MessageIndex.php 52 KB

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441442443444445446447448449450451452453454455456457458459460461462463464465466467468469470471472473474475476477478479480481482483484485486487488489490491492493494495496497498499500501502503504505506507508509510511512513514515516517518519520521522523524525526527528529530531532533534535536537538539540541542543544545546547548549550551552553554555556557558559560561562563564565566567568569570571572573574575576577578579580581582583584585586587588589590591592593594595596597598599600601602603604605606607608609610611612613614615616617618619620621622623624625626627628629630631632633634635636637638639640641642643644645646647648649650651652653654655656657658659660661662663664665666667668669670671672673674675676677678679680681682683684685686687688689690691692693694695696697698699700701702703704705706707708709710711712713714715716717718719720721722723724725726727728729730731732733734735736737738739740741742743744745746747748749750751752753754755756757758759760761762763764765766767768769770771772773774775776777778779780781782783784785786787788789790791792793794795796797798799800801802803804805806807808809810811812813814815816817818819820821822823824825826827828829830831832833834835836837838839840841842843844845846847848849850851852853854855856857858859860861862863864865866867868869870871872873874875876877878879880881882883884885886887888889890891892893894895896897898899900901902903904905906907908909910911912913914915916917918919920921922923924925926927928929930931932933934935936937938939940941942943944945946947948949950951952953954955956957958959960961962963964965966967968969970971972973974975976977978979980981982983984985986987988989990991992993994995996997998999100010011002100310041005100610071008100910101011101210131014101510161017101810191020102110221023102410251026102710281029103010311032103310341035103610371038103910401041104210431044104510461047104810491050105110521053105410551056105710581059106010611062106310641065106610671068106910701071107210731074107510761077107810791080108110821083108410851086108710881089109010911092109310941095109610971098109911001101110211031104110511061107110811091110111111121113111411151116111711181119112011211122112311241125112611271128112911301131113211331134113511361137113811391140114111421143114411451146114711481149115011511152115311541155115611571158115911601161116211631164116511661167116811691170117111721173117411751176117711781179118011811182118311841185118611871188118911901191119211931194119511961197119811991200120112021203120412051206120712081209121012111212121312141215121612171218121912201221122212231224122512261227122812291230123112321233123412351236123712381239124012411242124312441245124612471248124912501251
  1. <?php
  2. /**
  3. * This file is what shows the listing of topics in a board.
  4. * It's just one or two functions, but don't under estimate it ;).
  5. *
  6. * Simple Machines Forum (SMF)
  7. *
  8. * @package SMF
  9. * @author Simple Machines http://www.simplemachines.org
  10. * @copyright 2013 Simple Machines and individual contributors
  11. * @license http://www.simplemachines.org/about/smf/license.php BSD
  12. *
  13. * @version 2.1 Alpha 1
  14. */
  15. if (!defined('SMF'))
  16. die('No direct access...');
  17. /**
  18. * Show the list of topics in this board, along with any child boards.
  19. */
  20. function MessageIndex()
  21. {
  22. global $txt, $scripturl, $board, $modSettings, $context;
  23. global $options, $settings, $board_info, $user_info, $smcFunc, $sourcedir;
  24. // If this is a redirection board head off.
  25. if ($board_info['redirect'])
  26. {
  27. $smcFunc['db_query']('', '
  28. UPDATE {db_prefix}boards
  29. SET num_posts = num_posts + 1
  30. WHERE id_board = {int:current_board}',
  31. array(
  32. 'current_board' => $board,
  33. )
  34. );
  35. redirectexit($board_info['redirect']);
  36. }
  37. if (WIRELESS)
  38. $context['sub_template'] = WIRELESS_PROTOCOL . '_messageindex';
  39. else
  40. loadTemplate('MessageIndex');
  41. $context['name'] = $board_info['name'];
  42. $context['description'] = $board_info['description'];
  43. // How many topics do we have in total?
  44. $board_info['total_topics'] = allowedTo('approve_posts') ? $board_info['num_topics'] + $board_info['unapproved_topics'] : $board_info['num_topics'] + $board_info['unapproved_user_topics'];
  45. // View all the topics, or just a few?
  46. $context['topics_per_page'] = empty($modSettings['disableCustomPerPage']) && !empty($options['topics_per_page']) && !WIRELESS ? $options['topics_per_page'] : $modSettings['defaultMaxTopics'];
  47. $context['messages_per_page'] = empty($modSettings['disableCustomPerPage']) && !empty($options['messages_per_page']) && !WIRELESS ? $options['messages_per_page'] : $modSettings['defaultMaxMessages'];
  48. $maxindex = isset($_REQUEST['all']) && !empty($modSettings['enableAllMessages']) ? $board_info['total_topics'] : $context['topics_per_page'];
  49. // Right, let's only index normal stuff!
  50. if (count($_GET) > 1)
  51. {
  52. $session_name = session_name();
  53. foreach ($_GET as $k => $v)
  54. {
  55. if (!in_array($k, array('board', 'start', $session_name)))
  56. $context['robot_no_index'] = true;
  57. }
  58. }
  59. if (!empty($_REQUEST['start']) && (!is_numeric($_REQUEST['start']) || $_REQUEST['start'] % $context['messages_per_page'] != 0))
  60. $context['robot_no_index'] = true;
  61. // If we can view unapproved messages and there are some build up a list.
  62. if (allowedTo('approve_posts') && ($board_info['unapproved_topics'] || $board_info['unapproved_posts']))
  63. {
  64. $untopics = $board_info['unapproved_topics'] ? '<a href="' . $scripturl . '?action=moderate;area=postmod;sa=topics;brd=' . $board . '">' . $board_info['unapproved_topics'] . '</a>' : 0;
  65. $unposts = $board_info['unapproved_posts'] ? '<a href="' . $scripturl . '?action=moderate;area=postmod;sa=posts;brd=' . $board . '">' . ($board_info['unapproved_posts'] - $board_info['unapproved_topics']) . '</a>' : 0;
  66. $context['unapproved_posts_message'] = sprintf($txt['there_are_unapproved_topics'], $untopics, $unposts, $scripturl . '?action=moderate;area=postmod;sa=' . ($board_info['unapproved_topics'] ? 'topics' : 'posts') . ';brd=' . $board);
  67. }
  68. // We only know these.
  69. if (isset($_REQUEST['sort']) && !in_array($_REQUEST['sort'], array('subject', 'starter', 'last_poster', 'replies', 'views', 'first_post', 'last_post')))
  70. $_REQUEST['sort'] = 'last_post';
  71. // Make sure the starting place makes sense and construct the page index.
  72. if (isset($_REQUEST['sort']))
  73. $context['page_index'] = constructPageIndex($scripturl . '?board=' . $board . '.%1$d;sort=' . $_REQUEST['sort'] . (isset($_REQUEST['desc']) ? ';desc' : ''), $_REQUEST['start'], $board_info['total_topics'], $maxindex, true);
  74. else
  75. $context['page_index'] = constructPageIndex($scripturl . '?board=' . $board . '.%1$d', $_REQUEST['start'], $board_info['total_topics'], $maxindex, true);
  76. $context['start'] = &$_REQUEST['start'];
  77. // Set a canonical URL for this page.
  78. $context['canonical_url'] = $scripturl . '?board=' . $board . '.' . $context['start'];
  79. $context['links'] = array(
  80. 'first' => $_REQUEST['start'] >= $context['topics_per_page'] ? $scripturl . '?board=' . $board . '.0' : '',
  81. 'prev' => $_REQUEST['start'] >= $context['topics_per_page'] ? $scripturl . '?board=' . $board . '.' . ($_REQUEST['start'] - $context['topics_per_page']) : '',
  82. 'next' => $_REQUEST['start'] + $context['topics_per_page'] < $board_info['total_topics'] ? $scripturl . '?board=' . $board . '.' . ($_REQUEST['start'] + $context['topics_per_page']) : '',
  83. 'last' => $_REQUEST['start'] + $context['topics_per_page'] < $board_info['total_topics'] ? $scripturl . '?board=' . $board . '.' . (floor(($board_info['total_topics'] - 1) / $context['topics_per_page']) * $context['topics_per_page']) : '',
  84. 'up' => $board_info['parent'] == 0 ? $scripturl . '?' : $scripturl . '?board=' . $board_info['parent'] . '.0'
  85. );
  86. $context['page_info'] = array(
  87. 'current_page' => $_REQUEST['start'] / $context['topics_per_page'] + 1,
  88. 'num_pages' => floor(($board_info['total_topics'] - 1) / $context['topics_per_page']) + 1
  89. );
  90. if (isset($_REQUEST['all']) && !empty($modSettings['enableAllMessages']) && $maxindex > $modSettings['enableAllMessages'])
  91. {
  92. $maxindex = $modSettings['enableAllMessages'];
  93. $_REQUEST['start'] = 0;
  94. }
  95. // Build a list of the board's moderators.
  96. $context['moderators'] = &$board_info['moderators'];
  97. $context['moderator_groups'] = &$board_info['moderator_groups'];
  98. $context['link_moderators'] = array();
  99. if (!empty($board_info['moderators']))
  100. {
  101. foreach ($board_info['moderators'] as $mod)
  102. $context['link_moderators'][] ='<a href="' . $scripturl . '?action=profile;u=' . $mod['id'] . '" title="' . $txt['board_moderator'] . '">' . $mod['name'] . '</a>';
  103. }
  104. if (!empty($board_info['moderator_groups']))
  105. {
  106. // By default just tack the moderator groups onto the end of the members
  107. foreach ($board_info['moderator_groups'] as $mod_group)
  108. $context['link_moderators'][] = '<a href="' . $scripturl . '?action=groups;sa=members;group=' . $mod_group['id'] . '" title="' . $txt['board_moderator'] . '">' . $mod_group['name'] . '</a>';
  109. }
  110. // Now we tack the info onto the end of the linktree
  111. if (!empty($context['link_moderators']))
  112. {
  113. $context['linktree'][count($context['linktree']) - 1]['extra_after'] = '<span class="board_moderators">(' . (count($context['link_moderators']) == 1 ? $txt['moderator'] : $txt['moderators']) . ': ' . implode(', ', $context['link_moderators']) . ')</span>';
  114. }
  115. // Mark current and parent boards as seen.
  116. if (!$user_info['is_guest'])
  117. {
  118. // We can't know they read it if we allow prefetches.
  119. if (isset($_SERVER['HTTP_X_MOZ']) && $_SERVER['HTTP_X_MOZ'] == 'prefetch')
  120. {
  121. ob_end_clean();
  122. header('HTTP/1.1 403 Prefetch Forbidden');
  123. die;
  124. }
  125. $smcFunc['db_insert']('replace',
  126. '{db_prefix}log_boards',
  127. array('id_msg' => 'int', 'id_member' => 'int', 'id_board' => 'int'),
  128. array($modSettings['maxMsgID'], $user_info['id'], $board),
  129. array('id_member', 'id_board')
  130. );
  131. if (!empty($board_info['parent_boards']))
  132. {
  133. $smcFunc['db_query']('', '
  134. UPDATE {db_prefix}log_boards
  135. SET id_msg = {int:id_msg}
  136. WHERE id_member = {int:current_member}
  137. AND id_board IN ({array_int:board_list})',
  138. array(
  139. 'current_member' => $user_info['id'],
  140. 'board_list' => array_keys($board_info['parent_boards']),
  141. 'id_msg' => $modSettings['maxMsgID'],
  142. )
  143. );
  144. // We've seen all these boards now!
  145. foreach ($board_info['parent_boards'] as $k => $dummy)
  146. if (isset($_SESSION['topicseen_cache'][$k]))
  147. unset($_SESSION['topicseen_cache'][$k]);
  148. }
  149. if (isset($_SESSION['topicseen_cache'][$board]))
  150. unset($_SESSION['topicseen_cache'][$board]);
  151. $request = $smcFunc['db_query']('', '
  152. SELECT sent
  153. FROM {db_prefix}log_notify
  154. WHERE id_board = {int:current_board}
  155. AND id_member = {int:current_member}
  156. LIMIT 1',
  157. array(
  158. 'current_board' => $board,
  159. 'current_member' => $user_info['id'],
  160. )
  161. );
  162. $context['is_marked_notify'] = $smcFunc['db_num_rows']($request) != 0;
  163. if ($context['is_marked_notify'])
  164. {
  165. list ($sent) = $smcFunc['db_fetch_row']($request);
  166. if (!empty($sent))
  167. {
  168. $smcFunc['db_query']('', '
  169. UPDATE {db_prefix}log_notify
  170. SET sent = {int:is_sent}
  171. WHERE id_board = {int:current_board}
  172. AND id_member = {int:current_member}',
  173. array(
  174. 'current_board' => $board,
  175. 'current_member' => $user_info['id'],
  176. 'is_sent' => 0,
  177. )
  178. );
  179. }
  180. }
  181. $smcFunc['db_free_result']($request);
  182. }
  183. else
  184. $context['is_marked_notify'] = false;
  185. // 'Print' the header and board info.
  186. $context['page_title'] = strip_tags($board_info['name']);
  187. // Set the variables up for the template.
  188. $context['can_mark_notify'] = !$user_info['is_guest'];
  189. $context['can_post_new'] = allowedTo('post_new') || ($modSettings['postmod_active'] && allowedTo('post_unapproved_topics'));
  190. $context['can_post_poll'] = $modSettings['pollMode'] == '1' && allowedTo('poll_post') && $context['can_post_new'];
  191. $context['can_moderate_forum'] = allowedTo('moderate_forum');
  192. $context['can_approve_posts'] = allowedTo('approve_posts');
  193. require_once($sourcedir . '/Subs-BoardIndex.php');
  194. $boardIndexOptions = array(
  195. 'include_categories' => false,
  196. 'base_level' => $board_info['child_level'] + 1,
  197. 'parent_id' => $board_info['id'],
  198. 'set_latest_post' => false,
  199. 'countChildPosts' => !empty($modSettings['countChildPosts']),
  200. );
  201. $context['boards'] = getBoardIndex($boardIndexOptions);
  202. // Nosey, nosey - who's viewing this topic?
  203. if (!empty($settings['display_who_viewing']))
  204. {
  205. $context['view_members'] = array();
  206. $context['view_members_list'] = array();
  207. $context['view_num_hidden'] = 0;
  208. $request = $smcFunc['db_query']('', '
  209. SELECT
  210. lo.id_member, lo.log_time, mem.real_name, mem.member_name, mem.show_online,
  211. mg.online_color, mg.id_group, mg.group_name
  212. FROM {db_prefix}log_online AS lo
  213. LEFT JOIN {db_prefix}members AS mem ON (mem.id_member = lo.id_member)
  214. LEFT JOIN {db_prefix}membergroups AS mg ON (mg.id_group = CASE WHEN mem.id_group = {int:reg_member_group} THEN mem.id_post_group ELSE mem.id_group END)
  215. WHERE INSTR(lo.url, {string:in_url_string}) > 0 OR lo.session = {string:session}',
  216. array(
  217. 'reg_member_group' => 0,
  218. 'in_url_string' => 's:5:"board";i:' . $board . ';',
  219. 'session' => $user_info['is_guest'] ? 'ip' . $user_info['ip'] : session_id(),
  220. )
  221. );
  222. while ($row = $smcFunc['db_fetch_assoc']($request))
  223. {
  224. if (empty($row['id_member']))
  225. continue;
  226. if (!empty($row['online_color']))
  227. $link = '<a href="' . $scripturl . '?action=profile;u=' . $row['id_member'] . '" style="color: ' . $row['online_color'] . ';">' . $row['real_name'] . '</a>';
  228. else
  229. $link = '<a href="' . $scripturl . '?action=profile;u=' . $row['id_member'] . '">' . $row['real_name'] . '</a>';
  230. $is_buddy = in_array($row['id_member'], $user_info['buddies']);
  231. if ($is_buddy)
  232. $link = '<strong>' . $link . '</strong>';
  233. if (!empty($row['show_online']) || allowedTo('moderate_forum'))
  234. $context['view_members_list'][$row['log_time'] . $row['member_name']] = empty($row['show_online']) ? '<em>' . $link . '</em>' : $link;
  235. // @todo why are we filling this array of data that are just counted (twice) and discarded? ???
  236. $context['view_members'][$row['log_time'] . $row['member_name']] = array(
  237. 'id' => $row['id_member'],
  238. 'username' => $row['member_name'],
  239. 'name' => $row['real_name'],
  240. 'group' => $row['id_group'],
  241. 'href' => $scripturl . '?action=profile;u=' . $row['id_member'],
  242. 'link' => $link,
  243. 'is_buddy' => $is_buddy,
  244. 'hidden' => empty($row['show_online']),
  245. );
  246. if (empty($row['show_online']))
  247. $context['view_num_hidden']++;
  248. }
  249. $context['view_num_guests'] = $smcFunc['db_num_rows']($request) - count($context['view_members']);
  250. $smcFunc['db_free_result']($request);
  251. // Put them in "last clicked" order.
  252. krsort($context['view_members_list']);
  253. krsort($context['view_members']);
  254. }
  255. // Default sort methods.
  256. $sort_methods = array(
  257. 'subject' => 'mf.subject',
  258. 'starter' => 'IFNULL(memf.real_name, mf.poster_name)',
  259. 'last_poster' => 'IFNULL(meml.real_name, ml.poster_name)',
  260. 'replies' => 't.num_replies',
  261. 'views' => 't.num_views',
  262. 'first_post' => 't.id_topic',
  263. 'last_post' => 't.id_last_msg'
  264. );
  265. // They didn't pick one, default to by last post descending.
  266. if (!isset($_REQUEST['sort']) || !isset($sort_methods[$_REQUEST['sort']]))
  267. {
  268. $context['sort_by'] = 'last_post';
  269. $_REQUEST['sort'] = 'id_last_msg';
  270. $ascending = isset($_REQUEST['asc']);
  271. }
  272. // Otherwise default to ascending.
  273. else
  274. {
  275. $context['sort_by'] = $_REQUEST['sort'];
  276. $_REQUEST['sort'] = $sort_methods[$_REQUEST['sort']];
  277. $ascending = !isset($_REQUEST['desc']);
  278. }
  279. $context['sort_direction'] = $ascending ? 'up' : 'down';
  280. $txt['starter'] = $txt['started_by'];
  281. foreach ($sort_methods as $key => $val)
  282. $context['topics_headers'][$key] = '<a href="' . $scripturl . '?board=' . $context['current_board'] . '.' . $context['start'] . ';sort=' . $key . ($context['sort_by'] == $key && $context['sort_direction'] == 'up' ? ';desc' : '') . '">' . $txt[$key] . ($context['sort_by'] == $key ? '<span class="sort sort_' . $context['sort_direction'] . '"></span>' : '') . '</a>';
  283. // Calculate the fastest way to get the topics.
  284. $start = (int) $_REQUEST['start'];
  285. if ($start > ($board_info['total_topics'] - 1) / 2)
  286. {
  287. $ascending = !$ascending;
  288. $fake_ascending = true;
  289. $maxindex = $board_info['total_topics'] < $start + $maxindex + 1 ? $board_info['total_topics'] - $start : $maxindex;
  290. $start = $board_info['total_topics'] < $start + $maxindex + 1 ? 0 : $board_info['total_topics'] - $start - $maxindex;
  291. }
  292. else
  293. $fake_ascending = false;
  294. // Setup the default topic icons...
  295. $stable_icons = array('xx', 'thumbup', 'thumbdown', 'exclamation', 'question', 'lamp', 'smiley', 'angry', 'cheesy', 'grin', 'sad', 'wink', 'poll', 'moved', 'recycled', 'wireless', 'clip');
  296. $context['icon_sources'] = array();
  297. foreach ($stable_icons as $icon)
  298. $context['icon_sources'][$icon] = 'images_url';
  299. $topic_ids = array();
  300. $context['topics'] = array();
  301. // Sequential pages are often not optimized, so we add an additional query.
  302. $pre_query = $start > 0;
  303. if ($pre_query && $maxindex > 0)
  304. {
  305. $request = $smcFunc['db_query']('', '
  306. SELECT t.id_topic
  307. FROM {db_prefix}topics AS t' . ($context['sort_by'] === 'last_poster' ? '
  308. INNER JOIN {db_prefix}messages AS ml ON (ml.id_msg = t.id_last_msg)' : (in_array($context['sort_by'], array('starter', 'subject')) ? '
  309. INNER JOIN {db_prefix}messages AS mf ON (mf.id_msg = t.id_first_msg)' : '')) . ($context['sort_by'] === 'starter' ? '
  310. LEFT JOIN {db_prefix}members AS memf ON (memf.id_member = mf.id_member)' : '') . ($context['sort_by'] === 'last_poster' ? '
  311. LEFT JOIN {db_prefix}members AS meml ON (meml.id_member = ml.id_member)' : '') . '
  312. WHERE t.id_board = {int:current_board}' . (!$modSettings['postmod_active'] || $context['can_approve_posts'] ? '' : '
  313. AND (t.approved = {int:is_approved}' . ($user_info['is_guest'] ? '' : ' OR t.id_member_started = {int:current_member}') . ')') . '
  314. ORDER BY is_sticky' . ($fake_ascending ? '' : ' DESC') . ', ' . $_REQUEST['sort'] . ($ascending ? '' : ' DESC') . '
  315. LIMIT {int:start}, {int:maxindex}',
  316. array(
  317. 'current_board' => $board,
  318. 'current_member' => $user_info['id'],
  319. 'is_approved' => 1,
  320. 'id_member_guest' => 0,
  321. 'start' => $start,
  322. 'maxindex' => $maxindex,
  323. )
  324. );
  325. $topic_ids = array();
  326. while ($row = $smcFunc['db_fetch_assoc']($request))
  327. $topic_ids[] = $row['id_topic'];
  328. }
  329. // Grab the appropriate topic information...
  330. if (!$pre_query || !empty($topic_ids))
  331. {
  332. // For search engine effectiveness we'll link guests differently.
  333. $context['pageindex_multiplier'] = empty($modSettings['disableCustomPerPage']) && !empty($options['messages_per_page']) && !WIRELESS ? $options['messages_per_page'] : $modSettings['defaultMaxMessages'];
  334. $result = $smcFunc['db_query']('substring', '
  335. SELECT
  336. t.id_topic, t.num_replies, t.locked, t.num_views, t.is_sticky, t.id_poll, t.id_previous_board,
  337. ' . ($user_info['is_guest'] ? '0' : 'IFNULL(lt.id_msg, IFNULL(lmr.id_msg, -1)) + 1') . ' AS new_from,
  338. t.id_last_msg, t.approved, t.unapproved_posts, ml.poster_time AS last_poster_time,
  339. ml.id_msg_modified, ml.subject AS last_subject, ml.icon AS last_icon,
  340. ml.poster_name AS last_member_name, ml.id_member AS last_id_member, ' . (!empty($settings['avatars_on_indexes']) ? 'meml.avatar,' : '') . '
  341. IFNULL(meml.real_name, ml.poster_name) AS last_display_name, t.id_first_msg,
  342. mf.poster_time AS first_poster_time, mf.subject AS first_subject, mf.icon AS first_icon,
  343. mf.poster_name AS first_member_name, mf.id_member AS first_id_member,
  344. IFNULL(memf.real_name, mf.poster_name) AS first_display_name, ' . (!empty($modSettings['preview_characters']) ? '
  345. SUBSTRING(ml.body, 1, ' . ($modSettings['preview_characters'] + 256) . ') AS last_body,
  346. SUBSTRING(mf.body, 1, ' . ($modSettings['preview_characters'] + 256) . ') AS first_body,' : '') . 'ml.smileys_enabled AS last_smileys, mf.smileys_enabled AS first_smileys' . (!empty($settings['avatars_on_indexes']) ? ',
  347. IFNULL(a.id_attach, 0) AS id_attach, a.filename, a.attachment_type' : '') . '
  348. FROM {db_prefix}topics AS t
  349. INNER JOIN {db_prefix}messages AS ml ON (ml.id_msg = t.id_last_msg)
  350. INNER JOIN {db_prefix}messages AS mf ON (mf.id_msg = t.id_first_msg)
  351. LEFT JOIN {db_prefix}members AS meml ON (meml.id_member = ml.id_member)
  352. LEFT JOIN {db_prefix}members AS memf ON (memf.id_member = mf.id_member)' . ($user_info['is_guest'] ? '' : '
  353. LEFT JOIN {db_prefix}log_topics AS lt ON (lt.id_topic = t.id_topic AND lt.id_member = {int:current_member})
  354. LEFT JOIN {db_prefix}log_mark_read AS lmr ON (lmr.id_board = {int:current_board} AND lmr.id_member = {int:current_member})') . (!empty($settings['avatars_on_indexes']) ? '
  355. LEFT JOIN {db_prefix}attachments AS a ON (a.id_member = ml.id_member)' : '') . '
  356. WHERE ' . ($pre_query ? 't.id_topic IN ({array_int:topic_list})' : 't.id_board = {int:current_board}') . (!$modSettings['postmod_active'] || $context['can_approve_posts'] ? '' : '
  357. AND (t.approved = {int:is_approved}' . ($user_info['is_guest'] ? '' : ' OR t.id_member_started = {int:current_member}') . ')') . '
  358. ORDER BY ' . ($pre_query ? 'FIND_IN_SET(t.id_topic, {string:find_set_topics})' : 'is_sticky' . ($fake_ascending ? '' : ' DESC') . ', ' . $_REQUEST['sort'] . ($ascending ? '' : ' DESC')) . '
  359. LIMIT ' . ($pre_query ? '' : '{int:start}, ') . '{int:maxindex}',
  360. array(
  361. 'current_board' => $board,
  362. 'current_member' => $user_info['id'],
  363. 'topic_list' => $topic_ids,
  364. 'is_approved' => 1,
  365. 'find_set_topics' => implode(',', $topic_ids),
  366. 'start' => $start,
  367. 'maxindex' => $maxindex,
  368. )
  369. );
  370. // Begin 'printing' the message index for current board.
  371. while ($row = $smcFunc['db_fetch_assoc']($result))
  372. {
  373. if ($row['id_poll'] > 0 && $modSettings['pollMode'] == '0')
  374. continue;
  375. if (!$pre_query)
  376. $topic_ids[] = $row['id_topic'];
  377. // Does the theme support message previews?
  378. if (!empty($settings['message_index_preview']) && !empty($modSettings['preview_characters']))
  379. {
  380. // Limit them to $modSettings['preview_characters'] characters
  381. $row['first_body'] = strip_tags(strtr(parse_bbc($row['first_body'], $row['first_smileys'], $row['id_first_msg']), array('<br />' => '&#10;')));
  382. if ($smcFunc['strlen']($row['first_body']) > $modSettings['preview_characters'])
  383. $row['first_body'] = $smcFunc['substr']($row['first_body'], 0, $modSettings['preview_characters']) . '...';
  384. $row['last_body'] = strip_tags(strtr(parse_bbc($row['last_body'], $row['last_smileys'], $row['id_last_msg']), array('<br />' => '&#10;')));
  385. if ($smcFunc['strlen']($row['last_body']) > $modSettings['preview_characters'])
  386. $row['last_body'] = $smcFunc['substr']($row['last_body'], 0, $modSettings['preview_characters']) . '...';
  387. // Censor the subject and message preview.
  388. censorText($row['first_subject']);
  389. censorText($row['first_body']);
  390. // Don't censor them twice!
  391. if ($row['id_first_msg'] == $row['id_last_msg'])
  392. {
  393. $row['last_subject'] = $row['first_subject'];
  394. $row['last_body'] = $row['first_body'];
  395. }
  396. else
  397. {
  398. censorText($row['last_subject']);
  399. censorText($row['last_body']);
  400. }
  401. }
  402. else
  403. {
  404. $row['first_body'] = '';
  405. $row['last_body'] = '';
  406. censorText($row['first_subject']);
  407. if ($row['id_first_msg'] == $row['id_last_msg'])
  408. $row['last_subject'] = $row['first_subject'];
  409. else
  410. censorText($row['last_subject']);
  411. }
  412. // Decide how many pages the topic should have.
  413. if ($row['num_replies'] + 1 > $context['messages_per_page'])
  414. {
  415. $pages = '&#171; ';
  416. // We can't pass start by reference.
  417. $start = -1;
  418. $pages .= constructPageIndex($scripturl . '?topic=' . $row['id_topic'] . '.%1$d', $start, $row['num_replies'] + 1, $context['messages_per_page'], true, false);
  419. // If we can use all, show all.
  420. if (!empty($modSettings['enableAllMessages']) && $row['num_replies'] + 1 < $modSettings['enableAllMessages'])
  421. $pages .= ' &nbsp;<a href="' . $scripturl . '?topic=' . $row['id_topic'] . '.0;all">' . $txt['all'] . '</a>';
  422. $pages .= ' &#187;';
  423. }
  424. else
  425. $pages = '';
  426. // We need to check the topic icons exist...
  427. if (!empty($modSettings['messageIconChecks_enable']))
  428. {
  429. if (!isset($context['icon_sources'][$row['first_icon']]))
  430. $context['icon_sources'][$row['first_icon']] = file_exists($settings['theme_dir'] . '/images/post/' . $row['first_icon'] . '.png') ? 'images_url' : 'default_images_url';
  431. if (!isset($context['icon_sources'][$row['last_icon']]))
  432. $context['icon_sources'][$row['last_icon']] = file_exists($settings['theme_dir'] . '/images/post/' . $row['last_icon'] . '.png') ? 'images_url' : 'default_images_url';
  433. }
  434. else
  435. {
  436. if (!isset($context['icon_sources'][$row['first_icon']]))
  437. $context['icon_sources'][$row['first_icon']] = 'images_url';
  438. if (!isset($context['icon_sources'][$row['last_icon']]))
  439. $context['icon_sources'][$row['last_icon']] = 'images_url';
  440. }
  441. if (!empty($settings['avatars_on_indexes']))
  442. {
  443. // Allow themers to show the latest poster's avatar along with the topic
  444. if (!empty($row['avatar']))
  445. {
  446. if ($modSettings['avatar_action_too_large'] == 'option_html_resize' || $modSettings['avatar_action_too_large'] == 'option_js_resize')
  447. {
  448. $avatar_width = !empty($modSettings['avatar_max_width_external']) ? ' width="' . $modSettings['avatar_max_width_external'] . '"' : '';
  449. $avatar_height = !empty($modSettings['avatar_max_height_external']) ? ' height="' . $modSettings['avatar_max_height_external'] . '"' : '';
  450. }
  451. else
  452. {
  453. $avatar_width = '';
  454. $avatar_height = '';
  455. }
  456. }
  457. }
  458. // 'Print' the topic info.
  459. $context['topics'][$row['id_topic']] = array(
  460. 'id' => $row['id_topic'],
  461. 'first_post' => array(
  462. 'id' => $row['id_first_msg'],
  463. 'member' => array(
  464. 'username' => $row['first_member_name'],
  465. 'name' => $row['first_display_name'],
  466. 'id' => $row['first_id_member'],
  467. 'href' => !empty($row['first_id_member']) ? $scripturl . '?action=profile;u=' . $row['first_id_member'] : '',
  468. 'link' => !empty($row['first_id_member']) ? '<a href="' . $scripturl . '?action=profile;u=' . $row['first_id_member'] . '" title="' . $txt['profile_of'] . ' ' . $row['first_display_name'] . '" class="preview">' . $row['first_display_name'] . '</a>' : $row['first_display_name']
  469. ),
  470. 'time' => timeformat($row['first_poster_time']),
  471. 'timestamp' => forum_time(true, $row['first_poster_time']),
  472. 'subject' => $row['first_subject'],
  473. 'preview' => $row['first_body'],
  474. 'icon' => $row['first_icon'],
  475. 'icon_url' => $settings[$context['icon_sources'][$row['first_icon']]] . '/post/' . $row['first_icon'] . '.png',
  476. 'href' => $scripturl . '?topic=' . $row['id_topic'] . '.0',
  477. 'link' => '<a href="' . $scripturl . '?topic=' . $row['id_topic'] . '.0">' . $row['first_subject'] . '</a>'
  478. ),
  479. 'last_post' => array(
  480. 'id' => $row['id_last_msg'],
  481. 'member' => array(
  482. 'username' => $row['last_member_name'],
  483. 'name' => $row['last_display_name'],
  484. 'id' => $row['last_id_member'],
  485. 'href' => !empty($row['last_id_member']) ? $scripturl . '?action=profile;u=' . $row['last_id_member'] : '',
  486. 'link' => !empty($row['last_id_member']) ? '<a href="' . $scripturl . '?action=profile;u=' . $row['last_id_member'] . '">' . $row['last_display_name'] . '</a>' : $row['last_display_name']
  487. ),
  488. 'time' => timeformat($row['last_poster_time']),
  489. 'timestamp' => forum_time(true, $row['last_poster_time']),
  490. 'subject' => $row['last_subject'],
  491. 'preview' => $row['last_body'],
  492. 'icon' => $row['last_icon'],
  493. 'icon_url' => $settings[$context['icon_sources'][$row['last_icon']]] . '/post/' . $row['last_icon'] . '.png',
  494. 'href' => $scripturl . '?topic=' . $row['id_topic'] . ($user_info['is_guest'] ? ('.' . (!empty($options['view_newest_first']) ? 0 : ((int) (($row['num_replies']) / $context['pageindex_multiplier'])) * $context['pageindex_multiplier']) . '#msg' . $row['id_last_msg']) : (($row['num_replies'] == 0 ? '.0' : '.msg' . $row['id_last_msg']) . '#new')),
  495. 'link' => '<a href="' . $scripturl . '?topic=' . $row['id_topic'] . ($user_info['is_guest'] ? ('.' . (!empty($options['view_newest_first']) ? 0 : ((int) (($row['num_replies']) / $context['pageindex_multiplier'])) * $context['pageindex_multiplier']) . '#msg' . $row['id_last_msg']) : (($row['num_replies'] == 0 ? '.0' : '.msg' . $row['id_last_msg']) . '#new')) . '" ' . ($row['num_replies'] == 0 ? '' : 'rel="nofollow"') . '>' . $row['last_subject'] . '</a>'
  496. ),
  497. 'is_sticky' => !empty($row['is_sticky']),
  498. 'is_locked' => !empty($row['locked']),
  499. 'is_poll' => $modSettings['pollMode'] == '1' && $row['id_poll'] > 0,
  500. 'is_hot' => $row['num_replies'] >= $modSettings['hotTopicPosts'],
  501. 'is_very_hot' => $row['num_replies'] >= $modSettings['hotTopicVeryPosts'],
  502. 'is_posted_in' => false,
  503. 'icon' => $row['first_icon'],
  504. 'icon_url' => $settings[$context['icon_sources'][$row['first_icon']]] . '/post/' . $row['first_icon'] . '.png',
  505. 'subject' => $row['first_subject'],
  506. 'new' => $row['new_from'] <= $row['id_msg_modified'],
  507. 'new_from' => $row['new_from'],
  508. 'newtime' => $row['new_from'],
  509. 'new_href' => $scripturl . '?topic=' . $row['id_topic'] . '.msg' . $row['new_from'] . '#new',
  510. 'pages' => $pages,
  511. 'replies' => comma_format($row['num_replies']),
  512. 'views' => comma_format($row['num_views']),
  513. 'approved' => $row['approved'],
  514. 'unapproved_posts' => $row['unapproved_posts'],
  515. );
  516. if (!empty($settings['avatars_on_indexes']))
  517. $context['topics'][$row['id_topic']]['last_post']['member']['avatar'] = array(
  518. 'name' => $row['avatar'],
  519. 'image' => $row['avatar'] == '' ? ($row['id_attach'] > 0 ? '<img class="avatar" src="' . (empty($row['attachment_type']) ? $scripturl . '?action=dlattach;attach=' . $row['id_attach'] . ';type=avatar' : $modSettings['custom_avatar_url'] . '/' . $row['filename']) . '" alt="" />' : '') : (stristr($row['avatar'], 'http://') ? '<img class="avatar" src="' . $row['avatar'] . '"' . $avatar_width . $avatar_height . ' alt="" />' : '<img class="avatar" src="' . $modSettings['avatar_url'] . '/' . $smcFunc['htmlspecialchars']($row['avatar']) . '" alt="" />'),
  520. 'href' => $row['avatar'] == '' ? ($row['id_attach'] > 0 ? (empty($row['attachment_type']) ? $scripturl . '?action=dlattach;attach=' . $row['id_attach'] . ';type=avatar' : $modSettings['custom_avatar_url'] . '/' . $row['filename']) : '') : (stristr($row['avatar'], 'http://') ? $row['avatar'] : $modSettings['avatar_url'] . '/' . $row['avatar']),
  521. 'url' => $row['avatar'] == '' ? '' : (stristr($row['avatar'], 'http://') ? $row['avatar'] : $modSettings['avatar_url'] . '/' . $row['avatar'])
  522. );
  523. determineTopicClass($context['topics'][$row['id_topic']]);
  524. }
  525. $smcFunc['db_free_result']($result);
  526. // Fix the sequence of topics if they were retrieved in the wrong order. (for speed reasons...)
  527. if ($fake_ascending)
  528. $context['topics'] = array_reverse($context['topics'], true);
  529. if (!empty($modSettings['enableParticipation']) && !$user_info['is_guest'] && !empty($topic_ids))
  530. {
  531. $result = $smcFunc['db_query']('', '
  532. SELECT id_topic
  533. FROM {db_prefix}messages
  534. WHERE id_topic IN ({array_int:topic_list})
  535. AND id_member = {int:current_member}
  536. GROUP BY id_topic
  537. LIMIT ' . count($topic_ids),
  538. array(
  539. 'current_member' => $user_info['id'],
  540. 'topic_list' => $topic_ids,
  541. )
  542. );
  543. while ($row = $smcFunc['db_fetch_assoc']($result))
  544. {
  545. $context['topics'][$row['id_topic']]['is_posted_in'] = true;
  546. $context['topics'][$row['id_topic']]['class'] = 'my_' . $context['topics'][$row['id_topic']]['class'];
  547. }
  548. $smcFunc['db_free_result']($result);
  549. }
  550. }
  551. $context['jump_to'] = array(
  552. 'label' => addslashes(un_htmlspecialchars($txt['jump_to'])),
  553. 'board_name' => $smcFunc['htmlspecialchars'](strtr(strip_tags($board_info['name']), array('&amp;' => '&'))),
  554. 'child_level' => $board_info['child_level'],
  555. );
  556. // Is Quick Moderation active/needed?
  557. if (!empty($options['display_quick_mod']) && !empty($context['topics']))
  558. {
  559. $context['can_markread'] = $context['user']['is_logged'];
  560. $context['can_lock'] = allowedTo('lock_any');
  561. $context['can_sticky'] = allowedTo('make_sticky');
  562. $context['can_move'] = allowedTo('move_any');
  563. $context['can_remove'] = allowedTo('remove_any');
  564. $context['can_merge'] = allowedTo('merge_any');
  565. // Ignore approving own topics as it's unlikely to come up...
  566. $context['can_approve'] = $modSettings['postmod_active'] && allowedTo('approve_posts') && !empty($board_info['unapproved_topics']);
  567. // Can we restore topics?
  568. $context['can_restore'] = allowedTo('move_any') && !empty($modSettings['recycle_enable']) && $modSettings['recycle_board'] == $board;
  569. if ($user_info['is_admin'] || $modSettings['topic_move_any'])
  570. $context['can_move_any'] = true;
  571. else
  572. {
  573. // We'll use this in a minute
  574. $boards_allowed = boardsAllowedTo('post_new');
  575. // How many boards can you do this on besides this one?
  576. $context['can_move_any'] = count($boards_allowed) > 1;
  577. }
  578. // Set permissions for all the topics.
  579. foreach ($context['topics'] as $t => $topic)
  580. {
  581. $started = $topic['first_post']['member']['id'] == $user_info['id'];
  582. $context['topics'][$t]['quick_mod'] = array(
  583. 'lock' => allowedTo('lock_any') || ($started && allowedTo('lock_own')),
  584. 'sticky' => allowedTo('make_sticky'),
  585. 'move' => (allowedTo('move_any') || ($started && allowedTo('move_own')) && $context['can_move_any']),
  586. 'modify' => allowedTo('modify_any') || ($started && allowedTo('modify_own')),
  587. 'remove' => allowedTo('remove_any') || ($started && allowedTo('remove_own')),
  588. 'approve' => $context['can_approve'] && $topic['unapproved_posts']
  589. );
  590. $context['can_lock'] |= ($started && allowedTo('lock_own'));
  591. $context['can_move'] |= ($started && allowedTo('move_own') && $context['can_move_any']);
  592. $context['can_remove'] |= ($started && allowedTo('remove_own'));
  593. }
  594. // Can we use quick moderation checkboxes?
  595. if ($options['display_quick_mod'] == 1)
  596. $context['can_quick_mod'] = $context['user']['is_logged'] || $context['can_approve'] || $context['can_remove'] || $context['can_lock'] || $context['can_sticky'] || $context['can_move'] || $context['can_merge'] || $context['can_restore'];
  597. // Or the icons?
  598. else
  599. $context['can_quick_mod'] = $context['can_remove'] || $context['can_lock'] || $context['can_sticky'] || $context['can_move'];
  600. }
  601. if (!empty($context['can_quick_mod']) && $options['display_quick_mod'] == 1)
  602. {
  603. $context['qmod_actions'] = array('approve', 'remove', 'lock', 'sticky', 'move', 'merge', 'restore', 'markread');
  604. call_integration_hook('integrate_quick_mod_actions');
  605. }
  606. // If there are children, but no topics and no ability to post topics...
  607. $context['no_topic_listing'] = !empty($context['boards']) && empty($context['topics']) && !$context['can_post_new'];
  608. // Build the message index button array.
  609. $context['normal_buttons'] = array(
  610. 'new_topic' => array('test' => 'can_post_new', 'text' => 'new_topic', 'image' => 'new_topic.png', 'lang' => true, 'url' => $scripturl . '?action=post;board=' . $context['current_board'] . '.0', 'active' => true),
  611. 'post_poll' => array('test' => 'can_post_poll', 'text' => 'new_poll', 'image' => 'new_poll.png', 'lang' => true, 'url' => $scripturl . '?action=post;board=' . $context['current_board'] . '.0;poll'),
  612. 'notify' => array('test' => 'can_mark_notify', 'text' => $context['is_marked_notify'] ? 'unnotify' : 'notify', 'image' => ($context['is_marked_notify'] ? 'un' : ''). 'notify.png', 'lang' => true, 'custom' => 'onclick="return confirm(\'' . ($context['is_marked_notify'] ? $txt['notification_disable_board'] : $txt['notification_enable_board']) . '\');"', 'url' => $scripturl . '?action=notifyboard;sa=' . ($context['is_marked_notify'] ? 'off' : 'on') . ';board=' . $context['current_board'] . '.' . $context['start'] . ';' . $context['session_var'] . '=' . $context['session_id']),
  613. 'markread' => array('text' => 'mark_read_short', 'image' => 'markread.png', 'lang' => true, 'custom' => 'onclick="return confirm(\'' . $txt['are_sure_mark_read'] . '\');"', 'url' => $scripturl . '?action=markasread;sa=board;board=' . $context['current_board'] . '.0;' . $context['session_var'] . '=' . $context['session_id']),
  614. );
  615. // Allow adding new buttons easily.
  616. // Note: $context['normal_buttons'] is added for backward compatibility with 2.0, but is deprecated and should not be used
  617. call_integration_hook('integrate_messageindex_buttons', array(&$context['normal_buttons']));
  618. }
  619. /**
  620. * Allows for moderation from the message index.
  621. * @todo refactor this...
  622. */
  623. function QuickModeration()
  624. {
  625. global $sourcedir, $board, $user_info, $modSettings, $smcFunc, $context;
  626. // Check the session = get or post.
  627. checkSession('request');
  628. // Lets go straight to the restore area.
  629. if (isset($_REQUEST['qaction']) && $_REQUEST['qaction'] == 'restore' && !empty($_REQUEST['topics']))
  630. redirectexit('action=restoretopic;topics=' . implode(',', $_REQUEST['topics']) . ';' . $context['session_var'] . '=' . $context['session_id']);
  631. if (isset($_SESSION['topicseen_cache']))
  632. $_SESSION['topicseen_cache'] = array();
  633. // This is going to be needed to send off the notifications and for updateLastMessages().
  634. require_once($sourcedir . '/Subs-Post.php');
  635. // Remember the last board they moved things to.
  636. if (isset($_REQUEST['move_to']))
  637. $_SESSION['move_to_topic'] = $_REQUEST['move_to'];
  638. // Only a few possible actions.
  639. $possibleActions = array();
  640. if (!empty($board))
  641. {
  642. $boards_can = array(
  643. 'make_sticky' => allowedTo('make_sticky') ? array($board) : array(),
  644. 'move_any' => allowedTo('move_any') ? array($board) : array(),
  645. 'move_own' => allowedTo('move_own') ? array($board) : array(),
  646. 'remove_any' => allowedTo('remove_any') ? array($board) : array(),
  647. 'remove_own' => allowedTo('remove_own') ? array($board) : array(),
  648. 'lock_any' => allowedTo('lock_any') ? array($board) : array(),
  649. 'lock_own' => allowedTo('lock_own') ? array($board) : array(),
  650. 'merge_any' => allowedTo('merge_any') ? array($board) : array(),
  651. 'approve_posts' => allowedTo('approve_posts') ? array($board) : array(),
  652. );
  653. $redirect_url = 'board=' . $board . '.' . $_REQUEST['start'];
  654. }
  655. else
  656. {
  657. /**
  658. * @todo Ugly. There's no getting around this, is there?
  659. * @todo Maybe just do this on the actions people want to use?
  660. */
  661. $boards_can = boardsAllowedTo(array('make_sticky', 'move_any', 'move_own', 'remove_any', 'remove_own', 'lock_any', 'lock_own', 'merge_any', 'approve_posts'), true, false);
  662. $redirect_url = isset($_POST['redirect_url']) ? $_POST['redirect_url'] : (isset($_SESSION['old_url']) ? $_SESSION['old_url'] : '');
  663. }
  664. // Are we enforcing the "no moving topics to boards where you can't post new ones" rule?
  665. if (!$user_info['is_amdin'] && !$modSettings['topic_move_any'])
  666. {
  667. // Don't count this board, if it's specified
  668. if (!empty($board))
  669. {
  670. $boards_can['post_new'] = array_diff(boardsAllowedTo('post_new'), array($board));
  671. }
  672. else
  673. {
  674. $boards_can['post_new'] = boardsAllowedTo('post_new');
  675. }
  676. if (empty($boards_can['post_new']))
  677. {
  678. $boards_can['move_any'] = $boards_can['move_own'] = array();
  679. }
  680. }
  681. if (!$user_info['is_guest'])
  682. $possibleActions[] = 'markread';
  683. if (!empty($boards_can['make_sticky']))
  684. $possibleActions[] = 'sticky';
  685. if (!empty($boards_can['move_any']) || !empty($boards_can['move_own']))
  686. $possibleActions[] = 'move';
  687. if (!empty($boards_can['remove_any']) || !empty($boards_can['remove_own']))
  688. $possibleActions[] = 'remove';
  689. if (!empty($boards_can['lock_any']) || !empty($boards_can['lock_own']))
  690. $possibleActions[] = 'lock';
  691. if (!empty($boards_can['merge_any']))
  692. $possibleActions[] = 'merge';
  693. if (!empty($boards_can['approve_posts']))
  694. $possibleActions[] = 'approve';
  695. // Two methods: $_REQUEST['actions'] (id_topic => action), and $_REQUEST['topics'] and $_REQUEST['qaction'].
  696. // (if action is 'move', $_REQUEST['move_to'] or $_REQUEST['move_tos'][$topic] is used.)
  697. if (!empty($_REQUEST['topics']))
  698. {
  699. // If the action isn't valid, just quit now.
  700. if (empty($_REQUEST['qaction']) || !in_array($_REQUEST['qaction'], $possibleActions))
  701. redirectexit($redirect_url);
  702. // Merge requires all topics as one parameter and can be done at once.
  703. if ($_REQUEST['qaction'] == 'merge')
  704. {
  705. // Merge requires at least two topics.
  706. if (empty($_REQUEST['topics']) || count($_REQUEST['topics']) < 2)
  707. redirectexit($redirect_url);
  708. require_once($sourcedir . '/SplitTopics.php');
  709. return MergeExecute($_REQUEST['topics']);
  710. }
  711. // Just convert to the other method, to make it easier.
  712. foreach ($_REQUEST['topics'] as $topic)
  713. $_REQUEST['actions'][(int) $topic] = $_REQUEST['qaction'];
  714. }
  715. // Weird... how'd you get here?
  716. if (empty($_REQUEST['actions']))
  717. redirectexit($redirect_url);
  718. // Validate each action.
  719. $temp = array();
  720. foreach ($_REQUEST['actions'] as $topic => $action)
  721. {
  722. if (in_array($action, $possibleActions))
  723. $temp[(int) $topic] = $action;
  724. }
  725. $_REQUEST['actions'] = $temp;
  726. if (!empty($_REQUEST['actions']))
  727. {
  728. // Find all topics...
  729. $request = $smcFunc['db_query']('', '
  730. SELECT id_topic, id_member_started, id_board, locked, approved, unapproved_posts
  731. FROM {db_prefix}topics
  732. WHERE id_topic IN ({array_int:action_topic_ids})
  733. LIMIT ' . count($_REQUEST['actions']),
  734. array(
  735. 'action_topic_ids' => array_keys($_REQUEST['actions']),
  736. )
  737. );
  738. while ($row = $smcFunc['db_fetch_assoc']($request))
  739. {
  740. if (!empty($board))
  741. {
  742. if ($row['id_board'] != $board || ($modSettings['postmod_active'] && !$row['approved'] && !allowedTo('approve_posts')))
  743. unset($_REQUEST['actions'][$row['id_topic']]);
  744. }
  745. else
  746. {
  747. // Don't allow them to act on unapproved posts they can't see...
  748. if ($modSettings['postmod_active'] && !$row['approved'] && !in_array(0, $boards_can['approve_posts']) && !in_array($row['id_board'], $boards_can['approve_posts']))
  749. unset($_REQUEST['actions'][$row['id_topic']]);
  750. // Goodness, this is fun. We need to validate the action.
  751. elseif ($_REQUEST['actions'][$row['id_topic']] == 'sticky' && !in_array(0, $boards_can['make_sticky']) && !in_array($row['id_board'], $boards_can['make_sticky']))
  752. unset($_REQUEST['actions'][$row['id_topic']]);
  753. elseif ($_REQUEST['actions'][$row['id_topic']] == 'move' && !in_array(0, $boards_can['move_any']) && !in_array($row['id_board'], $boards_can['move_any']) && ($row['id_member_started'] != $user_info['id'] || (!in_array(0, $boards_can['move_own']) && !in_array($row['id_board'], $boards_can['move_own']))))
  754. unset($_REQUEST['actions'][$row['id_topic']]);
  755. elseif ($_REQUEST['actions'][$row['id_topic']] == 'remove' && !in_array(0, $boards_can['remove_any']) && !in_array($row['id_board'], $boards_can['remove_any']) && ($row['id_member_started'] != $user_info['id'] || (!in_array(0, $boards_can['remove_own']) && !in_array($row['id_board'], $boards_can['remove_own']))))
  756. unset($_REQUEST['actions'][$row['id_topic']]);
  757. // @todo $locked is not set, what are you trying to do? (taking the change it is supposed to be $row['locked'])
  758. elseif ($_REQUEST['actions'][$row['id_topic']] == 'lock' && !in_array(0, $boards_can['lock_any']) && !in_array($row['id_board'], $boards_can['lock_any']) && ($row['id_member_started'] != $user_info['id'] || $row['locked'] == 1 || (!in_array(0, $boards_can['lock_own']) && !in_array($row['id_board'], $boards_can['lock_own']))))
  759. unset($_REQUEST['actions'][$row['id_topic']]);
  760. // If the topic is approved then you need permission to approve the posts within.
  761. elseif ($_REQUEST['actions'][$row['id_topic']] == 'approve' && (!$row['unapproved_posts'] || (!in_array(0, $boards_can['approve_posts']) && !in_array($row['id_board'], $boards_can['approve_posts']))))
  762. unset($_REQUEST['actions'][$row['id_topic']]);
  763. }
  764. }
  765. $smcFunc['db_free_result']($request);
  766. }
  767. $stickyCache = array();
  768. $moveCache = array(0 => array(), 1 => array());
  769. $removeCache = array();
  770. $lockCache = array();
  771. $markCache = array();
  772. $approveCache = array();
  773. // Separate the actions.
  774. foreach ($_REQUEST['actions'] as $topic => $action)
  775. {
  776. $topic = (int) $topic;
  777. if ($action == 'markread')
  778. $markCache[] = $topic;
  779. elseif ($action == 'sticky')
  780. $stickyCache[] = $topic;
  781. elseif ($action == 'move')
  782. {
  783. require_once($sourcedir . '/MoveTopic.php');
  784. moveTopicConcurrence();
  785. // $moveCache[0] is the topic, $moveCache[1] is the board to move to.
  786. $moveCache[1][$topic] = (int) (isset($_REQUEST['move_tos'][$topic]) ? $_REQUEST['move_tos'][$topic] : $_REQUEST['move_to']);
  787. if (empty($moveCache[1][$topic]))
  788. continue;
  789. $moveCache[0][] = $topic;
  790. }
  791. elseif ($action == 'remove')
  792. $removeCache[] = $topic;
  793. elseif ($action == 'lock')
  794. $lockCache[] = $topic;
  795. elseif ($action == 'approve')
  796. $approveCache[] = $topic;
  797. }
  798. if (empty($board))
  799. $affectedBoards = array();
  800. else
  801. $affectedBoards = array($board => array(0, 0));
  802. // Do all the stickies...
  803. if (!empty($stickyCache))
  804. {
  805. $smcFunc['db_query']('', '
  806. UPDATE {db_prefix}topics
  807. SET is_sticky = CASE WHEN is_sticky = {int:is_sticky} THEN 0 ELSE 1 END
  808. WHERE id_topic IN ({array_int:sticky_topic_ids})',
  809. array(
  810. 'sticky_topic_ids' => $stickyCache,
  811. 'is_sticky' => 1,
  812. )
  813. );
  814. // Get the board IDs and Sticky status
  815. $request = $smcFunc['db_query']('', '
  816. SELECT id_topic, id_board, is_sticky
  817. FROM {db_prefix}topics
  818. WHERE id_topic IN ({array_int:sticky_topic_ids})
  819. LIMIT ' . count($stickyCache),
  820. array(
  821. 'sticky_topic_ids' => $stickyCache,
  822. )
  823. );
  824. $stickyCacheBoards = array();
  825. $stickyCacheStatus = array();
  826. while ($row = $smcFunc['db_fetch_assoc']($request))
  827. {
  828. $stickyCacheBoards[$row['id_topic']] = $row['id_board'];
  829. $stickyCacheStatus[$row['id_topic']] = empty($row['is_sticky']);
  830. }
  831. $smcFunc['db_free_result']($request);
  832. }
  833. // Move sucka! (this is, by the by, probably the most complicated part....)
  834. if (!empty($moveCache[0]))
  835. {
  836. // I know - I just KNOW you're trying to beat the system. Too bad for you... we CHECK :P.
  837. $request = $smcFunc['db_query']('', '
  838. SELECT t.id_topic, t.id_board, b.count_posts
  839. FROM {db_prefix}topics AS t
  840. LEFT JOIN {db_prefix}boards AS b ON (t.id_board = b.id_board)
  841. WHERE t.id_topic IN ({array_int:move_topic_ids})' . (!empty($board) && !allowedTo('move_any') ? '
  842. AND t.id_member_started = {int:current_member}' : '') . '
  843. LIMIT ' . count($moveCache[0]),
  844. array(
  845. 'current_member' => $user_info['id'],
  846. 'move_topic_ids' => $moveCache[0],
  847. )
  848. );
  849. $moveTos = array();
  850. $moveCache2 = array();
  851. $countPosts = array();
  852. while ($row = $smcFunc['db_fetch_assoc']($request))
  853. {
  854. $to = $moveCache[1][$row['id_topic']];
  855. if (empty($to))
  856. continue;
  857. // Does this topic's board count the posts or not?
  858. $countPosts[$row['id_topic']] = empty($row['count_posts']);
  859. if (!isset($moveTos[$to]))
  860. $moveTos[$to] = array();
  861. $moveTos[$to][] = $row['id_topic'];
  862. // For reporting...
  863. $moveCache2[] = array($row['id_topic'], $row['id_board'], $to);
  864. }
  865. $smcFunc['db_free_result']($request);
  866. $moveCache = $moveCache2;
  867. require_once($sourcedir . '/MoveTopic.php');
  868. // Do the actual moves...
  869. foreach ($moveTos as $to => $topics)
  870. moveTopics($topics, $to);
  871. // Does the post counts need to be updated?
  872. if (!empty($moveTos))
  873. {
  874. $topicRecounts = array();
  875. $request = $smcFunc['db_query']('', '
  876. SELECT id_board, count_posts
  877. FROM {db_prefix}boards
  878. WHERE id_board IN ({array_int:move_boards})',
  879. array(
  880. 'move_boards' => array_keys($moveTos),
  881. )
  882. );
  883. while ($row = $smcFunc['db_fetch_assoc']($request))
  884. {
  885. $cp = empty($row['count_posts']);
  886. // Go through all the topics that are being moved to this board.
  887. foreach ($moveTos[$row['id_board']] as $topic)
  888. {
  889. // If both boards have the same value for post counting then no adjustment needs to be made.
  890. if ($countPosts[$topic] != $cp)
  891. {
  892. // If the board being moved to does count the posts then the other one doesn't so add to their post count.
  893. $topicRecounts[$topic] = $cp ? '+' : '-';
  894. }
  895. }
  896. }
  897. $smcFunc['db_free_result']($request);
  898. if (!empty($topicRecounts))
  899. {
  900. $members = array();
  901. // Get all the members who have posted in the moved topics.
  902. $request = $smcFunc['db_query']('', '
  903. SELECT id_member, id_topic
  904. FROM {db_prefix}messages
  905. WHERE id_topic IN ({array_int:moved_topic_ids})',
  906. array(
  907. 'moved_topic_ids' => array_keys($topicRecounts),
  908. )
  909. );
  910. while ($row = $smcFunc['db_fetch_assoc']($request))
  911. {
  912. if (!isset($members[$row['id_member']]))
  913. $members[$row['id_member']] = 0;
  914. if ($topicRecounts[$row['id_topic']] === '+')
  915. $members[$row['id_member']] += 1;
  916. else
  917. $members[$row['id_member']] -= 1;
  918. }
  919. $smcFunc['db_free_result']($request);
  920. // And now update them member's post counts
  921. foreach ($members as $id_member => $post_adj)
  922. updateMemberData($id_member, array('posts' => 'posts + ' . $post_adj));
  923. }
  924. }
  925. }
  926. // Now delete the topics...
  927. if (!empty($removeCache))
  928. {
  929. // They can only delete their own topics. (we wouldn't be here if they couldn't do that..)
  930. $result = $smcFunc['db_query']('', '
  931. SELECT id_topic, id_board
  932. FROM {db_prefix}topics
  933. WHERE id_topic IN ({array_int:removed_topic_ids})' . (!empty($board) && !allowedTo('remove_any') ? '
  934. AND id_member_started = {int:current_member}' : '') . '
  935. LIMIT ' . count($removeCache),
  936. array(
  937. 'current_member' => $user_info['id'],
  938. 'removed_topic_ids' => $removeCache,
  939. )
  940. );
  941. $removeCache = array();
  942. $removeCacheBoards = array();
  943. while ($row = $smcFunc['db_fetch_assoc']($result))
  944. {
  945. $removeCache[] = $row['id_topic'];
  946. $removeCacheBoards[$row['id_topic']] = $row['id_board'];
  947. }
  948. $smcFunc['db_free_result']($result);
  949. // Maybe *none* were their own topics.
  950. if (!empty($removeCache))
  951. {
  952. // Gotta send the notifications *first*!
  953. foreach ($removeCache as $topic)
  954. {
  955. // Only log the topic ID if it's not in the recycle board.
  956. logAction('remove', array((empty($modSettings['recycle_enable']) || $modSettings['recycle_board'] != $removeCacheBoards[$topic] ? 'topic' : 'old_topic_id') => $topic, 'board' => $removeCacheBoards[$topic]));
  957. sendNotifications($topic, 'remove');
  958. }
  959. require_once($sourcedir . '/RemoveTopic.php');
  960. removeTopics($removeCache);
  961. }
  962. }
  963. // Approve the topics...
  964. if (!empty($approveCache))
  965. {
  966. // We need unapproved topic ids and their authors!
  967. $request = $smcFunc['db_query']('', '
  968. SELECT id_topic, id_member_started
  969. FROM {db_prefix}topics
  970. WHERE id_topic IN ({array_int:approve_topic_ids})
  971. AND approved = {int:not_approved}
  972. LIMIT ' . count($approveCache),
  973. array(
  974. 'approve_topic_ids' => $approveCache,
  975. 'not_approved' => 0,
  976. )
  977. );
  978. $approveCache = array();
  979. $approveCacheMembers = array();
  980. while ($row = $smcFunc['db_fetch_assoc']($request))
  981. {
  982. $approveCache[] = $row['id_topic'];
  983. $approveCacheMembers[$row['id_topic']] = $row['id_member_started'];
  984. }
  985. $smcFunc['db_free_result']($request);
  986. // Any topics to approve?
  987. if (!empty($approveCache))
  988. {
  989. // Handle the approval part...
  990. approveTopics($approveCache);
  991. // Time for some logging!
  992. foreach ($approveCache as $topic)
  993. logAction('approve_topic', array('topic' => $topic, 'member' => $approveCacheMembers[$topic]));
  994. }
  995. }
  996. // And (almost) lastly, lock the topics...
  997. if (!empty($lockCache))
  998. {
  999. $lockStatus = array();
  1000. // Gotta make sure they CAN lock/unlock these topics...
  1001. if (!empty($board) && !allowedTo('lock_any'))
  1002. {
  1003. // Make sure they started the topic AND it isn't already locked by someone with higher priv's.
  1004. $result = $smcFunc['db_query']('', '
  1005. SELECT id_topic, locked, id_board
  1006. FROM {db_prefix}topics
  1007. WHERE id_topic IN ({array_int:locked_topic_ids})
  1008. AND id_member_started = {int:current_member}
  1009. AND locked IN (2, 0)
  1010. LIMIT ' . count($lockCache),
  1011. array(
  1012. 'current_member' => $user_info['id'],
  1013. 'locked_topic_ids' => $lockCache,
  1014. )
  1015. );
  1016. $lockCache = array();
  1017. $lockCacheBoards = array();
  1018. while ($row = $smcFunc['db_fetch_assoc']($result))
  1019. {
  1020. $lockCache[] = $row['id_topic'];
  1021. $lockCacheBoards[$row['id_topic']] = $row['id_board'];
  1022. $lockStatus[$row['id_topic']] = empty($row['locked']);
  1023. }
  1024. $smcFunc['db_free_result']($result);
  1025. }
  1026. else
  1027. {
  1028. $result = $smcFunc['db_query']('', '
  1029. SELECT id_topic, locked, id_board
  1030. FROM {db_prefix}topics
  1031. WHERE id_topic IN ({array_int:locked_topic_ids})
  1032. LIMIT ' . count($lockCache),
  1033. array(
  1034. 'locked_topic_ids' => $lockCache,
  1035. )
  1036. );
  1037. $lockCacheBoards = array();
  1038. while ($row = $smcFunc['db_fetch_assoc']($result))
  1039. {
  1040. $lockStatus[$row['id_topic']] = empty($row['locked']);
  1041. $lockCacheBoards[$row['id_topic']] = $row['id_board'];
  1042. }
  1043. $smcFunc['db_free_result']($result);
  1044. }
  1045. // It could just be that *none* were their own topics...
  1046. if (!empty($lockCache))
  1047. {
  1048. // Alternate the locked value.
  1049. $smcFunc['db_query']('', '
  1050. UPDATE {db_prefix}topics
  1051. SET locked = CASE WHEN locked = {int:is_locked} THEN ' . (allowedTo('lock_any') ? '1' : '2') . ' ELSE 0 END
  1052. WHERE id_topic IN ({array_int:locked_topic_ids})',
  1053. array(
  1054. 'locked_topic_ids' => $lockCache,
  1055. 'is_locked' => 0,
  1056. )
  1057. );
  1058. }
  1059. }
  1060. if (!empty($markCache))
  1061. {
  1062. $smcFunc['db_query']('', '
  1063. SELECT id_topic, unwatched
  1064. FROM {db_prefix}log_topics
  1065. WHERE id_topic IN ({array_int:selected_topics})
  1066. AND id_member = {int:current_user}',
  1067. array(
  1068. 'selected_topics' => $markCache,
  1069. 'current_user' => $user_info['id'],
  1070. )
  1071. );
  1072. $logged_topics = array();
  1073. while ($row = $smcFunc['db_fetch_assoc']($request))
  1074. $logged_topics[$row['id_topic']] = $row['unwatched'];
  1075. $smcFunc['db_free_result']($request);
  1076. $markArray = array();
  1077. foreach ($markCache as $topic)
  1078. $markArray[] = array($modSettings['maxMsgID'], $user_info['id'], $topic, (isset($logged_topics[$topic]) ? $logged_topics[$topic] : 0));
  1079. $smcFunc['db_insert']('replace',
  1080. '{db_prefix}log_topics',
  1081. array('id_msg' => 'int', 'id_member' => 'int', 'id_topic' => 'int', 'unwatched' => 'int'),
  1082. $markArray,
  1083. array('id_member', 'id_topic')
  1084. );
  1085. }
  1086. foreach ($moveCache as $topic)
  1087. {
  1088. // Didn't actually move anything!
  1089. if (!isset($topic[0]))
  1090. break;
  1091. logAction('move', array('topic' => $topic[0], 'board_from' => $topic[1], 'board_to' => $topic[2]));
  1092. sendNotifications($topic[0], 'move');
  1093. }
  1094. foreach ($lockCache as $topic)
  1095. {
  1096. logAction($lockStatus[$topic] ? 'lock' : 'unlock', array('topic' => $topic, 'board' => $lockCacheBoards[$topic]));
  1097. sendNotifications($topic, $lockStatus[$topic] ? 'lock' : 'unlock');
  1098. }
  1099. foreach ($stickyCache as $topic)
  1100. {
  1101. logAction($stickyCacheStatus[$topic] ? 'unsticky' : 'sticky', array('topic' => $topic, 'board' => $stickyCacheBoards[$topic]));
  1102. sendNotifications($topic, 'sticky');
  1103. }
  1104. updateStats('topic');
  1105. updateStats('message');
  1106. updateSettings(array(
  1107. 'calendar_updated' => time(),
  1108. ));
  1109. if (!empty($affectedBoards))
  1110. updateLastMessages(array_keys($affectedBoards));
  1111. redirectexit($redirect_url);
  1112. }
  1113. ?>