2015-05-06 13:42:02 +00:00
|
|
|
<?php
|
|
|
|
/*
|
|
|
|
* Sakura Forum Posting
|
|
|
|
*/
|
|
|
|
|
|
|
|
// Declare Namespace
|
|
|
|
namespace Sakura;
|
|
|
|
|
2016-03-20 22:49:42 +00:00
|
|
|
use Sakura\Forum\Forum;
|
|
|
|
use Sakura\Forum\Post;
|
|
|
|
use Sakura\Forum\Thread;
|
2015-12-29 21:52:19 +00:00
|
|
|
use Sakura\Perms\Forum as ForumPerms;
|
|
|
|
|
2015-05-06 13:42:02 +00:00
|
|
|
// Include components
|
2016-03-20 22:49:42 +00:00
|
|
|
require_once '../sakura.php';
|
2015-07-30 18:51:24 +00:00
|
|
|
|
|
|
|
// Set location
|
2015-10-18 16:48:05 +00:00
|
|
|
$topicId = isset($_GET['t']) ?
|
|
|
|
$_GET['t'] :
|
2015-09-14 21:41:43 +00:00
|
|
|
(
|
2015-10-18 16:48:05 +00:00
|
|
|
isset($_GET['p']) ?
|
2016-03-20 22:49:42 +00:00
|
|
|
(new Post($_GET['p']))->thread :
|
2015-10-18 16:48:05 +00:00
|
|
|
0
|
2015-09-14 21:41:43 +00:00
|
|
|
);
|
2015-10-18 16:48:05 +00:00
|
|
|
|
2015-12-13 23:29:53 +00:00
|
|
|
// Get the topic
|
|
|
|
if ($topicId) {
|
2016-03-20 22:49:42 +00:00
|
|
|
$thread = new Thread($topicId);
|
2015-12-13 23:29:53 +00:00
|
|
|
}
|
|
|
|
|
2015-10-18 16:48:05 +00:00
|
|
|
$forumId = isset($_GET['f']) ?
|
|
|
|
$_GET['f'] :
|
2016-03-25 01:31:57 +00:00
|
|
|
($topicId ? $thread->forum : 0);
|
2015-10-18 16:48:05 +00:00
|
|
|
|
2015-12-29 21:52:19 +00:00
|
|
|
// Creare forum class
|
2016-03-20 22:49:42 +00:00
|
|
|
$forum = new Forum($forumId);
|
2015-12-29 21:52:19 +00:00
|
|
|
|
|
|
|
// Check if the user has access to the forum
|
2016-03-24 00:40:59 +00:00
|
|
|
if (!$forum->permission(ForumPerms::VIEW, $currentUser->id)
|
|
|
|
|| !$forum->permission(ForumPerms::REPLY, $currentUser->id)) {
|
2015-12-29 21:52:19 +00:00
|
|
|
// Set render data
|
|
|
|
$renderData['page'] = [
|
|
|
|
'title' => 'Information',
|
|
|
|
'message' => 'You do not have access to this forum.',
|
|
|
|
];
|
|
|
|
|
|
|
|
// Set parse variables
|
2016-02-04 20:56:40 +00:00
|
|
|
Template::vars($renderData);
|
2015-12-29 21:52:19 +00:00
|
|
|
|
|
|
|
// Print page contents
|
2016-02-04 20:56:40 +00:00
|
|
|
echo Template::render('global/information');
|
2015-12-29 21:52:19 +00:00
|
|
|
exit;
|
|
|
|
}
|
|
|
|
|
2016-01-10 18:24:47 +00:00
|
|
|
// Check if the user has access to the forum
|
2016-03-24 00:40:59 +00:00
|
|
|
if (!isset($thread)
|
|
|
|
&& !$forum->permission(ForumPerms::CREATE_THREADS, $currentUser->id)) {
|
2016-01-10 18:24:47 +00:00
|
|
|
// Set render data
|
|
|
|
$renderData['page'] = [
|
|
|
|
'title' => 'Information',
|
|
|
|
'message' => 'You are not allowed to create threads in this forum.',
|
|
|
|
];
|
|
|
|
|
|
|
|
// Set parse variables
|
2016-02-04 20:56:40 +00:00
|
|
|
Template::vars($renderData);
|
2016-01-10 18:24:47 +00:00
|
|
|
|
|
|
|
// Print page contents
|
2016-02-04 20:56:40 +00:00
|
|
|
echo Template::render('global/information');
|
2016-01-10 18:24:47 +00:00
|
|
|
exit;
|
|
|
|
}
|
|
|
|
|
2016-03-20 22:49:42 +00:00
|
|
|
$mode = isset($_GET['f'])
|
|
|
|
// New thread
|
|
|
|
? 'f'
|
|
|
|
: (
|
|
|
|
isset($_GET['t'])
|
|
|
|
// Reply to thread
|
|
|
|
? 't'
|
|
|
|
: (
|
|
|
|
isset($_GET['p'])
|
|
|
|
// Quoting a post
|
|
|
|
? 'p'
|
|
|
|
: null
|
|
|
|
)
|
|
|
|
);
|
2015-10-20 00:49:09 +00:00
|
|
|
|
|
|
|
// Check if we're in reply mode
|
|
|
|
if ($mode != 'f') {
|
|
|
|
// Attempt to get the topic
|
2016-03-20 22:49:42 +00:00
|
|
|
$thread = $thread ? $thread : new Thread($topicId);
|
2015-10-20 00:49:09 +00:00
|
|
|
|
|
|
|
// Prompt an error if the topic doesn't exist
|
2015-12-11 20:49:40 +00:00
|
|
|
if (!$thread->id) {
|
2015-10-20 00:49:09 +00:00
|
|
|
// Add page specific things
|
|
|
|
$renderData['page'] = [
|
2016-03-11 19:13:14 +00:00
|
|
|
'redirect' => (isset($_SERVER['HTTP_REFERER']) ? $_SERVER['HTTP_REFERER'] : Router::route('forums.index')),
|
2015-10-22 14:24:18 +00:00
|
|
|
'message' => 'The requested post does not exist.',
|
2015-10-20 00:49:09 +00:00
|
|
|
];
|
|
|
|
|
2015-11-06 22:30:37 +00:00
|
|
|
// Set parse variables
|
2016-02-04 20:56:40 +00:00
|
|
|
Template::vars($renderData);
|
2015-11-06 22:30:37 +00:00
|
|
|
|
|
|
|
// Print page contents
|
2016-02-04 20:56:40 +00:00
|
|
|
echo Template::render('global/information');
|
2015-10-20 00:49:09 +00:00
|
|
|
exit;
|
|
|
|
}
|
|
|
|
|
2016-01-10 18:24:47 +00:00
|
|
|
// Prompt an error if the topic doesn't exist
|
2016-03-24 00:40:59 +00:00
|
|
|
if ($thread->status == 1
|
|
|
|
&& !$forum->permission(ForumPerms::LOCK, $currentUser->id)) {
|
|
|
|
|
2016-01-10 18:24:47 +00:00
|
|
|
// Add page specific things
|
|
|
|
$renderData['page'] = [
|
2016-03-11 19:13:14 +00:00
|
|
|
'redirect' => (isset($_SERVER['HTTP_REFERER']) ? $_SERVER['HTTP_REFERER'] : Router::route('forums.index')),
|
2016-01-10 18:24:47 +00:00
|
|
|
'message' => 'The thread you tried to reply to is locked.',
|
|
|
|
];
|
|
|
|
|
|
|
|
// Set parse variables
|
2016-02-04 20:56:40 +00:00
|
|
|
Template::vars($renderData);
|
2016-01-10 18:24:47 +00:00
|
|
|
|
|
|
|
// Print page contents
|
2016-02-04 20:56:40 +00:00
|
|
|
echo Template::render('global/information');
|
2016-01-10 18:24:47 +00:00
|
|
|
exit;
|
2016-03-24 00:40:59 +00:00
|
|
|
} elseif ($mode == 'p'
|
|
|
|
&& isset($_GET['edit'])
|
|
|
|
&& $_GET['edit'] == $_GET['p']
|
|
|
|
&& array_key_exists($_GET['p'], $thread->posts())) {
|
|
|
|
|
2016-01-10 18:24:47 +00:00
|
|
|
// Permissions
|
|
|
|
if (!$currentUser->permission(ForumPerms::EDIT_OWN, Perms::FORUM)) {
|
|
|
|
// Add page specific things
|
|
|
|
$renderData['page'] = [
|
2016-03-11 19:13:14 +00:00
|
|
|
'redirect' => (isset($_SERVER['HTTP_REFERER']) ? $_SERVER['HTTP_REFERER'] : Router::route('forums.index')),
|
2016-01-10 18:24:47 +00:00
|
|
|
'message' => 'You are not allowed to edit posts!',
|
|
|
|
];
|
|
|
|
|
|
|
|
// Set parse variables
|
2016-02-04 20:56:40 +00:00
|
|
|
Template::vars($renderData);
|
2016-01-10 18:24:47 +00:00
|
|
|
|
|
|
|
// Print page contents
|
2016-02-04 20:56:40 +00:00
|
|
|
echo Template::render('global/information');
|
2016-01-10 18:24:47 +00:00
|
|
|
exit;
|
|
|
|
}
|
2016-03-24 00:40:59 +00:00
|
|
|
|
2015-10-22 14:24:18 +00:00
|
|
|
// Checks
|
2016-03-24 00:40:59 +00:00
|
|
|
if ($thread->posts()[$_GET['p']]->poster->id != $currentUser->id
|
|
|
|
&& !$forum->permission(ForumPerms::EDIT_ANY, $currentUser->id)) {
|
|
|
|
|
2015-10-22 14:24:18 +00:00
|
|
|
// Add page specific things
|
|
|
|
$renderData['page'] = [
|
2016-03-11 19:13:14 +00:00
|
|
|
'redirect' => (isset($_SERVER['HTTP_REFERER']) ? $_SERVER['HTTP_REFERER'] : Router::route('forums.index')),
|
2015-10-22 14:24:18 +00:00
|
|
|
'message' => 'You can only edit your own posts!',
|
|
|
|
];
|
|
|
|
|
2015-11-06 22:30:37 +00:00
|
|
|
// Set parse variables
|
2016-02-04 20:56:40 +00:00
|
|
|
Template::vars($renderData);
|
2015-11-06 22:30:37 +00:00
|
|
|
|
|
|
|
// Print page contents
|
2016-02-04 20:56:40 +00:00
|
|
|
echo Template::render('global/information');
|
2015-10-22 14:24:18 +00:00
|
|
|
exit;
|
|
|
|
}
|
|
|
|
|
|
|
|
// Reassign post for ease
|
2015-12-11 20:49:40 +00:00
|
|
|
$post = $thread->posts()[$_GET['p']];
|
2015-10-22 14:24:18 +00:00
|
|
|
|
|
|
|
// Set variables
|
|
|
|
$posting = array_merge($posting, [
|
2015-12-11 20:49:40 +00:00
|
|
|
'subject' => $post->subject,
|
|
|
|
'text' => BBcode::toEditor($post->text),
|
|
|
|
'id' => $post->id,
|
2015-10-22 14:24:18 +00:00
|
|
|
]);
|
2015-10-24 08:55:45 +00:00
|
|
|
// Post deletion
|
2016-03-24 00:40:59 +00:00
|
|
|
} elseif ($mode == 'p'
|
|
|
|
&& isset($_GET['delete'])
|
|
|
|
&& $_GET['delete'] == $_GET['p']
|
|
|
|
&& array_key_exists($_GET['p'], $thread->posts())) {
|
|
|
|
|
2016-01-10 18:24:47 +00:00
|
|
|
// Permissions
|
|
|
|
if (!$currentUser->permission(ForumPerms::DELETE_OWN, Perms::FORUM)) {
|
2016-01-09 21:57:54 +00:00
|
|
|
// Add page specific things
|
|
|
|
$renderData['page'] = [
|
2016-03-11 19:13:14 +00:00
|
|
|
'redirect' => (isset($_SERVER['HTTP_REFERER']) ? $_SERVER['HTTP_REFERER'] : Router::route('forums.index')),
|
2016-01-10 18:24:47 +00:00
|
|
|
'message' => 'You are not allowed to delete posts!',
|
2016-01-09 21:57:54 +00:00
|
|
|
];
|
|
|
|
|
|
|
|
// Set parse variables
|
2016-02-04 20:56:40 +00:00
|
|
|
Template::vars($renderData);
|
2016-01-09 21:57:54 +00:00
|
|
|
|
|
|
|
// Print page contents
|
2016-02-04 20:56:40 +00:00
|
|
|
echo Template::render('global/information');
|
2016-01-09 21:57:54 +00:00
|
|
|
exit;
|
|
|
|
}
|
|
|
|
|
2016-01-10 18:24:47 +00:00
|
|
|
// Checks
|
2016-03-24 00:40:59 +00:00
|
|
|
if ($thread->posts()[$_GET['p']]->poster->id != $currentUser->id
|
|
|
|
&& !$forum->permission(ForumPerms::DELETE_ANY, $currentUser->id)) {
|
2015-10-22 14:24:18 +00:00
|
|
|
// Add page specific things
|
|
|
|
$renderData['page'] = [
|
2016-03-11 19:13:14 +00:00
|
|
|
'redirect' => (isset($_SERVER['HTTP_REFERER']) ? $_SERVER['HTTP_REFERER'] : Router::route('forums.index')),
|
2015-10-22 14:24:18 +00:00
|
|
|
'message' => 'You can only delete your own posts!',
|
|
|
|
];
|
|
|
|
|
2015-11-06 22:30:37 +00:00
|
|
|
// Set parse variables
|
2016-02-04 20:56:40 +00:00
|
|
|
Template::vars($renderData);
|
2015-11-06 22:30:37 +00:00
|
|
|
|
|
|
|
// Print page contents
|
2016-02-04 20:56:40 +00:00
|
|
|
echo Template::render('global/information');
|
2015-10-22 14:24:18 +00:00
|
|
|
exit;
|
|
|
|
}
|
|
|
|
|
|
|
|
// Submit mode
|
|
|
|
if (isset($_POST['timestamp'], $_POST['sessionid'], $_POST['post_id'])) {
|
|
|
|
// Post deletion code
|
|
|
|
if (isset($_POST['yes'])) {
|
|
|
|
// Delete the post
|
2016-03-13 20:35:51 +00:00
|
|
|
DB::table('posts')
|
|
|
|
->where('post_id', $_POST['post_id'])
|
|
|
|
->delete();
|
2015-10-22 14:24:18 +00:00
|
|
|
|
|
|
|
// Reload the topic
|
2016-03-20 22:49:42 +00:00
|
|
|
$thread = new Thread($topicId);
|
2015-10-22 14:24:18 +00:00
|
|
|
|
|
|
|
// If there's no more posts left in the topic delete it as well
|
2015-12-11 20:49:40 +00:00
|
|
|
if (!$thread->replyCount()) {
|
2016-03-13 20:35:51 +00:00
|
|
|
DB::table('topics')
|
|
|
|
->where('topic_id', $thread->id)
|
|
|
|
->delete();
|
2015-10-22 14:24:18 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
// Add page specific things
|
|
|
|
$renderData['page'] = [
|
2016-03-11 19:13:14 +00:00
|
|
|
'redirect' => ($thread->replyCount() ? Router::route('forums.thread', $thread->id) : Router::route('forums.index')),
|
2015-10-22 14:24:18 +00:00
|
|
|
'message' => 'Your post has been deleted!',
|
|
|
|
];
|
|
|
|
|
2015-11-06 22:30:37 +00:00
|
|
|
// Set parse variables
|
2016-02-04 20:56:40 +00:00
|
|
|
Template::vars($renderData);
|
2015-11-06 22:30:37 +00:00
|
|
|
|
|
|
|
// Print page contents
|
2016-02-04 20:56:40 +00:00
|
|
|
echo Template::render('global/information');
|
2015-10-22 14:24:18 +00:00
|
|
|
exit;
|
2015-10-24 08:55:45 +00:00
|
|
|
// Return to previous page
|
2015-10-22 14:24:18 +00:00
|
|
|
} else {
|
2016-03-20 16:37:59 +00:00
|
|
|
header('Location: ' . Router::route('forums.post', $_POST['post_id']));
|
2015-10-22 14:24:18 +00:00
|
|
|
exit;
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
// Form mode
|
|
|
|
$renderData = array_merge($renderData, [
|
2016-03-20 22:49:42 +00:00
|
|
|
'message' => "Are you sure you want to delete your reply to {$thread->title}?",
|
2015-10-22 14:24:18 +00:00
|
|
|
'conditions' => [
|
2015-12-11 20:49:40 +00:00
|
|
|
'post_id' => $thread->posts()[$_GET['p']]->id,
|
2015-10-24 08:55:45 +00:00
|
|
|
],
|
2015-10-22 14:24:18 +00:00
|
|
|
]);
|
|
|
|
|
2015-11-06 22:30:37 +00:00
|
|
|
// Set parse variables
|
2016-02-04 20:56:40 +00:00
|
|
|
Template::vars($renderData);
|
2015-11-06 22:30:37 +00:00
|
|
|
|
|
|
|
// Print page contents
|
2016-02-04 20:56:40 +00:00
|
|
|
echo Template::render('global/confirm');
|
2015-10-22 14:24:18 +00:00
|
|
|
exit;
|
2015-10-20 00:49:09 +00:00
|
|
|
}
|
|
|
|
}
|
2015-10-18 16:48:05 +00:00
|
|
|
|
|
|
|
// Check if a post is being made
|
|
|
|
if (isset($_POST['post'])) {
|
2016-01-09 21:57:54 +00:00
|
|
|
// Check if an ID is set
|
2016-03-25 01:31:57 +00:00
|
|
|
$post = null;
|
|
|
|
|
2016-01-09 21:57:54 +00:00
|
|
|
if (isset($_POST['id'])) {
|
|
|
|
// Attempt to create a post object
|
2016-03-20 22:49:42 +00:00
|
|
|
$post = new Post($_POST['id']);
|
2016-03-11 19:13:14 +00:00
|
|
|
|
2016-01-09 21:57:54 +00:00
|
|
|
// Check if the post israel
|
|
|
|
if ($post->id == $_POST['id']) {
|
|
|
|
$post->subject = $_POST['subject'];
|
|
|
|
$post->text = $_POST['text'];
|
|
|
|
$post->editTime = time();
|
|
|
|
$post->editReason = '';
|
|
|
|
$post->editUser = $currentUser;
|
2016-01-10 18:24:47 +00:00
|
|
|
$post = $post->update();
|
2016-01-09 21:57:54 +00:00
|
|
|
} else {
|
|
|
|
$post = null;
|
|
|
|
}
|
|
|
|
}
|
2015-10-18 16:48:05 +00:00
|
|
|
|
|
|
|
// Add page specific things
|
2016-03-20 22:49:42 +00:00
|
|
|
$renderData['page'] = [ // Why does fail just kind of not redirect to anywhere
|
2016-03-20 16:37:59 +00:00
|
|
|
'redirect' => $post ? Router::route('forums.post', $post->id) : '',
|
2015-12-13 23:29:53 +00:00
|
|
|
'message' => $post ? 'Made the post!' : 'Something is wrong with your post!',
|
|
|
|
'success' => $post ? 1 : 0,
|
2015-10-18 16:48:05 +00:00
|
|
|
];
|
|
|
|
|
|
|
|
// Print page contents or if the AJAX request is set only display the render data
|
2015-11-06 22:30:37 +00:00
|
|
|
if (isset($_REQUEST['ajax'])) {
|
|
|
|
echo $renderData['page']['message'] . '|' .
|
|
|
|
$renderData['page']['success'] . '|' .
|
|
|
|
$renderData['page']['redirect'];
|
|
|
|
} else {
|
|
|
|
// Set parse variables
|
2016-02-04 20:56:40 +00:00
|
|
|
Template::vars($renderData);
|
2015-11-06 22:30:37 +00:00
|
|
|
|
|
|
|
// Print page contents
|
2016-02-04 20:56:40 +00:00
|
|
|
echo Template::render('global/information');
|
2015-11-06 22:30:37 +00:00
|
|
|
}
|
2015-10-18 16:48:05 +00:00
|
|
|
exit;
|
|
|
|
}
|
2015-07-30 18:51:24 +00:00
|
|
|
|
2016-03-25 01:31:57 +00:00
|
|
|
$route = isset($thread) ? Router::route('forums.thread', $thread->id) : Router::route('forums.new', $forum->id);
|
|
|
|
header("Location: {$route}#reply");
|