lang['TOPIC_REVIEW'] . " - $topic_title"; include($phpbb_root_path . 'includes/page_header.'.$phpEx); $template->set_filenames(array( 'body' => 'posting_smilies.html') ); } $where_sql = ($mode == 'inline') ? 'WHERE display_on_posting = 1 ' : ''; $sql = "SELECT emoticon, code, smile_url, smile_width, smile_height FROM " . SMILIES_TABLE . " $where_sql ORDER BY smile_order"; $result = $db->sql_query($sql); $num_smilies = 0; $smile_array = array(); if ($row = $db->sql_fetchrow($result)) { do { if (!in_array($row['smile_url'], $smile_array)) { if ($mode == 'window' || ($mode == 'inline' && $num_smilies < $max_smilies_inline)) { $template->assign_block_vars('emoticon', array( 'SMILEY_CODE' => $row['code'], 'SMILEY_IMG' => $config['smilies_path'] . '/' . $row['smile_url'], 'SMILEY_WIDTH' => $row['smile_width'], 'SMILEY_HEIGHT' => $row['smile_height'], 'SMILEY_DESC' => $row['emoticon']) ); } $smile_array[] = $row['smile_url']; $num_smilies++; } } while ($row = $db->sql_fetchrow($result)); $db->sql_freeresult($result); if ($mode == 'inline' && $num_smilies >= $max_smilies_inline) { $template->assign_vars(array( 'S_SHOW_EMOTICON_LINK' => true, 'U_MORE_SMILIES' => "posting.$phpEx$SID&mode=smilies") ); } } if ($mode == 'window') { include($phpbb_root_path . 'includes/page_tail.'.$phpEx); } } // Generate Topic Icons function generate_topic_icons($mode, $enable_icons) { global $template, $config; if (!$enable_icons) { return false; } // Grab icons $icons = array(); obtain_icons($icons); if (sizeof($icons)) { foreach ($icons as $id => $data) { if ($data['display']) { $template->assign_block_vars('topic_icon', array( 'ICON_ID' => $id, 'ICON_IMG' => $phpbb_root_path . $config['icons_path'] . '/' . $data['img'], 'ICON_WIDTH' => $data['width'], 'ICON_HEIGHT' => $data['height'], 'S_ICON_CHECKED' => ($id == $icon_id && $mode != 'reply') ? ' checked="checked"' : '') ); } } return true; } return false; } // DECODE TEXT -> This will/should be handled by bbcode.php eventually function decode_text(&$message, $bbcode_uid) { global $config, $censors; $server_protocol = ($config['cookie_secure']) ? 'https://' : 'http://'; $server_port = ($config['server_port'] <> 80) ? ':' . trim($config['server_port']) . '/' : '/'; $match = array( '#(.*?)#s', '#(.*?)#s', '#.*?#', '#.*?#', '#.*?#', '#.*?#', '#sql_query($sql); if (!($row = $db->sql_fetchrow($result))) { trigger_error($user->lang['NO_TOPIC']); } $forum_id = intval($row['forum_id']); $topic_title = $row['topic_title']; if (!$auth->acl_gets('f_read', $forum_id)) { trigger_error($user->lang['SORRY_AUTH_READ']); } if (count($orig_word)) { $topic_title = preg_replace($censors['match'], $censors['replace'], $topic_title); } } else { $template->assign_vars(array( 'S_DISPLAY_INLINE' => true) ); } // Go ahead and pull all data for this topic $sql = "SELECT u.username, u.user_id, p.* FROM " . POSTS_TABLE . " p, " . USERS_TABLE . " u WHERE p.topic_id = $topic_id AND p.poster_id = u.user_id ORDER BY p.post_time DESC"; $result = $db->sql_query_limit($sql, $config['posts_per_page']); // Okay, let's do the loop, yeah come on baby let's do the loop // and it goes like this ... if ($row = $db->sql_fetchrow($result)) { $i = 0; do { $poster_id = $row['user_id']; $poster = $row['username']; // Handle anon users posting with usernames if($poster_id == ANONYMOUS && $row['post_username'] != '') { $poster = $row['post_username']; $poster_rank = $user->lang['GUEST']; } $post_subject = ($row['post_subject'] != '') ? $row['post_subject'] : ''; $message = $row['post_text']; if ($row['enable_smilies']) { $message = str_replace('assign_block_vars('postrow', array( 'MINI_POST_IMG' => $user->img('icon_post', $user->lang['POST']), 'POSTER_NAME' => $poster, 'POST_DATE' => $user->format_date($row['post_time']), 'POST_SUBJECT' => $post_subject, 'MESSAGE' => nl2br($message), 'S_ROW_COUNT' => $i++) ); } while ($row = $db->sql_fetchrow($result)); } else { trigger_error($user->lang['NO_TOPIC']); } $db->sql_freeresult($result); $template->assign_vars(array( 'L_MESSAGE' => $user->lang['MESSAGE'], 'L_POSTED' => $user->lang['POSTED'], 'L_POST_SUBJECT'=> $user->lang['POST_SUBJECT'], 'L_TOPIC_REVIEW'=> $user->lang['TOPIC_REVIEW']) ); if (!$is_inline_review) { $page_title = $user->lang['TOPIC_REVIEW'] . ' - ' . $topic_title; include($phpbb_root_path . 'includes/page_header.'.$phpEx); $template->set_filenames(array( 'body' => 'posting_topic_review.html') ); include($phpbb_root_path . 'includes/page_tail.'.$phpEx); } } // Update Last Post Informations function update_last_post_information($type, $id) { global $db; switch ($type) { case 'forum': $sql_select_add = ', f.forum_parents'; // $sql_select_add = ', f.left_id'; $sql_table_add = ', ' . FORUMS_TABLE . ' f'; $sql_where_add = 'AND (t.forum_id = f.forum_id) AND (f.forum_id = ' . $id . ')'; $sql_update_table = FORUMS_TABLE; break; case 'topic': $sql_select_add = ''; $sql_table_add = ''; $sql_where_add = 'AND (t.topic_id = ' . $id . ')'; $sql_update_table = TOPICS_TABLE; break; default: return; } $sql = "SELECT p.post_id, p.poster_id, p.post_time, u.username, p.post_username " . $sql_select_add . " FROM " . POSTS_TABLE . " p, " . USERS_TABLE . " u, " . TOPICS_TABLE . " t " . $sql_table_add . " WHERE p.post_approved = 1 AND t.topic_approved = 1 AND p.poster_id = u.user_id AND t.topic_id = p.topic_id $sql_where_add ORDER BY p.post_time DESC"; $result = $db->sql_query_limit($sql, 1); $row = $db->sql_fetchrow($result); $db->sql_freeresult($result); switch ($type) { case 'forum': // Update forums: last post info, topics, posts ... we need to update // each parent too ... $forum_ids = $id; $forum_parents = get_forum_parents($row); foreach ($forum_parents as $parent_forum_id => $parent_name) { $forum_ids .= ', ' . $parent_forum_id; } $where_clause = 'forum_id IN (' . $forum_ids . ')'; break; case 'topic': $where_clause = 'topic_id = ' . $id; break; } $update_sql = array( $type . '_last_post_id' => intval($row['post_id']), $type . '_last_post_time' => intval($row['post_time']), $type . '_last_poster_id' => intval($row['poster_id']), $type . '_last_poster_name' => (intval($row['poster_id']) == ANONYMOUS) ? trim($row['post_username']) : trim($row['username']) ); $sql = 'UPDATE ' . $sql_update_table . ' SET ' . $db->sql_build_array('UPDATE', $update_sql) . ' WHERE ' . $where_clause; $db->sql_query($sql); } function user_notification($mode, $subject, $forum_id, $topic_id, $post_id) { global $db, $user, $config, $phpEx; $topic_notification = (($mode == 'reply') || ($mode == 'quote')) ? true : false; $newtopic_notification = ($mode == 'post') ? true : false; // Get banned User ID's $sql = "SELECT ban_userid FROM " . BANLIST_TABLE; $result = $db->sql_query($sql); $user_id_sql = ''; while ( $row = $db->sql_fetchrow($result) ) { if ( isset($row['ban_userid']) ) { $user_id_sql = ", " . $row['ban_userid']; } } if ($topic_notification) { $sql = "SELECT u.user_id, u.username, u.user_email, u.user_lang, t.topic_title, f.forum_name FROM " . TOPICS_WATCH_TABLE . " tw, " . TOPICS_TABLE . " t, " . USERS_TABLE . " u, " . FORUMS_TABLE . " f WHERE tw.topic_id = $topic_id AND tw.user_id NOT IN (" . $user->data['user_id'] . ", " . ANONYMOUS . $user_id_sql . " ) AND tw.notify_status = 0 AND f.forum_id = $forum_id AND t.topic_id = tw.topic_id AND u.user_id = tw.user_id"; } else if ($newtopic_notification) { $sql = "SELECT u.user_id, u.username, u.user_email, u.user_lang, f.forum_name FROM " . USERS_TABLE . " u, " . FORUMS_WATCH_TABLE . " fw, " . FORUMS_TABLE . " f WHERE fw.forum_id = $forum_id AND fw.user_id NOT IN (" . $user->data['user_id'] . ", " . ANONYMOUS . $user_id_sql . " ) AND fw.notify_status = 0 AND f.forum_id = fw.forum_id AND u.user_id = fw.user_id"; } else { trigger_error('WRONG_NOTIFICATION_MODE'); } $result = $db->sql_query($sql); if (empty($censors)) { $censors = array(); obtain_word_list($censors); } include($phpbb_root_path . 'includes/emailer.'.$phpEx); $emailer = new emailer($config['smtp_delivery']); $script_name = preg_replace("/^\/?(.*?)\/?$/", "\\1", trim($config['script_path'])); $script_name_forum = ( $script_name != '' ) ? $script_name . '/viewforum.'.$phpEx : 'viewforum.'.$phpEx; $script_name_topic = ( $script_name != '' ) ? $script_name . '/viewtopic.'.$phpEx : 'viewtopic.'.$phpEx; $server_name = trim($config['server_name']); $server_protocol = ( $config['cookie_secure'] ) ? 'https://' : 'http://'; $server_port = ( $config['server_port'] <> 80 ) ? ':' . trim($config['server_port']) . '/' : '/'; $email_headers = "From: " . $config['board_email'] . "\nReturn-Path: " . $config['board_email'] . "\r\n"; $update_watched_sql_topic = ''; $update_watched_sql_forum = ''; $email_users = array(); if ( $row = $db->sql_fetchrow($result) ) { if ($topic_notification) { $topic_title = $row['topic_title']; decode_text($topic_title); $topic_title = (sizeof($censors)) ? preg_replace($censors['match'], $censors['replace'], $topic_title) : $topic_title; } else { decode_text($subject); $topic_title = (sizeof($censors)) ? preg_replace($censors['match'], $censors['replace'], $subject) : $subject; } do { if (trim($row['user_email']) != '') { $row['email_template'] = ($topic_notification) ? 'topic_notify' : 'newtopic_notify'; $email_users[] = $row; if ($topic_notification) { $update_watched_sql_topic .= ($update_watched_sql_topic != '') ? ', ' . $row['user_id'] : $row['user_id']; } else { $update_watched_sql_forum .= ($update_watched_sql_forum != '') ? ', ' . $row['user_id'] : $row['user_id']; } } } while ($row = $db->sql_fetchrow($result)); } // Handle remaining Notifications (Forum) if ($topic_notification) { $already_notified = ($update_watched_sql_topic == '') ? '' : $update_watched_sql_topic . ', '; $already_notified .= ($update_watched_sql_forum == '') ? '' : $update_watched_sql_forum . ', '; $sql = "SELECT u.user_id, u.username, u.user_email, u.user_lang, t.topic_title, f.forum_name FROM " . TOPICS_TABLE . " t, " . USERS_TABLE . " u, " . FORUMS_WATCH_TABLE . " fw, " . FORUMS_TABLE . " f WHERE fw.forum_id = $forum_id AND fw.user_id NOT IN (" . $already_notified . $user->data['user_id'] . ", " . ANONYMOUS . $user_id_sql . " ) AND fw.notify_status = 0 AND t.topic_id = $topic_id AND f.forum_id = fw.forum_id AND u.user_id = fw.user_id"; $result = $db->sql_query($sql); if ($row = $db->sql_fetchrow($result)) { $topic_title = $row['topic_title']; decode_text($topic_title); $topic_title = (sizeof($censors)) ? preg_replace($censors['match'], $censors['replace'], $topic_title) : $topic_title; do { if (trim($row['user_email']) != '') { $row['email_template'] = 'forum_notify'; $email_users[] = $row; $update_watched_sql_forum .= ($update_watched_sql_forum != '') ? ', ' . $row['user_id'] : $row['user_id']; } } while ($row = $db->sql_fetchrow($result)); } } @reset($email_users); foreach ($email_users as $row) { $emailer->use_template($row['email_template'], $row['user_lang']); $emailer->email_address($row['user_email']); $emailer->set_subject(); $emailer->extra_headers($email_headers); $emailer->assign_vars(array( 'EMAIL_SIG' => str_replace("
", "\n", "-- \n" . $config['board_email_sig']), 'USERNAME' => $row['username'], 'SITENAME' => $config['sitename'], 'TOPIC_TITLE' => $topic_title, 'U_TOPIC' => $server_protocol . $server_name . $server_port . $script_name_topic . '?p=' . $post_id . '#' . $post_id, 'U_FORUM' => $server_protocol . $server_name . $server_port . $script_name_forum . '?f=' . $forum_id, 'FORUM_NAME' => $row['forum_name'], 'U_STOP_WATCHING_TOPIC' => $server_protocol . $server_name . $server_port . $script_name_topic . '?t=' . $topic_id . '&unwatch=topic', 'U_STOP_WATCHING_FORUM' => $server_protocol . $server_name . $server_port . $script_name_forum . '?f=' . $forum_id . '&unwatch=forum') ); $emailer->send(); $emailer->reset(); } if ($update_watched_sql_topic != '') { $sql = "UPDATE " . TOPICS_WATCH_TABLE . " SET notify_status = 1 WHERE topic_id = " . $topic_id . " AND user_id IN (" . $update_watched_sql_topic . ")"; $db->sql_query($sql); } if ($update_watched_sql_forum != '') { $sql = "UPDATE " . FORUMS_WATCH_TABLE . " SET notify_status = 1 WHERE forum_id = " . $forum_id . " AND user_id IN (" . $update_watched_sql_forum . ")"; $db->sql_query($sql); } } // Format text to be displayed - from viewtopic.php - centralizing this would be nice ;) function format_display($message, $html, $bbcode, $uid, $url, $smilies, $sig) { global $auth, $forum_id, $config, $censors, $user, $bbcode; // If the board has HTML off but the post has HTML // on then we process it, else leave it alone if ($html && $auth->acl_get('f_bbcode', $forum_id)) { $message = preg_replace('#(<)([\/]?.*?)(>)#is', "<\\2>", $message); } // Second parse bbcode here $message = $bbcode->bbcode_second_pass($message); // If we allow users to disable display of emoticons // we'll need an appropriate check and preg_replace here $message = (empty($smilies) || empty($config['allow_smilies'])) ? preg_replace('#(((?>([^><]+|(?R)))*)\<))#se', "preg_replace(\$censors['match'], \$censors['replace'], '\\0')", '>' . $message . '<'), 1, -1)); } $message = nl2br($message); // Signature $user_sig = ($sig && $config['allow_sig']) ? trim($user->data['user_sig']) : ''; if ($user_sig != '' && $auth->acl_get('f_sigs', $forum_id)) { if (!$auth->acl_get('f_html', $forum_id) && $user->data['user_allowhtml']) { $user_sig = preg_replace('#(<)([\/]?.*?)(>)#is', "<\\2>", $user_sig); } $user_sig = (empty($user->data['user_allowsmile']) || empty($config['enable_smilies'])) ? preg_replace('#(((?>([^><]+|(?R)))*)\<))#se', "preg_replace(\$censors['match'], \$censors['replace'], '\\0')", '>' . $user_sig . '<'), 1, -1)); } $user_sig = '
_________________
' . nl2br($user_sig); } else { $user_sig = ''; } $message = (empty($smilies) || empty($config['allow_smilies'])) ? preg_replace('#sql_query($sql); while ($cur_poll_options[] = $db->sql_fetchrow($result)); $db->sql_freeresult($result); } for ($i = 0; $i < sizeof($poll['poll_options']); $i++) { if (trim($poll['poll_options'][$i]) != '') { if (empty($cur_poll_options[$i])) { $sql = "INSERT INTO " . POLL_OPTIONS_TABLE . " (poll_option_id, topic_id, poll_option_text) VALUES (" . $i . ", " . $topic_id . ", '" . $db->sql_escape($poll['poll_options'][$i]) . "')"; $db->sql_query($sql); } else if ($poll['poll_options'][$i] != $cur_poll_options[$i]) { $sql = "UPDATE " . POLL_OPTIONS_TABLE . " SET poll_option_text = '" . $db->sql_escape($poll['poll_options'][$i]) . "' WHERE poll_option_id = " . $cur_poll_options[$i]['poll_option_id']; $db->sql_query($sql); } } } if (sizeof($poll['poll_options']) < sizeof($cur_poll_options)) { $sql = "DELETE FROM " . POLL_OPTIONS_TABLE . " WHERE poll_option_id > " . sizeof($poll['poll_options']) . " AND topic_id = " . $topic_id; $db->sql_query($sql); } } // Submit Attachment function submit_attachment($post_id, $topic_id, $user_id, $mode, $attachment_data) { global $db, $config, $auth; // Insert Attachment ? if ((!empty($post_id)) && ($mode == 'post' || $mode == 'reply' || $mode == 'edit')) { for ($i = 0; $i < count($attachment_data['attach_id']); $i++) { if ($attachment_data['attach_id'][$i] != '-1') { // update entry in db if attachment already stored in db and filespace $attach_sql = array( 'comment' => trim($attachment_data['comment'][$i]) ); $sql = 'UPDATE ' . ATTACHMENTS_DESC_TABLE . ' SET ' . $db->sql_build_array('UPDATE', $attach_sql) . ' WHERE attach_id = ' . $attachment_data['attach_id'][$i]; $db->sql_query($sql); } else { // insert attachment into db $attach_sql = array( 'physical_filename' => $attachment_data['physical_filename'][$i], 'real_filename' => $attachment_data['real_filename'][$i], 'comment' => trim($attachment_data['comment'][$i]), 'extension' => $attachment_data['extension'][$i], 'mimetype' => $attachment_data['mimetype'][$i], 'filesize' => $attachment_data['filesize'][$i], 'filetime' => $attachment_data['filetime'][$i], 'thumbnail' => $attachment_data['thumbnail'][$i] ); $sql = 'INSERT INTO ' . ATTACHMENTS_DESC_TABLE . ' ' . $db->sql_build_array('INSERT', $attach_sql); $db->sql_query($sql); $attach_sql = array( 'attach_id' => $db->sql_nextid(), 'post_id' => $post_id, 'privmsgs_id' => 0, 'user_id_from' => $user_id, 'user_id_to' => 0 ); $sql = 'INSERT INTO ' . ATTACHMENTS_TABLE . ' ' . $db->sql_build_array('INSERT', $attach_sql); $db->sql_query($sql); } } if (count($attachment_data['attach_id']) > 0) { $sql = "UPDATE " . POSTS_TABLE . " SET post_attachment = 1 WHERE post_id = " . $post_id; $db->sql_query($sql); $sql = "UPDATE " . TOPICS_TABLE . " SET topic_attachment = 1 WHERE topic_id = " . $topic_id; $db->sql_query($sql); } } } // Submit Post function submit_post($mode, $message, $subject, $username, $topic_type, $bbcode_uid, $poll, $attachment_data, $post_data) { global $db, $auth, $user, $config, $phpEx, $SID, $template; $search = new fulltext_search(); $current_time = time(); $post_data['subject'] = $subject; $db->sql_transaction(); // Initial Topic table info if ( ($mode == 'post') || ($mode == 'edit' && $post_data['topic_first_post_id'] == $post_data['post_id'])) { $topic_sql = array( 'forum_id' => $post_data['forum_id'], 'topic_title' => stripslashes($subject), 'topic_time' => $current_time, 'topic_type' => $topic_type, 'topic_approved' => (($post_data['enable_moderate']) && !$auth->acl_get('f_ignorequeue', $post_data['forum_id'])) ? 0 : 1, 'icon_id' => $post_data['icon_id'], 'topic_attachment' => (sizeof($attachment_data['physical_filename'])) ? 1 : 0, 'topic_poster' => intval($user->data['user_id']), 'topic_first_poster_name' => ($username != '') ? stripslashes($username) : (($user->data['user_id'] == ANONYMOUS) ? '' : stripslashes($user->data['username'])) ); if (!empty($poll['poll_options'])) { $topic_sql = array_merge($topic_sql, array( 'poll_title' => stripslashes($poll['poll_title']), 'poll_start' => ($poll['poll_start']) ? $poll['poll_start'] : $current_time, 'poll_length' => $poll['poll_length'] * 3600) ); } $sql = ($mode == 'post') ? 'INSERT INTO ' . TOPICS_TABLE . ' ' . $db->sql_build_array('INSERT', $topic_sql) : 'UPDATE ' . TOPICS_TABLE . ' SET ' . $db->sql_build_array('UPDATE', $topic_sql) . ' WHERE topic_id = ' . $post_data['topic_id']; $db->sql_query($sql); $post_data['topic_id'] = ($mode == 'post') ? $db->sql_nextid() : $post_data['topic_id']; } // Post table info $post_sql = array( 'topic_id' => $post_data['topic_id'], 'forum_id' => $post_data['forum_id'], 'poster_id' => ($mode == 'edit') ? $post_data['poster_id'] : intval($user->data['user_id']), 'post_username' => ($username != '') ? stripslashes($username) : '', 'post_subject' => stripslashes($subject), 'icon_id' => $post_data['icon_id'], 'poster_ip' => $user->ip, 'post_time' => $current_time, 'post_approved' => ($post_data['enable_moderate'] && !$auth->acl_get('f_ignorequeue', $post_data['forum_id'])) ? 0 : 1, 'post_edit_time' => ($mode == 'edit' && $post_data['poster_id'] == $user->data['user_id']) ? $current_time : 0, 'enable_sig' => $post_data['enable_sig'], 'enable_bbcode' => $post_data['enable_bbcode'], 'enable_html' => $post_data['enable_html'], 'enable_smilies' => $post_data['enable_smilies'], 'enable_magic_url' => $post_data['enable_urls'], 'bbcode_uid' => $bbcode_uid, 'bbcode_bitfield' => $post_data['bbcode_bitfield'], 'post_edit_locked' => $post_data['post_edit_locked'] ); if ($mode != 'edit' || $post_data['message_md5'] != $post_data['post_checksum']) { $post_sql = array_merge($post_sql, array( 'post_checksum' => $post_data['message_md5'], 'post_text' => stripslashes($message), 'post_encoding' => $user->lang['ENCODING'] )); } $sql = ($mode == 'edit') ? 'UPDATE ' . POSTS_TABLE . ' SET ' . $db->sql_build_array('UPDATE', $post_sql) . ' , post_edit_count = post_edit_count + 1 WHERE post_id = ' . $post_data['post_id'] : 'INSERT INTO ' . POSTS_TABLE . ' ' . $db->sql_build_array('INSERT', $post_sql); $db->sql_query($sql); $post_data['post_id'] = ($mode == 'edit') ? $post_data['post_id'] : $db->sql_nextid(); // poll options if (!empty($poll['poll_options'])) { submit_poll($post_data['topic_id'], $mode, $poll); } // Attachments if (!empty($attachment_data['physical_filename'])) { $poster_id = ($mode == 'edit') ? $post_data['poster_id'] : intval($user->data['user_id']); submit_attachment($post_data['post_id'], $post_data['topic_id'], $poster_id, $mode, $attachment_data); } // Fulltext parse if ($mode != 'edit' || $post_data['message_md5'] != $post_data['post_checksum']) { $result = $search->add($mode, $post_data['post_id'], $message, $subject); } // Sync forums, topics and users ... if ($mode != 'edit') { // Update forums: last post info, topics, posts ... we need to update // each parent too ... $forum_ids = $post_data['forum_id']; $forum_parents = get_forum_parents($post_data); foreach ($forum_parents as $parent_forum_id => $parent_name) { $forum_ids .= ', ' . $parent_forum_id; } $forum_topics_sql = ($mode == 'post') ? ', forum_topics = forum_topics + 1, forum_topics_real = forum_topics_real + 1' : ''; $forum_sql = array( 'forum_last_post_id' => $post_data['post_id'], 'forum_last_post_time' => $current_time, 'forum_last_poster_id' => intval($user->data['user_id']), 'forum_last_poster_name'=> ($user->data['user_id'] == ANONYMOUS) ? stripslashes($username) : $user->data['username'], ); $sql = 'UPDATE ' . FORUMS_TABLE . ' SET ' . $db->sql_build_array('UPDATE', $forum_sql) . ', forum_posts = forum_posts + 1' . $forum_topics_sql . ' WHERE forum_id IN (' . $forum_ids . ')'; $db->sql_query($sql); // Update topic: first/last post info, replies $topic_sql = array( 'topic_last_post_id' => $post_data['post_id'], 'topic_last_post_time' => $current_time, 'topic_last_poster_id' => intval($user->data['user_id']), 'topic_last_poster_name'=> ($username != '') ? stripslashes($username) : (($user->data['user_id'] == ANONYMOUS) ? '' : stripslashes($user->data['username'])), ); if ($mode == 'post') { $topic_sql = array_merge($topic_sql, array( 'topic_first_post_id' => $post_data['post_id'], )); } $topic_replies_sql = ($mode == 'reply') ? ', topic_replies = topic_replies + 1, topic_replies_real = topic_replies_real + 1' : ''; $sql = 'UPDATE ' . TOPICS_TABLE . ' SET ' . $db->sql_build_array('UPDATE', $topic_sql) . $topic_replies_sql . ' WHERE topic_id = ' . $post_data['topic_id']; $db->sql_query($sql); // Update user post count ... if appropriate if (!empty($post_data['enable_post_count']) && $user->data['user_id'] != ANONYMOUS) { $sql = 'UPDATE ' . USERS_TABLE . ' SET user_posts = user_posts + 1 WHERE user_id = ' . intval($user->data['user_id']); $db->sql_query($sql); } // post counts for index, etc. if ($mode == 'post') { set_config('num_topics', $config['num_topics'] + 1, TRUE); } set_config('num_posts', $config['num_posts'] + 1, TRUE); } // Topic Notification if ((!$post_data['notify_set']) && ($post_data['notify'])) { $sql = "INSERT INTO " . TOPICS_WATCH_TABLE . " (user_id, topic_id) VALUES (" . $user->data['user_id'] . ", " . $post_data['topic_id'] . ")"; $db->sql_query($sql); } else if (($post_data['notify_set']) && (!$post_data['notify'])) { $sql = "DELETE FROM " . TOPICS_WATCH_TABLE . " WHERE user_id = " . $user->data['user_id'] . " AND topic_id = " . $post_data['topic_id']; $db->sql_query($sql); } // Mark this topic as read and posted to. $mark_mode = ($mode == 'reply' || $mode == 'quote') ? 'post' : 'topic'; markread($mark_mode, $post_data['forum_id'], $post_data['topic_id'], $post_data['post_id']); $db->sql_transaction('commit'); // Send Notifications if (($mode != 'edit') && ($mode != 'delete')) { user_notification($mode, stripslashes($post_data['subject']), $post_data['forum_id'], $post_data['topic_id'], $post_data['post_id']); } $template->assign_vars(array( 'META' => '') ); $message = ($post_data['enable_moderate']) ? 'POST_STORED_MOD' : 'POST_STORED'; $message = $user->lang[$message] . '

' . sprintf($user->lang['VIEW_MESSAGE'], '', '') . '

' . sprintf($user->lang['RETURN_FORUM'], '', ''); trigger_error($message); } // Delete Poll function delete_poll($topic_id) { global $db; $sql = "DELETE FROM " . POLL_OPTIONS_TABLE . " WHERE topic_id = " . $topic_id; $db->sql_query($sql); $sql = "DELETE FROM " . POLL_VOTES_TABLE . " WHERE topic_id = " . $topic_id; $db->sql_query($sql); $topic_sql = array( 'poll_title' => '', 'poll_start' => 0, 'poll_length' => 0, 'poll_last_vote' => 0 ); $sql = 'UPDATE ' . TOPICS_TABLE . ' SET ' . $db->sql_build_array('UPDATE', $topic_sql) . ' WHERE topic_id = ' . $topic_id; $db->sql_query($sql); } // Delete Post. Please be sure user have the correct Permissions before calling this function function delete_post($mode, $post_id, $topic_id, $forum_id, $post_data) { global $db, $template, $user, $phpEx, $SID; $search = new fulltext_search(); $db->sql_transaction(); $sql = "DELETE FROM " . POSTS_TABLE . " WHERE post_id = " . $post_id; $db->sql_query($sql); // User tries to delete the post twice ? Exit... we do not want the topics table screwed up. if ($db->sql_affectedrows() == 0) { return ($user->lang['ALREADY_DELETED']); } $forum_sql = array(); $topic_sql = array(); $user_sql = array(); $forum_update_sql = ''; $user_update_sql = ''; $topic_update_sql = 'topic_replies = topic_replies - 1, topic_replies_real = topic_replies_real - 1, '; // Only one post... delete topic if ($post_data['topic_first_post_id'] == $post_data['topic_last_post_id']) { $sql = "DELETE FROM " . TOPICS_TABLE . " WHERE topic_id = " . $topic_id . " OR topic_moved_id = " . $topic_id; $db->sql_query($sql); $sql = "DELETE FROM " . TOPICS_WATCH_TABLE . " WHERE topic_id = " . $topic_id; $db->sql_query($sql); $forum_update_sql .= ($forum_update_sql != '') ? ', ' : ''; $forum_update_sql .= 'forum_topics = forum_topics - 1, forum_topics_real = forum_topics_real - 1'; } // Update Post Statistics if ($post_data['enable_post_count']) { $forum_update_sql .= ($forum_update_sql != '') ? ', ' : ''; $forum_update_sql .= 'forum_posts = forum_posts - 1'; $user_update_sql .= ($user_update_sql != '') ? ', ' : ''; $user_update_sql .= 'user_posts = user_posts - 1'; } // Delete Attachment delete_attachment($post_id); // TODO: delete common words... maybe just call search_tidy ? // $search->del_words($post_id); $sql = "SELECT p.post_id, p.poster_id, p.post_username, u.username FROM " . POSTS_TABLE . " p, " . USERS_TABLE . " u WHERE p.topic_id = " . $topic_id . " AND p.poster_id = u.user_id AND p.post_approved = 1 ORDER BY p.post_time DESC"; $result = $db->sql_query_limit($sql, 1); $row = $db->sql_fetchrow($result); $db->sql_freeresult($result); // If Post is first post, but not the only post... make next post the topic starter one. ;) if (($post_data['topic_first_post_id'] != $post_data['topic_last_post_id']) && ($post_id == $post_data['topic_first_post_id'])) { $topic_sql = array( 'topic_first_post_id' => intval($row['post_id']), 'topic_first_poster_name' => ( intval($row['poster_id']) == ANONYMOUS) ? trim($row['post_username']) : trim($row['username']) ); } $post_data['next_post_id'] = intval($row['post_id']); // Update Forum, Topic and User with the gathered Informations if (($forum_update_sql != '') || (count($forum_sql) > 0)) { $sql = 'UPDATE ' . FORUMS_TABLE . ' SET ' . ( (count($forum_sql) > 0) ? $db->sql_build_array('UPDATE', $forum_sql) : '') . ( ($forum_update_sql != '') ? ((count($forum_sql) > 0) ? ', ' . $forum_update_sql : $forum_update_sql) : '') . ' WHERE forum_id = ' . $forum_id; $db->sql_query($sql); } if (($topic_update_sql != '') || (count($topic_sql) > 0)) { $sql = 'UPDATE ' . TOPICS_TABLE . ' SET ' . ( (count($topic_sql) > 0) ? $db->sql_build_array('UPDATE', $topic_sql) : '') . ( ($topic_update_sql != '') ? ((count($topic_sql) > 0) ? ', ' . $topic_update_sql : $topic_update_sql) : '') . ' WHERE topic_id = ' . $topic_id; $db->sql_query($sql); } if (($user_update_sql != '') || (count($user_sql) > 0)) { $sql = 'UPDATE ' . USERS_TABLE . ' SET ' . ( (count($user_sql) > 0) ? $db->sql_build_array('UPDATE', $user_sql) : '') . ( ($user_update_sql != '') ? ((count($user_sql) > 0) ? ', ' . $user_update_sql : $user_update_sql) : '') . ' WHERE user_id = ' . $post_data['user_id']; $db->sql_query($sql); } // Update Forum stats... if ($post_data['topic_first_post_id'] != $post_data['topic_last_post_id']) { update_last_post_information('topic', $topic_id); } update_last_post_information('forum', $forum_id); $db->sql_transaction('commit'); if ($post_data['topic_first_post_id'] == $post_data['topic_last_post_id']) { $meta_info = ''; $message = $user->lang['DELETED']; } else { $meta_info = ''; $message = $user->lang['DELETED'] . '

' . sprintf($user->lang['RETURN_TOPIC'], '', ''); } $template->assign_vars(array( 'META' => $meta_info) ); $message .= '

' . sprintf($user->lang['RETURN_FORUM'], '', ''); trigger_error($message); return; } // Delete Attachment function delete_attachment($post_id_array = -1, $attach_id_array = -1, $page = -1, $user_id = -1) { global $db; // Generate Array, if it's not an array if ( ($post_id_array == -1) && ($attach_id_array == -1) && ($page == -1) ) { return; } if ( ($post_id_array == -1) && ($attach_id_array != -1) ) { $post_id_array = array(); if (!is_array($attach_id_array)) { if (strstr($attach_id_array, ', ')) { $attach_id_array = explode(', ', $attach_id_array); } else if (strstr($attach_id_array, ',')) { $attach_id_array = explode(',', $attach_id_array); } else { $attach_id = intval($attach_id_array); $attach_id_array = array(); $attach_id_array[] = $attach_id; } } // Get the post_ids to fill the array $p_id = ($page == 'privmsgs') ? 'privmsgs_id' : 'post_id'; $sql = "SELECT " . $p_id . " FROM " . ATTACHMENTS_TABLE . " WHERE attach_id IN (" . implode(', ', $attach_id_array) . ") GROUP BY " . $p_id; $result = $db->sql_query($sql); while ($row = $db->sql_fetchrow($result)) { $post_id_array[] = intval($row[$p_id]); } $db->sql_freeresult($result); if (count($post_id_array) == 0) { return; } } if (!is_array($post_id_array)) { if (trim($post_id_array) == '') { return; } if (strstr($post_id_array, ', ')) { $post_id_array = explode(', ', $post_id_array); } else if (strstr($post_id_array, ',')) { $post_id_array = explode(',', $post_id_array); } else { $post_id = intval($post_id_array); $post_id_array = array(); $post_id_array[] = $post_id; } } if (count($post_id_array) == 0) { return; } // First of all, determine the post id and attach_id if ($attach_id_array == -1) { $attach_id_array = array(); // Get the attach_ids to fill the array $whereclause = ($page == 'privmsgs') ? 'WHERE privmsgs_id IN (' . implode(', ', $post_id_array) . ')' : 'WHERE post_id IN (' . implode(', ', $post_id_array) . ')'; $sql = "SELECT attach_id FROM " . ATTACHMENTS_TABLE . " " . $whereclause . " GROUP BY attach_id"; $result = $db->sql_query($sql); while ($row = $db->sql_fetchrow($result)) { $attach_id_array[] = intval($row['attach_id']); } $db->sql_freeresult($result); if (count($attach_id_array) == 0) { return; } } if (!is_array($attach_id_array)) { if (strstr($attach_id_array, ', ')) { $attach_id_array = explode(', ', $attach_id_array); } else if (strstr($attach_id_array, ',')) { $attach_id_array = explode(',', $attach_id_array); } else { $attach_id = intval($attach_id_array); $attach_id_array = array(); $attach_id_array[] = $attach_id; } } if (count($attach_id_array) == 0) { return; } if ($page == 'privmsgs') { $sql_id = 'privmsgs_id'; if ($user_id != -1) { $post_id_array_2 = array(); $sql = "SELECT privmsgs_type, privmsgs_to_userid, privmsgs_from_userid FROM " . PRIVMSGS_TABLE . " WHERE privmsgs_id IN (" . implode(', ', $post_id_array) . ")"; $result = $db->sql_query($sql); while ($row = $db->sql_fetchrow($result)) { switch (intval($row['privmsgs_type'])) { case PRIVMSGS_READ_MAIL: case PRIVMSGS_NEW_MAIL: case PRIVMSGS_UNREAD_MAIL: if ($row['privmsgs_to_userid'] == $user_id) { $post_id_array_2[] = $privmsgs_id; } break; case PRIVMSGS_SENT_MAIL: if ($row['privmsgs_from_userid'] == $user_id) { $post_id_array_2[] = $privmsgs_id; } break; case PRIVMSGS_SAVED_OUT_MAIL: if ($row['privmsgs_from_userid'] == $user_id) { $post_id_array_2[] = $privmsgs_id; } break; case PRIVMSGS_SAVED_IN_MAIL: if ($row['privmsgs_to_userid'] == $user_id) { $post_id_array_2[] = $privmsgs_id; } break; } } $db->sql_freeresult($result); $post_id_array = $post_id_array_2; } } else { $sql_id = 'post_id'; } $sql = "DELETE FROM " . ATTACHMENTS_TABLE . " WHERE attach_id IN (" . implode(', ', $attach_id_array) . ") AND " . $sql_id . " IN (" . implode(', ', $post_id_array) . ")"; $db->sql_query($sql); foreach ($attach_id_array as $attach_id) { $sql = "SELECT attach_id FROM " . ATTACHMENTS_TABLE . " WHERE attach_id = " . $attach_id; $select_result = $db->sql_query($sql); if (!is_array($db->sql_fetchrow($select_result))) { $sql = "SELECT attach_id, physical_filename, thumbnail FROM " . ATTACHMENTS_DESC_TABLE . " WHERE attach_id = " . $attach_id; $result = $db->sql_query($sql); // delete attachments while ($row = $db->sql_fetchrow($result)) { phpbb_unlink($row['physical_filename']); if (intval($row['thumbnail']) == 1) { phpbb_unlink($row['physical_filename'], 'thumbnail'); } $sql = "DELETE FROM " . ATTACHMENTS_DESC_TABLE . " WHERE attach_id = " . $row['attach_id']; $db->sql_query($sql); } $db->sql_freeresult($result); } $db->sql_freeresult($select_result); } // Now Sync the Topic/PM if ($page == 'privmsgs') { foreach ($post_id_array as $privmsgs_id) { $sql = "SELECT attach_id FROM " . ATTACHMENTS_TABLE . " WHERE privmsgs_id = " . $privmsgs_id; $select_result = $db->sql_query($sql); if (!is_array($db->sql_fetchrow($select_result))) { $sql = "UPDATE " . PRIVMSGS_TABLE . " SET privmsgs_attachment = 0 WHERE privmsgs_id = " . $privmsgs_id; $db->sql_query($sql); } $db->sql_freeresult($select_result); } } else { $sql = "SELECT topic_id FROM " . POSTS_TABLE . " WHERE post_id IN (" . implode(', ', $post_id_array) . ") GROUP BY topic_id"; $result = $db->sql_query($sql); while ($row = $db->sql_fetchrow($result)) { $topic_id = intval($row['topic_id']); $sql = "SELECT post_id FROM " . POSTS_TABLE . " WHERE topic_id = " . $topic_id . " GROUP BY post_id"; $result2 = $db->sql_query($sql); $post_ids = array(); while ($post_row = $db->sql_fetchrow($result2)) { $post_ids[] = intval($post_row['post_id']); } $db->sql_freeresult($result2); if (count($post_ids)) { $post_id_sql = implode(', ', $post_ids); $sql = "SELECT attach_id FROM " . ATTACHMENTS_TABLE . " WHERE post_id IN (" . $post_id_sql . ") "; $select_result = $db->sql_query_limit($sql, 1); $set_id = ( !is_array($db->sql_fetchrow($select_result))) ? 0 : 1; $db->sql_freeresult($select_result); $sql = "UPDATE " . TOPICS_TABLE . " SET topic_attachment = " . $set_id . " WHERE topic_id = " . $topic_id; $db->sql_query($sql); foreach ($post_ids as $post_id) { $sql = "SELECT attach_id FROM " . ATTACHMENTS_TABLE . " WHERE post_id = " . $post_id; $select_result = $db->sql_query_limit($sql, 1); $set_id = ( !is_array($db->sql_fetchrow($select_result))) ? 0 : 1; $db->sql_freeresult($select_result); $sql = "UPDATE " . POSTS_TABLE . " SET post_attachment = " . $set_id . " WHERE post_id = " . $post_id; $db->sql_query($sql); } } } $db->sql_freeresult($result); } } // Upload Attachment - filedata is generated here function upload_attachment($filename) { global $_POST, $_FILES, $auth, $user, $config, $db; $filedata = array(); $filedata['error'] = false; $filedata['err_msg'] = ''; $filedata['post_attach'] = ($filename != '') ? true : false; if (!$filedata['post_attach']) { return ($filedata); } $r_file = $filename; $file = $_FILES['fileupload']['tmp_name']; $filedata['mimetype'] = $_FILES['fileupload']['type']; // Opera add the name to the mime type $filedata['mimetype'] = ( strstr($filedata['mimetype'], '; name') ) ? str_replace(strstr($filedata['mimetype'], '; name'), '', $filedata['mimetype']) : $filedata['mimetype']; $filedata['extension'] = strrchr(strtolower($filename), '.'); $filedata['extension'][0] = ' '; $filedata['extension'] = strtolower(trim($filedata['extension'])); $filedata['extension'] = (is_array($filedata['extension'])) ? '' : $filedata['extension']; $filedata['filesize'] = (!@filesize($file)) ? intval($_FILES['size']) : @filesize($file); $sql = "SELECT g.allow_group, g.max_filesize, g.cat_id FROM " . EXTENSION_GROUPS_TABLE . " g, " . EXTENSIONS_TABLE . " e WHERE (g.group_id = e.group_id) AND (e.extension = '" . $filedata['extension'] . "')"; $result = $db->sql_query_limit($sql, 1); $row = $db->sql_fetchrow($result); $db->sql_freeresult($result); $allowed_filesize = ( intval($row['max_filesize']) != 0 ) ? intval($row['max_filesize']) : intval($config['max_filesize']); $cat_id = intval($row['cat_id']); // check Filename if ( preg_match("/[\\/:*?\"<>|]/i", $filename) ) { $filedata['error'] = true; $filedata['err_msg'] = sprintf($user->lang['INVALID_FILENAME'], $filename); $filedata['post_attach'] = false; return ($filedata); } // check php upload-size if ( ($file == 'none') ) { $filedata['error'] = true; $filedata['err_msg'] = (@ini_get('upload_max_filesize') == '') ? $user->lang['ATTACHMENT_PHP_SIZE_NA'] : sprintf($user->lang['ATTACHMENT_PHP_SIZE_OVERRUN'], @ini_get('upload_max_filesize')); $filedata['post_attach'] = false; return ($filedata); } // Check Extension if (intval($row['allow_group']) == 0) { $filedata['error'] = true; $filedata['err_msg'] = sprintf($user->lang['DISALLOWED_EXTENSION'], $filedata['extension']); $filedata['post_attach'] = false; return ($filedata); } /* // Check Image Size, if it is an image if ( (!$acl->gets('m_', 'a_')) && ($cat_id == IMAGE_CAT) ) { list($width, $height) = image_getdimension($file); if ( ($width != 0) && ($height != 0) && (intval($attach_config['img_max_width']) != 0) && (intval($attach_config['img_max_height']) != 0) ) { if ( ($width > intval($attach_config['img_max_width'])) || ($height > intval($attach_config['img_max_height'])) ) { $error = TRUE; if(!empty($error_msg)) { $error_msg .= '
'; } $error_msg .= sprintf($lang['Error_imagesize'], intval($attach_config['img_max_width']), intval($attach_config['img_max_height'])); } } } */ // check Filesize if ( ($allowed_filesize != 0) && ($filedata['filesize'] > $allowed_filesize) && (!$acl->gets('m_', 'a_')) ) { $size_lang = ($allowed_filesize >= 1048576) ? $user->lang['MB'] : ( ($allowed_filesize >= 1024) ? $user->lang['KB'] : $user->lang['BYTES'] ); if ($allowed_filesize >= 1048576) { $allowed_filesize = round($allowed_filesize / 1048576 * 100) / 100; } else if($allowed_filesize >= 1024) { $allowed_filesize = round($allowed_filesize / 1024 * 100) / 100; } $filedata['error'] = true; $filedata['err_msg'] = sprintf($user->lang['ATTACHMENT_TOO_BIG'], $allowed_filesize, $size_lang); $filedata['post_attach'] = false; return ($filedata); } // Check our complete quota if ($config['attachment_quota'] != 0) { if ($config['total_filesize'] + $filedata['filesize'] > $config['attachment_quota']) { $filedata['error'] = true; $filedata['err_msg'] = $user->lang['ATTACH_QUOTA_REACHED']; $filedata['post_attach'] = false; return ($filedata); } } /* // If we are at Private Messaging, check our PM Quota if ($this->page == PAGE_PRIVMSGS) { $to_user = ( isset($_POST['username']) ) ? $_POST['username'] : ''; if (intval($config['pm_filesize_limit']) != 0) { $total_filesize = get_total_attach_pm_filesize('from_user', $user->data['user_id']); if ( ($total_filesize + $filedata['filesize'] > intval($config['pm_filesize_limit'])) ) { $error = TRUE; if(!empty($error_msg)) { $error_msg .= '
'; } $error_msg .= $lang['Attach_quota_sender_pm_reached']; } } // Check Receivers PM Quota if ((!empty($to_user)) && ($userdata['user_level'] != ADMIN)) { $sql = "SELECT user_id FROM " . USERS_TABLE . " WHERE username = '" . $to_user . "'"; $result = $db->sql_query($sql); $row = $db->sql_fetchrow($result); $db->sql_freeresult($result); $user_id = intval($row['user_id']); $u_data = get_userdata($user_id); $this->get_quota_limits($u_data, $user_id); if (intval($attach_config['pm_filesize_limit']) != 0) { $total_filesize = get_total_attach_pm_filesize('to_user', $user_id); if ($total_filesize + $this->filesize > intval($attach_config['pm_filesize_limit'])) { $error = TRUE; if(!empty($error_msg)) { $error_msg .= '
'; } $error_msg .= sprintf($lang['Attach_quota_receiver_pm_reached'], $to_user); } } } } */ $filedata['thumbnail'] = 0; // Prepare Values $filedata['filetime'] = time(); $filedata['filename'] = stripslashes($r_file); $filedata['destination_filename'] = strtolower($filedata['filename']); $filedata['destination_filename'] = $user->data['user_id'] . '_' . $filedata['filetime'] . '.' . $filedata['extension']; $filedata['filename'] = str_replace("'", "\'", $filedata['filename']); /* // Do we have to create a thumbnail ? if ( ($cat_id == IMAGE_CAT) && ($config['img_create_thumbnail']) ) { $this->thumbnail = 1; } */ // Upload Attachment if (!$config['use_ftp_upload']) { // Descide the Upload method if ( @ini_get('open_basedir') ) { $upload_mode = 'move'; } else if ( @ini_get('safe_mode') ) { $upload_mode = 'move'; } else { $upload_mode = 'copy'; } } else { $upload_mode = 'ftp'; } // Ok, upload the File $result = move_uploaded_attachment($upload_mode, $file, $filedata); if ($result != '') { $filedata['error'] = true; $filedata['err_msg'] = $result; $filedata['post_attach'] = false; } return ($filedata); } // Move/Upload File - could be used for Avatars too ? function move_uploaded_attachment($upload_mode, $source_filename, &$filedata) { global $user, $config; $destination_filename = $filedata['destination_filename']; $thumbnail = (isset($filedata['thumbnail'])) ? $filedata['thumbnail'] : false; switch ($upload_mode) { case 'copy': if ( !@copy($source_filename, $config['upload_dir'] . '/' . $destination_filename) ) { if ( !@move_uploaded_file($source_filename, $config['upload_dir'] . '/' . $destination_filename) ) { return (sprintf($user->lang['GENERAL_UPLOAD_ERROR'], './' . $config['upload_dir'] . '/' . $destination_filename)); } } @chmod($config['upload_dir'] . '/' . $destination_filename, 0666); break; case 'move': if ( !@move_uploaded_file($source_filename, $config['upload_dir'] . '/' . $destination_filename) ) { if ( !@copy($source_file, $config['upload_dir'] . '/' . $destination_filename) ) { return (sprintf($user->lang['GENERAL_UPLOAD_ERROR'], './' . $config['upload_dir'] . '/' . $destination_filename)); } } @chmod($config['upload_dir'] . '/' . $destination_filename, 0666); break; case 'ftp': /* $conn_id = init_ftp(); // Binary or Ascii ? $mode = FTP_BINARY; if ( (preg_match("/text/i", $filedata['mimetype'])) || (preg_match("/html/i", $filedata['mimetype'])) ) { $mode = FTP_ASCII; } $res = @ftp_put($conn_id, $destination_filename, $source_filename, $mode); if (!$res) { @ftp_quit($conn_id); return (sprintf($user->lang['Ftp_error_upload'], $config['ftp_path'])); } @ftp_site($conn_id, 'CHMOD 0644 ' . $destination_filename); @ftp_quit($conn_id); break; */ } $filedata['thumbnail'] = 0; /* if ($filedata['thumbnail']) { if ($upload_mode == 'ftp') { $source = $source_filename; $destination = 'thumbs/t_' . $destination_filename; } else { $source = $config['upload_dir'] . '/' . $destination_filename; $destination = phpbb_realpath($config['upload_dir']); $destination .= '/thumbs/t_' . $destination_filename; } if (!create_thumbnail($source, $destination, $filedata['mimetype'])) { if (!create_thumbnail($source_filename, $destination_filename, $filedata['mimetype'])) { $filedata['thumbnail'] = 0; } } }*/ return (''); } // Deletes an Attachment function phpbb_unlink($filename, $mode = false) { global $config, $user; $config['use_ftp_upload'] = 0; if (!$config['use_ftp_upload']) { if ($mode == 'thumbnail') { $filename = $config['upload_dir'] . '/thumbs/t_' . $filename; } else { $filename = $config['upload_dir'] . '/' . $filename; } $deleted = @unlink($filename); if (@file_exists($filename)) { $filesys = eregi_replace('/','\\', $filename); $deleted = @system("del $filesys"); if (@file_exists($filename)) { $deleted = @chmod($filename, 0777); $deleted = @unlink($filename); $deleted = @system("del $filename"); } } } else { /* $conn_id = attach_init_ftp($mode); if ($mode == MODE_THUMBNAIL) { $filename = 't_' . $filename; } $res = @ftp_delete($conn_id, $filename); if (!$res) { if (defined('DEBUG_EXTRA')) { $add = ( $mode == MODE_THUMBNAIL ) ? ('/' . THUMB_DIR) : ''; message_die(GENERAL_ERROR, sprintf($lang['Ftp_error_delete'], $attach_config['ftp_path'] . $add)); } return ($deleted); } @ftp_quit($conn_id); $deleted = TRUE;*/ } return ($deleted); } ?>