Display.php 86 KB

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768697071727374757677787980818283848586878889909192939495969798991001011021031041051061071081091101111121131141151161171181191201211221231241251261271281291301311321331341351361371381391401411421431441451461471481491501511521531541551561571581591601611621631641651661671681691701711721731741751761771781791801811821831841851861871881891901911921931941951961971981992002012022032042052062072082092102112122132142152162172182192202212222232242252262272282292302312322332342352362372382392402412422432442452462472482492502512522532542552562572582592602612622632642652662672682692702712722732742752762772782792802812822832842852862872882892902912922932942952962972982993003013023033043053063073083093103113123133143153163173183193203213223233243253263273283293303313323333343353363373383393403413423433443453463473483493503513523533543553563573583593603613623633643653663673683693703713723733743753763773783793803813823833843853863873883893903913923933943953963973983994004014024034044054064074084094104114124134144154164174184194204214224234244254264274284294304314324334344354364374384394404414424434444454464474484494504514524534544554564574584594604614624634644654664674684694704714724734744754764774784794804814824834844854864874884894904914924934944954964974984995005015025035045055065075085095105115125135145155165175185195205215225235245255265275285295305315325335345355365375385395405415425435445455465475485495505515525535545555565575585595605615625635645655665675685695705715725735745755765775785795805815825835845855865875885895905915925935945955965975985996006016026036046056066076086096106116126136146156166176186196206216226236246256266276286296306316326336346356366376386396406416426436446456466476486496506516526536546556566576586596606616626636646656666676686696706716726736746756766776786796806816826836846856866876886896906916926936946956966976986997007017027037047057067077087097107117127137147157167177187197207217227237247257267277287297307317327337347357367377387397407417427437447457467477487497507517527537547557567577587597607617627637647657667677687697707717727737747757767777787797807817827837847857867877887897907917927937947957967977987998008018028038048058068078088098108118128138148158168178188198208218228238248258268278288298308318328338348358368378388398408418428438448458468478488498508518528538548558568578588598608618628638648658668678688698708718728738748758768778788798808818828838848858868878888898908918928938948958968978988999009019029039049059069079089099109119129139149159169179189199209219229239249259269279289299309319329339349359369379389399409419429439449459469479489499509519529539549559569579589599609619629639649659669679689699709719729739749759769779789799809819829839849859869879889899909919929939949959969979989991000100110021003100410051006100710081009101010111012101310141015101610171018101910201021102210231024102510261027102810291030103110321033103410351036103710381039104010411042104310441045104610471048104910501051105210531054105510561057105810591060106110621063106410651066106710681069107010711072107310741075107610771078107910801081108210831084108510861087108810891090109110921093109410951096109710981099110011011102110311041105110611071108110911101111111211131114111511161117111811191120112111221123112411251126112711281129113011311132113311341135113611371138113911401141114211431144114511461147114811491150115111521153115411551156115711581159116011611162116311641165116611671168116911701171117211731174117511761177117811791180118111821183118411851186118711881189119011911192119311941195119611971198119912001201120212031204120512061207120812091210121112121213121412151216121712181219122012211222122312241225122612271228122912301231123212331234123512361237123812391240124112421243124412451246124712481249125012511252125312541255125612571258125912601261126212631264126512661267126812691270127112721273127412751276127712781279128012811282128312841285128612871288128912901291129212931294129512961297129812991300130113021303130413051306130713081309131013111312131313141315131613171318131913201321132213231324132513261327132813291330133113321333133413351336133713381339134013411342134313441345134613471348134913501351135213531354135513561357135813591360136113621363136413651366136713681369137013711372137313741375137613771378137913801381138213831384138513861387138813891390139113921393139413951396139713981399140014011402140314041405140614071408140914101411141214131414141514161417141814191420142114221423142414251426142714281429143014311432143314341435143614371438143914401441144214431444144514461447144814491450145114521453145414551456145714581459146014611462146314641465146614671468146914701471147214731474147514761477147814791480148114821483148414851486148714881489149014911492149314941495149614971498149915001501150215031504150515061507150815091510151115121513151415151516151715181519152015211522152315241525152615271528152915301531153215331534153515361537153815391540154115421543154415451546154715481549155015511552155315541555155615571558155915601561156215631564156515661567156815691570157115721573157415751576157715781579158015811582158315841585158615871588158915901591159215931594159515961597159815991600160116021603160416051606160716081609161016111612161316141615161616171618161916201621162216231624162516261627162816291630163116321633163416351636163716381639164016411642164316441645164616471648164916501651165216531654165516561657165816591660166116621663166416651666166716681669167016711672167316741675167616771678167916801681168216831684168516861687168816891690169116921693169416951696169716981699170017011702170317041705170617071708170917101711171217131714171517161717171817191720172117221723172417251726172717281729173017311732173317341735173617371738173917401741174217431744174517461747174817491750175117521753175417551756175717581759176017611762176317641765176617671768176917701771177217731774177517761777177817791780178117821783178417851786178717881789179017911792179317941795179617971798179918001801180218031804180518061807180818091810181118121813181418151816181718181819182018211822182318241825182618271828182918301831183218331834183518361837183818391840184118421843184418451846184718481849185018511852185318541855185618571858185918601861186218631864186518661867186818691870187118721873187418751876187718781879188018811882188318841885188618871888188918901891189218931894189518961897189818991900190119021903190419051906190719081909191019111912191319141915191619171918
  1. <?php
  2. /**
  3. * This is perhaps the most important and probably most accessed file in all
  4. * of SMF. This file controls topic, message, and attachment display.
  5. *
  6. * Simple Machines Forum (SMF)
  7. *
  8. * @package SMF
  9. * @author Simple Machines http://www.simplemachines.org
  10. * @copyright 2014 Simple Machines and individual contributors
  11. * @license http://www.simplemachines.org/about/smf/license.php BSD
  12. *
  13. * @version 2.1 Alpha 1
  14. */
  15. if (!defined('SMF'))
  16. die('No direct access...');
  17. /**
  18. * The central part of the board - topic display.
  19. * This function loads the posts in a topic up so they can be displayed.
  20. * It supports wireless, using wap/wap2/imode and the Wireless templates.
  21. * It uses the main sub template of the Display template.
  22. * It requires a topic, and can go to the previous or next topic from it.
  23. * It jumps to the correct post depending on a number/time/IS_MSG passed.
  24. * It depends on the messages_per_page, defaultMaxMessages and enableAllMessages settings.
  25. * It is accessed by ?topic=id_topic.START.
  26. */
  27. function Display()
  28. {
  29. global $scripturl, $txt, $modSettings, $context, $settings;
  30. global $options, $sourcedir, $user_info, $board_info, $topic, $board;
  31. global $attachments, $messages_request, $topicinfo, $language, $smcFunc;
  32. // What are you gonna display if these are empty?!
  33. if (empty($topic))
  34. fatal_lang_error('no_board', false);
  35. // Load the proper template and/or sub template.
  36. if (WIRELESS)
  37. $context['sub_template'] = WIRELESS_PROTOCOL . '_display';
  38. else
  39. loadTemplate('Display');
  40. // Not only does a prefetch make things slower for the server, but it makes it impossible to know if they read it.
  41. if (isset($_SERVER['HTTP_X_MOZ']) && $_SERVER['HTTP_X_MOZ'] == 'prefetch')
  42. {
  43. ob_end_clean();
  44. header('HTTP/1.1 403 Prefetch Forbidden');
  45. die;
  46. }
  47. // How much are we sticking on each page?
  48. $context['messages_per_page'] = empty($modSettings['disableCustomPerPage']) && !empty($options['messages_per_page']) && !WIRELESS ? $options['messages_per_page'] : $modSettings['defaultMaxMessages'];
  49. // Let's do some work on what to search index.
  50. if (count($_GET) > 2)
  51. foreach ($_GET as $k => $v)
  52. {
  53. if (!in_array($k, array('topic', 'board', 'start', session_name())))
  54. $context['robot_no_index'] = true;
  55. }
  56. if (!empty($_REQUEST['start']) && (!is_numeric($_REQUEST['start']) || $_REQUEST['start'] % $context['messages_per_page'] != 0))
  57. $context['robot_no_index'] = true;
  58. // Find the previous or next topic. Make a fuss if there are no more.
  59. if (isset($_REQUEST['prev_next']) && ($_REQUEST['prev_next'] == 'prev' || $_REQUEST['prev_next'] == 'next'))
  60. {
  61. // No use in calculating the next topic if there's only one.
  62. if ($board_info['num_topics'] > 1)
  63. {
  64. // Just prepare some variables that are used in the query.
  65. $gt_lt = $_REQUEST['prev_next'] == 'prev' ? '>' : '<';
  66. $order = $_REQUEST['prev_next'] == 'prev' ? '' : ' DESC';
  67. $request = $smcFunc['db_query']('', '
  68. SELECT t2.id_topic
  69. FROM {db_prefix}topics AS t
  70. INNER JOIN {db_prefix}topics AS t2 ON (
  71. (t2.id_last_msg ' . $gt_lt . ' t.id_last_msg AND t2.is_sticky ' . $gt_lt . '= t.is_sticky) OR t2.is_sticky ' . $gt_lt . ' t.is_sticky)
  72. WHERE t.id_topic = {int:current_topic}
  73. AND t2.id_board = {int:current_board}' . (!$modSettings['postmod_active'] || allowedTo('approve_posts') ? '' : '
  74. AND (t2.approved = {int:is_approved} OR (t2.id_member_started != {int:id_member_started} AND t2.id_member_started = {int:current_member}))') . '
  75. ORDER BY t2.is_sticky' . $order . ', t2.id_last_msg' . $order . '
  76. LIMIT 1',
  77. array(
  78. 'current_board' => $board,
  79. 'current_member' => $user_info['id'],
  80. 'current_topic' => $topic,
  81. 'is_approved' => 1,
  82. 'id_member_started' => 0,
  83. )
  84. );
  85. // No more left.
  86. if ($smcFunc['db_num_rows']($request) == 0)
  87. {
  88. $smcFunc['db_free_result']($request);
  89. // Roll over - if we're going prev, get the last - otherwise the first.
  90. $request = $smcFunc['db_query']('', '
  91. SELECT id_topic
  92. FROM {db_prefix}topics
  93. WHERE id_board = {int:current_board}' . (!$modSettings['postmod_active'] || allowedTo('approve_posts') ? '' : '
  94. AND (approved = {int:is_approved} OR (id_member_started != {int:id_member_started} AND id_member_started = {int:current_member}))') . '
  95. ORDER BY is_sticky' . $order . ', id_last_msg' . $order . '
  96. LIMIT 1',
  97. array(
  98. 'current_board' => $board,
  99. 'current_member' => $user_info['id'],
  100. 'is_approved' => 1,
  101. 'id_member_started' => 0,
  102. )
  103. );
  104. }
  105. // Now you can be sure $topic is the id_topic to view.
  106. list ($topic) = $smcFunc['db_fetch_row']($request);
  107. $smcFunc['db_free_result']($request);
  108. $context['current_topic'] = $topic;
  109. }
  110. // Go to the newest message on this topic.
  111. $_REQUEST['start'] = 'new';
  112. }
  113. // Add 1 to the number of views of this topic (except for robots).
  114. if (!$user_info['possibly_robot'] && (empty($_SESSION['last_read_topic']) || $_SESSION['last_read_topic'] != $topic))
  115. {
  116. $smcFunc['db_query']('', '
  117. UPDATE {db_prefix}topics
  118. SET num_views = num_views + 1
  119. WHERE id_topic = {int:current_topic}',
  120. array(
  121. 'current_topic' => $topic,
  122. )
  123. );
  124. $_SESSION['last_read_topic'] = $topic;
  125. }
  126. $topic_parameters = array(
  127. 'current_member' => $user_info['id'],
  128. 'current_topic' => $topic,
  129. 'current_board' => $board,
  130. );
  131. $topic_selects = array();
  132. $topic_tables = array();
  133. call_integration_hook('integrate_display_topic', array(&$topic_selects, &$topic_tables, &$topic_parameters));
  134. // @todo Why isn't this cached?
  135. // @todo if we get id_board in this query and cache it, we can save a query on posting
  136. // Get all the important topic info.
  137. $request = $smcFunc['db_query']('', '
  138. SELECT
  139. t.num_replies, t.num_views, t.locked, ms.subject, t.is_sticky, t.id_poll,
  140. t.id_member_started, t.id_first_msg, t.id_last_msg, t.approved, t.unapproved_posts, t.id_redirect_topic,
  141. ' . ($user_info['is_guest'] ? 't.id_last_msg + 1' : 'IFNULL(lt.id_msg, IFNULL(lmr.id_msg, -1)) + 1') . ' AS new_from
  142. ' . (!empty($board_info['recycle']) ? ', id_previous_board, id_previous_topic' : '') . '
  143. ' . (!empty($topic_selects) ? implode(',', $topic_selects) : '') . '
  144. ' . (!$user_info['is_guest'] ? ', IFNULL(lt.unwatched, 0) as unwatched' : '') . '
  145. FROM {db_prefix}topics AS t
  146. INNER JOIN {db_prefix}messages AS ms ON (ms.id_msg = t.id_first_msg)' . ($user_info['is_guest'] ? '' : '
  147. LEFT JOIN {db_prefix}log_topics AS lt ON (lt.id_topic = {int:current_topic} AND lt.id_member = {int:current_member})
  148. LEFT JOIN {db_prefix}log_mark_read AS lmr ON (lmr.id_board = {int:current_board} AND lmr.id_member = {int:current_member})') . '
  149. ' . (!empty($topic_tables) ? implode("\n\t", $topic_tables) : '') . '
  150. WHERE t.id_topic = {int:current_topic}
  151. LIMIT 1',
  152. $topic_parameters
  153. );
  154. if ($smcFunc['db_num_rows']($request) == 0)
  155. fatal_lang_error('not_a_topic', false);
  156. $topicinfo = $smcFunc['db_fetch_assoc']($request);
  157. $smcFunc['db_free_result']($request);
  158. // Is this a moved topic that we are redirecting to?
  159. if (!empty($topicinfo['id_redirect_topic']))
  160. {
  161. if ($topicinfo['new_from'] === 0 && !$user_info['is_guest'])
  162. {
  163. // Mark this as read first
  164. $smcFunc['db_insert']($topicinfo['new_from'] == 0 ? 'ignore' : 'replace',
  165. '{db_prefix}log_topics',
  166. array(
  167. 'id_member' => 'int', 'id_topic' => 'int', 'id_msg' => 'int', 'unwatched' => 'int',
  168. ),
  169. array(
  170. $user_info['id'], $topicinfo['id'], $topicinfo['id_first_msg'], $topicinfo['unwatched'],
  171. ),
  172. array('id_member', 'id_topic')
  173. );
  174. }
  175. redirectexit('topic=' . $topicinfo['id_redirect_topic'] . '.0');
  176. }
  177. $context['real_num_replies'] = $context['num_replies'] = $topicinfo['num_replies'];
  178. $context['topic_first_message'] = $topicinfo['id_first_msg'];
  179. $context['topic_last_message'] = $topicinfo['id_last_msg'];
  180. $context['topic_unwatched'] = isset($topicinfo['unwatched']) ? $topicinfo['unwatched'] : 0;
  181. // Add up unapproved replies to get real number of replies...
  182. if ($modSettings['postmod_active'] && allowedTo('approve_posts'))
  183. $context['real_num_replies'] += $topicinfo['unapproved_posts'] - ($topicinfo['approved'] ? 0 : 1);
  184. // If this topic has unapproved posts, we need to work out how many posts the user can see, for page indexing.
  185. if ($modSettings['postmod_active'] && $topicinfo['unapproved_posts'] && !$user_info['is_guest'] && !allowedTo('approve_posts'))
  186. {
  187. $request = $smcFunc['db_query']('', '
  188. SELECT COUNT(id_member) AS my_unapproved_posts
  189. FROM {db_prefix}messages
  190. WHERE id_topic = {int:current_topic}
  191. AND id_member = {int:current_member}
  192. AND approved = 0',
  193. array(
  194. 'current_topic' => $topic,
  195. 'current_member' => $user_info['id'],
  196. )
  197. );
  198. list ($myUnapprovedPosts) = $smcFunc['db_fetch_row']($request);
  199. $smcFunc['db_free_result']($request);
  200. $context['total_visible_posts'] = $context['num_replies'] + $myUnapprovedPosts + ($topicinfo['approved'] ? 1 : 0);
  201. }
  202. elseif ($user_info['is_guest'])
  203. $context['total_visible_posts'] = $context['num_replies'] + ($topicinfo['approved'] ? 1 : 0);
  204. else
  205. $context['total_visible_posts'] = $context['num_replies'] + $topicinfo['unapproved_posts'] + ($topicinfo['approved'] ? 1 : 0);
  206. // When was the last time this topic was replied to? Should we warn them about it?
  207. $request = $smcFunc['db_query']('', '
  208. SELECT poster_time
  209. FROM {db_prefix}messages
  210. WHERE id_msg = {int:id_last_msg}
  211. LIMIT 1',
  212. array(
  213. 'id_last_msg' => $topicinfo['id_last_msg'],
  214. )
  215. );
  216. list ($lastPostTime) = $smcFunc['db_fetch_row']($request);
  217. $smcFunc['db_free_result']($request);
  218. $context['oldTopicError'] = !empty($modSettings['oldTopicDays']) && $lastPostTime + $modSettings['oldTopicDays'] * 86400 < time() && empty($topicinfo['is_sticky']);
  219. // The start isn't a number; it's information about what to do, where to go.
  220. if (!is_numeric($_REQUEST['start']))
  221. {
  222. // Redirect to the page and post with new messages, originally by Omar Bazavilvazo.
  223. if ($_REQUEST['start'] == 'new')
  224. {
  225. // Guests automatically go to the last post.
  226. if ($user_info['is_guest'])
  227. {
  228. $context['start_from'] = $context['total_visible_posts'] - 1;
  229. $_REQUEST['start'] = empty($options['view_newest_first']) ? $context['start_from'] : 0;
  230. }
  231. else
  232. {
  233. // Find the earliest unread message in the topic. (the use of topics here is just for both tables.)
  234. $request = $smcFunc['db_query']('', '
  235. SELECT IFNULL(lt.id_msg, IFNULL(lmr.id_msg, -1)) + 1 AS new_from
  236. FROM {db_prefix}topics AS t
  237. LEFT JOIN {db_prefix}log_topics AS lt ON (lt.id_topic = {int:current_topic} AND lt.id_member = {int:current_member})
  238. LEFT JOIN {db_prefix}log_mark_read AS lmr ON (lmr.id_board = {int:current_board} AND lmr.id_member = {int:current_member})
  239. WHERE t.id_topic = {int:current_topic}
  240. LIMIT 1',
  241. array(
  242. 'current_board' => $board,
  243. 'current_member' => $user_info['id'],
  244. 'current_topic' => $topic,
  245. )
  246. );
  247. list ($new_from) = $smcFunc['db_fetch_row']($request);
  248. $smcFunc['db_free_result']($request);
  249. // Fall through to the next if statement.
  250. $_REQUEST['start'] = 'msg' . $new_from;
  251. }
  252. }
  253. // Start from a certain time index, not a message.
  254. if (substr($_REQUEST['start'], 0, 4) == 'from')
  255. {
  256. $timestamp = (int) substr($_REQUEST['start'], 4);
  257. if ($timestamp === 0)
  258. $_REQUEST['start'] = 0;
  259. else
  260. {
  261. // Find the number of messages posted before said time...
  262. $request = $smcFunc['db_query']('', '
  263. SELECT COUNT(*)
  264. FROM {db_prefix}messages
  265. WHERE poster_time < {int:timestamp}
  266. AND id_topic = {int:current_topic}' . ($modSettings['postmod_active'] && $topicinfo['unapproved_posts'] && !allowedTo('approve_posts') ? '
  267. AND (approved = {int:is_approved}' . ($user_info['is_guest'] ? '' : ' OR id_member = {int:current_member}') . ')' : ''),
  268. array(
  269. 'current_topic' => $topic,
  270. 'current_member' => $user_info['id'],
  271. 'is_approved' => 1,
  272. 'timestamp' => $timestamp,
  273. )
  274. );
  275. list ($context['start_from']) = $smcFunc['db_fetch_row']($request);
  276. $smcFunc['db_free_result']($request);
  277. // Handle view_newest_first options, and get the correct start value.
  278. $_REQUEST['start'] = empty($options['view_newest_first']) ? $context['start_from'] : $context['total_visible_posts'] - $context['start_from'] - 1;
  279. }
  280. }
  281. // Link to a message...
  282. elseif (substr($_REQUEST['start'], 0, 3) == 'msg')
  283. {
  284. $virtual_msg = (int) substr($_REQUEST['start'], 3);
  285. if (!$topicinfo['unapproved_posts'] && $virtual_msg >= $topicinfo['id_last_msg'])
  286. $context['start_from'] = $context['total_visible_posts'] - 1;
  287. elseif (!$topicinfo['unapproved_posts'] && $virtual_msg <= $topicinfo['id_first_msg'])
  288. $context['start_from'] = 0;
  289. else
  290. {
  291. // Find the start value for that message......
  292. $request = $smcFunc['db_query']('', '
  293. SELECT COUNT(*)
  294. FROM {db_prefix}messages
  295. WHERE id_msg < {int:virtual_msg}
  296. AND id_topic = {int:current_topic}' . ($modSettings['postmod_active'] && $topicinfo['unapproved_posts'] && !allowedTo('approve_posts') ? '
  297. AND (approved = {int:is_approved}' . ($user_info['is_guest'] ? '' : ' OR id_member = {int:current_member}') . ')' : ''),
  298. array(
  299. 'current_member' => $user_info['id'],
  300. 'current_topic' => $topic,
  301. 'virtual_msg' => $virtual_msg,
  302. 'is_approved' => 1,
  303. 'no_member' => 0,
  304. )
  305. );
  306. list ($context['start_from']) = $smcFunc['db_fetch_row']($request);
  307. $smcFunc['db_free_result']($request);
  308. }
  309. // We need to reverse the start as well in this case.
  310. $_REQUEST['start'] = empty($options['view_newest_first']) ? $context['start_from'] : $context['total_visible_posts'] - $context['start_from'] - 1;
  311. }
  312. }
  313. // Create a previous next string if the selected theme has it as a selected option.
  314. $context['previous_next'] = $modSettings['enablePreviousNext'] ? '<a href="' . $scripturl . '?topic=' . $topic . '.0;prev_next=prev#new">' . $txt['previous_next_back'] . '</a> - <a href="' . $scripturl . '?topic=' . $topic . '.0;prev_next=next#new">' . $txt['previous_next_forward'] . '</a>' : '';
  315. // Check if spellchecking is both enabled and actually working. (for quick reply.)
  316. $context['show_spellchecking'] = !empty($modSettings['enableSpellChecking']) && function_exists('pspell_new');
  317. // Do we need to show the visual verification image?
  318. $context['require_verification'] = !$user_info['is_mod'] && !$user_info['is_admin'] && !empty($modSettings['posts_require_captcha']) && ($user_info['posts'] < $modSettings['posts_require_captcha'] || ($user_info['is_guest'] && $modSettings['posts_require_captcha'] == -1));
  319. if ($context['require_verification'])
  320. {
  321. require_once($sourcedir . '/Subs-Editor.php');
  322. $verificationOptions = array(
  323. 'id' => 'post',
  324. );
  325. $context['require_verification'] = create_control_verification($verificationOptions);
  326. $context['visual_verification_id'] = $verificationOptions['id'];
  327. }
  328. // Are we showing signatures - or disabled fields?
  329. $context['signature_enabled'] = substr($modSettings['signature_settings'], 0, 1) == 1;
  330. $context['disabled_fields'] = isset($modSettings['disabled_profile_fields']) ? array_flip(explode(',', $modSettings['disabled_profile_fields'])) : array();
  331. // Censor the title...
  332. censorText($topicinfo['subject']);
  333. $context['page_title'] = $topicinfo['subject'];
  334. // Default this topic to not marked for notifications... of course...
  335. $context['is_marked_notify'] = false;
  336. // Did we report a post to a moderator just now?
  337. $context['report_sent'] = isset($_GET['reportsent']);
  338. // Did we send this topic to a friend?
  339. $context['topic_sent'] = isset($_GET['topicsent']);
  340. // Let's get nosey, who is viewing this topic?
  341. if (!empty($settings['display_who_viewing']))
  342. {
  343. // Start out with no one at all viewing it.
  344. $context['view_members'] = array();
  345. $context['view_members_list'] = array();
  346. $context['view_num_hidden'] = 0;
  347. // Search for members who have this topic set in their GET data.
  348. $request = $smcFunc['db_query']('', '
  349. SELECT
  350. lo.id_member, lo.log_time, mem.real_name, mem.member_name, mem.show_online,
  351. mg.online_color, mg.id_group, mg.group_name
  352. FROM {db_prefix}log_online AS lo
  353. LEFT JOIN {db_prefix}members AS mem ON (mem.id_member = lo.id_member)
  354. LEFT JOIN {db_prefix}membergroups AS mg ON (mg.id_group = CASE WHEN mem.id_group = {int:reg_id_group} THEN mem.id_post_group ELSE mem.id_group END)
  355. WHERE INSTR(lo.url, {string:in_url_string}) > 0 OR lo.session = {string:session}',
  356. array(
  357. 'reg_id_group' => 0,
  358. 'in_url_string' => 's:5:"topic";i:' . $topic . ';',
  359. 'session' => $user_info['is_guest'] ? 'ip' . $user_info['ip'] : session_id(),
  360. )
  361. );
  362. while ($row = $smcFunc['db_fetch_assoc']($request))
  363. {
  364. if (empty($row['id_member']))
  365. continue;
  366. if (!empty($row['online_color']))
  367. $link = '<a href="' . $scripturl . '?action=profile;u=' . $row['id_member'] . '" style="color: ' . $row['online_color'] . ';">' . $row['real_name'] . '</a>';
  368. else
  369. $link = '<a href="' . $scripturl . '?action=profile;u=' . $row['id_member'] . '">' . $row['real_name'] . '</a>';
  370. $is_buddy = in_array($row['id_member'], $user_info['buddies']);
  371. if ($is_buddy)
  372. $link = '<strong>' . $link . '</strong>';
  373. // Add them both to the list and to the more detailed list.
  374. if (!empty($row['show_online']) || allowedTo('moderate_forum'))
  375. $context['view_members_list'][$row['log_time'] . $row['member_name']] = empty($row['show_online']) ? '<em>' . $link . '</em>' : $link;
  376. $context['view_members'][$row['log_time'] . $row['member_name']] = array(
  377. 'id' => $row['id_member'],
  378. 'username' => $row['member_name'],
  379. 'name' => $row['real_name'],
  380. 'group' => $row['id_group'],
  381. 'href' => $scripturl . '?action=profile;u=' . $row['id_member'],
  382. 'link' => $link,
  383. 'is_buddy' => $is_buddy,
  384. 'hidden' => empty($row['show_online']),
  385. );
  386. if (empty($row['show_online']))
  387. $context['view_num_hidden']++;
  388. }
  389. // The number of guests is equal to the rows minus the ones we actually used ;).
  390. $context['view_num_guests'] = $smcFunc['db_num_rows']($request) - count($context['view_members']);
  391. $smcFunc['db_free_result']($request);
  392. // Sort the list.
  393. krsort($context['view_members']);
  394. krsort($context['view_members_list']);
  395. }
  396. // If all is set, but not allowed... just unset it.
  397. $can_show_all = !empty($modSettings['enableAllMessages']) && $context['total_visible_posts'] > $context['messages_per_page'] && $context['total_visible_posts'] < $modSettings['enableAllMessages'];
  398. if (isset($_REQUEST['all']) && !$can_show_all)
  399. unset($_REQUEST['all']);
  400. // Otherwise, it must be allowed... so pretend start was -1.
  401. elseif (isset($_REQUEST['all']))
  402. $_REQUEST['start'] = -1;
  403. // Construct the page index, allowing for the .START method...
  404. $context['page_index'] = constructPageIndex($scripturl . '?topic=' . $topic . '.%1$d', $_REQUEST['start'], $context['total_visible_posts'], $context['messages_per_page'], true);
  405. $context['start'] = $_REQUEST['start'];
  406. // This is information about which page is current, and which page we're on - in case you don't like the constructed page index. (again, wireles..)
  407. $context['page_info'] = array(
  408. 'current_page' => $_REQUEST['start'] / $context['messages_per_page'] + 1,
  409. 'num_pages' => floor(($context['total_visible_posts'] - 1) / $context['messages_per_page']) + 1,
  410. );
  411. // Figure out all the link to the next/prev/first/last/etc. for wireless mainly.
  412. if (WIRELESS || !($can_show_all && isset($_REQUEST['all'])))
  413. {
  414. $context['links'] = array(
  415. 'first' => $_REQUEST['start'] >= $context['messages_per_page'] ? $scripturl . '?topic=' . $topic . '.0' : '',
  416. 'prev' => $_REQUEST['start'] >= $context['messages_per_page'] ? $scripturl . '?topic=' . $topic . '.' . ($_REQUEST['start'] - $context['messages_per_page']) : '',
  417. 'next' => $_REQUEST['start'] + $context['messages_per_page'] < $context['total_visible_posts'] ? $scripturl . '?topic=' . $topic. '.' . ($_REQUEST['start'] + $context['messages_per_page']) : '',
  418. 'last' => $_REQUEST['start'] + $context['messages_per_page'] < $context['total_visible_posts'] ? $scripturl . '?topic=' . $topic. '.' . (floor($context['total_visible_posts'] / $context['messages_per_page']) * $context['messages_per_page']) : '',
  419. 'up' => $scripturl . '?board=' . $board . '.0'
  420. );
  421. }
  422. // If they are viewing all the posts, show all the posts, otherwise limit the number.
  423. if ($can_show_all)
  424. {
  425. if (isset($_REQUEST['all']))
  426. {
  427. // No limit! (actually, there is a limit, but...)
  428. $context['messages_per_page'] = -1;
  429. $context['page_index'] .= empty($modSettings['compactTopicPagesEnable']) ? '<strong>' . $txt['all'] . '</strong> ' : '[<strong>' . $txt['all'] . '</strong>] ';
  430. // Set start back to 0...
  431. $_REQUEST['start'] = 0;
  432. }
  433. // They aren't using it, but the *option* is there, at least.
  434. else
  435. $context['page_index'] .= '&nbsp;<a href="' . $scripturl . '?topic=' . $topic . '.0;all">' . $txt['all'] . '</a> ';
  436. }
  437. // Build the link tree.
  438. $context['linktree'][] = array(
  439. 'url' => $scripturl . '?topic=' . $topic . '.0',
  440. 'name' => $topicinfo['subject'],
  441. );
  442. // Build a list of this board's moderators.
  443. $context['moderators'] = &$board_info['moderators'];
  444. $context['moderator_groups'] = &$board_info['moderator_groups'];
  445. $context['link_moderators'] = array();
  446. if (!empty($board_info['moderators']))
  447. {
  448. // Add a link for each moderator...
  449. foreach ($board_info['moderators'] as $mod)
  450. $context['link_moderators'][] = '<a href="' . $scripturl . '?action=profile;u=' . $mod['id'] . '" title="' . $txt['board_moderator'] . '">' . $mod['name'] . '</a>';
  451. }
  452. if (!empty($board_info['moderator_groups']))
  453. {
  454. // Add a link for each moderator group as well...
  455. foreach ($board_info['moderator_groups'] as $mod_group)
  456. $context['link_moderators'][] = '<a href="' . $scripturl . '?action=groups;sa=viewmemberes;group=' . $mod_group['id'] . '" title="' . $txt['board_moderator'] . '">' . $mod_group['name'] . '</a>';
  457. }
  458. if (!empty($context['link_moderators']))
  459. {
  460. // And show it after the board's name.
  461. $context['linktree'][count($context['linktree']) - 2]['extra_after'] = '<span class="board_moderators">(' . (count($context['link_moderators']) == 1 ? $txt['moderator'] : $txt['moderators']) . ': ' . implode(', ', $context['link_moderators']) . ')</span>';
  462. }
  463. // Information about the current topic...
  464. $context['is_locked'] = $topicinfo['locked'];
  465. $context['is_sticky'] = $topicinfo['is_sticky'];
  466. $context['is_approved'] = $topicinfo['approved'];
  467. // @todo Tricks? We don't want to show the poll icon in the topic class here, so pretend it's not one.
  468. $context['is_poll'] = false;
  469. determineTopicClass($context);
  470. $context['is_poll'] = $topicinfo['id_poll'] > 0 && $modSettings['pollMode'] == '1' && allowedTo('poll_view');
  471. // Did this user start the topic or not?
  472. $context['user']['started'] = $user_info['id'] == $topicinfo['id_member_started'] && !$user_info['is_guest'];
  473. $context['topic_starter_id'] = $topicinfo['id_member_started'];
  474. // Set the topic's information for the template.
  475. $context['subject'] = $topicinfo['subject'];
  476. $context['num_views'] = comma_format($topicinfo['num_views']);
  477. $context['num_views_text'] = $context['num_views'] == 1 ? $txt['read_one_time'] : sprintf($txt['read_many_times'], $context['num_views']);
  478. $context['mark_unread_time'] = !empty($virtual_msg) ? $virtual_msg : $topicinfo['new_from'];
  479. // Set a canonical URL for this page.
  480. $context['canonical_url'] = $scripturl . '?topic=' . $topic . '.' . $context['start'];
  481. // For quick reply we need a response prefix in the default forum language.
  482. if (!isset($context['response_prefix']) && !($context['response_prefix'] = cache_get_data('response_prefix', 600)))
  483. {
  484. if ($language === $user_info['language'])
  485. $context['response_prefix'] = $txt['response_prefix'];
  486. else
  487. {
  488. loadLanguage('index', $language, false);
  489. $context['response_prefix'] = $txt['response_prefix'];
  490. loadLanguage('index');
  491. }
  492. cache_put_data('response_prefix', $context['response_prefix'], 600);
  493. }
  494. // If we want to show event information in the topic, prepare the data.
  495. if (allowedTo('calendar_view') && !empty($modSettings['cal_showInTopic']) && !empty($modSettings['cal_enabled']))
  496. {
  497. // First, try create a better time format, ignoring the "time" elements.
  498. if (preg_match('~%[AaBbCcDdeGghjmuYy](?:[^%]*%[AaBbCcDdeGghjmuYy])*~', $user_info['time_format'], $matches) == 0 || empty($matches[0]))
  499. $date_string = $user_info['time_format'];
  500. else
  501. $date_string = $matches[0];
  502. // Any calendar information for this topic?
  503. $request = $smcFunc['db_query']('', '
  504. SELECT cal.id_event, cal.start_date, cal.end_date, cal.title, cal.id_member, mem.real_name
  505. FROM {db_prefix}calendar AS cal
  506. LEFT JOIN {db_prefix}members AS mem ON (mem.id_member = cal.id_member)
  507. WHERE cal.id_topic = {int:current_topic}
  508. ORDER BY start_date',
  509. array(
  510. 'current_topic' => $topic,
  511. )
  512. );
  513. $context['linked_calendar_events'] = array();
  514. while ($row = $smcFunc['db_fetch_assoc']($request))
  515. {
  516. // Prepare the dates for being formatted.
  517. $start_date = sscanf($row['start_date'], '%04d-%02d-%02d');
  518. $start_date = mktime(12, 0, 0, $start_date[1], $start_date[2], $start_date[0]);
  519. $end_date = sscanf($row['end_date'], '%04d-%02d-%02d');
  520. $end_date = mktime(12, 0, 0, $end_date[1], $end_date[2], $end_date[0]);
  521. $context['linked_calendar_events'][] = array(
  522. 'id' => $row['id_event'],
  523. 'title' => $row['title'],
  524. 'can_edit' => allowedTo('calendar_edit_any') || ($row['id_member'] == $user_info['id'] && allowedTo('calendar_edit_own')),
  525. 'modify_href' => $scripturl . '?action=post;msg=' . $topicinfo['id_first_msg'] . ';topic=' . $topic . '.0;calendar;eventid=' . $row['id_event'] . ';' . $context['session_var'] . '=' . $context['session_id'],
  526. 'can_export' => allowedTo('calendar_edit_any') || ($row['id_member'] == $user_info['id'] && allowedTo('calendar_edit_own')),
  527. 'export_href' => $scripturl . '?action=calendar;sa=ical;eventid=' . $row['id_event'] . ';' . $context['session_var'] . '=' . $context['session_id'],
  528. 'start_date' => timeformat($start_date, $date_string, 'none'),
  529. 'start_timestamp' => $start_date,
  530. 'end_date' => timeformat($end_date, $date_string, 'none'),
  531. 'end_timestamp' => $end_date,
  532. 'is_last' => false
  533. );
  534. }
  535. $smcFunc['db_free_result']($request);
  536. if (!empty($context['linked_calendar_events']))
  537. $context['linked_calendar_events'][count($context['linked_calendar_events']) - 1]['is_last'] = true;
  538. }
  539. // Create the poll info if it exists.
  540. if ($context['is_poll'])
  541. {
  542. // Get the question and if it's locked.
  543. $request = $smcFunc['db_query']('', '
  544. SELECT
  545. p.question, p.voting_locked, p.hide_results, p.expire_time, p.max_votes, p.change_vote,
  546. p.guest_vote, p.id_member, IFNULL(mem.real_name, p.poster_name) AS poster_name, p.num_guest_voters, p.reset_poll
  547. FROM {db_prefix}polls AS p
  548. LEFT JOIN {db_prefix}members AS mem ON (mem.id_member = p.id_member)
  549. WHERE p.id_poll = {int:id_poll}
  550. LIMIT 1',
  551. array(
  552. 'id_poll' => $topicinfo['id_poll'],
  553. )
  554. );
  555. $pollinfo = $smcFunc['db_fetch_assoc']($request);
  556. $smcFunc['db_free_result']($request);
  557. $request = $smcFunc['db_query']('', '
  558. SELECT COUNT(DISTINCT id_member) AS total
  559. FROM {db_prefix}log_polls
  560. WHERE id_poll = {int:id_poll}
  561. AND id_member != {int:not_guest}',
  562. array(
  563. 'id_poll' => $topicinfo['id_poll'],
  564. 'not_guest' => 0,
  565. )
  566. );
  567. list ($pollinfo['total']) = $smcFunc['db_fetch_row']($request);
  568. $smcFunc['db_free_result']($request);
  569. // Total voters needs to include guest voters
  570. $pollinfo['total'] += $pollinfo['num_guest_voters'];
  571. // Get all the options, and calculate the total votes.
  572. $request = $smcFunc['db_query']('', '
  573. SELECT pc.id_choice, pc.label, pc.votes, IFNULL(lp.id_choice, -1) AS voted_this
  574. FROM {db_prefix}poll_choices AS pc
  575. LEFT JOIN {db_prefix}log_polls AS lp ON (lp.id_choice = pc.id_choice AND lp.id_poll = {int:id_poll} AND lp.id_member = {int:current_member} AND lp.id_member != {int:not_guest})
  576. WHERE pc.id_poll = {int:id_poll}',
  577. array(
  578. 'current_member' => $user_info['id'],
  579. 'id_poll' => $topicinfo['id_poll'],
  580. 'not_guest' => 0,
  581. )
  582. );
  583. $pollOptions = array();
  584. $realtotal = 0;
  585. $pollinfo['has_voted'] = false;
  586. while ($row = $smcFunc['db_fetch_assoc']($request))
  587. {
  588. censorText($row['label']);
  589. $pollOptions[$row['id_choice']] = $row;
  590. $realtotal += $row['votes'];
  591. $pollinfo['has_voted'] |= $row['voted_this'] != -1;
  592. }
  593. $smcFunc['db_free_result']($request);
  594. // If this is a guest we need to do our best to work out if they have voted, and what they voted for.
  595. if ($user_info['is_guest'] && $pollinfo['guest_vote'] && allowedTo('poll_vote'))
  596. {
  597. if (!empty($_COOKIE['guest_poll_vote']) && preg_match('~^[0-9,;]+$~', $_COOKIE['guest_poll_vote']) && strpos($_COOKIE['guest_poll_vote'], ';' . $topicinfo['id_poll'] . ',') !== false)
  598. {
  599. // ;id,timestamp,[vote,vote...]; etc
  600. $guestinfo = explode(';', $_COOKIE['guest_poll_vote']);
  601. // Find the poll we're after.
  602. foreach ($guestinfo as $i => $guestvoted)
  603. {
  604. $guestvoted = explode(',', $guestvoted);
  605. if ($guestvoted[0] == $topicinfo['id_poll'])
  606. break;
  607. }
  608. // Has the poll been reset since guest voted?
  609. if ($pollinfo['reset_poll'] > $guestvoted[1])
  610. {
  611. // Remove the poll info from the cookie to allow guest to vote again
  612. unset($guestinfo[$i]);
  613. if (!empty($guestinfo))
  614. $_COOKIE['guest_poll_vote'] = ';' . implode(';', $guestinfo);
  615. else
  616. unset($_COOKIE['guest_poll_vote']);
  617. }
  618. else
  619. {
  620. // What did they vote for?
  621. unset($guestvoted[0], $guestvoted[1]);
  622. foreach ($pollOptions as $choice => $details)
  623. {
  624. $pollOptions[$choice]['voted_this'] = in_array($choice, $guestvoted) ? 1 : -1;
  625. $pollinfo['has_voted'] |= $pollOptions[$choice]['voted_this'] != -1;
  626. }
  627. unset($choice, $details, $guestvoted);
  628. }
  629. unset($guestinfo, $guestvoted, $i);
  630. }
  631. }
  632. // Set up the basic poll information.
  633. $context['poll'] = array(
  634. 'id' => $topicinfo['id_poll'],
  635. 'image' => 'normal_' . (empty($pollinfo['voting_locked']) ? 'poll' : 'locked_poll'),
  636. 'question' => parse_bbc($pollinfo['question']),
  637. 'total_votes' => $pollinfo['total'],
  638. 'change_vote' => !empty($pollinfo['change_vote']),
  639. 'is_locked' => !empty($pollinfo['voting_locked']),
  640. 'options' => array(),
  641. 'lock' => allowedTo('poll_lock_any') || ($context['user']['started'] && allowedTo('poll_lock_own')),
  642. 'edit' => allowedTo('poll_edit_any') || ($context['user']['started'] && allowedTo('poll_edit_own')),
  643. 'allowed_warning' => $pollinfo['max_votes'] > 1 ? sprintf($txt['poll_options6'], min(count($pollOptions), $pollinfo['max_votes'])) : '',
  644. 'is_expired' => !empty($pollinfo['expire_time']) && $pollinfo['expire_time'] < time(),
  645. 'expire_time' => !empty($pollinfo['expire_time']) ? timeformat($pollinfo['expire_time']) : 0,
  646. 'has_voted' => !empty($pollinfo['has_voted']),
  647. 'starter' => array(
  648. 'id' => $pollinfo['id_member'],
  649. 'name' => $row['poster_name'],
  650. 'href' => $pollinfo['id_member'] == 0 ? '' : $scripturl . '?action=profile;u=' . $pollinfo['id_member'],
  651. 'link' => $pollinfo['id_member'] == 0 ? $row['poster_name'] : '<a href="' . $scripturl . '?action=profile;u=' . $pollinfo['id_member'] . '">' . $row['poster_name'] . '</a>'
  652. )
  653. );
  654. // Make the lock and edit permissions defined above more directly accessible.
  655. $context['allow_lock_poll'] = $context['poll']['lock'];
  656. $context['allow_edit_poll'] = $context['poll']['edit'];
  657. // You're allowed to vote if:
  658. // 1. the poll did not expire, and
  659. // 2. you're either not a guest OR guest voting is enabled... and
  660. // 3. you're not trying to view the results, and
  661. // 4. the poll is not locked, and
  662. // 5. you have the proper permissions, and
  663. // 6. you haven't already voted before.
  664. $context['allow_vote'] = !$context['poll']['is_expired'] && (!$user_info['is_guest'] || ($pollinfo['guest_vote'] && allowedTo('poll_vote'))) && empty($pollinfo['voting_locked']) && allowedTo('poll_vote') && !$context['poll']['has_voted'];
  665. // You're allowed to view the results if:
  666. // 1. you're just a super-nice-guy, or
  667. // 2. anyone can see them (hide_results == 0), or
  668. // 3. you can see them after you voted (hide_results == 1), or
  669. // 4. you've waited long enough for the poll to expire. (whether hide_results is 1 or 2.)
  670. $context['allow_poll_view'] = allowedTo('moderate_board') || $pollinfo['hide_results'] == 0 || ($pollinfo['hide_results'] == 1 && $context['poll']['has_voted']) || $context['poll']['is_expired'];
  671. $context['poll']['show_results'] = $context['allow_poll_view'] && (isset($_REQUEST['viewresults']) || isset($_REQUEST['viewResults']));
  672. $context['show_view_results_button'] = $context['allow_vote'] && (!$context['allow_poll_view'] || !$context['poll']['show_results'] || !$context['poll']['has_voted']);
  673. // You're allowed to change your vote if:
  674. // 1. the poll did not expire, and
  675. // 2. you're not a guest... and
  676. // 3. the poll is not locked, and
  677. // 4. you have the proper permissions, and
  678. // 5. you have already voted, and
  679. // 6. the poll creator has said you can!
  680. $context['allow_change_vote'] = !$context['poll']['is_expired'] && !$user_info['is_guest'] && empty($pollinfo['voting_locked']) && allowedTo('poll_vote') && $context['poll']['has_voted'] && $context['poll']['change_vote'];
  681. // You're allowed to return to voting options if:
  682. // 1. you are (still) allowed to vote.
  683. // 2. you are currently seeing the results.
  684. $context['allow_return_vote'] = $context['allow_vote'] && $context['poll']['show_results'];
  685. // Calculate the percentages and bar lengths...
  686. $divisor = $realtotal == 0 ? 1 : $realtotal;
  687. // Determine if a decimal point is needed in order for the options to add to 100%.
  688. $precision = $realtotal == 100 ? 0 : 1;
  689. // Now look through each option, and...
  690. foreach ($pollOptions as $i => $option)
  691. {
  692. // First calculate the percentage, and then the width of the bar...
  693. $bar = round(($option['votes'] * 100) / $divisor, $precision);
  694. $barWide = $bar == 0 ? 1 : floor(($bar * 8) / 3);
  695. // Now add it to the poll's contextual theme data.
  696. $context['poll']['options'][$i] = array(
  697. 'id' => 'options-' . $i,
  698. 'percent' => $bar,
  699. 'votes' => $option['votes'],
  700. 'voted_this' => $option['voted_this'] != -1,
  701. // Note: IE < 8 requires us to set a width on the container, too.
  702. 'bar_ndt' => $bar > 0 ? '<div class="bar" style="width: ' . ($bar * 3.5 + 4) . 'px;"><div style="width: ' . $bar * 3.5 . 'px;"></div></div>' : '',
  703. 'bar_width' => $barWide,
  704. 'option' => parse_bbc($option['label']),
  705. 'vote_button' => '<input type="' . ($pollinfo['max_votes'] > 1 ? 'checkbox' : 'radio') . '" name="options[]" id="options-' . $i . '" value="' . $i . '" class="input_' . ($pollinfo['max_votes'] > 1 ? 'check' : 'radio') . '">'
  706. );
  707. }
  708. // Build the poll moderation button array.
  709. $context['poll_buttons'] = array(
  710. 'vote' => array('test' => 'allow_return_vote', 'text' => 'poll_return_vote', 'image' => 'poll_options.png', 'lang' => true, 'url' => $scripturl . '?topic=' . $context['current_topic'] . '.' . $context['start']),
  711. 'results' => array('test' => 'show_view_results_button', 'text' => 'poll_results', 'image' => 'poll_results.png', 'lang' => true, 'url' => $scripturl . '?topic=' . $context['current_topic'] . '.' . $context['start'] . ';viewresults'),
  712. 'change_vote' => array('test' => 'allow_change_vote', 'text' => 'poll_change_vote', 'image' => 'poll_change_vote.png', 'lang' => true, 'url' => $scripturl . '?action=vote;topic=' . $context['current_topic'] . '.' . $context['start'] . ';poll=' . $context['poll']['id'] . ';' . $context['session_var'] . '=' . $context['session_id']),
  713. 'lock' => array('test' => 'allow_lock_poll', 'text' => (!$context['poll']['is_locked'] ? 'poll_lock' : 'poll_unlock'), 'image' => 'poll_lock.png', 'lang' => true, 'url' => $scripturl . '?action=lockvoting;topic=' . $context['current_topic'] . '.' . $context['start'] . ';' . $context['session_var'] . '=' . $context['session_id']),
  714. 'edit' => array('test' => 'allow_edit_poll', 'text' => 'poll_edit', 'image' => 'poll_edit.png', 'lang' => true, 'url' => $scripturl . '?action=editpoll;topic=' . $context['current_topic'] . '.' . $context['start']),
  715. 'remove_poll' => array('test' => 'can_remove_poll', 'text' => 'poll_remove', 'image' => 'admin_remove_poll.png', 'lang' => true, 'custom' => 'onclick="return confirm(\'' . $txt['poll_remove_warn'] . '\');"', 'url' => $scripturl . '?action=removepoll;topic=' . $context['current_topic'] . '.' . $context['start'] . ';' . $context['session_var'] . '=' . $context['session_id']),
  716. );
  717. // Allow mods to add additional buttons here
  718. call_integration_hook('integrate_poll_buttons');
  719. }
  720. // Calculate the fastest way to get the messages!
  721. $ascending = empty($options['view_newest_first']);
  722. $start = $_REQUEST['start'];
  723. $limit = $context['messages_per_page'];
  724. $firstIndex = 0;
  725. if ($start >= $context['total_visible_posts'] / 2 && $context['messages_per_page'] != -1)
  726. {
  727. $ascending = !$ascending;
  728. $limit = $context['total_visible_posts'] <= $start + $limit ? $context['total_visible_posts'] - $start : $limit;
  729. $start = $context['total_visible_posts'] <= $start + $limit ? 0 : $context['total_visible_posts'] - $start - $limit;
  730. $firstIndex = $limit - 1;
  731. }
  732. // Get each post and poster in this topic.
  733. $request = $smcFunc['db_query']('display_get_post_poster', '
  734. SELECT id_msg, id_member, approved
  735. FROM {db_prefix}messages
  736. WHERE id_topic = {int:current_topic}' . (!$modSettings['postmod_active'] || allowedTo('approve_posts') ? '' : (!empty($modSettings['db_mysql_group_by_fix']) ? '' : '
  737. GROUP BY id_msg') . '
  738. HAVING (approved = {int:is_approved}' . ($user_info['is_guest'] ? '' : ' OR id_member = {int:current_member}') . ')') . '
  739. ORDER BY id_msg ' . ($ascending ? '' : 'DESC') . ($context['messages_per_page'] == -1 ? '' : '
  740. LIMIT ' . $start . ', ' . $limit),
  741. array(
  742. 'current_member' => $user_info['id'],
  743. 'current_topic' => $topic,
  744. 'is_approved' => 1,
  745. 'blank_id_member' => 0,
  746. )
  747. );
  748. $messages = array();
  749. $all_posters = array();
  750. while ($row = $smcFunc['db_fetch_assoc']($request))
  751. {
  752. if (!empty($row['id_member']))
  753. $all_posters[$row['id_msg']] = $row['id_member'];
  754. $messages[] = $row['id_msg'];
  755. }
  756. $smcFunc['db_free_result']($request);
  757. $posters = array_unique($all_posters);
  758. call_integration_hook('integrate_display_message_list', array(&$messages, &$posters));
  759. // Guests can't mark topics read or for notifications, just can't sorry.
  760. if (!$user_info['is_guest'] && !empty($messages))
  761. {
  762. $mark_at_msg = max($messages);
  763. if ($mark_at_msg >= $topicinfo['id_last_msg'])
  764. $mark_at_msg = $modSettings['maxMsgID'];
  765. if ($mark_at_msg >= $topicinfo['new_from'])
  766. {
  767. $smcFunc['db_insert']($topicinfo['new_from'] == 0 ? 'ignore' : 'replace',
  768. '{db_prefix}log_topics',
  769. array(
  770. 'id_member' => 'int', 'id_topic' => 'int', 'id_msg' => 'int', 'unwatched' => 'int',
  771. ),
  772. array(
  773. $user_info['id'], $topic, $mark_at_msg, $topicinfo['unwatched'],
  774. ),
  775. array('id_member', 'id_topic')
  776. );
  777. }
  778. // Check for notifications on this topic OR board.
  779. $request = $smcFunc['db_query']('', '
  780. SELECT sent, id_topic
  781. FROM {db_prefix}log_notify
  782. WHERE (id_topic = {int:current_topic} OR id_board = {int:current_board})
  783. AND id_member = {int:current_member}
  784. LIMIT 2',
  785. array(
  786. 'current_board' => $board,
  787. 'current_member' => $user_info['id'],
  788. 'current_topic' => $topic,
  789. )
  790. );
  791. $do_once = true;
  792. while ($row = $smcFunc['db_fetch_assoc']($request))
  793. {
  794. // Find if this topic is marked for notification...
  795. if (!empty($row['id_topic']))
  796. $context['is_marked_notify'] = true;
  797. // Only do this once, but mark the notifications as "not sent yet" for next time.
  798. if (!empty($row['sent']) && $do_once)
  799. {
  800. $smcFunc['db_query']('', '
  801. UPDATE {db_prefix}log_notify
  802. SET sent = {int:is_not_sent}
  803. WHERE (id_topic = {int:current_topic} OR id_board = {int:current_board})
  804. AND id_member = {int:current_member}',
  805. array(
  806. 'current_board' => $board,
  807. 'current_member' => $user_info['id'],
  808. 'current_topic' => $topic,
  809. 'is_not_sent' => 0,
  810. )
  811. );
  812. $do_once = false;
  813. }
  814. }
  815. // Have we recently cached the number of new topics in this board, and it's still a lot?
  816. if (isset($_REQUEST['topicseen']) && isset($_SESSION['topicseen_cache'][$board]) && $_SESSION['topicseen_cache'][$board] > 5)
  817. $_SESSION['topicseen_cache'][$board]--;
  818. // Mark board as seen if this is the only new topic.
  819. elseif (isset($_REQUEST['topicseen']))
  820. {
  821. // Use the mark read tables... and the last visit to figure out if this should be read or not.
  822. $request = $smcFunc['db_query']('', '
  823. SELECT COUNT(*)
  824. FROM {db_prefix}topics AS t
  825. LEFT JOIN {db_prefix}log_boards AS lb ON (lb.id_board = {int:current_board} AND lb.id_member = {int:current_member})
  826. LEFT JOIN {db_prefix}log_topics AS lt ON (lt.id_topic = t.id_topic AND lt.id_member = {int:current_member})
  827. WHERE t.id_board = {int:current_board}
  828. AND t.id_last_msg > IFNULL(lb.id_msg, 0)
  829. AND t.id_last_msg > IFNULL(lt.id_msg, 0)' . (empty($_SESSION['id_msg_last_visit']) ? '' : '
  830. AND t.id_last_msg > {int:id_msg_last_visit}'),
  831. array(
  832. 'current_board' => $board,
  833. 'current_member' => $user_info['id'],
  834. 'id_msg_last_visit' => (int) $_SESSION['id_msg_last_visit'],
  835. )
  836. );
  837. list ($numNewTopics) = $smcFunc['db_fetch_row']($request);
  838. $smcFunc['db_free_result']($request);
  839. // If there're no real new topics in this board, mark the board as seen.
  840. if (empty($numNewTopics))
  841. $_REQUEST['boardseen'] = true;
  842. else
  843. $_SESSION['topicseen_cache'][$board] = $numNewTopics;
  844. }
  845. // Probably one less topic - maybe not, but even if we decrease this too fast it will only make us look more often.
  846. elseif (isset($_SESSION['topicseen_cache'][$board]))
  847. $_SESSION['topicseen_cache'][$board]--;
  848. // Mark board as seen if we came using last post link from BoardIndex. (or other places...)
  849. if (isset($_REQUEST['boardseen']))
  850. {
  851. $smcFunc['db_insert']('replace',
  852. '{db_prefix}log_boards',
  853. array('id_msg' => 'int', 'id_member' => 'int', 'id_board' => 'int'),
  854. array($modSettings['maxMsgID'], $user_info['id'], $board),
  855. array('id_member', 'id_board')
  856. );
  857. }
  858. }
  859. $attachments = array();
  860. // If there _are_ messages here... (probably an error otherwise :!)
  861. if (!empty($messages))
  862. {
  863. // Fetch attachments.
  864. if (!empty($modSettings['attachmentEnable']) && allowedTo('view_attachments'))
  865. {
  866. $request = $smcFunc['db_query']('', '
  867. SELECT
  868. a.id_attach, a.id_folder, a.id_msg, a.filename, a.file_hash, IFNULL(a.size, 0) AS filesize, a.downloads, a.approved,
  869. a.width, a.height' . (empty($modSettings['attachmentShowImages']) || empty($modSettings['attachmentThumbnails']) ? '' : ',
  870. IFNULL(thumb.id_attach, 0) AS id_thumb, thumb.width AS thumb_width, thumb.height AS thumb_height') . '
  871. FROM {db_prefix}attachments AS a' . (empty($modSettings['attachmentShowImages']) || empty($modSettings['attachmentThumbnails']) ? '' : '
  872. LEFT JOIN {db_prefix}attachments AS thumb ON (thumb.id_attach = a.id_thumb)') . '
  873. WHERE a.id_msg IN ({array_int:message_list})
  874. AND a.attachment_type = {int:attachment_type}',
  875. array(
  876. 'message_list' => $messages,
  877. 'attachment_type' => 0,
  878. 'is_approved' => 1,
  879. )
  880. );
  881. $temp = array();
  882. while ($row = $smcFunc['db_fetch_assoc']($request))
  883. {
  884. if (!$row['approved'] && $modSettings['postmod_active'] && !allowedTo('approve_posts') && (!isset($all_posters[$row['id_msg']]) || $all_posters[$row['id_msg']] != $user_info['id']))
  885. continue;
  886. $temp[$row['id_attach']] = $row;
  887. if (!isset($attachments[$row['id_msg']]))
  888. $attachments[$row['id_msg']] = array();
  889. }
  890. $smcFunc['db_free_result']($request);
  891. // This is better than sorting it with the query...
  892. ksort($temp);
  893. foreach ($temp as $row)
  894. $attachments[$row['id_msg']][] = $row;
  895. }
  896. $msg_parameters = array(
  897. 'message_list' => $messages,
  898. 'new_from' => $topicinfo['new_from'],
  899. );
  900. $msg_selects = array();
  901. $msg_tables = array();
  902. call_integration_hook('integrate_query_message', array(&$msg_selects, &$msg_tables, &$msg_parameters));
  903. // What? It's not like it *couldn't* be only guests in this topic...
  904. if (!empty($posters))
  905. loadMemberData($posters);
  906. $messages_request = $smcFunc['db_query']('', '
  907. SELECT
  908. id_msg, icon, subject, poster_time, poster_ip, id_member, modified_time, modified_name, modified_reason, body,
  909. smileys_enabled, poster_name, poster_email, approved, likes,
  910. id_msg_modified < {int:new_from} AS is_read
  911. ' . (!empty($msg_selects) ? implode(',', $msg_selects) : '') . '
  912. FROM {db_prefix}messages
  913. ' . (!empty($msg_tables) ? implode("\n\t", $msg_tables) : '') . '
  914. WHERE id_msg IN ({array_int:message_list})
  915. ORDER BY id_msg' . (empty($options['view_newest_first']) ? '' : ' DESC'),
  916. $msg_parameters
  917. );
  918. // And the likes
  919. $context['my_likes'] = $context['user']['is_guest'] ? array() : prepareLikesContext();
  920. // Go to the last message if the given time is beyond the time of the last message.
  921. if (isset($context['start_from']) && $context['start_from'] >= $topicinfo['num_replies'])
  922. $context['start_from'] = $topicinfo['num_replies'];
  923. // Since the anchor information is needed on the top of the page we load these variables beforehand.
  924. $context['first_message'] = isset($messages[$firstIndex]) ? $messages[$firstIndex] : $messages[0];
  925. if (empty($options['view_newest_first']))
  926. $context['first_new_message'] = isset($context['start_from']) && $_REQUEST['start'] == $context['start_from'];
  927. else
  928. $context['first_new_message'] = isset($context['start_from']) && $_REQUEST['start'] == $topicinfo['num_replies'] - $context['start_from'];
  929. }
  930. else
  931. {
  932. $messages_request = false;
  933. $context['first_message'] = 0;
  934. $context['first_new_message'] = false;
  935. $context['likes'] = array();
  936. }
  937. $context['jump_to'] = array(
  938. 'label' => addslashes(un_htmlspecialchars($txt['jump_to'])),
  939. 'board_name' => $smcFunc['htmlspecialchars'](strtr(strip_tags($board_info['name']), array('&amp;' => '&'))),
  940. 'child_level' => $board_info['child_level'],
  941. );
  942. // Set the callback. (do you REALIZE how much memory all the messages would take?!?)
  943. // This will be called from the template.
  944. $context['get_message'] = 'prepareDisplayContext';
  945. // Now set all the wonderful, wonderful permissions... like moderation ones...
  946. $common_permissions = array(
  947. 'can_approve' => 'approve_posts',
  948. 'can_ban' => 'manage_bans',
  949. 'can_sticky' => 'make_sticky',
  950. 'can_merge' => 'merge_any',
  951. 'can_split' => 'split_any',
  952. 'calendar_post' => 'calendar_post',
  953. 'can_send_pm' => 'pm_send',
  954. 'can_send_email' => 'send_email_to_members',
  955. 'can_report_moderator' => 'report_any',
  956. 'can_moderate_forum' => 'moderate_forum',
  957. 'can_issue_warning' => 'issue_warning',
  958. 'can_restore_topic' => 'move_any',
  959. 'can_restore_msg' => 'move_any',
  960. );
  961. foreach ($common_permissions as $contextual => $perm)
  962. $context[$contextual] = allowedTo($perm);
  963. // Permissions with _any/_own versions. $context[YYY] => ZZZ_any/_own.
  964. $anyown_permissions = array(
  965. 'can_move' => 'move',
  966. 'can_lock' => 'lock',
  967. 'can_delete' => 'remove',
  968. 'can_add_poll' => 'poll_add',
  969. 'can_remove_poll' => 'poll_remove',
  970. 'can_reply' => 'post_reply',
  971. 'can_reply_unapproved' => 'post_unapproved_replies',
  972. );
  973. foreach ($anyown_permissions as $contextual => $perm)
  974. $context[$contextual] = allowedTo($perm . '_any') || ($context['user']['started'] && allowedTo($perm . '_own'));
  975. if (!$user_info['is_admin'] && !$modSettings['topic_move_any'])
  976. {
  977. // We'll use this in a minute
  978. $boards_allowed = array_diff(boardsAllowedTo('post_new'), array($board));
  979. /* You can't move this unless you have permission
  980. to start new topics on at least one other board */
  981. $context['can_move'] &= count($boards_allowed) > 1;
  982. }
  983. // If a topic is locked, you can't remove it unless it's yours and you locked it or you can lock_any
  984. if ($topicinfo['locked'])
  985. {
  986. $context['can_delete'] &= (($topicinfo['locked'] == 1 && $context['user']['started']) || allowedTo('lock_any'));
  987. }
  988. // Cleanup all the permissions with extra stuff...
  989. $context['can_mark_notify'] = !$context['user']['is_guest'];
  990. $context['calendar_post'] &= !empty($modSettings['cal_enabled']);
  991. $context['can_add_poll'] &= $modSettings['pollMode'] == '1' && $topicinfo['id_poll'] <= 0;
  992. $context['can_remove_poll'] &= $modSettings['pollMode'] == '1' && $topicinfo['id_poll'] > 0;
  993. $context['can_reply'] &= empty($topicinfo['locked']) || allowedTo('moderate_board');
  994. $context['can_reply_unapproved'] &= $modSettings['postmod_active'] && (empty($topicinfo['locked']) || allowedTo('moderate_board'));
  995. $context['can_issue_warning'] &= $modSettings['warning_settings'][0] == 1;
  996. // Handle approval flags...
  997. $context['can_reply_approved'] = $context['can_reply'];
  998. $context['can_reply'] |= $context['can_reply_unapproved'];
  999. $context['can_quote'] = $context['can_reply'] && (empty($modSettings['disabledBBC']) || !in_array('quote', explode(',', $modSettings['disabledBBC'])));
  1000. $context['can_mark_unread'] = !$user_info['is_guest'];
  1001. $context['can_unwatch'] = !$user_info['is_guest'] && $modSettings['enable_unwatch'];
  1002. $context['can_print'] = empty($modSettings['disable_print_topic']);
  1003. // Start this off for quick moderation - it will be or'd for each post.
  1004. $context['can_remove_post'] = allowedTo('delete_any') || (allowedTo('delete_replies') && $context['user']['started']);
  1005. // Can restore topic? That's if the topic is in the recycle board and has a previous restore state.
  1006. $context['can_restore_topic'] &= !empty($board_info['recycle']) && !empty($topicinfo['id_previous_board']);
  1007. $context['can_restore_msg'] &= !empty($board_info['recycle']) && !empty($topicinfo['id_previous_topic']);
  1008. // Check if the draft functions are enabled and that they have permission to use them (for quick reply.)
  1009. $context['drafts_save'] = !empty($modSettings['drafts_post_enabled']) && allowedTo('post_draft') && $context['can_reply'];
  1010. $context['drafts_autosave'] = !empty($context['drafts_save']) && !empty($modSettings['drafts_autosave_enabled']) && allowedTo('post_autosave_draft');
  1011. if (!empty($context['drafts_save']))
  1012. loadLanguage('Drafts');
  1013. // Wireless shows a "more" if you can do anything special.
  1014. if (WIRELESS && WIRELESS_PROTOCOL != 'wap')
  1015. {
  1016. $context['wireless_more'] = $context['can_sticky'] || $context['can_lock'] || allowedTo('modify_any');
  1017. $context['wireless_moderate'] = isset($_GET['moderate']) ? ';moderate' : '';
  1018. }
  1019. // You can't link an existing topoic to the calendar unless you can modify the first post...
  1020. $context['calendar_post'] &= allowedTo('modify_any') || (allowedTo('modify_own') && $context['user']['started']);
  1021. // Load up the "double post" sequencing magic.
  1022. checkSubmitOnce('register');
  1023. $context['name'] = isset($_SESSION['guest_name']) ? $_SESSION['guest_name'] : '';
  1024. $context['email'] = isset($_SESSION['guest_email']) ? $_SESSION['guest_email'] : '';
  1025. if (!empty($options['use_editor_quick_reply']) && $context['can_reply'])
  1026. {
  1027. // Needed for the editor and message icons.
  1028. require_once($sourcedir . '/Subs-Editor.php');
  1029. // Now create the editor.
  1030. $editorOptions = array(
  1031. 'id' => 'message',
  1032. 'value' => '',
  1033. 'labels' => array(
  1034. 'post_button' => $txt['post'],
  1035. ),
  1036. // add height and width for the editor
  1037. 'height' => '250px',
  1038. 'width' => '100%',
  1039. // We do XML preview here.
  1040. 'preview_type' => 0,
  1041. // This is required
  1042. 'required' => true,
  1043. );
  1044. create_control_richedit($editorOptions);
  1045. // Store the ID.
  1046. $context['post_box_name'] = $editorOptions['id'];
  1047. $context['attached'] = '';
  1048. $context['make_poll'] = isset($_REQUEST['poll']);
  1049. // Message icons - customized icons are off?
  1050. $context['icons'] = getMessageIcons($board);
  1051. if (!empty($context['icons']))
  1052. $context['icons'][count($context['icons']) - 1]['is_last'] = true;
  1053. }
  1054. // Build the normal button array.
  1055. $context['normal_buttons'] = array(
  1056. 'reply' => array('test' => 'can_reply', 'text' => 'reply', 'image' => 'reply.png', 'lang' => true, 'url' => $scripturl . '?action=post;topic=' . $context['current_topic'] . '.' . $context['start'] . ';last_msg=' . $context['topic_last_message'], 'active' => true),
  1057. 'add_poll' => array('test' => 'can_add_poll', 'text' => 'add_poll', 'image' => 'add_poll.png', 'lang' => true, 'url' => $scripturl . '?action=editpoll;add;topic=' . $context['current_topic'] . '.' . $context['start']),
  1058. 'notify' => array('test' => 'can_mark_notify', 'text' => $context['is_marked_notify'] ? 'unwatch_topic' : 'watch_topic', 'image' => ($context['is_marked_notify'] ? 'un' : '') . 'notify.png', 'lang' => true, 'custom' => 'onclick="return confirm(\'' . ($context['is_marked_notify'] ? $txt['notification_disable_topic'] : $txt['notification_enable_topic']) . '\');"', 'url' => $scripturl . '?action=notify;sa=' . ($context['is_marked_notify'] ? 'off' : 'on') . ';topic=' . $context['current_topic'] . '.' . $context['start'] . ';' . $context['session_var'] . '=' . $context['session_id']),
  1059. 'mark_unread' => array('test' => 'can_mark_unread', 'text' => 'mark_unread', 'image' => 'markunread.png', 'lang' => true, 'url' => $scripturl . '?action=markasread;sa=topic;t=' . $context['mark_unread_time'] . ';topic=' . $context['current_topic'] . '.' . $context['start'] . ';' . $context['session_var'] . '=' . $context['session_id']),
  1060. 'unwatch' => array('test' => 'can_unwatch', 'text' => ($context['topic_unwatched'] ? '' : 'un') . 'watch', 'image' => ($context['topic_unwatched'] ? 'un' : '') . 'watch.png', 'lang' => true, 'url' => $scripturl . '?action=unwatchtopic;topic=' . $context['current_topic'] . '.' . $context['start'] . ';sa=' . ($context['topic_unwatched'] ? 'off' : 'on') . ';' . $context['session_var'] . '=' . $context['session_id']),
  1061. 'print' => array('test' => 'can_print', 'text' => 'print', 'image' => 'print.png', 'lang' => true, 'custom' => 'rel="nofollow"', 'url' => $scripturl . '?action=printpage;topic=' . $context['current_topic'] . '.0'),
  1062. );
  1063. // Build the mod button array
  1064. $context['mod_buttons'] = array(
  1065. 'move' => array('test' => 'can_move', 'text' => 'move_topic', 'image' => 'admin_move.png', 'lang' => true, 'url' => $scripturl . '?action=movetopic;current_board=' . $context['current_board'] . ';topic=' . $context['current_topic'] . '.0'),
  1066. 'delete' => array('test' => 'can_delete', 'text' => 'remove_topic', 'image' => 'admin_rem.png', 'lang' => true, 'custom' => 'onclick="return confirm(\'' . $txt['are_sure_remove_topic'] . '\');"', 'url' => $scripturl . '?action=removetopic2;topic=' . $context['current_topic'] . '.0;' . $context['session_var'] . '=' . $context['session_id']),
  1067. 'lock' => array('test' => 'can_lock', 'text' => empty($context['is_locked']) ? 'set_lock' : 'set_unlock', 'image' => 'admin_lock.png', 'lang' => true, 'url' => $scripturl . '?action=lock;topic=' . $context['current_topic'] . '.' . $context['start'] . ';' . $context['session_var'] . '=' . $context['session_id']),
  1068. 'sticky' => array('test' => 'can_sticky', 'text' => empty($context['is_sticky']) ? 'set_sticky' : 'set_nonsticky', 'image' => 'admin_sticky.png', 'lang' => true, 'url' => $scripturl . '?action=sticky;topic=' . $context['current_topic'] . '.' . $context['start'] . ';' . $context['session_var'] . '=' . $context['session_id']),
  1069. 'merge' => array('test' => 'can_merge', 'text' => 'merge', 'image' => 'merge.png', 'lang' => true, 'url' => $scripturl . '?action=mergetopics;board=' . $context['current_board'] . '.0;from=' . $context['current_topic']),
  1070. 'calendar' => array('test' => 'calendar_post', 'text' => 'calendar_link', 'image' => 'linktocal.png', 'lang' => true, 'url' => $scripturl . '?action=post;calendar;msg=' . $context['topic_first_message'] . ';topic=' . $context['current_topic'] . '.0'),
  1071. );
  1072. // Restore topic. eh? No monkey business.
  1073. if ($context['can_restore_topic'])
  1074. $context['mod_buttons'][] = array('text' => 'restore_topic', 'image' => '', 'lang' => true, 'url' => $scripturl . '?action=restoretopic;topics=' . $context['current_topic'] . ';' . $context['session_var'] . '=' . $context['session_id']);
  1075. // Allow adding new mod buttons easily.
  1076. // Note: $context['normal_buttons'] and $context['mod_buttons'] are added for backward compatibility with 2.0, but are deprecated and should not be used
  1077. call_integration_hook('integrate_display_buttons', array(&$context['normal_buttons']));
  1078. // Note: integrate_mod_buttons is no more necessary and deprecated, but is kept for backward compatibility with 2.0
  1079. call_integration_hook('integrate_mod_buttons', array(&$context['mod_buttons']));
  1080. }
  1081. /**
  1082. * Callback for the message display.
  1083. * It actually gets and prepares the message context.
  1084. * This function will start over from the beginning if reset is set to true, which is
  1085. * useful for showing an index before or after the posts.
  1086. *
  1087. * @param bool $reset Whether or not to reset the db seek pointer
  1088. * @return array A large array of contextual data for the posts
  1089. */
  1090. function prepareDisplayContext($reset = false)
  1091. {
  1092. global $settings, $txt, $modSettings, $scripturl, $options, $user_info, $smcFunc;
  1093. global $memberContext, $context, $messages_request, $topic, $board_info;
  1094. static $counter = null;
  1095. // If the query returned false, bail.
  1096. if ($messages_request == false)
  1097. return false;
  1098. // Remember which message this is. (ie. reply #83)
  1099. if ($counter === null || $reset)
  1100. $counter = empty($options['view_newest_first']) ? $context['start'] : $context['total_visible_posts'] - $context['start'];
  1101. // Start from the beginning...
  1102. if ($reset)
  1103. return @$smcFunc['db_data_seek']($messages_request, 0);
  1104. // Attempt to get the next message.
  1105. $message = $smcFunc['db_fetch_assoc']($messages_request);
  1106. if (!$message)
  1107. {
  1108. $smcFunc['db_free_result']($messages_request);
  1109. return false;
  1110. }
  1111. // $context['icon_sources'] says where each icon should come from - here we set up the ones which will always exist!
  1112. if (empty($context['icon_sources']))
  1113. {
  1114. $stable_icons = array('xx', 'thumbup', 'thumbdown', 'exclamation', 'question', 'lamp', 'smiley', 'angry', 'cheesy', 'grin', 'sad', 'wink', 'poll', 'moved', 'recycled', 'wireless', 'clip');
  1115. $context['icon_sources'] = array();
  1116. foreach ($stable_icons as $icon)
  1117. $context['icon_sources'][$icon] = 'images_url';
  1118. }
  1119. // Message Icon Management... check the images exist.
  1120. if (empty($modSettings['messageIconChecks_disable']))
  1121. {
  1122. // If the current icon isn't known, then we need to do something...
  1123. if (!isset($context['icon_sources'][$message['icon']]))
  1124. $context['icon_sources'][$message['icon']] = file_exists($settings['theme_dir'] . '/images/post/' . $message['icon'] . '.png') ? 'images_url' : 'default_images_url';
  1125. }
  1126. elseif (!isset($context['icon_sources'][$message['icon']]))
  1127. $context['icon_sources'][$message['icon']] = 'images_url';
  1128. // If you're a lazy bum, you probably didn't give a subject...
  1129. $message['subject'] = $message['subject'] != '' ? $message['subject'] : $txt['no_subject'];
  1130. // Are you allowed to remove at least a single reply?
  1131. $context['can_remove_post'] |= allowedTo('delete_own') && (empty($modSettings['edit_disable_time']) || $message['poster_time'] + $modSettings['edit_disable_time'] * 60 >= time()) && $message['id_member'] == $user_info['id'];
  1132. // If the topic is locked, you might not be able to delete the post...
  1133. if ($context['is_locked'])
  1134. {
  1135. $context['can_remove_post'] &= ($context['user']['started'] && $context['is_locked'] == 1) || allowedTo('lock_any');
  1136. }
  1137. // If it couldn't load, or the user was a guest.... someday may be done with a guest table.
  1138. if (!loadMemberContext($message['id_member'], true))
  1139. {
  1140. // Notice this information isn't used anywhere else....
  1141. $memberContext[$message['id_member']]['name'] = $message['poster_name'];
  1142. $memberContext[$message['id_member']]['id'] = 0;
  1143. $memberContext[$message['id_member']]['group'] = $txt['guest_title'];
  1144. $memberContext[$message['id_member']]['link'] = $message['poster_name'];
  1145. $memberContext[$message['id_member']]['email'] = $message['poster_email'];
  1146. $memberContext[$message['id_member']]['show_email'] = showEmailAddress(true, 0);
  1147. $memberContext[$message['id_member']]['is_guest'] = true;
  1148. }
  1149. else
  1150. {
  1151. $memberContext[$message['id_member']]['can_view_profile'] = allowedTo('profile_view') || ($message['id_member'] == $user_info['id'] && !$user_info['is_guest']);
  1152. $memberContext[$message['id_member']]['is_topic_starter'] = $message['id_member'] == $context['topic_starter_id'];
  1153. $memberContext[$message['id_member']]['can_see_warning'] = !isset($context['disabled_fields']['warning_status']) && $memberContext[$message['id_member']]['warning_status'] && ($context['user']['can_mod'] || (!$user_info['is_guest'] && !empty($modSettings['warning_show']) && ($modSettings['warning_show'] > 1 || $message['id_member'] == $user_info['id'])));
  1154. }
  1155. $memberContext[$message['id_member']]['ip'] = $message['poster_ip'];
  1156. $memberContext[$message['id_member']]['show_profile_buttons'] = $settings['show_profile_buttons'] && (!empty($memberContext[$message['id_member']]['can_view_profile']) || (!empty($memberContext[$message['id_member']]['website']['url']) && !isset($context['disabled_fields']['website'])) || (in_array($memberContext[$message['id_member']]['show_email'], array('yes', 'yes_permission_override', 'no_through_forum'))) || $context['can_send_pm']);
  1157. // Do the censor thang.
  1158. censorText($message['body']);
  1159. censorText($message['subject']);
  1160. // Run BBC interpreter on the message.
  1161. $message['body'] = parse_bbc($message['body'], $message['smileys_enabled'], $message['id_msg']);
  1162. // If it's in the recycle bin we need to override whatever icon we did have.
  1163. if (!empty($board_info['recycle']))
  1164. $message['icon'] = 'recycled';
  1165. // Compose the memory eat- I mean message array.
  1166. $output = array(
  1167. 'attachment' => loadAttachmentContext($message['id_msg']),
  1168. 'alternate' => $counter % 2,
  1169. 'id' => $message['id_msg'],
  1170. 'href' => $scripturl . '?topic=' . $topic . '.msg' . $message['id_msg'] . '#msg' . $message['id_msg'],
  1171. 'link' => '<a href="' . $scripturl . '?msg=' . $message['id_msg'] . '" rel="nofollow">' . $message['subject'] . '</a>',
  1172. 'member' => &$memberContext[$message['id_member']],
  1173. 'icon' => $message['icon'],
  1174. 'icon_url' => $settings[$context['icon_sources'][$message['icon']]] . '/post/' . $message['icon'] . '.png',
  1175. 'subject' => $message['subject'],
  1176. 'time' => timeformat($message['poster_time']),
  1177. 'timestamp' => forum_time(true, $message['poster_time']),
  1178. 'counter' => $counter,
  1179. 'modified' => array(
  1180. 'time' => timeformat($message['modified_time']),
  1181. 'timestamp' => forum_time(true, $message['modified_time']),
  1182. 'name' => $message['modified_name'],
  1183. 'reason' => $message['modified_reason']
  1184. ),
  1185. 'likes' => array(
  1186. 'count' => $message['likes'],
  1187. 'you' => in_array($message['id_msg'], $context['my_likes']),
  1188. 'can_like' => !$context['user']['is_guest'], // @todo!
  1189. ),
  1190. 'body' => $message['body'],
  1191. 'new' => empty($message['is_read']),
  1192. 'approved' => $message['approved'],
  1193. 'first_new' => isset($context['start_from']) && $context['start_from'] == $counter,
  1194. 'is_ignored' => !empty($modSettings['enable_buddylist']) && !empty($options['posts_apply_ignore_list']) && in_array($message['id_member'], $context['user']['ignoreusers']),
  1195. 'can_approve' => !$message['approved'] && $context['can_approve'],
  1196. 'can_unapprove' => !empty($modSettings['postmod_active']) && $context['can_approve'] && $message['approved'],
  1197. 'can_modify' => (!$context['is_locked'] || allowedTo('moderate_board')) && (allowedTo('modify_any') || (allowedTo('modify_replies') && $context['user']['started']) || (allowedTo('modify_own') && $message['id_member'] == $user_info['id'] && (empty($modSettings['edit_disable_time']) || !$message['approved'] || $message['poster_time'] + $modSettings['edit_disable_time'] * 60 > time()))),
  1198. 'can_remove' => allowedTo('delete_any') || (allowedTo('delete_replies') && $context['user']['started']) || (allowedTo('delete_own') && $message['id_member'] == $user_info['id'] && (empty($modSettings['edit_disable_time']) || $message['poster_time'] + $modSettings['edit_disable_time'] * 60 > time())),
  1199. 'can_see_ip' => allowedTo('moderate_forum') || ($message['id_member'] == $user_info['id'] && !empty($user_info['id'])),
  1200. );
  1201. // Is this user the message author?
  1202. $output['is_message_author'] = $message['id_member'] == $user_info['id'];
  1203. if (!empty($output['modified']['name']))
  1204. $output['modified']['last_edit_text'] = sprintf($txt['last_edit_by'], $output['modified']['time'], $output['modified']['name']);
  1205. // Did they give a reason for editing?
  1206. if (!empty($output['modified']['name']) && !empty($output['modified']['reason']))
  1207. $output['modified']['last_edit_text'] .= '&nbsp;' . sprintf($txt['last_edit_reason'], $output['modified']['reason']);
  1208. call_integration_hook('integrate_prepare_display_context', array(&$output, &$message));
  1209. if (empty($options['view_newest_first']))
  1210. $counter++;
  1211. else
  1212. $counter--;
  1213. return $output;
  1214. }
  1215. /**
  1216. * Downloads an attachment, and increments the download count.
  1217. * It requires the view_attachments permission.
  1218. * It disables the session parser, and clears any previous output.
  1219. * It depends on the attachmentUploadDir setting being correct.
  1220. * It is accessed via the query string ?action=dlattach.
  1221. * Views to attachments do not increase hits and are not logged in the "Who's Online" log.
  1222. */
  1223. function Download()
  1224. {
  1225. global $txt, $modSettings, $user_info, $context, $topic, $smcFunc;
  1226. // Some defaults that we need.
  1227. $context['character_set'] = empty($modSettings['global_character_set']) ? (empty($txt['lang_character_set']) ? 'ISO-8859-1' : $txt['lang_character_set']) : $modSettings['global_character_set'];
  1228. $context['utf8'] = $context['character_set'] === 'UTF-8';
  1229. $context['no_last_modified'] = true;
  1230. // Make sure some attachment was requested!
  1231. if (!isset($_REQUEST['attach']) && !isset($_REQUEST['id']))
  1232. fatal_lang_error('no_access', false);
  1233. $_REQUEST['attach'] = isset($_REQUEST['attach']) ? (int) $_REQUEST['attach'] : (int) $_REQUEST['id'];
  1234. // This checks only the current board for $board/$topic's permissions.
  1235. isAllowedTo('view_attachments');
  1236. // Make sure this attachment is on this board.
  1237. // @todo: We must verify that $topic is the attachment's topic, or else the permission check above is broken.
  1238. $request = $smcFunc['db_query']('', '
  1239. SELECT a.id_folder, a.filename, a.file_hash, a.fileext, a.id_attach, a.attachment_type, a.mime_type, a.approved, m.id_member
  1240. FROM {db_prefix}attachments AS a
  1241. INNER JOIN {db_prefix}messages AS m ON (m.id_msg = a.id_msg AND m.id_topic = {int:current_topic})
  1242. INNER JOIN {db_prefix}boards AS b ON (b.id_board = m.id_board AND {query_see_board})
  1243. WHERE a.id_attach = {int:attach}
  1244. LIMIT 1',
  1245. array(
  1246. 'attach' => $_REQUEST['attach'],
  1247. 'current_topic' => $topic,
  1248. )
  1249. );
  1250. if ($smcFunc['db_num_rows']($request) == 0)
  1251. fatal_lang_error('no_access', false);
  1252. list ($id_folder, $real_filename, $file_hash, $file_ext, $id_attach, $attachment_type, $mime_type, $is_approved, $id_member) = $smcFunc['db_fetch_row']($request);
  1253. $smcFunc['db_free_result']($request);
  1254. // If it isn't yet approved, do they have permission to view it?
  1255. if (!$is_approved && ($id_member == 0 || $user_info['id'] != $id_member) && ($attachment_type == 0 || $attachment_type == 3))
  1256. isAllowedTo('approve_posts');
  1257. // Update the download counter (unless it's a thumbnail).
  1258. if ($attachment_type != 3)
  1259. $smcFunc['db_query']('attach_download_increase', '
  1260. UPDATE LOW_PRIORITY {db_prefix}attachments
  1261. SET downloads = downloads + 1
  1262. WHERE id_attach = {int:id_attach}',
  1263. array(
  1264. 'id_attach' => $id_attach,
  1265. )
  1266. );
  1267. $filename = getAttachmentFilename($real_filename, $_REQUEST['attach'], $id_folder, false, $file_hash);
  1268. // This is done to clear any output that was made before now.
  1269. ob_end_clean();
  1270. if (!empty($modSettings['enableCompressedOutput']) && @filesize($filename) <= 4194304 && in_array($file_ext, array('txt', 'html', 'htm', 'js', 'doc', 'docx', 'rtf', 'css', 'php', 'log', 'xml', 'sql', 'c', 'java')))
  1271. @ob_start('ob_gzhandler');
  1272. else
  1273. {
  1274. ob_start();
  1275. header('Content-Encoding: none');
  1276. }
  1277. // No point in a nicer message, because this is supposed to be an attachment anyway...
  1278. if (!file_exists($filename))
  1279. {
  1280. loadLanguage('Errors');
  1281. header((preg_match('~HTTP/1\.[01]~i', $_SERVER['SERVER_PROTOCOL']) ? $_SERVER['SERVER_PROTOCOL'] : 'HTTP/1.0') . ' 404 Not Found');
  1282. header('Content-Type: text/plain; charset=' . (empty($context['character_set']) ? 'ISO-8859-1' : $context['character_set']));
  1283. // We need to die like this *before* we send any anti-caching headers as below.
  1284. die('404 - ' . $txt['attachment_not_found']);
  1285. }
  1286. // If it hasn't been modified since the last time this attachement was retrieved, there's no need to display it again.
  1287. if (!empty($_SERVER['HTTP_IF_MODIFIED_SINCE']))
  1288. {
  1289. list($modified_since) = explode(';', $_SERVER['HTTP_IF_MODIFIED_SINCE']);
  1290. if (strtotime($modified_since) >= filemtime($filename))
  1291. {
  1292. ob_end_clean();
  1293. // Answer the question - no, it hasn't been modified ;).
  1294. header('HTTP/1.1 304 Not Modified');
  1295. exit;
  1296. }
  1297. }
  1298. // Check whether the ETag was sent back, and cache based on that...
  1299. $eTag = '"' . substr($_REQUEST['attach'] . $real_filename . filemtime($filename), 0, 64) . '"';
  1300. if (!empty($_SERVER['HTTP_IF_NONE_MATCH']) && strpos($_SERVER['HTTP_IF_NONE_MATCH'], $eTag) !== false)
  1301. {
  1302. ob_end_clean();
  1303. header('HTTP/1.1 304 Not Modified');
  1304. exit;
  1305. }
  1306. // Send the attachment headers.
  1307. header('Pragma: ');
  1308. if (!isBrowser('gecko'))
  1309. header('Content-Transfer-Encoding: binary');
  1310. header('Expires: ' . gmdate('D, d M Y H:i:s', time() + 525600 * 60) . ' GMT');
  1311. header('Last-Modified: ' . gmdate('D, d M Y H:i:s', filemtime($filename)) . ' GMT');
  1312. header('Accept-Ranges: bytes');
  1313. header('Connection: close');
  1314. header('ETag: ' . $eTag);
  1315. // Make sure the mime type warrants an inline display.
  1316. if (isset($_REQUEST['image']) && !empty($mime_type) && strpos($mime_type, 'image/') !== 0)
  1317. unset($_REQUEST['image']);
  1318. // Does this have a mime type?
  1319. elseif (!empty($mime_type) && (isset($_REQUEST['image']) || !in_array($file_ext, array('jpg', 'gif', 'jpeg', 'x-ms-bmp', 'png', 'psd', 'tiff', 'iff'))))
  1320. header('Content-Type: ' . strtr($mime_type, array('image/bmp' => 'image/x-ms-bmp')));
  1321. else
  1322. {
  1323. header('Content-Type: ' . (isBrowser('ie') || isBrowser('opera') ? 'application/octetstream' : 'application/octet-stream'));
  1324. if (isset($_REQUEST['image']))
  1325. unset($_REQUEST['image']);
  1326. }
  1327. // Convert the file to UTF-8, cuz most browsers dig that.
  1328. $utf8name = !$context['utf8'] && function_exists('iconv') ? iconv($context['character_set'], 'UTF-8', $real_filename) : (!$context['utf8'] && function_exists('mb_convert_encoding') ? mb_convert_encoding($real_filename, 'UTF-8', $context['character_set']) : $real_filename);
  1329. $disposition = !isset($_REQUEST['image']) ? 'attachment' : 'inline';
  1330. // Different browsers like different standards...
  1331. if (isBrowser('firefox'))
  1332. header('Content-Disposition: ' . $disposition . '; filename*=UTF-8\'\'' . rawurlencode(preg_replace_callback('~&#(\d{3,8});~', 'fixchar__callback', $utf8name)));
  1333. elseif (isBrowser('opera'))
  1334. header('Content-Disposition: ' . $disposition . '; filename="' . preg_replace_callback('~&#(\d{3,8});~', 'fixchar__callback', $utf8name) . '"');
  1335. elseif (isBrowser('ie'))
  1336. header('Content-Disposition: ' . $disposition . '; filename="' . urlencode(preg_replace_callback('~&#(\d{3,8});~', 'fixchar__callback', $utf8name)) . '"');
  1337. else
  1338. header('Content-Disposition: ' . $disposition . '; filename="' . $utf8name . '"');
  1339. // If this has an "image extension" - but isn't actually an image - then ensure it isn't cached cause of silly IE.
  1340. if (!isset($_REQUEST['image']) && in_array($file_ext, array('gif', 'jpg', 'bmp', 'png', 'jpeg', 'tiff')))
  1341. header('Cache-Control: no-cache');
  1342. else
  1343. header('Cache-Control: max-age=' . (525600 * 60) . ', private');
  1344. header('Content-Length: ' . filesize($filename));
  1345. // Try to buy some time...
  1346. @set_time_limit(600);
  1347. // Recode line endings for text files, if enabled.
  1348. if (!empty($modSettings['attachmentRecodeLineEndings']) && !isset($_REQUEST['image']) && in_array($file_ext, array('txt', 'css', 'htm', 'html', 'php', 'xml')))
  1349. {
  1350. if (strpos($_SERVER['HTTP_USER_AGENT'], 'Windows') !== false)
  1351. $callback = create_function('$buffer', 'return preg_replace(\'~[\r]?\n~\', "\r\n", $buffer);');
  1352. elseif (strpos($_SERVER['HTTP_USER_AGENT'], 'Mac') !== false)
  1353. $callback = create_function('$buffer', 'return preg_replace(\'~[\r]?\n~\', "\r", $buffer);');
  1354. else
  1355. $callback = create_function('$buffer', 'return preg_replace(\'~[\r]?\n~\', "\n", $buffer);');
  1356. }
  1357. // Since we don't do output compression for files this large...
  1358. if (filesize($filename) > 4194304)
  1359. {
  1360. // Forcibly end any output buffering going on.
  1361. while (@ob_get_level() > 0)
  1362. @ob_end_clean();
  1363. $fp = fopen($filename, 'rb');
  1364. while (!feof($fp))
  1365. {
  1366. if (isset($callback))
  1367. echo $callback(fread($fp, 8192));
  1368. else
  1369. echo fread($fp, 8192);
  1370. flush();
  1371. }
  1372. fclose($fp);
  1373. }
  1374. // On some of the less-bright hosts, readfile() is disabled. It's just a faster, more byte safe, version of what's in the if.
  1375. elseif (isset($callback) || @readfile($filename) === null)
  1376. echo isset($callback) ? $callback(file_get_contents($filename)) : file_get_contents($filename);
  1377. obExit(false);
  1378. }
  1379. /**
  1380. * This loads an attachment's contextual data including, most importantly, its size if it is an image.
  1381. * Pre-condition: $attachments array to have been filled with the proper attachment data, as Display() does.
  1382. * (@todo change this pre-condition, too fragile and error-prone.)
  1383. * It requires the view_attachments permission to calculate image size.
  1384. * It attempts to keep the "aspect ratio" of the posted image in line, even if it has to be resized by
  1385. * the max_image_width and max_image_height settings.
  1386. *
  1387. * @param int $id_msg ID of the post to load attachments for
  1388. * @return array An array of attachemnt info
  1389. */
  1390. function loadAttachmentContext($id_msg)
  1391. {
  1392. global $attachments, $modSettings, $txt, $scripturl, $topic, $sourcedir, $smcFunc;
  1393. // Set up the attachment info - based on code by Meriadoc.
  1394. $attachmentData = array();
  1395. $have_unapproved = false;
  1396. if (isset($attachments[$id_msg]) && !empty($modSettings['attachmentEnable']))
  1397. {
  1398. foreach ($attachments[$id_msg] as $i => $attachment)
  1399. {
  1400. $attachmentData[$i] = array(
  1401. 'id' => $attachment['id_attach'],
  1402. 'name' => preg_replace('~&amp;#(\\d{1,7}|x[0-9a-fA-F]{1,6});~', '&#\\1;', $smcFunc['htmlspecialchars']($attachment['filename'])),
  1403. 'downloads' => $attachment['downloads'],
  1404. 'size' => ($attachment['filesize'] < 1024000) ? round($attachment['filesize'] / 1024, 2) . ' ' . $txt['kilobyte'] : round($attachment['filesize'] / 1024 / 1024, 2) . ' ' . $txt['megabyte'],
  1405. 'byte_size' => $attachment['filesize'],
  1406. 'href' => $scripturl . '?action=dlattach;topic=' . $topic . '.0;attach=' . $attachment['id_attach'],
  1407. 'link' => '<a href="' . $scripturl . '?action=dlattach;topic=' . $topic . '.0;attach=' . $attachment['id_attach'] . '">' . $smcFunc['htmlspecialchars']($attachment['filename']) . '</a>',
  1408. 'is_image' => !empty($attachment['width']) && !empty($attachment['height']) && !empty($modSettings['attachmentShowImages']),
  1409. 'is_approved' => $attachment['approved'],
  1410. );
  1411. // If something is unapproved we'll note it so we can sort them.
  1412. if (!$attachment['approved'])
  1413. $have_unapproved = true;
  1414. if (!$attachmentData[$i]['is_image'])
  1415. continue;
  1416. $attachmentData[$i]['real_width'] = $attachment['width'];
  1417. $attachmentData[$i]['width'] = $attachment['width'];
  1418. $attachmentData[$i]['real_height'] = $attachment['height'];
  1419. $attachmentData[$i]['height'] = $attachment['height'];
  1420. // Let's see, do we want thumbs?
  1421. if (!empty($modSettings['attachmentThumbnails']) && !empty($modSettings['attachmentThumbWidth']) && !empty($modSettings['attachmentThumbHeight']) && ($attachment['width'] > $modSettings['attachmentThumbWidth'] || $attachment['height'] > $modSettings['attachmentThumbHeight']) && strlen($attachment['filename']) < 249)
  1422. {
  1423. // A proper thumb doesn't exist yet? Create one!
  1424. if (empty($attachment['id_thumb']) || $attachment['thumb_width'] > $modSettings['attachmentThumbWidth'] || $attachment['thumb_height'] > $modSettings['attachmentThumbHeight'] || ($attachment['thumb_width'] < $modSettings['attachmentThumbWidth'] && $attachment['thumb_height'] < $modSettings['attachmentThumbHeight']))
  1425. {
  1426. $filename = getAttachmentFilename($attachment['filename'], $attachment['id_attach'], $attachment['id_folder']);
  1427. require_once($sourcedir . '/Subs-Graphics.php');
  1428. if (createThumbnail($filename, $modSettings['attachmentThumbWidth'], $modSettings['attachmentThumbHeight']))
  1429. {
  1430. // So what folder are we putting this image in?
  1431. if (!empty($modSettings['currentAttachmentUploadDir']))
  1432. {
  1433. if (!is_array($modSettings['attachmentUploadDir']))
  1434. $modSettings['attachmentUploadDir'] = @unserialize($modSettings['attachmentUploadDir']);
  1435. $path = $modSettings['attachmentUploadDir'][$modSettings['currentAttachmentUploadDir']];
  1436. $id_folder_thumb = $modSettings['currentAttachmentUploadDir'];
  1437. }
  1438. else
  1439. {
  1440. $path = $modSettings['attachmentUploadDir'];
  1441. $id_folder_thumb = 1;
  1442. }
  1443. // Calculate the size of the created thumbnail.
  1444. $size = @getimagesize($filename . '_thumb');
  1445. list ($attachment['thumb_width'], $attachment['thumb_height']) = $size;
  1446. $thumb_size = filesize($filename . '_thumb');
  1447. // These are the only valid image types for SMF.
  1448. $validImageTypes = array(1 => 'gif', 2 => 'jpeg', 3 => 'png', 5 => 'psd', 6 => 'bmp', 7 => 'tiff', 8 => 'tiff', 9 => 'jpeg', 14 => 'iff');
  1449. // What about the extension?
  1450. $thumb_ext = isset($validImageTypes[$size[2]]) ? $validImageTypes[$size[2]] : '';
  1451. // Figure out the mime type.
  1452. if (!empty($size['mime']))
  1453. $thumb_mime = $size['mime'];
  1454. else
  1455. $thumb_mime = 'image/' . $thumb_ext;
  1456. $thumb_filename = $attachment['filename'] . '_thumb';
  1457. $thumb_hash = getAttachmentFilename($thumb_filename, false, null, true);
  1458. // Add this beauty to the database.
  1459. $smcFunc['db_insert']('',
  1460. '{db_prefix}attachments',
  1461. array('id_folder' => 'int', 'id_msg' => 'int', 'attachment_type' => 'int', 'filename' => 'string', 'file_hash' => 'string', 'size' => 'int', 'width' => 'int', 'height' => 'int', 'fileext' => 'string', 'mime_type' => 'string'),
  1462. array($id_folder_thumb, $id_msg, 3, $thumb_filename, $thumb_hash, (int) $thumb_size, (int) $attachment['thumb_width'], (int) $attachment['thumb_height'], $thumb_ext, $thumb_mime),
  1463. array('id_attach')
  1464. );
  1465. $old_id_thumb = $attachment['id_thumb'];
  1466. $attachment['id_thumb'] = $smcFunc['db_insert_id']('{db_prefix}attachments', 'id_attach');
  1467. if (!empty($attachment['id_thumb']))
  1468. {
  1469. $smcFunc['db_query']('', '
  1470. UPDATE {db_prefix}attachments
  1471. SET id_thumb = {int:id_thumb}
  1472. WHERE id_attach = {int:id_attach}',
  1473. array(
  1474. 'id_thumb' => $attachment['id_thumb'],
  1475. 'id_attach' => $attachment['id_attach'],
  1476. )
  1477. );
  1478. $thumb_realname = getAttachmentFilename($thumb_filename, $attachment['id_thumb'], $id_folder_thumb, false, $thumb_hash);
  1479. rename($filename . '_thumb', $thumb_realname);
  1480. // Do we need to remove an old thumbnail?
  1481. if (!empty($old_id_thumb))
  1482. {
  1483. require_once($sourcedir . '/ManageAttachments.php');
  1484. removeAttachments(array('id_attach' => $old_id_thumb), '', false, false);
  1485. }
  1486. }
  1487. }
  1488. }
  1489. // Only adjust dimensions on successful thumbnail creation.
  1490. if (!empty($attachment['thumb_width']) && !empty($attachment['thumb_height']))
  1491. {
  1492. $attachmentData[$i]['width'] = $attachment['thumb_width'];
  1493. $attachmentData[$i]['height'] = $attachment['thumb_height'];
  1494. }
  1495. }
  1496. if (!empty($attachment['id_thumb']))
  1497. $attachmentData[$i]['thumbnail'] = array(
  1498. 'id' => $attachment['id_thumb'],
  1499. 'href' => $scripturl . '?action=dlattach;topic=' . $topic . '.0;attach=' . $attachment['id_thumb'] . ';image',
  1500. );
  1501. $attachmentData[$i]['thumbnail']['has_thumb'] = !empty($attachment['id_thumb']);
  1502. // If thumbnails are disabled, check the maximum size of the image.
  1503. if (!$attachmentData[$i]['thumbnail']['has_thumb'] && ((!empty($modSettings['max_image_width']) && $attachment['width'] > $modSettings['max_image_width']) || (!empty($modSettings['max_image_height']) && $attachment['height'] > $modSettings['max_image_height'])))
  1504. {
  1505. if (!empty($modSettings['max_image_width']) && (empty($modSettings['max_image_height']) || $attachment['height'] * $modSettings['max_image_width'] / $attachment['width'] <= $modSettings['max_image_height']))
  1506. {
  1507. $attachmentData[$i]['width'] = $modSettings['max_image_width'];
  1508. $attachmentData[$i]['height'] = floor($attachment['height'] * $modSettings['max_image_width'] / $attachment['width']);
  1509. }
  1510. elseif (!empty($modSettings['max_image_width']))
  1511. {
  1512. $attachmentData[$i]['width'] = floor($attachment['width'] * $modSettings['max_image_height'] / $attachment['height']);
  1513. $attachmentData[$i]['height'] = $modSettings['max_image_height'];
  1514. }
  1515. }
  1516. elseif ($attachmentData[$i]['thumbnail']['has_thumb'])
  1517. {
  1518. // If the image is too large to show inline, make it a popup.
  1519. if (((!empty($modSettings['max_image_width']) && $attachmentData[$i]['real_width'] > $modSettings['max_image_width']) || (!empty($modSettings['max_image_height']) && $attachmentData[$i]['real_height'] > $modSettings['max_image_height'])))
  1520. $attachmentData[$i]['thumbnail']['javascript'] = 'return reqWin(\'' . $attachmentData[$i]['href'] . ';image\', ' . ($attachment['width'] + 20) . ', ' . ($attachment['height'] + 20) . ', true);';
  1521. else
  1522. $attachmentData[$i]['thumbnail']['javascript'] = 'return expandThumb(' . $attachment['id_attach'] . ');';
  1523. }
  1524. if (!$attachmentData[$i]['thumbnail']['has_thumb'])
  1525. $attachmentData[$i]['downloads']++;
  1526. }
  1527. }
  1528. // Do we need to instigate a sort?
  1529. if ($have_unapproved)
  1530. usort($attachmentData, 'approved_attach_sort');
  1531. return $attachmentData;
  1532. }
  1533. /**
  1534. * A sort function for putting unapproved attachments first.
  1535. * @param $a An array of info about one attachment
  1536. * @param $b An array of info about a second attachment
  1537. * @return int -1 if $a is approved but $b isn't, 0 if both are approved/unapproved, 1 if $b is approved but a isn't
  1538. */
  1539. function approved_attach_sort($a, $b)
  1540. {
  1541. if ($a['is_approved'] == $b['is_approved'])
  1542. return 0;
  1543. return $a['is_approved'] > $b['is_approved'] ? -1 : 1;
  1544. }
  1545. /**
  1546. * In-topic quick moderation.
  1547. */
  1548. function QuickInTopicModeration()
  1549. {
  1550. global $sourcedir, $topic, $board, $user_info, $smcFunc, $modSettings, $context;
  1551. // Check the session = get or post.
  1552. checkSession('request');
  1553. require_once($sourcedir . '/RemoveTopic.php');
  1554. if (empty($_REQUEST['msgs']))
  1555. redirectexit('topic=' . $topic . '.' . $_REQUEST['start']);
  1556. $messages = array();
  1557. foreach ($_REQUEST['msgs'] as $dummy)
  1558. $messages[] = (int) $dummy;
  1559. // We are restoring messages. We handle this in another place.
  1560. if (isset($_REQUEST['restore_selected']))
  1561. redirectexit('action=restoretopic;msgs=' . implode(',', $messages) . ';' . $context['session_var'] . '=' . $context['session_id']);
  1562. if (isset($_REQUEST['split_selection']))
  1563. {
  1564. $request = $smcFunc['db_query']('', '
  1565. SELECT subject
  1566. FROM {db_prefix}messages
  1567. WHERE id_msg = {int:message}
  1568. LIMIT 1',
  1569. array(
  1570. 'message' => min($messages),
  1571. )
  1572. );
  1573. list($subname) = $smcFunc['db_fetch_row']($request);
  1574. $smcFunc['db_free_result']($request);
  1575. $_SESSION['split_selection'][$topic] = $messages;
  1576. redirectexit('action=splittopics;sa=selectTopics;topic=' . $topic . '.0;subname_enc=' .urlencode($subname) . ';' . $context['session_var'] . '=' . $context['session_id']);
  1577. }
  1578. // Allowed to delete any message?
  1579. if (allowedTo('delete_any'))
  1580. $allowed_all = true;
  1581. // Allowed to delete replies to their messages?
  1582. elseif (allowedTo('delete_replies'))
  1583. {
  1584. $request = $smcFunc['db_query']('', '
  1585. SELECT id_member_started
  1586. FROM {db_prefix}topics
  1587. WHERE id_topic = {int:current_topic}
  1588. LIMIT 1',
  1589. array(
  1590. 'current_topic' => $topic,
  1591. )
  1592. );
  1593. list ($starter) = $smcFunc['db_fetch_row']($request);
  1594. $smcFunc['db_free_result']($request);
  1595. $allowed_all = $starter == $user_info['id'];
  1596. }
  1597. else
  1598. $allowed_all = false;
  1599. // Make sure they're allowed to delete their own messages, if not any.
  1600. if (!$allowed_all)
  1601. isAllowedTo('delete_own');
  1602. // Allowed to remove which messages?
  1603. $request = $smcFunc['db_query']('', '
  1604. SELECT id_msg, subject, id_member, poster_time
  1605. FROM {db_prefix}messages
  1606. WHERE id_msg IN ({array_int:message_list})
  1607. AND id_topic = {int:current_topic}' . (!$allowed_all ? '
  1608. AND id_member = {int:current_member}' : '') . '
  1609. LIMIT ' . count($messages),
  1610. array(
  1611. 'current_member' => $user_info['id'],
  1612. 'current_topic' => $topic,
  1613. 'message_list' => $messages,
  1614. )
  1615. );
  1616. $messages = array();
  1617. while ($row = $smcFunc['db_fetch_assoc']($request))
  1618. {
  1619. if (!$allowed_all && !empty($modSettings['edit_disable_time']) && $row['poster_time'] + $modSettings['edit_disable_time'] * 60 < time())
  1620. continue;
  1621. $messages[$row['id_msg']] = array($row['subject'], $row['id_member']);
  1622. }
  1623. $smcFunc['db_free_result']($request);
  1624. // Get the first message in the topic - because you can't delete that!
  1625. $request = $smcFunc['db_query']('', '
  1626. SELECT id_first_msg, id_last_msg
  1627. FROM {db_prefix}topics
  1628. WHERE id_topic = {int:current_topic}
  1629. LIMIT 1',
  1630. array(
  1631. 'current_topic' => $topic,
  1632. )
  1633. );
  1634. list ($first_message, $last_message) = $smcFunc['db_fetch_row']($request);
  1635. $smcFunc['db_free_result']($request);
  1636. // Delete all the messages we know they can delete. ($messages)
  1637. foreach ($messages as $message => $info)
  1638. {
  1639. // Just skip the first message - if it's not the last.
  1640. if ($message == $first_message && $message != $last_message)
  1641. continue;
  1642. // If the first message is going then don't bother going back to the topic as we're effectively deleting it.
  1643. elseif ($message == $first_message)
  1644. $topicGone = true;
  1645. removeMessage($message);
  1646. // Log this moderation action ;).
  1647. if (allowedTo('delete_any') && (!allowedTo('delete_own') || $info[1] != $user_info['id']))
  1648. logAction('delete', array('topic' => $topic, 'subject' => $info[0], 'member' => $info[1], 'board' => $board));
  1649. }
  1650. redirectexit(!empty($topicGone) ? 'board=' . $board : 'topic=' . $topic . '.' . $_REQUEST['start']);
  1651. }
  1652. /**
  1653. * Prepares an array of "likes" info for the topic specified by $topic
  1654. * @uses $topic and $context['user']['id']
  1655. * @return Array an array of IDs of messages in the specified topic that the current user likes
  1656. */
  1657. function prepareLikesContext()
  1658. {
  1659. global $context, $smcFunc, $topic;
  1660. // We already know the number of likes per message, we just want to know whether the current user liked it or not.
  1661. $cache_key = 'likes_topic_' . $topic . '_' . $context['user']['id'];
  1662. $ttl = 180;
  1663. if (($temp = cache_get_data($cache_key, $ttl)) === null)
  1664. {
  1665. $temp = array();
  1666. $request = $smcFunc['db_query']('', '
  1667. SELECT content_id
  1668. FROM {db_prefix}user_likes AS l
  1669. INNER JOIN {db_prefix}messages AS m ON (l.content_id = m.id_msg)
  1670. WHERE l.id_member = {int:current_user}
  1671. AND l.content_type = {literal:msg}
  1672. AND m.id_topic = {int:topic}',
  1673. array(
  1674. 'current_user' => $context['user']['id'],
  1675. 'topic' => $topic,
  1676. )
  1677. );
  1678. while ($row = $smcFunc['db_fetch_assoc']($request))
  1679. $temp[] = (int) $row['content_id'];
  1680. cache_put_data($cache_key, $temp, $ttl);
  1681. }
  1682. return $temp;
  1683. }
  1684. ?>