mirror of
				https://github.com/slawkens/myaac.git
				synced 2025-10-22 13:25:54 +02:00 
			
		
		
		
	 f3745a2752
			
		
	
	f3745a2752
	
	
	
		
			
			* Remove unneeded escape * Fix guild back buttons (change logo & motd) * small adjustment in news.php * Fix create character when admin (any case is allowed now) * Fix forum table style (boards & thread view) * Small improvement to plugins.enabled check * [WIP] nikic/fast-route implementation I will describe it more in Pull Request * Optimisations & fixes. * Fix path - should not be absolute * Add PLUGINS to Twig path * Don't hide "Install Plugin" Box by default * Update package-lock.json * nothing important, just early exit & fixes Fix creature display * fix premium_ends_at for tfs 1.3+ * Move pages * Move pages tbc * $db->select: make $where parameter optional, allows to get all records * Add some error box to error * fix parse error * Rewriting the router v2 To be more flexible * small fixes * fix & add admin icons * Move mass_* pages to correct folder * fix logout hook 2 * Delete accountmanagement.php * This code wasn't used * Add missing var * Add redirect_from && redirect_to to router options + Also add * for all methods shortcut * Remove comments Not allowed in normal json * Allow admin pages included into plugins dir * block access to some files * Fix admin logout * Fix #178 * feature: mail confirmed reward Suggested by @EPuncker # Conflicts: # system/hooks.php * remove misleading comment * adjust required version according to composer.json * fix duplicated word * Adjustments & fixed to mass actions * Add password confirm, and change text type to password * Add list of Open Source Software MyAAC is using * Fix signature * Show First, Second instead of numbers * fix base dir detection * fix double ACTION define + undefined URI in template * new function> escapeHtml + fix css in admin menus * fix changelog add * fix news adding, rename const to NEWS_* * Add verify to pages, add messages, limits, fix add * fix "Please fill all input" * add required input to admin pages * shorten some expressions with ?? * shorten code + fix conversion (int) * Move account_types to config, account.web_flags to common.php * Update example.json * feature: router aliases * shorten some code + const convert * remove wrong char * fix signature on custom basedir * fix: mass teleport position validation (#214) * fix: mass teleport position validation * fix: max position * Fix execute in CLI * fix warning in reload cache in dev mode * Configurable admin panel folder * feature: plugin require more options with comma * $config_account_salt -> USE_ACCOUNT_SALT * fix forum show_thread * Update show_thread.php --------- Co-authored-by: Gabriel Pedro <gpedro@users.noreply.github.com>
		
			
				
	
	
		
			133 lines
		
	
	
		
			6.7 KiB
		
	
	
	
		
			PHP
		
	
	
	
	
	
			
		
		
	
	
			133 lines
		
	
	
		
			6.7 KiB
		
	
	
	
		
			PHP
		
	
	
	
	
	
| <?php
 | |
| /**
 | |
|  * New forum post
 | |
|  *
 | |
|  * @package   MyAAC
 | |
|  * @author    Gesior <jerzyskalski@wp.pl>
 | |
|  * @author    Slawkens <slawkens@gmail.com>
 | |
|  * @copyright 2019 MyAAC
 | |
|  * @link      https://my-aac.org
 | |
|  */
 | |
| defined('MYAAC') or die('Direct access not allowed!');
 | |
| 
 | |
| require __DIR__ . '/base.php';
 | |
| 
 | |
| if(!$logged)
 | |
| {
 | |
| 	$extra_url = '';
 | |
| 	if(isset($_GET['thread_id'])) {
 | |
| 		$extra_url = '&action=new_post&thread_id=' . $_GET['thread_id'];
 | |
| 	}
 | |
| 
 | |
| 	header('Location: ' . BASE_URL . '?subtopic=accountmanagement&redirect=' . BASE_URL . urlencode('?subtopic=forum' . $extra_url));
 | |
| 	return;
 | |
| }
 | |
| 
 | |
| if(Forum::canPost($account_logged))
 | |
| {
 | |
| 	$players_from_account = $db->query("SELECT `players`.`name`, `players`.`id` FROM `players` WHERE `players`.`account_id` = ".(int) $account_logged->getId())->fetchAll();
 | |
| 	$thread_id = isset($_REQUEST['thread_id']) ? (int) $_REQUEST['thread_id'] : 0;
 | |
| 	if($thread_id == 0) {
 | |
| 		echo "Thread with this id doesn't exist.";
 | |
| 		return;
 | |
| 	}
 | |
| 
 | |
| 	$thread = $db->query("SELECT `" . FORUM_TABLE_PREFIX . "forum`.`post_topic`, `" . FORUM_TABLE_PREFIX . "forum`.`id`, `" . FORUM_TABLE_PREFIX . "forum`.`section` FROM `" . FORUM_TABLE_PREFIX . "forum` WHERE `" . FORUM_TABLE_PREFIX . "forum`.`id` = ".(int) $thread_id." AND `" . FORUM_TABLE_PREFIX . "forum`.`first_post` = ".(int) $thread_id." LIMIT 1")->fetch();
 | |
| 	echo '<a href="' . getLink('forum') . '">Boards</a> >> <a href="' . getForumBoardLink($thread['section']) . '">'.$sections[$thread['section']]['name'].'</a> >> <a href="' . getForumThreadLink($thread_id) . '">'.$thread['post_topic'].'</a> >> <b>Post new reply</b><br /><h3>'.$thread['post_topic'].'</h3>';
 | |
| 	if(isset($thread['id']) && Forum::hasAccess($thread['section']))
 | |
| 	{
 | |
| 		$quote = isset($_REQUEST['quote']) ? (int) $_REQUEST['quote'] : NULL;
 | |
| 		$text = isset($_REQUEST['text']) ? stripslashes(trim($_REQUEST['text'])) : NULL;
 | |
| 		$char_id = (int) (isset($_REQUEST['char_id']) ? $_REQUEST['char_id'] : 0);
 | |
| 		$post_topic = isset($_REQUEST['topic']) ? stripslashes(trim($_REQUEST['topic'])) : '';
 | |
| 		$smile = (isset($_REQUEST['smile']) ? (int)$_REQUEST['smile'] : 0);
 | |
| 		$html = (isset($_REQUEST['html']) ? (int)$_REQUEST['html'] : 0);
 | |
| 		$saved = false;
 | |
| 		if(isset($_REQUEST['quote']))
 | |
| 		{
 | |
| 			$quoted_post = $db->query("SELECT `players`.`name`, `" . FORUM_TABLE_PREFIX . "forum`.`post_text`, `" . FORUM_TABLE_PREFIX . "forum`.`post_date` FROM `players`, `" . FORUM_TABLE_PREFIX . "forum` WHERE `players`.`id` = `" . FORUM_TABLE_PREFIX . "forum`.`author_guid` AND `" . FORUM_TABLE_PREFIX . "forum`.`id` = ".(int) $quote)->fetchAll();
 | |
| 			if(isset($quoted_post[0]['name']))
 | |
| 				$text = '[i]Originally posted by '.$quoted_post[0]['name'].' on '.date('d.m.y H:i:s', $quoted_post[0]['post_date']).':[/i][quote]'.$quoted_post[0]['post_text'].'[/quote]';
 | |
| 		}
 | |
| 		elseif(isset($_REQUEST['save']))
 | |
| 		{
 | |
| 			$lenght = 0;
 | |
| 			for($i = 0; $i < strlen($text); $i++)
 | |
| 			{
 | |
| 				if(ord($text[$i]) >= 33 && ord($text[$i]) <= 126)
 | |
| 					$lenght++;
 | |
| 			}
 | |
| 			if($lenght < 1 || strlen($text) > 15000)
 | |
| 				$errors[] = 'Too short or too long post (short: '.$lenght.' long: '.strlen($text).' letters). Minimum 1 letter, maximum 15000 letters.';
 | |
| 			if($char_id == 0)
 | |
| 				$errors[] = 'Please select a character.';
 | |
| 
 | |
| 			$player_on_account = false;
 | |
| 			if(count($errors) == 0)
 | |
| 			{
 | |
| 				foreach($players_from_account as $player)
 | |
| 					if($char_id == $player['id'])
 | |
| 						$player_on_account = true;
 | |
| 				if(!$player_on_account)
 | |
| 					$errors[] = 'Player with selected ID '.$char_id.' doesn\'t exist or isn\'t on your account';
 | |
| 			}
 | |
| 			if(count($errors) == 0)
 | |
| 			{
 | |
| 				$last_post = 0;
 | |
| 				$query = $db->query('SELECT post_date FROM ' . FORUM_TABLE_PREFIX . 'forum ORDER BY post_date DESC LIMIT 1');
 | |
| 				if($query->rowCount() > 0)
 | |
| 				{
 | |
| 					$query = $query->fetch();
 | |
| 					$last_post = $query['post_date'];
 | |
| 				}
 | |
| 				if($last_post+$config['forum_post_interval']-time() > 0 && !Forum::isModerator())
 | |
| 					$errors[] = 'You can post one time per '.$config['forum_post_interval'].' seconds. Next post after '.($last_post+$config['forum_post_interval']-time()).' second(s).';
 | |
| 			}
 | |
| 			if(count($errors) == 0)
 | |
| 			{
 | |
| 				$saved = true;
 | |
| 				Forum::add_post($thread['id'], $thread['section'], $account_logged->getId(), (int) $char_id, $text, $post_topic, $smile, $html, time(), $_SERVER['REMOTE_ADDR']);
 | |
| 				$db->query("UPDATE `" . FORUM_TABLE_PREFIX . "forum` SET `replies`=`replies`+1, `last_post`=".time()." WHERE `id` = ".(int) $thread_id);
 | |
| 				$post_page = $db->query("SELECT COUNT(`" . FORUM_TABLE_PREFIX . "forum`.`id`) AS posts_count FROM `players`, `" . FORUM_TABLE_PREFIX . "forum` WHERE `players`.`id` = `" . FORUM_TABLE_PREFIX . "forum`.`author_guid` AND `" . FORUM_TABLE_PREFIX . "forum`.`post_date` <= ".time()." AND `" . FORUM_TABLE_PREFIX . "forum`.`first_post` = ".(int) $thread['id'])->fetch();
 | |
| 				$_page = (int) ceil($post_page['posts_count'] / $config['forum_threads_per_page']) - 1;
 | |
| 				header('Location: ' . getForumThreadLink($thread_id, $_page));
 | |
| 				echo '<br />Thank you for posting.<br /><a href="' . getForumThreadLink($thread_id, $_page) . '">GO BACK TO LAST THREAD</a>';
 | |
| 			}
 | |
| 		}
 | |
| 
 | |
| 		if(!$saved)
 | |
| 		{
 | |
| 			if(!empty($errors))
 | |
| 				$twig->display('error_box.html.twig', array('errors' => $errors));
 | |
| 
 | |
| 			$threads = $db->query("SELECT `players`.`name`, `" . FORUM_TABLE_PREFIX . "forum`.`post_text`, `" . FORUM_TABLE_PREFIX . "forum`.`post_topic`, `" . FORUM_TABLE_PREFIX . "forum`.`post_smile`, `" . FORUM_TABLE_PREFIX . "forum`.`post_html`, `" . FORUM_TABLE_PREFIX . "forum`.`author_aid` FROM `players`, `" . FORUM_TABLE_PREFIX . "forum` WHERE `players`.`id` = `" . FORUM_TABLE_PREFIX . "forum`.`author_guid` AND `" . FORUM_TABLE_PREFIX . "forum`.`first_post` = ".(int) $thread_id." ORDER BY `" . FORUM_TABLE_PREFIX . "forum`.`post_date` DESC LIMIT 5")->fetchAll();
 | |
| 			foreach($threads as &$thread) {
 | |
| 				$player_account = new OTS_Account();
 | |
| 				$player_account->load($thread['author_aid']);
 | |
| 				if($player_account->isLoaded()) {
 | |
| 					$thread['post'] = Forum::showPost(($thread['post_html'] > 0 ? $thread['post_topic'] : htmlspecialchars($thread['post_topic'])), ($thread['post_html'] > 0 ? $thread['post_text'] : htmlspecialchars($thread['post_text'])), $thread['post_smile'] == 0, $thread['post_html'] > 0);
 | |
| 				}
 | |
| 			}
 | |
| 
 | |
| 			$twig->display('forum.new_post.html.twig', array(
 | |
| 				'thread_id' => $thread_id,
 | |
| 				'post_player_id' => $char_id,
 | |
| 				'players' => $players_from_account,
 | |
| 				'post_topic' => $post_topic,
 | |
| 				'post_text' => $text,
 | |
| 				'post_smile' => $smile > 0,
 | |
| 				'post_html' => $html > 0,
 | |
| 				'topic' => $thread['post_topic'],
 | |
| 				'threads' => $threads,
 | |
| 				'canEdit' => $canEdit
 | |
| 			));
 | |
| 		}
 | |
| 	}
 | |
| 	else
 | |
| 		echo "Thread with ID " . $thread_id . " doesn't exist.";
 | |
| }
 | |
| else
 | |
| 	echo "Your account is banned, deleted or you don't have any player with level " . $config['forum_level_required'] . " on your account. You can't post.";
 | |
| 
 | |
| $twig->display('forum.fullscreen.html.twig');
 |