📄 comment_post.php
字号:
<?php
// $Id: comment_post.php 2 2005-11-02 18:23:29Z skalpa $
// ------------------------------------------------------------------------ //
// XOOPS - PHP Content Management System //
// Copyright (c) 2000 XOOPS.org //
// <http://www.xoops.org/> //
// ------------------------------------------------------------------------ //
// This program is free software; you can redistribute it and/or modify //
// it under the terms of the GNU General Public License as published by //
// the Free Software Foundation; either version 2 of the License, or //
// (at your option) any later version. //
// //
// You may not change or alter any portion of this comment or credits //
// of supporting developers from this source code or any supporting //
// source code which is considered copyrighted (c) material of the //
// original comment or credit authors. //
// //
// This program is distributed in the hope that it will be useful, //
// but WITHOUT ANY WARRANTY; without even the implied warranty of //
// MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the //
// GNU General Public License for more details. //
// //
// You should have received a copy of the GNU General Public License //
// along with this program; if not, write to the Free Software //
// Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA //
// ------------------------------------------------------------------------ //
// Author: Kazumi Ono (AKA onokazu) //
// URL: http://www.xoops.org/ http://jp.xoops.org/ http://www.myweb.ne.jp/ //
// Project: The XOOPS Project (http://www.xoops.org/) //
// ------------------------------------------------------------------------- //
if (!defined('XOOPS_ROOT_PATH') || !is_object($xoopsModule)) {
exit();
}
include_once XOOPS_ROOT_PATH.'/language/'.$xoopsConfig['language'].'/comment.php';
include_once XOOPS_ROOT_PATH.'/include/comment_constants.php';
if ('system' == $xoopsModule->getVar('dirname')) {
$com_id = isset($_POST['com_id']) ? intval($_POST['com_id']) : 0;
if (empty($com_id)) {
exit();
}
$comment_handler =& xoops_gethandler('comment');
$comment =& $comment_handler->get($com_id);
$module_handler =& xoops_gethandler('module');
$module =& $module_handler->get($comment->getVar('com_modid'));
$comment_config = $module->getInfo('comments');
$com_modid = $module->getVar('mid');
$redirect_page = XOOPS_URL.'/modules/system/admin.php?fct=comments&com_modid='.$com_modid.'&com_itemid';
$moddir = $module->getVar('dirname');
unset($comment);
} else {
$com_id = isset($_POST['com_id']) ? intval($_POST['com_id']) : 0;
if (XOOPS_COMMENT_APPROVENONE == $xoopsModuleConfig['com_rule']) {
exit();
}
$comment_config = $xoopsModule->getInfo('comments');
$com_modid = $xoopsModule->getVar('mid');
$redirect_page = $comment_config['pageName'].'?';
if (isset($comment_config['extraParams']) && is_array($comment_config['extraParams'])) {
$extra_params = '';
foreach ($comment_config['extraParams'] as $extra_param) {
$extra_params .= isset($_POST[$extra_param]) ? $extra_param.'='.htmlspecialchars($_POST[$extra_param]).'&' : $extra_param.'=&';
}
$redirect_page .= $extra_params;
}
$redirect_page .= $comment_config['itemName'];
$comment_url = $redirect_page;
$moddir = $xoopsModule->getVar('dirname');
}
$op = '';
if (!empty($_POST)) {
if (isset($_POST['com_dopost'])) {
$op = 'post';
} elseif (isset($_POST['com_dopreview'])) {
$op = 'preview';
}
if (isset($_POST['com_dodelete'])) {
$op = 'delete';
}
if ($op == 'preview' || $op == 'post') {
if (!$GLOBALS['xoopsSecurity']->check()) {
$op = '';
}
}
$com_mode = isset($_POST['com_mode']) ? htmlspecialchars(trim($_POST['com_mode']), ENT_QUOTES) : 'flat';
$com_order = isset($_POST['com_order']) ? intval($_POST['com_order']) : XOOPS_COMMENT_OLD1ST;
$com_itemid = isset($_POST['com_itemid']) ? intval($_POST['com_itemid']) : 0;
$com_pid = isset($_POST['com_pid']) ? intval($_POST['com_pid']) : 0;
$com_rootid = isset($_POST['com_rootid']) ? intval($_POST['com_rootid']) : 0;
$com_status = isset($_POST['com_status']) ? intval($_POST['com_status']) : 0;
$dosmiley = (isset($_POST['dosmiley']) && intval($_POST['dosmiley']) > 0) ? 1 : 0;
$doxcode = (isset($_POST['doxcode']) && intval($_POST['doxcode']) > 0) ? 1 : 0;
$dobr = (isset($_POST['dobr']) && intval($_POST['dobr']) > 0) ? 1 : 0;
$dohtml = (isset($_POST['dohtml']) && intval($_POST['dohtml']) > 0) ? 1 : 0;
$doimage = (isset($_POST['doimage']) && intval($_POST['doimage']) > 0) ? 1 : 0;
$com_icon = isset($_POST['com_icon']) ? trim($_POST['com_icon']) : '';
} else {
exit();
}
switch ( $op ) {
case "delete":
include XOOPS_ROOT_PATH.'/include/comment_delete.php';
break;
case "preview":
$myts =& MyTextSanitizer::getInstance();
$doimage = 1;
$com_title = $myts->htmlSpecialChars($myts->stripSlashesGPC($_POST['com_title']));
if ($dohtml != 0) {
if (is_object($xoopsUser)) {
if (!$xoopsUser->isAdmin($com_modid)) {
$sysperm_handler =& xoops_gethandler('groupperm');
if (!$sysperm_handler->checkRight('system_admin', XOOPS_SYSTEM_COMMENT, $xoopsUser->getGroups())) {
$dohtml = 0;
}
}
} else {
$dohtml = 0;
}
}
$p_comment =& $myts->previewTarea($_POST['com_text'], $dohtml, $dosmiley, $doxcode, $doimage, $dobr);
$noname = isset($noname) ? intval($noname) : 0;
$com_text = $myts->htmlSpecialChars($myts->stripSlashesGPC($_POST['com_text']));
if ($xoopsModule->getVar('dirname') != 'system') {
include XOOPS_ROOT_PATH.'/header.php';
themecenterposts($com_title, $p_comment);
include XOOPS_ROOT_PATH.'/include/comment_form.php';
include XOOPS_ROOT_PATH.'/footer.php';
} else {
xoops_cp_header();
themecenterposts($com_title, $p_comment);
include XOOPS_ROOT_PATH.'/include/comment_form.php';
xoops_cp_footer();
}
break;
case "post":
$doimage = 1;
$comment_handler =& xoops_gethandler('comment');
$add_userpost = false;
$call_approvefunc = false;
$call_updatefunc = false;
// RMV-NOTIFY - this can be set to 'comment' or 'comment_submit'
$notify_event = false;
if (!empty($com_id)) {
$comment =& $comment_handler->get($com_id);
$accesserror = false;
if (is_object($xoopsUser)) {
$sysperm_handler =& xoops_gethandler('groupperm');
if ($xoopsUser->isAdmin($com_modid) || $sysperm_handler->checkRight('system_admin', XOOPS_SYSTEM_COMMENT, $xoopsUser->getGroups())) {
if (!empty($com_status) && $com_status != XOOPS_COMMENT_PENDING) {
$old_com_status = $comment->getVar('com_status');
$comment->setVar('com_status', $com_status);
// if changing status from pending state, increment user post
if (XOOPS_COMMENT_PENDING == $old_com_status) {
$add_userpost = true;
if (XOOPS_COMMENT_ACTIVE == $com_status) {
$call_updatefunc = true;
$call_approvefunc = true;
// RMV-NOTIFY
$notify_event = 'comment';
}
} elseif (XOOPS_COMMENT_HIDDEN == $old_com_status && XOOPS_COMMENT_ACTIVE == $com_status) {
$call_updatefunc = true;
// Comments can not be directly posted hidden,
// no need to send notification here
} elseif (XOOPS_COMMENT_ACTIVE == $old_com_status && XOOPS_COMMENT_HIDDEN == $com_status) {
$call_updatefunc = true;
}
}
} else {
$dohtml = 0;
if ($comment->getVar('com_uid') != $xoopsUser->getVar('uid')) {
$accesserror = true;
}
}
} else {
$dohtml = 0;
$accesserror = true;
}
if (false != $accesserror) {
redirect_header($redirect_page.'='.$com_itemid.'&com_id='.$com_id.'&com_mode='.$com_mode.'&com_order='.$com_order, 1, _NOPERM);
exit();
}
} else {
$comment = $comment_handler->create();
$comment->setVar('com_created', time());
$comment->setVar('com_pid', $com_pid);
$comment->setVar('com_itemid', $com_itemid);
$comment->setVar('com_rootid', $com_rootid);
$comment->setVar('com_ip', xoops_getenv('REMOTE_ADDR'));
if (is_object($xoopsUser)) {
$sysperm_handler =& xoops_gethandler('groupperm');
if ($xoopsUser->isAdmin($com_modid) || $sysperm_handler->checkRight('system_admin', XOOPS_SYSTEM_COMMENT, $xoopsUser->getGroups())) {
$comment->setVar('com_status', XOOPS_COMMENT_ACTIVE);
$add_userpost = true;
$call_approvefunc = true;
$call_updatefunc = true;
// RMV-NOTIFY
⌨️ 快捷键说明
复制代码
Ctrl + C
搜索代码
Ctrl + F
全屏模式
F11
切换主题
Ctrl + Shift + D
显示快捷键
?
增大字号
Ctrl + =
减小字号
Ctrl + -