Vergleich inc/datahandlers/post.php - 1.6.8 - 1.6.18

  Keine Änderungen   Hinzugefügt   Modifiziert   Entfernt
Zeile 6Zeile 6
 * Website: http://mybb.com
* License: http://mybb.com/about/license
*

 * Website: http://mybb.com
* License: http://mybb.com/about/license
*

 * $Id: post.php 5828 2012-05-08 16:06:16Z Tomm $

 * $Id$

 */

// Disallow direct access to this file for security reasons

 */

// Disallow direct access to this file for security reasons

Zeile 121Zeile 121
		{
$user = get_user($post['uid']);
$post['username'] = $user['username'];

		{
$user = get_user($post['uid']);
$post['username'] = $user['username'];

 
		}
// if the uid is 0 verify the username
else if($post['uid'] == 0 && $post['username'] != $lang->guest)
{
// Set up user handler
require_once MYBB_ROOT."inc/datahandlers/user.php";
$userhandler = new UserDataHandler();

$data_array = array('username' => $post['username']);
$userhandler->set_data($data_array);

if(!$userhandler->verify_username())
{
// invalid username
$this->errors = array_merge($this->errors, $userhandler->get_errors());
return false;
}

		}

// After all of this, if we still don't have a username, force the username as "Guest" (Note, this is not translatable as it is always a fallback)

		}

// After all of this, if we still don't have a username, force the username as "Guest" (Note, this is not translatable as it is always a fallback)

Zeile 167Zeile 184
			if($first_check['pid'] == $post['pid'])
{
$first_post = true;

			if($first_check['pid'] == $post['pid'])
{
$first_post = true;

			}

			}

			else

			else

			{

			{

				$first_post = false;

				$first_post = false;

			}


			}


			// If this is the first post there needs to be a subject, else make it the default one.
if(my_strlen($subject) == 0 && $first_post)
{

			// If this is the first post there needs to be a subject, else make it the default one.
if(my_strlen($subject) == 0 && $first_post)
{

Zeile 180Zeile 197
				return false;
}
elseif(my_strlen($subject) == 0)

				return false;
}
elseif(my_strlen($subject) == 0)

			{

			{

				$thread = get_thread($post['tid']);
$subject = "RE: ".$thread['subject'];
}

				$thread = get_thread($post['tid']);
$subject = "RE: ".$thread['subject'];
}

Zeile 188Zeile 205

// This is a new post
else if($this->action == "post")


// This is a new post
else if($this->action == "post")

		{
if(my_strlen($subject) == 0)
{

		{
if(my_strlen($subject) == 0)
{

				$thread = get_thread($post['tid']);
$subject = "RE: ".$thread['subject'];

				$thread = get_thread($post['tid']);
$subject = "RE: ".$thread['subject'];

			}
}


			}
}


		// This is a new thread and we require that a subject is present.
else

		// This is a new thread and we require that a subject is present.
else

		{

		{

			if(my_strlen($subject) == 0)
{
$this->set_error("missing_subject");

			if(my_strlen($subject) == 0)
{
$this->set_error("missing_subject");

Zeile 206Zeile 223
			}
}


			}
}


		if(my_strlen($subject) > 85)












		// If post is reply and begins with "RE: ", remove 4 from subject length.
$subject_length = my_strlen($subject);
if($this->action == "post")
{
$position_re = my_strpos($subject, "RE: ");
if($position_re !== false && $position_re == 0)
{
$subject_length = $subject_length - 4;
}
}

if($subject_length > 85)

		{
// Subject is too long
$this->set_error('subject_too_long', my_strlen($subject));

		{
// Subject is too long
$this->set_error('subject_too_long', my_strlen($subject));

Zeile 233Zeile 261
		if(my_strlen($post['message']) == 0)
{
$this->set_error("missing_message");

		if(my_strlen($post['message']) == 0)
{
$this->set_error("missing_message");

			return false;
}


			return false;
}


		// If this board has a maximum message length check if we're over it. Use strlen because SQL limits are in bytes
else if(strlen($post['message']) > $mybb->settings['maxmessagelength'] && $mybb->settings['maxmessagelength'] > 0 && !is_moderator($post['fid'], "", $post['uid']))

		// If this board has a maximum message length check if we're over it. Use strlen because SQL limits are in bytes
else if(strlen($post['message']) > $mybb->settings['maxmessagelength'] && $mybb->settings['maxmessagelength'] > 0 && !is_moderator($post['fid'], "", $post['uid']))

		{

		{

			$this->set_error("message_too_long", array($mybb->settings['maxmessagelength'], strlen($post['message'])));

			$this->set_error("message_too_long", array($mybb->settings['maxmessagelength'], strlen($post['message'])));

			return false;
}

			return false;
}


// And if we've got a minimum message length do we meet that requirement too?
else if(my_strlen($post['message']) < $mybb->settings['minmessagelength'] && $mybb->settings['minmessagelength'] > 0 && !is_moderator($post['fid'], "", $post['uid']))


// And if we've got a minimum message length do we meet that requirement too?
else if(my_strlen($post['message']) < $mybb->settings['minmessagelength'] && $mybb->settings['minmessagelength'] > 0 && !is_moderator($post['fid'], "", $post['uid']))

Zeile 258Zeile 286
	 * @return boolean True
*/
function verify_options()

	 * @return boolean True
*/
function verify_options()

	{

	{

		$options = &$this->data['options'];

// Verify yes/no options.

		$options = &$this->data['options'];

// Verify yes/no options.

Zeile 286Zeile 314
			{
return true;
}

			{
return true;
}

			



			// Fetch the user information for this post - used to check their last post date.
$user = get_user($post['uid']);


			// Fetch the user information for this post - used to check their last post date.
$user = get_user($post['uid']);


Zeile 302Zeile 330
				else
{
$this->set_error("post_flooding", array($time_to_wait));

				else
{
$this->set_error("post_flooding", array($time_to_wait));

				}
return false;

				}
return false;

			}
}
// All is well that ends well - return true.
return true;
}

			}
}
// All is well that ends well - return true.
return true;
}

	



	function verify_post_merge($simple_mode=false)
{
global $mybb, $db, $session;

	function verify_post_merge($simple_mode=false)
{
global $mybb, $db, $session;

		



		$post = &$this->data;

		$post = &$this->data;

		



		// Are we starting a new thread?
if(!$post['tid'])

		// Are we starting a new thread?
if(!$post['tid'])

		{

		{

			return true;
}

			return true;
}

		



		// Are we even turned on?
if(empty($mybb->settings['postmergemins']))
{
return true;
}

		// Are we even turned on?
if(empty($mybb->settings['postmergemins']))
{
return true;
}

		



		// Assign a default separator if none is specified
if(trim($mybb->settings['postmergesep']) == "")
{
$mybb->settings['postmergesep'] = "[hr]";
}

		// Assign a default separator if none is specified
if(trim($mybb->settings['postmergesep']) == "")
{
$mybb->settings['postmergesep'] = "[hr]";
}

		



		// Check to see if this person is in a usergroup that is excluded
if(trim($mybb->settings['postmergeuignore']) != "")

		// Check to see if this person is in a usergroup that is excluded
if(trim($mybb->settings['postmergeuignore']) != "")

		{

		{

			$gids = explode(',', $mybb->settings['postmergeuignore']);
$gids = array_map('intval', $gids);

			$gids = explode(',', $mybb->settings['postmergeuignore']);
$gids = array_map('intval', $gids);

			





			$user_usergroups = explode(',', $mybb->user['usergroup'].",".$mybb->user['additionalgroups']);
if(count(array_intersect($user_usergroups, $gids)) > 0)
{
return true;

			$user_usergroups = explode(',', $mybb->user['usergroup'].",".$mybb->user['additionalgroups']);
if(count(array_intersect($user_usergroups, $gids)) > 0)
{
return true;

			}			

			}

		}

		}

		



		// Select the lastpost and fid information for this thread
$query = $db->simple_select("threads", "lastpost,fid", "lastposteruid='".$post['uid']."' AND tid='".$post['tid']."'", array('limit' => '1'));
$thread = $db->fetch_array($query);

		// Select the lastpost and fid information for this thread
$query = $db->simple_select("threads", "lastpost,fid", "lastposteruid='".$post['uid']."' AND tid='".$post['tid']."'", array('limit' => '1'));
$thread = $db->fetch_array($query);

		



		// Check to see if the same author has posted within the merge post time limit
if((intval($mybb->settings['postmergemins']) != 0 && trim($mybb->settings['postmergemins']) != "") && (TIME_NOW-$thread['lastpost']) > (intval($mybb->settings['postmergemins'])*60))
{
return true;
}

		// Check to see if the same author has posted within the merge post time limit
if((intval($mybb->settings['postmergemins']) != 0 && trim($mybb->settings['postmergemins']) != "") && (TIME_NOW-$thread['lastpost']) > (intval($mybb->settings['postmergemins'])*60))
{
return true;
}

		



		if(strstr($mybb->settings['postmergefignore'], ','))
{
$fids = explode(',', $mybb->settings['postmergefignore']);

		if(strstr($mybb->settings['postmergefignore'], ','))
{
$fids = explode(',', $mybb->settings['postmergefignore']);

Zeile 365Zeile 393
			{
$fid[] = intval($forumid);
}

			{
$fid[] = intval($forumid);
}

			



			if(in_array($thread['fid'], $fid))
{
return true;
}

			if(in_array($thread['fid'], $fid))
{
return true;
}

			
}


}

		else if(trim($mybb->settings['postmergefignore']) != "" && $thread['fid'] == intval($mybb->settings['postmergefignore']))
{
return true;
}

		else if(trim($mybb->settings['postmergefignore']) != "" && $thread['fid'] == intval($mybb->settings['postmergefignore']))
{
return true;
}

		



		if($simple_mode == true)
{
return false;
}

		if($simple_mode == true)
{
return false;
}

		



		if($post['uid'])
{
$user_check = "uid='".$post['uid']."'";
}
else

		if($post['uid'])
{
$user_check = "uid='".$post['uid']."'";
}
else

		{

		{

			$user_check = "ipaddress='".$db->escape_string($session->ipaddress)."'";
}

			$user_check = "ipaddress='".$db->escape_string($session->ipaddress)."'";
}

		
$query = $db->simple_select("posts", "pid,message,visible,posthash", "{$user_check} AND tid='".$post['tid']."' AND dateline='".$thread['lastpost']."'", array('order_by' => 'pid', 'order_dir' => 'DESC', 'limit' => 1));


$query = $db->simple_select("posts", "pid,message,visible", "{$user_check} AND tid='".$post['tid']."' AND dateline='".$thread['lastpost']."'", array('order_by' => 'pid', 'order_dir' => 'DESC', 'limit' => 1));

		return $db->fetch_array($query);
}


		return $db->fetch_array($query);
}


Zeile 403Zeile 431
	function verify_image_count()
{
global $mybb, $db;

	function verify_image_count()
{
global $mybb, $db;





		$post = &$this->data;

// Get the permissions of the user who is making this post or thread

		$post = &$this->data;

// Get the permissions of the user who is making this post or thread

Zeile 411Zeile 439

// Fetch the forum this post is being made in
if(!$post['fid'])


// Fetch the forum this post is being made in
if(!$post['fid'])

		{

		{

			$query = $db->simple_select('posts', 'fid', "pid = '{$post['pid']}'");
$post['fid'] = $db->fetch_field($query, 'fid');
}

			$query = $db->simple_select('posts', 'fid', "pid = '{$post['pid']}'");
$post['fid'] = $db->fetch_field($query, 'fid');
}

Zeile 422Zeile 450
		{
require_once MYBB_ROOT."inc/class_parser.php";
$parser = new postParser;

		{
require_once MYBB_ROOT."inc/class_parser.php";
$parser = new postParser;





			// Parse the message.
$parser_options = array(
"allow_html" => $forum['allowhtml'],

			// Parse the message.
$parser_options = array(
"allow_html" => $forum['allowhtml'],

Zeile 433Zeile 461
			);

if($post['options']['disablesmilies'] != 1)

			);

if($post['options']['disablesmilies'] != 1)

			{

			{

				$parser_options['allow_smilies'] = $forum['allowsmilies'];
}
else
{
$parser_options['allow_smilies'] = 0;

				$parser_options['allow_smilies'] = $forum['allowsmilies'];
}
else
{
$parser_options['allow_smilies'] = 0;

			}

			}


$image_check = $parser->parse_message($post['message'], $parser_options);



$image_check = $parser->parse_message($post['message'], $parser_options);


Zeile 453Zeile 481
			}
}
}

			}
}
}

	



	/**
* Verifies the video count.

	/**
* Verifies the video count.

	*
* @return boolean True when valid, false when not valid.

	*
* @return boolean True when valid, false when not valid.

	*/
function verify_video_count()
{

	*/
function verify_video_count()
{

Zeile 472Zeile 500
		if($post['savedraft'] != 1 && $mybb->settings['maxpostvideos'] != 0 && $permissions['cancp'] != 1)
{
// And count the number of video tags in the message.

		if($post['savedraft'] != 1 && $mybb->settings['maxpostvideos'] != 0 && $permissions['cancp'] != 1)
{
// And count the number of video tags in the message.

			$video_count = substr_count($post['message'], "[video]");

			$video_count = substr_count($post['message'], "[video=");

			if($video_count > $mybb->settings['maxpostvideos'])
{
// Throw back a message if over the count with the number of images as well as the maximum number of images per post.

			if($video_count > $mybb->settings['maxpostvideos'])
{
// Throw back a message if over the count with the number of images as well as the maximum number of images per post.

Zeile 500Zeile 528
			if(!$valid_post['pid'])
{
$post['replyto'] = 0;

			if(!$valid_post['pid'])
{
$post['replyto'] = 0;

			}
else
{

			}
else
{

				return true;
}
}

				return true;
}
}

Zeile 535Zeile 563

$post = &$this->data;



$post = &$this->data;


		// If we don't assign it as 0.
if(!$post['icon'] || $post['icon'] < 0)



		$posticons_cache = $cache->read("posticons");

// If we don't have a post icon assign it as 0.
if(empty($post['icon']) || !isset($posticons_cache[$post['icon']]))

		{
$post['icon'] = 0;
}

		{
$post['icon'] = 0;
}

Zeile 549Zeile 579
	* @return boolean True when valid, false when not valid.
*/
function verify_dateline()

	* @return boolean True when valid, false when not valid.
*/
function verify_dateline()

	{

	{

		$dateline = &$this->data['dateline'];

// The date has to be numeric and > 0.

		$dateline = &$this->data['dateline'];

// The date has to be numeric and > 0.

Zeile 558Zeile 588
			$dateline = TIME_NOW;
}
}

			$dateline = TIME_NOW;
}
}

	



	/**
* Verify thread prefix.

	/**
* Verify thread prefix.

	 * 

	 *

	 * @return boolean True when valid, false when not valid.
*/
function verify_prefix()
{
$prefix = &$this->data['prefix'];

	 * @return boolean True when valid, false when not valid.
*/
function verify_prefix()
{
$prefix = &$this->data['prefix'];

		



		// If a valid prefix isn't supplied, don't assign one.

		// If a valid prefix isn't supplied, don't assign one.

		if(!$prefix || $prefix < 1)

		if(empty($prefix))

		{
$prefix = 0;
}

		{
$prefix = 0;
}

		
return true;
}



















































		else
{
$verification = build_prefixes($prefix);
if(!$verification)
{
$this->set_error('invalid_prefix');
return false;
}
if($verification['groups'] != "-1")
{
if(!empty($this->data['edit_uid']))
{
// Post is being edited
$user = get_user($this->data['edit_uid']);
}
else
{
$user = get_user($this->data['uid']);
}
$groups = array($user['usergroup']);
if(!empty($user['additionalgroups']))
{
$groups = array_merge($groups, explode(',', $user['additionalgroups']));
}
$prefix_groups = explode(",", $verification['groups']);

$valid_group = false;
foreach($groups as $group)
{
if(in_array($group, $prefix_groups))
{
$valid_group = true;
break;
}
}
if(!$valid_group)
{
$this->set_error('invalid_prefix');
return false;
}
}
if($verification['forums'] != "-1")
{
// Decide whether this prefix can be used in our forum
$forums = explode(",", $verification['forums']);

if(!in_array($this->data['fid'], $forums))
{
$this->set_error('invalid_prefix');
return false;
}
}
}





	/**




		return true;
}

/**

	 * Validate a post.
*
* @return boolean True when valid, false when invalid.

	 * Validate a post.
*
* @return boolean True when valid, false when invalid.

Zeile 588Zeile 671

$post = &$this->data;
$time = TIME_NOW;


$post = &$this->data;
$time = TIME_NOW;

		



		$this->action = "post";

		$this->action = "post";

		



		if($this->method != "update" && !$post['savedraft'])
{
$this->verify_post_flooding();

		if($this->method != "update" && !$post['savedraft'])
{
$this->verify_post_flooding();

Zeile 601Zeile 684
		if($this->method == "insert" || array_key_exists('uid', $post))
{
$this->verify_author();

		if($this->method == "insert" || array_key_exists('uid', $post))
{
$this->verify_author();

		}

		}


if($this->method == "insert" || array_key_exists('subject', $post))


if($this->method == "insert" || array_key_exists('subject', $post))

		{

		{

			$this->verify_subject();

			$this->verify_subject();

		}


		}


		if($this->method == "insert" || array_key_exists('message', $post))
{
$this->verify_message();

		if($this->method == "insert" || array_key_exists('message', $post))
{
$this->verify_message();

Zeile 623Zeile 706
		if($this->method == "insert" || array_key_exists('replyto', $post))
{
$this->verify_reply_to();

		if($this->method == "insert" || array_key_exists('replyto', $post))
{
$this->verify_reply_to();

		}

		}


if($this->method == "insert" || array_key_exists('icon', $post))


if($this->method == "insert" || array_key_exists('icon', $post))

		{

		{

			$this->verify_post_icon();

			$this->verify_post_icon();

		}


		}


		if($this->method == "insert" || array_key_exists('options', $post))
{
$this->verify_options();

		if($this->method == "insert" || array_key_exists('options', $post))
{
$this->verify_options();

Zeile 646Zeile 729
		else
{
return true;

		else
{
return true;

		}

		}

	}



	}



Zeile 670Zeile 753
		{
die("The post is not valid.");
}

		{
die("The post is not valid.");
}

		



		// Fetch the thread
$thread = get_thread($post['tid']);

// This post is being saved as a draft.
if($post['savedraft'])

		// Fetch the thread
$thread = get_thread($post['tid']);

// This post is being saved as a draft.
if($post['savedraft'])

		{

		{

			$visible = -2;
}

			$visible = -2;
}

		



		// Otherwise this post is being made now and we have a bit to do.
else
{

		// Otherwise this post is being made now and we have a bit to do.
else
{

Zeile 687Zeile 770
			if($post['options']['subscriptionmethod'] != "" && $post['uid'] > 0)
{
switch($post['options']['subscriptionmethod'])

			if($post['options']['subscriptionmethod'] != "" && $post['uid'] > 0)
{
switch($post['options']['subscriptionmethod'])

				{
case "instant":
$notification = 1;
break;
default:
$notification = 0;

				{
case "instant":
$notification = 1;
break;
default:
$notification = 0;

				}

require_once MYBB_ROOT."inc/functions_user.php";

				}

require_once MYBB_ROOT."inc/functions_user.php";

Zeile 732Zeile 815
				// Unstick the thread.
if($modoptions['stickthread'] != 1 && $thread['sticky'])
{

				// Unstick the thread.
if($modoptions['stickthread'] != 1 && $thread['sticky'])
{

					$newstick = "sticky='0'";					

					$newstick = "sticky='0'";

					log_moderator_action($modlogdata, $lang->thread_unstuck);
}


					log_moderator_action($modlogdata, $lang->thread_unstuck);
}


Zeile 752Zeile 835
			}

// Fetch the forum this post is being made in

			}

// Fetch the forum this post is being made in

			$forum = get_forum($post['fid']);


			$forum = get_forum($post['fid']);


			// Decide on the visibility of this post.
if($forum['modposts'] == 1 && !is_moderator($thread['fid'], "", $post['uid']))
{

			// Decide on the visibility of this post.
if($forum['modposts'] == 1 && !is_moderator($thread['fid'], "", $post['uid']))
{

				$visible = 0;
}
else
{
$visible = 1;

				$visible = 0;
}
else
{
$visible = 1;

			}

			}





			// Are posts from this user being moderated? Change visibility
if($mybb->user['uid'] == $post['uid'] && $mybb->user['moderateposts'] == 1)
{
$visible = 0;
}
}

			// Are posts from this user being moderated? Change visibility
if($mybb->user['uid'] == $post['uid'] && $mybb->user['moderateposts'] == 1)
{
$visible = 0;
}
}

		



		$post['pid'] = intval($post['pid']);
$post['uid'] = intval($post['uid']);

		$post['pid'] = intval($post['pid']);
$post['uid'] = intval($post['uid']);





		if($post['pid'] > 0)
{
$query = $db->simple_select("posts", "tid", "pid='{$post['pid']}' AND uid='{$post['uid']}' AND visible='-2'");
$draft_check = $db->fetch_field($query, "tid");

		if($post['pid'] > 0)
{
$query = $db->simple_select("posts", "tid", "pid='{$post['pid']}' AND uid='{$post['uid']}' AND visible='-2'");
$draft_check = $db->fetch_field($query, "tid");

		}

		}

		else

		else

		{

		{

			$draft_check = false;
}

			$draft_check = false;
}

		



		if($this->method != "update" && $visible == 1)
{
$double_post = $this->verify_post_merge();

		if($this->method != "update" && $visible == 1)
{
$double_post = $this->verify_post_merge();





			// Only combine if they are both invisible (mod queue'd forum) or both visible
if($double_post !== true && $double_post['visible'] == $visible)
{
$this->pid = $double_post['pid'];

			// Only combine if they are both invisible (mod queue'd forum) or both visible
if($double_post !== true && $double_post['visible'] == $visible)
{
$this->pid = $double_post['pid'];

				



				$post['message'] = $double_post['message'] .= "\n".$mybb->settings['postmergesep']."\n".$post['message'];
$update_query = array(
"message" => $db->escape_string($double_post['message'])

				$post['message'] = $double_post['message'] .= "\n".$mybb->settings['postmergesep']."\n".$post['message'];
$update_query = array(
"message" => $db->escape_string($double_post['message'])

Zeile 800Zeile 883
				$update_query['edituid'] = intval($post['uid']);
$update_query['edittime'] = TIME_NOW;
$query = $db->update_query("posts", $update_query, "pid='".$double_post['pid']."'");

				$update_query['edituid'] = intval($post['uid']);
$update_query['edittime'] = TIME_NOW;
$query = $db->update_query("posts", $update_query, "pid='".$double_post['pid']."'");

				



				if($draft_check)

				if($draft_check)

				{

				{

					$db->delete_query("posts", "pid='".$post['pid']."'");
}

					$db->delete_query("posts", "pid='".$post['pid']."'");
}

				
// Assign any uploaded attachments with the specific posthash to the merged post.
if($double_post['posthash'])


if($post['posthash'])


				{

				{

 
					// Assign any uploaded attachments with the specific posthash to the merged post.

					$post['posthash'] = $db->escape_string($post['posthash']);

					$post['posthash'] = $db->escape_string($post['posthash']);

					$double_post['posthash'] = $db->escape_string($double_post['posthash']);





					$query = $db->simple_select("attachments", "COUNT(aid) AS attachmentcount", "pid='0' AND visible='1' AND posthash='{$post['posthash']}'");
$attachmentcount = $db->fetch_field($query, "attachmentcount");

					$query = $db->simple_select("attachments", "COUNT(aid) AS attachmentcount", "pid='0' AND visible='1' AND posthash='{$post['posthash']}'");
$attachmentcount = $db->fetch_field($query, "attachmentcount");

				



					if($attachmentcount > 0)
{
// Update forum count
update_thread_counters($post['tid'], array('attachmentcount' => "+{$attachmentcount}"));
}

					if($attachmentcount > 0)
{
// Update forum count
update_thread_counters($post['tid'], array('attachmentcount' => "+{$attachmentcount}"));
}

					



					$attachmentassign = array(
"pid" => $double_post['pid'],

					$attachmentassign = array(
"pid" => $double_post['pid'],

						"posthash" => $double_post['posthash'],

						"posthash" => ''

					);

					);

					$db->update_query("attachments", $attachmentassign, "posthash='{$post['posthash']}'");

$post['posthash'] = $double_post['posthash'];

					$db->update_query("attachments", $attachmentassign, "posthash='{$post['posthash']}' AND pid='0'");



				}

				}

			



				// Return the post's pid and whether or not it is visible.
return array(
"pid" => $double_post['pid'],

				// Return the post's pid and whether or not it is visible.
return array(
"pid" => $double_post['pid'],

Zeile 837Zeile 917
				);
}
}

				);
}
}

		



		if($visible == 1 && $thread['visible'] == 1)
{
$now = TIME_NOW;

		if($visible == 1 && $thread['visible'] == 1)
{
$now = TIME_NOW;

Zeile 850Zeile 930
			{
$update_array['postnum'] = 'postnum+1';
}

			{
$update_array['postnum'] = 'postnum+1';
}

			



			$db->update_query("users", $update_array, "uid='{$post['uid']}'", 1, true);
}


			$db->update_query("users", $update_array, "uid='{$post['uid']}'", 1, true);
}


Zeile 869Zeile 949
				"longipaddress" => intval(my_ip2long($post['ipaddress'])),
"includesig" => $post['options']['signature'],
"smilieoff" => $post['options']['disablesmilies'],

				"longipaddress" => intval(my_ip2long($post['ipaddress'])),
"includesig" => $post['options']['signature'],
"smilieoff" => $post['options']['disablesmilies'],

				"visible" => $visible,
"posthash" => $db->escape_string($post['posthash'])

				"visible" => $visible


			);

$plugins->run_hooks("datahandler_post_insert_post", $this);

			);

$plugins->run_hooks("datahandler_post_insert_post", $this);

Zeile 895Zeile 974
				"longipaddress" => intval(my_ip2long($post['ipaddress'])),
"includesig" => $post['options']['signature'],
"smilieoff" => $post['options']['disablesmilies'],

				"longipaddress" => intval(my_ip2long($post['ipaddress'])),
"includesig" => $post['options']['signature'],
"smilieoff" => $post['options']['disablesmilies'],

				"visible" => $visible,
"posthash" => $db->escape_string($post['posthash'])
);


				"visible" => $visible
);



			$plugins->run_hooks("datahandler_post_insert_post", $this);

$this->pid = $db->insert_query("posts", $this->post_insert_data);

			$plugins->run_hooks("datahandler_post_insert_post", $this);

$this->pid = $db->insert_query("posts", $this->post_insert_data);

		}


		}


		// Assign any uploaded attachments with the specific posthash to the newly created post.
if($post['posthash'])

		// Assign any uploaded attachments with the specific posthash to the newly created post.
if($post['posthash'])

		{

		{

			$post['posthash'] = $db->escape_string($post['posthash']);
$attachmentassign = array(

			$post['posthash'] = $db->escape_string($post['posthash']);
$attachmentassign = array(

				"pid" => $this->pid


				"pid" => $this->pid,
"posthash" => ''

			);

			);

			$db->update_query("attachments", $attachmentassign, "posthash='{$post['posthash']}'");

			$db->update_query("attachments", $attachmentassign, "posthash='{$post['posthash']}' AND pid='0'");

		}

		}





		if($visible == 1 && $thread['visible'] == 1)
{
$thread = get_thread($post['tid']);
require_once MYBB_ROOT.'inc/class_parser.php';
$parser = new Postparser;

		if($visible == 1 && $thread['visible'] == 1)
{
$thread = get_thread($post['tid']);
require_once MYBB_ROOT.'inc/class_parser.php';
$parser = new Postparser;

			



			$done_users = array();

			$done_users = array();

			



			$subject = $parser->parse_badwords($thread['subject']);
$excerpt = $parser->text_parse_message($post['message'], array('me_username' => $post['username'], 'filter_badwords' => 1, 'safe_html' => 1));
$excerpt = my_substr($excerpt, 0, $mybb->settings['subscribeexcerpt']).$lang->emailbit_viewthread;

			$subject = $parser->parse_badwords($thread['subject']);
$excerpt = $parser->text_parse_message($post['message'], array('me_username' => $post['username'], 'filter_badwords' => 1, 'safe_html' => 1));
$excerpt = my_substr($excerpt, 0, $mybb->settings['subscribeexcerpt']).$lang->emailbit_viewthread;

Zeile 942Zeile 1021
					continue;
}
$done_users[$subscribedmember['uid']] = 1;

					continue;
}
$done_users[$subscribedmember['uid']] = 1;

				



				$forumpermissions = forum_permissions($thread['fid'], $subscribedmember['uid']);
if($forumpermissions['canview'] == 0 || $forumpermissions['canviewthreads'] == 0)
{

				$forumpermissions = forum_permissions($thread['fid'], $subscribedmember['uid']);
if($forumpermissions['canview'] == 0 || $forumpermissions['canviewthreads'] == 0)
{

Zeile 954Zeile 1033
					// User isn't a moderator or the author of the thread...
continue;
}

					// User isn't a moderator or the author of the thread...
continue;
}

				



				if($subscribedmember['language'] != '' && $lang->language_exists($subscribedmember['language']))

				if($subscribedmember['language'] != '' && $lang->language_exists($subscribedmember['language']))

				{

				{

					$uselang = $subscribedmember['language'];

					$uselang = $subscribedmember['language'];

				}

				}

				elseif($mybb->settings['orig_bblanguage'])
{
$uselang = $mybb->settings['orig_bblanguage'];

				elseif($mybb->settings['orig_bblanguage'])
{
$uselang = $mybb->settings['orig_bblanguage'];

				}

				}

				else
{
$uselang = "english";

				else
{
$uselang = "english";

				}


				}


				if($uselang == $mybb->settings['bblanguage'])
{
$emailsubject = $lang->emailsubject_subscription;

				if($uselang == $mybb->settings['bblanguage'])
{
$emailsubject = $lang->emailsubject_subscription;

Zeile 989Zeile 1068
					$emailmessage = $langcache[$uselang]['email_subscription'];
}
$emailsubject = $lang->sprintf($emailsubject, $subject);

					$emailmessage = $langcache[$uselang]['email_subscription'];
}
$emailsubject = $lang->sprintf($emailsubject, $subject);

				
$post_code = md5($subscribedmember['loginkey'].$subscribedmember['salt'].$subscribedmember['regdate']);


$post_code = md5($subscribedmember['loginkey'].$subscribedmember['salt'].$subscribedmember['regdate']);

				$emailmessage = $lang->sprintf($emailmessage, $subscribedmember['username'], $post['username'], $mybb->settings['bbname'], $subject, $excerpt, $mybb->settings['bburl'], str_replace("&amp;", "&", get_thread_link($thread['tid'], 0, "newpost")), $thread['tid'], $subscribedmember['subscriptionkey'], $post_code);
$new_email = array(
"mailto" => $db->escape_string($subscribedmember['email']),

				$emailmessage = $lang->sprintf($emailmessage, $subscribedmember['username'], $post['username'], $mybb->settings['bbname'], $subject, $excerpt, $mybb->settings['bburl'], str_replace("&amp;", "&", get_thread_link($thread['tid'], 0, "newpost")), $thread['tid'], $subscribedmember['subscriptionkey'], $post_code);
$new_email = array(
"mailto" => $db->escape_string($subscribedmember['email']),

Zeile 1013Zeile 1092
			// Update forum count
update_thread_counters($post['tid'], $thread_update);
update_forum_counters($post['fid'], array("posts" => "+1"));

			// Update forum count
update_thread_counters($post['tid'], $thread_update);
update_forum_counters($post['fid'], array("posts" => "+1"));

		}

		}

		// Post is stuck in moderation queue
else if($visible == 0)

		// Post is stuck in moderation queue
else if($visible == 0)

		{

		{

			// Update the unapproved posts count for the current thread and current forum
update_thread_counters($post['tid'], array("unapprovedposts" => "+1"));

			// Update the unapproved posts count for the current thread and current forum
update_thread_counters($post['tid'], array("unapprovedposts" => "+1"));

			update_forum_counters($post['fid'], array("unapprovedposts" => "+1"));

			update_forum_counters($post['fid'], array("unapprovedposts" => "+1"));

		}
else if($thread['visible'] == 0)

		}
else if($thread['visible'] == 0)

		{

		{

			// Update the unapproved posts count for the current forum
update_thread_counters($post['tid'], array("replies" => "+1"));
update_forum_counters($post['fid'], array("unapprovedposts" => "+1"));

			// Update the unapproved posts count for the current forum
update_thread_counters($post['tid'], array("replies" => "+1"));
update_forum_counters($post['fid'], array("unapprovedposts" => "+1"));

 
		}

$query = $db->simple_select("attachments", "COUNT(aid) AS attachmentcount", "pid='{$this->pid}' AND visible='1'");
$attachmentcount = $db->fetch_field($query, "attachmentcount");
if($attachmentcount > 0)
{
update_thread_counters($post['tid'], array("attachmentcount" => "+{$attachmentcount}"));

		}

// Return the post's pid and whether or not it is visible.

		}

// Return the post's pid and whether or not it is visible.

Zeile 1047Zeile 1133
		$thread = &$this->data;

// Validate all thread assets.

		$thread = &$this->data;

// Validate all thread assets.

		



		if(!$thread['savedraft'])

		if(!$thread['savedraft'])

		{

		{

			$this->verify_post_flooding();

			$this->verify_post_flooding();

		}


		}


		if($this->method == "insert" || array_key_exists('uid', $thread))
{
$this->verify_author();
}

		if($this->method == "insert" || array_key_exists('uid', $thread))
{
$this->verify_author();
}

		



		if($this->method == "insert" || array_key_exists('prefix', $thread))

		if($this->method == "insert" || array_key_exists('prefix', $thread))

		{

		{

			$this->verify_prefix();

			$this->verify_prefix();

		}


		}


		if($this->method == "insert" || array_key_exists('subject', $thread))
{
$this->verify_subject();

		if($this->method == "insert" || array_key_exists('subject', $thread))
{
$this->verify_subject();

Zeile 1073Zeile 1159
			$this->verify_message();
$this->verify_image_count();
$this->verify_video_count();

			$this->verify_message();
$this->verify_image_count();
$this->verify_video_count();

		}

		}


if($this->method == "insert" || array_key_exists('dateline', $thread))
{


if($this->method == "insert" || array_key_exists('dateline', $thread))
{

Zeile 1081Zeile 1167
		}

if($this->method == "insert" || array_key_exists('icon', $thread))

		}

if($this->method == "insert" || array_key_exists('icon', $thread))

		{

		{

			$this->verify_post_icon();
}


			$this->verify_post_icon();
}


Zeile 1170Zeile 1256
		else
{
$draft_check = false;

		else
{
$draft_check = false;

		}


		}


		// Are we updating a post which is already a draft? Perhaps changing it into a visible post?
if($draft_check)
{
$this->thread_insert_data = array(

		// Are we updating a post which is already a draft? Perhaps changing it into a visible post?
if($draft_check)
{
$this->thread_insert_data = array(

				"subject" => $db->escape_string($thread['subject']),
"icon" => intval($thread['icon']),
"username" => $db->escape_string($thread['username']),

				"subject" => $db->escape_string($thread['subject']),
"icon" => intval($thread['icon']),
"username" => $db->escape_string($thread['username']),

				"dateline" => intval($thread['dateline']),
"lastpost" => intval($thread['dateline']),
"lastposter" => $db->escape_string($thread['username']),

				"dateline" => intval($thread['dateline']),
"lastpost" => intval($thread['dateline']),
"lastposter" => $db->escape_string($thread['username']),

Zeile 1188Zeile 1274
			$plugins->run_hooks("datahandler_post_insert_thread", $this);

$db->update_query("threads", $this->thread_insert_data, "tid='{$thread['tid']}'");

			$plugins->run_hooks("datahandler_post_insert_thread", $this);

$db->update_query("threads", $this->thread_insert_data, "tid='{$thread['tid']}'");


$this->post_insert_data = array(
"subject" => $db->escape_string($thread['subject']),
"icon" => intval($thread['icon']),
"username" => $db->escape_string($thread['username']),
"dateline" => intval($thread['dateline']),


$this->post_insert_data = array(
"subject" => $db->escape_string($thread['subject']),
"icon" => intval($thread['icon']),
"username" => $db->escape_string($thread['username']),
"dateline" => intval($thread['dateline']),

				"message" => $db->escape_string($thread['message']),
"ipaddress" => $db->escape_string(get_ip()),
"includesig" => $thread['options']['signature'],
"smilieoff" => $thread['options']['disablesmilies'],

				"message" => $db->escape_string($thread['message']),
"ipaddress" => $db->escape_string(get_ip()),
"includesig" => $thread['options']['signature'],
"smilieoff" => $thread['options']['disablesmilies'],

				"visible" => $visible,
"posthash" => $db->escape_string($thread['posthash'])

				"visible" => $visible


			);
$plugins->run_hooks("datahandler_post_insert_thread_post", $this);


			);
$plugins->run_hooks("datahandler_post_insert_thread_post", $this);


Zeile 1215Zeile 1300
				"fid" => $thread['fid'],
"subject" => $db->escape_string($thread['subject']),
"prefix" => intval($thread['prefix']),

				"fid" => $thread['fid'],
"subject" => $db->escape_string($thread['subject']),
"prefix" => intval($thread['prefix']),

				"icon" => intval($thread['icon']),
"uid" => $thread['uid'],
"username" => $db->escape_string($thread['username']),

				"icon" => intval($thread['icon']),
"uid" => $thread['uid'],
"username" => $db->escape_string($thread['username']),

				"dateline" => intval($thread['dateline']),
"lastpost" => intval($thread['dateline']),
"lastposter" => $db->escape_string($thread['username']),

				"dateline" => intval($thread['dateline']),
"lastpost" => intval($thread['dateline']),
"lastposter" => $db->escape_string($thread['username']),

Zeile 1244Zeile 1329
				"longipaddress" => intval(my_ip2long(get_ip())),
"includesig" => $thread['options']['signature'],
"smilieoff" => $thread['options']['disablesmilies'],

				"longipaddress" => intval(my_ip2long(get_ip())),
"includesig" => $thread['options']['signature'],
"smilieoff" => $thread['options']['disablesmilies'],

				"visible" => $visible,
"posthash" => $db->escape_string($thread['posthash'])

				"visible" => $visible


			);
$plugins->run_hooks("datahandler_post_insert_thread_post", $this);


			);
$plugins->run_hooks("datahandler_post_insert_thread_post", $this);


Zeile 1262Zeile 1346
			if($thread['options']['subscriptionmethod'] != "" && $thread['uid'] > 0)
{
switch($thread['options']['subscriptionmethod'])

			if($thread['options']['subscriptionmethod'] != "" && $thread['uid'] > 0)
{
switch($thread['options']['subscriptionmethod'])

				{

				{

					case "instant":
$notification = 1;
break;
default:
$notification = 0;
}

					case "instant":
$notification = 1;
break;
default:
$notification = 0;
}





				require_once MYBB_ROOT."inc/functions_user.php";
add_subscribed_thread($this->tid, $notification, $thread['uid']);
}

				require_once MYBB_ROOT."inc/functions_user.php";
add_subscribed_thread($this->tid, $notification, $thread['uid']);
}





			// Perform any selected moderation tools.
if(is_moderator($thread['fid'], "", $thread['uid']) && is_array($thread['modoptions']))
{
$lang->load($this->language_file, true);

			// Perform any selected moderation tools.
if(is_moderator($thread['fid'], "", $thread['uid']) && is_array($thread['modoptions']))
{
$lang->load($this->language_file, true);

				



				$modoptions = $thread['modoptions'];

				$modoptions = $thread['modoptions'];

				$modlogdata['fid'] = $this->tid;
$modlogdata['tid'] = $thread['tid'];

				$modlogdata['fid'] = $thread['fid'];
$modlogdata['tid'] = $this->tid;


// Close the thread.
if($modoptions['closethread'] == 1)


// Close the thread.
if($modoptions['closethread'] == 1)

Zeile 1336Zeile 1420
						$db->update_query("users", $update_query, "uid='{$thread['uid']}'", 1, true);
}
}

						$db->update_query("users", $update_query, "uid='{$thread['uid']}'", 1, true);
}
}

				



				if(!$forum['lastpost'])
{
$forum['lastpost'] = 0;
}

				if(!$forum['lastpost'])
{
$forum['lastpost'] = 0;
}

				



				$done_users = array();

				$done_users = array();

				



				// Queue up any forum subscription notices to users who are subscribed to this forum.
$excerpt = my_substr($thread['message'], 0, $mybb->settings['subscribeexcerpt']).$lang->emailbit_viewthread;

				// Queue up any forum subscription notices to users who are subscribed to this forum.
$excerpt = my_substr($thread['message'], 0, $mybb->settings['subscribeexcerpt']).$lang->emailbit_viewthread;

				



				// Parse badwords
require_once MYBB_ROOT."inc/class_parser.php";
$parser = new postParser;

				// Parse badwords
require_once MYBB_ROOT."inc/class_parser.php";
$parser = new postParser;

Zeile 1369Zeile 1453
						continue;
}
$done_users[$subscribedmember['uid']] = 1;

						continue;
}
$done_users[$subscribedmember['uid']] = 1;

					



					$forumpermissions = forum_permissions($thread['fid'], $subscribedmember['uid']);
if($forumpermissions['canview'] == 0 || $forumpermissions['canviewthreads'] == 0)
{

					$forumpermissions = forum_permissions($thread['fid'], $subscribedmember['uid']);
if($forumpermissions['canview'] == 0 || $forumpermissions['canviewthreads'] == 0)
{

Zeile 1417Zeile 1501
						$emailmessage = $langcache[$uselang]['email_forumsubscription'];
}
$emailsubject = $lang->sprintf($emailsubject, $forum['name']);

						$emailmessage = $langcache[$uselang]['email_forumsubscription'];
}
$emailsubject = $lang->sprintf($emailsubject, $forum['name']);

					



					$post_code = md5($subscribedmember['loginkey'].$subscribedmember['salt'].$subscribedmember['regdate']);
$emailmessage = $lang->sprintf($emailmessage, $subscribedmember['username'], $thread['username'], $forum['name'], $mybb->settings['bbname'], $thread['subject'], $excerpt, $mybb->settings['bburl'], get_thread_link($this->tid), $thread['fid'], $post_code);
$new_email = array(

					$post_code = md5($subscribedmember['loginkey'].$subscribedmember['salt'].$subscribedmember['regdate']);
$emailmessage = $lang->sprintf($emailmessage, $subscribedmember['username'], $thread['username'], $forum['name'], $mybb->settings['bbname'], $thread['subject'], $excerpt, $mybb->settings['bburl'], get_thread_link($this->tid), $thread['fid'], $post_code);
$new_email = array(

Zeile 1444Zeile 1528
		{
$thread['posthash'] = $db->escape_string($thread['posthash']);
$attachmentassign = array(

		{
$thread['posthash'] = $db->escape_string($thread['posthash']);
$attachmentassign = array(

				"pid" => $this->pid


				"pid" => $this->pid,
"posthash" => ''

			);

			);

			$db->update_query("attachments", $attachmentassign, "posthash='{$thread['posthash']}'");

			$db->update_query("attachments", $attachmentassign, "posthash='{$thread['posthash']}' AND pid='0'");

		}

		}

		



		if($visible == 1)
{
update_thread_data($this->tid);

		if($visible == 1)
{
update_thread_data($this->tid);

Zeile 1460Zeile 1545
			update_thread_counters($this->tid, array("replies" => 0));
update_forum_counters($thread['fid'], array("unapprovedthreads" => "+1", "unapprovedposts" => "+1"));
}

			update_thread_counters($this->tid, array("replies" => 0));
update_forum_counters($thread['fid'], array("unapprovedthreads" => "+1", "unapprovedposts" => "+1"));
}

		



		$query = $db->simple_select("attachments", "COUNT(aid) AS attachmentcount", "pid='{$this->pid}' AND visible='1'");
$attachmentcount = $db->fetch_field($query, "attachmentcount");
if($attachmentcount > 0)

		$query = $db->simple_select("attachments", "COUNT(aid) AS attachmentcount", "pid='{$this->pid}' AND visible='1'");
$attachmentcount = $db->fetch_field($query, "attachmentcount");
if($attachmentcount > 0)

Zeile 1497Zeile 1582
		$post = &$this->data;

$post['pid'] = intval($post['pid']);

		$post = &$this->data;

$post['pid'] = intval($post['pid']);

		



		$existing_post = get_post($post['pid']);
$post['tid'] = $existing_post['tid'];
$post['fid'] = $existing_post['fid'];

		$existing_post = get_post($post['pid']);
$post['tid'] = $existing_post['tid'];
$post['fid'] = $existing_post['fid'];

		



		$forum = get_forum($post['fid']);

// Decide on the visibility of this post.

		$forum = get_forum($post['fid']);

// Decide on the visibility of this post.

Zeile 1514Zeile 1599
                    update_thread_data($existing_post['tid']);
update_thread_counters($existing_post['tid'], array('replies' => '-1', 'unapprovedposts' => '+1'));
update_forum_counters($existing_post['fid'], array('unapprovedthreads' => '+1', 'unapprovedposts' => '+1'));

                    update_thread_data($existing_post['tid']);
update_thread_counters($existing_post['tid'], array('replies' => '-1', 'unapprovedposts' => '+1'));
update_forum_counters($existing_post['fid'], array('unapprovedthreads' => '+1', 'unapprovedposts' => '+1'));

                    



                    // Subtract from the users post count
// Update the post count if this forum allows post counts to be tracked
if($forum['usepostcounts'] != 0)

                    // Subtract from the users post count
// Update the post count if this forum allows post counts to be tracked
if($forum['usepostcounts'] != 0)

Zeile 1531Zeile 1616
                    update_thread_data($existing_post['tid']);
update_thread_counters($existing_post['tid'], array('replies' => '+1', 'unapprovedposts' => '-1'));
update_forum_counters($existing_post['fid'], array('unapprovedthreads' => '-1', 'unapprovedposts' => '-1'));

                    update_thread_data($existing_post['tid']);
update_thread_counters($existing_post['tid'], array('replies' => '+1', 'unapprovedposts' => '-1'));
update_forum_counters($existing_post['fid'], array('unapprovedthreads' => '-1', 'unapprovedposts' => '-1'));

                    



                    // Update the post count if this forum allows post counts to be tracked
if($forum['usepostcounts'] != 0)
{

                    // Update the post count if this forum allows post counts to be tracked
if($forum['usepostcounts'] != 0)
{

Zeile 1567Zeile 1652
		{
$first_post = false;
}

		{
$first_post = false;
}

		



		if($existing_post['visible'] == 0)
{
$visible = 0;
}

		if($existing_post['visible'] == 0)
{
$visible = 0;
}

		



		// Update the thread details that might have been changed first.
if($first_post)

		// Update the thread details that might have been changed first.
if($first_post)

		{			

		{

			$this->tid = $post['tid'];

$this->thread_update_data['visible'] = $visible;

			$this->tid = $post['tid'];

$this->thread_update_data['visible'] = $visible;

			



			if(isset($post['prefix']))
{
$this->thread_update_data['prefix'] = intval($post['prefix']);

			if(isset($post['prefix']))
{
$this->thread_update_data['prefix'] = intval($post['prefix']);

			}


			}


			if(isset($post['subject']))
{
$this->thread_update_data['subject'] = $db->escape_string($post['subject']);

			if(isset($post['subject']))
{
$this->thread_update_data['subject'] = $db->escape_string($post['subject']);

Zeile 1597Zeile 1682
			if(count($this->thread_update_data) > 0)
{
$plugins->run_hooks("datahandler_post_update_thread", $this);

			if(count($this->thread_update_data) > 0)
{
$plugins->run_hooks("datahandler_post_update_thread", $this);





				$db->update_query("threads", $this->thread_update_data, "tid='".intval($post['tid'])."'");
}

				$db->update_query("threads", $this->thread_update_data, "tid='".intval($post['tid'])."'");
}

		}

// Prepare array for post updating.


		}

// Prepare array for post updating.


		$this->pid = $post['pid'];

if(isset($post['subject']))

		$this->pid = $post['pid'];

if(isset($post['subject']))

Zeile 1619Zeile 1704
		if(isset($post['icon']))
{
$this->post_update_data['icon'] = intval($post['icon']);

		if(isset($post['icon']))
{
$this->post_update_data['icon'] = intval($post['icon']);

		}

		}


if(isset($post['options']))


if(isset($post['options']))

		{

		{

			if(isset($post['options']['disablesmilies']))
{
$this->post_update_data['smilieoff'] = $db->escape_string($post['options']['disablesmilies']);

			if(isset($post['options']['disablesmilies']))
{
$this->post_update_data['smilieoff'] = $db->escape_string($post['options']['disablesmilies']);

Zeile 1641Zeile 1726
		}

$this->post_update_data['visible'] = $visible;

		}

$this->post_update_data['visible'] = $visible;

		



		$plugins->run_hooks("datahandler_post_update", $this);

$db->update_query("posts", $this->post_update_data, "pid='".intval($post['pid'])."'");

		$plugins->run_hooks("datahandler_post_update", $this);

$db->update_query("posts", $this->post_update_data, "pid='".intval($post['pid'])."'");