
|
}
|
||||||
if (isset($this->request['post_id']))
|
if (isset($this->request['post_id']))
|
||||||
{
|
{
|
||||||
$post_id = (int) $this->request['post_id'];
|
$post_id = (int) $this->request['post_id'];
|
||||||
$post = DB()->fetch_row("SELECT t.*, f.*, p.*, pt.post_text
|
$post = DB()->fetch_row("SELECT t.*, f.*, p.*, pt.post_text
|
||||||
FROM ". BB_TOPICS ." t, ". BB_FORUMS ." f, ". BB_POSTS ." p, ". BB_POSTS_TEXT ." pt
|
FROM ". BB_TOPICS ." t, ". BB_FORUMS ." f, ". BB_POSTS ." p, ". BB_POSTS_TEXT ." pt
|
||||||
WHERE p.post_id = $post_id
|
WHERE p.post_id = $post_id
|
||||||
AND t.topic_id = p.topic_id
|
AND t.topic_id = p.topic_id
|
||||||
AND f.forum_id = t.forum_id
|
AND f.forum_id = t.forum_id
|
||||||
AND p.post_id = pt.post_id
|
AND p.post_id = pt.post_id
|
||||||
LIMIT 1");
|
LIMIT 1");
|
||||||
}
|
}
|
||||||
|
|
||||||
if (!defined('WORD_LIST_OBTAINED'))
|
if (!defined('WORD_LIST_OBTAINED'))
|
||||||
{
|
{
|
||||||
$orig_word = array();
|
$orig_word = array();
|
||||||
$replace_word = array();
|
$replace_word = array();
|
||||||
obtain_word_list($orig_word, $replace_word);
|
obtain_word_list($orig_word, $replace_word);
|
||||||
define('WORD_LIST_OBTAINED', true);
|
define('WORD_LIST_OBTAINED', true);
|
||||||
}
|
}
|
||||||
|
|
||||||
switch($this->request['type'])
|
switch($this->request['type'])
|
||||||
{
|
{
|
||||||
case 'delete';
|
case 'delete';
|
||||||
if(!$post) $this->ajax_die('not post');
|
if(!$post) $this->ajax_die('not post');
|
||||||
|
|
||||||
$is_auth = auth(AUTH_ALL, $post['forum_id'], $userdata, $post);
|
$is_auth = auth(AUTH_ALL, $post['forum_id'], $userdata, $post);
|
||||||
|
|
||||||
if($post['post_id'] != $post['topic_first_post_id'] && ($is_auth['auth_mod'] || ($userdata['user_id'] == $post['poster_id'] && $is_auth['auth_delete'] && $post['topic_last_post_id'] == $post['post_id'] && $post['post_time'] + 3600*3 > TIMENOW)))
|
if($post['post_id'] != $post['topic_first_post_id'] && ($is_auth['auth_mod'] || ($userdata['user_id'] == $post['poster_id'] && $is_auth['auth_delete'] && $post['topic_last_post_id'] == $post['post_id'] && $post['post_time'] + 3600*3 > TIMENOW)))
|
||||||
{
|
{
|
||||||
if (empty($this->request['confirmed']))
|
if (empty($this->request['confirmed']))
|
||||||
{
|
{
|
||||||
$this->prompt_for_confirm($lang['CONFIRM_DELETE']);
|
$this->prompt_for_confirm($lang['CONFIRM_DELETE']);
|
||||||
}
|
}
|
||||||
post_delete($post_id);
|
post_delete($post_id);
|
||||||
$this->response['hide'] = true;
|
$this->response['hide'] = true;
|
||||||
$this->response['post_id'] = $post_id;
|
$this->response['post_id'] = $post_id;
|
||||||
}
|
}
|
||||||
else
|
else
|
||||||
{
|
{
|
||||||
$this->ajax_die(sprintf($lang['SORRY_AUTH_DELETE'], strip_tags($is_auth['auth_delete_type'])));
|
$this->ajax_die(sprintf($lang['SORRY_AUTH_DELETE'], strip_tags($is_auth['auth_delete_type'])));
|
||||||
}
|
}
|
||||||
break;
|
break;
|
||||||
|
|
||||||
case 'reply';
|
case 'reply';
|
||||||
if(!$post) $this->ajax_die($lang['NOT_POST']);
|
if(!$post) $this->ajax_die($lang['NOT_POST']);
|
||||||
|
|
||||||
$is_auth = auth(AUTH_ALL, $post['forum_id'], $userdata, $post);
|
$is_auth = auth(AUTH_ALL, $post['forum_id'], $userdata, $post);
|
||||||
if(bf($userdata['user_opt'], 'user_opt', 'allow_post'))
|
if(bf($userdata['user_opt'], 'user_opt', 'allow_post'))
|
||||||
{
|
{
|
||||||
$this->ajax_die($lang['RULES_REPLY_CANNOT']);
|
$this->ajax_die($lang['RULES_REPLY_CANNOT']);
|
||||||
}
|
}
|
||||||
else if(!$is_auth['auth_reply'])
|
else if(!$is_auth['auth_reply'])
|
||||||
{
|
{
|
||||||
$this->ajax_die(sprintf($lang['SORRY_AUTH_REPLY'], strip_tags($is_auth['auth_reply_type'])));
|
$this->ajax_die(sprintf($lang['SORRY_AUTH_REPLY'], strip_tags($is_auth['auth_reply_type'])));
|
||||||
}
|
}
|
||||||
|
|
||||||
// Use trim to get rid of spaces placed there by MS-SQL 2000
|
// Use trim to get rid of spaces placed there by MS-SQL 2000
|
||||||
$quote_username = (trim($post['post_username']) != '') ? $post['post_username'] : get_username($post['poster_id']);
|
$quote_username = (trim($post['post_username']) != '') ? $post['post_username'] : get_username($post['poster_id']);
|
||||||
$message = "[quote=\"". $quote_username ."\"]". $post['post_text'] ."[/quote]\n";
|
$message = "[quote=\"". $quote_username ."\"]". $post['post_text'] ."[/quote]\n";
|
||||||
// hide user passkey
|
// hide user passkey
|
||||||
$message = preg_replace('#(?<=\?uk=)[a-zA-Z0-9]{10}(?=&)#', 'passkey', $message);
|
$message = preg_replace('#(?<=\?uk=)[a-zA-Z0-9]{10}(?=&)#', 'passkey', $message);
|
||||||
// hide sid
|
// hide sid
|
||||||
$message = preg_replace('#(?<=[\?&;]sid=)[a-zA-Z0-9]{12}#', 'sid', $message);
|
$message = preg_replace('#(?<=[\?&;]sid=)[a-zA-Z0-9]{12}#', 'sid', $message);
|
||||||
|
|
||||||
if (!empty($orig_word))
|
if (!empty($orig_word))
|
||||||
{
|
{
|
||||||
$message = (!empty($message)) ? preg_replace($orig_word, $replace_word, $message) : '';
|
$message = (!empty($message)) ? preg_replace($orig_word, $replace_word, $message) : '';
|
||||||
}
|
}
|
||||||
|
|
||||||
if($post['post_id'] == $post['topic_first_post_id'])
|
if($post['post_id'] == $post['topic_first_post_id'])
|
||||||
{
|
{
|
||||||
$message = "[quote]". $post['topic_title'] ."[/quote]\n";
|
$message = "[quote]". $post['topic_title'] ."[/quote]\n";
|
||||||
}
|
}
|
||||||
if(mb_strlen($message, 'UTF-8') > 1000)
|
if(mb_strlen($message, 'UTF-8') > 1000)
|
||||||
{
|
{
|
||||||
$this->response['redirect'] = make_url('posting.php?mode=quote&p='. $post_id);
|
$this->response['redirect'] = make_url('posting.php?mode=quote&p='. $post_id);
|
||||||
}
|
}
|
||||||
|
|
||||||
$this->response['quote'] = true;
|
$this->response['quote'] = true;
|
||||||
$this->response['message'] = $message;
|
$this->response['message'] = $message;
|
||||||
break;
|
break;
|
||||||
|
|
||||||
case 'view_message':
|
case 'view_message':
|
||||||
$message = (string) $this->request['message'];
|
$message = (string) $this->request['message'];
|
||||||
if(!trim($message)) $this->ajax_die($lang['EMPTY_MESSAGE']);
|
if(!trim($message)) $this->ajax_die($lang['EMPTY_MESSAGE']);
|
||||||
|
|
||||||
$this->response['message_html'] = bbcode2html($message);
|
$this->response['message_html'] = bbcode2html($message);
|
||||||
$this->response['res_id'] = $this->request['res_id'];
|
$this->response['res_id'] = @$this->request['res_id'];
|
||||||
break;
|
break;
|
||||||
|
|
||||||
case 'edit':
|
case 'edit':
|
||||||
case 'editor':
|
case 'editor':
|
||||||
if(!$post) $this->ajax_die($lang['NOT_POST']);
|
if(!$post) $this->ajax_die($lang['NOT_POST']);
|
||||||
|
|
||||||
if((mb_strlen($post['post_text'], 'UTF-8') > 1000) || $post['post_attachment'] || ($post['topic_first_post_id'] == $post_id))
|
if((mb_strlen($post['post_text'], 'UTF-8') > 1000) || $post['post_attachment'] || ($post['topic_first_post_id'] == $post_id))
|
||||||
{
|
{
|
||||||
$this->response['redirect'] = make_url('posting.php?mode=editpost&p='. $post_id);
|
$this->response['redirect'] = make_url('posting.php?mode=editpost&p='. $post_id);
|
||||||
}
|
}
|
||||||
else if($this->request['type'] == 'editor')
|
else if($this->request['type'] == 'editor')
|
||||||
{
|
{
|
||||||
$text = (string) $this->request['text'];
|
$text = (string) $this->request['text'];
|
||||||
$text = prepare_message($text);
|
$text = prepare_message($text);
|
||||||
|
|
||||||
if(mb_strlen($text) > 2)
|
if(mb_strlen($text) > 2)
|
||||||
{
|
{
|
||||||
if($text != $post['post_text'])
|
if($text != $post['post_text'])
|
||||||
{
|
{
|
||||||
if($bb_cfg['max_smilies'])
|
if($bb_cfg['max_smilies'])
|
||||||
{
|
{
|
||||||
$count_smilies = substr_count(bbcode2html($text), '<img class="smile" src="'. $bb_cfg['smilies_path']);
|
$count_smilies = substr_count(bbcode2html($text), '<img class="smile" src="'. $bb_cfg['smilies_path']);
|
||||||
if($count_smilies > $bb_cfg['max_smilies'])
|
if($count_smilies > $bb_cfg['max_smilies'])
|
||||||
{
|
{
|
||||||
$this->ajax_die(sprintf($lang['MAX_SMILIES_PER_POST'], $bb_cfg['max_smilies']));
|
$this->ajax_die(sprintf($lang['MAX_SMILIES_PER_POST'], $bb_cfg['max_smilies']));
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
DB()->query("UPDATE ". BB_POSTS_TEXT ." SET post_text = '". DB()->escape($text) ."' WHERE post_id = $post_id LIMIT 1");
|
DB()->query("UPDATE ". BB_POSTS_TEXT ." SET post_text = '". DB()->escape($text) ."' WHERE post_id = $post_id LIMIT 1");
|
||||||
add_search_words($post_id, stripslashes($text), stripslashes($post['topic_title']));
|
add_search_words($post_id, stripslashes($text), stripslashes($post['topic_title']));
|
||||||
update_post_html(array(
|
update_post_html(array(
|
||||||
'post_id' => $post_id,
|
'post_id' => $post_id,
|
||||||
'post_text' => $text,
|
'post_text' => $text,
|
||||||
));
|
));
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
else $this->ajax_die($lang['EMPTY_MESSAGE']);
|
else $this->ajax_die($lang['EMPTY_MESSAGE']);
|
||||||
|
|
||||||
$this->response['html'] = bbcode2html($text);
|
$this->response['html'] = bbcode2html($text);
|
||||||
}
|
}
|
||||||
else
|
else
|
||||||
{
|
{
|
||||||
$is_auth = auth(AUTH_ALL, $post['forum_id'], $userdata, $post);
|
$is_auth = auth(AUTH_ALL, $post['forum_id'], $userdata, $post);
|
||||||
if ($post['topic_status'] == TOPIC_LOCKED && !$is_auth['auth_mod'])
|
if ($post['topic_status'] == TOPIC_LOCKED && !$is_auth['auth_mod'])
|
||||||
{
|
{
|
||||||
$this->ajax_die($lang['TOPIC_LOCKED']);
|
$this->ajax_die($lang['TOPIC_LOCKED']);
|
||||||
}
|
}
|
||||||
else if(!$is_auth['auth_edit'])
|
else if(!$is_auth['auth_edit'])
|
||||||
{
|
{
|
||||||
$this->ajax_die(sprintf($lang['SORRY_AUTH_EDIT'], strip_tags($is_auth['auth_edit_type'])));
|
$this->ajax_die(sprintf($lang['SORRY_AUTH_EDIT'], strip_tags($is_auth['auth_edit_type'])));
|
||||||
}
|
}
|
||||||
|
|
||||||
$hidden_form = '<input type="hidden" name="mode" value="editpost" />';
|
$hidden_form = '<input type="hidden" name="mode" value="editpost" />';
|
||||||
$hidden_form .= '<input type="hidden" name="'. POST_POST_URL .'" value="'. $post_id .'" />';
|
$hidden_form .= '<input type="hidden" name="'. POST_POST_URL .'" value="'. $post_id .'" />';
|
||||||
$hidden_form .= '<input type="hidden" name="subject" value="'. $post['topic_title'] .'" />';
|
$hidden_form .= '<input type="hidden" name="subject" value="'. $post['topic_title'] .'" />';
|
||||||
|
|
||||||
$this->response['text'] = '
|
$this->response['text'] = '
|
||||||
<form action="posting.php" method="post" name="post">
|
<form action="posting.php" method="post" name="post">
|
||||||
'. $hidden_form .'
|
'. $hidden_form .'
|
||||||
<div class="buttons mrg_4">
|
<div class="buttons mrg_4">
|
||||||
<input type="button" value="B" name="codeB" title="'.$lang['BOLD'].'" style="font-weight: bold; width: 30px;" />
|
<input type="button" value="B" name="codeB" title="'.$lang['BOLD'].'" style="font-weight: bold; width: 30px;" />
|
||||||
<input type="button" value="i" name="codeI" title="'.$lang['ITALIC'].'" style="width: 30px; font-style: italic;" />
|
<input type="button" value="i" name="codeI" title="'.$lang['ITALIC'].'" style="width: 30px; font-style: italic;" />
|
||||||
<input type="button" value="u" name="codeU" title="'.$lang['UNDERLINE'].'" style="width: 30px; text-decoration: underline;" />
|
<input type="button" value="u" name="codeU" title="'.$lang['UNDERLINE'].'" style="width: 30px; text-decoration: underline;" />
|
||||||
<input type="button" value="s" name="codeS" title="'.$lang['STRIKEOUT'].'" style="width: 30px; text-decoration: line-through;" />
|
<input type="button" value="s" name="codeS" title="'.$lang['STRIKEOUT'].'" style="width: 30px; text-decoration: line-through;" />
|
||||||
<input type="button" value="'.$lang['QUOTE'].'" name="codeQuote" title="'.$lang['QUOTE_TITLE'].'" style="width: 57px;" />
|
<input type="button" value="'.$lang['QUOTE'].'" name="codeQuote" title="'.$lang['QUOTE_TITLE'].'" style="width: 57px;" />
|
||||||
<input type="button" value="Img" name="codeImg" title="'.$lang['IMG_TITLE'].'" style="width: 40px;" />
|
<input type="button" value="Img" name="codeImg" title="'.$lang['IMG_TITLE'].'" style="width: 40px;" />
|
||||||
<input type="button" value="'.$lang['URL'].'" name="codeUrl" title="'.$lang['URL_TITLE'].'" style="width: 63px; text-decoration: underline;" /><input type="hidden" name="codeUrl2" />
|
<input type="button" value="'.$lang['URL'].'" name="codeUrl" title="'.$lang['URL_TITLE'].'" style="width: 63px; text-decoration: underline;" /><input type="hidden" name="codeUrl2" />
|
||||||
<input type="button" value="'.$lang['CODE'].'" name="codeCode" title="'.$lang['CODE_TITLE'].'" style="width: 43px;" />
|
<input type="button" value="'.$lang['CODE'].'" name="codeCode" title="'.$lang['CODE_TITLE'].'" style="width: 43px;" />
|
||||||
<input type="button" value="'.$lang['LIST'].'" name="codeList" title="'.$lang['LIST_TITLE'].'" style="width: 60px;" />
|
<input type="button" value="'.$lang['LIST'].'" name="codeList" title="'.$lang['LIST_TITLE'].'" style="width: 60px;" />
|
||||||
<input type="button" value="1." name="codeOpt" title="'.$lang['LIST_ITEM'].'" style="width: 30px;" />
|
<input type="button" value="1." name="codeOpt" title="'.$lang['LIST_ITEM'].'" style="width: 30px;" />
|
||||||
<input type="button" value="'.$lang['QUOTE_SEL'].'" name="quoteselected" title="'.$lang['QUOTE_SELECTED'].'" onmouseout="bbcode.refreshSelection(false);" onmouseover="bbcode.refreshSelection(true);" onclick="bbcode.onclickQuoteSel();" />
|
<input type="button" value="'.$lang['QUOTE_SEL'].'" name="quoteselected" title="'.$lang['QUOTE_SELECTED'].'" onmouseout="bbcode.refreshSelection(false);" onmouseover="bbcode.refreshSelection(true);" onclick="bbcode.onclickQuoteSel();" />
|
||||||
</div>
|
</div>
|
||||||
<textarea id="message-'. $post_id .'" class="editor mrg_4" name="message" rows="18" cols="92">'. $post['post_text'] .'</textarea>
|
<textarea id="message-'. $post_id .'" class="editor mrg_4" name="message" rows="18" cols="92">'. $post['post_text'] .'</textarea>
|
||||||
<div class="mrg_4 tCenter">
|
<div class="mrg_4 tCenter">
|
||||||
<input title="Alt+Enter" name="preview" type="submit" value="'.$lang['PREVIEW'].'">
|
<input title="Alt+Enter" name="preview" type="submit" value="'.$lang['PREVIEW'].'">
|
||||||
<input type="button" onclick="edit_post('. $post_id .');" value="'. $lang['CANCEL'] .'">
|
<input type="button" onclick="edit_post('. $post_id .');" value="'. $lang['CANCEL'] .'">
|
||||||
<input type="button" onclick="edit_post('. $post_id .', \'editor\', $(\'#message-'. $post_id .'\').val()); return false;" class="bold" value="'. $lang['SUBMIT'] .'">
|
<input type="button" onclick="edit_post('. $post_id .', \'editor\', $(\'#message-'. $post_id .'\').val()); return false;" class="bold" value="'. $lang['SUBMIT'] .'">
|
||||||
</div><hr>
|
</div><hr>
|
||||||
<script type="text/javascript">
|
<script type="text/javascript">
|
||||||
var bbcode = new BBCode("message-'. $post_id .'");
|
var bbcode = new BBCode("message-'. $post_id .'");
|
||||||
var ctrl = "ctrl";
|
var ctrl = "ctrl";
|
||||||
|
|
||||||
bbcode.addTag("codeB", "b", null, "B", ctrl);
|
bbcode.addTag("codeB", "b", null, "B", ctrl);
|
||||||
bbcode.addTag("codeI", "i", null, "I", ctrl);
|
bbcode.addTag("codeI", "i", null, "I", ctrl);
|
||||||
bbcode.addTag("codeU", "u", null, "U", ctrl);
|
bbcode.addTag("codeU", "u", null, "U", ctrl);
|
||||||
bbcode.addTag("codeS", "s", null, "S", ctrl);
|
bbcode.addTag("codeS", "s", null, "S", ctrl);
|
||||||
|
|
||||||
bbcode.addTag("codeQuote", "quote", null, "Q", ctrl);
|
bbcode.addTag("codeQuote", "quote", null, "Q", ctrl);
|
||||||
bbcode.addTag("codeImg", "img", null, "R", ctrl);
|
bbcode.addTag("codeImg", "img", null, "R", ctrl);
|
||||||
bbcode.addTag("codeUrl", "url", "/url", "", ctrl);
|
bbcode.addTag("codeUrl", "url", "/url", "", ctrl);
|
||||||
bbcode.addTag("codeUrl2", "url=", "/url", "W", ctrl);
|
bbcode.addTag("codeUrl2", "url=", "/url", "W", ctrl);
|
||||||
|
|
||||||
bbcode.addTag("codeCode", "code", null, "K", ctrl);
|
bbcode.addTag("codeCode", "code", null, "K", ctrl);
|
||||||
bbcode.addTag("codeList", "list", null, "L", ctrl);
|
bbcode.addTag("codeList", "list", null, "L", ctrl);
|
||||||
bbcode.addTag("codeOpt", "*", "", "0", ctrl);
|
bbcode.addTag("codeOpt", "*", "", "0", ctrl);
|
||||||
</script>
|
</script>
|
||||||
</form>';
|
</form>';
|
||||||
}
|
}
|
||||||
$this->response['post_id'] = $post_id;
|
$this->response['post_id'] = $post_id;
|
||||||
break;
|
break;
|
||||||
|
|
||||||
case 'add':
|
case 'add':
|
||||||
if (!isset($this->request['topic_id']))
|
if (!isset($this->request['topic_id']))
|
||||||
{
|
{
|
||||||
$this->ajax_die('empty topic_id');
|
$this->ajax_die('empty topic_id');
|
||||||
}
|
}
|
||||||
$topic_id = (int) $this->request['topic_id'];
|
$topic_id = (int) $this->request['topic_id'];
|
||||||
$t_data = DB()->fetch_row("SELECT t.*, f.*
|
$t_data = DB()->fetch_row("SELECT t.*, f.*
|
||||||
FROM ". BB_TOPICS ." t, ". BB_FORUMS ." f
|
FROM ". BB_TOPICS ." t, ". BB_FORUMS ." f
|
||||||
WHERE t.topic_id = $topic_id
|
WHERE t.topic_id = $topic_id
|
||||||
AND f.forum_id = t.forum_id
|
AND f.forum_id = t.forum_id
|
||||||
LIMIT 1");
|
LIMIT 1");
|
||||||
if(!$t_data) $this->ajax_die($lang['TOPIC_POST_NOT_EXIST']);
|
if(!$t_data) $this->ajax_die($lang['TOPIC_POST_NOT_EXIST']);
|
||||||
|
|
||||||
$is_auth = auth(AUTH_ALL, $t_data['forum_id'], $userdata, $t_data);
|
$is_auth = auth(AUTH_ALL, $t_data['forum_id'], $userdata, $t_data);
|
||||||
if(bf($userdata['user_opt'], 'user_opt', 'allow_post'))
|
if(bf($userdata['user_opt'], 'user_opt', 'allow_post'))
|
||||||
{
|
{
|
||||||
$this->ajax_die($lang['RULES_REPLY_CANNOT']);
|
$this->ajax_die($lang['RULES_REPLY_CANNOT']);
|
||||||
}
|
}
|
||||||
else if(!$is_auth['auth_reply'])
|
else if(!$is_auth['auth_reply'])
|
||||||
{
|
{
|
||||||
$this->ajax_die(sprintf($lang['SORRY_AUTH_REPLY'], strip_tags($is_auth['auth_reply_type'])));
|
$this->ajax_die(sprintf($lang['SORRY_AUTH_REPLY'], strip_tags($is_auth['auth_reply_type'])));
|
||||||
}
|
}
|
||||||
|
|
||||||
$message = (string) $this->request['message'];
|
$message = (string) $this->request['message'];
|
||||||
$message = prepare_message($message);
|
$message = prepare_message($message);
|
||||||
|
|
||||||
// Flood control
|
// Flood control
|
||||||
$where_sql = (IS_GUEST) ? "p.poster_ip = '". USER_IP ."'" : "p.poster_id = {$userdata['user_id']}";
|
$where_sql = (IS_GUEST) ? "p.poster_ip = '". USER_IP ."'" : "p.poster_id = {$userdata['user_id']}";
|
||||||
|
|
||||||
$sql = "SELECT MAX(p.post_time) AS last_post_time FROM ". BB_POSTS ." p WHERE $where_sql";
|
$sql = "SELECT MAX(p.post_time) AS last_post_time FROM ". BB_POSTS ." p WHERE $where_sql";
|
||||||
if ($row = DB()->fetch_row($sql) AND $row['last_post_time'])
|
if ($row = DB()->fetch_row($sql) AND $row['last_post_time'])
|
||||||
{
|
{
|
||||||
if ($userdata['user_level'] == USER)
|
if ($userdata['user_level'] == USER)
|
||||||
{
|
{
|
||||||
if (TIMENOW - $row['last_post_time'] < $bb_cfg['flood_interval'])
|
if (TIMENOW - $row['last_post_time'] < $bb_cfg['flood_interval'])
|
||||||
{
|
{
|
||||||
$this->ajax_die($lang['FLOOD_ERROR']);
|
$this->ajax_die($lang['FLOOD_ERROR']);
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
|
|
||||||
// Double Post Control
|
// Double Post Control
|
||||||
if (!empty($row['last_post_time']) && !IS_AM)
|
if (!empty($row['last_post_time']) && !IS_AM)
|
||||||
{
|
{
|
||||||
$sql = "
|
$sql = "
|
||||||
SELECT pt.post_text
|
SELECT pt.post_text
|
||||||
FROM ". BB_POSTS ." p, ". BB_POSTS_TEXT ." pt
|
FROM ". BB_POSTS ." p, ". BB_POSTS_TEXT ." pt
|
||||||
WHERE $where_sql
|
WHERE $where_sql
|
||||||
AND p.post_time = ". (int) $row['last_post_time'] ."
|
AND p.post_time = ". (int) $row['last_post_time'] ."
|
||||||
AND pt.post_id = p.post_id
|
AND pt.post_id = p.post_id
|
||||||
LIMIT 1
|
LIMIT 1
|
||||||
";
|
";
|
||||||
|
|
||||||
if ($row = DB()->fetch_row($sql))
|
if ($row = DB()->fetch_row($sql))
|
||||||
{
|
{
|
||||||
$last_msg = DB()->escape($row['post_text']);
|
$last_msg = DB()->escape($row['post_text']);
|
||||||
|
|
||||||
if ($last_msg == $message)
|
if ($last_msg == $message)
|
||||||
{
|
{
|
||||||
$this->ajax_die($lang['DOUBLE_POST_ERROR']);
|
$this->ajax_die($lang['DOUBLE_POST_ERROR']);
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
|
|
||||||
if($bb_cfg['max_smilies'])
|
if($bb_cfg['max_smilies'])
|
||||||
{
|
{
|
||||||
$count_smilies = substr_count(bbcode2html($message), '<img class="smile" src="'. $bb_cfg['smilies_path']);
|
$count_smilies = substr_count(bbcode2html($message), '<img class="smile" src="'. $bb_cfg['smilies_path']);
|
||||||
if($count_smilies > $bb_cfg['max_smilies'])
|
if($count_smilies > $bb_cfg['max_smilies'])
|
||||||
{
|
{
|
||||||
$this->ajax_die(sprintf($lang['MAX_SMILIES_PER_POST'], $bb_cfg['max_smilies']));
|
$this->ajax_die(sprintf($lang['MAX_SMILIES_PER_POST'], $bb_cfg['max_smilies']));
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
|
|
||||||
DB()->sql_query("INSERT INTO " . BB_POSTS . " (topic_id, forum_id, poster_id, post_time, poster_ip) VALUES ($topic_id, ". $t_data['forum_id'] .", ". $userdata['user_id'] .", '". TIMENOW ."', '". USER_IP ."')");
|
DB()->sql_query("INSERT INTO " . BB_POSTS . " (topic_id, forum_id, poster_id, post_time, poster_ip) VALUES ($topic_id, ". $t_data['forum_id'] .", ". $userdata['user_id'] .", '". TIMENOW ."', '". USER_IP ."')");
|
||||||
$post_id = DB()->sql_nextid();
|
$post_id = DB()->sql_nextid();
|
||||||
DB()->sql_query("INSERT INTO " . BB_POSTS_TEXT . " (post_id, post_text) VALUES ($post_id, '". DB()->escape($message) ."')");
|
DB()->sql_query("INSERT INTO " . BB_POSTS_TEXT . " (post_id, post_text) VALUES ($post_id, '". DB()->escape($message) ."')");
|
||||||
|
|
||||||
update_post_stats('reply', $t_data, $t_data['forum_id'], $topic_id, $post_id, $userdata['user_id']);
|
update_post_stats('reply', $t_data, $t_data['forum_id'], $topic_id, $post_id, $userdata['user_id']);
|
||||||
|
|
||||||
add_search_words($post_id, stripslashes($message), stripslashes($t_data['topic_title']));
|
add_search_words($post_id, stripslashes($message), stripslashes($t_data['topic_title']));
|
||||||
update_post_html(array(
|
update_post_html(array(
|
||||||
'post_id' => $post_id,
|
'post_id' => $post_id,
|
||||||
'post_text' => $message,
|
'post_text' => $message,
|
||||||
));
|
));
|
||||||
|
|
||||||
$this->response['redirect'] = make_url(POST_URL . $post_id .'#'. $post_id);
|
$this->response['redirect'] = make_url(POST_URL . $post_id .'#'. $post_id);
|
||||||
break;
|
break;
|
||||||
|
|
||||||
default:
|
default:
|
||||||
$this->ajax_die('empty type');
|
$this->ajax_die('empty type');
|
||||||
break;
|
break;
|
||||||
}
|
}
|
||||||
|
|
|
||||||
Loading…
Add table
Add a link
Reference in a new issue