| Zeile 53 | Zeile 53 |
|---|
* post = New post
* thread = New thread
* edit = Editing a thread or post
|
* post = New post
* thread = New thread
* edit = Editing a thread or post
|
| | *
* @var string
|
*/
public $action;
| */
public $action;
|
| Zeile 97 | Zeile 99 |
|---|
* @var int
*/
public $tid = 0;
|
* @var int
*/
public $tid = 0;
|
/**
|
/**
|
* Values to be returned after inserting/updating a post/thread.
*
* @var array
|
* Values to be returned after inserting/updating a post/thread.
*
* @var array
|
*/
| */
|
public $return_values = array();
|
public $return_values = array();
|
|
/**
* Is this the first post of a thread when editing
*
* @var boolean
*/
public $first_post = false;
|
/**
* Verifies the author of a post and fetches the username if necessary.
*
| /**
* Verifies the author of a post and fetches the username if necessary.
*
|
| Zeile 112 | Zeile 121 |
|---|
*/
function verify_author()
{
|
*/
function verify_author()
{
|
global $mybb;
| global $mybb, $lang;
|
$post = &$this->data;
// Don't have a user ID at all - not good (note, a user id of 0 will still work).
if(!isset($post['uid']))
|
$post = &$this->data;
// Don't have a user ID at all - not good (note, a user id of 0 will still work).
if(!isset($post['uid']))
|
{
| {
|
$this->set_error("invalid_user_id");
return false;
}
| $this->set_error("invalid_user_id");
return false;
}
|
| Zeile 129 | Zeile 138 |
|---|
$post['username'] = $user['username'];
}
// if the uid is 0 verify the username
|
$post['username'] = $user['username'];
}
// if the uid is 0 verify the username
|
else if($post['uid'] == 0 && $post['username'] != $lang->guest)
{
| else if($post['uid'] == 0 && $post['username'] != '')
{
|
// Set up user handler
require_once MYBB_ROOT."inc/datahandlers/user.php";
$userhandler = new UserDataHandler();
|
// Set up user handler
require_once MYBB_ROOT."inc/datahandlers/user.php";
$userhandler = new UserDataHandler();
|
|
|
$data_array = array('username' => $post['username']);
$userhandler->set_data($data_array);
|
$data_array = array('username' => $post['username']);
$userhandler->set_data($data_array);
|
|
|
if(!$userhandler->verify_username())
{
// invalid username
|
if(!$userhandler->verify_username())
{
// invalid username
|
| | $this->errors = array_merge($this->errors, $userhandler->get_errors());
return false;
}
if($userhandler->verify_username_exists())
{
// username is in use
|
$this->errors = array_merge($this->errors, $userhandler->get_errors());
return false;
}
}
|
$this->errors = array_merge($this->errors, $userhandler->get_errors());
return false;
}
}
|
// After all of this, if we still don't have a username, force the username as "Guest" (Note, this is not translatable as it is always a fallback)
if(!$post['username'])
{
$post['username'] = "Guest";
}
// Sanitize the username
$post['username'] = htmlspecialchars_uni($post['username']);
| |
return true;
}
/**
* Verifies a post subject.
*
|
return true;
}
/**
* Verifies a post subject.
*
|
* @param string True if the subject is valid, false if invalid.
| |
* @return boolean True when valid, false when not valid.
*/
function verify_subject()
| * @return boolean True when valid, false when not valid.
*/
function verify_subject()
|
| Zeile 170 | Zeile 177 |
|---|
$subject = &$post['subject'];
$subject = trim_blank_chrs($subject);
|
$subject = &$post['subject'];
$subject = trim_blank_chrs($subject);
|
// Are we editing an existing thread or post?
| |
if($this->method == "update" && $post['pid'])
{
|
if($this->method == "update" && $post['pid'])
{
|
if(empty($post['tid']))
{
$query = $db->simple_select("posts", "tid", "pid='".(int)$post['pid']."'");
$post['tid'] = $db->fetch_field($query, "tid");
}
// Here we determine if we're editing the first post of a thread or not.
$options = array(
"limit" => 1,
"limit_start" => 0,
"order_by" => "dateline",
"order_dir" => "asc"
);
$query = $db->simple_select("posts", "pid", "tid='".$post['tid']."'", $options);
$first_check = $db->fetch_array($query);
if($first_check['pid'] == $post['pid'])
{
$first_post = true;
}
else
{
$first_post = false;
}
| |
// If this is the first post there needs to be a subject, else make it the default one.
|
// If this is the first post there needs to be a subject, else make it the default one.
|
if(my_strlen($subject) == 0 && $first_post)
| if(my_strlen($subject) == 0 && $this->first_post)
|
{
$this->set_error("firstpost_no_subject");
return false;
}
elseif(my_strlen($subject) == 0)
|
{
$this->set_error("firstpost_no_subject");
return false;
}
elseif(my_strlen($subject) == 0)
|
{
$thread = get_thread($post['tid']);
$subject = "RE: ".$thread['subject'];
| {
$thread = get_thread($post['tid']);
$subject = "RE: ".$thread['subject'];
|
}
}
| }
}
|
| Zeile 216 | Zeile 199 |
|---|
{
$thread = get_thread($post['tid']);
$subject = "RE: ".$thread['subject'];
|
{
$thread = get_thread($post['tid']);
$subject = "RE: ".$thread['subject'];
|
}
}
| }
}
|
// This is a new thread and we require that a subject is present.
else
|
// This is a new thread and we require that a subject is present.
else
|
{
| {
|
if(my_strlen($subject) == 0)
{
$this->set_error("missing_subject");
return false;
|
if(my_strlen($subject) == 0)
{
$this->set_error("missing_subject");
return false;
|
}
}
| }
}
|
// If post is reply and begins with "RE: ", remove 4 from subject length.
$subject_length = my_strlen($subject);
|
// If post is reply and begins with "RE: ", remove 4 from subject length.
$subject_length = my_strlen($subject);
|
| Zeile 241 | Zeile 224 |
|---|
}
if($subject_length > 85)
|
}
if($subject_length > 85)
|
{
| {
|
// Subject is too long
$this->set_error('subject_too_long', my_strlen($subject));
|
// Subject is too long
$this->set_error('subject_too_long', my_strlen($subject));
|
return false;
| return false;
|
}
// Subject is valid - return true.
return true;
}
|
}
// Subject is valid - return true.
return true;
}
|
|
|
/**
* Verifies a post message.
*
|
/**
* Verifies a post message.
*
|
* @param string The message content.
| * @return bool
|
*/
function verify_message()
{
|
*/
function verify_message()
{
|
global $mybb;
| global $db, $mybb;
|
$post = &$this->data;
$post['message'] = trim_blank_chrs($post['message']);
|
$post = &$this->data;
$post['message'] = trim_blank_chrs($post['message']);
|
| Zeile 267 | Zeile 250 |
|---|
if(my_strlen($post['message']) == 0)
{
$this->set_error("missing_message");
|
if(my_strlen($post['message']) == 0)
{
$this->set_error("missing_message");
|
return false;
}
// If this board has a maximum message length check if we're over it. Use strlen because SQL limits are in bytes
else if(strlen($post['message']) > $mybb->settings['maxmessagelength'] && $mybb->settings['maxmessagelength'] > 0 && !is_moderator($post['fid'], "", $post['uid']))
{
$this->set_error("message_too_long", array($mybb->settings['maxmessagelength'], strlen($post['message'])));
return false;
}
// And if we've got a minimum message length do we meet that requirement too?
| return false;
}
|
else
{
|
else
{
|
if(!isset($post['fid']))
| $limit = (int)$mybb->settings['maxmessagelength'];
$dblimit = 0;
// If database is mysql or mysqli check field type and set max database limit
if(stripos($db->type, 'my') !== false)
{
$fields = $db->show_fields_from("posts");
$type = $fields[array_search('message', array_column($fields, 'Field'))]['Type'];
switch(strtolower($type))
{
case 'longtext':
$dblimit = 4294967295;
break;
case 'mediumtext':
$dblimit = 16777215;
break;
case 'text':
default:
$dblimit = 65535;
break;
}
}
if($limit > 0 || $dblimit > 0)
{
if(isset($post['fid']))
{
$fid = $post['fid'];
}
else
{
$fid = 0;
}
if(isset($post['uid']))
{
$uid = $post['uid'];
}
else
{
$uid = 0;
}
$is_moderator = is_moderator($fid, "", $uid);
// Consider minimum in user defined and database limit other than 0
if($limit > 0 && $dblimit > 0)
{
$limit = $is_moderator ? $dblimit : min($limit, $dblimit);
}
else
{
$limit = max($limit, $dblimit);
}
if(strlen($post['message']) > $limit && (!$is_moderator || $limit == $dblimit))
{
$this->set_error("message_too_long", array($limit, strlen($post['message'])));
return false;
}
}
if(!isset($post['fid']))
|
{
$post['fid'] = 0;
}
|
{
$post['fid'] = 0;
}
|
| |
|
if(!$mybb->settings['mycodemessagelength'])
{
// Check to see of the text is full of MyCode
| if(!$mybb->settings['mycodemessagelength'])
{
// Check to see of the text is full of MyCode
|
| Zeile 301 | Zeile 336 |
|---|
else if(my_strlen($post['message']) < $mybb->settings['minmessagelength'] && $mybb->settings['minmessagelength'] > 0 && !is_moderator($post['fid'], "", $post['uid']))
{
$this->set_error("message_too_short", array($mybb->settings['minmessagelength']));
|
else if(my_strlen($post['message']) < $mybb->settings['minmessagelength'] && $mybb->settings['minmessagelength'] > 0 && !is_moderator($post['fid'], "", $post['uid']))
{
$this->set_error("message_too_short", array($mybb->settings['minmessagelength']));
|
return false;
}
}
| return false;
}
}
|
return true;
}
| return true;
}
|
| Zeile 326 | Zeile 361 |
|---|
/**
* Verify that the user is not flooding the system.
*
|
/**
* Verify that the user is not flooding the system.
*
|
* @return boolean True
| * @return boolean
|
*/
function verify_post_flooding()
{
| */
function verify_post_flooding()
{
|
| Zeile 355 | Zeile 390 |
|---|
$this->set_error("post_flooding_one_second");
}
else
|
$this->set_error("post_flooding_one_second");
}
else
|
{
| {
|
$this->set_error("post_flooding", array($time_to_wait));
}
return false;
| $this->set_error("post_flooding", array($time_to_wait));
}
return false;
|
| Zeile 365 | Zeile 400 |
|---|
return true;
}
|
return true;
}
|
| | /**
* @param bool $simple_mode
*
* @return array|bool
*/
|
function verify_post_merge($simple_mode=false)
{
global $mybb, $db, $session;
|
function verify_post_merge($simple_mode=false)
{
global $mybb, $db, $session;
|
|
|
$post = &$this->data;
// Are we starting a new thread?
| $post = &$this->data;
// Are we starting a new thread?
|
| Zeile 379 | Zeile 419 |
|---|
// Are we even turned on?
if(empty($mybb->settings['postmergemins']))
|
// Are we even turned on?
if(empty($mybb->settings['postmergemins']))
|
{
return true;
}
| {
return true;
}
|
// Assign a default separator if none is specified
if(trim($mybb->settings['postmergesep']) == "")
|
// Assign a default separator if none is specified
if(trim($mybb->settings['postmergesep']) == "")
|
{
| {
|
$mybb->settings['postmergesep'] = "[hr]";
|
$mybb->settings['postmergesep'] = "[hr]";
|
}
| }
|
// Check to see if this person is in a usergroup that is excluded
|
// Check to see if this person is in a usergroup that is excluded
|
if($mybb->settings['postmergeuignore'] == -1)
{
return true;
}
elseif($mybb->settings['postmergeuignore'] != '' && is_member($mybb->settings['postmergeuignore'], $post['uid']))
{
return true;
| if(is_member($mybb->settings['postmergeuignore'], $post['uid']))
{
return true;
|
}
// Select the lastpost and fid information for this thread
$query = $db->simple_select("threads", "lastpost,fid", "lastposteruid='".$post['uid']."' AND tid='".$post['tid']."'", array('limit' => '1'));
$thread = $db->fetch_array($query);
|
}
// Select the lastpost and fid information for this thread
$query = $db->simple_select("threads", "lastpost,fid", "lastposteruid='".$post['uid']."' AND tid='".$post['tid']."'", array('limit' => '1'));
$thread = $db->fetch_array($query);
|
|
|
// Check to see if the same author has posted within the merge post time limit
|
// Check to see if the same author has posted within the merge post time limit
|
if(((int)$mybb->settings['postmergemins'] != 0 && trim($mybb->settings['postmergemins']) != "") && (TIME_NOW-$thread['lastpost']) > ((int)$mybb->settings['postmergemins']*60))
| if(
!$thread || (
((int)$mybb->settings['postmergemins'] != 0 && trim($mybb->settings['postmergemins']) != "") &&
(TIME_NOW-$thread['lastpost']) > ((int)$mybb->settings['postmergemins']*60)
)
)
|
{
return true;
}
if($mybb->settings['postmergefignore'] == -1)
|
{
return true;
}
if($mybb->settings['postmergefignore'] == -1)
|
{
| {
|
return true;
}
elseif($mybb->settings['postmergefignore'] != '')
|
return true;
}
elseif($mybb->settings['postmergefignore'] != '')
|
{
| {
|
$fids = explode(',', (string)$mybb->settings['postmergefignore']);
if(is_array($fids))
{
foreach($fids as &$fid)
|
$fids = explode(',', (string)$mybb->settings['postmergefignore']);
if(is_array($fids))
{
foreach($fids as &$fid)
|
{
| {
|
$fid = (int)$fid;
}
unset($fid);
| $fid = (int)$fid;
}
unset($fid);
|
| Zeile 435 | Zeile 476 |
|---|
if($simple_mode == true)
{
return false;
|
if($simple_mode == true)
{
return false;
|
}
| }
|
|
|
if($post['uid'])
| if(!empty($post['uid']))
|
{
$user_check = "uid='".$post['uid']."'";
|
{
$user_check = "uid='".$post['uid']."'";
|
}
| }
|
else
{
$user_check = "ipaddress=".$db->escape_binary($session->packedip);
| else
{
$user_check = "ipaddress=".$db->escape_binary($session->packedip);
|
| Zeile 449 | Zeile 490 |
|---|
$query = $db->simple_select("posts", "pid,message,visible", "{$user_check} AND tid='".$post['tid']."' AND dateline='".$thread['lastpost']."'", array('order_by' => 'pid', 'order_dir' => 'DESC', 'limit' => 1));
return $db->fetch_array($query);
}
|
$query = $db->simple_select("posts", "pid,message,visible", "{$user_check} AND tid='".$post['tid']."' AND dateline='".$thread['lastpost']."'", array('order_by' => 'pid', 'order_dir' => 'DESC', 'limit' => 1));
return $db->fetch_array($query);
}
|
|
|
/**
* Verifies the image count.
*
| /**
* Verifies the image count.
*
|
| Zeile 461 | Zeile 502 |
|---|
$post = &$this->data;
|
$post = &$this->data;
|
// Get the permissions of the user who is making this post or thread
$permissions = user_permissions($post['uid']);
| if(isset($post['uid']))
{
$uid = $post['uid'];
}
else
{
$uid = null;
}
// Get the permissions of the user who is making this post or thread
$permissions = user_permissions($uid);
|
// Fetch the forum this post is being made in
|
// Fetch the forum this post is being made in
|
if(!$post['fid'])
| if(empty($post['fid']))
|
{
$query = $db->simple_select('posts', 'fid', "pid = '{$post['pid']}'");
$post['fid'] = $db->fetch_field($query, 'fid');
}
$forum = get_forum($post['fid']);
|
{
$query = $db->simple_select('posts', 'fid', "pid = '{$post['pid']}'");
$post['fid'] = $db->fetch_field($query, 'fid');
}
$forum = get_forum($post['fid']);
|
|
|
// Check if this post contains more images than the forum allows
if((!isset($post['savedraft']) || $post['savedraft'] != 1) && $mybb->settings['maxpostimages'] != 0 && $permissions['cancp'] != 1)
{
require_once MYBB_ROOT."inc/class_parser.php";
$parser = new postParser;
|
// Check if this post contains more images than the forum allows
if((!isset($post['savedraft']) || $post['savedraft'] != 1) && $mybb->settings['maxpostimages'] != 0 && $permissions['cancp'] != 1)
{
require_once MYBB_ROOT."inc/class_parser.php";
$parser = new postParser;
|
|
|
// Parse the message.
$parser_options = array(
"allow_html" => $forum['allowhtml'],
| // Parse the message.
$parser_options = array(
"allow_html" => $forum['allowhtml'],
|
| Zeile 487 | Zeile 537 |
|---|
"filter_badwords" => 1
);
|
"filter_badwords" => 1
);
|
if($post['options']['disablesmilies'] != 1)
| if(empty($post['options']['disablesmilies']))
|
{
$parser_options['allow_smilies'] = $forum['allowsmilies'];
|
{
$parser_options['allow_smilies'] = $forum['allowsmilies'];
|
}
| }
|
else
{
$parser_options['allow_smilies'] = 0;
|
else
{
$parser_options['allow_smilies'] = 0;
|
}
$image_check = $parser->parse_message($post['message'], $parser_options);
| }
$image_check = $parser->parse_message($post['message'], $parser_options);
|
// And count the number of image tags in the message.
$image_count = substr_count($image_check, "<img");
|
// And count the number of image tags in the message.
$image_count = substr_count($image_check, "<img");
|
| Zeile 504 | Zeile 554 |
|---|
{
// Throw back a message if over the count with the number of images as well as the maximum number of images per post.
$this->set_error("too_many_images", array(1 => $image_count, 2 => $mybb->settings['maxpostimages']));
|
{
// Throw back a message if over the count with the number of images as well as the maximum number of images per post.
$this->set_error("too_many_images", array(1 => $image_count, 2 => $mybb->settings['maxpostimages']));
|
return false;
}
}
}
| return false;
}
}
return true;
}
|
/**
* Verifies the video count.
*
| /**
* Verifies the video count.
*
|
| Zeile 517 | Zeile 569 |
|---|
function verify_video_count()
{
global $mybb, $db;
|
function verify_video_count()
{
global $mybb, $db;
|
|
|
$post = &$this->data;
|
$post = &$this->data;
|
| |
if(isset($post['uid']))
{
$uid = $post['uid'];
}
else
{
$uid = null;
}
|
// Get the permissions of the user who is making this post or thread
|
// Get the permissions of the user who is making this post or thread
|
$permissions = user_permissions($post['uid']);
| $permissions = user_permissions($uid);
|
// Check if this post contains more videos than the forum allows
if((!isset($post['savedraft']) || $post['savedraft'] != 1) && $mybb->settings['maxpostvideos'] != 0 && $permissions['cancp'] != 1)
|
// Check if this post contains more videos than the forum allows
if((!isset($post['savedraft']) || $post['savedraft'] != 1) && $mybb->settings['maxpostvideos'] != 0 && $permissions['cancp'] != 1)
|
| Zeile 535 | Zeile 596 |
|---|
return false;
}
}
|
return false;
}
}
|
| |
return true;
|
}
/**
| }
/**
|
| Zeile 559 | Zeile 622 |
|---|
else
{
return true;
|
else
{
return true;
|
}
}
| }
}
|
// If this post isn't a reply to a specific post, attach it to the first post.
if(!$post['replyto'])
{
$options = array(
"limit_start" => 0,
"limit" => 1,
|
// If this post isn't a reply to a specific post, attach it to the first post.
if(!$post['replyto'])
{
$options = array(
"limit_start" => 0,
"limit" => 1,
|
"order_by" => "dateline",
"order_dir" => "asc"
| "order_by" => "dateline, pid",
|
);
$query = $db->simple_select("posts", "pid", "tid='{$post['tid']}'", $options);
$reply_to = $db->fetch_array($query);
| );
$query = $db->simple_select("posts", "pid", "tid='{$post['tid']}'", $options);
$reply_to = $db->fetch_array($query);
|
| Zeile 598 | Zeile 660 |
|---|
$post['icon'] = 0;
}
return true;
|
$post['icon'] = 0;
}
return true;
|
}
| }
|
/**
* Verify the dateline.
|
/**
* Verify the dateline.
|
| Zeile 615 | Zeile 677 |
|---|
$dateline = TIME_NOW;
}
}
|
$dateline = TIME_NOW;
}
}
|
|
|
/**
* Verify thread prefix.
*
| /**
* Verify thread prefix.
*
|
| Zeile 624 | Zeile 686 |
|---|
function verify_prefix()
{
$prefix = &$this->data['prefix'];
|
function verify_prefix()
{
$prefix = &$this->data['prefix'];
|
$prefix_cache = build_prefixes();
| |
// If a valid prefix isn't supplied, don't assign one.
if(empty($prefix))
|
// If a valid prefix isn't supplied, don't assign one.
if(empty($prefix))
|
{
| {
|
$prefix = 0;
}
else
{
|
$prefix = 0;
}
else
{
|
| | if(!empty($this->data['tid']))
{
// Fetch the thread
$thread = get_thread($this->data['tid']);
}
|
$prefix_cache = build_prefixes($prefix);
if(empty($prefix_cache))
| $prefix_cache = build_prefixes($prefix);
if(empty($prefix_cache))
|
| Zeile 653 | Zeile 719 |
|---|
$user = get_user($this->data['uid']);
}
|
$user = get_user($this->data['uid']);
}
|
if(!is_member($prefix_cache['groups'], array('usergroup' => $user['usergroup'], 'additionalgroups' => $user['additionalgroups'])))
| if(!is_member($prefix_cache['groups'], array('usergroup' => $user['usergroup'], 'additionalgroups' => $user['additionalgroups'])) && (empty($this->data['tid']) || $prefix != $thread['prefix']))
|
{
$this->set_error('invalid_prefix');
return false;
| {
$this->set_error('invalid_prefix');
return false;
|
| Zeile 664 | Zeile 730 |
|---|
// Decide whether this prefix can be used in our forum
$forums = explode(",", $prefix_cache['forums']);
|
// Decide whether this prefix can be used in our forum
$forums = explode(",", $prefix_cache['forums']);
|
if(!in_array($this->data['fid'], $forums))
| if(!in_array($this->data['fid'], $forums) && (empty($this->data['tid']) || $prefix != $thread['prefix']))
|
{
$this->set_error('invalid_prefix');
return false;
| {
$this->set_error('invalid_prefix');
return false;
|
| Zeile 707 | Zeile 773 |
|---|
}
}
|
}
}
|
if($required['groups'] != "-1")
{
if(!is_member($required['groups'], array('usergroup' => $user['usergroup'], 'additionalgroups' => $user['additionalgroups'])))
{
$num_prefixes = true;
}
}
else
| if(is_member($required['groups'], array('usergroup' => $user['usergroup'], 'additionalgroups' => $user['additionalgroups'])))
|
{
$num_prefixes = true;
}
}
|
{
$num_prefixes = true;
}
}
|
}
| }
|
if($prefix == 0 && $num_prefixes)
{
|
if($prefix == 0 && $num_prefixes)
{
|
| Zeile 739 | Zeile 798 |
|---|
function validate_post()
{
global $mybb, $db, $plugins;
|
function validate_post()
{
global $mybb, $db, $plugins;
|
$post = &$this->data;
|
$post = &$this->data;
|
$time = TIME_NOW;
|
$time = TIME_NOW;
|
|
|
$this->action = "post";
|
$this->action = "post";
|
|
|
if($this->method != "update" && !$post['savedraft'])
|
if($this->method != "update" && !$post['savedraft'])
|
{
| {
|
$this->verify_post_flooding();
|
$this->verify_post_flooding();
|
| | }
// Are we editing an existing thread or post?
if($this->method == "update")
{
if(empty($post['tid']))
{
$query = $db->simple_select("posts", "tid", "pid='".(int)$post['pid']."'");
$post['tid'] = $db->fetch_field($query, "tid");
}
// Here we determine if we're editing the first post of a thread or not.
$options = array(
"limit" => 1,
"limit_start" => 0,
"order_by" => "dateline, pid",
);
$query = $db->simple_select("posts", "pid", "tid='".$post['tid']."'", $options);
$first_check = $db->fetch_array($query);
if($first_check['pid'] == $post['pid'])
{
$this->first_post = true;
}
|
}
// Verify all post assets.
| }
// Verify all post assets.
|
| Zeile 787 | Zeile 868 |
|---|
if($this->method == "insert" || array_key_exists('options', $post))
{
$this->verify_options();
|
if($this->method == "insert" || array_key_exists('options', $post))
{
$this->verify_options();
|
| | }
if($this->method == "update" && $this->first_post)
{
$this->verify_prefix();
|
}
$plugins->run_hooks("datahandler_post_validate_post", $this);
| }
$plugins->run_hooks("datahandler_post_validate_post", $this);
|
| Zeile 816 | Zeile 902 |
|---|
// Yes, validating is required.
if(!$this->get_validated())
|
// Yes, validating is required.
if(!$this->get_validated())
|
{
| {
|
die("The post needs to be validated before inserting it into the DB.");
}
if(count($this->get_errors()) > 0)
|
die("The post needs to be validated before inserting it into the DB.");
}
if(count($this->get_errors()) > 0)
|
{
| {
|
die("The post is not valid.");
|
die("The post is not valid.");
|
}
| }
|
// Fetch the thread
$thread = get_thread($post['tid']);
|
// Fetch the thread
$thread = get_thread($post['tid']);
|
|
|
$closed = $thread['closed'];
// This post is being saved as a draft.
| $closed = $thread['closed'];
// This post is being saved as a draft.
|
| Zeile 839 | Zeile 925 |
|---|
else
{
// Automatic subscription to the thread
|
else
{
// Automatic subscription to the thread
|
if($post['options']['subscriptionmethod'] != "" && $post['uid'] > 0)
| if($post['uid'] > 0)
|
{
|
{
|
switch($post['options']['subscriptionmethod'])
| require_once MYBB_ROOT."inc/functions_user.php";
if($post['options']['subscriptionmethod'] == "")
|
{
|
{
|
case "pm":
$notification = 2;
break;
case "email":
$notification = 1;
break;
default:
$notification = 0;
}
require_once MYBB_ROOT."inc/functions_user.php";
add_subscribed_thread($post['tid'], $notification, $post['uid']);
| remove_subscribed_thread($post['tid'], $post['uid']);
}
else
{
switch($post['options']['subscriptionmethod'])
{
case "pm":
$notification = 2;
break;
case "email":
$notification = 1;
break;
default:
$notification = 0;
}
add_subscribed_thread($post['tid'], $notification, $post['uid']);
}
|
}
// Perform any selected moderation tools.
$ismod = is_moderator($post['fid'], "", $post['uid']);
|
}
// Perform any selected moderation tools.
$ismod = is_moderator($post['fid'], "", $post['uid']);
|
if($ismod)
| if($ismod && isset($post['modoptions']))
|
{
$lang->load($this->language_file, true);
| {
$lang->load($this->language_file, true);
|
| Zeile 867 | Zeile 959 |
|---|
$modlogdata['fid'] = $thread['fid'];
$modlogdata['tid'] = $thread['tid'];
|
$modlogdata['fid'] = $thread['fid'];
$modlogdata['tid'] = $thread['tid'];
|
$newstick = $newclosed = '';
if(!isset($modoptions['closethread']))
{
$modoptions['closethread'] = 0;
}
| $modoptions_update = array();
|
// Close the thread.
|
// Close the thread.
|
if($modoptions['closethread'] == 1 && $thread['closed'] != 1)
| if(!empty($modoptions['closethread']) && $thread['closed'] != 1 && is_moderator($post['fid'], "canopenclosethreads", $post['uid']))
|
{
|
{
|
$newclosed = "closed=1";
| $modoptions_update['closed'] = $closed = 1;
|
log_moderator_action($modlogdata, $lang->thread_closed);
|
log_moderator_action($modlogdata, $lang->thread_closed);
|
$closed = 1;
| |
}
// Open the thread.
|
}
// Open the thread.
|
if($modoptions['closethread'] != 1 && $thread['closed'] == 1)
{
$newclosed = "closed=0";
| if(empty($modoptions['closethread']) && $thread['closed'] == 1 && is_moderator($post['fid'], "canopenclosethreads", $post['uid']))
{
$modoptions_update['closed'] = $closed = 0;
|
log_moderator_action($modlogdata, $lang->thread_opened);
|
log_moderator_action($modlogdata, $lang->thread_opened);
|
$closed = 0;
}
if(!isset($modoptions['stickthread']))
{
$modoptions['stickthread'] = 0;
}
| }
|
// Stick the thread.
|
// Stick the thread.
|
if($modoptions['stickthread'] == 1 && $thread['sticky'] != 1)
| if(!empty($modoptions['stickthread']) && $thread['sticky'] != 1 && is_moderator($post['fid'], "canstickunstickthreads", $post['uid']))
|
{
|
{
|
$newstick = "sticky='1'";
| $modoptions_update['sticky'] = 1;
|
log_moderator_action($modlogdata, $lang->thread_stuck);
}
// Unstick the thread.
|
log_moderator_action($modlogdata, $lang->thread_stuck);
}
// Unstick the thread.
|
if($modoptions['stickthread'] != 1 && $thread['sticky'])
| if(empty($modoptions['stickthread']) && $thread['sticky'] == 1 && is_moderator($post['fid'], "canstickunstickthreads", $post['uid']))
|
{
|
{
|
$newstick = "sticky='0'";
| $modoptions_update['sticky'] = 0;
|
log_moderator_action($modlogdata, $lang->thread_unstuck);
|
log_moderator_action($modlogdata, $lang->thread_unstuck);
|
}
| }
|
// Execute moderation options.
|
// Execute moderation options.
|
if($newstick && $newclosed)
{
$sep = ",";
}
else
{
$sep = '';
}
if($newstick || $newclosed)
| if($modoptions_update)
|
{
|
{
|
$db->write_query("
UPDATE ".TABLE_PREFIX."threads
SET {$newclosed}{$sep}{$newstick}
WHERE tid='{$thread['tid']}'
");
| $db->update_query('threads', $modoptions_update, "tid='{$thread['tid']}'");
|
}
|
}
|
}
| }
|
// Fetch the forum this post is being made in
$forum = get_forum($post['fid']);
| // Fetch the forum this post is being made in
$forum = get_forum($post['fid']);
|
| Zeile 935 | Zeile 1003 |
|---|
$forumpermissions = forum_permissions($post['fid'], $post['uid']);
if($forumpermissions['modposts'] == 1 && !$ismod)
{
|
$forumpermissions = forum_permissions($post['fid'], $post['uid']);
if($forumpermissions['modposts'] == 1 && !$ismod)
{
|
$visible = 0;
}
else
{
| $visible = 0;
}
else
{
|
$visible = 1;
}
| $visible = 1;
}
|
| Zeile 974 | Zeile 1042 |
|---|
// Only combine if they are both invisible (mod queue'd forum) or both visible
if($double_post !== true && $double_post['visible'] == $visible)
{
|
// Only combine if they are both invisible (mod queue'd forum) or both visible
if($double_post !== true && $double_post['visible'] == $visible)
{
|
$this->pid = $double_post['pid'];
| $_message = $post['message'];
|
$post['message'] = $double_post['message'] .= "\n".$mybb->settings['postmergesep']."\n".$post['message'];
|
$post['message'] = $double_post['message'] .= "\n".$mybb->settings['postmergesep']."\n".$post['message'];
|
$update_query = array(
"message" => $db->escape_string($double_post['message'])
);
$update_query['edituid'] = (int)$post['uid'];
$update_query['edittime'] = TIME_NOW;
$query = $db->update_query("posts", $update_query, "pid='".$double_post['pid']."'");
if($draft_check)
{
$db->delete_query("posts", "pid='".$post['pid']."'");
}
if($post['posthash'])
|
if ($this->validate_post())
|
{
|
{
|
// Assign any uploaded attachments with the specific posthash to the merged post.
$post['posthash'] = $db->escape_string($post['posthash']);
$query = $db->simple_select("attachments", "COUNT(aid) AS attachmentcount", "pid='0' AND visible='1' AND posthash='{$post['posthash']}'");
$attachmentcount = $db->fetch_field($query, "attachmentcount");
if($attachmentcount > 0)
| $this->pid = $double_post['pid'];
$update_query = array(
"message" => $db->escape_string($double_post['message'])
);
$update_query['edituid'] = (int)$post['uid'];
$update_query['edittime'] = TIME_NOW;
$db->update_query("posts", $update_query, "pid='".$double_post['pid']."'");
if($draft_check)
|
{
|
{
|
// Update forum count
update_thread_counters($post['tid'], array('attachmentcount' => "+{$attachmentcount}"));
| $db->delete_query("posts", "pid='".$post['pid']."'");
|
}
|
}
|
$attachmentassign = array(
|
if($post['posthash'])
{
// Assign any uploaded attachments with the specific posthash to the merged post.
$post['posthash'] = $db->escape_string($post['posthash']);
$query = $db->simple_select("attachments", "COUNT(aid) AS attachmentcount", "pid='0' AND visible='1' AND posthash='{$post['posthash']}'");
$attachmentcount = $db->fetch_field($query, "attachmentcount");
if($attachmentcount > 0)
{
// Update forum count
update_thread_counters($post['tid'], array('attachmentcount' => "+{$attachmentcount}"));
}
$attachmentassign = array(
"pid" => $double_post['pid'],
"posthash" => ''
);
$db->update_query("attachments", $attachmentassign, "posthash='{$post['posthash']}' AND pid='0'");
}
// Return the post's pid and whether or not it is visible.
$this->return_values = array(
|
"pid" => $double_post['pid'],
|
"pid" => $double_post['pid'],
|
"posthash" => ''
| "visible" => $visible,
"merge" => true
|
);
|
);
|
$db->update_query("attachments", $attachmentassign, "posthash='{$post['posthash']}' AND pid='0'");
}
// Return the post's pid and whether or not it is visible.
$this->return_values = array(
"pid" => $double_post['pid'],
"visible" => $visible,
"merge" => true
);
$plugins->run_hooks("datahandler_post_insert_merge", $this);
return $this->return_values;
}
}
if($visible == 1 && $thread['visible'] == 1)
{
|
$plugins->run_hooks("datahandler_post_insert_merge", $this);
return $this->return_values;
}
else
{
$post['message'] = $_message;
}
}
}
if($visible == 1)
{
|
$now = TIME_NOW;
// Yes, the value to the lastpost key in this array has single quotes within double quotes. It's not a bug.
$update_array = array(
'lastpost' => "'{$now}'"
);
|
$now = TIME_NOW;
// Yes, the value to the lastpost key in this array has single quotes within double quotes. It's not a bug.
$update_array = array(
'lastpost' => "'{$now}'"
);
|
if($forum['usepostcounts'] != 0)
| if($forum['usepostcounts'] != 0 && $thread['visible'] == 1)
|
{
$update_array['postnum'] = 'postnum+1';
}
|
{
$update_array['postnum'] = 'postnum+1';
}
|
|
|
$db->update_query("users", $update_array, "uid='{$post['uid']}'", 1, true);
}
| $db->update_query("users", $update_array, "uid='{$post['uid']}'", 1, true);
}
|
| Zeile 1044 | Zeile 1122 |
|---|
{
// Update a post that is a draft
$this->post_update_data = array(
|
{
// Update a post that is a draft
$this->post_update_data = array(
|
"subject" => $db->escape_string($post['subject']),
| "subject" => $db->escape_string($post['subject']),
|
"icon" => (int)$post['icon'],
"uid" => $post['uid'],
"username" => $db->escape_string($post['username']),
| "icon" => (int)$post['icon'],
"uid" => $post['uid'],
"username" => $db->escape_string($post['username']),
|
| Zeile 1095 | Zeile 1173 |
|---|
);
$db->update_query("attachments", $attachmentassign, "posthash='{$post['posthash']}' AND pid='0'");
}
|
);
$db->update_query("attachments", $attachmentassign, "posthash='{$post['posthash']}' AND pid='0'");
}
|
|
|
$thread_update = array();
if($visible == 1 && $thread['visible'] == 1)
{
|
$thread_update = array();
if($visible == 1 && $thread['visible'] == 1)
{
|
$thread = get_thread($post['tid']);
| |
require_once MYBB_ROOT.'inc/class_parser.php';
$parser = new Postparser;
|
require_once MYBB_ROOT.'inc/class_parser.php';
$parser = new Postparser;
|
|
|
$done_users = array();
$subject = $parser->parse_badwords($thread['subject']);
|
$done_users = array();
$subject = $parser->parse_badwords($thread['subject']);
|
$excerpt = $parser->text_parse_message($post['message'], array('me_username' => $post['username'], 'filter_badwords' => 1, 'safe_html' => 1));
|
$parser_options = array(
'me_username' => $post['username'],
'filter_badwords' => 1
);
$excerpt = $parser->text_parse_message($post['message'], $parser_options);
|
$excerpt = my_substr($excerpt, 0, $mybb->settings['subscribeexcerpt']).$lang->emailbit_viewthread;
// Fetch any users subscribed to this thread receiving instant notification and queue up their subscription notices
$query = $db->query("
|
$excerpt = my_substr($excerpt, 0, $mybb->settings['subscribeexcerpt']).$lang->emailbit_viewthread;
// Fetch any users subscribed to this thread receiving instant notification and queue up their subscription notices
$query = $db->query("
|
SELECT u.username, u.email, u.uid, u.language, u.loginkey, u.salt, u.regdate, s.subscriptionkey, s.notification
| SELECT u.username, u.email, u.uid, u.language, u.loginkey, u.salt, u.regdate, s.notification
|
FROM ".TABLE_PREFIX."threadsubscriptions s
LEFT JOIN ".TABLE_PREFIX."users u ON (u.uid=s.uid)
WHERE (s.notification='1' OR s.notification='2') AND s.tid='{$post['tid']}'
AND s.uid != '{$post['uid']}'
AND u.lastactive>'{$thread['lastpost']}'
");
|
FROM ".TABLE_PREFIX."threadsubscriptions s
LEFT JOIN ".TABLE_PREFIX."users u ON (u.uid=s.uid)
WHERE (s.notification='1' OR s.notification='2') AND s.tid='{$post['tid']}'
AND s.uid != '{$post['uid']}'
AND u.lastactive>'{$thread['lastpost']}'
");
|
| |
$args = array(
'this' => &$this,
'done_users' => &$done_users,
'users' => array()
);
|
while($subscribedmember = $db->fetch_array($query))
{
|
while($subscribedmember = $db->fetch_array($query))
{
|
if($done_users[$subscribedmember['uid']])
| if(isset($done_users[$subscribedmember['uid']]))
|
{
continue;
}
|
{
continue;
}
|
| |
$args['users'][$subscribedmember['uid']] = (int)$subscribedmember['uid'];
|
$done_users[$subscribedmember['uid']] = 1;
$forumpermissions = forum_permissions($thread['fid'], $subscribedmember['uid']);
| $done_users[$subscribedmember['uid']] = 1;
$forumpermissions = forum_permissions($thread['fid'], $subscribedmember['uid']);
|
| Zeile 1132 | Zeile 1225 |
|---|
continue;
}
|
continue;
}
|
if($thread['uid'] != $subscribedmember['uid'] && $forumpermissions['canonlyviewownthread'] == 1 && !is_moderator($thread['fid'], "", $subscribedmember['uid']))
| if($thread['uid'] != $subscribedmember['uid'] && $forumpermissions['canonlyviewownthreads'] == 1 && !is_moderator($thread['fid'], "", $subscribedmember['uid']))
|
{
// User isn't a moderator or the author of the thread...
continue;
| {
// User isn't a moderator or the author of the thread...
continue;
|
| Zeile 1149 | Zeile 1242 |
|---|
else
{
$uselang = "english";
|
else
{
$uselang = "english";
|
}
if($uselang == $mybb->settings['bblanguage'])
| }
if($uselang == $mybb->settings['bblanguage'])
|
{
if($subscribedmember['notification'] == 1)
{
$emailsubject = $lang->emailsubject_subscription;
$emailmessage = $lang->email_subscription;
|
{
if($subscribedmember['notification'] == 1)
{
$emailsubject = $lang->emailsubject_subscription;
$emailmessage = $lang->email_subscription;
|
| | }
// If the poster is unregistered and hasn't set a username, call them Guest
if(!$post['uid'] && !$post['username'])
{
$post['username'] = htmlspecialchars_uni($lang->guest);
|
}
}
else
{
|
}
}
else
{
|
if($subscribedmember['notification'] == 1)
|
if(($subscribedmember['notification'] == 1 && !isset($langcache[$uselang]['emailsubject_subscription'])) || !isset($langcache[$uselang]['guest']))
|
{
|
{
|
if(!isset($langcache[$uselang]['emailsubject_subscription']))
| $userlang = new MyLanguage;
$userlang->set_path(MYBB_ROOT."inc/languages");
$userlang->set_language($uselang);
if($subscribedmember['notification'] == 1)
|
{
|
{
|
$userlang = new MyLanguage;
$userlang->set_path(MYBB_ROOT."inc/languages");
$userlang->set_language($uselang);
| |
$userlang->load("messages");
$langcache[$uselang]['emailsubject_subscription'] = $userlang->emailsubject_subscription;
$langcache[$uselang]['email_subscription'] = $userlang->email_subscription;
|
$userlang->load("messages");
$langcache[$uselang]['emailsubject_subscription'] = $userlang->emailsubject_subscription;
$langcache[$uselang]['email_subscription'] = $userlang->email_subscription;
|
unset($userlang);
| |
}
|
}
|
| | $userlang->load("global");
$langcache[$uselang]['guest'] = $userlang->guest;
unset($userlang);
}
if($subscribedmember['notification'] == 1)
{
|
$emailsubject = $langcache[$uselang]['emailsubject_subscription'];
$emailmessage = $langcache[$uselang]['email_subscription'];
|
$emailsubject = $langcache[$uselang]['emailsubject_subscription'];
$emailmessage = $langcache[$uselang]['email_subscription'];
|
}
}
| }
// If the poster is unregistered and hasn't set a username, call them Guest
if(!$post['uid'] && !$post['username'])
{
$post['username'] = $langcache[$uselang]['guest'];
}
}
|
if($subscribedmember['notification'] == 1)
{
$emailsubject = $lang->sprintf($emailsubject, $subject);
|
if($subscribedmember['notification'] == 1)
{
$emailsubject = $lang->sprintf($emailsubject, $subject);
|
$post_code = md5($subscribedmember['loginkey'].$subscribedmember['salt'].$subscribedmember['regdate']);
$emailmessage = $lang->sprintf($emailmessage, $subscribedmember['username'], $post['username'], $mybb->settings['bbname'], $subject, $excerpt, $mybb->settings['bburl'], str_replace("&", "&", get_thread_link($thread['tid'], 0, "newpost")), $thread['tid'], $subscribedmember['subscriptionkey'], $post_code);
| $emailmessage = $lang->sprintf($emailmessage, $subscribedmember['username'], $post['username'], $mybb->settings['bbname'], $subject, $excerpt, $mybb->settings['bburl'], str_replace("&", "&", get_thread_link($thread['tid'], 0, "newpost")), $thread['tid']);
|
$new_email = array(
"mailto" => $db->escape_string($subscribedmember['email']),
"mailfrom" => '',
| $new_email = array(
"mailto" => $db->escape_string($subscribedmember['email']),
"mailfrom" => '',
|
| Zeile 1197 | Zeile 1308 |
|---|
}
elseif($subscribedmember['notification'] == 2)
{
|
}
elseif($subscribedmember['notification'] == 2)
{
|
$post_code = md5($subscribedmember['loginkey'].$subscribedmember['salt'].$subscribedmember['regdate']);
| |
$pm = array(
'subject' => array('pmsubject_subscription', $subject),
|
$pm = array(
'subject' => array('pmsubject_subscription', $subject),
|
'message' => array('pm_subscription', $subscribedmember['username'], $post['username'], $subject, $excerpt, $mybb->settings['bburl'], str_replace("&", "&", get_thread_link($thread['tid'], 0, "newpost")), $thread['tid'], $subscribedmember['subscriptionkey'], $post_code),
| 'message' => array('pm_subscription', $subscribedmember['username'], $post['username'], $subject, $excerpt, $mybb->settings['bburl'], str_replace("&", "&", get_thread_link($thread['tid'], 0, "newpost")), $thread['tid']),
|
'touid' => $subscribedmember['uid'],
'language' => $subscribedmember['language'],
'language_file' => 'messages'
);
|
'touid' => $subscribedmember['uid'],
'language' => $subscribedmember['language'],
'language_file' => 'messages'
);
|
| | // Workaround for eliminating PHP warnings in PHP 8. Ref: https://github.com/mybb/mybb/issues/4630#issuecomment-1369144163
$pm['sender']['uid'] = -1;
|
send_pm($pm, -1, true);
}
|
send_pm($pm, -1, true);
}
|
}
| }
$plugins->run_hooks('datahandler_post_insert_subscribed', $args);
|
// Have one or more emails been queued? Update the queue count
if(isset($queued_email) && $queued_email == 1)
{
$cache->update_mailqueue();
}
|
// Have one or more emails been queued? Update the queue count
if(isset($queued_email) && $queued_email == 1)
{
$cache->update_mailqueue();
}
|
$thread_update = array('replies' => '+1');
// Update forum count
| $thread_update = array('replies' => '+1');
// Update counters
|
update_last_post($post['tid']);
update_forum_counters($post['fid'], array("posts" => "+1"));
update_forum_lastpost($thread['fid']);
| update_last_post($post['tid']);
update_forum_counters($post['fid'], array("posts" => "+1"));
update_forum_lastpost($thread['fid']);
|
| Zeile 1234 | Zeile 1349 |
|---|
// Update the unapproved posts count for the current forum
$thread_update = array('replies' => '+1');
update_forum_counters($post['fid'], array("unapprovedposts" => "+1"));
|
// Update the unapproved posts count for the current forum
$thread_update = array('replies' => '+1');
update_forum_counters($post['fid'], array("unapprovedposts" => "+1"));
|
}
| }
|
else if($thread['visible'] == -1)
|
else if($thread['visible'] == -1)
|
{
| {
|
// Update the unapproved posts count for the current forum
$thread_update = array('replies' => '+1');
update_forum_counters($post['fid'], array("deletedposts" => "+1"));
|
// Update the unapproved posts count for the current forum
$thread_update = array('replies' => '+1');
update_forum_counters($post['fid'], array("deletedposts" => "+1"));
|
| | }
// Update last poster
if($visible == 1 && $thread['visible'] != 1)
{
update_last_post($post['tid']);
|
}
$query = $db->simple_select("attachments", "COUNT(aid) AS attachmentcount", "pid='{$this->pid}' AND visible='1'");
| }
$query = $db->simple_select("attachments", "COUNT(aid) AS attachmentcount", "pid='{$this->pid}' AND visible='1'");
|
| Zeile 1310 | Zeile 1431 |
|---|
if($this->method == "insert" || array_key_exists('icon', $thread))
{
$this->verify_post_icon();
|
if($this->method == "insert" || array_key_exists('icon', $thread))
{
$this->verify_post_icon();
|
}
| }
|
if($this->method == "insert" || array_key_exists('options', $thread))
{
$this->verify_options();
| if($this->method == "insert" || array_key_exists('options', $thread))
{
$this->verify_options();
|
| Zeile 1353 | Zeile 1474 |
|---|
$thread = &$this->data;
// Fetch the forum this thread is being made in
|
$thread = &$this->data;
// Fetch the forum this thread is being made in
|
$forum = get_forum($thread['fid']);
| $query = $db->simple_select("forums", "*", "fid='{$thread['fid']}'");
$forum = $db->fetch_array($query);
|
// This thread is being saved as a draft.
if($thread['savedraft'])
|
// This thread is being saved as a draft.
if($thread['savedraft'])
|
| Zeile 1363 | Zeile 1485 |
|---|
// Thread is being made now and we have a bit to do.
else
|
// Thread is being made now and we have a bit to do.
else
|
{
| {
|
$forumpermissions = forum_permissions($thread['fid'], $thread['uid']);
// Decide on the visibility of this post.
if($forumpermissions['modthreads'] == 1 && !is_moderator($thread['fid'], "", $thread['uid']))
|
$forumpermissions = forum_permissions($thread['fid'], $thread['uid']);
// Decide on the visibility of this post.
if($forumpermissions['modthreads'] == 1 && !is_moderator($thread['fid'], "", $thread['uid']))
|
{
$visible = 0;
| {
$visible = 0;
|
}
else
|
}
else
|
{
| {
|
$visible = 1;
}
|
$visible = 1;
}
|
|
|
// Are posts from this user being moderated? Change visibility
if($mybb->user['uid'] == $thread['uid'] && $mybb->user['moderateposts'] == 1)
{
$visible = 0;
}
|
// Are posts from this user being moderated? Change visibility
if($mybb->user['uid'] == $thread['uid'] && $mybb->user['moderateposts'] == 1)
{
$visible = 0;
}
|
}
| }
|
// Have a post ID but not a thread ID - fetch thread ID
if(!empty($thread['pid']) && !$thread['tid'])
{
$query = $db->simple_select("posts", "tid", "pid='{$thread['pid']}");
$thread['tid'] = $db->fetch_field($query, "tid");
|
// Have a post ID but not a thread ID - fetch thread ID
if(!empty($thread['pid']) && !$thread['tid'])
{
$query = $db->simple_select("posts", "tid", "pid='{$thread['pid']}");
$thread['tid'] = $db->fetch_field($query, "tid");
|
}
| }
|
if(isset($thread['pid']) && $thread['pid'] > 0)
|
if(isset($thread['pid']) && $thread['pid'] > 0)
|
{
| {
|
$query = $db->simple_select("posts", "pid", "pid='{$thread['pid']}' AND uid='{$thread['uid']}' AND visible='-2'");
$draft_check = $db->fetch_field($query, "pid");
|
$query = $db->simple_select("posts", "pid", "pid='{$thread['pid']}' AND uid='{$thread['uid']}' AND visible='-2'");
$draft_check = $db->fetch_field($query, "pid");
|
}
| }
|
else
{
$draft_check = false;
| else
{
$draft_check = false;
|
| Zeile 1401 | Zeile 1523 |
|---|
// Are we updating a post which is already a draft? Perhaps changing it into a visible post?
if($draft_check)
|
// Are we updating a post which is already a draft? Perhaps changing it into a visible post?
if($draft_check)
|
{
$this->thread_insert_data = array(
"subject" => $db->escape_string($thread['subject']),
"icon" => (int)$thread['icon'],
"username" => $db->escape_string($thread['username']),
"dateline" => (int)$thread['dateline'],
"lastpost" => (int)$thread['dateline'],
"lastposter" => $db->escape_string($thread['username']),
"visible" => $visible
);
| {
$this->thread_insert_data = array(
"subject" => $db->escape_string($thread['subject']),
"icon" => (int)$thread['icon'],
"username" => $db->escape_string($thread['username']),
"dateline" => (int)$thread['dateline'],
"lastpost" => (int)$thread['dateline'],
"lastposter" => $db->escape_string($thread['username']),
"visible" => $visible
);
|
$plugins->run_hooks("datahandler_post_insert_thread", $this);
$db->update_query("threads", $this->thread_insert_data, "tid='{$thread['tid']}'");
|
$plugins->run_hooks("datahandler_post_insert_thread", $this);
$db->update_query("threads", $this->thread_insert_data, "tid='{$thread['tid']}'");
|
|
|
$this->post_insert_data = array(
"subject" => $db->escape_string($thread['subject']),
"icon" => (int)$thread['icon'],
| $this->post_insert_data = array(
"subject" => $db->escape_string($thread['subject']),
"icon" => (int)$thread['icon'],
|
| Zeile 1436 | Zeile 1558 |
|---|
// Inserting a new thread into the database.
else
|
// Inserting a new thread into the database.
else
|
{
| {
|
$this->thread_insert_data = array(
"fid" => $thread['fid'],
"subject" => $db->escape_string($thread['subject']),
| $this->thread_insert_data = array(
"fid" => $thread['fid'],
"subject" => $db->escape_string($thread['subject']),
|
| Zeile 1447 | Zeile 1569 |
|---|
"dateline" => (int)$thread['dateline'],
"lastpost" => (int)$thread['dateline'],
"lastposter" => $db->escape_string($thread['username']),
|
"dateline" => (int)$thread['dateline'],
"lastpost" => (int)$thread['dateline'],
"lastposter" => $db->escape_string($thread['username']),
|
| | "lastposteruid" => $thread['uid'],
|
"views" => 0,
"replies" => 0,
"visible" => $visible,
| "views" => 0,
"replies" => 0,
"visible" => $visible,
|
| Zeile 1486 | Zeile 1609 |
|---|
if($thread['options']['subscriptionmethod'] != "" && $thread['uid'] > 0)
{
switch($thread['options']['subscriptionmethod'])
|
if($thread['options']['subscriptionmethod'] != "" && $thread['uid'] > 0)
{
switch($thread['options']['subscriptionmethod'])
|
{
| {
|
case "pm":
$notification = 2;
break;
| case "pm":
$notification = 2;
break;
|
| Zeile 1500 | Zeile 1623 |
|---|
require_once MYBB_ROOT."inc/functions_user.php";
add_subscribed_thread($this->tid, $notification, $thread['uid']);
}
|
require_once MYBB_ROOT."inc/functions_user.php";
add_subscribed_thread($this->tid, $notification, $thread['uid']);
}
|
|
|
// Perform any selected moderation tools.
|
// Perform any selected moderation tools.
|
if(is_moderator($thread['fid'], "", $thread['uid']) && is_array($thread['modoptions']))
| if(is_moderator($thread['fid'], "", $thread['uid']) && isset($thread['modoptions']))
|
{
$lang->load($this->language_file, true);
| {
$lang->load($this->language_file, true);
|
| Zeile 1511 | Zeile 1634 |
|---|
if(isset($thread['tid']))
{
$modlogdata['tid'] = $thread['tid'];
|
if(isset($thread['tid']))
{
$modlogdata['tid'] = $thread['tid'];
|
}
$newclosed = $newstick = '';
| }
$modoptions_update = array();
|
// Close the thread.
|
// Close the thread.
|
if(isset($modoptions['closethread']) && $modoptions['closethread'] == 1)
| if(!empty($modoptions['closethread']) && is_moderator($thread['fid'], "canopenclosethreads", $thread['uid']))
|
{
|
{
|
$newclosed = "closed=1";
| $modoptions_update['closed'] = 1;
|
log_moderator_action($modlogdata, $lang->thread_closed);
}
// Stick the thread.
|
log_moderator_action($modlogdata, $lang->thread_closed);
}
// Stick the thread.
|
if(isset($modoptions['stickthread']) && $modoptions['stickthread'] == 1)
| if(!empty($modoptions['stickthread']) && is_moderator($thread['fid'], "canstickunstickthreads", $thread['uid']))
|
{
|
{
|
$newstick = "sticky='1'";
| $modoptions_update['sticky'] = 1;
|
log_moderator_action($modlogdata, $lang->thread_stuck);
|
log_moderator_action($modlogdata, $lang->thread_stuck);
|
}
| }
|
// Execute moderation options.
|
// Execute moderation options.
|
if($newstick && $newclosed)
{
$sep = ",";
}
else
{
$sep = '';
}
if($newstick || $newclosed)
{
$db->write_query("
UPDATE ".TABLE_PREFIX."threads
SET $newclosed$sep$newstick
WHERE tid='{$this->tid}'
");
| if($modoptions_update)
{
$db->update_query('threads', $modoptions_update, "tid='{$this->tid}'");
|
}
}
if($visible == 1)
| }
}
if($visible == 1)
|
| Zeile 1556 | Zeile 1667 |
|---|
$update_query = array();
// Only update the lastpost column of the user if the date of the thread is newer than their last post.
if($thread['dateline'] > $user['lastpost'])
|
$update_query = array();
// Only update the lastpost column of the user if the date of the thread is newer than their last post.
if($thread['dateline'] > $user['lastpost'])
|
{
| {
|
// Yes this has a single quote within a double quote. It's not a bug.
$update_query['lastpost'] = "'{$thread['dateline']}'";
|
// Yes this has a single quote within a double quote. It's not a bug.
$update_query['lastpost'] = "'{$thread['dateline']}'";
|
}
| }
|
// Update the post count if this forum allows post counts to be tracked
if($forum['usepostcounts'] != 0)
{
| // Update the post count if this forum allows post counts to be tracked
if($forum['usepostcounts'] != 0)
{
|
| Zeile 1568 | Zeile 1679 |
|---|
if($forum['usethreadcounts'] != 0)
{
$update_query['threadnum'] = 'threadnum+1';
|
if($forum['usethreadcounts'] != 0)
{
$update_query['threadnum'] = 'threadnum+1';
|
}
| }
|
// Only update the table if we need to.
if(!empty($update_query))
{
$db->update_query("users", $update_query, "uid='{$thread['uid']}'", 1, true);
}
|
// Only update the table if we need to.
if(!empty($update_query))
{
$db->update_query("users", $update_query, "uid='{$thread['uid']}'", 1, true);
}
|
}
if(!isset($forum['lastpost']))
{
$forum['lastpost'] = 0;
| |
}
$done_users = array();
// Queue up any forum subscription notices to users who are subscribed to this forum.
|
}
$done_users = array();
// Queue up any forum subscription notices to users who are subscribed to this forum.
|
$excerpt = my_substr($thread['message'], 0, $mybb->settings['subscribeexcerpt']).$lang->emailbit_viewthread;
| $excerpt = $thread['message'];
|
// Parse badwords
require_once MYBB_ROOT."inc/class_parser.php";
$parser = new postParser;
$excerpt = $parser->parse_badwords($excerpt);
|
// Parse badwords
require_once MYBB_ROOT."inc/class_parser.php";
$parser = new postParser;
$excerpt = $parser->parse_badwords($excerpt);
|
| $excerpt = $parser->text_parse_message($excerpt);
if(strlen($excerpt) > $mybb->settings['subscribeexcerpt'])
{
$excerpt = my_substr($excerpt, 0, $mybb->settings['subscribeexcerpt']).$lang->emailbit_viewthread;
}
|
$query = $db->query("
SELECT u.username, u.email, u.uid, u.language, u.loginkey, u.salt, u.regdate
FROM ".TABLE_PREFIX."forumsubscriptions fs
| $query = $db->query("
SELECT u.username, u.email, u.uid, u.language, u.loginkey, u.salt, u.regdate
FROM ".TABLE_PREFIX."forumsubscriptions fs
|
| Zeile 1604 | Zeile 1714 |
|---|
");
while($subscribedmember = $db->fetch_array($query))
{
|
");
while($subscribedmember = $db->fetch_array($query))
{
|
if($done_users[$subscribedmember['uid']])
| if(!empty($done_users[$subscribedmember['uid']]))
|
{
continue;
}
| {
continue;
}
|
| Zeile 1612 | Zeile 1722 |
|---|
$forumpermissions = forum_permissions($thread['fid'], $subscribedmember['uid']);
if($forumpermissions['canview'] == 0 || $forumpermissions['canviewthreads'] == 0)
|
$forumpermissions = forum_permissions($thread['fid'], $subscribedmember['uid']);
if($forumpermissions['canview'] == 0 || $forumpermissions['canviewthreads'] == 0)
|
{
| {
|
continue;
}
| continue;
}
|
| Zeile 1640 | Zeile 1750 |
|---|
{
$emailsubject = $lang->emailsubject_forumsubscription;
$emailmessage = $lang->email_forumsubscription;
|
{
$emailsubject = $lang->emailsubject_forumsubscription;
$emailmessage = $lang->email_forumsubscription;
|
| |
// If the poster is unregistered and hasn't set a username, call them Guest
if(!$thread['uid'] && !$thread['username'])
{
$thread['username'] = htmlspecialchars_uni($lang->guest);
}
|
}
else
{
| }
else
{
|
| Zeile 1649 | Zeile 1765 |
|---|
$userlang->set_path(MYBB_ROOT."inc/languages");
$userlang->set_language($uselang);
$userlang->load("messages");
|
$userlang->set_path(MYBB_ROOT."inc/languages");
$userlang->set_language($uselang);
$userlang->load("messages");
|
| | $userlang->load("global");
|
$langcache[$uselang]['emailsubject_forumsubscription'] = $userlang->emailsubject_forumsubscription;
$langcache[$uselang]['email_forumsubscription'] = $userlang->email_forumsubscription;
|
$langcache[$uselang]['emailsubject_forumsubscription'] = $userlang->emailsubject_forumsubscription;
$langcache[$uselang]['email_forumsubscription'] = $userlang->email_forumsubscription;
|
| | $langcache[$uselang]['guest'] = $userlang->guest;
|
unset($userlang);
}
$emailsubject = $langcache[$uselang]['emailsubject_forumsubscription'];
$emailmessage = $langcache[$uselang]['email_forumsubscription'];
|
unset($userlang);
}
$emailsubject = $langcache[$uselang]['emailsubject_forumsubscription'];
$emailmessage = $langcache[$uselang]['email_forumsubscription'];
|
| |
// If the poster is unregistered and hasn't set a username, call them Guest
if(!$thread['uid'] && !$thread['username'])
{
$thread['username'] = $langcache[$uselang]['guest'];
}
|
}
$emailsubject = $lang->sprintf($emailsubject, $forum['name']);
|
}
$emailsubject = $lang->sprintf($emailsubject, $forum['name']);
|
$post_code = md5($subscribedmember['loginkey'].$subscribedmember['salt'].$subscribedmember['regdate']);
$emailmessage = $lang->sprintf($emailmessage, $subscribedmember['username'], $thread['username'], $forum['name'], $mybb->settings['bbname'], $thread['subject'], $excerpt, $mybb->settings['bburl'], get_thread_link($this->tid), $thread['fid'], $post_code);
| $emailmessage = $lang->sprintf($emailmessage, $subscribedmember['username'], $thread['username'], $forum['name'], $mybb->settings['bbname'], $thread['subject'], $excerpt, $mybb->settings['bburl'], get_thread_link($this->tid), $thread['fid']);
|
$new_email = array(
"mailto" => $db->escape_string($subscribedmember['email']),
"mailfrom" => '',
| $new_email = array(
"mailto" => $db->escape_string($subscribedmember['email']),
"mailfrom" => '',
|
| Zeile 1680 | Zeile 1803 |
|---|
}
// Assign any uploaded attachments with the specific posthash to the newly created post.
|
}
// Assign any uploaded attachments with the specific posthash to the newly created post.
|
if($thread['posthash'])
| if(!empty($thread['posthash']))
|
{
$thread['posthash'] = $db->escape_string($thread['posthash']);
$attachmentassign = array(
| {
$thread['posthash'] = $db->escape_string($thread['posthash']);
$attachmentassign = array(
|
| Zeile 1723 | Zeile 1846 |
|---|
/**
* Updates a post that is already in the database.
*
|
/**
* Updates a post that is already in the database.
*
|
| | * @return array
|
*/
function update_post()
{
| */
function update_post()
{
|
| Zeile 1746 | Zeile 1870 |
|---|
$post['tid'] = $existing_post['tid'];
$post['fid'] = $existing_post['fid'];
|
$post['tid'] = $existing_post['tid'];
$post['fid'] = $existing_post['fid'];
|
$forum = get_forum($post['fid']);
$forumpermissions = forum_permissions($post['fid'], $post['uid']);
// Check if this is the first post in a thread.
$options = array(
"order_by" => "dateline",
"order_dir" => "asc",
"limit_start" => 0,
"limit" => 1
);
$query = $db->simple_select("posts", "pid", "tid='".(int)$post['tid']."'", $options);
$first_post_check = $db->fetch_array($query);
if($first_post_check['pid'] == $post['pid'])
{
$first_post = true;
}
| if(isset($post['uid']))
{
$uid = $post['uid'];
}
|
else
{
|
else
{
|
$first_post = false;
| $uid = 0;
|
}
|
}
|
| |
$forum = get_forum($post['fid']);
$forumpermissions = forum_permissions($post['fid'], $uid);
|
// Decide on the visibility of this post.
|
// Decide on the visibility of this post.
|
$ismod = is_moderator($post['fid'], "", $post['uid']);
| $ismod = is_moderator($post['fid'], "", $uid);
|
// Keep visibility for unapproved and deleted posts
if($existing_post['visible'] == 0)
|
// Keep visibility for unapproved and deleted posts
if($existing_post['visible'] == 0)
|
| Zeile 1792 | Zeile 1907 |
|---|
}
// Update the thread details that might have been changed first.
|
}
// Update the thread details that might have been changed first.
|
if($first_post)
| if($this->first_post)
|
{
$this->tid = $post['tid'];
| {
$this->tid = $post['tid'];
|
| Zeile 1809 | Zeile 1924 |
|---|
if(isset($post['icon']))
{
$this->thread_update_data['icon'] = (int)$post['icon'];
|
if(isset($post['icon']))
{
$this->thread_update_data['icon'] = (int)$post['icon'];
|
}
| }
|
if(count($this->thread_update_data) > 0)
{
$plugins->run_hooks("datahandler_post_update_thread", $this);
|
if(count($this->thread_update_data) > 0)
{
$plugins->run_hooks("datahandler_post_update_thread", $this);
|
|
|
$db->update_query("threads", $this->thread_update_data, "tid='".(int)$post['tid']."'");
}
|
$db->update_query("threads", $this->thread_update_data, "tid='".(int)$post['tid']."'");
}
|
}
|
// Update any moved thread links to have corresponding new subject.
if(isset($post['subject']))
{
$query = $db->simple_select("threads", "tid, closed", "closed='moved|".$this->tid."'");
if($db->num_rows($query) > 0)
{
$update_data['subject'] = $db->escape_string($post['subject']);
while($result = $db->fetch_array($query))
{
$db->update_query("threads", $update_data, "tid='".(int)$result['tid']."'");
}
}
}
}
|
// Prepare array for post updating.
|
// Prepare array for post updating.
|
|
|
$this->pid = $post['pid'];
if(isset($post['subject']))
{
$this->post_update_data['subject'] = $db->escape_string($post['subject']);
|
$this->pid = $post['pid'];
if(isset($post['subject']))
{
$this->post_update_data['subject'] = $db->escape_string($post['subject']);
|
}
| }
|
if(isset($post['message']))
|
if(isset($post['message']))
|
{
| {
|
$this->post_update_data['message'] = $db->escape_string($post['message']);
}
if(isset($post['editreason']) && trim($post['editreason']) != '')
{
$this->post_update_data['editreason'] = $db->escape_string(trim($post['editreason']));
|
$this->post_update_data['message'] = $db->escape_string($post['message']);
}
if(isset($post['editreason']) && trim($post['editreason']) != '')
{
$this->post_update_data['editreason'] = $db->escape_string(trim($post['editreason']));
|
| | }
elseif(empty($post['editreason']))
{
$this->post_update_data['editreason'] = '';
|
}
if(isset($post['icon']))
| }
if(isset($post['icon']))
|
| Zeile 1866 | Zeile 1999 |
|---|
$db->update_query("posts", $this->post_update_data, "pid='".(int)$post['pid']."'");
// Automatic subscription to the thread
|
$db->update_query("posts", $this->post_update_data, "pid='".(int)$post['pid']."'");
// Automatic subscription to the thread
|
if($post['options']['subscriptionmethod'] != "" && $post['uid'] > 0)
| if($post && !empty($post['options']['subscriptionmethod']) && $uid > 0)
|
{
switch($post['options']['subscriptionmethod'])
{
| {
switch($post['options']['subscriptionmethod'])
{
|
| Zeile 1884 | Zeile 2017 |
|---|
}
else
{
|
}
else
{
|
$db->delete_query("threadsubscriptions", "uid='".(int)$post['uid']."' AND tid='".(int)$post['tid']."'");
| $db->delete_query("threadsubscriptions", "uid='".(int)$uid."' AND tid='".(int)$post['tid']."'");
|
}
update_forum_lastpost($post['fid']);
| }
update_forum_lastpost($post['fid']);
|
| Zeile 1893 | Zeile 2026 |
|---|
// Return the thread's first post id and whether or not it is visible.
$this->return_values = array(
'visible' => $visible,
|
// Return the thread's first post id and whether or not it is visible.
$this->return_values = array(
'visible' => $visible,
|
'first_post' => $first_post
| 'first_post' => $this->first_post
|
);
$plugins->run_hooks("datahandler_post_update_end", $this);
| );
$plugins->run_hooks("datahandler_post_update_end", $this);
|