array( 'forum_id' => 'f', 'post_id' => 'p' ) ); foreach ( $vars as $vartype => $varcheck) { foreach ( $varcheck as $varname => $varparse ) { $$varname = ( isset($_POST[$varparse]) ) ? $vartype($_POST[$varparse]) : ( ( isset($_GET[$varparse]) ) ? $vartype($_GET[$varparse]) : false ); } } extract($_GET); extract($_POST); $refresh = $preview || $poll_add || $poll_edit || $poll_delete; // ------------------------------------------------ // NOTE --> No data validation at present! <-- NOTE // ------------------------------------------------ // Start session management $userdata = $session->start(); $auth->acl($userdata, $f); $session->configure($userdata); // // End session management // // Was cancel pressed? If so then redirect to the appropriate // page, no point in continuing with any further checks if ( !empty($cancel) ) { $header_location = ( @preg_match('/Microsoft|WebSTAR|Xitami/', getenv('SERVER_SOFTWARE')) ) ? 'Refresh: 0; URL=' : 'Location: '; $redirect = ( $p ) ? "viewtopic.$phpEx$SID&p=$p#$p" : ( ( $t ) ? "viewtopic.$phpEx$SID&t=$t" : ( ( $f ) ? "viewforum.$phpEx$SID&f=$f" : "index.$phpEx$SID" ) ); header($header_location . $redirect); exit; } // If the mode is set to topic review then output that review ... switch ( $mode ) { case 'topicreview': require($phpbb_root_path . 'includes/topic_review.'.$phpEx); topic_review($t, false); break; case 'smilies': generate_smilies('window', PAGE_POSTING); break; } // Set toggles for various options if ( !$board_config['allow_html'] ) { $html_on = 0; } else { $html_on = ( $post || $refresh ) ? ( ( !empty($disable_html) ) ? 0 : TRUE ) : ( ( !$userdata['user_id'] ) ? $board_config['allow_html'] : $userdata['user_allowhtml'] ); } if ( !$board_config['allow_bbcode'] ) { $bbcode_on = 0; } else { $bbcode_on = ( $post || $refresh ) ? ( ( !empty($disable_bbcode) ) ? 0 : TRUE ) : ( ( !$userdata['user_id'] ) ? $board_config['allow_bbcode'] : $userdata['user_allowbbcode'] ); } $magic_urls_on = ( $post || $refresh ) ? ( ( !empty($disable_magic_url) ) ? 0 : TRUE ) : TRUE; if ( !$board_config['allow_smilies'] ) { $smilies_on = 0; } else { $smilies_on = ( $post || $refresh ) ? ( ( !empty($disable_smilies) ) ? 0 : TRUE ) : ( ( !$userdata['user_id'] ) ? $board_config['allow_smilies'] : $userdata['user_allowsmile'] ); } $attach_sig = ( $post || $refresh ) ? ( ( !empty($attach_sig) ) ? TRUE : 0 ) : ( ( !$userdata['user_id'] ) ? 0 : $userdata['user_attachsig'] ); // Create appropriate SQL for this mode ... switch ( $mode ) { case 'newtopic': if ( empty($f) ) { message_die(MESSAGE, $lang['Forum_not_exist']); } $sql = "SELECT * FROM " . FORUMS_TABLE . " WHERE forum_id = $f"; break; case 'reply': case 'vote': if ( empty( $t) ) { message_die(MESSAGE, $lang['No_topic_id']); } $sql = "SELECT f.*, t.* FROM " . FORUMS_TABLE . " f, " . TOPICS_TABLE . " t WHERE t.topic_id = $t AND f.forum_id = t.forum_id"; break; case 'quote': case 'editpost': case 'delete': case 'poll_delete': if ( empty($p) ) { message_die(MESSAGE, $lang['No_post_id']); } $select_sql = ( !$submit ) ? ', t.topic_title, p.enable_bbcode, p.enable_html, p.enable_smilies, p.enable_sig, p.post_username, pt.post_subject, pt.post_text, pt.bbcode_uid, u.username, u.user_id, u.user_sig' : ', pt.post_subject, pt.post_text'; $from_sql = ( !$submit ) ? ', ' . POSTS_TEXT_TABLE . ' pt, ' . USERS_TABLE . ' u' : ', ' . POSTS_TEXT_TABLE . ' pt'; $where_sql = ( !$submit ) ? 'AND pt.post_id = p.post_id AND u.user_id = p.poster_id' : 'AND pt.post_id = p.post_id'; $sql = "SELECT f.*, t.*, p.post_id, p.poster_id" . $select_sql . " FROM " . POSTS_TABLE . " p, " . TOPICS_TABLE . " t, " . FORUMS_TABLE . " f" . $from_sql . " WHERE p.post_id = $p AND t.topic_id = p.topic_id AND f.forum_id = p.forum_id $where_sql"; break; default: message_die(MESSAGE, $lang['No_valid_mode']); } if ( $result = $db->sql_query($sql) ) { $post_info = $db->sql_fetchrow($result); $forum_id = $post_info['forum_id']; $forum_name = $post_info['forum_name']; $topic_title = $post_info['topic_title']; $topic_id = $post_info['topic_id']; } // User has submitted a post, process it if ( isset($post) ) { // First check if message has changed (if editing), if not // don't parse at all else ... // // Need to parse message, parse search words, parse polls, // parse attachments, check whether forum is moderated or // if msg is being saved (and if it is whether user has run // out of save quota) if not topic/forum needs syncing, if // replying notifications need sending as appropriate. echo "\$_POST >> "; print_r(htmlentities($message)); echo "

---

\n\n"; // Check checksum if ( $mode != 'editpost' || md5($_POST['message']) != $post_info['post_checksum'] ) { $parse_msg = new parse_message(); $search = new fulltext_search(); $mtime = explode(' ', microtime()); $starttime = $mtime[1] + $mtime[0]; $result = $parse_msg->parse($message, $html_on, $bbcode_on, $post_info['bbcode_uid'], $magic_urls_on, $smilies_on); $mtime = explode(' ', microtime()); echo "
\nParsed [ '$result' :: " . ( $mtime[1] + $mtime[0] - $starttime ) . " ] >> "; // print_r(htmlentities($message)); print_r($message); echo "

---

\n\n"; $result = $search->add($p, $message, $post_subject, $post_info['post_text'], $post_info['post_subject']); } exit; } // TEMPORARY :D $message = $post_info['post_text']; // Remove encoded bbcode, urls, etc. $match = array( '#(.*?)#s', '#(.*?)#s', '#\[b:([0-9a-z]+)\](.*?)\[/b:\1\]#s', '#.*?#', '#.*?#', ); $replace = array( '[b]\1[/b]', '[u]\1[/u]', '[b]\2[/b]', '\1', '\1', ); $message = preg_replace($match, $replace, $message); // ----------------------------- // MAIN POSTING PAGE BEGINS HERE // // Notify user checkbox if ( $post || $refresh ) { $notify_user = ( !empty($notify) ) ? TRUE : 0; } else { if ( $mode != 'newtopic' && $userdata['user_id'] ) { $sql = "SELECT topic_id FROM " . TOPICS_WATCH_TABLE . " WHERE topic_id = $topic_id AND user_id = " . $userdata['user_id']; $result = $db->sql_query($sql); $notify_user = ( $db->sql_fetchrow($result) ) ? TRUE : $userdata['user_notify']; } else { $notify_user = ( $user_id['user_id'] ) ? $userdata['user_notify'] : 0; } } // Generate smilies and topic icon listings generate_smilies('inline'); // Topic icons $sql = "SELECT * FROM " . ICONS_TABLE . " WHERE icons_id > 1"; $result = $db->sql_query($sql); $s_topic_icons = false; if ( $row = $db->sql_fetchrow($result) ) { $s_topic_icons = true; do { $template->assign_block_vars('topic_icon', array( 'ICON_ID' => $row['icons_id'], 'ICON_IMG' => $board_config['icons_path'] . '/' . $row['icons_url'], 'ICON_WIDTH' => $row['icons_width'], 'ICON_HEIGHT' => $row['icons_height']) ); } while ( $row = $db->sql_fetchrow($result) ); } // Topic type selection $topic_type_toggle = ''; if ( $mode == 'newtopic' || ( $mode == 'editpost' && $post_data['first_post'] ) ) { if ( $auth->get_acl($f, 'forum', 'sticky') ) { $topic_type_toggle .= 'get_acl($f, 'forum', 'announce') ) { $topic_type_toggle .= ' ' . $lang['Post_Normal'] . '  ' . $topic_type_toggle; } } // HTML, BBCode, Smilies, Images and Flash status $html_status = ( $board_config['allow_html'] && $auth->get_acl($f, 'forum', 'html') ) ? $lang['HTML_is_ON'] : $lang['HTML_is_OFF']; $bbcode_status = ( $board_config['allow_bbcode'] && $auth->get_acl($f, 'forum', 'bbcode') ) ? $lang['BBCode_is_ON'] : $lang['BBCode_is_OFF']; $smilies_status = ( $board_config['allow_smilies'] && $auth->get_acl($f, 'forum', 'smilies') ) ? $lang['Smilies_are_ON'] : $lang['Smilies_are_OFF']; $img_status = ( $board_config['allow_img'] && $auth->get_acl($f, 'forum', 'img') ) ? $lang['Images_are_ON'] : $lang['Images_are_OFF']; $flash_status = ( $board_config['allow_flash'] && $auth->get_acl($f, 'forum', 'flash') ) ? $lang['Flash_is_ON'] : $lang['Flash_is_OFF']; // Page title/hidden fields $s_hidden_fields = ''; switch( $mode ) { case 'newtopic': $page_title = $lang['Post_a_new_topic']; $s_hidden_fields .= ''; break; case 'reply': $page_title = $lang['Post_a_reply']; $s_hidden_fields .= ''; break; case 'editpost': $page_title = $lang['Edit_Post']; $s_hidden_fields .= ''; break; } // Start assigning vars for main posting page ... $template->assign_vars(array( 'FORUM_NAME' => $forum_name, 'TOPIC_TITLE' => ( $mode != 'newtopic' ) ? $topic_title : '', 'USERNAME' => $username, 'SUBJECT' => $subject, 'MESSAGE' => $message, 'HTML_STATUS' => $html_status, 'BBCODE_STATUS' => sprintf($bbcode_status, '', ''), 'SMILIES_STATUS' => $smilies_status, 'IMG_STATUS' => $img_status, 'FLASH_STATUS' => $flash_status, 'L_POST_A' => $page_title, 'L_POST_SUBJECT' => $lang['Post_subject'], 'L_VIEW_MODERATORS' => $lang['View_moderators'], 'L_TOPIC_ICON' => $lang['Topic_icon'], 'L_SUBJECT' => $lang['Subject'], 'L_MESSAGE_BODY' => $lang['Message_body'], 'L_OPTIONS' => $lang['Options'], 'L_PREVIEW' => $lang['Preview'], 'L_SPELLCHECK' => $lang['Spellcheck'], 'L_SUBMIT' => $lang['Submit'], 'L_SAVE' => $lang['Save'], 'L_CANCEL' => $lang['Cancel'], 'L_CONFIRM_DELETE' => $lang['Confirm_delete'], 'L_DISABLE_HTML' => $lang['Disable_HTML_post'], 'L_DISABLE_BBCODE' => $lang['Disable_BBCode_post'], 'L_DISABLE_SMILIES' => $lang['Disable_Smilies_post'], 'L_DISABLE_MAGIC_URL' => $lang['Disable_magic_url'], 'L_ATTACH_SIGNATURE' => $lang['Attach_signature'], 'L_NOTIFY_ON_REPLY' => $lang['Notify'], 'L_DELETE_POST' => $lang['Delete_post'], 'L_NONE' => $lang['None'], 'L_EMPTY_MESSAGE' => $lang['Empty_message'], 'L_BBCODE_CLOSE_TAGS' => $lang['Close_Tags'], 'L_STYLES_TIP' => $lang['Styles_tip'], 'L_BBCODE_B_HELP' => $lang['bbcode_b_help'], 'L_BBCODE_I_HELP' => $lang['bbcode_i_help'], 'L_BBCODE_U_HELP' => $lang['bbcode_u_help'], 'L_BBCODE_Q_HELP' => $lang['bbcode_q_help'], 'L_BBCODE_C_HELP' => $lang['bbcode_c_help'], 'L_BBCODE_L_HELP' => $lang['bbcode_l_help'], 'L_BBCODE_O_HELP' => $lang['bbcode_o_help'], 'L_BBCODE_P_HELP' => $lang['bbcode_p_help'], 'L_BBCODE_W_HELP' => $lang['bbcode_w_help'], 'L_BBCODE_A_HELP' => $lang['bbcode_a_help'], 'L_BBCODE_S_HELP' => $lang['bbcode_s_help'], 'L_BBCODE_F_HELP' => $lang['bbcode_f_help'], 'L_FONT_COLOR' => $lang['Font_color'], 'L_FONT_SIZE' => $lang['Font_size'], 'L_FONT_TINY' => $lang['font_tiny'], 'L_FONT_SMALL' => $lang['font_small'], 'L_FONT_NORMAL' => $lang['font_normal'], 'L_FONT_LARGE' => $lang['font_large'], 'L_FONT_HUGE' => $lang['font_huge'], 'U_VIEW_FORUM' => "viewforum.$phpEx$SID&f=$forum_id", 'U_VIEWTOPIC' => ( $mode != 'newtopic' ) ? "viewtopic.$phpEx$SID&t=$topic_id" : '', 'U_REVIEW_TOPIC' => ( $mode != 'newtopic' ) ? "posting.$phpEx$SID&mmode=topicreview&t=$topic_id" : '', 'U_VIEW_MODERATORS' => 'memberslist.' . $phpEx . $SID . '&mode=moderators&f=' . $f, 'S_SHOW_TOPIC_ICONS' => $s_topic_icons, 'S_HTML_CHECKED' => ( !$html_on ) ? 'checked="checked"' : '', 'S_BBCODE_CHECKED' => ( !$bbcode_on ) ? 'checked="checked"' : '', 'S_SMILIES_CHECKED' => ( !$smilies_on ) ? 'checked="checked"' : '', 'S_MAGIC_URL_CHECKED' => ( !$magic_urls_on ) ? 'checked="checked"' : '', 'S_SIGNATURE_CHECKED' => ( $attach_sig ) ? 'checked="checked"' : '', 'S_NOTIFY_CHECKED' => ( $notify_user ) ? 'checked="checked"' : '', 'S_DISPLAY_USERNAME' => ( !$userdata['user_id'] || ( $mode == 'editpost' && $post_info['post_username'] ) ) ? true : false, 'S_SAVE_ALLOWED' => ( $auth->get_acl($f, 'forum', 'save') ) ? true : false, 'S_HTML_ALLOWED' => ( $board_config['allow_html'] && $auth->get_acl($f, 'forum', 'html') ) ? true : false, 'S_BBCODE_ALLOWED' => ( $board_config['allow_bbcode'] && $auth->get_acl($f, 'forum', 'bbcode') ) ? true : false, 'S_SMILIES_ALLOWED' => ( $board_config['allow_smilies'] && $auth->get_acl($f, 'forum', 'smilies') ) ? true : false, 'S_SIG_ALLOWED' => ( $auth->get_acl($f, 'forum', 'sigs') ) ? true : false, 'S_NOTIFY_ALLOWED' => ( $userdata['user_id'] ) ? true : false, 'S_DELETE_ALLOWED' => ( $mode == 'editpost' && ( ( $auth->get_acl($f, 'forum', 'delete') && $post_data['last_post'] && ( !$post_data['has_poll'] || $post_data['edit_poll'] ) ) || $auth->get_acl($f, 'mod') ) ) ? true : false, 'S_TYPE_TOGGLE' => $topic_type_toggle, 'S_TOPIC_ID' => $t, 'S_POST_ACTION' => "posting.$phpEx$SID", 'S_HIDDEN_FIELDS' => $s_hidden_fields) ); // // Poll entry // if ( ( $mode == 'newtopic' || ( $mode == 'editpost' && $post_data['first_post'] ) ) && $auth->get_acl($f, 'forum', 'poll') ) { $template->assign_vars(array( 'S_SHOW_POLL_BOX' => true, 'S_POLL_DELETE' => ( $mode == 'editpost' && $post_data['edit_poll'] ) ? true : false, 'L_ADD_A_POLL' => $lang['Add_poll'], 'L_ADD_POLL_EXPLAIN' => $lang['Add_poll_explain'], 'L_POLL_QUESTION' => $lang['Poll_question'], 'L_POLL_OPTION' => $lang['Poll_option'], 'L_ADD_OPTION' => $lang['Add_option'], 'L_UPDATE_OPTION' => $lang['Update'], 'L_DELETE_OPTION' => $lang['Delete'], 'L_POLL_LENGTH' => $lang['Poll_for'], 'L_DAYS' => $lang['Days'], 'L_POLL_LENGTH_EXPLAIN' => $lang['Poll_for_explain'], 'L_POLL_DELETE' => $lang['Delete_poll'], 'POLL_TITLE' => $poll_title, 'POLL_LENGTH' => $poll_length) ); if ( !empty($poll_options) ) { foreach ( $poll_options as $option_id => $option_text ) { $template->assign_block_vars('poll_options', array( 'POLL_OPTION' => htmlspecialchars($option_text), 'S_POLL_OPTION_NUM' => $option_id) ); } } } // // Attachment entry // if ( $auth->get_acl($f, 'forum', 'attach') ) { $template->assign_vars(array( 'S_SHOW_ATTACH_BOX' => true, 'L_ADD_ATTACHMENT' => $lang['Add_attach'], 'L_ADD_ATTACHMENT_EXPLAIN' => $lang['Add_attach_explain'], 'L_ADD_FILE' => $lang['Add_file'], 'L_FILE_NAME' => $lang['Filename'], 'L_FILE_COMMENT' => $lang['File_comment'],) ); } // // Output page ... // include($phpbb_root_path . 'includes/page_header.'.$phpEx); $template->set_filenames(array( 'body' => 'posting_body.html', 'reviewbody' => 'posting_topic_review.html') ); make_jumpbox('viewforum.'.$phpEx); // // Topic review // if ( $mode == 'reply' ) { require($phpbb_root_path . 'includes/topic_review.'.$phpEx); topic_review($t, true); $template->assign_var_from_handle('TOPIC_REVIEW_BOX', 'reviewbody'); } include($phpbb_root_path . 'includes/page_tail.'.$phpEx); ?>