123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441442443444445446447448449450451452453454455456457458459460461462463464465466467468469470471472473474475476477478479480481482483484485486487488489490491492493494495496497498499500501502503504505506507508509510511512513514515516517518519520521522523524525526527528529530531532533534535536537538539540541542543544545546547548549550551552553554555556557558559560561562563564565566567568569570571572573574575576577578579580581582583584585586587588589590591592593594595596597598599600601602603604605606607608609610611612613614615616617618619620621622623624625626627628629630631632633634635636637638639640641642643644645646647648649650651652653654655656657658659660661662663664665666667668669670671672673674675676677678679680681682683684685686687688689690691692693694695696697698699700701702703704705706707708709710711712713714715716717718719720721722723724725726727728729730731732733734735736737738739740741742743744745746747748749750751752753754755756757758759760761762763764765766767768769770771772773774775776777778779780781782783784785786787788789790791792793794795796797798799800801802803804805806807808809 |
- <?php
- /**
- * This file's job is to handle things related to post moderation.
- *
- * Simple Machines Forum (SMF)
- *
- * @package SMF
- * @author Simple Machines http://www.simplemachines.org
- * @copyright 2014 Simple Machines and individual contributors
- * @license http://www.simplemachines.org/about/smf/license.php BSD
- *
- * @version 2.1 Alpha 1
- */
- if (!defined('SMF'))
- die('No direct access...');
- /**
- * This is a handling function for all things post moderation.
- */
- function PostModerationMain()
- {
- global $sourcedir;
- // @todo We'll shift these later bud.
- loadLanguage('ModerationCenter');
- loadTemplate('ModerationCenter');
- // Probably need this...
- require_once($sourcedir . '/ModerationCenter.php');
- // Allowed sub-actions, you know the drill by now!
- $subactions = array(
- 'approve' => 'ApproveMessage',
- 'attachments' => 'UnapprovedAttachments',
- 'replies' => 'UnapprovedPosts',
- 'topics' => 'UnapprovedPosts',
- );
- // Pick something valid...
- if (!isset($_REQUEST['sa']) || !isset($subactions[$_REQUEST['sa']]))
- $_REQUEST['sa'] = 'replies';
- $subactions[$_REQUEST['sa']]();
- }
- /**
- * View all unapproved posts.
- */
- function UnapprovedPosts()
- {
- global $txt, $scripturl, $context, $user_info, $smcFunc, $options, $modSettings;
- $context['current_view'] = isset($_GET['sa']) && $_GET['sa'] == 'topics' ? 'topics' : 'replies';
- $context['page_title'] = $txt['mc_unapproved_posts'];
- // Work out what boards we can work in!
- $approve_boards = boardsAllowedTo('approve_posts');
- // If we filtered by board remove ones outside of this board.
- // @todo Put a message saying we're filtered?
- if (isset($_REQUEST['brd']))
- {
- $filter_board = array((int) $_REQUEST['brd']);
- $approve_boards = $approve_boards == array(0) ? $filter_board : array_intersect($approve_boards, $filter_board);
- }
- if ($approve_boards == array(0))
- $approve_query = '';
- elseif (!empty($approve_boards))
- $approve_query = ' AND m.id_board IN (' . implode(',', $approve_boards) . ')';
- // Nada, zip, etc...
- else
- $approve_query = ' AND 1=0';
- // We also need to know where we can delete topics and/or replies to.
- if ($context['current_view'] == 'topics')
- {
- $delete_own_boards = boardsAllowedTo('remove_own');
- $delete_any_boards = boardsAllowedTo('remove_any');
- $delete_own_replies = array();
- }
- else
- {
- $delete_own_boards = boardsAllowedTo('delete_own');
- $delete_any_boards = boardsAllowedTo('delete_any');
- $delete_own_replies = boardsAllowedTo('delete_own_replies');
- }
- $toAction = array();
- // Check if we have something to do?
- if (isset($_GET['approve']))
- $toAction[] = (int) $_GET['approve'];
- // Just a deletion?
- elseif (isset($_GET['delete']))
- $toAction[] = (int) $_GET['delete'];
- // Lots of approvals?
- elseif (isset($_POST['item']))
- foreach ($_POST['item'] as $item)
- $toAction[] = (int) $item;
- // What are we actually doing.
- if (isset($_GET['approve']) || (isset($_POST['do']) && $_POST['do'] == 'approve'))
- $curAction = 'approve';
- elseif (isset($_GET['delete']) || (isset($_POST['do']) && $_POST['do'] == 'delete'))
- $curAction = 'delete';
- // Right, so we have something to do?
- if (!empty($toAction) && isset($curAction))
- {
- checkSession('request');
- // Handy shortcut.
- $any_array = $curAction == 'approve' ? $approve_boards : $delete_any_boards;
- // Now for each message work out whether it's actually a topic, and what board it's on.
- $request = $smcFunc['db_query']('', '
- SELECT m.id_msg, m.id_member, m.id_board, m.subject, t.id_topic, t.id_first_msg, t.id_member_started
- FROM {db_prefix}messages AS m
- INNER JOIN {db_prefix}topics AS t ON (t.id_topic = m.id_topic)
- LEFT JOIN {db_prefix}boards AS b ON (t.id_board = b.id_board)
- WHERE m.id_msg IN ({array_int:message_list})
- AND m.approved = {int:not_approved}
- AND {query_see_board}',
- array(
- 'message_list' => $toAction,
- 'not_approved' => 0,
- )
- );
- $toAction = array();
- $details = array();
- while ($row = $smcFunc['db_fetch_assoc']($request))
- {
- // If it's not within what our view is ignore it...
- if (($row['id_msg'] == $row['id_first_msg'] && $context['current_view'] != 'topics') || ($row['id_msg'] != $row['id_first_msg'] && $context['current_view'] != 'replies'))
- continue;
- $can_add = false;
- // If we're approving this is simple.
- if ($curAction == 'approve' && ($any_array == array(0) || in_array($row['id_board'], $any_array)))
- {
- $can_add = true;
- }
- // Delete requires more permission checks...
- elseif ($curAction == 'delete')
- {
- // Own post is easy!
- if ($row['id_member'] == $user_info['id'] && ($delete_own_boards == array(0) || in_array($row['id_board'], $delete_own_boards)))
- $can_add = true;
- // Is it a reply to their own topic?
- elseif ($row['id_member'] == $row['id_member_started'] && $row['id_msg'] != $row['id_first_msg'] && ($delete_own_replies == array(0) || in_array($row['id_board'], $delete_own_replies)))
- $can_add = true;
- // Someone elses?
- elseif ($row['id_member'] != $user_info['id'] && ($delete_any_boards == array(0) || in_array($row['id_board'], $delete_any_boards)))
- $can_add = true;
- }
- if ($can_add)
- $anItem = $context['current_view'] == 'topics' ? $row['id_topic'] : $row['id_msg'];
- $toAction[] = $anItem;
- // All clear. What have we got now, what, what?
- $details[$anItem] = array();
- $details[$anItem]["subject"] = $row['subject'];
- $details[$anItem]["topic"] = $row['id_topic'];
- $details[$anItem]["member"] = ($context['current_view'] == 'topics') ? $row['id_member_started'] : $row['id_member'];
- $details[$anItem]["board"] = $row['id_board'];
- }
- $smcFunc['db_free_result']($request);
- // If we have anything left we can actually do the approving (etc).
- if (!empty($toAction))
- {
- if ($curAction == 'approve')
- {
- approveMessages ($toAction, $details, $context['current_view']);
- }
- else
- {
- removeMessages ($toAction, $details, $context['current_view']);
- }
- }
- }
- // How many unapproved posts are there?
- $request = $smcFunc['db_query']('', '
- SELECT COUNT(*)
- FROM {db_prefix}messages AS m
- INNER JOIN {db_prefix}topics AS t ON (t.id_topic = m.id_topic AND t.id_first_msg != m.id_msg)
- INNER JOIN {db_prefix}boards AS b ON (b.id_board = t.id_board)
- WHERE m.approved = {int:not_approved}
- AND {query_see_board}
- ' . $approve_query,
- array(
- 'not_approved' => 0,
- )
- );
- list ($context['total_unapproved_posts']) = $smcFunc['db_fetch_row']($request);
- $smcFunc['db_free_result']($request);
- // What about topics? Normally we'd use the table alias t for topics but lets use m so we don't have to redo our approve query.
- $request = $smcFunc['db_query']('', '
- SELECT COUNT(m.id_topic)
- FROM {db_prefix}topics AS m
- INNER JOIN {db_prefix}boards AS b ON (b.id_board = m.id_board)
- WHERE m.approved = {int:not_approved}
- AND {query_see_board}
- ' . $approve_query,
- array(
- 'not_approved' => 0,
- )
- );
- list ($context['total_unapproved_topics']) = $smcFunc['db_fetch_row']($request);
- $smcFunc['db_free_result']($request);
- // Limit to how many? (obey the user setting)
- $limit = !empty($options['messages_per_page']) ? $options['messages_per_page'] : $modSettings['defaultMaxMessages'];
- $context['page_index'] = constructPageIndex($scripturl . '?action=moderate;area=postmod;sa=' . $context['current_view'] . (isset($_REQUEST['brd']) ? ';brd=' . (int) $_REQUEST['brd'] : ''), $_GET['start'], $context['current_view'] == 'topics' ? $context['total_unapproved_topics'] : $context['total_unapproved_posts'], $limit);
- $context['start'] = $_GET['start'];
- // We have enough to make some pretty tabs!
- $context[$context['moderation_menu_name']]['tab_data'] = array(
- 'title' => $txt['mc_unapproved_posts'],
- 'help' => 'postmod',
- 'description' => $txt['mc_unapproved_posts_desc'],
- );
- // Update the tabs with the correct number of posts.
- $context['menu_data_' . $context['moderation_menu_id']]['sections']['posts']['areas']['postmod']['subsections']['posts']['label'] .= ' (' . $context['total_unapproved_posts'] . ')';
- $context['menu_data_' . $context['moderation_menu_id']]['sections']['posts']['areas']['postmod']['subsections']['topics']['label'] .= ' (' . $context['total_unapproved_topics'] . ')';
- // If we are filtering some boards out then make sure to send that along with the links.
- if (isset($_REQUEST['brd']))
- {
- $context['menu_data_' . $context['moderation_menu_id']]['sections']['posts']['areas']['postmod']['subsections']['posts']['add_params'] = ';brd=' . (int) $_REQUEST['brd'];
- $context['menu_data_' . $context['moderation_menu_id']]['sections']['posts']['areas']['postmod']['subsections']['topics']['add_params'] = ';brd=' . (int) $_REQUEST['brd'];
- }
- // Get all unapproved posts.
- $request = $smcFunc['db_query']('', '
- SELECT m.id_msg, m.id_topic, m.id_board, m.subject, m.body, m.id_member,
- IFNULL(mem.real_name, m.poster_name) AS poster_name, m.poster_time, m.smileys_enabled,
- t.id_member_started, t.id_first_msg, b.name AS board_name, c.id_cat, c.name AS cat_name
- FROM {db_prefix}messages AS m
- INNER JOIN {db_prefix}topics AS t ON (t.id_topic = m.id_topic)
- INNER JOIN {db_prefix}boards AS b ON (b.id_board = m.id_board)
- LEFT JOIN {db_prefix}members AS mem ON (mem.id_member = m.id_member)
- LEFT JOIN {db_prefix}categories AS c ON (c.id_cat = b.id_cat)
- WHERE m.approved = {int:not_approved}
- AND t.id_first_msg ' . ($context['current_view'] == 'topics' ? '=' : '!=') . ' m.id_msg
- AND {query_see_board}
- ' . $approve_query . '
- LIMIT {int:start}, {int:limit}',
- array(
- 'not_approved' => 0,
- 'start' => $context['start'],
- 'limit' => $limit,
- )
- );
- $context['unapproved_items'] = array();
- for ($i = 1; $row = $smcFunc['db_fetch_assoc']($request); $i++)
- {
- // Can delete is complicated, let's solve it first... is it their own post?
- if ($row['id_member'] == $user_info['id'] && ($delete_own_boards == array(0) || in_array($row['id_board'], $delete_own_boards)))
- $can_delete = true;
- // Is it a reply to their own topic?
- elseif ($row['id_member'] == $row['id_member_started'] && $row['id_msg'] != $row['id_first_msg'] && ($delete_own_replies == array(0) || in_array($row['id_board'], $delete_own_replies)))
- $can_delete = true;
- // Someone elses?
- elseif ($row['id_member'] != $user_info['id'] && ($delete_any_boards == array(0) || in_array($row['id_board'], $delete_any_boards)))
- $can_delete = true;
- else
- $can_delete = false;
- $context['unapproved_items'][] = array(
- 'id' => $row['id_msg'],
- 'alternate' => $i % 2,
- 'counter' => $context['start'] + $i,
- 'href' => $scripturl . '?topic=' . $row['id_topic'] . '.msg' . $row['id_msg'] . '#msg' . $row['id_msg'],
- 'link' => '<a href="' . $scripturl . '?topic=' . $row['id_topic'] . '.msg' . $row['id_msg'] . '#msg' . $row['id_msg'] . '">' . $row['subject'] . '</a>',
- 'subject' => $row['subject'],
- 'body' => parse_bbc($row['body'], $row['smileys_enabled'], $row['id_msg']),
- 'time' => timeformat($row['poster_time']),
- 'poster' => array(
- 'id' => $row['id_member'],
- 'name' => $row['poster_name'],
- 'link' => $row['id_member'] ? '<a href="' . $scripturl . '?action=profile;u=' . $row['id_member'] . '">' . $row['poster_name'] . '</a>' : $row['poster_name'],
- 'href' => $scripturl . '?action=profile;u=' . $row['id_member'],
- ),
- 'topic' => array(
- 'id' => $row['id_topic'],
- ),
- 'board' => array(
- 'id' => $row['id_board'],
- 'name' => $row['board_name'],
- 'link' => '<a href="' . $scripturl . '?board=' . $row['id_board'] . '.0">' . $row['board_name'] . '</a>',
- ),
- 'category' => array(
- 'id' => $row['id_cat'],
- 'name' => $row['cat_name'],
- 'link' => '<a href="' . $scripturl . '#c' . $row['id_cat'] . '">' . $row['cat_name'] . '</a>',
- ),
- 'can_delete' => $can_delete,
- );
- }
- $smcFunc['db_free_result']($request);
- $context['sub_template'] = 'unapproved_posts';
- }
- /**
- * View all unapproved attachments.
- */
- function UnapprovedAttachments()
- {
- global $txt, $scripturl, $context, $sourcedir, $smcFunc, $modSettings;
- $context['page_title'] = $txt['mc_unapproved_attachments'];
- // Once again, permissions are king!
- $approve_boards = boardsAllowedTo('approve_posts');
- if ($approve_boards == array(0))
- $approve_query = '';
- elseif (!empty($approve_boards))
- $approve_query = ' AND m.id_board IN (' . implode(',', $approve_boards) . ')';
- else
- $approve_query = ' AND 1=0';
- // Get together the array of things to act on, if any.
- $attachments = array();
- if (isset($_GET['approve']))
- $attachments[] = (int) $_GET['approve'];
- elseif (isset($_GET['delete']))
- $attachments[] = (int) $_GET['delete'];
- elseif (isset($_POST['item']))
- foreach ($_POST['item'] as $item)
- $attachments[] = (int) $item;
- // Are we approving or deleting?
- if (isset($_GET['approve']) || (isset($_POST['do']) && $_POST['do'] == 'approve'))
- $curAction = 'approve';
- elseif (isset($_GET['delete']) || (isset($_POST['do']) && $_POST['do'] == 'delete'))
- $curAction = 'delete';
- // Something to do, let's do it!
- if (!empty($attachments) && isset($curAction))
- {
- checkSession('request');
- // This will be handy.
- require_once($sourcedir . '/ManageAttachments.php');
- // Confirm the attachments are eligible for changing!
- $request = $smcFunc['db_query']('', '
- SELECT a.id_attach
- FROM {db_prefix}attachments AS a
- INNER JOIN {db_prefix}messages AS m ON (m.id_msg = a.id_msg)
- LEFT JOIN {db_prefix}boards AS b ON (m.id_board = b.id_board)
- WHERE a.id_attach IN ({array_int:attachments})
- AND a.approved = {int:not_approved}
- AND a.attachment_type = {int:attachment_type}
- AND {query_see_board}
- ' . $approve_query,
- array(
- 'attachments' => $attachments,
- 'not_approved' => 0,
- 'attachment_type' => 0,
- )
- );
- $attachments = array();
- while ($row = $smcFunc['db_fetch_assoc']($request))
- $attachments[] = $row['id_attach'];
- $smcFunc['db_free_result']($request);
- // Assuming it wasn't all like, proper illegal, we can do the approving.
- if (!empty($attachments))
- {
- if ($curAction == 'approve')
- ApproveAttachments($attachments);
- else
- removeAttachments(array('id_attach' => $attachments, 'do_logging' => true));
- }
- }
- require_once($sourcedir . '/Subs-List.php');
- $listOptions = array(
- 'id' => 'mc_unapproved_attach',
- 'width' => '100%',
- 'items_per_page' => $modSettings['defaultMaxMessages'],
- 'no_items_label' => $txt['mc_unapproved_attachments_none_found'],
- 'base_href' => $scripturl . '?action=moderate;area=attachmod;sa=attachments',
- 'default_sort_col' => 'attach_name',
- 'get_items' => array(
- 'function' => 'list_getUnapprovedAttachments',
- 'params' => array(
- $approve_query,
- ),
- ),
- 'get_count' => array(
- 'function' => 'list_getNumUnapprovedAttachments',
- 'params' => array(
- $approve_query,
- ),
- ),
- 'columns' => array(
- 'attach_name' => array(
- 'header' => array(
- 'value' => $txt['mc_unapproved_attach_name'],
- ),
- 'data' => array(
- 'db' => 'filename',
- ),
- 'sort' => array(
- 'default' => 'a.filename',
- 'reverse' => 'a.filename DESC',
- ),
- ),
- 'attach_size' => array(
- 'header' => array(
- 'value' => $txt['mc_unapproved_attach_size'],
- ),
- 'data' => array(
- 'db' => 'size',
- ),
- 'sort' => array(
- 'default' => 'a.size',
- 'reverse' => 'a.size DESC',
- ),
- ),
- 'attach_poster' => array(
- 'header' => array(
- 'value' => $txt['mc_unapproved_attach_poster'],
- ),
- 'data' => array(
- 'function' => create_function('$data', '
- return $data[\'poster\'][\'link\'];'
- )
- ),
- 'sort' => array(
- 'default' => 'm.id_member',
- 'reverse' => 'm.id_member DESC',
- ),
- ),
- 'date' => array(
- 'header' => array(
- 'value' => $txt['date'],
- 'style' => 'width: 18%;',
- ),
- 'data' => array(
- 'db' => 'time',
- 'class' => 'smalltext',
- 'style' => 'white-space:nowrap;',
- ),
- 'sort' => array(
- 'default' => 'm.poster_time',
- 'reverse' => 'm.poster_time DESC',
- ),
- ),
- 'message' => array(
- 'header' => array(
- 'value' => $txt['post'],
- ),
- 'data' => array(
- 'function' => create_function('$data', '
- return \'<a href="\' . $data[\'message\'][\'href\'] . \'">\' . shorten_subject($data[\'message\'][\'subject\'], 20) . \'</a>\';'
- ),
- 'class' => 'smalltext',
- 'style' => 'width:15em;',
- ),
- 'sort' => array(
- 'default' => 'm.subject',
- 'reverse' => 'm.subject DESC',
- ),
- ),
- 'action' => array(
- 'header' => array(
- 'value' => '<input type="checkbox" class="input_check" onclick="invertAll(this, this.form);" checked />',
- 'style' => 'width: 4%;',
- 'class' => 'centercol',
- ),
- 'data' => array(
- 'sprintf' => array(
- 'format' => '<input type="checkbox" name="item[]" value="%1$d" checked class="input_check" />',
- 'params' => array(
- 'id' => false,
- ),
- ),
- 'class' => 'centercol',
- ),
- ),
- ),
- 'form' => array(
- 'href' => $scripturl . '?action=moderate;area=attachmod;sa=attachments',
- 'include_sort' => true,
- 'include_start' => true,
- 'hidden_fields' => array(
- $context['session_var'] => $context['session_id'],
- ),
- 'token' => 'mod-ap',
- ),
- 'additional_rows' => array(
- array(
- 'position' => 'bottom_of_list',
- 'value' => '
- <select name="do" onchange="if (this.value != 0 && confirm(\'' . $txt['mc_unapproved_sure'] . '\')) submit();">
- <option value="0">' . $txt['with_selected'] . ':</option>
- <option value="0">-------------------</option>
- <option value="approve"> -- ' . $txt['approve'] . '</option>
- <option value="delete"> -- ' . $txt['delete'] . '</option>
- </select>
- <noscript><input type="submit" name="ml_go" value="' . $txt['go'] . '" class="button_submit" /></noscript>',
- 'align' => 'right',
- ),
- ),
- );
- // Create the request list.
- createToken('mod-ap');
- createList($listOptions);
- $context['sub_template'] = 'show_list';
- $context['default_list'] = 'mc_unapproved_attach';
- $context[$context['moderation_menu_name']]['tab_data'] = array(
- 'title' => $txt['mc_unapproved_attachments'],
- 'help' => '',
- 'description' => $txt['mc_unapproved_attachments_desc']
- );
- }
- /**
- * Callback function for UnapprovedAttachments
- * retrieve all the attachments waiting for approval the approver can approve
- *
- * @param int $start
- * @param int $items_per_page
- * @param string $sort
- * @param string $approve_query additional restrictions based on the boards the approver can see
- * @return array, an array of unapproved attachments
- */
- function list_getUnapprovedAttachments($start, $items_per_page, $sort, $approve_query)
- {
- global $smcFunc, $scripturl;
- // Get all unapproved attachments.
- $request = $smcFunc['db_query']('', '
- SELECT a.id_attach, a.filename, a.size, m.id_msg, m.id_topic, m.id_board, m.subject, m.body, m.id_member,
- IFNULL(mem.real_name, m.poster_name) AS poster_name, m.poster_time,
- t.id_member_started, t.id_first_msg, b.name AS board_name, c.id_cat, c.name AS cat_name
- FROM {db_prefix}attachments AS a
- INNER JOIN {db_prefix}messages AS m ON (m.id_msg = a.id_msg)
- INNER JOIN {db_prefix}topics AS t ON (t.id_topic = m.id_topic)
- INNER JOIN {db_prefix}boards AS b ON (b.id_board = m.id_board)
- LEFT JOIN {db_prefix}members AS mem ON (mem.id_member = m.id_member)
- LEFT JOIN {db_prefix}categories AS c ON (c.id_cat = b.id_cat)
- WHERE a.approved = {int:not_approved}
- AND a.attachment_type = {int:attachment_type}
- AND {query_see_board}
- {raw:approve_query}
- ORDER BY {raw:sort}
- LIMIT {int:start}, {int:items_per_page}',
- array(
- 'not_approved' => 0,
- 'attachment_type' => 0,
- 'start' => $start,
- 'sort' => $sort,
- 'items_per_page' => $items_per_page,
- 'approve_query' => $approve_query,
- )
- );
- $unapproved_items = array();
- while ($row = $smcFunc['db_fetch_assoc']($request))
- {
- $unapproved_items[] = array(
- 'id' => $row['id_attach'],
- 'filename' => $row['filename'],
- 'size' => round($row['size'] / 1024, 2),
- 'time' => timeformat($row['poster_time']),
- 'poster' => array(
- 'id' => $row['id_member'],
- 'name' => $row['poster_name'],
- 'link' => $row['id_member'] ? '<a href="' . $scripturl . '?action=profile;u=' . $row['id_member'] . '">' . $row['poster_name'] . '</a>' : $row['poster_name'],
- 'href' => $scripturl . '?action=profile;u=' . $row['id_member'],
- ),
- 'message' => array(
- 'id' => $row['id_msg'],
- 'subject' => $row['subject'],
- 'body' => parse_bbc($row['body']),
- 'time' => timeformat($row['poster_time']),
- 'href' => $scripturl . '?topic=' . $row['id_topic'] . '.msg' . $row['id_msg'] . '#msg' . $row['id_msg'],
- ),
- 'topic' => array(
- 'id' => $row['id_topic'],
- ),
- 'board' => array(
- 'id' => $row['id_board'],
- 'name' => $row['board_name'],
- ),
- 'category' => array(
- 'id' => $row['id_cat'],
- 'name' => $row['cat_name'],
- ),
- );
- }
- $smcFunc['db_free_result']($request);
- return $unapproved_items;
- }
- /**
- * Callback function for UnapprovedAttachments
- * count all the attachments waiting for approval that this approver can approve
- *
- * @param string $approve_query additional restrictions based on the boards the approver can see
- * @return int the number of unapproved attachments
- */
- function list_getNumUnapprovedAttachments($approve_query)
- {
- global $smcFunc;
- // How many unapproved attachments in total?
- $request = $smcFunc['db_query']('', '
- SELECT COUNT(*)
- FROM {db_prefix}attachments AS a
- INNER JOIN {db_prefix}messages AS m ON (m.id_msg = a.id_msg)
- INNER JOIN {db_prefix}boards AS b ON (b.id_board = m.id_board)
- WHERE a.approved = {int:not_approved}
- AND a.attachment_type = {int:attachment_type}
- AND {query_see_board}
- ' . $approve_query,
- array(
- 'not_approved' => 0,
- 'attachment_type' => 0,
- )
- );
- list ($total_unapproved_attachments) = $smcFunc['db_fetch_row']($request);
- $smcFunc['db_free_result']($request);
- return $total_unapproved_attachments;
- }
- /**
- * Approve a post, just the one.
- */
- function ApproveMessage()
- {
- global $user_info, $topic, $board, $sourcedir, $smcFunc;
- checkSession('get');
- $_REQUEST['msg'] = (int) $_REQUEST['msg'];
- require_once($sourcedir . '/Subs-Post.php');
- isAllowedTo('approve_posts');
- $request = $smcFunc['db_query']('', '
- SELECT t.id_member_started, t.id_first_msg, m.id_member, m.subject, m.approved
- FROM {db_prefix}messages AS m
- INNER JOIN {db_prefix}topics AS t ON (t.id_topic = {int:current_topic})
- WHERE m.id_msg = {int:id_msg}
- AND m.id_topic = {int:current_topic}
- LIMIT 1',
- array(
- 'current_topic' => $topic,
- 'id_msg' => $_REQUEST['msg'],
- )
- );
- list ($starter, $first_msg, $poster, $subject, $approved) = $smcFunc['db_fetch_row']($request);
- $smcFunc['db_free_result']($request);
- // If it's the first in a topic then the whole topic gets approved!
- if ($first_msg == $_REQUEST['msg'])
- {
- approveTopics($topic, !$approved);
- if ($starter != $user_info['id'])
- logAction(($approved ? 'un' : '') . 'approve_topic', array('topic' => $topic, 'subject' => $subject, 'member' => $starter, 'board' => $board));
- }
- else
- {
- approvePosts($_REQUEST['msg'], !$approved);
- if ($poster != $user_info['id'])
- logAction(($approved ? 'un' : '') . 'approve', array('topic' => $topic, 'subject' => $subject, 'member' => $poster, 'board' => $board));
- }
- redirectexit('topic=' . $topic . '.msg' . $_REQUEST['msg']. '#msg' . $_REQUEST['msg']);
- }
- /**
- * Approve a batch of posts (or topics in their own right)
- *
- * @param array $messages
- * @param array $messageDetails
- * @param (string) $current_view = replies
- */
- function approveMessages($messages, $messageDetails, $current_view = 'replies')
- {
- global $sourcedir;
- require_once($sourcedir . '/Subs-Post.php');
- if ($current_view == 'topics')
- {
- approveTopics($messages);
- // and tell the world about it
- foreach ($messages as $topic)
- {
- logAction('approve_topic', array('topic' => $topic, 'subject' => $messageDetails[$topic]['subject'], 'member' => $messageDetails[$topic]['member'], 'board' => $messageDetails[$topic]['board']));
- }
- }
- else
- {
- approvePosts($messages);
- // and tell the world about it again
- foreach ($messages as $post)
- {
- logAction('approve', array('topic' => $messageDetails[$post]['topic'], 'subject' => $messageDetails[$post]['subject'], 'member' => $messageDetails[$post]['member'], 'board' => $messageDetails[$post]['board']));
- }
- }
- }
- /**
- * This is a helper function - basically approve everything!
- */
- function approveAllData()
- {
- global $smcFunc, $sourcedir;
- // Start with messages and topics.
- $request = $smcFunc['db_query']('', '
- SELECT id_msg
- FROM {db_prefix}messages
- WHERE approved = {int:not_approved}',
- array(
- 'not_approved' => 0,
- )
- );
- $msgs = array();
- while ($row = $smcFunc['db_fetch_row']($request))
- $msgs[] = $row[0];
- $smcFunc['db_free_result']($request);
- if (!empty($msgs))
- {
- require_once($sourcedir . '/Subs-Post.php');
- approvePosts($msgs);
- }
- // Now do attachments
- $request = $smcFunc['db_query']('', '
- SELECT id_attach
- FROM {db_prefix}attachments
- WHERE approved = {int:not_approved}',
- array(
- 'not_approved' => 0,
- )
- );
- $attaches = array();
- while ($row = $smcFunc['db_fetch_row']($request))
- $attaches[] = $row[0];
- $smcFunc['db_free_result']($request);
- if (!empty($attaches))
- {
- require_once($sourcedir . '/ManageAttachments.php');
- ApproveAttachments($attaches);
- }
- }
- /**
- * Remove a batch of messages (or topics)
- *
- * @param array $messages
- * @param array $messageDetails
- * @param string $current_view = replies
- */
- function removeMessages($messages, $messageDetails, $current_view = 'replies')
- {
- global $sourcedir, $modSettings;
- // @todo something's not right, removeMessage() does check permissions,
- // removeTopics() doesn't
- require_once($sourcedir . '/RemoveTopic.php');
- if ($current_view == 'topics')
- {
- removeTopics($messages);
- // and tell the world about it
- foreach ($messages as $topic)
- // Note, only log topic ID in native form if it's not gone forever.
- logAction('remove', array(
- (empty($modSettings['recycle_enable']) || $modSettings['recycle_board'] != $messageDetails[$topic]['board'] ? 'topic' : 'old_topic_id') => $topic, 'subject' => $messageDetails[$topic]['subject'], 'member' => $messageDetails[$topic]['member'], 'board' => $messageDetails[$topic]['board']));
- }
- else
- {
- foreach ($messages as $post)
- {
- removeMessage($post);
- logAction('delete', array(
- (empty($modSettings['recycle_enable']) || $modSettings['recycle_board'] != $messageDetails[$post]['board'] ? 'topic' : 'old_topic_id') => $messageDetails[$post]['topic'], 'subject' => $messageDetails[$post]['subject'], 'member' => $messageDetails[$post]['member'], 'board' => $messageDetails[$post]['board']));
- }
- }
- }
- ?>
|