mirror of
https://github.com/torrentpier/torrentpier.git
synced 2024-12-14 16:11:16 -08:00
651b944597
Фиксы, найденные пользователями git-svn-id: https://torrentpier2.googlecode.com/svn/trunk@464 a8ac35ab-4ca4-ca47-4c2d-a49a94f06293
855 lines
23 KiB
PHP
855 lines
23 KiB
PHP
<?php
|
|
|
|
define('IN_PHPBB', true);
|
|
define('BB_SCRIPT', 'modcp');
|
|
define('BB_ROOT', './');
|
|
require(BB_ROOT .'common.php');
|
|
require(INC_DIR .'bbcode.php');
|
|
require(INC_DIR .'functions_post.php');
|
|
require_once(INC_DIR .'functions_admin.php');
|
|
|
|
//
|
|
// Functions
|
|
//
|
|
function return_msg_mcp ($status_msg)
|
|
{
|
|
global $topic_id, $req_topics, $forum_id, $lang, $mode;
|
|
|
|
if (count($req_topics) == 1)
|
|
{
|
|
$topic_id = $req_topics[0];
|
|
}
|
|
|
|
$message = $status_msg;
|
|
$message .= '<br /><br />';
|
|
|
|
if ($topic_id && $mode != 'delete')
|
|
{
|
|
$message .= sprintf($lang['CLICK_RETURN_TOPIC'], '<a href="'. TOPIC_URL . $topic_id .'">', '</a>');
|
|
$message .= '<br /><br />';
|
|
}
|
|
else if (count($req_topics) != 1)
|
|
{
|
|
$message .= sprintf($lang['CLICK_RETURN_MODCP'], '<a href="'. FORUM_URL ."$forum_id&mod=1".'">', '</a>');
|
|
$message .= '<br /><br />';
|
|
}
|
|
|
|
$message .= sprintf($lang['CLICK_RETURN_FORUM'], '<a href="'. FORUM_URL . $forum_id .'">', '</a>');
|
|
|
|
return $message;
|
|
}
|
|
|
|
function validate_topics ($forum_id, &$req_topics, &$topic_titles)
|
|
{
|
|
$valid_topics = $valid_titles = array();
|
|
|
|
if ($topic_csv = get_id_csv($req_topics))
|
|
{
|
|
$sql = "SELECT topic_id, topic_title FROM ". BB_TOPICS ." WHERE topic_id IN($topic_csv) AND forum_id = $forum_id";
|
|
|
|
foreach (DB()->fetch_rowset($sql) as $row)
|
|
{
|
|
$valid_topics[] = $row['topic_id'];
|
|
$valid_titles[] = $row['topic_title'];
|
|
}
|
|
}
|
|
|
|
$req_topics = $valid_topics;
|
|
$topic_titles = $valid_titles;
|
|
}
|
|
|
|
// Obtain initial vars
|
|
$forum_id = (int) @$_REQUEST['f'];
|
|
$topic_id = (int) @$_REQUEST['t'];
|
|
$post_id = (int) @$_REQUEST['p'];
|
|
|
|
$start = isset($_REQUEST['start']) ? abs(intval($_REQUEST['start'])) : 0;
|
|
$confirmed = isset($_POST['confirm']);
|
|
|
|
$mode = $topic_title = '';
|
|
|
|
if (isset($_REQUEST['mode']))
|
|
{
|
|
$mode = (string) $_REQUEST['mode'];
|
|
}
|
|
else
|
|
{
|
|
if (isset($_REQUEST['delete']) || @$_POST['mod_action'] === 'topic_delete')
|
|
{
|
|
$mode = 'delete';
|
|
}
|
|
else if (isset($_REQUEST['move']) || @$_POST['mod_action'] === 'topic_move')
|
|
{
|
|
$mode = 'move';
|
|
}
|
|
else if (isset($_REQUEST['lock']) || @$_POST['mod_action'] === 'topic_lock')
|
|
{
|
|
$mode = 'lock';
|
|
}
|
|
else if (isset($_REQUEST['unlock']) || @$_POST['mod_action'] === 'topic_unlock')
|
|
{
|
|
$mode = 'unlock';
|
|
}
|
|
else if (isset($_REQUEST['post_pin']) || @$_POST['mod_action'] === 'post_pin')
|
|
{
|
|
$mode = 'post_pin';
|
|
}
|
|
else if (isset($_REQUEST['post_unpin']) || @$_POST['mod_action'] === 'post_unpin')
|
|
{
|
|
$mode = 'post_unpin';
|
|
}
|
|
}
|
|
|
|
// Obtain relevant data
|
|
if ($topic_id)
|
|
{
|
|
$sql = "
|
|
SELECT
|
|
f.forum_id, f.forum_name, f.forum_topics, f.self_moderated,
|
|
t.topic_first_post_id, t.topic_poster
|
|
FROM ". BB_TOPICS ." t, ". BB_FORUMS ." f
|
|
WHERE t.topic_id = $topic_id
|
|
AND f.forum_id = t.forum_id
|
|
LIMIT 1
|
|
";
|
|
|
|
if (!$topic_row = DB()->fetch_row($sql))
|
|
{
|
|
message_die(GENERAL_MESSAGE, 'Topic_post_not_exist');
|
|
}
|
|
|
|
$forum_id = $topic_row['forum_id'];
|
|
$forum_name = $topic_row['forum_name'];
|
|
$forum_topics = (!$topic_row['forum_topics']) ? 1 : $topic_row['forum_topics'];
|
|
}
|
|
else if ($forum_id)
|
|
{
|
|
$sql = "SELECT forum_name, forum_topics FROM ". BB_FORUMS ." WHERE forum_id = $forum_id LIMIT 1";
|
|
|
|
if (!$topic_row = DB()->fetch_row($sql))
|
|
{
|
|
message_die(GENERAL_MESSAGE, 'Forum_not_exist');
|
|
}
|
|
|
|
$forum_name = $topic_row['forum_name'];
|
|
$forum_topics = (!$topic_row['forum_topics']) ? 1 : $topic_row['forum_topics'];
|
|
}
|
|
else
|
|
{
|
|
message_die(GENERAL_MESSAGE, 'Invalid request');
|
|
}
|
|
|
|
// Start session management
|
|
$user->session_start(array('req_login' => true));
|
|
|
|
// Check if user did or did not confirm. If they did not, forward them to the last page they were on
|
|
if (isset($_POST['cancel']) || IS_GUEST)
|
|
{
|
|
$redirect = 'index.php';
|
|
|
|
if ($topic_id || $forum_id)
|
|
{
|
|
$redirect = ($topic_id) ? TOPIC_URL . $topic_id : FORUM_URL . $forum_id;
|
|
}
|
|
redirect($redirect);
|
|
}
|
|
|
|
// Start auth check
|
|
$is_auth = auth(AUTH_ALL, $forum_id, $userdata);
|
|
$is_moderator = (IS_AM);
|
|
|
|
if ($mode == 'ip')
|
|
{
|
|
// Moderator can view IP in all forums
|
|
$is_auth['auth_mod'] = $is_moderator;
|
|
}
|
|
else if ($mode == 'move' && !$is_auth['auth_mod'])
|
|
{
|
|
// User can move his own topic if this forum is "self_moderated"
|
|
if ($topic_id && $topic_row['self_moderated'] && $topic_row['topic_poster'] == $userdata['user_id'])
|
|
{
|
|
$is_auth['auth_mod'] = true;
|
|
|
|
$_POST['insert_bot_msg'] = 1;
|
|
unset($_POST['topic_id_list']);
|
|
unset($_POST['move_leave_shadow']);
|
|
}
|
|
}
|
|
|
|
// Exit if user not authorized
|
|
if (!$is_auth['auth_mod'])
|
|
{
|
|
message_die(GENERAL_MESSAGE, $lang['NOT_MODERATOR'], $lang['NOT_AUTHORISED']);
|
|
}
|
|
|
|
// Redirect to login page if not admin session
|
|
if ($is_moderator && !$userdata['session_admin'])
|
|
{
|
|
$redirect = isset($_POST['redirect']) ? $_POST['redirect'] : $_SERVER['REQUEST_URI'];
|
|
redirect("login.php?redirect=$redirect&admin=1");
|
|
}
|
|
|
|
//
|
|
// Get required vars
|
|
//
|
|
$req_topics = $topic_csv = $topic_titles = $hidden_fields = array();
|
|
|
|
switch ($mode)
|
|
{
|
|
case 'delete':
|
|
case 'move':
|
|
case 'lock':
|
|
case 'unlock':
|
|
case 'set_download':
|
|
case 'unset_download':
|
|
case 'post_pin':
|
|
case 'post_unpin':
|
|
|
|
if (empty($_POST['topic_id_list']) && empty($topic_id))
|
|
{
|
|
message_die(GENERAL_MESSAGE, $lang['NONE_SELECTED']);
|
|
}
|
|
|
|
$req_topics = isset($_POST['topic_id_list']) ? $_POST['topic_id_list'] : $topic_id;
|
|
validate_topics($forum_id, $req_topics, $topic_titles);
|
|
|
|
if (!$req_topics OR !$topic_csv = get_id_csv($req_topics))
|
|
{
|
|
message_die(GENERAL_MESSAGE, $lang['NONE_SELECTED']);
|
|
}
|
|
|
|
$hidden_fields = array(
|
|
'sid' => $userdata['session_id'],
|
|
'mode' => $mode,
|
|
'f' => $forum_id,
|
|
't' => $topic_id,
|
|
);
|
|
foreach ($req_topics as $req_topic_id)
|
|
{
|
|
$hidden_fields['topic_id_list'][] = $req_topic_id;
|
|
}
|
|
|
|
break;
|
|
}
|
|
|
|
//
|
|
// Perform action or show confirm message
|
|
//
|
|
switch ($mode)
|
|
{
|
|
case 'delete':
|
|
|
|
if (!$is_auth['auth_delete'])
|
|
{
|
|
message_die(GENERAL_MESSAGE, sprintf($lang['SORRY_AUTH_DELETE'], $is_auth['auth_delete_type']));
|
|
}
|
|
|
|
if ($confirmed)
|
|
{
|
|
$result = topic_delete($req_topics, $forum_id);
|
|
|
|
//Обновление кеша новостей на главной
|
|
$news_forums = array_flip(explode(',', $bb_cfg['latest_news_forum_id']));
|
|
if(isset($news_forums[$forum_id]) && $bb_cfg['show_latest_news'] && $result)
|
|
{
|
|
$datastore->enqueue('latest_news');
|
|
$datastore->update('latest_news');
|
|
}
|
|
|
|
$net_forums = array_flip(explode(',', $bb_cfg['network_news_forum_id']));
|
|
if(isset($net_forums[$forum_id]) && $bb_cfg['show_network_news'] && $result)
|
|
{
|
|
$datastore->enqueue('network_news');
|
|
$datastore->update('network_news');
|
|
}
|
|
|
|
$msg = ($result) ? $lang['TOPICS_REMOVED'] : $lang['NO_TOPICS_REMOVED'];
|
|
message_die(GENERAL_MESSAGE, return_msg_mcp($msg));
|
|
}
|
|
else
|
|
{
|
|
print_confirmation(array(
|
|
'QUESTION' => $lang['CONFIRM_DELETE_TOPIC'],
|
|
'ITEMS_LIST' => join("\n</li>\n<li>\n", $topic_titles),
|
|
'FORM_ACTION' => "modcp.php",
|
|
'HIDDEN_FIELDS' => build_hidden_fields($hidden_fields),
|
|
));
|
|
}
|
|
break;
|
|
|
|
case 'move':
|
|
|
|
if ($confirmed)
|
|
{
|
|
$new_forum_id = (int) $_POST['new_forum'];
|
|
$result = topic_move($req_topics, $new_forum_id, $forum_id, isset($_POST['move_leave_shadow']), isset($_POST['insert_bot_msg']));
|
|
|
|
//Обновление кеша новостей на главной
|
|
$news_forums = array_flip(explode(',', $bb_cfg['latest_news_forum_id']));
|
|
if((isset($news_forums[$forum_id]) || isset($news_forums[$new_forum_id])) && $bb_cfg['show_latest_news'] && $result)
|
|
{
|
|
$datastore->enqueue('latest_news');
|
|
$datastore->update('latest_news');
|
|
}
|
|
|
|
$net_forums = array_flip(explode(',', $bb_cfg['network_news_forum_id']));
|
|
if((isset($net_forums[$forum_id]) || isset($net_forums[$new_forum_id])) && $bb_cfg['show_network_news'] && $result)
|
|
{
|
|
$datastore->enqueue('network_news');
|
|
$datastore->update('network_news');
|
|
}
|
|
|
|
$msg = ($result) ? $lang['TOPICS_MOVED'] : $lang['NO_TOPICS_MOVED'];
|
|
message_die(GENERAL_MESSAGE, return_msg_mcp($msg));
|
|
}
|
|
else
|
|
{
|
|
if (IS_ADMIN)
|
|
{
|
|
$forum_select_mode = 'admin';
|
|
}
|
|
else
|
|
{
|
|
$not_auth_forums_csv = $user->get_not_auth_forums(AUTH_VIEW);
|
|
$forum_select_mode = explode(',', $not_auth_forums_csv);
|
|
}
|
|
|
|
$forum_select = get_forum_select($forum_select_mode, 'new_forum', $forum_id);
|
|
|
|
$template->assign_vars(array(
|
|
'TPL_MODCP_MOVE' => true,
|
|
'SHOW_LEAVESHADOW' => $is_moderator,
|
|
'SHOW_BOT_OPTIONS' => $is_moderator,
|
|
|
|
'MESSAGE_TITLE' => $lang['CONFIRM'],
|
|
'MESSAGE_TEXT' => $lang['CONFIRM_MOVE_TOPIC'],
|
|
'TOPIC_TITLES' => join("\n</li>\n<li>\n", $topic_titles),
|
|
|
|
'S_FORUM_SELECT' => $forum_select,
|
|
'S_MODCP_ACTION' => "modcp.php",
|
|
'S_HIDDEN_FIELDS' => build_hidden_fields($hidden_fields),
|
|
));
|
|
|
|
$template->set_filenames(array('body' => 'modcp.tpl'));
|
|
}
|
|
break;
|
|
|
|
case 'lock':
|
|
case 'unlock':
|
|
$lock = ($mode == 'lock');
|
|
$new_topic_status = ($lock) ? TOPIC_LOCKED : TOPIC_UNLOCKED;
|
|
|
|
$sql = "
|
|
SELECT topic_id, topic_title
|
|
FROM ". BB_TOPICS ."
|
|
WHERE topic_id IN($topic_csv)
|
|
AND forum_id = $forum_id
|
|
AND topic_status != ". TOPIC_MOVED ."
|
|
AND topic_status != $new_topic_status
|
|
";
|
|
|
|
$topic_csv = array();
|
|
|
|
foreach (DB()->fetch_rowset($sql) as $row)
|
|
{
|
|
$topic_csv[] = $row['topic_id'];
|
|
$log_topics[$row['topic_id']] = $row['topic_title'];
|
|
}
|
|
|
|
if (!$topic_csv = get_id_csv($topic_csv))
|
|
{
|
|
message_die(GENERAL_MESSAGE, $lang['NONE_SELECTED']);
|
|
}
|
|
|
|
DB()->query("
|
|
UPDATE ". BB_TOPICS ." SET
|
|
topic_status = $new_topic_status
|
|
WHERE topic_id IN($topic_csv)
|
|
");
|
|
|
|
// Log action
|
|
$type = ($lock) ? 'mod_topic_lock' : 'mod_topic_unlock';
|
|
|
|
foreach ($log_topics as $topic_id => $topic_title)
|
|
{
|
|
$log_action->mod($type, array(
|
|
'forum_id' => $forum_id,
|
|
'topic_id' => $topic_id,
|
|
'topic_title' => $topic_title,
|
|
));
|
|
}
|
|
|
|
$msg = ($lock) ? $lang['TOPICS_LOCKED'] : $lang['TOPICS_UNLOCKED'];
|
|
message_die(GENERAL_MESSAGE, return_msg_mcp($msg));
|
|
|
|
break;
|
|
|
|
// Set or unset topics DL-type
|
|
case 'set_download':
|
|
case 'unset_download':
|
|
$set_download = ($mode == 'set_download');
|
|
$new_dl_type = ($set_download) ? TOPIC_DL_TYPE_DL : TOPIC_DL_TYPE_NORMAL;
|
|
|
|
DB()->query("
|
|
UPDATE ". BB_TOPICS ." SET
|
|
topic_dl_type = $new_dl_type
|
|
WHERE topic_id IN($topic_csv)
|
|
AND forum_id = $forum_id
|
|
AND topic_moved_id = 0
|
|
");
|
|
|
|
if ($mode == 'unset_download')
|
|
{
|
|
clear_dl_list($topic_csv);
|
|
}
|
|
|
|
$msg = ($set_download) ? $lang['TOPICS_DOWN_SETS'] : $lang['TOPICS_DOWN_UNSETS'];
|
|
message_die(GENERAL_MESSAGE, return_msg_mcp($msg));
|
|
|
|
break;
|
|
|
|
case 'split':
|
|
//mpd
|
|
$delete_posts = isset($_POST['delete_posts']);
|
|
$split = (isset($_POST['split_type_all']) || isset($_POST['split_type_beyond']));
|
|
$posts = (isset($_POST['post_id_list'])) ? $_POST['post_id_list'] : array();
|
|
$start = /* (isset($_POST['start'])) ? intval($_POST['start']) : */ 0;
|
|
$topic_first_post_id = (isset($topic_row['topic_first_post_id'])) ? $topic_row['topic_first_post_id'] : '';
|
|
|
|
$post_id_sql = $req_post_id_sql = array();
|
|
|
|
if (($split || $delete_posts) && ($posts && $topic_id && $forum_id && $topic_first_post_id) && $confirmed)
|
|
{
|
|
foreach ($posts as $post_id)
|
|
{
|
|
if ($pid = intval($post_id))
|
|
{
|
|
$req_post_id_sql[] = $pid;
|
|
}
|
|
}
|
|
if ($req_post_id_sql = join(',', $req_post_id_sql))
|
|
{
|
|
$sql = "SELECT post_id
|
|
FROM ". BB_POSTS ."
|
|
WHERE post_id IN($req_post_id_sql)
|
|
AND post_id != $topic_first_post_id
|
|
AND topic_id = $topic_id
|
|
AND forum_id = $forum_id";
|
|
|
|
if (!$result = DB()->sql_query($sql))
|
|
{
|
|
message_die(GENERAL_ERROR, 'Could not get post id information', '', __LINE__, __FILE__, $sql);
|
|
}
|
|
if ($rowset = DB()->sql_fetchrowset($result))
|
|
{
|
|
foreach ($rowset as $rid => $row)
|
|
{
|
|
$post_id_sql[] = $row['post_id'];
|
|
}
|
|
$post_id_sql = join(',', $post_id_sql);
|
|
}
|
|
}
|
|
}
|
|
|
|
if ($post_id_sql && $split)
|
|
//mpd end
|
|
{
|
|
$sql = "SELECT post_id, poster_id, topic_id, post_time
|
|
FROM " . BB_POSTS . "
|
|
WHERE post_id IN ($post_id_sql)
|
|
ORDER BY post_time ASC";
|
|
if (!($result = DB()->sql_query($sql)))
|
|
{
|
|
message_die(GENERAL_ERROR, 'Could not get post information', '', __LINE__, __FILE__, $sql);
|
|
}
|
|
|
|
if ($row = DB()->sql_fetchrow($result))
|
|
{
|
|
$first_poster = $row['poster_id'];
|
|
$topic_id = $row['topic_id'];
|
|
$post_time = $row['post_time'];
|
|
|
|
$user_id_sql = '';
|
|
$post_id_sql = '';
|
|
do
|
|
{
|
|
$user_id_sql .= (($user_id_sql != '') ? ', ' : '') . intval($row['poster_id']);
|
|
$post_id_sql .= (($post_id_sql != '') ? ', ' : '') . intval($row['post_id']);
|
|
}
|
|
while ($row = DB()->sql_fetchrow($result));
|
|
|
|
$post_subject = clean_title($_POST['subject']);
|
|
if (empty($post_subject))
|
|
{
|
|
message_die(GENERAL_MESSAGE, $lang['EMPTY_SUBJECT']);
|
|
}
|
|
|
|
$new_forum_id = intval($_POST['new_forum_id']);
|
|
$topic_time = TIMENOW;
|
|
|
|
$sql = 'SELECT forum_id FROM ' . BB_FORUMS . '
|
|
WHERE forum_id = ' . $new_forum_id;
|
|
if ( !($result = DB()->sql_query($sql)) )
|
|
{
|
|
message_die(GENERAL_ERROR, 'Could not select from forums table', '', __LINE__, __FILE__, $sql);
|
|
}
|
|
|
|
if (!DB()->sql_fetchrow($result))
|
|
{
|
|
message_die(GENERAL_MESSAGE, 'New forum does not exist');
|
|
}
|
|
|
|
DB()->sql_freeresult($result);
|
|
|
|
$sql = "INSERT INTO " . BB_TOPICS . " (topic_title, topic_poster, topic_time, forum_id, topic_status, topic_type)
|
|
VALUES ('" . DB()->escape($post_subject) . "', $first_poster, " . $topic_time . ", $new_forum_id, " . TOPIC_UNLOCKED . ", " . POST_NORMAL . ")";
|
|
if (!(DB()->sql_query($sql)))
|
|
{
|
|
message_die(GENERAL_ERROR, 'Could not insert new topic', '', __LINE__, __FILE__, $sql);
|
|
}
|
|
|
|
$new_topic_id = DB()->sql_nextid();
|
|
|
|
// Update topic watch table, switch users whose posts
|
|
// have moved, over to watching the new topic
|
|
$sql = "UPDATE " . BB_TOPICS_WATCH . "
|
|
SET topic_id = $new_topic_id
|
|
WHERE topic_id = $topic_id
|
|
AND user_id IN ($user_id_sql)";
|
|
if (!DB()->sql_query($sql))
|
|
{
|
|
message_die(GENERAL_ERROR, 'Could not update topics watch table', '', __LINE__, __FILE__, $sql);
|
|
}
|
|
|
|
$sql_where = (!empty($_POST['split_type_beyond'])) ? " post_time >= $post_time AND topic_id = $topic_id" : "post_id IN ($post_id_sql)";
|
|
|
|
$sql = "UPDATE " . BB_POSTS . "
|
|
SET topic_id = $new_topic_id, forum_id = $new_forum_id
|
|
WHERE $sql_where";
|
|
if (!DB()->sql_query($sql))
|
|
{
|
|
message_die(GENERAL_ERROR, 'Could not update posts table', '', __LINE__, __FILE__, $sql);
|
|
}
|
|
|
|
//bot
|
|
if (isset($_POST['after_split_to_old']))
|
|
{
|
|
insert_post('after_split_to_old', $topic_id, $forum_id, '', $new_topic_id, trim($_POST['subject']));
|
|
}
|
|
if (isset($_POST['after_split_to_new']))
|
|
{
|
|
insert_post('after_split_to_new', $new_topic_id, $new_forum_id, $forum_id, $new_topic_id, '', $topic_id);
|
|
}
|
|
//bot end
|
|
|
|
sync('topic', array($topic_id, $new_topic_id));
|
|
sync('forum', array($forum_id, $new_forum_id));
|
|
|
|
//bot
|
|
$message = $lang['TOPIC_SPLIT'] .'<br /><br /><a href="' . "viewtopic.php?". POST_TOPIC_URL ."=$topic_id&sid=". $userdata['session_id'] .'">'. $lang['TOPIC_SPLIT_OLD'] .'</a>';
|
|
$message .= ' :: <a href="' . "viewtopic.php?". POST_TOPIC_URL ."=$new_topic_id&sid=". $userdata['session_id'] .'">'. $lang['TOPIC_SPLIT_NEW'] .'</a>';
|
|
//bot end
|
|
|
|
// Log action
|
|
$log_action->mod('mod_topic_split', array(
|
|
'forum_id' => $forum_id,
|
|
'forum_id_new' => $new_forum_id,
|
|
'topic_id' => $topic_id,
|
|
'topic_title' => get_topic_title($topic_id),
|
|
'topic_id_new' => $new_topic_id,
|
|
'topic_title_new' => htmlCHR($_POST['subject']),
|
|
));
|
|
|
|
message_die(GENERAL_MESSAGE, $message);
|
|
}
|
|
}
|
|
//mpd
|
|
else if ($post_id_sql && $delete_posts)
|
|
{
|
|
if (!$is_auth['auth_delete'])
|
|
{
|
|
message_die(GENERAL_MESSAGE, sprintf($lang['SORRY_AUTH_DELETE'], $is_auth['auth_delete_type']));
|
|
}
|
|
|
|
// Delete posts
|
|
$result = post_delete(explode(',', $post_id_sql));
|
|
|
|
$msg = ($result) ? $lang['DELETE_POSTS_SUCCESFULLY'] : 'No posts were removed';
|
|
message_die(GENERAL_MESSAGE, return_msg_mcp($msg));
|
|
}
|
|
//mpd end
|
|
else
|
|
{
|
|
$sql = "SELECT u.username, p.*, pt.post_text, p.post_username
|
|
FROM " . BB_POSTS . " p, " . BB_USERS . " u, " . BB_POSTS_TEXT . " pt
|
|
WHERE p.topic_id = $topic_id
|
|
AND p.poster_id = u.user_id
|
|
AND p.post_id = pt.post_id
|
|
ORDER BY p.post_time ASC";
|
|
if ( !($result = DB()->sql_query($sql)) )
|
|
{
|
|
message_die(GENERAL_ERROR, 'Could not get topic/post information', '', __LINE__, __FILE__, $sql);
|
|
}
|
|
|
|
$s_hidden_fields = '<input type="hidden" name="sid" value="' . $userdata['session_id'] . '" /><input type="hidden" name="' . POST_FORUM_URL . '" value="' . $forum_id . '" /><input type="hidden" name="' . POST_TOPIC_URL . '" value="' . $topic_id . '" /><input type="hidden" name="mode" value="split" />';
|
|
|
|
if( ( $total_posts = DB()->num_rows($result) ) > 0 )
|
|
{
|
|
$postrow = DB()->sql_fetchrowset($result);
|
|
|
|
$template->assign_vars(array(
|
|
'FORUM_NAME' => htmlCHR($forum_name),
|
|
'U_VIEW_FORUM' => FORUM_URL . $forum_id,
|
|
'S_SPLIT_ACTION' => "modcp.php",
|
|
'S_HIDDEN_FIELDS' => $s_hidden_fields,
|
|
'S_FORUM_SELECT' => get_forum_select('admin', 'new_forum_id', $forum_id),
|
|
));
|
|
|
|
for($i = 0; $i < $total_posts; $i++)
|
|
{
|
|
$post_id = $postrow[$i]['post_id'];
|
|
$poster_id = $postrow[$i]['poster_id'];
|
|
$poster = $postrow[$i]['username'];
|
|
|
|
$post_date = bb_date($postrow[$i]['post_time']);
|
|
|
|
$message = $postrow[$i]['post_text'];
|
|
|
|
//
|
|
// If the board has HTML off but the post has HTML
|
|
// on then we process it, else leave it alone
|
|
//
|
|
$message = bbcode2html($message);
|
|
|
|
$row_class = !($i % 2) ? 'row1' : 'row2';
|
|
|
|
$template->assign_block_vars('postrow', array(
|
|
'ROW_CLASS' => $row_class,
|
|
'POSTER_NAME' => wbr($poster),
|
|
'POST_DATE' => $post_date,
|
|
'MESSAGE' => $message,
|
|
|
|
'CHECKBOX' => (defined('BEGIN_CHECKBOX')) ? TRUE : FALSE,
|
|
'POST_ID' => $post_id,
|
|
'ROW_ID' => $i,
|
|
'CB_ID' => 'cb_'. $i
|
|
));
|
|
|
|
if ($post_id == $topic_first_post_id)
|
|
{
|
|
define('BEGIN_CHECKBOX', TRUE);
|
|
}
|
|
}
|
|
}
|
|
}
|
|
$template->set_filenames(array('body' => 'modcp_split.tpl'));
|
|
break;
|
|
|
|
case 'ip':
|
|
$anon = ANONYMOUS;
|
|
|
|
$rdns_ip_num = ( isset($_GET['rdns']) ) ? $_GET['rdns'] : "";
|
|
|
|
if ( !$post_id )
|
|
{
|
|
message_die(GENERAL_MESSAGE, $lang['NO_SUCH_POST']);
|
|
}
|
|
|
|
// Look up relevent data for this post
|
|
$sql = "SELECT *
|
|
FROM " . BB_POSTS . "
|
|
WHERE post_id = $post_id
|
|
AND forum_id = $forum_id";
|
|
if ( !($result = DB()->sql_query($sql)) )
|
|
{
|
|
message_die(GENERAL_ERROR, 'Could not get poster IP information', '', __LINE__, __FILE__, $sql);
|
|
}
|
|
|
|
if ( !($post_row = DB()->sql_fetchrow($result)) )
|
|
{
|
|
message_die(GENERAL_MESSAGE, $lang['NO_SUCH_POST']);
|
|
}
|
|
|
|
$ip_this_post = decode_ip($post_row['poster_ip']);
|
|
$ip_this_post = ( $rdns_ip_num == $ip_this_post ) ? gethostbyaddr($ip_this_post) : $ip_this_post;
|
|
|
|
$poster_id = $post_row['poster_id'];
|
|
|
|
$template->assign_vars(array(
|
|
'TPL_MODCP_IP' => true,
|
|
'IP' => $ip_this_post,
|
|
'U_LOOKUP_IP' => "modcp.php?mode=ip&" . POST_POST_URL . "=$post_id&" . POST_TOPIC_URL . "=$topic_id&rdns=$ip_this_post&sid=" . $userdata['session_id'])
|
|
);
|
|
|
|
//
|
|
// Get other IP's this user has posted under
|
|
//
|
|
$where_sql = ($poster_id == $anon) ? "post_username = '{$post_row['post_username']}'" : "poster_id = $poster_id";
|
|
|
|
$sql = "SELECT poster_ip, COUNT(*) AS postings
|
|
FROM " . BB_POSTS . "
|
|
WHERE $where_sql
|
|
GROUP BY poster_ip
|
|
ORDER BY postings DESC
|
|
LIMIT 100";
|
|
if ( !($result = DB()->sql_query($sql)) )
|
|
{
|
|
message_die(GENERAL_ERROR, 'Could not get IP information for this user', '', __LINE__, __FILE__, $sql);
|
|
}
|
|
|
|
if ( $row = DB()->sql_fetchrow($result) )
|
|
{
|
|
$i = 0;
|
|
do
|
|
{
|
|
if ( $row['poster_ip'] == $post_row['poster_ip'] )
|
|
{
|
|
$template->assign_vars(array(
|
|
'POSTS' => $row['postings'],
|
|
));
|
|
continue;
|
|
}
|
|
|
|
$ip = decode_ip($row['poster_ip']);
|
|
$ip = ( $rdns_ip_num == $row['poster_ip'] || $rdns_ip_num == 'all') ? gethostbyaddr($ip) : $ip;
|
|
|
|
$template->assign_block_vars('iprow', array(
|
|
'ROW_CLASS' => !($i % 2) ? 'row4' : 'row5',
|
|
'IP' => $ip,
|
|
'POSTS' => $row['postings'],
|
|
'U_LOOKUP_IP' => "modcp.php?mode=ip&" . POST_POST_URL . "=$post_id&" . POST_TOPIC_URL . "=$topic_id&rdns=" . $row['poster_ip'] . "&sid=" . $userdata['session_id'],
|
|
));
|
|
|
|
$i++;
|
|
}
|
|
while ( $row = DB()->sql_fetchrow($result) );
|
|
}
|
|
|
|
//
|
|
// Get other users who've posted under this IP
|
|
//
|
|
$sql = "SELECT
|
|
u.user_id,
|
|
IF(u.user_id = $anon, p.post_username, u.username) AS username,
|
|
COUNT(*) as postings
|
|
FROM " . BB_USERS ." u, " . BB_POSTS . " p
|
|
WHERE p.poster_id = u.user_id
|
|
AND p.poster_ip = '" . $post_row['poster_ip'] . "'
|
|
GROUP BY u.user_id, p.post_username
|
|
ORDER BY postings DESC
|
|
LIMIT 100";
|
|
if ( !($result = DB()->sql_query($sql)) )
|
|
{
|
|
message_die(GENERAL_ERROR, 'Could not get posters information based on IP', '', __LINE__, __FILE__, $sql);
|
|
}
|
|
|
|
if ( $row = DB()->sql_fetchrow($result) )
|
|
{
|
|
$i = 0;
|
|
do
|
|
{
|
|
$id = $row['user_id'];
|
|
$username = (!$row['username']) ? $lang['GUEST'] : $row['username'];
|
|
|
|
$template->assign_block_vars('userrow', array(
|
|
'ROW_CLASS' => !($i % 2) ? 'row4' : 'row5',
|
|
'USERNAME' => wbr($username),
|
|
'POSTS' => $row['postings'],
|
|
'U_PROFILE' => ($id == ANONYMOUS) ? "modcp.php?mode=ip&p=$post_id&t=$topic_id" : PROFILE_URL . $id,
|
|
'U_SEARCHPOSTS' => "search.php?search_author=1&uid=$id",
|
|
));
|
|
|
|
$i++;
|
|
}
|
|
while ( $row = DB()->sql_fetchrow($result) );
|
|
}
|
|
|
|
$template->set_filenames(array('body' => 'modcp.tpl'));
|
|
break;
|
|
|
|
case 'post_pin':
|
|
case 'post_unpin':
|
|
$pin = ($mode == 'post_pin');
|
|
$new_topic_status = ($pin) ? 1 : 0;
|
|
|
|
if(count($topic_csv))
|
|
{
|
|
$sql = "
|
|
SELECT topic_id, topic_title
|
|
FROM ". BB_TOPICS ."
|
|
WHERE topic_id IN($topic_csv)
|
|
AND forum_id = $forum_id
|
|
AND topic_show_first_post != ". TOPIC_MOVED ."
|
|
AND topic_show_first_post != $new_topic_status
|
|
";
|
|
|
|
$topic_csv = array();
|
|
|
|
foreach (DB()->fetch_rowset($sql) as $row)
|
|
{
|
|
$topic_csv[] = $row['topic_id'];
|
|
$log_topics[$row['topic_id']] = $row['topic_title'];
|
|
}
|
|
|
|
if (!$topic_csv = get_id_csv($topic_csv))
|
|
{
|
|
message_die(GENERAL_MESSAGE, $lang['NONE_SELECTED']);
|
|
}
|
|
|
|
DB()->query("
|
|
UPDATE ". BB_TOPICS ." SET
|
|
topic_show_first_post = $new_topic_status
|
|
WHERE topic_id IN($topic_csv)
|
|
");
|
|
|
|
$msg = ($pin) ? $lang['POST_PINNED'] : $lang['POST_UNPINNED'];
|
|
message_die(GENERAL_MESSAGE, return_msg_mcp($msg));
|
|
}
|
|
elseif ($topic_id)
|
|
{
|
|
$sql = "
|
|
SELECT topic_id, topic_title
|
|
FROM ". BB_TOPICS ."
|
|
WHERE topic_id = $topic_id
|
|
AND forum_id = $forum_id
|
|
AND topic_show_first_post != ". TOPIC_MOVED ."
|
|
AND topic_show_first_post != $new_topic_status
|
|
LIMIT 1
|
|
";
|
|
|
|
$topic_csv = array();
|
|
|
|
foreach (DB()->fetch_rowset($sql) as $row)
|
|
{
|
|
$topic_csv[] = $row['topic_id'];
|
|
$log_topics[$row['topic_id']] = $row['topic_title'];
|
|
}
|
|
|
|
if (!$topic_csv = get_id_csv($topic_csv))
|
|
{
|
|
message_die(GENERAL_MESSAGE, $lang['NONE_SELECTED']);
|
|
}
|
|
|
|
DB()->query("
|
|
UPDATE ". BB_TOPICS ." SET
|
|
topic_show_first_post = $new_topic_status
|
|
WHERE topic_id IN($topic_csv)
|
|
");
|
|
|
|
$msg = ($pin) ? $lang['POST_PINNED'] : $lang['POST_UNPINNED'];
|
|
message_die(GENERAL_MESSAGE, return_msg_mcp($msg));
|
|
}
|
|
break;
|
|
|
|
default:
|
|
bb_die('invalid action');
|
|
break;
|
|
}
|
|
|
|
$template->assign_vars(array('PAGE_TITLE' => $lang['MOD_CP']));
|
|
|
|
require(PAGE_HEADER);
|
|
|
|
$template->pparse('body');
|
|
|
|
require(PAGE_FOOTER); |