Vergleich inc/datahandlers/post.php - 1.2.4 - 1.2.11

  Keine Änderungen   Hinzugefügt   Modifiziert   Entfernt
Zeile 3Zeile 3
 * MyBB 1.2
* Copyright � 2006 MyBB Group, All Rights Reserved
*

 * MyBB 1.2
* Copyright � 2006 MyBB Group, All Rights Reserved
*

 * Website: http://www.mybboard.com
* License: http://www.mybboard.com/eula.html

 * Website: http://www.mybboard.net
* License: http://www.mybboard.net/eula.html

 *

 *

 * $Id: post.php 2729 2007-02-07 23:02:29Z Tikitiki $

 * $Id: post.php 3508 2007-11-23 16:10:16Z Tikitiki $

 */

 */

 

// Disallow direct access to this file for security reasons
if(!defined("IN_MYBB"))
{
die("Direct initialization of this file is not allowed.<br /><br />Please make sure IN_MYBB is defined.");
}


/*
EXAMPLE USE:


/*
EXAMPLE USE:

Zeile 406Zeile 412
			$post['icon'] = 0;
}
return true;

			$post['icon'] = 0;
}
return true;

	}


	}


	/**
* Verify the dateline.
*
* @return boolean True when valid, false when not valid.
*/
function verify_dateline()

	/**
* Verify the dateline.
*
* @return boolean True when valid, false when not valid.
*/
function verify_dateline()

	{

	{

		$dateline = &$this->data['dateline'];

// The date has to be numeric and > 0.
if($dateline < 0 || is_numeric($dateline) == false)
{
$dateline = time();

		$dateline = &$this->data['dateline'];

// The date has to be numeric and > 0.
if($dateline < 0 || is_numeric($dateline) == false)
{
$dateline = time();

		}

		}

	}

/**

	}

/**

Zeile 437Zeile 443
		$time = time();

// Verify all post assets.

		$time = time();

// Verify all post assets.

 
		
if($this->method != "update" && !$post['savedraft'])
{
$this->verify_post_flooding();
}


if($this->method == "insert" || array_key_exists('uid', $post))
{


if($this->method == "insert" || array_key_exists('uid', $post))
{

Zeile 457Zeile 468
		if($this->method == "insert" || array_key_exists('dateline', $post))
{
$this->verify_dateline();

		if($this->method == "insert" || array_key_exists('dateline', $post))
{
$this->verify_dateline();

		}

if($this->method != "update" && !$post['savedraft'])
{
$this->verify_post_flooding();

 
		}

if($this->method == "insert" || array_key_exists('replyto', $post))

		}

if($this->method == "insert" || array_key_exists('replyto', $post))

Zeile 606Zeile 612
				$visible = 1;
}
}

				$visible = 1;
}
}

 
		
if($visible == 1)
{
$now = time();
if($forum['usepostcounts'] != "no")
{
$queryadd = ",postnum=postnum+1";
}
else
{
$queryadd = '';
}
$db->query("UPDATE ".TABLE_PREFIX."users SET lastpost='{$now}' {$queryadd} WHERE uid='{$post['uid']}'");
}



$post['pid'] = intval($post['pid']);
$post['uid'] = intval($post['uid']);
$query = $db->simple_select(TABLE_PREFIX."posts", "tid", "pid='{$post['pid']}' AND uid='{$post['uid']}' AND visible='-2'");
$draft_check = $db->fetch_field($query, "tid");


$post['pid'] = intval($post['pid']);
$post['uid'] = intval($post['uid']);
$query = $db->simple_select(TABLE_PREFIX."posts", "tid", "pid='{$post['pid']}' AND uid='{$post['uid']}' AND visible='-2'");
$draft_check = $db->fetch_field($query, "tid");





		// Are we updating a post which is already a draft? Perhaps changing it into a visible post?
if($draft_check)
{
// Update a post that is a draft
$this->post_update_data = array(

		// Are we updating a post which is already a draft? Perhaps changing it into a visible post?
if($draft_check)
{
// Update a post that is a draft
$this->post_update_data = array(

				"subject" => $db->escape_string($post['subject']),

				"subject" => $db->escape_string($post['subject']),

				"icon" => intval($post['icon']),
"uid" => $post['uid'],
"username" => $db->escape_string($post['username']),
"dateline" => intval($post['dateline']),

				"icon" => intval($post['icon']),
"uid" => $post['uid'],
"username" => $db->escape_string($post['username']),
"dateline" => intval($post['dateline']),

				"message" => $db->escape_string($post['message']),
"ipaddress" => $db->escape_string($post['ipaddress']),
"includesig" => $post['options']['signature'],
"smilieoff" => $post['options']['disablesmilies'],
"visible" => $visible,
"posthash" => $db->escape_string($post['posthash'])
);


				"message" => $db->escape_string($post['message']),
"ipaddress" => $db->escape_string($post['ipaddress']),
"includesig" => $post['options']['signature'],
"smilieoff" => $post['options']['disablesmilies'],
"visible" => $visible,
"posthash" => $db->escape_string($post['posthash'])
);


			$plugins->run_hooks_by_ref("datahandler_post_insert_post", $this);

$db->update_query(TABLE_PREFIX."posts", $this->post_update_data, "pid='{$post['pid']}'");

			$plugins->run_hooks_by_ref("datahandler_post_insert_post", $this);

$db->update_query(TABLE_PREFIX."posts", $this->post_update_data, "pid='{$post['pid']}'");

Zeile 653Zeile 674
				"smilieoff" => $post['options']['disablesmilies'],
"visible" => $visible,
"posthash" => $db->escape_string($post['posthash'])

				"smilieoff" => $post['options']['disablesmilies'],
"visible" => $visible,
"posthash" => $db->escape_string($post['posthash'])

			);

$plugins->run_hooks_by_ref("datahandler_post_insert_post", $this);

$db->insert_query(TABLE_PREFIX."posts", $this->post_insert_data);
$this->pid = $db->insert_id();
}


			);

$plugins->run_hooks_by_ref("datahandler_post_insert_post", $this);

$db->insert_query(TABLE_PREFIX."posts", $this->post_insert_data);
$this->pid = $db->insert_id();
}


		// Assign any uploaded attachments with the specific posthash to the newly created post.
if($post['posthash'])

		// Assign any uploaded attachments with the specific posthash to the newly created post.
if($post['posthash'])

		{

		{

			$post['posthash'] = $db->escape_string($post['posthash']);
$attachmentassign = array(
"pid" => $this->pid

			$post['posthash'] = $db->escape_string($post['posthash']);
$attachmentassign = array(
"pid" => $this->pid

Zeile 676Zeile 697
			$thread = get_thread($post['tid']);
require_once MYBB_ROOT.'inc/class_parser.php';
$parser = new Postparser();

			$thread = get_thread($post['tid']);
require_once MYBB_ROOT.'inc/class_parser.php';
$parser = new Postparser();






$done_users = array();


			$subject = $parser->parse_badwords($thread['subject']);
$excerpt = $parser->strip_mycode($post['message']);
$excerpt = my_substr($excerpt, 0, $mybb->settings['subscribeexcerpt']).$lang->emailbit_viewthread;

			$subject = $parser->parse_badwords($thread['subject']);
$excerpt = $parser->strip_mycode($post['message']);
$excerpt = my_substr($excerpt, 0, $mybb->settings['subscribeexcerpt']).$lang->emailbit_viewthread;

 

// Parse badwords
$excerpt = $parser->parse_badwords($excerpt);



// Fetch any users subscribed to this thread and queue up their subscription notices
$query = $db->query("


// Fetch any users subscribed to this thread and queue up their subscription notices
$query = $db->query("

Zeile 691Zeile 718
				AND u.lastactive>'{$thread['lastpost']}'
");
while($subscribedmember = $db->fetch_array($query))

				AND u.lastactive>'{$thread['lastpost']}'
");
while($subscribedmember = $db->fetch_array($query))

			{

			{

				if($done_users[$subscribedmember['uid']])

				if($done_users[$subscribedmember['uid']])

				{

				{

					continue;

					continue;

				}

				}

				$done_users[$subscribedmember['uid']] = 1;
if($subscribedmember['language'] != '' && $lang->language_exists($subscribedmember['language']))
{

				$done_users[$subscribedmember['uid']] = 1;
if($subscribedmember['language'] != '' && $lang->language_exists($subscribedmember['language']))
{

Zeile 708Zeile 735
				else
{
$uselang = "english";

				else
{
$uselang = "english";

				}

				}


if($uselang == $mybb->settings['bblanguage'])
{


if($uselang == $mybb->settings['bblanguage'])
{

Zeile 748Zeile 775
			{
$cache->updatemailqueue();
}

			{
$cache->updatemailqueue();
}

 
			$thread_update = array("replies" => "+1"); 

$query = $db->simple_select(TABLE_PREFIX."attachments", "COUNT(aid) AS attachmentcount", "pid='{$this->pid}' AND visible='1'");
$attachmentcount = $db->fetch_field($query, "attachmentcount");

$thread_update['attachmentcount'] = "+{$attachmentcount}";


// Update forum count


// Update forum count

			update_thread_count($post['tid']);
update_forum_count($post['fid']);
$cache->updatestats();
}

			update_thread_counters($post['tid'], $thread_update); 
update_forum_counters($post['fid'], array("posts" => "+1"));
}


		// Post is stuck in moderation queue
else if($visible == 0)

		// Post is stuck in moderation queue
else if($visible == 0)

		{

		{

			// Update the unapproved posts count for the current thread and current forum

			// Update the unapproved posts count for the current thread and current forum

			update_thread_count($post['tid']);
update_forum_count($post['fid']);
}

if($visible != -2)
{
$now = time();
if($forum['usepostcounts'] != "no")
{
$queryadd = ",postnum=postnum+1";
}
else
{
$queryadd = '';
}
$db->query("UPDATE ".TABLE_PREFIX."users SET lastpost='{$now}' {$queryadd} WHERE uid='{$post['uid']}'");

			update_thread_counters($post['tid'], array("unapprovedposts" => "+1")); 
update_forum_counters($post['fid'], array("unapprovedposts" => "+1"));















		}

// Return the post's pid and whether or not it is visible.

		}

// Return the post's pid and whether or not it is visible.

Zeile 793Zeile 811
		global $mybb, $db, $plugins;

$thread = &$this->data;

		global $mybb, $db, $plugins;

$thread = &$this->data;





		// Validate all thread assets.

		// Validate all thread assets.


if($this->method == "insert" || array_key_exists('uid', $thread))






		
if(!$thread['savedraft'])
{
$this->verify_post_flooding();
}

if($this->method == "insert" || array_key_exists('uid', $thread))

		{
$this->verify_author();

		{
$this->verify_author();

		}

		}


if($this->method == "insert" || array_key_exists('subject', $thread))
{
$this->verify_subject();


if($this->method == "insert" || array_key_exists('subject', $thread))
{
$this->verify_subject();

		}


		}


		if($this->method == "insert" || array_key_exists('message', $thread))

		if($this->method == "insert" || array_key_exists('message', $thread))

		{

		{

			$this->verify_message();
$this->verify_image_count();

			$this->verify_message();
$this->verify_image_count();

		}


		}


		if($this->method == "insert" || array_key_exists('dateline', $thread))

		if($this->method == "insert" || array_key_exists('dateline', $thread))

		{

		{

			$this->verify_dateline();

			$this->verify_dateline();

		}

		}


if($this->method == "insert" || array_key_exists('icon', $thread))
{
$this->verify_post_icon();


if($this->method == "insert" || array_key_exists('icon', $thread))
{
$this->verify_post_icon();

		}


		}


		if($this->method == "insert" || array_key_exists('options', $thread))
{
$this->verify_options();

		if($this->method == "insert" || array_key_exists('options', $thread))
{
$this->verify_options();

		}

if(!$thread['savedraft'])
{
$this->verify_post_flooding();
}


		}







		$plugins->run_hooks_by_ref("datahandler_post_validate_thread", $this);

// We are done validating, return.
$this->set_validated(true);
if(count($this->get_errors()) > 0)

		$plugins->run_hooks_by_ref("datahandler_post_validate_thread", $this);

// We are done validating, return.
$this->set_validated(true);
if(count($this->get_errors()) > 0)

		{

		{

			return false;
}
else
{
return true;

			return false;
}
else
{
return true;

		}

		}

	}

/**

	}

/**

Zeile 893Zeile 911

// Have a post ID but not a thread ID - fetch thread ID
if($thread['pid'] && !$thread['tid'])


// Have a post ID but not a thread ID - fetch thread ID
if($thread['pid'] && !$thread['tid'])

		{

		{

			$query = $db->simple_select(TABLE_PREFIX."posts", "tid", "pid='{$thread['pid']}");
$thread['tid'] = $db->fetch_field($query, "tid");
}

			$query = $db->simple_select(TABLE_PREFIX."posts", "tid", "pid='{$thread['pid']}");
$thread['tid'] = $db->fetch_field($query, "tid");
}

Zeile 941Zeile 959
		else
{
$this->thread_insert_data = array(

		else
{
$this->thread_insert_data = array(

				"fid" => $thread['fid'],
"subject" => $db->escape_string($thread['subject']),
"icon" => intval($thread['icon']),

				"fid" => $thread['fid'],
"subject" => $db->escape_string($thread['subject']),
"icon" => intval($thread['icon']),

				"uid" => $thread['uid'],
"username" => $db->escape_string($thread['username']),
"dateline" => intval($thread['dateline']),

				"uid" => $thread['uid'],
"username" => $db->escape_string($thread['username']),
"dateline" => intval($thread['dateline']),

Zeile 981Zeile 999
			$this->pid = $db->insert_id();

// Now that we have the post id for this first post, update the threads table.

			$this->pid = $db->insert_id();

// Now that we have the post id for this first post, update the threads table.

			$firstpostup = array("firstpost" => $pid);
$db->update_query(TABLE_PREFIX."threads", $firstpostup, "tid='{$tid}'");

			$firstpostup = array("firstpost" => $this->pid);
$db->update_query(TABLE_PREFIX."threads", $firstpostup, "tid='{$this->tid}'");

		}

// If we're not saving a draft there are some things we need to check now

		}

// If we're not saving a draft there are some things we need to check now

Zeile 996Zeile 1014
					'uid' => intval($thread['uid']),
'tid' => $this->tid,
'type' => 's'

					'uid' => intval($thread['uid']),
'tid' => $this->tid,
'type' => 's'

				);

				);

				$db->insert_query(TABLE_PREFIX.'favorites', $insert_favorite);
}

				$db->insert_query(TABLE_PREFIX.'favorites', $insert_favorite);
}





			// Perform any selected moderation tools.
if(is_moderator($thread['fid'], "", $thread['uid']) == "yes" && is_array($thread['modoptions']))
{

			// Perform any selected moderation tools.
if(is_moderator($thread['fid'], "", $thread['uid']) == "yes" && is_array($thread['modoptions']))
{

Zeile 1012Zeile 1030
				{
$newclosed = "closed='yes'";
log_moderator_action($modlogdata, "Thread closed");

				{
$newclosed = "closed='yes'";
log_moderator_action($modlogdata, "Thread closed");

				}

				}


// Stick the thread.
if($modoptions['stickthread'] == "yes")


// Stick the thread.
if($modoptions['stickthread'] == "yes")

Zeile 1033Zeile 1051
						SET $newclosed$sep$newstick
WHERE tid='{$this->tid}'
");

						SET $newclosed$sep$newstick
WHERE tid='{$this->tid}'
");

				}
}
// If we have a registered user then update their post count and last post times.
if($thread['uid'] > 0)
{
$user = get_user($thread['uid']);
$update_query = array();
// Only update the lastpost column of the user if the date of the thread is newer than their last post.
if($thread['dateline'] > $user['lastpost'])
{
$update_query[] = "lastpost='".$thread['dateline']."'";
}
// Update the post count if this forum allows post counts to be tracked
if($forum['usepostcounts'] != "no")
{
$update_query[] = "postnum=postnum+1";
}

// Only update the table if we need to.
if(!empty($update_query))
{
$update_query = implode(", ", $update_query);
$db->query("UPDATE ".TABLE_PREFIX."users SET $update_query WHERE uid='".$thread['uid']."'");
}
}

// Queue up any forum subscription notices to users who are subscribed to this forum.
$excerpt = my_substr($thread['message'], 0, $mybb->settings['subscribeexcerpt']).$lang->emailbit_viewthread;
$query = $db->query("
SELECT u.username, u.email, u.uid, u.language
FROM ".TABLE_PREFIX."forumsubscriptions fs, ".TABLE_PREFIX."users u
WHERE fs.fid='".intval($thread['fid'])."'
AND u.uid=fs.uid
AND fs.uid!='".intval($thread['uid'])."'
AND u.lastactive>'{$forum['lastpost']}'
");
while($subscribedmember = $db->fetch_array($query))
{
if($done_users[$subscribedmember['uid']])
{
continue;
}
$done_users[$subscribedmember['uid']] = 1;
// Determine the language pack we'll be using to send this email in and load it if it isn't already.
if($subscribedmember['language'] != '' && $lang->language_exists($subscribedmember['language']))
{
$uselang = $subscribedmember['language'];
}
else if($mybb->settings['bblanguage'])
{
$uselang = $mybb->settings['bblanguage'];
}
else
{
$uselang = "english";
}

				}
}

if($visible == 1)
{
// If we have a registered user then update their post count and last post times.
if($thread['uid'] > 0)
{
$user = get_user($thread['uid']);
$update_query = array();
// Only update the lastpost column of the user if the date of the thread is newer than their last post.
if($thread['dateline'] > $user['lastpost'])
{
$update_query[] = "lastpost='".$thread['dateline']."'";
}
// Update the post count if this forum allows post counts to be tracked
if($forum['usepostcounts'] != "no")
{
$update_query[] = "postnum=postnum+1";
}

// Only update the table if we need to.
if(!empty($update_query))
{
$update_query = implode(", ", $update_query);
$db->query("UPDATE ".TABLE_PREFIX."users SET $update_query WHERE uid='".$thread['uid']."'");
}
}

// Queue up any forum subscription notices to users who are subscribed to this forum.
$excerpt = my_substr($thread['message'], 0, $mybb->settings['subscribeexcerpt']).$lang->emailbit_viewthread;

// Parse badwords
require_once MYBB_ROOT."inc/class_parser.php";
$parser = new postParser;
$excerpt = $parser->parse_badwords($excerpt);

























				if($uselang == $mybb->settings['bblanguage'])









				$query = $db->query("
SELECT u.username, u.email, u.uid, u.language
FROM ".TABLE_PREFIX."forumsubscriptions fs, ".TABLE_PREFIX."users u
WHERE fs.fid='".intval($thread['fid'])."'
AND u.uid=fs.uid
AND fs.uid!='".intval($thread['uid'])."'
AND u.lastactive>'{$forum['lastpost']}'
");
while($subscribedmember = $db->fetch_array($query))

				{

				{

					$emailsubject = $lang->emailsubject_forumsubscription;
$emailmessage = $lang->email_forumsubscription;


















































					if($done_users[$subscribedmember['uid']])
{
continue;
}
$done_users[$subscribedmember['uid']] = 1;
// Determine the language pack we'll be using to send this email in and load it if it isn't already.
if($subscribedmember['language'] != '' && $lang->language_exists($subscribedmember['language']))
{
$uselang = $subscribedmember['language'];
}
else if($mybb->settings['bblanguage'])
{
$uselang = $mybb->settings['bblanguage'];
}
else
{
$uselang = "english";
}

if($uselang == $mybb->settings['bblanguage'])
{
$emailsubject = $lang->emailsubject_forumsubscription;
$emailmessage = $lang->email_forumsubscription;
}
else
{
if(!isset($langcache[$uselang]['emailsubject_forumsubscription']))
{
$userlang = new MyLanguage;
$userlang->set_path(MYBB_ROOT."inc/languages");
$userlang->set_language($uselang);
$userlang->load("messages");
$langcache[$uselang]['emailsubject_forumsubscription'] = $userlang->emailsubject_forumsubscription;
$langcache[$uselang]['email_forumsubscription'] = $userlang->email_forumsubscription;
unset($userlang);
}
$emailsubject = $langcache[$uselang]['emailsubject_forumsubscription'];
$emailmessage = $langcache[$uselang]['email_forumsubscription'];
}
$emailsubject = sprintf($emailsubject, $forum['name']);
$emailmessage = sprintf($emailmessage, $subscribedmember['username'], $thread['username'], $forum['name'], $mybb->settings['bbname'], $thread['subject'], $excerpt, $mybb->settings['bburl'], $this->tid, $thread['fid']);
$new_email = array(
"mailto" => $db->escape_string($subscribedmember['email']),
"mailfrom" => '',
"subject" => $db->escape_string($emailsubject),
"message" => $db->escape_string($emailmessage),
"headers" => ''
);
$db->insert_query(TABLE_PREFIX."mailqueue", $new_email);
unset($userlang);
$queued_email = 1;

				}

				}

				else


				// Have one or more emails been queued? Update the queue count
if($queued_email == 1)

				{

				{

					if(!isset($langcache[$uselang]['emailsubject_forumsubscription']))
{
$userlang = new MyLanguage;
$userlang->set_path(MYBB_ROOT."inc/languages");
$userlang->set_language($uselang);
$userlang->load("messages");
$langcache[$uselang]['emailsubject_forumsubscription'] = $userlang->emailsubject_forumsubscription;
$langcache[$uselang]['email_forumsubscription'] = $userlang->email_forumsubscription;
unset($userlang);
}
$emailsubject = $langcache[$uselang]['emailsubject_forumsubscription'];
$emailmessage = $langcache[$uselang]['email_forumsubscription'];

					$cache->updatemailqueue();












				}

				}

				$emailsubject = sprintf($emailsubject, $forum['name']);
$emailmessage = sprintf($emailmessage, $subscribedmember['username'], $thread['username'], $forum['name'], $mybb->settings['bbname'], $thread['subject'], $excerpt, $mybb->settings['bburl'], $this->tid, $thread['fid']);
$new_email = array(
"mailto" => $db->escape_string($subscribedmember['email']),
"mailfrom" => '',
"subject" => $db->escape_string($emailsubject),
"message" => $db->escape_string($emailmessage),
"headers" => ''
);
$db->insert_query(TABLE_PREFIX."mailqueue", $new_email);
unset($userlang);
$queued_email = 1;
}
// Have one or more emails been queued? Update the queue count
if($queued_email == 1)
{
$cache->updatemailqueue();

 
			}

			}

		}

		}


// Assign any uploaded attachments with the specific posthash to the newly created post.
if($thread['posthash'])


// Assign any uploaded attachments with the specific posthash to the newly created post.
if($thread['posthash'])

		{

		{

			$thread['posthash'] = $db->escape_string($thread['posthash']);
$attachmentassign = array(
"pid" => $this->pid

			$thread['posthash'] = $db->escape_string($thread['posthash']);
$attachmentassign = array(
"pid" => $this->pid

Zeile 1140Zeile 1168
			$db->update_query(TABLE_PREFIX."attachments", $attachmentassign, "posthash='{$thread['posthash']}'");
}


			$db->update_query(TABLE_PREFIX."attachments", $attachmentassign, "posthash='{$thread['posthash']}'");
}


		// Thread is public - update the forum counts.
if($visible == 1 || $visible == 0)
{
$cache->updatestats();
update_thread_count($this->tid);
update_forum_count($thread['fid']);












		if($visible == 1) 
{
$query = $db->simple_select(TABLE_PREFIX."attachments", "COUNT(aid) AS attachmentcount", "pid='{$this->pid}' AND visible='1'");
$attachmentcount = $db->fetch_field($query, "attachmentcount");
if($attachmentcount > 0)
{
update_thread_counters($this->tid, array("attachmentcount" => "+{$attachmentcount}"));
}

update_thread_data($this->tid);
update_forum_counters($thread['fid'], array("threads" => "+1", "posts" => "+1"));
}
else if($visible == 0)
{
update_thread_data($this->tid);
update_thread_counters($thread['tid'], array("replies" => 0, "unapprovedposts" => 1));
update_forum_counters($thread['fid'], array("unapprovedthreads" => "+1", "unapprovedposts" => "+1"));

		}

// Return the post's pid and whether or not it is visible.

		}

// Return the post's pid and whether or not it is visible.

Zeile 1286Zeile 1325
		{
$db->delete_query(TABLE_PREFIX."favorites", "type='s' AND uid='{$post['uid']}' AND tid='{$post['tid']}'");
}

		{
$db->delete_query(TABLE_PREFIX."favorites", "type='s' AND uid='{$post['uid']}' AND tid='{$post['tid']}'");
}

		update_thread_attachment_count($post['tid']);

 




		update_forum_count($post['fid']);

		update_forum_lastpost($post['fid']);

	}
}
?>

	}
}
?>