Zeile 50 | Zeile 50 |
---|
/** * PM ID currently being manipulated by the datahandlers.
|
/** * PM ID currently being manipulated by the datahandlers.
|
*/
| * * @var int */
|
public $pmid = 0;
|
public $pmid = 0;
|
/**
| /**
|
* Values to be returned after inserting a PM. * * @var array */ public $return_values = array();
|
* Values to be returned after inserting a PM. * * @var array */ public $return_values = array();
|
/**
| /**
|
* Verifies a private message subject. * * @return boolean True when valid, false when invalid.
| * Verifies a private message subject. * * @return boolean True when valid, false when invalid.
|
Zeile 79 | Zeile 81 |
---|
if(!trim_blank_chrs($subject)) { $this->set_error("missing_subject");
|
if(!trim_blank_chrs($subject)) { $this->set_error("missing_subject");
|
return false; }
| return false; }
|
return true; }
| return true; }
|
Zeile 90 | Zeile 92 |
---|
* @return boolean True when valid, false when invalid. */ function verify_message()
|
* @return boolean True when valid, false when invalid. */ function verify_message()
|
{
| {
|
$message = &$this->data['message'];
|
$message = &$this->data['message'];
|
|
|
// No message, return an error. if(trim_blank_chrs($message) == '')
|
// No message, return an error. if(trim_blank_chrs($message) == '')
|
{
| {
|
$this->set_error("missing_message"); return false; }
|
$this->set_error("missing_message"); return false; }
|
| // If the length of message is beyond SQL limitation for 'text' field else if(strlen($message) > 65535) { $this->set_error("message_too_long", array('65535', strlen($message))); return false; }
|
return true; }
|
return true; }
|
|
|
/** * Verifies if the specified sender is valid or not. *
| /** * Verifies if the specified sender is valid or not. *
|
Zeile 116 | Zeile 126 |
---|
// Return if we've already validated if(!empty($pm['sender'])) {
|
// Return if we've already validated if(!empty($pm['sender'])) {
|
| return true; }
if($pm['fromid'] <= 0) { $pm['sender'] = array( "uid" => 0, "username" => '' );
|
return true; }
// Fetch the senders profile data. $sender = get_user($pm['fromid']);
|
return true; }
// Fetch the senders profile data. $sender = get_user($pm['fromid']);
|
|
|
// Collect user permissions for the sender. $sender_permissions = user_permissions($pm['fromid']);
// Check if the sender is over their quota or not - if they are, disable draft sending if(isset($pm['options']['savecopy']) && $pm['options']['savecopy'] != 0 && empty($pm['saveasdraft'])) {
|
// Collect user permissions for the sender. $sender_permissions = user_permissions($pm['fromid']);
// Check if the sender is over their quota or not - if they are, disable draft sending if(isset($pm['options']['savecopy']) && $pm['options']['savecopy'] != 0 && empty($pm['saveasdraft'])) {
|
if($sender_permissions['pmquota'] != "0" && $sender['totalpms'] >= $sender_permissions['pmquota'] && $this->admin_override != true)
| if($sender_permissions['pmquota'] != 0 && $sender['totalpms'] >= $sender_permissions['pmquota'] && $this->admin_override != true)
|
{ $pm['options']['savecopy'] = 0;
|
{ $pm['options']['savecopy'] = 0;
|
} }
| } }
|
// Assign the sender information to the data. $pm['sender'] = array(
| // Assign the sender information to the data. $pm['sender'] = array(
|
Zeile 177 | Zeile 197 |
---|
// No recipients? Skip query if(empty($pm[$recipient_type])) {
|
// No recipients? Skip query if(empty($pm[$recipient_type])) {
|
if($recipient_type == 'to' && !$pm['saveasdraft'])
| if($recipient_type == 'to' && empty($pm['saveasdraft']))
|
{ $this->set_error("no_recipients"); return false;
| { $this->set_error("no_recipients"); return false;
|
Zeile 269 | Zeile 289 |
---|
// If we have one or more invalid recipients and we're not saving a draft, error if(count($invalid_recipients) > 0) {
|
// If we have one or more invalid recipients and we're not saving a draft, error if(count($invalid_recipients) > 0) {
|
$invalid_recipients = implode(", ", array_map("htmlspecialchars_uni", $invalid_recipients));
| $invalid_recipients = implode($lang->comma, array_map("htmlspecialchars_uni", $invalid_recipients));
|
$this->set_error("invalid_recipients", array($invalid_recipients)); return false; }
|
$this->set_error("invalid_recipients", array($invalid_recipients)); return false; }
|
$sender_permissions = user_permissions($pm['fromid']);
// Are we trying to send this message to more users than the permissions allow? if($sender_permissions['maxpmrecipients'] > 0 && count($recipients) > $sender_permissions['maxpmrecipients'] && $this->admin_override != true) { $this->set_error("too_many_recipients", array($sender_permissions['maxpmrecipients'])); }
| if($pm['fromid'] > 0) { $sender_permissions = user_permissions($pm['fromid']);
// Are we trying to send this message to more users than the permissions allow? if($sender_permissions['maxpmrecipients'] > 0 && count($recipients) > $sender_permissions['maxpmrecipients'] && $this->admin_override != true) { $this->set_error("too_many_recipients", array($sender_permissions['maxpmrecipients'])); } }
|
// Now we're done with that we loop through each recipient
|
// Now we're done with that we loop through each recipient
|
| $pm['recipients'] = array();
|
foreach($recipients as $user) { // Collect group permissions for this recipient.
| foreach($recipients as $user) { // Collect group permissions for this recipient.
|
Zeile 291 | Zeile 315 |
---|
// See if the sender is on the recipients ignore list and that either // - admin_override is set or // - sender is an administrator
|
// See if the sender is on the recipients ignore list and that either // - admin_override is set or // - sender is an administrator
|
if(($this->admin_override != true && $sender_permissions['cancp'] != 1) && $sender_permissions['canoverridepm'] != 1)
| if($this->admin_override != true && empty($sender_permissions['canoverridepm']))
|
{
|
{
|
$ignorelist = explode(",", $user['ignorelist']); if(!empty($ignorelist) && in_array($pm['fromid'], $ignorelist))
| if(!empty($user['ignorelist']) && strpos(','.$user['ignorelist'].',', ','.$pm['fromid'].',') !== false)
|
{
|
{
|
$this->set_error("recipient_is_ignoring", array($user['username']));
| $this->set_error("recipient_is_ignoring", array(htmlspecialchars_uni($user['username'])));
|
}
// Is the recipient only allowing private messages from their buddy list?
|
}
// Is the recipient only allowing private messages from their buddy list?
|
if($mybb->settings['allowbuddyonly'] == 1 && $user['receivefrombuddy'] == 1)
| if(empty($pm['saveasdraft']) && $mybb->settings['allowbuddyonly'] == 1 && $user['receivefrombuddy'] == 1 && !empty($user['buddylist']) && strpos(','.$user['buddylist'].',', ','.$pm['fromid'].',') === false)
|
{
|
{
|
$buddylist = explode(",", $user['buddylist']); if(!empty($buddylist) && !in_array($pm['fromid'], $buddylist)) { $this->set_error("recipient_has_buddy_only", array(htmlspecialchars_uni($user['username']))); }
| $this->set_error('recipient_has_buddy_only', array(htmlspecialchars_uni($user['username'])));
|
}
// Can the recipient actually receive private messages based on their permissions or user setting? if(($user['receivepms'] == 0 || $recipient_permissions['canusepms'] == 0) && empty($pm['saveasdraft'])) {
|
}
// Can the recipient actually receive private messages based on their permissions or user setting? if(($user['receivepms'] == 0 || $recipient_permissions['canusepms'] == 0) && empty($pm['saveasdraft'])) {
|
$this->set_error("recipient_pms_disabled", array($user['username']));
| $this->set_error("recipient_pms_disabled", array(htmlspecialchars_uni($user['username'])));
|
return false; } }
// Check to see if the user has reached their private message quota - if they have, email them.
|
return false; } }
// Check to see if the user has reached their private message quota - if they have, email them.
|
if($recipient_permissions['pmquota'] != "0" && $user['totalpms'] >= $recipient_permissions['pmquota'] && $recipient_permissions['cancp'] != 1 && $sender_permissions['cancp'] != 1 && empty($pm['saveasdraft']) && !$this->admin_override)
| if($recipient_permissions['pmquota'] != 0 && $user['totalpms'] >= $recipient_permissions['pmquota'] && empty($sender_permissions['cancp']) && empty($pm['saveasdraft']) && !$this->admin_override)
|
{ if(trim($user['language']) != '' && $lang->language_exists($user['language'])) {
| { if(trim($user['language']) != '' && $lang->language_exists($user['language'])) {
|
Zeile 362 | Zeile 381 |
---|
if($this->admin_override != true) {
|
if($this->admin_override != true) {
|
$this->set_error("recipient_reached_quota", array($user['username']));
| $this->set_error("recipient_reached_quota", array(htmlspecialchars_uni($user['username'])));
|
} }
| } }
|
Zeile 389 | Zeile 408 |
---|
/** * Verify that the user is not flooding the system. *
|
/** * Verify that the user is not flooding the system. *
|
* @return boolean True
| * @return boolean
|
*/ function verify_pm_flooding() { global $mybb, $db;
|
*/ function verify_pm_flooding() { global $mybb, $db;
|
$pm = &$this->data;
| $pm = &$this->data;
|
// Check if post flooding is enabled within MyBB or if the admin override option is specified.
|
// Check if post flooding is enabled within MyBB or if the admin override option is specified.
|
if($mybb->settings['pmfloodsecs'] > 0 && $pm['fromid'] != 0 && $this->admin_override == false)
| if($mybb->settings['pmfloodsecs'] > 0 && $pm['fromid'] > 0 && $this->admin_override == false && !is_moderator(0, '', $pm['fromid']))
|
{ // Fetch the senders profile data. $sender = get_user($pm['fromid']);
| { // Fetch the senders profile data. $sender = get_user($pm['fromid']);
|
Zeile 408 | Zeile 427 |
---|
$sender['lastpm'] = $db->fetch_field($query, "dateline");
// A little bit of calculation magic and moderator status checking.
|
$sender['lastpm'] = $db->fetch_field($query, "dateline");
// A little bit of calculation magic and moderator status checking.
|
if(TIME_NOW-$sender['lastpm'] <= $mybb->settings['pmfloodsecs'] && !is_moderator("", "", $pm['fromid']))
| if(TIME_NOW-$sender['lastpm'] <= $mybb->settings['pmfloodsecs'])
|
{ // Oops, user has been flooding - throw back error message. $time_to_wait = ($mybb->settings['pmfloodsecs'] - (TIME_NOW-$sender['lastpm'])) + 1;
| { // Oops, user has been flooding - throw back error message. $time_to_wait = ($mybb->settings['pmfloodsecs'] - (TIME_NOW-$sender['lastpm'])) + 1;
|
Zeile 538 | Zeile 557 |
---|
$uid = 0;
|
$uid = 0;
|
if(!is_array($pm['recipients']))
| // Build recipient list $recipient_list = array(); if(isset($pm['recipients']) && is_array($pm['recipients']))
|
{
|
{
|
$recipient_list = array(); } else { // Build recipient list
| |
foreach($pm['recipients'] as $recipient) { if(!empty($recipient['bcc']))
| foreach($pm['recipients'] as $recipient) { if(!empty($recipient['bcc']))
|
Zeile 571 | Zeile 587 |
---|
'smilieoff' => $pm['options']['disablesmilies'], 'receipt' => (int)$pm['options']['readreceipt'], 'readtime' => 0,
|
'smilieoff' => $pm['options']['disablesmilies'], 'receipt' => (int)$pm['options']['readreceipt'], 'readtime' => 0,
|
'recipients' => $db->escape_string(serialize($recipient_list)),
| 'recipients' => $db->escape_string(my_serialize($recipient_list)),
|
'ipaddress' => $db->escape_binary($pm['ipaddress']) );
| 'ipaddress' => $db->escape_binary($pm['ipaddress']) );
|
Zeile 580 | Zeile 596 |
---|
$draftcheck = $db->fetch_array($query);
// This PM was previously a draft
|
$draftcheck = $db->fetch_array($query);
// This PM was previously a draft
|
if($draftcheck['pmid'])
| if($draftcheck)
|
{ if($draftcheck['deletetime']) {
| { if($draftcheck['deletetime']) {
|
Zeile 605 | Zeile 621 |
---|
}
$plugins->run_hooks("datahandler_pm_insert_updatedraft", $this);
|
}
$plugins->run_hooks("datahandler_pm_insert_updatedraft", $this);
|
$db->insert_query("privatemessages", $this->pm_insert_data);
| $this->pmid = $db->insert_query("privatemessages", $this->pm_insert_data);
$plugins->run_hooks("datahandler_pm_insert_updatedraft_commit", $this);
|
// If this is a draft, end it here - below deals with complete messages return array(
| // If this is a draft, end it here - below deals with complete messages return array(
|
Zeile 614 | Zeile 633 |
---|
}
$this->pmid = array();
|
}
$this->pmid = array();
|
|
|
// Save a copy of the PM for each of our recipients foreach($pm['recipients'] as $recipient) { // Send email notification of new PM if it is enabled for the recipient $query = $db->simple_select("privatemessages", "dateline", "uid='".$recipient['uid']."' AND folder='1'", array('order_by' => 'dateline', 'order_dir' => 'desc', 'limit' => 1)); $lastpm = $db->fetch_array($query);
|
// Save a copy of the PM for each of our recipients foreach($pm['recipients'] as $recipient) { // Send email notification of new PM if it is enabled for the recipient $query = $db->simple_select("privatemessages", "dateline", "uid='".$recipient['uid']."' AND folder='1'", array('order_by' => 'dateline', 'order_dir' => 'desc', 'limit' => 1)); $lastpm = $db->fetch_array($query);
|
if($recipient['pmnotify'] == 1 && $recipient['lastactive'] > $lastpm['dateline'])
| if($recipient['pmnotify'] == 1 && (empty($lastpm['dateline']) || $recipient['lastactive'] > $lastpm['dateline']))
|
{ if($recipient['language'] != "" && $lang->language_exists($recipient['language'])) { $uselang = $recipient['language'];
|
{ if($recipient['language'] != "" && $lang->language_exists($recipient['language'])) { $uselang = $recipient['language'];
|
}
| }
|
elseif($mybb->settings['bblanguage']) { $uselang = $mybb->settings['bblanguage'];
|
elseif($mybb->settings['bblanguage']) { $uselang = $mybb->settings['bblanguage'];
|
} else
| } else
|
{ $uselang = "english"; }
| { $uselang = "english"; }
|
Zeile 648 | Zeile 667 |
---|
$userlang->load("messages"); $emailsubject = $userlang->emailsubject_newpm; $emailmessage = $userlang->email_newpm;
|
$userlang->load("messages"); $emailsubject = $userlang->emailsubject_newpm; $emailmessage = $userlang->email_newpm;
|
}
| }
|
if(!$pm['sender']['username']) { $pm['sender']['username'] = $lang->mybb_engine; }
|
if(!$pm['sender']['username']) { $pm['sender']['username'] = $lang->mybb_engine; }
|
|
|
require_once MYBB_ROOT.'inc/class_parser.php'; $parser = new Postparser;
|
require_once MYBB_ROOT.'inc/class_parser.php'; $parser = new Postparser;
|
$pm['message'] = $parser->text_parse_message($pm['message'], array('me_username' => $pm['sender']['username'], 'filter_badwords' => 1, 'safe_html' => 1));
| $parser_options = array( 'me_username' => $pm['sender']['username'], 'filter_badwords' => 1 );
$pm['message'] = $parser->text_parse_message($pm['message'], $parser_options);
|
$emailmessage = $lang->sprintf($emailmessage, $recipient['username'], $pm['sender']['username'], $mybb->settings['bbname'], $mybb->settings['bburl'], $pm['message']); $emailsubject = $lang->sprintf($emailsubject, $mybb->settings['bbname'], $pm['subject']);
|
$emailmessage = $lang->sprintf($emailmessage, $recipient['username'], $pm['sender']['username'], $mybb->settings['bbname'], $mybb->settings['bburl'], $pm['message']); $emailsubject = $lang->sprintf($emailsubject, $mybb->settings['bbname'], $pm['subject']);
|
|
|
$new_email = array( "mailto" => $db->escape_string($recipient['email']), "mailfrom" => '',
| $new_email = array( "mailto" => $db->escape_string($recipient['email']), "mailfrom" => '',
|
Zeile 678 | Zeile 703 |
---|
$this->pm_insert_data['toid'] = $recipient['uid'];
$plugins->run_hooks("datahandler_pm_insert", $this);
|
$this->pm_insert_data['toid'] = $recipient['uid'];
$plugins->run_hooks("datahandler_pm_insert", $this);
|
|
|
$this->pmid[] = $db->insert_query("privatemessages", $this->pm_insert_data);
|
$this->pmid[] = $db->insert_query("privatemessages", $this->pm_insert_data);
|
| $plugins->run_hooks("datahandler_pm_insert_commit", $this);
|
// If PM noices/alerts are on, show! if($recipient['pmnotice'] == 1)
| // If PM noices/alerts are on, show! if($recipient['pmnotice'] == 1)
|
Zeile 701 | Zeile 729 |
---|
{ $sql_array = array( 'status' => 3,
|
{ $sql_array = array( 'status' => 3,
|
'statustime' => TIME_NOW
| 'statustime' => TIME_NOW
|
); $db->update_query("privatemessages", $sql_array, "pmid={$pm['pmid']} AND uid={$pm['sender']['uid']}"); }
| ); $db->update_query("privatemessages", $sql_array, "pmid={$pm['pmid']} AND uid={$pm['sender']['uid']}"); }
|
Zeile 718 | Zeile 746 |
---|
// If we're saving a copy if($pm['options']['savecopy'] != 0) {
|
// If we're saving a copy if($pm['options']['savecopy'] != 0) {
|
if(isset($recipient_list['to']) && count($recipient_list['to']) == 1)
| if(isset($recipient_list['to']) && is_array($recipient_list['to']) && count($recipient_list['to']) == 1)
|
{ $this->pm_insert_data['toid'] = $uid; }
| { $this->pm_insert_data['toid'] = $uid; }
|
Zeile 732 | Zeile 760 |
---|
$this->pm_insert_data['receipt'] = 0;
$plugins->run_hooks("datahandler_pm_insert_savedcopy", $this);
|
$this->pm_insert_data['receipt'] = 0;
$plugins->run_hooks("datahandler_pm_insert_savedcopy", $this);
|
|
|
$db->insert_query("privatemessages", $this->pm_insert_data);
|
$db->insert_query("privatemessages", $this->pm_insert_data);
|
| $plugins->run_hooks("datahandler_pm_insert_savedcopy_commit", $this);
|
// Because the sender saved a copy, update their total pm count require_once MYBB_ROOT."/inc/functions_user.php";
| // Because the sender saved a copy, update their total pm count require_once MYBB_ROOT."/inc/functions_user.php";
|