mirror of
https://github.com/phpbb/phpbb.git
synced 2025-01-31 13:48:04 +01:00
154 lines
4.5 KiB
PHP
154 lines
4.5 KiB
PHP
<?php
|
|
/***************************************************************************
|
|
* report.php
|
|
* -------------------
|
|
* begin : July 4, 2001
|
|
* copyright : (C) 2001 The phpBB Group
|
|
* email : support@phpbb.com
|
|
*
|
|
* $Id$
|
|
*
|
|
***************************************************************************/
|
|
|
|
/***************************************************************************
|
|
*
|
|
* This program is free software; you can redistribute it and/or modify
|
|
* it under the terms of the GNU General Public License as published by
|
|
* the Free Software Foundation; either version 2 of the License, or
|
|
* (at your option) any later version.
|
|
*
|
|
***************************************************************************/
|
|
|
|
define('IN_PHPBB', true);
|
|
$phpbb_root_path = './';
|
|
include($phpbb_root_path . 'extension.inc');
|
|
include($phpbb_root_path . 'common.'.$phpEx);
|
|
|
|
// Start session management
|
|
$user->start();
|
|
$user->setup();
|
|
$auth->acl($user->data);
|
|
// End session management
|
|
|
|
// var definitions
|
|
$post_id = (!empty($_REQUEST['p'])) ? intval($_REQUEST['p']) : 0;
|
|
$reason_id = (!empty($_REQUEST['reason_id'])) ? intval($_REQUEST['reason_id']) : 0;
|
|
$notify = (!empty($_REQUEST['notify']) && $user->data['user_id'] != ANONYMOUS) ? TRUE : FALSE;
|
|
$description = (!empty($_REQUEST['description'])) ? stripslashes($_REQUEST['description']) : '';
|
|
|
|
// Start output of page
|
|
$page_title = $user->lang['REPORT_TO_ADMIN'];
|
|
include($phpbb_root_path . 'includes/page_header.' . $phpEx);
|
|
|
|
$sql = 'SELECT f.*, t.*, p.*
|
|
FROM ' . POSTS_TABLE . ' p, ' . TOPICS_TABLE . ' t, ' . FORUMS_TABLE . " f
|
|
WHERE p.post_id = $post_id
|
|
AND p.topic_id = t.topic_id
|
|
AND p.forum_id = f.forum_id";
|
|
$result = $db->sql_query($sql);
|
|
|
|
if (!$row = $db->sql_fetchrow($result))
|
|
{
|
|
trigger_error('POST_NOT_EXIST');
|
|
}
|
|
|
|
$forum_id = $row['forum_id'];
|
|
$topic_id = $row['topic_id'];
|
|
|
|
// Checking permissions
|
|
if (!$auth->acl_get('f_list', $forum_id))
|
|
{
|
|
trigger_error('POST_NOT_EXIST');
|
|
}
|
|
if (!$auth->acl_get('f_read', $forum_id))
|
|
{
|
|
trigger_error('USER_CANNOT_READ');
|
|
}
|
|
if (!$auth->acl_get('f_report', $forum_id))
|
|
{
|
|
trigger_error('USER_CANNOT_REPORT');
|
|
}
|
|
|
|
// Has the report been cancelled?
|
|
if (isset($_POST['cancel']))
|
|
{
|
|
redirect("viewtopic.$phpEx$SID&p=$post_id#$post_id");
|
|
}
|
|
|
|
// Has the report been confirmed?
|
|
if (!empty($_POST['reason_id']))
|
|
{
|
|
$result = $db->sql_query('SELECT reason_name FROM ' . REASONS_TABLE . " WHERE reason_id = $reason_id");
|
|
$row = $db->sql_fetchrow($result);
|
|
if (!$row || (!$description && $row['reason_name'] == 'other'))
|
|
{
|
|
trigger_error('EMPTY_REPORT');
|
|
}
|
|
|
|
$sql_ary = array(
|
|
'reason_id' => (int) $reason_id,
|
|
'post_id' => (int) $post_id,
|
|
'user_id' => (int) $user->user_id,
|
|
'user_notify' => (int) $notify,
|
|
'report_time' => (int) time(),
|
|
'report_text' => (string) $description
|
|
);
|
|
|
|
$sql = 'INSERT INTO ' . REPORTS_TABLE . $db->sql_build_array('INSERT', $sql_ary);
|
|
$db->sql_query($sql);
|
|
|
|
if (!$row['post_reported'])
|
|
{
|
|
$db->sql_query('UPDATE ' . POSTS_TABLE . ' SET post_reported = 1 WHERE post_id = ' . $post_id);
|
|
}
|
|
if (!$row['topic_reported'])
|
|
{
|
|
$db->sql_query('UPDATE ' . TOPICS_TABLE . ' SET topic_reported = 1 WHERE topic_id = ' . $topic_id);
|
|
}
|
|
|
|
trigger_error($user->lang['POST_REPORTED_SUCCESS'] . '<br /><br />' . sprintf($user->lang['RETURN_TOPIC'], "<a href=\"viewtopic.$phpEx$SID&p=$post_id#$post_id\">", '</a>'));
|
|
|
|
// TODO: warn moderators or something ;)
|
|
}
|
|
|
|
// Generate the form
|
|
|
|
generate_forum_nav($row);
|
|
|
|
$result = $db->sql_query('SELECT * FROM ' . REASONS_TABLE . ' ORDER BY reason_priority ASC');
|
|
while ($row = $db->sql_fetchrow($result))
|
|
{
|
|
if (!empty($user->lang['report_reasons']['title'][$row['reason_name']]))
|
|
{
|
|
$reason_name = $user->lang['report_reasons']['title'][$row['reason_name']];
|
|
}
|
|
else
|
|
{
|
|
$reason_name = ucwords(str_replace('_', ' ', $row['reason_name']));
|
|
}
|
|
|
|
if (!empty($user->lang['report_reasons']['description'][$row['reason_name']]))
|
|
{
|
|
$reason_description = $user->lang['report_reasons']['description'][$row['reason_name']];
|
|
}
|
|
else
|
|
{
|
|
$reason_description = $row['reason_description'];
|
|
}
|
|
|
|
$template->assign_block_vars('reason', array(
|
|
'ID' => $row['reason_id'],
|
|
'NAME' => htmlspecialchars($reason_name),
|
|
'DESCRIPTION' => htmlspecialchars($reason_description)
|
|
));
|
|
}
|
|
|
|
$template->assign_var('S_CAN_NOTIFY', ($user->data['user_id'] == ANONYMOUS) ? FALSE : TRUE);
|
|
$template->set_filenames(array(
|
|
'body' => 'report.html'
|
|
));
|
|
|
|
include($phpbb_root_path . 'includes/page_tail.' . $phpEx);
|
|
|
|
|
|
?>
|