2
0

MessageIndex.php 52 KB

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364656667686970717273747576777879808182838485868788899091929394959697989910010110210310410510610710810911011111211311411511611711811912012112212312412512612712812913013113213313413513613713813914014114214314414514614714814915015115215315415515615715815916016116216316416516616716816917017117217317417517617717817918018118218318418518618718818919019119219319419519619719819920020120220320420520620720820921021121221321421521621721821922022122222322422522622722822923023123223323423523623723823924024124224324424524624724824925025125225325425525625725825926026126226326426526626726826927027127227327427527627727827928028128228328428528628728828929029129229329429529629729829930030130230330430530630730830931031131231331431531631731831932032132232332432532632732832933033133233333433533633733833934034134234334434534634734834935035135235335435535635735835936036136236336436536636736836937037137237337437537637737837938038138238338438538638738838939039139239339439539639739839940040140240340440540640740840941041141241341441541641741841942042142242342442542642742842943043143243343443543643743843944044144244344444544644744844945045145245345445545645745845946046146246346446546646746846947047147247347447547647747847948048148248348448548648748848949049149249349449549649749849950050150250350450550650750850951051151251351451551651751851952052152252352452552652752852953053153253353453553653753853954054154254354454554654754854955055155255355455555655755855956056156256356456556656756856957057157257357457557657757857958058158258358458558658758858959059159259359459559659759859960060160260360460560660760860961061161261361461561661761861962062162262362462562662762862963063163263363463563663763863964064164264364464564664764864965065165265365465565665765865966066166266366466566666766866967067167267367467567667767867968068168268368468568668768868969069169269369469569669769869970070170270370470570670770870971071171271371471571671771871972072172272372472572672772872973073173273373473573673773873974074174274374474574674774874975075175275375475575675775875976076176276376476576676776876977077177277377477577677777877978078178278378478578678778878979079179279379479579679779879980080180280380480580680780880981081181281381481581681781881982082182282382482582682782882983083183283383483583683783883984084184284384484584684784884985085185285385485585685785885986086186286386486586686786886987087187287387487587687787887988088188288388488588688788888989089189289389489589689789889990090190290390490590690790890991091191291391491591691791891992092192292392492592692792892993093193293393493593693793893994094194294394494594694794894995095195295395495595695795895996096196296396496596696796896997097197297397497597697797897998098198298398498598698798898999099199299399499599699799899910001001100210031004100510061007100810091010101110121013101410151016101710181019102010211022102310241025102610271028102910301031103210331034103510361037103810391040104110421043104410451046104710481049105010511052105310541055105610571058105910601061106210631064106510661067106810691070107110721073107410751076107710781079108010811082108310841085108610871088108910901091109210931094109510961097109810991100110111021103110411051106110711081109111011111112111311141115111611171118111911201121112211231124112511261127112811291130113111321133113411351136113711381139114011411142114311441145114611471148114911501151115211531154115511561157115811591160116111621163116411651166116711681169117011711172117311741175117611771178117911801181118211831184118511861187118811891190119111921193119411951196119711981199120012011202120312041205120612071208120912101211121212131214121512161217121812191220122112221223122412251226122712281229123012311232123312341235123612371238123912401241124212431244124512461247124812491250125112521253
  1. <?php
  2. /**
  3. * This file is what shows the listing of topics in a board.
  4. * It's just one or two functions, but don't under estimate it ;).
  5. *
  6. * Simple Machines Forum (SMF)
  7. *
  8. * @package SMF
  9. * @author Simple Machines http://www.simplemachines.org
  10. * @copyright 2014 Simple Machines and individual contributors
  11. * @license http://www.simplemachines.org/about/smf/license.php BSD
  12. *
  13. * @version 2.1 Alpha 1
  14. */
  15. if (!defined('SMF'))
  16. die('No direct access...');
  17. /**
  18. * Show the list of topics in this board, along with any child boards.
  19. */
  20. function MessageIndex()
  21. {
  22. global $txt, $scripturl, $board, $modSettings, $context;
  23. global $options, $settings, $board_info, $user_info, $smcFunc, $sourcedir;
  24. // If this is a redirection board head off.
  25. if ($board_info['redirect'])
  26. {
  27. $smcFunc['db_query']('', '
  28. UPDATE {db_prefix}boards
  29. SET num_posts = num_posts + 1
  30. WHERE id_board = {int:current_board}',
  31. array(
  32. 'current_board' => $board,
  33. )
  34. );
  35. redirectexit($board_info['redirect']);
  36. }
  37. if (WIRELESS)
  38. $context['sub_template'] = WIRELESS_PROTOCOL . '_messageindex';
  39. else
  40. loadTemplate('MessageIndex');
  41. $context['name'] = $board_info['name'];
  42. $context['description'] = $board_info['description'];
  43. if (!empty($board_info['description']))
  44. $context['meta_description'] = strip_tags($board_info['description']);
  45. // How many topics do we have in total?
  46. $board_info['total_topics'] = allowedTo('approve_posts') ? $board_info['num_topics'] + $board_info['unapproved_topics'] : $board_info['num_topics'] + $board_info['unapproved_user_topics'];
  47. // View all the topics, or just a few?
  48. $context['topics_per_page'] = empty($modSettings['disableCustomPerPage']) && !empty($options['topics_per_page']) && !WIRELESS ? $options['topics_per_page'] : $modSettings['defaultMaxTopics'];
  49. $context['messages_per_page'] = empty($modSettings['disableCustomPerPage']) && !empty($options['messages_per_page']) && !WIRELESS ? $options['messages_per_page'] : $modSettings['defaultMaxMessages'];
  50. $maxindex = isset($_REQUEST['all']) && !empty($modSettings['enableAllMessages']) ? $board_info['total_topics'] : $context['topics_per_page'];
  51. // Right, let's only index normal stuff!
  52. if (count($_GET) > 1)
  53. {
  54. $session_name = session_name();
  55. foreach ($_GET as $k => $v)
  56. {
  57. if (!in_array($k, array('board', 'start', $session_name)))
  58. $context['robot_no_index'] = true;
  59. }
  60. }
  61. if (!empty($_REQUEST['start']) && (!is_numeric($_REQUEST['start']) || $_REQUEST['start'] % $context['messages_per_page'] != 0))
  62. $context['robot_no_index'] = true;
  63. // If we can view unapproved messages and there are some build up a list.
  64. if (allowedTo('approve_posts') && ($board_info['unapproved_topics'] || $board_info['unapproved_posts']))
  65. {
  66. $untopics = $board_info['unapproved_topics'] ? '<a href="' . $scripturl . '?action=moderate;area=postmod;sa=topics;brd=' . $board . '">' . $board_info['unapproved_topics'] . '</a>' : 0;
  67. $unposts = $board_info['unapproved_posts'] ? '<a href="' . $scripturl . '?action=moderate;area=postmod;sa=posts;brd=' . $board . '">' . ($board_info['unapproved_posts'] - $board_info['unapproved_topics']) . '</a>' : 0;
  68. $context['unapproved_posts_message'] = sprintf($txt['there_are_unapproved_topics'], $untopics, $unposts, $scripturl . '?action=moderate;area=postmod;sa=' . ($board_info['unapproved_topics'] ? 'topics' : 'posts') . ';brd=' . $board);
  69. }
  70. // We only know these.
  71. if (isset($_REQUEST['sort']) && !in_array($_REQUEST['sort'], array('subject', 'starter', 'last_poster', 'replies', 'views', 'first_post', 'last_post')))
  72. $_REQUEST['sort'] = 'last_post';
  73. // Make sure the starting place makes sense and construct the page index.
  74. if (isset($_REQUEST['sort']))
  75. $context['page_index'] = constructPageIndex($scripturl . '?board=' . $board . '.%1$d;sort=' . $_REQUEST['sort'] . (isset($_REQUEST['desc']) ? ';desc' : ''), $_REQUEST['start'], $board_info['total_topics'], $maxindex, true);
  76. else
  77. $context['page_index'] = constructPageIndex($scripturl . '?board=' . $board . '.%1$d', $_REQUEST['start'], $board_info['total_topics'], $maxindex, true);
  78. $context['start'] = &$_REQUEST['start'];
  79. // Set a canonical URL for this page.
  80. $context['canonical_url'] = $scripturl . '?board=' . $board . '.' . $context['start'];
  81. $can_show_all = !empty($modSettings['enableAllMessages']) && $maxindex > $modSettings['enableAllMessages'];
  82. if (WIRELESS || !($can_show_all && isset($_REQUEST['all'])))
  83. {
  84. $context['links'] = array(
  85. 'first' => $_REQUEST['start'] >= $context['topics_per_page'] ? $scripturl . '?board=' . $board . '.0' : '',
  86. 'prev' => $_REQUEST['start'] >= $context['topics_per_page'] ? $scripturl . '?board=' . $board . '.' . ($_REQUEST['start'] - $context['topics_per_page']) : '',
  87. 'next' => $_REQUEST['start'] + $context['topics_per_page'] < $board_info['total_topics'] ? $scripturl . '?board=' . $board . '.' . ($_REQUEST['start'] + $context['topics_per_page']) : '',
  88. 'last' => $_REQUEST['start'] + $context['topics_per_page'] < $board_info['total_topics'] ? $scripturl . '?board=' . $board . '.' . (floor(($board_info['total_topics'] - 1) / $context['topics_per_page']) * $context['topics_per_page']) : '',
  89. 'up' => $board_info['parent'] == 0 ? $scripturl . '?' : $scripturl . '?board=' . $board_info['parent'] . '.0'
  90. );
  91. }
  92. $context['page_info'] = array(
  93. 'current_page' => $_REQUEST['start'] / $context['topics_per_page'] + 1,
  94. 'num_pages' => floor(($board_info['total_topics'] - 1) / $context['topics_per_page']) + 1
  95. );
  96. if (isset($_REQUEST['all']) && $can_show_all)
  97. {
  98. $maxindex = $modSettings['enableAllMessages'];
  99. $_REQUEST['start'] = 0;
  100. }
  101. // Build a list of the board's moderators.
  102. $context['moderators'] = &$board_info['moderators'];
  103. $context['moderator_groups'] = &$board_info['moderator_groups'];
  104. $context['link_moderators'] = array();
  105. if (!empty($board_info['moderators']))
  106. {
  107. foreach ($board_info['moderators'] as $mod)
  108. $context['link_moderators'][] ='<a href="' . $scripturl . '?action=profile;u=' . $mod['id'] . '" title="' . $txt['board_moderator'] . '">' . $mod['name'] . '</a>';
  109. }
  110. if (!empty($board_info['moderator_groups']))
  111. {
  112. // By default just tack the moderator groups onto the end of the members
  113. foreach ($board_info['moderator_groups'] as $mod_group)
  114. $context['link_moderators'][] = '<a href="' . $scripturl . '?action=groups;sa=members;group=' . $mod_group['id'] . '" title="' . $txt['board_moderator'] . '">' . $mod_group['name'] . '</a>';
  115. }
  116. // Now we tack the info onto the end of the linktree
  117. if (!empty($context['link_moderators']))
  118. {
  119. $context['linktree'][count($context['linktree']) - 1]['extra_after'] = '<span class="board_moderators">(' . (count($context['link_moderators']) == 1 ? $txt['moderator'] : $txt['moderators']) . ': ' . implode(', ', $context['link_moderators']) . ')</span>';
  120. }
  121. // Mark current and parent boards as seen.
  122. if (!$user_info['is_guest'])
  123. {
  124. // We can't know they read it if we allow prefetches.
  125. if (isset($_SERVER['HTTP_X_MOZ']) && $_SERVER['HTTP_X_MOZ'] == 'prefetch')
  126. {
  127. ob_end_clean();
  128. header('HTTP/1.1 403 Prefetch Forbidden');
  129. die;
  130. }
  131. $smcFunc['db_insert']('replace',
  132. '{db_prefix}log_boards',
  133. array('id_msg' => 'int', 'id_member' => 'int', 'id_board' => 'int'),
  134. array($modSettings['maxMsgID'], $user_info['id'], $board),
  135. array('id_member', 'id_board')
  136. );
  137. if (!empty($board_info['parent_boards']))
  138. {
  139. $smcFunc['db_query']('', '
  140. UPDATE {db_prefix}log_boards
  141. SET id_msg = {int:id_msg}
  142. WHERE id_member = {int:current_member}
  143. AND id_board IN ({array_int:board_list})',
  144. array(
  145. 'current_member' => $user_info['id'],
  146. 'board_list' => array_keys($board_info['parent_boards']),
  147. 'id_msg' => $modSettings['maxMsgID'],
  148. )
  149. );
  150. // We've seen all these boards now!
  151. foreach ($board_info['parent_boards'] as $k => $dummy)
  152. if (isset($_SESSION['topicseen_cache'][$k]))
  153. unset($_SESSION['topicseen_cache'][$k]);
  154. }
  155. if (isset($_SESSION['topicseen_cache'][$board]))
  156. unset($_SESSION['topicseen_cache'][$board]);
  157. $request = $smcFunc['db_query']('', '
  158. SELECT sent
  159. FROM {db_prefix}log_notify
  160. WHERE id_board = {int:current_board}
  161. AND id_member = {int:current_member}
  162. LIMIT 1',
  163. array(
  164. 'current_board' => $board,
  165. 'current_member' => $user_info['id'],
  166. )
  167. );
  168. $context['is_marked_notify'] = $smcFunc['db_num_rows']($request) != 0;
  169. if ($context['is_marked_notify'])
  170. {
  171. list ($sent) = $smcFunc['db_fetch_row']($request);
  172. if (!empty($sent))
  173. {
  174. $smcFunc['db_query']('', '
  175. UPDATE {db_prefix}log_notify
  176. SET sent = {int:is_sent}
  177. WHERE id_board = {int:current_board}
  178. AND id_member = {int:current_member}',
  179. array(
  180. 'current_board' => $board,
  181. 'current_member' => $user_info['id'],
  182. 'is_sent' => 0,
  183. )
  184. );
  185. }
  186. }
  187. $smcFunc['db_free_result']($request);
  188. }
  189. else
  190. $context['is_marked_notify'] = false;
  191. // 'Print' the header and board info.
  192. $context['page_title'] = strip_tags($board_info['name']);
  193. // Set the variables up for the template.
  194. $context['can_mark_notify'] = !$user_info['is_guest'];
  195. $context['can_post_new'] = allowedTo('post_new') || ($modSettings['postmod_active'] && allowedTo('post_unapproved_topics'));
  196. $context['can_post_poll'] = $modSettings['pollMode'] == '1' && allowedTo('poll_post') && $context['can_post_new'];
  197. $context['can_moderate_forum'] = allowedTo('moderate_forum');
  198. $context['can_approve_posts'] = allowedTo('approve_posts');
  199. require_once($sourcedir . '/Subs-BoardIndex.php');
  200. $boardIndexOptions = array(
  201. 'include_categories' => false,
  202. 'base_level' => $board_info['child_level'] + 1,
  203. 'parent_id' => $board_info['id'],
  204. 'set_latest_post' => false,
  205. 'countChildPosts' => !empty($modSettings['countChildPosts']),
  206. );
  207. $context['boards'] = getBoardIndex($boardIndexOptions);
  208. // Nosey, nosey - who's viewing this topic?
  209. if (!empty($settings['display_who_viewing']))
  210. {
  211. $context['view_members'] = array();
  212. $context['view_members_list'] = array();
  213. $context['view_num_hidden'] = 0;
  214. $request = $smcFunc['db_query']('', '
  215. SELECT
  216. lo.id_member, lo.log_time, mem.real_name, mem.member_name, mem.show_online,
  217. mg.online_color, mg.id_group, mg.group_name
  218. FROM {db_prefix}log_online AS lo
  219. LEFT JOIN {db_prefix}members AS mem ON (mem.id_member = lo.id_member)
  220. LEFT JOIN {db_prefix}membergroups AS mg ON (mg.id_group = CASE WHEN mem.id_group = {int:reg_member_group} THEN mem.id_post_group ELSE mem.id_group END)
  221. WHERE INSTR(lo.url, {string:in_url_string}) > 0 OR lo.session = {string:session}',
  222. array(
  223. 'reg_member_group' => 0,
  224. 'in_url_string' => 's:5:"board";i:' . $board . ';',
  225. 'session' => $user_info['is_guest'] ? 'ip' . $user_info['ip'] : session_id(),
  226. )
  227. );
  228. while ($row = $smcFunc['db_fetch_assoc']($request))
  229. {
  230. if (empty($row['id_member']))
  231. continue;
  232. if (!empty($row['online_color']))
  233. $link = '<a href="' . $scripturl . '?action=profile;u=' . $row['id_member'] . '" style="color: ' . $row['online_color'] . ';">' . $row['real_name'] . '</a>';
  234. else
  235. $link = '<a href="' . $scripturl . '?action=profile;u=' . $row['id_member'] . '">' . $row['real_name'] . '</a>';
  236. $is_buddy = in_array($row['id_member'], $user_info['buddies']);
  237. if ($is_buddy)
  238. $link = '<strong>' . $link . '</strong>';
  239. if (!empty($row['show_online']) || allowedTo('moderate_forum'))
  240. $context['view_members_list'][$row['log_time'] . $row['member_name']] = empty($row['show_online']) ? '<em>' . $link . '</em>' : $link;
  241. // @todo why are we filling this array of data that are just counted (twice) and discarded? ???
  242. $context['view_members'][$row['log_time'] . $row['member_name']] = array(
  243. 'id' => $row['id_member'],
  244. 'username' => $row['member_name'],
  245. 'name' => $row['real_name'],
  246. 'group' => $row['id_group'],
  247. 'href' => $scripturl . '?action=profile;u=' . $row['id_member'],
  248. 'link' => $link,
  249. 'is_buddy' => $is_buddy,
  250. 'hidden' => empty($row['show_online']),
  251. );
  252. if (empty($row['show_online']))
  253. $context['view_num_hidden']++;
  254. }
  255. $context['view_num_guests'] = $smcFunc['db_num_rows']($request) - count($context['view_members']);
  256. $smcFunc['db_free_result']($request);
  257. // Put them in "last clicked" order.
  258. krsort($context['view_members_list']);
  259. krsort($context['view_members']);
  260. }
  261. // Default sort methods.
  262. $sort_methods = array(
  263. 'subject' => 'mf.subject',
  264. 'starter' => 'IFNULL(memf.real_name, mf.poster_name)',
  265. 'last_poster' => 'IFNULL(meml.real_name, ml.poster_name)',
  266. 'replies' => 't.num_replies',
  267. 'views' => 't.num_views',
  268. 'first_post' => 't.id_topic',
  269. 'last_post' => 't.id_last_msg'
  270. );
  271. // They didn't pick one, default to by last post descending.
  272. if (!isset($_REQUEST['sort']) || !isset($sort_methods[$_REQUEST['sort']]))
  273. {
  274. $context['sort_by'] = 'last_post';
  275. $_REQUEST['sort'] = 'id_last_msg';
  276. $ascending = isset($_REQUEST['asc']);
  277. }
  278. // Otherwise default to ascending.
  279. else
  280. {
  281. $context['sort_by'] = $_REQUEST['sort'];
  282. $_REQUEST['sort'] = $sort_methods[$_REQUEST['sort']];
  283. $ascending = !isset($_REQUEST['desc']);
  284. }
  285. $context['sort_direction'] = $ascending ? 'up' : 'down';
  286. $txt['starter'] = $txt['started_by'];
  287. foreach ($sort_methods as $key => $val)
  288. $context['topics_headers'][$key] = '<a href="' . $scripturl . '?board=' . $context['current_board'] . '.' . $context['start'] . ';sort=' . $key . ($context['sort_by'] == $key && $context['sort_direction'] == 'up' ? ';desc' : '') . '">' . $txt[$key] . ($context['sort_by'] == $key ? '<span class="sort sort_' . $context['sort_direction'] . '"></span>' : '') . '</a>';
  289. // Calculate the fastest way to get the topics.
  290. $start = (int) $_REQUEST['start'];
  291. if ($start > ($board_info['total_topics'] - 1) / 2)
  292. {
  293. $ascending = !$ascending;
  294. $fake_ascending = true;
  295. $maxindex = $board_info['total_topics'] < $start + $maxindex + 1 ? $board_info['total_topics'] - $start : $maxindex;
  296. $start = $board_info['total_topics'] < $start + $maxindex + 1 ? 0 : $board_info['total_topics'] - $start - $maxindex;
  297. }
  298. else
  299. $fake_ascending = false;
  300. // Setup the default topic icons...
  301. $stable_icons = array('xx', 'thumbup', 'thumbdown', 'exclamation', 'question', 'lamp', 'smiley', 'angry', 'cheesy', 'grin', 'sad', 'wink', 'poll', 'moved', 'recycled', 'wireless', 'clip');
  302. $context['icon_sources'] = array();
  303. foreach ($stable_icons as $icon)
  304. $context['icon_sources'][$icon] = 'images_url';
  305. $topic_ids = array();
  306. $context['topics'] = array();
  307. // Sequential pages are often not optimized, so we add an additional query.
  308. $pre_query = $start > 0;
  309. if ($pre_query && $maxindex > 0)
  310. {
  311. $request = $smcFunc['db_query']('', '
  312. SELECT t.id_topic
  313. FROM {db_prefix}topics AS t' . ($context['sort_by'] === 'last_poster' ? '
  314. INNER JOIN {db_prefix}messages AS ml ON (ml.id_msg = t.id_last_msg)' : (in_array($context['sort_by'], array('starter', 'subject')) ? '
  315. INNER JOIN {db_prefix}messages AS mf ON (mf.id_msg = t.id_first_msg)' : '')) . ($context['sort_by'] === 'starter' ? '
  316. LEFT JOIN {db_prefix}members AS memf ON (memf.id_member = mf.id_member)' : '') . ($context['sort_by'] === 'last_poster' ? '
  317. LEFT JOIN {db_prefix}members AS meml ON (meml.id_member = ml.id_member)' : '') . '
  318. WHERE t.id_board = {int:current_board}' . (!$modSettings['postmod_active'] || $context['can_approve_posts'] ? '' : '
  319. AND (t.approved = {int:is_approved}' . ($user_info['is_guest'] ? '' : ' OR t.id_member_started = {int:current_member}') . ')') . '
  320. ORDER BY is_sticky' . ($fake_ascending ? '' : ' DESC') . ', ' . $_REQUEST['sort'] . ($ascending ? '' : ' DESC') . '
  321. LIMIT {int:start}, {int:maxindex}',
  322. array(
  323. 'current_board' => $board,
  324. 'current_member' => $user_info['id'],
  325. 'is_approved' => 1,
  326. 'id_member_guest' => 0,
  327. 'start' => $start,
  328. 'maxindex' => $maxindex,
  329. )
  330. );
  331. $topic_ids = array();
  332. while ($row = $smcFunc['db_fetch_assoc']($request))
  333. $topic_ids[] = $row['id_topic'];
  334. }
  335. // Grab the appropriate topic information...
  336. if (!$pre_query || !empty($topic_ids))
  337. {
  338. // For search engine effectiveness we'll link guests differently.
  339. $context['pageindex_multiplier'] = empty($modSettings['disableCustomPerPage']) && !empty($options['messages_per_page']) && !WIRELESS ? $options['messages_per_page'] : $modSettings['defaultMaxMessages'];
  340. $result = $smcFunc['db_query']('substring', '
  341. SELECT
  342. t.id_topic, t.num_replies, t.locked, t.num_views, t.is_sticky, t.id_poll, t.id_previous_board,
  343. ' . ($user_info['is_guest'] ? '0' : 'IFNULL(lt.id_msg, IFNULL(lmr.id_msg, -1)) + 1') . ' AS new_from,
  344. t.id_last_msg, t.approved, t.unapproved_posts, ml.poster_time AS last_poster_time, t.id_redirect_topic,
  345. ml.id_msg_modified, ml.subject AS last_subject, ml.icon AS last_icon,
  346. ml.poster_name AS last_member_name, ml.id_member AS last_id_member, ' . (!empty($settings['avatars_on_indexes']) ? 'meml.avatar,' : '') . '
  347. IFNULL(meml.real_name, ml.poster_name) AS last_display_name, t.id_first_msg,
  348. mf.poster_time AS first_poster_time, mf.subject AS first_subject, mf.icon AS first_icon,
  349. mf.poster_name AS first_member_name, mf.id_member AS first_id_member,
  350. IFNULL(memf.real_name, mf.poster_name) AS first_display_name, ' . (!empty($modSettings['preview_characters']) ? '
  351. SUBSTRING(ml.body, 1, ' . ($modSettings['preview_characters'] + 256) . ') AS last_body,
  352. SUBSTRING(mf.body, 1, ' . ($modSettings['preview_characters'] + 256) . ') AS first_body,' : '') . 'ml.smileys_enabled AS last_smileys, mf.smileys_enabled AS first_smileys' . (!empty($settings['avatars_on_indexes']) ? ',
  353. IFNULL(a.id_attach, 0) AS id_attach, a.filename, a.attachment_type' : '') . '
  354. FROM {db_prefix}topics AS t
  355. INNER JOIN {db_prefix}messages AS ml ON (ml.id_msg = t.id_last_msg)
  356. INNER JOIN {db_prefix}messages AS mf ON (mf.id_msg = t.id_first_msg)
  357. LEFT JOIN {db_prefix}members AS meml ON (meml.id_member = ml.id_member)
  358. LEFT JOIN {db_prefix}members AS memf ON (memf.id_member = mf.id_member)' . ($user_info['is_guest'] ? '' : '
  359. LEFT JOIN {db_prefix}log_topics AS lt ON (lt.id_topic = t.id_topic AND lt.id_member = {int:current_member})
  360. LEFT JOIN {db_prefix}log_mark_read AS lmr ON (lmr.id_board = {int:current_board} AND lmr.id_member = {int:current_member})') . (!empty($settings['avatars_on_indexes']) ? '
  361. LEFT JOIN {db_prefix}attachments AS a ON (a.id_member = ml.id_member)' : '') . '
  362. WHERE ' . ($pre_query ? 't.id_topic IN ({array_int:topic_list})' : 't.id_board = {int:current_board}') . (!$modSettings['postmod_active'] || $context['can_approve_posts'] ? '' : '
  363. AND (t.approved = {int:is_approved}' . ($user_info['is_guest'] ? '' : ' OR t.id_member_started = {int:current_member}') . ')') . '
  364. ORDER BY ' . ($pre_query ? 'FIND_IN_SET(t.id_topic, {string:find_set_topics})' : 'is_sticky' . ($fake_ascending ? '' : ' DESC') . ', ' . $_REQUEST['sort'] . ($ascending ? '' : ' DESC')) . '
  365. LIMIT ' . ($pre_query ? '' : '{int:start}, ') . '{int:maxindex}',
  366. array(
  367. 'current_board' => $board,
  368. 'current_member' => $user_info['id'],
  369. 'topic_list' => $topic_ids,
  370. 'is_approved' => 1,
  371. 'find_set_topics' => implode(',', $topic_ids),
  372. 'start' => $start,
  373. 'maxindex' => $maxindex,
  374. )
  375. );
  376. // Begin 'printing' the message index for current board.
  377. while ($row = $smcFunc['db_fetch_assoc']($result))
  378. {
  379. if ($row['id_poll'] > 0 && $modSettings['pollMode'] == '0')
  380. continue;
  381. if (!$pre_query)
  382. $topic_ids[] = $row['id_topic'];
  383. // Does the theme support message previews?
  384. if (!empty($settings['message_index_preview']) && !empty($modSettings['preview_characters']))
  385. {
  386. // Limit them to $modSettings['preview_characters'] characters
  387. $row['first_body'] = strip_tags(strtr(parse_bbc($row['first_body'], $row['first_smileys'], $row['id_first_msg']), array('<br />' => '&#10;')));
  388. if ($smcFunc['strlen']($row['first_body']) > $modSettings['preview_characters'])
  389. $row['first_body'] = $smcFunc['substr']($row['first_body'], 0, $modSettings['preview_characters']) . '...';
  390. $row['last_body'] = strip_tags(strtr(parse_bbc($row['last_body'], $row['last_smileys'], $row['id_last_msg']), array('<br />' => '&#10;')));
  391. if ($smcFunc['strlen']($row['last_body']) > $modSettings['preview_characters'])
  392. $row['last_body'] = $smcFunc['substr']($row['last_body'], 0, $modSettings['preview_characters']) . '...';
  393. // Censor the subject and message preview.
  394. censorText($row['first_subject']);
  395. censorText($row['first_body']);
  396. // Don't censor them twice!
  397. if ($row['id_first_msg'] == $row['id_last_msg'])
  398. {
  399. $row['last_subject'] = $row['first_subject'];
  400. $row['last_body'] = $row['first_body'];
  401. }
  402. else
  403. {
  404. censorText($row['last_subject']);
  405. censorText($row['last_body']);
  406. }
  407. }
  408. else
  409. {
  410. $row['first_body'] = '';
  411. $row['last_body'] = '';
  412. censorText($row['first_subject']);
  413. if ($row['id_first_msg'] == $row['id_last_msg'])
  414. $row['last_subject'] = $row['first_subject'];
  415. else
  416. censorText($row['last_subject']);
  417. }
  418. // Decide how many pages the topic should have.
  419. if ($row['num_replies'] + 1 > $context['messages_per_page'])
  420. {
  421. $pages = '&#171; ';
  422. // We can't pass start by reference.
  423. $start = -1;
  424. $pages .= constructPageIndex($scripturl . '?topic=' . $row['id_topic'] . '.%1$d', $start, $row['num_replies'] + 1, $context['messages_per_page'], true, false);
  425. // If we can use all, show all.
  426. if (!empty($modSettings['enableAllMessages']) && $row['num_replies'] + 1 < $modSettings['enableAllMessages'])
  427. $pages .= ' &nbsp;<a href="' . $scripturl . '?topic=' . $row['id_topic'] . '.0;all">' . $txt['all'] . '</a>';
  428. $pages .= ' &#187;';
  429. }
  430. else
  431. $pages = '';
  432. // We need to check the topic icons exist...
  433. if (!empty($modSettings['messageIconChecks_enable']))
  434. {
  435. if (!isset($context['icon_sources'][$row['first_icon']]))
  436. $context['icon_sources'][$row['first_icon']] = file_exists($settings['theme_dir'] . '/images/post/' . $row['first_icon'] . '.png') ? 'images_url' : 'default_images_url';
  437. if (!isset($context['icon_sources'][$row['last_icon']]))
  438. $context['icon_sources'][$row['last_icon']] = file_exists($settings['theme_dir'] . '/images/post/' . $row['last_icon'] . '.png') ? 'images_url' : 'default_images_url';
  439. }
  440. else
  441. {
  442. if (!isset($context['icon_sources'][$row['first_icon']]))
  443. $context['icon_sources'][$row['first_icon']] = 'images_url';
  444. if (!isset($context['icon_sources'][$row['last_icon']]))
  445. $context['icon_sources'][$row['last_icon']] = 'images_url';
  446. }
  447. if (!empty($settings['avatars_on_indexes']))
  448. {
  449. // Allow themers to show the latest poster's avatar along with the topic
  450. if (!empty($row['avatar']))
  451. {
  452. if ($modSettings['avatar_action_too_large'] == 'option_html_resize' || $modSettings['avatar_action_too_large'] == 'option_js_resize')
  453. {
  454. $avatar_width = !empty($modSettings['avatar_max_width_external']) ? ' width="' . $modSettings['avatar_max_width_external'] . '"' : '';
  455. $avatar_height = !empty($modSettings['avatar_max_height_external']) ? ' height="' . $modSettings['avatar_max_height_external'] . '"' : '';
  456. }
  457. else
  458. {
  459. $avatar_width = '';
  460. $avatar_height = '';
  461. }
  462. }
  463. }
  464. // 'Print' the topic info.
  465. $context['topics'][$row['id_topic']] = array(
  466. 'id' => $row['id_topic'],
  467. 'first_post' => array(
  468. 'id' => $row['id_first_msg'],
  469. 'member' => array(
  470. 'username' => $row['first_member_name'],
  471. 'name' => $row['first_display_name'],
  472. 'id' => $row['first_id_member'],
  473. 'href' => !empty($row['first_id_member']) ? $scripturl . '?action=profile;u=' . $row['first_id_member'] : '',
  474. 'link' => !empty($row['first_id_member']) ? '<a href="' . $scripturl . '?action=profile;u=' . $row['first_id_member'] . '" title="' . $txt['profile_of'] . ' ' . $row['first_display_name'] . '" class="preview">' . $row['first_display_name'] . '</a>' : $row['first_display_name']
  475. ),
  476. 'time' => timeformat($row['first_poster_time']),
  477. 'timestamp' => forum_time(true, $row['first_poster_time']),
  478. 'subject' => $row['first_subject'],
  479. 'preview' => $row['first_body'],
  480. 'icon' => $row['first_icon'],
  481. 'icon_url' => $settings[$context['icon_sources'][$row['first_icon']]] . '/post/' . $row['first_icon'] . '.png',
  482. 'href' => $scripturl . '?topic=' . $row['id_topic'] . '.0',
  483. 'link' => '<a href="' . $scripturl . '?topic=' . $row['id_topic'] . '.0">' . $row['first_subject'] . '</a>'
  484. ),
  485. 'last_post' => array(
  486. 'id' => $row['id_last_msg'],
  487. 'member' => array(
  488. 'username' => $row['last_member_name'],
  489. 'name' => $row['last_display_name'],
  490. 'id' => $row['last_id_member'],
  491. 'href' => !empty($row['last_id_member']) ? $scripturl . '?action=profile;u=' . $row['last_id_member'] : '',
  492. 'link' => !empty($row['last_id_member']) ? '<a href="' . $scripturl . '?action=profile;u=' . $row['last_id_member'] . '">' . $row['last_display_name'] . '</a>' : $row['last_display_name']
  493. ),
  494. 'time' => timeformat($row['last_poster_time']),
  495. 'timestamp' => forum_time(true, $row['last_poster_time']),
  496. 'subject' => $row['last_subject'],
  497. 'preview' => $row['last_body'],
  498. 'icon' => $row['last_icon'],
  499. 'icon_url' => $settings[$context['icon_sources'][$row['last_icon']]] . '/post/' . $row['last_icon'] . '.png',
  500. 'href' => $scripturl . '?topic=' . $row['id_topic'] . ($user_info['is_guest'] ? ('.' . (!empty($options['view_newest_first']) ? 0 : ((int) (($row['num_replies']) / $context['pageindex_multiplier'])) * $context['pageindex_multiplier']) . '#msg' . $row['id_last_msg']) : (($row['num_replies'] == 0 ? '.0' : '.msg' . $row['id_last_msg']) . '#new')),
  501. 'link' => '<a href="' . $scripturl . '?topic=' . $row['id_topic'] . ($user_info['is_guest'] ? ('.' . (!empty($options['view_newest_first']) ? 0 : ((int) (($row['num_replies']) / $context['pageindex_multiplier'])) * $context['pageindex_multiplier']) . '#msg' . $row['id_last_msg']) : (($row['num_replies'] == 0 ? '.0' : '.msg' . $row['id_last_msg']) . '#new')) . '" ' . ($row['num_replies'] == 0 ? '' : 'rel="nofollow"') . '>' . $row['last_subject'] . '</a>'
  502. ),
  503. 'is_sticky' => !empty($row['is_sticky']),
  504. 'is_locked' => !empty($row['locked']),
  505. 'is_redirect' => !empty($row['id_redirect_topic']),
  506. 'is_poll' => $modSettings['pollMode'] == '1' && $row['id_poll'] > 0,
  507. 'is_posted_in' => false,
  508. 'icon' => $row['first_icon'],
  509. 'icon_url' => $settings[$context['icon_sources'][$row['first_icon']]] . '/post/' . $row['first_icon'] . '.png',
  510. 'subject' => $row['first_subject'],
  511. 'new' => $row['new_from'] <= $row['id_msg_modified'],
  512. 'new_from' => $row['new_from'],
  513. 'newtime' => $row['new_from'],
  514. 'new_href' => $scripturl . '?topic=' . $row['id_topic'] . '.msg' . $row['new_from'] . '#new',
  515. 'pages' => $pages,
  516. 'replies' => comma_format($row['num_replies']),
  517. 'views' => comma_format($row['num_views']),
  518. 'approved' => $row['approved'],
  519. 'unapproved_posts' => $row['unapproved_posts'],
  520. );
  521. if (!empty($settings['avatars_on_indexes']))
  522. $context['topics'][$row['id_topic']]['last_post']['member']['avatar'] = array(
  523. 'name' => $row['avatar'],
  524. 'image' => $row['avatar'] == '' ? ($row['id_attach'] > 0 ? '<img class="avatar" src="' . (empty($row['attachment_type']) ? $scripturl . '?action=dlattach;attach=' . $row['id_attach'] . ';type=avatar' : $modSettings['custom_avatar_url'] . '/' . $row['filename']) . '" alt="" />' : '') : (stristr($row['avatar'], 'http://') || stristr($row['avatar'], 'https://') ? '<img class="avatar" src="' . $row['avatar'] . '"' . $avatar_width . $avatar_height . ' alt="" />' : '<img class="avatar" src="' . $modSettings['avatar_url'] . '/' . $smcFunc['htmlspecialchars']($row['avatar']) . '" alt="" />'),
  525. 'href' => $row['avatar'] == '' ? ($row['id_attach'] > 0 ? (empty($row['attachment_type']) ? $scripturl . '?action=dlattach;attach=' . $row['id_attach'] . ';type=avatar' : $modSettings['custom_avatar_url'] . '/' . $row['filename']) : '') : (stristr($row['avatar'], 'http://') || stristr($row['avatar'], 'https://') ? $row['avatar'] : $modSettings['avatar_url'] . '/' . $row['avatar']),
  526. 'url' => $row['avatar'] == '' ? '' : (stristr($row['avatar'], 'http://') || stristr($row['avatar'], 'https://') ? $row['avatar'] : $modSettings['avatar_url'] . '/' . $row['avatar'])
  527. );
  528. }
  529. $smcFunc['db_free_result']($result);
  530. // Fix the sequence of topics if they were retrieved in the wrong order. (for speed reasons...)
  531. if ($fake_ascending)
  532. $context['topics'] = array_reverse($context['topics'], true);
  533. if (!empty($modSettings['enableParticipation']) && !$user_info['is_guest'] && !empty($topic_ids))
  534. {
  535. $result = $smcFunc['db_query']('', '
  536. SELECT id_topic
  537. FROM {db_prefix}messages
  538. WHERE id_topic IN ({array_int:topic_list})
  539. AND id_member = {int:current_member}
  540. GROUP BY id_topic
  541. LIMIT ' . count($topic_ids),
  542. array(
  543. 'current_member' => $user_info['id'],
  544. 'topic_list' => $topic_ids,
  545. )
  546. );
  547. while ($row = $smcFunc['db_fetch_assoc']($result))
  548. $context['topics'][$row['id_topic']]['is_posted_in'] = true;
  549. $smcFunc['db_free_result']($result);
  550. }
  551. }
  552. $context['jump_to'] = array(
  553. 'label' => addslashes(un_htmlspecialchars($txt['jump_to'])),
  554. 'board_name' => $smcFunc['htmlspecialchars'](strtr(strip_tags($board_info['name']), array('&amp;' => '&'))),
  555. 'child_level' => $board_info['child_level'],
  556. );
  557. // Is Quick Moderation active/needed?
  558. if (!empty($options['display_quick_mod']) && !empty($context['topics']))
  559. {
  560. $context['can_markread'] = $context['user']['is_logged'];
  561. $context['can_lock'] = allowedTo('lock_any');
  562. $context['can_sticky'] = allowedTo('make_sticky');
  563. $context['can_move'] = allowedTo('move_any');
  564. $context['can_remove'] = allowedTo('remove_any');
  565. $context['can_merge'] = allowedTo('merge_any');
  566. // Ignore approving own topics as it's unlikely to come up...
  567. $context['can_approve'] = $modSettings['postmod_active'] && allowedTo('approve_posts') && !empty($board_info['unapproved_topics']);
  568. // Can we restore topics?
  569. $context['can_restore'] = allowedTo('move_any') && !empty($modSettings['recycle_enable']) && $modSettings['recycle_board'] == $board;
  570. if ($user_info['is_admin'] || $modSettings['topic_move_any'])
  571. $context['can_move_any'] = true;
  572. else
  573. {
  574. // We'll use this in a minute
  575. $boards_allowed = boardsAllowedTo('post_new');
  576. // How many boards can you do this on besides this one?
  577. $context['can_move_any'] = count($boards_allowed) > 1;
  578. }
  579. // Set permissions for all the topics.
  580. foreach ($context['topics'] as $t => $topic)
  581. {
  582. $started = $topic['first_post']['member']['id'] == $user_info['id'];
  583. $context['topics'][$t]['quick_mod'] = array(
  584. 'lock' => allowedTo('lock_any') || ($started && allowedTo('lock_own')),
  585. 'sticky' => allowedTo('make_sticky'),
  586. 'move' => (allowedTo('move_any') || ($started && allowedTo('move_own')) && $context['can_move_any']),
  587. 'modify' => allowedTo('modify_any') || ($started && allowedTo('modify_own')),
  588. 'remove' => allowedTo('remove_any') || ($started && allowedTo('remove_own')),
  589. 'approve' => $context['can_approve'] && $topic['unapproved_posts']
  590. );
  591. $context['can_lock'] |= ($started && allowedTo('lock_own'));
  592. $context['can_move'] |= ($started && allowedTo('move_own') && $context['can_move_any']);
  593. $context['can_remove'] |= ($started && allowedTo('remove_own'));
  594. }
  595. // Can we use quick moderation checkboxes?
  596. if ($options['display_quick_mod'] == 1)
  597. $context['can_quick_mod'] = $context['user']['is_logged'] || $context['can_approve'] || $context['can_remove'] || $context['can_lock'] || $context['can_sticky'] || $context['can_move'] || $context['can_merge'] || $context['can_restore'];
  598. // Or the icons?
  599. else
  600. $context['can_quick_mod'] = $context['can_remove'] || $context['can_lock'] || $context['can_sticky'] || $context['can_move'];
  601. }
  602. if (!empty($context['can_quick_mod']) && $options['display_quick_mod'] == 1)
  603. {
  604. $context['qmod_actions'] = array('approve', 'remove', 'lock', 'sticky', 'move', 'merge', 'restore', 'markread');
  605. call_integration_hook('integrate_quick_mod_actions');
  606. }
  607. // If there are children, but no topics and no ability to post topics...
  608. $context['no_topic_listing'] = !empty($context['boards']) && empty($context['topics']) && !$context['can_post_new'];
  609. // Build the message index button array.
  610. $context['normal_buttons'] = array(
  611. 'new_topic' => array('test' => 'can_post_new', 'text' => 'new_topic', 'image' => 'new_topic.png', 'lang' => true, 'url' => $scripturl . '?action=post;board=' . $context['current_board'] . '.0', 'active' => true),
  612. 'post_poll' => array('test' => 'can_post_poll', 'text' => 'new_poll', 'image' => 'new_poll.png', 'lang' => true, 'url' => $scripturl . '?action=post;board=' . $context['current_board'] . '.0;poll'),
  613. 'notify' => array('test' => 'can_mark_notify', 'text' => $context['is_marked_notify'] ? 'unnotify' : 'notify', 'image' => ($context['is_marked_notify'] ? 'un' : ''). 'notify.png', 'lang' => true, 'custom' => 'onclick="return confirm(\'' . ($context['is_marked_notify'] ? $txt['notification_disable_board'] : $txt['notification_enable_board']) . '\');"', 'url' => $scripturl . '?action=notifyboard;sa=' . ($context['is_marked_notify'] ? 'off' : 'on') . ';board=' . $context['current_board'] . '.' . $context['start'] . ';' . $context['session_var'] . '=' . $context['session_id']),
  614. 'markread' => array('text' => 'mark_read_short', 'image' => 'markread.png', 'lang' => true, 'custom' => 'onclick="return confirm(\'' . $txt['are_sure_mark_read'] . '\');"', 'url' => $scripturl . '?action=markasread;sa=board;board=' . $context['current_board'] . '.0;' . $context['session_var'] . '=' . $context['session_id']),
  615. );
  616. // Allow adding new buttons easily.
  617. // Note: $context['normal_buttons'] is added for backward compatibility with 2.0, but is deprecated and should not be used
  618. call_integration_hook('integrate_messageindex_buttons', array(&$context['normal_buttons']));
  619. }
  620. /**
  621. * Allows for moderation from the message index.
  622. * @todo refactor this...
  623. */
  624. function QuickModeration()
  625. {
  626. global $sourcedir, $board, $user_info, $modSettings, $smcFunc, $context;
  627. // Check the session = get or post.
  628. checkSession('request');
  629. // Lets go straight to the restore area.
  630. if (isset($_REQUEST['qaction']) && $_REQUEST['qaction'] == 'restore' && !empty($_REQUEST['topics']))
  631. redirectexit('action=restoretopic;topics=' . implode(',', $_REQUEST['topics']) . ';' . $context['session_var'] . '=' . $context['session_id']);
  632. if (isset($_SESSION['topicseen_cache']))
  633. $_SESSION['topicseen_cache'] = array();
  634. // This is going to be needed to send off the notifications and for updateLastMessages().
  635. require_once($sourcedir . '/Subs-Post.php');
  636. // Remember the last board they moved things to.
  637. if (isset($_REQUEST['move_to']))
  638. $_SESSION['move_to_topic'] = $_REQUEST['move_to'];
  639. // Only a few possible actions.
  640. $possibleActions = array();
  641. if (!empty($board))
  642. {
  643. $boards_can = array(
  644. 'make_sticky' => allowedTo('make_sticky') ? array($board) : array(),
  645. 'move_any' => allowedTo('move_any') ? array($board) : array(),
  646. 'move_own' => allowedTo('move_own') ? array($board) : array(),
  647. 'remove_any' => allowedTo('remove_any') ? array($board) : array(),
  648. 'remove_own' => allowedTo('remove_own') ? array($board) : array(),
  649. 'lock_any' => allowedTo('lock_any') ? array($board) : array(),
  650. 'lock_own' => allowedTo('lock_own') ? array($board) : array(),
  651. 'merge_any' => allowedTo('merge_any') ? array($board) : array(),
  652. 'approve_posts' => allowedTo('approve_posts') ? array($board) : array(),
  653. );
  654. $redirect_url = 'board=' . $board . '.' . $_REQUEST['start'];
  655. }
  656. else
  657. {
  658. /**
  659. * @todo Ugly. There's no getting around this, is there?
  660. * @todo Maybe just do this on the actions people want to use?
  661. */
  662. $boards_can = boardsAllowedTo(array('make_sticky', 'move_any', 'move_own', 'remove_any', 'remove_own', 'lock_any', 'lock_own', 'merge_any', 'approve_posts'), true, false);
  663. $redirect_url = isset($_POST['redirect_url']) ? $_POST['redirect_url'] : (isset($_SESSION['old_url']) ? $_SESSION['old_url'] : '');
  664. }
  665. // Are we enforcing the "no moving topics to boards where you can't post new ones" rule?
  666. if (!$user_info['is_admin'] && !$modSettings['topic_move_any'])
  667. {
  668. // Don't count this board, if it's specified
  669. if (!empty($board))
  670. {
  671. $boards_can['post_new'] = array_diff(boardsAllowedTo('post_new'), array($board));
  672. }
  673. else
  674. {
  675. $boards_can['post_new'] = boardsAllowedTo('post_new');
  676. }
  677. if (empty($boards_can['post_new']))
  678. {
  679. $boards_can['move_any'] = $boards_can['move_own'] = array();
  680. }
  681. }
  682. if (!$user_info['is_guest'])
  683. $possibleActions[] = 'markread';
  684. if (!empty($boards_can['make_sticky']))
  685. $possibleActions[] = 'sticky';
  686. if (!empty($boards_can['move_any']) || !empty($boards_can['move_own']))
  687. $possibleActions[] = 'move';
  688. if (!empty($boards_can['remove_any']) || !empty($boards_can['remove_own']))
  689. $possibleActions[] = 'remove';
  690. if (!empty($boards_can['lock_any']) || !empty($boards_can['lock_own']))
  691. $possibleActions[] = 'lock';
  692. if (!empty($boards_can['merge_any']))
  693. $possibleActions[] = 'merge';
  694. if (!empty($boards_can['approve_posts']))
  695. $possibleActions[] = 'approve';
  696. // Two methods: $_REQUEST['actions'] (id_topic => action), and $_REQUEST['topics'] and $_REQUEST['qaction'].
  697. // (if action is 'move', $_REQUEST['move_to'] or $_REQUEST['move_tos'][$topic] is used.)
  698. if (!empty($_REQUEST['topics']))
  699. {
  700. // If the action isn't valid, just quit now.
  701. if (empty($_REQUEST['qaction']) || !in_array($_REQUEST['qaction'], $possibleActions))
  702. redirectexit($redirect_url);
  703. // Merge requires all topics as one parameter and can be done at once.
  704. if ($_REQUEST['qaction'] == 'merge')
  705. {
  706. // Merge requires at least two topics.
  707. if (empty($_REQUEST['topics']) || count($_REQUEST['topics']) < 2)
  708. redirectexit($redirect_url);
  709. require_once($sourcedir . '/SplitTopics.php');
  710. return MergeExecute($_REQUEST['topics']);
  711. }
  712. // Just convert to the other method, to make it easier.
  713. foreach ($_REQUEST['topics'] as $topic)
  714. $_REQUEST['actions'][(int) $topic] = $_REQUEST['qaction'];
  715. }
  716. // Weird... how'd you get here?
  717. if (empty($_REQUEST['actions']))
  718. redirectexit($redirect_url);
  719. // Validate each action.
  720. $temp = array();
  721. foreach ($_REQUEST['actions'] as $topic => $action)
  722. {
  723. if (in_array($action, $possibleActions))
  724. $temp[(int) $topic] = $action;
  725. }
  726. $_REQUEST['actions'] = $temp;
  727. if (!empty($_REQUEST['actions']))
  728. {
  729. // Find all topics...
  730. $request = $smcFunc['db_query']('', '
  731. SELECT id_topic, id_member_started, id_board, locked, approved, unapproved_posts
  732. FROM {db_prefix}topics
  733. WHERE id_topic IN ({array_int:action_topic_ids})
  734. LIMIT ' . count($_REQUEST['actions']),
  735. array(
  736. 'action_topic_ids' => array_keys($_REQUEST['actions']),
  737. )
  738. );
  739. while ($row = $smcFunc['db_fetch_assoc']($request))
  740. {
  741. if (!empty($board))
  742. {
  743. if ($row['id_board'] != $board || ($modSettings['postmod_active'] && !$row['approved'] && !allowedTo('approve_posts')))
  744. unset($_REQUEST['actions'][$row['id_topic']]);
  745. }
  746. else
  747. {
  748. // Don't allow them to act on unapproved posts they can't see...
  749. if ($modSettings['postmod_active'] && !$row['approved'] && !in_array(0, $boards_can['approve_posts']) && !in_array($row['id_board'], $boards_can['approve_posts']))
  750. unset($_REQUEST['actions'][$row['id_topic']]);
  751. // Goodness, this is fun. We need to validate the action.
  752. elseif ($_REQUEST['actions'][$row['id_topic']] == 'sticky' && !in_array(0, $boards_can['make_sticky']) && !in_array($row['id_board'], $boards_can['make_sticky']))
  753. unset($_REQUEST['actions'][$row['id_topic']]);
  754. elseif ($_REQUEST['actions'][$row['id_topic']] == 'move' && !in_array(0, $boards_can['move_any']) && !in_array($row['id_board'], $boards_can['move_any']) && ($row['id_member_started'] != $user_info['id'] || (!in_array(0, $boards_can['move_own']) && !in_array($row['id_board'], $boards_can['move_own']))))
  755. unset($_REQUEST['actions'][$row['id_topic']]);
  756. elseif ($_REQUEST['actions'][$row['id_topic']] == 'remove' && !in_array(0, $boards_can['remove_any']) && !in_array($row['id_board'], $boards_can['remove_any']) && ($row['id_member_started'] != $user_info['id'] || (!in_array(0, $boards_can['remove_own']) && !in_array($row['id_board'], $boards_can['remove_own']))))
  757. unset($_REQUEST['actions'][$row['id_topic']]);
  758. // @todo $locked is not set, what are you trying to do? (taking the change it is supposed to be $row['locked'])
  759. elseif ($_REQUEST['actions'][$row['id_topic']] == 'lock' && !in_array(0, $boards_can['lock_any']) && !in_array($row['id_board'], $boards_can['lock_any']) && ($row['id_member_started'] != $user_info['id'] || $row['locked'] == 1 || (!in_array(0, $boards_can['lock_own']) && !in_array($row['id_board'], $boards_can['lock_own']))))
  760. unset($_REQUEST['actions'][$row['id_topic']]);
  761. // If the topic is approved then you need permission to approve the posts within.
  762. elseif ($_REQUEST['actions'][$row['id_topic']] == 'approve' && (!$row['unapproved_posts'] || (!in_array(0, $boards_can['approve_posts']) && !in_array($row['id_board'], $boards_can['approve_posts']))))
  763. unset($_REQUEST['actions'][$row['id_topic']]);
  764. }
  765. }
  766. $smcFunc['db_free_result']($request);
  767. }
  768. $stickyCache = array();
  769. $moveCache = array(0 => array(), 1 => array());
  770. $removeCache = array();
  771. $lockCache = array();
  772. $markCache = array();
  773. $approveCache = array();
  774. // Separate the actions.
  775. foreach ($_REQUEST['actions'] as $topic => $action)
  776. {
  777. $topic = (int) $topic;
  778. if ($action == 'markread')
  779. $markCache[] = $topic;
  780. elseif ($action == 'sticky')
  781. $stickyCache[] = $topic;
  782. elseif ($action == 'move')
  783. {
  784. require_once($sourcedir . '/MoveTopic.php');
  785. moveTopicConcurrence();
  786. // $moveCache[0] is the topic, $moveCache[1] is the board to move to.
  787. $moveCache[1][$topic] = (int) (isset($_REQUEST['move_tos'][$topic]) ? $_REQUEST['move_tos'][$topic] : $_REQUEST['move_to']);
  788. if (empty($moveCache[1][$topic]))
  789. continue;
  790. $moveCache[0][] = $topic;
  791. }
  792. elseif ($action == 'remove')
  793. $removeCache[] = $topic;
  794. elseif ($action == 'lock')
  795. $lockCache[] = $topic;
  796. elseif ($action == 'approve')
  797. $approveCache[] = $topic;
  798. }
  799. if (empty($board))
  800. $affectedBoards = array();
  801. else
  802. $affectedBoards = array($board => array(0, 0));
  803. // Do all the stickies...
  804. if (!empty($stickyCache))
  805. {
  806. $smcFunc['db_query']('', '
  807. UPDATE {db_prefix}topics
  808. SET is_sticky = CASE WHEN is_sticky = {int:is_sticky} THEN 0 ELSE 1 END
  809. WHERE id_topic IN ({array_int:sticky_topic_ids})',
  810. array(
  811. 'sticky_topic_ids' => $stickyCache,
  812. 'is_sticky' => 1,
  813. )
  814. );
  815. // Get the board IDs and Sticky status
  816. $request = $smcFunc['db_query']('', '
  817. SELECT id_topic, id_board, is_sticky
  818. FROM {db_prefix}topics
  819. WHERE id_topic IN ({array_int:sticky_topic_ids})
  820. LIMIT ' . count($stickyCache),
  821. array(
  822. 'sticky_topic_ids' => $stickyCache,
  823. )
  824. );
  825. $stickyCacheBoards = array();
  826. $stickyCacheStatus = array();
  827. while ($row = $smcFunc['db_fetch_assoc']($request))
  828. {
  829. $stickyCacheBoards[$row['id_topic']] = $row['id_board'];
  830. $stickyCacheStatus[$row['id_topic']] = empty($row['is_sticky']);
  831. }
  832. $smcFunc['db_free_result']($request);
  833. }
  834. // Move sucka! (this is, by the by, probably the most complicated part....)
  835. if (!empty($moveCache[0]))
  836. {
  837. // I know - I just KNOW you're trying to beat the system. Too bad for you... we CHECK :P.
  838. $request = $smcFunc['db_query']('', '
  839. SELECT t.id_topic, t.id_board, b.count_posts
  840. FROM {db_prefix}topics AS t
  841. LEFT JOIN {db_prefix}boards AS b ON (t.id_board = b.id_board)
  842. WHERE t.id_topic IN ({array_int:move_topic_ids})' . (!empty($board) && !allowedTo('move_any') ? '
  843. AND t.id_member_started = {int:current_member}' : '') . '
  844. LIMIT ' . count($moveCache[0]),
  845. array(
  846. 'current_member' => $user_info['id'],
  847. 'move_topic_ids' => $moveCache[0],
  848. )
  849. );
  850. $moveTos = array();
  851. $moveCache2 = array();
  852. $countPosts = array();
  853. while ($row = $smcFunc['db_fetch_assoc']($request))
  854. {
  855. $to = $moveCache[1][$row['id_topic']];
  856. if (empty($to))
  857. continue;
  858. // Does this topic's board count the posts or not?
  859. $countPosts[$row['id_topic']] = empty($row['count_posts']);
  860. if (!isset($moveTos[$to]))
  861. $moveTos[$to] = array();
  862. $moveTos[$to][] = $row['id_topic'];
  863. // For reporting...
  864. $moveCache2[] = array($row['id_topic'], $row['id_board'], $to);
  865. }
  866. $smcFunc['db_free_result']($request);
  867. $moveCache = $moveCache2;
  868. require_once($sourcedir . '/MoveTopic.php');
  869. // Do the actual moves...
  870. foreach ($moveTos as $to => $topics)
  871. moveTopics($topics, $to);
  872. // Does the post counts need to be updated?
  873. if (!empty($moveTos))
  874. {
  875. $topicRecounts = array();
  876. $request = $smcFunc['db_query']('', '
  877. SELECT id_board, count_posts
  878. FROM {db_prefix}boards
  879. WHERE id_board IN ({array_int:move_boards})',
  880. array(
  881. 'move_boards' => array_keys($moveTos),
  882. )
  883. );
  884. while ($row = $smcFunc['db_fetch_assoc']($request))
  885. {
  886. $cp = empty($row['count_posts']);
  887. // Go through all the topics that are being moved to this board.
  888. foreach ($moveTos[$row['id_board']] as $topic)
  889. {
  890. // If both boards have the same value for post counting then no adjustment needs to be made.
  891. if ($countPosts[$topic] != $cp)
  892. {
  893. // If the board being moved to does count the posts then the other one doesn't so add to their post count.
  894. $topicRecounts[$topic] = $cp ? '+' : '-';
  895. }
  896. }
  897. }
  898. $smcFunc['db_free_result']($request);
  899. if (!empty($topicRecounts))
  900. {
  901. $members = array();
  902. // Get all the members who have posted in the moved topics.
  903. $request = $smcFunc['db_query']('', '
  904. SELECT id_member, id_topic
  905. FROM {db_prefix}messages
  906. WHERE id_topic IN ({array_int:moved_topic_ids})',
  907. array(
  908. 'moved_topic_ids' => array_keys($topicRecounts),
  909. )
  910. );
  911. while ($row = $smcFunc['db_fetch_assoc']($request))
  912. {
  913. if (!isset($members[$row['id_member']]))
  914. $members[$row['id_member']] = 0;
  915. if ($topicRecounts[$row['id_topic']] === '+')
  916. $members[$row['id_member']] += 1;
  917. else
  918. $members[$row['id_member']] -= 1;
  919. }
  920. $smcFunc['db_free_result']($request);
  921. // And now update them member's post counts
  922. foreach ($members as $id_member => $post_adj)
  923. updateMemberData($id_member, array('posts' => 'posts + ' . $post_adj));
  924. }
  925. }
  926. }
  927. // Now delete the topics...
  928. if (!empty($removeCache))
  929. {
  930. // They can only delete their own topics. (we wouldn't be here if they couldn't do that..)
  931. $result = $smcFunc['db_query']('', '
  932. SELECT id_topic, id_board
  933. FROM {db_prefix}topics
  934. WHERE id_topic IN ({array_int:removed_topic_ids})' . (!empty($board) && !allowedTo('remove_any') ? '
  935. AND id_member_started = {int:current_member}' : '') . '
  936. LIMIT ' . count($removeCache),
  937. array(
  938. 'current_member' => $user_info['id'],
  939. 'removed_topic_ids' => $removeCache,
  940. )
  941. );
  942. $removeCache = array();
  943. $removeCacheBoards = array();
  944. while ($row = $smcFunc['db_fetch_assoc']($result))
  945. {
  946. $removeCache[] = $row['id_topic'];
  947. $removeCacheBoards[$row['id_topic']] = $row['id_board'];
  948. }
  949. $smcFunc['db_free_result']($result);
  950. // Maybe *none* were their own topics.
  951. if (!empty($removeCache))
  952. {
  953. // Gotta send the notifications *first*!
  954. foreach ($removeCache as $topic)
  955. {
  956. // Only log the topic ID if it's not in the recycle board.
  957. logAction('remove', array((empty($modSettings['recycle_enable']) || $modSettings['recycle_board'] != $removeCacheBoards[$topic] ? 'topic' : 'old_topic_id') => $topic, 'board' => $removeCacheBoards[$topic]));
  958. sendNotifications($topic, 'remove');
  959. }
  960. require_once($sourcedir . '/RemoveTopic.php');
  961. removeTopics($removeCache);
  962. }
  963. }
  964. // Approve the topics...
  965. if (!empty($approveCache))
  966. {
  967. // We need unapproved topic ids and their authors!
  968. $request = $smcFunc['db_query']('', '
  969. SELECT id_topic, id_member_started
  970. FROM {db_prefix}topics
  971. WHERE id_topic IN ({array_int:approve_topic_ids})
  972. AND approved = {int:not_approved}
  973. LIMIT ' . count($approveCache),
  974. array(
  975. 'approve_topic_ids' => $approveCache,
  976. 'not_approved' => 0,
  977. )
  978. );
  979. $approveCache = array();
  980. $approveCacheMembers = array();
  981. while ($row = $smcFunc['db_fetch_assoc']($request))
  982. {
  983. $approveCache[] = $row['id_topic'];
  984. $approveCacheMembers[$row['id_topic']] = $row['id_member_started'];
  985. }
  986. $smcFunc['db_free_result']($request);
  987. // Any topics to approve?
  988. if (!empty($approveCache))
  989. {
  990. // Handle the approval part...
  991. approveTopics($approveCache);
  992. // Time for some logging!
  993. foreach ($approveCache as $topic)
  994. logAction('approve_topic', array('topic' => $topic, 'member' => $approveCacheMembers[$topic]));
  995. }
  996. }
  997. // And (almost) lastly, lock the topics...
  998. if (!empty($lockCache))
  999. {
  1000. $lockStatus = array();
  1001. // Gotta make sure they CAN lock/unlock these topics...
  1002. if (!empty($board) && !allowedTo('lock_any'))
  1003. {
  1004. // Make sure they started the topic AND it isn't already locked by someone with higher priv's.
  1005. $result = $smcFunc['db_query']('', '
  1006. SELECT id_topic, locked, id_board
  1007. FROM {db_prefix}topics
  1008. WHERE id_topic IN ({array_int:locked_topic_ids})
  1009. AND id_member_started = {int:current_member}
  1010. AND locked IN (2, 0)
  1011. LIMIT ' . count($lockCache),
  1012. array(
  1013. 'current_member' => $user_info['id'],
  1014. 'locked_topic_ids' => $lockCache,
  1015. )
  1016. );
  1017. $lockCache = array();
  1018. $lockCacheBoards = array();
  1019. while ($row = $smcFunc['db_fetch_assoc']($result))
  1020. {
  1021. $lockCache[] = $row['id_topic'];
  1022. $lockCacheBoards[$row['id_topic']] = $row['id_board'];
  1023. $lockStatus[$row['id_topic']] = empty($row['locked']);
  1024. }
  1025. $smcFunc['db_free_result']($result);
  1026. }
  1027. else
  1028. {
  1029. $result = $smcFunc['db_query']('', '
  1030. SELECT id_topic, locked, id_board
  1031. FROM {db_prefix}topics
  1032. WHERE id_topic IN ({array_int:locked_topic_ids})
  1033. LIMIT ' . count($lockCache),
  1034. array(
  1035. 'locked_topic_ids' => $lockCache,
  1036. )
  1037. );
  1038. $lockCacheBoards = array();
  1039. while ($row = $smcFunc['db_fetch_assoc']($result))
  1040. {
  1041. $lockStatus[$row['id_topic']] = empty($row['locked']);
  1042. $lockCacheBoards[$row['id_topic']] = $row['id_board'];
  1043. }
  1044. $smcFunc['db_free_result']($result);
  1045. }
  1046. // It could just be that *none* were their own topics...
  1047. if (!empty($lockCache))
  1048. {
  1049. // Alternate the locked value.
  1050. $smcFunc['db_query']('', '
  1051. UPDATE {db_prefix}topics
  1052. SET locked = CASE WHEN locked = {int:is_locked} THEN ' . (allowedTo('lock_any') ? '1' : '2') . ' ELSE 0 END
  1053. WHERE id_topic IN ({array_int:locked_topic_ids})',
  1054. array(
  1055. 'locked_topic_ids' => $lockCache,
  1056. 'is_locked' => 0,
  1057. )
  1058. );
  1059. }
  1060. }
  1061. if (!empty($markCache))
  1062. {
  1063. $smcFunc['db_query']('', '
  1064. SELECT id_topic, unwatched
  1065. FROM {db_prefix}log_topics
  1066. WHERE id_topic IN ({array_int:selected_topics})
  1067. AND id_member = {int:current_user}',
  1068. array(
  1069. 'selected_topics' => $markCache,
  1070. 'current_user' => $user_info['id'],
  1071. )
  1072. );
  1073. $logged_topics = array();
  1074. while ($row = $smcFunc['db_fetch_assoc']($request))
  1075. $logged_topics[$row['id_topic']] = $row['unwatched'];
  1076. $smcFunc['db_free_result']($request);
  1077. $markArray = array();
  1078. foreach ($markCache as $topic)
  1079. $markArray[] = array($modSettings['maxMsgID'], $user_info['id'], $topic, (isset($logged_topics[$topic]) ? $logged_topics[$topic] : 0));
  1080. $smcFunc['db_insert']('replace',
  1081. '{db_prefix}log_topics',
  1082. array('id_msg' => 'int', 'id_member' => 'int', 'id_topic' => 'int', 'unwatched' => 'int'),
  1083. $markArray,
  1084. array('id_member', 'id_topic')
  1085. );
  1086. }
  1087. foreach ($moveCache as $topic)
  1088. {
  1089. // Didn't actually move anything!
  1090. if (!isset($topic[0]))
  1091. break;
  1092. logAction('move', array('topic' => $topic[0], 'board_from' => $topic[1], 'board_to' => $topic[2]));
  1093. sendNotifications($topic[0], 'move');
  1094. }
  1095. foreach ($lockCache as $topic)
  1096. {
  1097. logAction($lockStatus[$topic] ? 'lock' : 'unlock', array('topic' => $topic, 'board' => $lockCacheBoards[$topic]));
  1098. sendNotifications($topic, $lockStatus[$topic] ? 'lock' : 'unlock');
  1099. }
  1100. foreach ($stickyCache as $topic)
  1101. {
  1102. logAction($stickyCacheStatus[$topic] ? 'unsticky' : 'sticky', array('topic' => $topic, 'board' => $stickyCacheBoards[$topic]));
  1103. sendNotifications($topic, 'sticky');
  1104. }
  1105. updateStats('topic');
  1106. updateStats('message');
  1107. updateSettings(array(
  1108. 'calendar_updated' => time(),
  1109. ));
  1110. if (!empty($affectedBoards))
  1111. updateLastMessages(array_keys($affectedBoards));
  1112. redirectexit($redirect_url);
  1113. }
  1114. ?>