Zeile 138 | Zeile 138 |
---|
$post['username'] = $user['username']; } // if the uid is 0 verify the username
|
$post['username'] = $user['username']; } // if the uid is 0 verify the username
|
else if($post['uid'] == 0 && $post['username'] != $lang->guest)
| else if($post['uid'] == 0 && $post['username'] != '')
|
{ // Set up user handler require_once MYBB_ROOT."inc/datahandlers/user.php";
| { // Set up user handler require_once MYBB_ROOT."inc/datahandlers/user.php";
|
Zeile 160 | Zeile 160 |
---|
$this->errors = array_merge($this->errors, $userhandler->get_errors()); return false; }
|
$this->errors = array_merge($this->errors, $userhandler->get_errors()); return false; }
|
}
// After all of this, if we still don't have a username, force the username as "Guest" (Note, this is not translatable as it is always a fallback) if(!$post['username']) { $post['username'] = "Guest";
| |
}
return true; }
|
}
return true; }
|
|
|
/** * Verifies a post subject. *
| /** * Verifies a post subject. *
|
Zeile 189 | Zeile 183 |
---|
if(my_strlen($subject) == 0 && $this->first_post) { $this->set_error("firstpost_no_subject");
|
if(my_strlen($subject) == 0 && $this->first_post) { $this->set_error("firstpost_no_subject");
|
return false; }
| return false; }
|
elseif(my_strlen($subject) == 0)
|
elseif(my_strlen($subject) == 0)
|
{ $thread = get_thread($post['tid']); $subject = "RE: ".$thread['subject']; }
| { $thread = get_thread($post['tid']); $subject = "RE: ".$thread['subject']; }
|
}
// This is a new post else if($this->action == "post")
|
}
// This is a new post else if($this->action == "post")
|
{ if(my_strlen($subject) == 0)
| { if(my_strlen($subject) == 0)
|
{ $thread = get_thread($post['tid']); $subject = "RE: ".$thread['subject'];
| { $thread = get_thread($post['tid']); $subject = "RE: ".$thread['subject'];
|
Zeile 214 | Zeile 208 |
---|
if(my_strlen($subject) == 0) { $this->set_error("missing_subject");
|
if(my_strlen($subject) == 0) { $this->set_error("missing_subject");
|
return false; } }
| return false; } }
|
// If post is reply and begins with "RE: ", remove 4 from subject length. $subject_length = my_strlen($subject);
| // If post is reply and begins with "RE: ", remove 4 from subject length. $subject_length = my_strlen($subject);
|
Zeile 242 | Zeile 236 |
---|
/** * Verifies a post message.
|
/** * Verifies a post message.
|
*
| *
|
* @return bool */ function verify_message() {
|
* @return bool */ function verify_message() {
|
global $mybb;
| global $db, $mybb;
|
$post = &$this->data; $post['message'] = trim_blank_chrs($post['message']);
|
$post = &$this->data; $post['message'] = trim_blank_chrs($post['message']);
|
|
|
// Do we even have a message at all? if(my_strlen($post['message']) == 0) { $this->set_error("missing_message"); return false; }
|
// Do we even have a message at all? if(my_strlen($post['message']) == 0) { $this->set_error("missing_message"); return false; }
|
// If this board has a maximum message length check if we're over it. Use strlen because SQL limits are in bytes else if(strlen($post['message']) > $mybb->settings['maxmessagelength'] && $mybb->settings['maxmessagelength'] > 0 && !is_moderator($post['fid'], "", $post['uid'])) { $this->set_error("message_too_long", array($mybb->settings['maxmessagelength'], strlen($post['message']))); return false; }
// And if we've got a minimum message length do we meet that requirement too?
| |
else {
|
else {
|
| $limit = (int)$mybb->settings['maxmessagelength']; $dblimit = 0;
// If database is mysql or mysqli check field type and set max database limit if(stripos($db->type, 'my') !== false) { $fields = $db->show_fields_from("posts"); $type = $fields[array_search('message', array_column($fields, 'Field'))]['Type']; switch(strtolower($type)) { case 'longtext': $dblimit = 4294967295; break; case 'mediumtext': $dblimit = 16777215; break; case 'text': default: $dblimit = 65535; break; } }
if($limit > 0 || $dblimit > 0) { $is_moderator = is_moderator($post['fid'], "", $post['uid']); // Consider minimum in user defined and database limit other than 0 if($limit > 0 && $dblimit > 0) { $limit = $is_moderator ? $dblimit : min($limit, $dblimit); } else { $limit = max($limit, $dblimit); }
if(strlen($post['message']) > $limit && (!$is_moderator || $limit == $dblimit)) { $this->set_error("message_too_long", array($limit, strlen($post['message']))); return false; } }
|
if(!isset($post['fid'])) { $post['fid'] = 0; }
|
if(!isset($post['fid'])) { $post['fid'] = 0; }
|
|
|
if(!$mybb->settings['mycodemessagelength']) { // Check to see of the text is full of MyCode
| if(!$mybb->settings['mycodemessagelength']) { // Check to see of the text is full of MyCode
|
Zeile 349 | Zeile 378 |
---|
} return false; }
|
} return false; }
|
}
| }
|
// All is well that ends well - return true. return true; }
| // All is well that ends well - return true. return true; }
|
Zeile 373 | Zeile 402 |
---|
// Are we even turned on? if(empty($mybb->settings['postmergemins']))
|
// Are we even turned on? if(empty($mybb->settings['postmergemins']))
|
{ return true;
| { return true;
|
}
// Assign a default separator if none is specified
| }
// Assign a default separator if none is specified
|
Zeile 784 | Zeile 813 |
---|
}
if($this->method == "insert" || array_key_exists('dateline', $post))
|
}
if($this->method == "insert" || array_key_exists('dateline', $post))
|
{ $this->verify_dateline(); }
| { $this->verify_dateline(); }
|
if($this->method == "insert" || array_key_exists('replyto', $post))
|
if($this->method == "insert" || array_key_exists('replyto', $post))
|
{
| {
|
$this->verify_reply_to(); }
if($this->method == "insert" || array_key_exists('icon', $post))
|
$this->verify_reply_to(); }
if($this->method == "insert" || array_key_exists('icon', $post))
|
{
| {
|
$this->verify_post_icon();
|
$this->verify_post_icon();
|
}
| }
|
if($this->method == "insert" || array_key_exists('options', $post)) { $this->verify_options(); }
if($this->method == "update" && $this->first_post)
|
if($this->method == "insert" || array_key_exists('options', $post)) { $this->verify_options(); }
if($this->method == "update" && $this->first_post)
|
{
| {
|
$this->verify_prefix();
|
$this->verify_prefix();
|
}
| }
|
$plugins->run_hooks("datahandler_post_validate_post", $this);
| $plugins->run_hooks("datahandler_post_validate_post", $this);
|
Zeile 815 | Zeile 844 |
---|
if(count($this->get_errors()) > 0) { return false;
|
if(count($this->get_errors()) > 0) { return false;
|
}
| }
|
else { return true;
| else { return true;
|
Zeile 835 | Zeile 864 |
---|
// Yes, validating is required. if(!$this->get_validated())
|
// Yes, validating is required. if(!$this->get_validated())
|
{
| {
|
die("The post needs to be validated before inserting it into the DB."); } if(count($this->get_errors()) > 0)
| die("The post needs to be validated before inserting it into the DB."); } if(count($this->get_errors()) > 0)
|
Zeile 858 | Zeile 887 |
---|
else { // Automatic subscription to the thread
|
else { // Automatic subscription to the thread
|
if($post['options']['subscriptionmethod'] != "" && $post['uid'] > 0)
| if($post['uid'] > 0)
|
{
|
{
|
switch($post['options']['subscriptionmethod'])
| require_once MYBB_ROOT."inc/functions_user.php"; if($post['options']['subscriptionmethod'] == "")
|
{
|
{
|
case "pm": $notification = 2; break; case "email": $notification = 1; break; default: $notification = 0;
| remove_subscribed_thread($post['tid'], $post['uid']); } else { switch($post['options']['subscriptionmethod']) { case "pm": $notification = 2; break; case "email": $notification = 1; break; default: $notification = 0; } add_subscribed_thread($post['tid'], $notification, $post['uid']);
|
}
|
}
|
require_once MYBB_ROOT."inc/functions_user.php"; add_subscribed_thread($post['tid'], $notification, $post['uid']);
| |
}
// Perform any selected moderation tools.
| }
// Perform any selected moderation tools.
|
Zeile 1168 | Zeile 1203 |
---|
$emailsubject = $lang->emailsubject_subscription; $emailmessage = $lang->email_subscription; }
|
$emailsubject = $lang->emailsubject_subscription; $emailmessage = $lang->email_subscription; }
|
}
| // If the poster is unregistered and hasn't set a username, call them Guest if(!$post['uid'] && !$post['username']) { $post['username'] = htmlspecialchars_uni($lang->guest); } }
|
else
|
else
|
{ if($subscribedmember['notification'] == 1)
| {
if(($subscribedmember['notification'] == 1 && !isset($langcache[$uselang]['emailsubject_subscription'])) || !isset($langcache[$uselang]['guest']))
|
{
|
{
|
if(!isset($langcache[$uselang]['emailsubject_subscription']))
| $userlang = new MyLanguage; $userlang->set_path(MYBB_ROOT."inc/languages"); $userlang->set_language($uselang); if($subscribedmember['notification'] == 1)
|
{
|
{
|
$userlang = new MyLanguage; $userlang->set_path(MYBB_ROOT."inc/languages"); $userlang->set_language($uselang);
| |
$userlang->load("messages"); $langcache[$uselang]['emailsubject_subscription'] = $userlang->emailsubject_subscription; $langcache[$uselang]['email_subscription'] = $userlang->email_subscription;
|
$userlang->load("messages"); $langcache[$uselang]['emailsubject_subscription'] = $userlang->emailsubject_subscription; $langcache[$uselang]['email_subscription'] = $userlang->email_subscription;
|
unset($userlang);
| |
}
|
}
|
| $userlang->load("global");
$langcache[$uselang]['guest'] = $userlang->guest; unset($userlang); } if($subscribedmember['notification'] == 1) {
|
$emailsubject = $langcache[$uselang]['emailsubject_subscription']; $emailmessage = $langcache[$uselang]['email_subscription'];
|
$emailsubject = $langcache[$uselang]['emailsubject_subscription']; $emailmessage = $langcache[$uselang]['email_subscription'];
|
| }
// If the poster is unregistered and hasn't set a username, call them Guest if(!$post['uid'] && !$post['username']) { $post['username'] = $langcache[$uselang]['guest'];
|
} }
if($subscribedmember['notification'] == 1)
|
} }
if($subscribedmember['notification'] == 1)
|
{ $emailsubject = $lang->sprintf($emailsubject, $subject);
$post_code = md5($subscribedmember['loginkey'].$subscribedmember['salt'].$subscribedmember['regdate']); $emailmessage = $lang->sprintf($emailmessage, $subscribedmember['username'], $post['username'], $mybb->settings['bbname'], $subject, $excerpt, $mybb->settings['bburl'], str_replace("&", "&", get_thread_link($thread['tid'], 0, "newpost")), $thread['tid'], $post_code); $new_email = array( "mailto" => $db->escape_string($subscribedmember['email']), "mailfrom" => '', "subject" => $db->escape_string($emailsubject), "message" => $db->escape_string($emailmessage), "headers" => '' ); $db->insert_query("mailqueue", $new_email); unset($userlang); $queued_email = 1;
| { $emailsubject = $lang->sprintf($emailsubject, $subject);
$emailmessage = $lang->sprintf($emailmessage, $subscribedmember['username'], $post['username'], $mybb->settings['bbname'], $subject, $excerpt, $mybb->settings['bburl'], str_replace("&", "&", get_thread_link($thread['tid'], 0, "newpost")), $thread['tid']); $new_email = array( "mailto" => $db->escape_string($subscribedmember['email']), "mailfrom" => '', "subject" => $db->escape_string($emailsubject), "message" => $db->escape_string($emailmessage), "headers" => '' ); $db->insert_query("mailqueue", $new_email); unset($userlang); $queued_email = 1;
|
} elseif($subscribedmember['notification'] == 2) {
|
} elseif($subscribedmember['notification'] == 2) {
|
$post_code = md5($subscribedmember['loginkey'].$subscribedmember['salt'].$subscribedmember['regdate']);
| |
$pm = array( 'subject' => array('pmsubject_subscription', $subject),
|
$pm = array( 'subject' => array('pmsubject_subscription', $subject),
|
'message' => array('pm_subscription', $subscribedmember['username'], $post['username'], $subject, $excerpt, $mybb->settings['bburl'], str_replace("&", "&", get_thread_link($thread['tid'], 0, "newpost")), $thread['tid'], $post_code),
| 'message' => array('pm_subscription', $subscribedmember['username'], $post['username'], $subject, $excerpt, $mybb->settings['bburl'], str_replace("&", "&", get_thread_link($thread['tid'], 0, "newpost")), $thread['tid']),
|
'touid' => $subscribedmember['uid'], 'language' => $subscribedmember['language'], 'language_file' => 'messages'
| 'touid' => $subscribedmember['uid'], 'language' => $subscribedmember['language'], 'language_file' => 'messages'
|
Zeile 1593 | Zeile 1645 |
---|
$done_users = array();
// Queue up any forum subscription notices to users who are subscribed to this forum.
|
$done_users = array();
// Queue up any forum subscription notices to users who are subscribed to this forum.
|
$excerpt = my_substr($thread['message'], 0, $mybb->settings['subscribeexcerpt']).$lang->emailbit_viewthread;
| $excerpt = $thread['message'];
|
// Parse badwords require_once MYBB_ROOT."inc/class_parser.php"; $parser = new postParser; $excerpt = $parser->parse_badwords($excerpt);
|
// Parse badwords require_once MYBB_ROOT."inc/class_parser.php"; $parser = new postParser; $excerpt = $parser->parse_badwords($excerpt);
|
| $excerpt = $parser->text_parse_message($excerpt); if(strlen($excerpt) > $mybb->settings['subscribeexcerpt']) { $excerpt = my_substr($excerpt, 0, $mybb->settings['subscribeexcerpt']).$lang->emailbit_viewthread; }
|
$query = $db->query(" SELECT u.username, u.email, u.uid, u.language, u.loginkey, u.salt, u.regdate FROM ".TABLE_PREFIX."forumsubscriptions fs
| $query = $db->query(" SELECT u.username, u.email, u.uid, u.language, u.loginkey, u.salt, u.regdate FROM ".TABLE_PREFIX."forumsubscriptions fs
|
Zeile 1648 | Zeile 1704 |
---|
{ $emailsubject = $lang->emailsubject_forumsubscription; $emailmessage = $lang->email_forumsubscription;
|
{ $emailsubject = $lang->emailsubject_forumsubscription; $emailmessage = $lang->email_forumsubscription;
|
| // If the poster is unregistered and hasn't set a username, call them Guest if(!$thread['uid'] && !$thread['username']) { $thread['username'] = htmlspecialchars_uni($lang->guest); }
|
} else {
| } else {
|
Zeile 1657 | Zeile 1719 |
---|
$userlang->set_path(MYBB_ROOT."inc/languages"); $userlang->set_language($uselang); $userlang->load("messages");
|
$userlang->set_path(MYBB_ROOT."inc/languages"); $userlang->set_language($uselang); $userlang->load("messages");
|
| $userlang->load("global");
|
$langcache[$uselang]['emailsubject_forumsubscription'] = $userlang->emailsubject_forumsubscription; $langcache[$uselang]['email_forumsubscription'] = $userlang->email_forumsubscription;
|
$langcache[$uselang]['emailsubject_forumsubscription'] = $userlang->emailsubject_forumsubscription; $langcache[$uselang]['email_forumsubscription'] = $userlang->email_forumsubscription;
|
| $langcache[$uselang]['guest'] = $userlang->guest;
|
unset($userlang); } $emailsubject = $langcache[$uselang]['emailsubject_forumsubscription']; $emailmessage = $langcache[$uselang]['email_forumsubscription'];
|
unset($userlang); } $emailsubject = $langcache[$uselang]['emailsubject_forumsubscription']; $emailmessage = $langcache[$uselang]['email_forumsubscription'];
|
| // If the poster is unregistered and hasn't set a username, call them Guest if(!$thread['uid'] && !$thread['username']) { $thread['username'] = $langcache[$uselang]['guest']; }
|
} $emailsubject = $lang->sprintf($emailsubject, $forum['name']);
|
} $emailsubject = $lang->sprintf($emailsubject, $forum['name']);
|
$post_code = md5($subscribedmember['loginkey'].$subscribedmember['salt'].$subscribedmember['regdate']); $emailmessage = $lang->sprintf($emailmessage, $subscribedmember['username'], $thread['username'], $forum['name'], $mybb->settings['bbname'], $thread['subject'], $excerpt, $mybb->settings['bburl'], get_thread_link($this->tid), $thread['fid'], $post_code);
| $emailmessage = $lang->sprintf($emailmessage, $subscribedmember['username'], $thread['username'], $forum['name'], $mybb->settings['bbname'], $thread['subject'], $excerpt, $mybb->settings['bburl'], get_thread_link($this->tid), $thread['fid']);
|
$new_email = array( "mailto" => $db->escape_string($subscribedmember['email']), "mailfrom" => '',
| $new_email = array( "mailto" => $db->escape_string($subscribedmember['email']), "mailfrom" => '',
|
Zeile 1714 | Zeile 1783 |
---|
if($attachmentcount > 0) { update_thread_counters($this->tid, array("attachmentcount" => "+{$attachmentcount}"));
|
if($attachmentcount > 0) { update_thread_counters($this->tid, array("attachmentcount" => "+{$attachmentcount}"));
|
}
| }
|
// Return the post's pid and whether or not it is visible. $this->return_values = array( "pid" => $this->pid,
| // Return the post's pid and whether or not it is visible. $this->return_values = array( "pid" => $this->pid,
|
Zeile 1780 | Zeile 1849 |
---|
else { $visible = 1;
|
else { $visible = 1;
|
}
| }
|
// Update the thread details that might have been changed first. if($this->first_post) {
| // Update the thread details that might have been changed first. if($this->first_post) {
|
Zeile 1806 | Zeile 1875 |
---|
$plugins->run_hooks("datahandler_post_update_thread", $this);
$db->update_query("threads", $this->thread_update_data, "tid='".(int)$post['tid']."'");
|
$plugins->run_hooks("datahandler_post_update_thread", $this);
$db->update_query("threads", $this->thread_update_data, "tid='".(int)$post['tid']."'");
|
| }
// Update any moved thread links to have corresponding new subject. if(isset($post['subject'])) { $query = $db->simple_select("threads", "tid, closed", "closed='moved|".$this->tid."'"); if($db->num_rows($query) > 0) { $update_data['subject'] = $db->escape_string($post['subject']); while($result = $db->fetch_array($query)) { $db->update_query("threads", $update_data, "tid='".(int)$result['tid']."'"); } }
|
} }
| } }
|
Zeile 1814 | Zeile 1897 |
---|
$this->pid = $post['pid'];
if(isset($post['subject']))
|
$this->pid = $post['pid'];
if(isset($post['subject']))
|
{
| {
|
$this->post_update_data['subject'] = $db->escape_string($post['subject']);
|
$this->post_update_data['subject'] = $db->escape_string($post['subject']);
|
}
| }
|
if(isset($post['message'])) { $this->post_update_data['message'] = $db->escape_string($post['message']);
|
if(isset($post['message'])) { $this->post_update_data['message'] = $db->escape_string($post['message']);
|
}
| }
|
if(isset($post['editreason']) && trim($post['editreason']) != '') { $this->post_update_data['editreason'] = $db->escape_string(trim($post['editreason']));
|
if(isset($post['editreason']) && trim($post['editreason']) != '') { $this->post_update_data['editreason'] = $db->escape_string(trim($post['editreason']));
|
| } elseif($post['editreason'] == '') { $this->post_update_data['editreason'] = '';
|
}
if(isset($post['icon']))
| }
if(isset($post['icon']))
|