2006-12-02 04:36:16 +00:00
< ? php
/*
2010-08-23 07:28:46 +00:00
* e107 website system
*
* Copyright ( C ) 2008 - 2010 e107 Inc ( e107 . org )
* Released under the terms and conditions of the
* GNU General Public License ( http :// www . gnu . org / licenses / gpl . txt )
*
* Comment handling generic interface
*
* $URL $
* $Id $
*/
2010-01-09 12:06:15 +00:00
/**
* @ package e107
* @ subpackage user
2010-02-10 18:18:01 +00:00
* @ version $Id $ ;
2010-01-09 12:06:15 +00:00
*
* Display comments
*/
require_once ( 'class2.php' );
2017-01-23 09:41:23 -08:00
e107 :: includeLan ( e_LANGUAGEDIR . e_LANGUAGE . '/lan_' . e_PAGE );
2009-08-28 15:30:25 +00:00
2020-12-05 14:13:18 -08:00
if ( ! empty ( e107 :: getPref ( 'comments_disabled' )))
2012-06-17 08:08:01 +00:00
{
exit ;
}
2012-06-16 12:41:30 +00:00
2012-06-17 03:56:42 +00:00
if ( e_AJAX_REQUEST ) // TODO improve security
2012-06-16 12:41:30 +00:00
{
2012-06-17 03:56:42 +00:00
if ( ! ANON && ! USER )
{
exit ;
}
$ret = array ();
2012-08-04 21:50:47 +00:00
// Comment Pagination
if ( varset ( $_GET [ 'mode' ]) == 'list' && vartrue ( $_GET [ 'id' ]) && vartrue ( $_GET [ 'type' ]))
{
$clean_type = preg_replace ( " /[^ \ w \ d]/ " , " " , $_GET [ 'type' ]);
2019-01-17 13:20:56 -08:00
$tmp = e107 :: getComment () -> getComments ( $clean_type , intval ( $_GET [ 'id' ]), intval ( $_GET [ 'from' ]));
2012-08-04 21:50:47 +00:00
echo $tmp [ 'comments' ];
exit ;
}
2012-06-17 08:08:01 +00:00
if ( varset ( $_GET [ 'mode' ]) == 'reply' && vartrue ( $_POST [ 'itemid' ]))
{
$status = e107 :: getComment () -> replyComment ( $_POST [ 'itemid' ]);
2012-12-01 21:08:44 +01:00
$ret [ 'msg' ] = COMLAN_332 ;
2012-06-17 08:08:01 +00:00
$ret [ 'error' ] = ( $status ) ? false : true ;
$ret [ 'html' ] = $status ;
echo json_encode ( $ret );
exit ;
}
2016-12-22 10:00:37 -08:00
if ( varset ( $_GET [ 'mode' ]) == 'delete' && ! empty ( $_POST [ 'id' ]) && ADMIN )
2012-06-17 03:56:42 +00:00
{
2016-12-22 10:00:37 -08:00
$status = e107 :: getComment () -> deleteComment ( $_POST [ 'id' ], $_POST [ 'table' ], $_POST [ 'itemid' ]);
2013-05-20 13:37:39 -07:00
$ret [ 'msg' ] = ( $status ) ? 'Ok' : COMLAN_332 ;
2012-06-17 03:56:42 +00:00
$ret [ 'error' ] = ( $status ) ? false : true ;
echo json_encode ( $ret );
exit ;
}
2013-05-20 13:37:39 -07:00
if ( varset ( $_GET [ 'mode' ]) == 'approve' && vartrue ( $_POST [ 'itemid' ]) && ADMIN )
2012-06-17 03:56:42 +00:00
{
$status = e107 :: getComment () -> approveComment ( $_POST [ 'itemid' ]);
2012-12-01 21:08:44 +01:00
$ret [ 'msg' ] = ( $status ) ? COMLAN_333 : COMLAN_334 ;
2012-06-17 03:56:42 +00:00
$ret [ 'error' ] = ( $status ) ? false : true ;
2012-12-01 21:08:44 +01:00
$ret [ 'html' ] = COMLAN_335 ;
2012-06-17 03:56:42 +00:00
echo json_encode ( $ret );
exit ;
}
2012-06-17 08:08:01 +00:00
2012-06-17 03:56:42 +00:00
if ( ! vartrue ( $_POST [ 'comment' ]) && varset ( $_GET [ 'mode' ]) == 'submit' )
{
$ret [ 'error' ] = true ;
2019-04-11 15:52:41 -07:00
$ret [ 'msg' ] = COMLAN_336 . " - " . implode ( " " , $_GET );
2012-06-17 03:56:42 +00:00
echo json_encode ( $ret );
exit ;
}
// Update Comment
if ( e107 :: getPref ( 'allowCommentEdit' ) && varset ( $_GET [ 'mode' ]) == 'edit' && vartrue ( $_POST [ 'comment' ]) && vartrue ( $_POST [ 'itemid' ]))
{
$error = e107 :: getComment () -> updateComment ( $_POST [ 'itemid' ], $_POST [ 'comment' ]);
$ret [ 'error' ] = ( $error ) ? true : false ;
2012-12-01 21:08:44 +01:00
$ret [ 'msg' ] = ( $error ) ? $error : COMLAN_337 ;
2012-06-17 03:56:42 +00:00
echo json_encode ( $ret );
exit ;
}
// Insert Comment and return rendered html.
2017-09-19 16:19:39 -07:00
if ( ! empty ( $_POST [ 'comment' ])) // ajax render comment
2012-06-16 12:41:30 +00:00
{
2012-12-01 21:08:44 +01:00
$pid = intval ( varset ( $_POST [ 'pid' ], 0 )); // ID of the specific comment being edited (nested comments - replies)
$row = array ();
2021-09-04 15:06:19 +02:00
$authName = e107 :: getParser () -> filter ( $_POST [ 'author_name' ], 'str' );
2020-12-05 14:13:18 -08:00
$clean_authorname = vartrue ( $authName , USERNAME );
2017-09-19 16:19:39 -07:00
$clean_comment = e107 :: getParser () -> toText ( $_POST [ 'comment' ]);
$clean_subject = e107 :: getParser () -> filter ( $_POST [ 'subject' ], 'str' );
$clean_table = e107 :: getParser () -> filter ( $_POST [ 'table' ], 'str' );
2012-06-16 12:41:30 +00:00
2012-06-18 09:06:20 +00:00
$_SESSION [ 'comment_author_name' ] = $clean_authorname ;
2013-03-29 15:31:03 -07:00
$row [ 'comment_pid' ] = $pid ;
2012-08-17 08:51:27 +00:00
$row [ 'comment_item_id' ] = intval ( $_POST [ 'itemid' ]);
2017-09-19 16:19:39 -07:00
$row [ 'comment_type' ] = e107 :: getComment () -> getCommentType ( $tp -> toDB ( $clean_table , true ));
$row [ 'comment_subject' ] = $tp -> toDB ( $clean_subject );
$row [ 'comment_comment' ] = $tp -> toDB ( $clean_comment );
2012-08-17 08:51:27 +00:00
$row [ 'user_image' ] = USERIMAGE ;
$row [ 'user_id' ] = ( USERID ) ? USERID : 0 ;
$row [ 'user_name' ] = USERNAME ;
$row [ 'comment_author_name' ] = $tp -> toDB ( $clean_authorname );
2013-06-19 23:52:14 -07:00
$row [ 'comment_author_id' ] = ( USERID ) ? USERID : 0 ;
2012-08-17 08:51:27 +00:00
$row [ 'comment_datestamp' ] = time ();
$row [ 'comment_blocked' ] = ( check_class ( $pref [ 'comments_moderate' ]) ? 2 : 0 );
$row [ 'comment_share' ] = ( $_POST [ 'comment_share' ]);
$newid = e107 :: getComment () -> enter_comment ( $row );
// $newid = e107::getComment()->enter_comment($clean_authorname, $clean_comment, $_POST['table'], intval($_POST['itemid']), $pid, $clean_subject);
2012-06-16 12:41:30 +00:00
2012-06-17 03:56:42 +00:00
if ( is_numeric ( $newid ) && ( $_GET [ 'mode' ] == 'submit' ))
2012-06-16 12:41:30 +00:00
{
2012-08-17 08:51:27 +00:00
$row [ 'comment_id' ] = $newid ;
2013-03-29 15:31:03 -07:00
$width = ( $pid ) ? 1 : 0 ;
2012-06-17 08:08:01 +00:00
2014-01-01 05:20:46 -08:00
$ret [ 'html' ] = " \n <!-- Appended --> \n <li> " ;
2018-05-31 20:48:03 +02:00
/**
* Fix for issue e107inc / e107 #3154 (Comments not refreshing on submission)
* Missing 6 th argument ( $subject ) caused an exception
*/
2020-12-18 19:55:12 -08:00
$ret [ 'html' ] .= e107 :: getComment () -> render_comment ( $row , 'comments' , 'comment' , ( int ) $_POST [ 'itemid' ], $width , $tp -> toDB ( $clean_subject ));
2014-01-01 05:20:46 -08:00
$ret [ 'html' ] .= " </li> \n <!-- end Appended --> \n " ;
2012-06-17 03:56:42 +00:00
$ret [ 'error' ] = false ;
}
else
{
$ret [ 'error' ] = true ;
$ret [ 'msg' ] = $newid ;
2012-06-16 12:41:30 +00:00
}
2012-06-17 03:56:42 +00:00
echo json_encode ( $ret );
2012-06-16 12:41:30 +00:00
}
exit ;
}
2012-06-17 03:56:42 +00:00
require_once ( e_HANDLER . " news_class.php " ); // FIXME shouldn't be here.
2006-12-02 04:36:16 +00:00
require_once ( e_HANDLER . " comment_class.php " );
2015-07-07 18:02:16 -07:00
define ( " PAGE_NAME " , LAN_COMMENTS );
2006-12-02 04:36:16 +00:00
2009-01-22 01:58:29 +00:00
if ( ! e_QUERY )
2008-09-23 19:44:08 +00:00
{
2012-12-01 21:08:44 +01:00
header ( 'location: ' . e_BASE . 'index.php' );
2006-12-02 04:36:16 +00:00
exit ;
}
2009-09-14 18:18:36 +00:00
$cobj = new comment ;
2006-12-02 04:36:16 +00:00
$temp_query = explode ( " . " , e_QUERY );
2007-08-17 19:23:26 +00:00
$action = $temp_query [ 0 ]; // Usually says 'comment' - may say 'reply'
$table = $temp_query [ 1 ]; // Table containing item associated with comment(s)
2010-08-23 07:28:46 +00:00
$id = intval ( varset ( $temp_query [ 2 ], 0 )); // ID of item associated with comments (e.g. news ID)
// For reply with nested comments, its the ID of the comment
2007-08-17 19:23:26 +00:00
$nid = intval ( varset ( $temp_query [ 3 ], " " )); // Action - e.g. 'edit'. Or news ID for reply with nested comments
$xid = intval ( varset ( $temp_query [ 4 ], " " )); // ID of target comment
global $comment_edit_query ;
$comment_edit_query = $temp_query [ 0 ] . " . " . $temp_query [ 1 ] . " . " . $temp_query [ 2 ];
2006-12-02 04:36:16 +00:00
unset ( $temp_query );
2008-05-25 08:26:11 +00:00
$redirectFlag = 0 ;
2009-01-22 01:58:29 +00:00
if ( isset ( $_POST [ 'commentsubmit' ]) || isset ( $_POST [ 'editsubmit' ]))
2008-05-25 08:26:11 +00:00
{ // New comment, or edited comment, being posted.
2006-12-02 04:36:16 +00:00
if ( ! ANON && ! USER )
{
2016-01-13 19:17:37 -08:00
e107 :: redirect ();
2009-01-22 01:58:29 +00:00
exit ;
2006-12-02 04:36:16 +00:00
}
2010-08-23 07:28:46 +00:00
switch ( $table )
2007-08-17 19:23:26 +00:00
{
2010-08-23 07:28:46 +00:00
case 'poll' :
2019-01-17 13:20:56 -08:00
if ( ! $sql -> select ( " polls " , " poll_title " , " `poll_id` = ' { $id } ' AND `poll_comment` = 1 " ))
2010-08-23 07:28:46 +00:00
{
2016-01-13 19:17:37 -08:00
e107 :: redirect ();
2010-08-23 07:28:46 +00:00
exit ;
}
break ;
case 'news' :
2019-01-17 13:20:56 -08:00
if ( ! $sql -> select ( " news " , " news_allow_comments " , " `news_id` = ' { $id } ' AND `news_allow_comments` = 0 " ))
2010-08-23 07:28:46 +00:00
{
2016-01-13 19:17:37 -08:00
e107 :: redirect ();
2010-08-23 07:28:46 +00:00
exit ;
}
2010-08-27 06:53:59 +00:00
break ;
2010-08-23 07:28:46 +00:00
case 'user' :
2019-01-17 13:20:56 -08:00
if ( ! $sql -> select ( 'user' , 'user_name' , '`user_id` =' . $id ))
2010-08-23 07:28:46 +00:00
{
2016-01-13 19:17:37 -08:00
e107 :: redirect ();
2010-08-23 07:28:46 +00:00
exit ;
}
2010-08-27 06:53:59 +00:00
break ;
2006-12-02 04:36:16 +00:00
}
2008-05-25 08:26:11 +00:00
$pid = intval ( varset ( $_POST [ 'pid' ], 0 )); // ID of the specific comment being edited (nested comments - replies)
$editpid = intval ( varset ( $_POST [ 'editpid' ], 0 )); // ID of the specific comment being edited (in-line comments)
2006-12-02 04:36:16 +00:00
$clean_authorname = $_POST [ 'author_name' ];
$clean_comment = $_POST [ 'comment' ];
$clean_subject = $_POST [ 'subject' ];
$cobj -> enter_comment ( $clean_authorname , $clean_comment , $table , $id , $pid , $clean_subject );
2009-01-22 01:58:29 +00:00
if ( $table == " news " )
2007-08-17 19:23:26 +00:00
{
2015-02-15 16:07:27 -08:00
e107 :: getCache () -> clear ( " news " );
2009-01-22 01:58:29 +00:00
}
else
2007-08-17 19:23:26 +00:00
{
2015-02-15 16:07:27 -08:00
e107 :: getCache () -> clear ( " comment.php? { $table } . { $id } " );
2006-12-02 04:36:16 +00:00
}
2009-01-22 01:58:29 +00:00
if ( $editpid )
2007-08-17 19:23:26 +00:00
{
2009-01-22 01:58:29 +00:00
$redirectFlag = $id ;
/* $redir = preg_replace ( " # \ .edit.*#si " , " " , e_QUERY );
2012-12-01 21:08:44 +01:00
header ( 'Location: ' . e_SELF . '?{$redir}' );
2008-05-25 08:26:11 +00:00
exit ; */
2006-12-02 04:36:16 +00:00
}
}
2007-08-17 19:23:26 +00:00
2006-12-02 04:36:16 +00:00
if ( isset ( $_POST [ 'replysubmit' ]))
2008-05-25 08:26:11 +00:00
{ // Reply to nested comment being posted
2015-02-15 16:07:27 -08:00
if ( $table == " news " && ! $sql -> select ( " news " , " news_allow_comments " , " news_id=' { $nid } ' " ))
2007-08-17 19:23:26 +00:00
{
2016-01-13 19:17:37 -08:00
e107 :: redirect ();
2009-01-22 01:58:29 +00:00
exit ;
}
else
2007-08-17 19:23:26 +00:00
{
2015-02-15 16:07:27 -08:00
$row = $sql -> fetch ();
2009-01-22 01:58:29 +00:00
if ( ! $row [ 'news_id' ])
{
$pid = ( isset ( $_POST [ 'pid' ]) ? $_POST [ 'pid' ] : 0 );
$pid = intval ( $pid );
2006-12-02 04:36:16 +00:00
2009-01-22 01:58:29 +00:00
$clean_authorname = $_POST [ 'author_name' ];
$clean_comment = $_POST [ 'comment' ];
$clean_subject = $_POST [ 'subject' ];
2006-12-02 04:36:16 +00:00
2009-01-22 01:58:29 +00:00
$cobj -> enter_comment ( $clean_authorname , $clean_comment , $table , $nid , $pid , $clean_subject );
2015-02-15 16:07:27 -08:00
e107 :: getCache () -> clear ( " comment.php? { $table } . { $id } " );
2009-01-22 01:58:29 +00:00
}
$redirectFlag = $nid ;
2008-05-25 08:26:11 +00:00
}
}
2006-12-02 04:36:16 +00:00
2008-05-25 08:26:11 +00:00
if ( $redirectFlag )
{ // Need to go back to original page
2011-12-06 09:42:27 +00:00
2010-08-23 07:28:46 +00:00
// Check for core tables first
switch ( $table )
{
case " news " :
2011-11-26 18:17:42 +00:00
header ( 'Location: ' . e107 :: getUrl () -> create ( 'news/view/item' , 'id=' . $redirectFlag ));
2010-08-23 07:28:46 +00:00
exit ;
case " poll " :
2022-03-31 08:24:34 -07:00
echo " <script>document.location.href=' " . e_HTTP . " comment.php?comment. { $table } . { $redirectFlag } '</script> \n " ;
2010-08-23 07:28:46 +00:00
exit ;
case " download " :
2022-03-31 08:24:34 -07:00
echo " <script>document.location.href=' " . e_HTTP . " download.php?view. { $redirectFlag } '</script> \n " ;
2010-08-23 07:28:46 +00:00
exit ;
case " page " :
2022-03-31 08:24:34 -07:00
echo " <script>document.location.href=' " . e_HTTP . " page.php? { $redirectFlag } '</script> \n " ;
2010-08-23 07:28:46 +00:00
exit ;
case 'user' :
2022-03-31 08:24:34 -07:00
echo " <script>document.location.href=' " . e107 :: getUrl () -> create ( 'user/profile/view' , 'id=' . $redirectFlag ) . " '</script> \n " ;
2010-08-23 07:28:46 +00:00
exit ;
}
2009-01-22 01:58:29 +00:00
// Check plugin e_comment.php files
$plugin_redir = false ;
$e_comment = $cobj -> get_e_comment ();
if ( $table == $e_comment [ $table ][ 'eplug_comment_ids' ])
2008-05-25 08:26:11 +00:00
{
2009-01-22 01:58:29 +00:00
$plugin_redir = TRUE ;
2010-08-23 07:28:46 +00:00
$reply_location = str_replace ( '{NID}' , $redirectFlag , $e_comment [ $table ][ 'reply_location' ]);
2009-01-22 01:58:29 +00:00
}
2009-09-14 18:18:36 +00:00
2009-01-22 01:58:29 +00:00
if ( $plugin_redir )
{
2022-03-31 08:24:34 -07:00
echo " <script>document.location.href=' { $reply_location } '</script> \n " ;
2008-05-25 08:26:11 +00:00
exit ;
2006-12-02 04:36:16 +00:00
}
2010-08-23 07:28:46 +00:00
// No redirect found if we get here.
2006-12-02 04:36:16 +00:00
}
2007-08-17 19:23:26 +00:00
$comment_ob_start = FALSE ;
2009-01-22 01:58:29 +00:00
if ( $action == " reply " )
2007-08-17 19:23:26 +00:00
{
2009-01-22 01:58:29 +00:00
if ( ! $pref [ 'nested_comments' ])
2007-08-17 19:23:26 +00:00
{
2012-12-01 21:08:44 +01:00
header ( 'Location: ' . e_BASE . 'comment.php?comment.{$table}.{$nid}' );
2006-12-02 04:36:16 +00:00
exit ;
}
2012-12-01 21:08:44 +01:00
2006-12-02 04:36:16 +00:00
$query = " `comment_id` = ' { $id } ' LIMIT 0,1 " ;
2012-12-01 21:08:44 +01:00
2019-01-17 13:20:56 -08:00
if ( $sql -> select ( " comments " , " comment_subject " , " `comment_id` = ' { $id } ' " ))
2007-08-17 19:23:26 +00:00
{
2019-01-17 13:20:56 -08:00
$comments = $sql -> fetch ();
2007-01-05 09:00:52 +00:00
$subject = $comments [ 'comment_subject' ];
$subject_header = $tp -> toHTML ( $comments [ 'comment_subject' ]);
2006-12-02 04:36:16 +00:00
}
2009-01-22 01:58:29 +00:00
if ( $subject == " " )
2007-08-17 19:23:26 +00:00
{
2009-01-22 01:58:29 +00:00
switch ( $table )
{
2012-12-01 21:08:44 +01:00
case 'news' :
2019-01-17 13:20:56 -08:00
if ( ! $sql -> select ( " news " , " news_title " , " news_id=' { $nid } ' " ))
2010-08-23 07:28:46 +00:00
{
2016-01-13 19:17:37 -08:00
e107 :: redirect ();
2010-08-23 07:28:46 +00:00
exit ;
}
else
{
2019-01-17 13:20:56 -08:00
$news = $sql -> fetch ();
2010-08-23 07:28:46 +00:00
$subject = $news [ 'news_title' ];
$title = COMLAN_100 ;
}
2010-08-27 06:53:59 +00:00
break ;
2012-12-01 21:08:44 +01:00
case 'poll' :
2019-01-17 13:20:56 -08:00
if ( ! $sql -> select ( " polls " , " poll_title " , " poll_id=' { $nid } ' " ))
2010-08-23 07:28:46 +00:00
{
2016-01-13 19:17:37 -08:00
e107 :: redirect ();
2010-08-23 07:28:46 +00:00
exit ;
}
else
{
2019-01-17 13:20:56 -08:00
$poll = $sql -> fetch ();
2010-08-23 07:28:46 +00:00
$subject = $poll [ 'poll_title' ];
$title = COMLAN_101 ;
}
break ;
2009-01-22 01:58:29 +00:00
case 'download' :
2019-01-17 13:20:56 -08:00
if ( $sql -> select ( 'download' , 'download_name' , " download_id= { $nid } " ))
2010-08-23 07:28:46 +00:00
{
2019-01-17 13:20:56 -08:00
$row = $sql -> fetch ();
2010-08-23 07:28:46 +00:00
$subject = $row [ 'download_name' ];
$title = COMLAN_106 ;
}
else
{
2016-01-13 19:17:37 -08:00
e107 :: redirect ();
2010-08-23 07:28:46 +00:00
exit ;
}
break ;
case 'user' :
2019-01-17 13:20:56 -08:00
if ( $sql -> select ( 'user' , 'user_name' , " user_id= { $nid } " ))
2010-08-23 07:28:46 +00:00
{
2019-01-17 13:20:56 -08:00
$row = $sql -> fetch ();
2010-08-23 07:28:46 +00:00
$subject = $row [ 'user_name' ];
$title = COMLAN_12 ;
}
else
{
2016-01-13 19:17:37 -08:00
e107 :: redirect ();
2010-08-23 07:28:46 +00:00
exit ;
}
break ;
2009-01-22 01:58:29 +00:00
}
2006-12-02 04:36:16 +00:00
}
2015-07-07 18:02:16 -07:00
define ( 'e_PAGETITLE' , COMLAN_102 . $subject . ( $title ? ' / ' . $title : '' ) . " / " . LAN_COMMENTS );
2006-12-02 04:36:16 +00:00
require_once ( HEADERF );
2009-01-22 01:58:29 +00:00
}
2008-09-23 19:44:08 +00:00
elseif ( $action == 'comment' )
2008-05-25 08:26:11 +00:00
{ // Default code if not reply
// Check cache
2015-02-15 16:07:27 -08:00
if ( $cache = e107 :: getCache () -> retrieve ( " comment.php? { $table } . { $id } " ))
2007-08-17 19:23:26 +00:00
{
2009-01-22 01:58:29 +00:00
require_once ( HEADERF );
echo $cache ;
require_once ( FOOTERF );
exit ;
}
else
2007-08-17 19:23:26 +00:00
{
2009-01-22 01:58:29 +00:00
switch ( $table )
{
2012-12-01 21:08:44 +01:00
case 'news' :
2020-12-29 10:04:33 -08:00
/* if ( ! empty ( $pref [ 'trackbackEnabled' ]))
2010-08-23 07:28:46 +00:00
{
$query = " SELECT COUNT(tb.trackback_pid) AS tb_count, n.*, u.user_id, u.user_name, u.user_customtitle, nc.category_name, nc.category_icon FROM #news AS n
LEFT JOIN #user AS u ON n.news_author = u.user_id
LEFT JOIN #news_category AS nc ON n.news_category = nc.category_id
LEFT JOIN #trackback AS tb ON tb.trackback_pid = n.news_id
WHERE n . news_class REGEXP '".e_CLASS_REGEXP."'
AND n . news_id = { $id }
AND n . news_allow_comments = 0
GROUP by n . news_id " ;
}
else
2020-12-29 10:04:33 -08:00
{ */
2010-08-23 07:28:46 +00:00
$query = " SELECT n.*, u.user_id, u.user_name, u.user_customtitle, nc.category_name, nc.category_icon FROM #news AS n
LEFT JOIN #user AS u ON n.news_author = u.user_id
LEFT JOIN #news_category AS nc ON n.news_category = nc.category_id
WHERE n . news_class REGEXP '".e_CLASS_REGEXP."'
AND n . news_id = { $id }
AND n . news_allow_comments = 0 " ;
2020-12-29 10:04:33 -08:00
// }
2006-12-02 04:36:16 +00:00
2016-02-15 00:14:45 -08:00
if ( ! $sql -> gen ( $query ))
2010-08-23 07:28:46 +00:00
{
2016-01-13 19:17:37 -08:00
e107 :: redirect ();
2010-08-23 07:28:46 +00:00
exit ;
}
else
{
2019-01-17 13:20:56 -08:00
$news = $sql -> fetch ();
2010-08-23 07:28:46 +00:00
$subject = $tp -> toForm ( $news [ 'news_title' ]);
2015-07-07 18:02:16 -07:00
define ( " e_PAGETITLE " , " { $subject } - " . COMLAN_100 . " / " . LAN_COMMENTS );
2010-08-23 07:28:46 +00:00
require_once ( HEADERF );
ob_start ();
$comment_ob_start = TRUE ;
$ix = new news ;
$ix -> render_newsitem ( $news , " extend " ); // extend so that news-title-only news text is displayed in full when viewing comments.
$field = $news [ 'news_id' ];
}
break ;
2012-12-01 21:08:44 +01:00
case 'poll' :
2019-01-17 13:20:56 -08:00
if ( ! $sql -> select ( " polls " , " * " , " poll_id=' { $id } ' " ))
2009-01-22 01:58:29 +00:00
{
2016-01-13 19:17:37 -08:00
e107 :: redirect ();
2009-01-22 01:58:29 +00:00
exit ;
}
2010-08-23 07:28:46 +00:00
else
{
2019-01-17 13:20:56 -08:00
$row = $sql -> fetch ();
2010-08-23 07:28:46 +00:00
$comments_poll = $row [ 'poll_comment' ];
$subject = $row [ 'poll_title' ];
2015-07-07 18:02:16 -07:00
define ( " e_PAGETITLE " , $subject . ' - ' . COMLAN_101 . " / " . LAN_COMMENTS );
2010-08-23 07:28:46 +00:00
$poll_to_show = $id ; // Need to pass poll number through to display routine
require_once ( HEADERF );
require ( e_PLUGIN . " poll/poll_menu.php " );
$field = $row [ 'poll_id' ];
if ( ! $comments_poll )
{
require_once ( FOOTERF );
exit ;
}
}
break ;
2009-01-22 01:58:29 +00:00
case 'download' :
2019-01-17 13:20:56 -08:00
if ( $sql -> select ( 'download' , 'download_name' , " download_id= { $id } " ))
2009-01-22 01:58:29 +00:00
{
2019-01-17 13:20:56 -08:00
$row = $sql -> fetch ();
2010-08-23 07:28:46 +00:00
$subject = $row [ 'download_name' ];
$title = COMLAN_106 ;
2009-01-22 01:58:29 +00:00
$field = $id ;
require_once ( HEADERF );
}
else
{
2016-01-13 19:17:37 -08:00
e107 :: redirect ();
2009-01-22 01:58:29 +00:00
exit ;
}
2010-08-23 07:28:46 +00:00
break ;
case 'user' :
2019-01-17 13:20:56 -08:00
if ( $sql -> select ( 'user' , 'user_name' , " user_id= { $id } " ))
2010-01-15 21:10:23 +00:00
{
2019-01-17 13:20:56 -08:00
$row = $sql -> fetch ();
2010-08-23 07:28:46 +00:00
$subject = $row [ 'user_name' ];
//$title = 'Edit comment about user';
$field = $id ;
require_once ( HEADERF );
2010-01-15 21:10:23 +00:00
}
else
{
2016-01-13 19:17:37 -08:00
e107 :: redirect ();
2010-01-15 21:10:23 +00:00
exit ;
}
2010-08-23 07:28:46 +00:00
break ;
default : // Hope its a plugin table
$e_comment = $cobj -> get_e_comment ();
if ( $table == $e_comment [ $table ][ 'eplug_comment_ids' ])
{
2019-01-17 13:20:56 -08:00
if ( $sql -> select ( $e_comment [ $table ][ 'db_table' ], $e_comment [ $table ][ 'db_title' ], $e_comment [ $table ][ 'db_id' ] . " = { $id } " ))
2010-08-23 07:28:46 +00:00
{
2019-01-17 13:20:56 -08:00
$row = $sql -> fetch ();
2010-08-23 07:28:46 +00:00
$subject = $row [ $e_comment [ $table ][ 'db_title' ]];
$title = $e_comment [ $table ][ 'plugin_name' ];
$field = $id ;
require_once ( HEADERF );
}
else
{
2016-01-13 19:17:37 -08:00
e107 :: redirect ();
2010-08-23 07:28:46 +00:00
exit ;
}
}
else
{ // Error - emit some debug code
require_once ( HEADERF );
if ( E107_DEBUG_LEVEL )
{
echo " Comment error: { $table } Field: { $e_comment [ 'db_id' ] } ID { $id } Title: { $e_comment [ 'db_title' ] } <br /> " ;
echo " <pre> " ;
var_dump ( $e_comment );
echo " </pre> " ;
}
else
{
2016-01-13 19:17:37 -08:00
e107 :: redirect ();
2010-08-23 07:28:46 +00:00
exit ;
}
}
2009-01-22 01:58:29 +00:00
}
2006-12-02 04:36:16 +00:00
}
}
2008-09-23 19:44:08 +00:00
else
{ // Invalid action - just exit
2016-01-13 19:17:37 -08:00
e107 :: redirect ();
2008-09-23 19:44:08 +00:00
exit ;
}
2020-12-29 10:04:33 -08:00
/*
2012-12-01 21:08:44 +01:00
if ( isset ( $pref [ 'trackbackEnabled' ]) && $pref [ 'trackbackEnabled' ] && $table == 'news' )
2007-08-17 19:23:26 +00:00
{
2010-01-09 12:06:15 +00:00
echo " <span class='smalltext'><b> " . $pref [ 'trackbackString' ] . " </b> " . SITEURLBASE . e_PLUGIN_ABS . " trackback/trackback.php?pid= { $id } </span> " ;
2020-12-29 10:04:33 -08:00
} */
2008-05-25 08:26:11 +00:00
$field = ( $field ? $field : ( $id ? $id : " " )); // ID of associated source item
2006-12-02 04:36:16 +00:00
$width = ( isset ( $width ) && $width ? $width : " " );
$cobj -> compose_comment ( $table , $action , $field , $width , $subject , $rate = FALSE );
2020-12-29 10:04:33 -08:00
/*
2012-12-01 21:08:44 +01:00
if ( isset ( $pref [ 'trackbackEnabled' ]) && $pref [ 'trackbackEnabled' ] && $table == 'news' )
2008-05-25 08:26:11 +00:00
{
2019-01-17 13:20:56 -08:00
if ( $sql -> select ( " trackback " , " * " , " trackback_pid= { $id } " ))
2006-12-02 04:36:16 +00:00
{
$tbArray = $sql -> db_getList ();
2012-12-01 21:08:44 +01:00
if ( file_exists ( THEME . " trackback_template.php " ))
{
2006-12-02 04:36:16 +00:00
require_once ( THEME . " trackback_template.php " );
2012-12-01 21:08:44 +01:00
}
else
{
2013-03-20 23:50:30 -07:00
require_once ( e_CORE . " templates/trackback_template.php " );
2006-12-02 04:36:16 +00:00
}
$text = " " ;
2019-01-17 13:20:56 -08:00
foreach ( $tbArray as $row )
2006-12-02 04:36:16 +00:00
{
2019-01-17 13:20:56 -08:00
$scArray = array (
'TITLE' => $row [ 'trackback_title' ],
'EXCERPT' => $row [ 'trackback_excerpt' ],
'BLOGNAME' => " <a href=' { $row [ 'trackback_url' ] } ' rel='external'> { $row [ 'trackback_blogname' ] } </a> "
);
$text .= $tp -> parseTemplate ( $TRACKBACK , false , $scArray );
2006-12-02 04:36:16 +00:00
}
if ( $TRACKBACK_RENDER_METHOD )
{
$ns -> tablerender ( " <a name='track'></a> " . COMLAN_315 , $text );
}
else
{
echo " <a name='track'></a> " . $text ;
}
}
else
{
echo " <a name='track'></a> " . COMLAN_316 ;
}
2012-12-01 21:08:44 +01:00
if ( ADMIN && getperms ( " B " ))
{
2010-01-09 12:06:15 +00:00
echo " <div style='text-align:right'><a href=' " . e_PLUGIN_ABS . " trackback/modtrackback.php? " . $id . " '> " . COMLAN_317 . " </a></div><br /> " ;
2006-12-02 04:36:16 +00:00
}
2020-12-29 10:04:33 -08:00
} */
2006-12-02 04:36:16 +00:00
2008-11-05 21:17:50 +00:00
2009-01-22 01:58:29 +00:00
//if (!strstr(e_QUERY, "poll"))
2008-11-05 21:17:50 +00:00
// If output buffering started, cache the result
2009-01-22 01:58:29 +00:00
if ( $comment_ob_start )
2007-12-08 14:49:56 +00:00
{
2009-01-22 01:58:29 +00:00
$cache = ob_get_contents ();
2015-02-15 16:07:27 -08:00
e107 :: getCache () -> set ( " comment.php? { $table } . { $field } " , $cache );
2008-11-05 21:17:50 +00:00
ob_end_flush (); // dump the buffer we started
2007-12-08 14:49:56 +00:00
}
2006-12-02 04:36:16 +00:00
require_once ( FOOTERF );