mirror of
https://github.com/phpbb/phpbb.git
synced 2025-05-21 14:59:46 +02:00
2f4a618900
Changes:
- Ascraeus now uses constants for the phpbb root path and the php extension. This ensures more security for external applications and modifications (no more overwriting of root path and extension possible through insecure mods and register globals enabled) as well as no more globalizing needed.
- A second change implemented here is an additional short-hand-notation for append_sid(). It is allowed to omit the root path and extension now (for example calling append_sid('memberlist')) - in this case the root path and extension get added automatically. The hook is called after these are added.
git-svn-id: file:///svn/phpbb/trunk@8572 89ea8834-ac86-4346-8a33-228a782c2dd0
279 lines
9.2 KiB
PHP
279 lines
9.2 KiB
PHP
<?php
|
|
/**
|
|
*
|
|
* @package mcp
|
|
* @version $Id$
|
|
* @copyright (c) 2005 phpBB Group
|
|
* @license http://opensource.org/licenses/gpl-license.php GNU Public License
|
|
*
|
|
*/
|
|
|
|
/**
|
|
* @ignore
|
|
*/
|
|
if (!defined('IN_PHPBB'))
|
|
{
|
|
exit;
|
|
}
|
|
|
|
/**
|
|
* MCP Front Panel
|
|
*/
|
|
function mcp_front_view($id, $mode, $action)
|
|
{
|
|
global $template, $db, $user, $auth, $module, $config;
|
|
|
|
// Latest 5 unapproved
|
|
if ($module->loaded('queue'))
|
|
{
|
|
$forum_list = get_forum_list('m_approve');
|
|
$post_list = array();
|
|
$forum_names = array();
|
|
|
|
$forum_id = request_var('f', 0);
|
|
|
|
$template->assign_var('S_SHOW_UNAPPROVED', (!empty($forum_list)) ? true : false);
|
|
|
|
if (!empty($forum_list))
|
|
{
|
|
$sql = 'SELECT COUNT(post_id) AS total
|
|
FROM ' . POSTS_TABLE . '
|
|
WHERE forum_id IN (0, ' . implode(', ', $forum_list) . ')
|
|
AND post_approved = 0';
|
|
$result = $db->sql_query($sql);
|
|
$total = (int) $db->sql_fetchfield('total');
|
|
$db->sql_freeresult($result);
|
|
|
|
if ($total)
|
|
{
|
|
$global_id = $forum_list[0];
|
|
|
|
$sql = 'SELECT forum_id, forum_name
|
|
FROM ' . FORUMS_TABLE . '
|
|
WHERE ' . $db->sql_in_set('forum_id', $forum_list);
|
|
$result = $db->sql_query($sql);
|
|
|
|
while ($row = $db->sql_fetchrow($result))
|
|
{
|
|
$forum_names[$row['forum_id']] = $row['forum_name'];
|
|
}
|
|
$db->sql_freeresult($result);
|
|
|
|
$sql = 'SELECT post_id
|
|
FROM ' . POSTS_TABLE . '
|
|
WHERE forum_id IN (0, ' . implode(', ', $forum_list) . ')
|
|
AND post_approved = 0
|
|
ORDER BY post_time DESC';
|
|
$result = $db->sql_query_limit($sql, 5);
|
|
|
|
while ($row = $db->sql_fetchrow($result))
|
|
{
|
|
$post_list[] = $row['post_id'];
|
|
}
|
|
$db->sql_freeresult($result);
|
|
|
|
if (empty($post_list))
|
|
{
|
|
$total = 0;
|
|
}
|
|
}
|
|
|
|
if ($total)
|
|
{
|
|
$sql = 'SELECT p.post_id, p.post_subject, p.post_time, p.poster_id, p.post_username, u.username, u.username_clean, t.topic_id, t.topic_title, t.topic_first_post_id, p.forum_id
|
|
FROM ' . POSTS_TABLE . ' p, ' . TOPICS_TABLE . ' t, ' . USERS_TABLE . ' u
|
|
WHERE ' . $db->sql_in_set('p.post_id', $post_list) . '
|
|
AND t.topic_id = p.topic_id
|
|
AND p.poster_id = u.user_id
|
|
ORDER BY p.post_time DESC';
|
|
$result = $db->sql_query($sql);
|
|
|
|
while ($row = $db->sql_fetchrow($result))
|
|
{
|
|
$global_topic = ($row['forum_id']) ? false : true;
|
|
if ($global_topic)
|
|
{
|
|
$row['forum_id'] = $global_id;
|
|
}
|
|
|
|
$template->assign_block_vars('unapproved', array(
|
|
'U_POST_DETAILS' => append_sid('mcp', 'i=queue&mode=approve_details&f=' . $row['forum_id'] . '&p=' . $row['post_id']),
|
|
'U_MCP_FORUM' => (!$global_topic) ? append_sid('mcp', 'i=main&mode=forum_view&f=' . $row['forum_id']) : '',
|
|
'U_MCP_TOPIC' => append_sid('mcp', 'i=main&mode=topic_view&f=' . $row['forum_id'] . '&t=' . $row['topic_id']),
|
|
'U_FORUM' => (!$global_topic) ? append_sid('viewforum', 'f=' . $row['forum_id']) : '',
|
|
'U_TOPIC' => append_sid('viewtopic', 'f=' . $row['forum_id'] . '&t=' . $row['topic_id']),
|
|
'U_AUTHOR' => ($row['poster_id'] == ANONYMOUS) ? '' : append_sid('memberlist', 'mode=viewprofile&u=' . $row['poster_id']),
|
|
|
|
'FORUM_NAME' => (!$global_topic) ? $forum_names[$row['forum_id']] : $user->lang['GLOBAL_ANNOUNCEMENT'],
|
|
'POST_ID' => $row['post_id'],
|
|
'TOPIC_TITLE' => $row['topic_title'],
|
|
'AUTHOR' => ($row['poster_id'] == ANONYMOUS) ? (($row['post_username']) ? $row['post_username'] : $user->lang['GUEST']) : $row['username'],
|
|
'SUBJECT' => ($row['post_subject']) ? $row['post_subject'] : $user->lang['NO_SUBJECT'],
|
|
'POST_TIME' => $user->format_date($row['post_time']))
|
|
);
|
|
}
|
|
$db->sql_freeresult($result);
|
|
}
|
|
|
|
$template->assign_vars(array(
|
|
'S_MCP_QUEUE_ACTION' => append_sid('mcp', 'i=queue'),
|
|
));
|
|
|
|
if ($total == 0)
|
|
{
|
|
$template->assign_vars(array(
|
|
'L_UNAPPROVED_TOTAL' => $user->lang['UNAPPROVED_POSTS_ZERO_TOTAL'],
|
|
'S_HAS_UNAPPROVED_POSTS' => false)
|
|
);
|
|
}
|
|
else
|
|
{
|
|
$template->assign_vars(array(
|
|
'L_UNAPPROVED_TOTAL' => ($total == 1) ? $user->lang['UNAPPROVED_POST_TOTAL'] : sprintf($user->lang['UNAPPROVED_POSTS_TOTAL'], $total),
|
|
'S_HAS_UNAPPROVED_POSTS' => true)
|
|
);
|
|
}
|
|
}
|
|
}
|
|
|
|
// Latest 5 reported
|
|
if ($module->loaded('reports'))
|
|
{
|
|
$forum_list = get_forum_list('m_report');
|
|
|
|
$template->assign_var('S_SHOW_REPORTS', (!empty($forum_list)) ? true : false);
|
|
|
|
if (!empty($forum_list))
|
|
{
|
|
$sql = 'SELECT COUNT(r.report_id) AS total
|
|
FROM ' . REPORTS_TABLE . ' r, ' . POSTS_TABLE . ' p
|
|
WHERE r.post_id = p.post_id
|
|
AND r.report_closed = 0
|
|
AND p.forum_id IN (0, ' . implode(', ', $forum_list) . ')';
|
|
$result = $db->sql_query($sql);
|
|
$total = (int) $db->sql_fetchfield('total');
|
|
$db->sql_freeresult($result);
|
|
|
|
if ($total)
|
|
{
|
|
$global_id = $forum_list[0];
|
|
|
|
$sql = $db->sql_build_query('SELECT', array(
|
|
'SELECT' => 'r.report_time, p.post_id, p.post_subject, p.post_time, u.username, u.username_clean, u.user_colour, u.user_id, u2.username as author_name, u2.username_clean as author_name_clean, u2.user_colour as author_colour, u2.user_id as author_id, t.topic_id, t.topic_title, f.forum_id, f.forum_name',
|
|
|
|
'FROM' => array(
|
|
REPORTS_TABLE => 'r',
|
|
REPORTS_REASONS_TABLE => 'rr',
|
|
TOPICS_TABLE => 't',
|
|
USERS_TABLE => array('u', 'u2'),
|
|
POSTS_TABLE => 'p'
|
|
),
|
|
|
|
'LEFT_JOIN' => array(
|
|
array(
|
|
'FROM' => array(FORUMS_TABLE => 'f'),
|
|
'ON' => 'f.forum_id = p.forum_id'
|
|
)
|
|
),
|
|
|
|
'WHERE' => 'r.post_id = p.post_id
|
|
AND r.report_closed = 0
|
|
AND r.reason_id = rr.reason_id
|
|
AND p.topic_id = t.topic_id
|
|
AND r.user_id = u.user_id
|
|
AND p.poster_id = u2.user_id
|
|
AND p.forum_id IN (0, ' . implode(', ', $forum_list) . ')',
|
|
|
|
'ORDER_BY' => 'p.post_time DESC'
|
|
));
|
|
$result = $db->sql_query_limit($sql, 5);
|
|
|
|
while ($row = $db->sql_fetchrow($result))
|
|
{
|
|
$global_topic = ($row['forum_id']) ? false : true;
|
|
if ($global_topic)
|
|
{
|
|
$row['forum_id'] = $global_id;
|
|
}
|
|
|
|
$template->assign_block_vars('report', array(
|
|
'U_POST_DETAILS' => append_sid('mcp', 'f=' . $row['forum_id'] . '&p=' . $row['post_id'] . "&i=reports&mode=report_details"),
|
|
'U_MCP_FORUM' => (!$global_topic) ? append_sid('mcp', 'f=' . $row['forum_id'] . "&i=$id&mode=forum_view") : '',
|
|
'U_MCP_TOPIC' => append_sid('mcp', 'f=' . $row['forum_id'] . '&t=' . $row['topic_id'] . "&i=$id&mode=topic_view"),
|
|
'U_FORUM' => (!$global_topic) ? append_sid('viewforum', 'f=' . $row['forum_id']) : '',
|
|
'U_TOPIC' => append_sid('viewtopic', 'f=' . $row['forum_id'] . '&t=' . $row['topic_id']),
|
|
|
|
'REPORTER_FULL' => get_username_string('full', $row['user_id'], $row['username'], $row['user_colour']),
|
|
'REPORTER' => get_username_string('username', $row['user_id'], $row['username'], $row['user_colour']),
|
|
'REPORTER_COLOUR' => get_username_string('colour', $row['user_id'], $row['username'], $row['user_colour']),
|
|
'U_REPORTER' => get_username_string('profile', $row['user_id'], $row['username'], $row['user_colour']),
|
|
|
|
'AUTHOR_FULL' => get_username_string('full', $row['author_id'], $row['author_name'], $row['author_colour']),
|
|
'AUTHOR' => get_username_string('username', $row['author_id'], $row['author_name'], $row['author_colour']),
|
|
'AUTHOR_COLOUR' => get_username_string('colour', $row['author_id'], $row['author_name'], $row['author_colour']),
|
|
'U_AUTHOR' => get_username_string('profile', $row['author_id'], $row['author_name'], $row['author_colour']),
|
|
|
|
'FORUM_NAME' => (!$global_topic) ? $row['forum_name'] : $user->lang['GLOBAL_ANNOUNCEMENT'],
|
|
'TOPIC_TITLE' => $row['topic_title'],
|
|
'SUBJECT' => ($row['post_subject']) ? $row['post_subject'] : $user->lang['NO_SUBJECT'],
|
|
'REPORT_TIME' => $user->format_date($row['report_time']),
|
|
'POST_TIME' => $user->format_date($row['post_time']),
|
|
));
|
|
}
|
|
}
|
|
|
|
if ($total == 0)
|
|
{
|
|
$template->assign_vars(array(
|
|
'L_REPORTS_TOTAL' => $user->lang['REPORTS_ZERO_TOTAL'],
|
|
'S_HAS_REPORTS' => false)
|
|
);
|
|
}
|
|
else
|
|
{
|
|
$template->assign_vars(array(
|
|
'L_REPORTS_TOTAL' => ($total == 1) ? $user->lang['REPORT_TOTAL'] : sprintf($user->lang['REPORTS_TOTAL'], $total),
|
|
'S_HAS_REPORTS' => true)
|
|
);
|
|
}
|
|
}
|
|
}
|
|
|
|
// Latest 5 logs
|
|
if ($module->loaded('logs'))
|
|
{
|
|
$forum_list = get_forum_list('m_');
|
|
|
|
if (!empty($forum_list))
|
|
{
|
|
// Add forum_id 0 for global announcements
|
|
$forum_list[] = 0;
|
|
|
|
$log_count = 0;
|
|
$log = array();
|
|
view_log('mod', $log, $log_count, 5, 0, $forum_list);
|
|
|
|
foreach ($log as $row)
|
|
{
|
|
$template->assign_block_vars('log', array(
|
|
'USERNAME' => $row['username_full'],
|
|
'IP' => $row['ip'],
|
|
'TIME' => $user->format_date($row['time']),
|
|
'ACTION' => $row['action'],
|
|
'U_VIEW_TOPIC' => (!empty($row['viewtopic'])) ? $row['viewtopic'] : '',
|
|
'U_VIEWLOGS' => (!empty($row['viewlogs'])) ? $row['viewlogs'] : '')
|
|
);
|
|
}
|
|
}
|
|
|
|
$template->assign_vars(array(
|
|
'S_SHOW_LOGS' => (!empty($forum_list)) ? true : false,
|
|
'S_HAS_LOGS' => (!empty($log)) ? true : false)
|
|
);
|
|
}
|
|
|
|
$template->assign_var('S_MCP_ACTION', append_sid('mcp'));
|
|
make_jumpbox(append_sid('mcp', 'i=main&mode=forum_view'), 0, false, 'm_', true);
|
|
}
|
|
|
|
?>
|