twin/jul
1
0
Fork 0
mirror of https://github.com/Xkeeper0/jul.git synced 2025-05-19 08:40:21 -07:00
Code Issues Packages Projects Releases Wiki Activity
jul/newreply.php
Xkeeper aee0a574c0 First (real) commit... I hope.
2011-11-09 22:35:59 -08:00

317 lines
13 KiB
PHP
Raw Permalink Blame History

<?php
// die("Disabled.");
require 'lib/function.php';
require 'lib/layout.php';
$threads=mysql_query("SELECT forum, closed, sticky,title,lastposter FROM threads WHERE id=$id");
$thread=mysql_fetch_array($threads);
$thread[title]=str_replace('<','&lt;',$thread[title]);
$smilies=readsmilies();
if(!$ppp) $ppp=(!$log?20:$loguser[postsperpage]);
$forumid=intval($thread[forum]);
$fonline=fonlineusers($forumid);
$header=makeheader($header1,$headlinks,$header2 ." $tblstart$tccell1s>$fonline$tblend");
$forums=mysql_query("SELECT title,minpower,minpowerreply,id FROM forums WHERE id=$forumid");
$forum=mysql_fetch_array($forums);
if(@mysql_num_rows(mysql_query("SELECT user FROM forummods WHERE forum=$forumid and user=$loguserid"))) $ismod=1;
if ($ismod) {
if ($thread[sticky] == 1) $sticky = "checked";
$modoptions = " <tr>$tccell1><b>Moderator Options:</b></td>$tccell2l colspan=2>
$inpc=\"close\" id=\"close\" value=\"1\"><label for=\"close\">Close</label> -
$inpc=\"stick\" id=\"stick\" value=\"1\" $sticky><label for=\"stick\">Sticky</label>";
}
if ($forum[minpowerreply] > $power && $forum[minpowerreply] > 0) {
$thread[title] = 'Restricted thread';
$restricted = true;
}
$header = "$header
$fonttag<a href=index.php>$boardname</a> - <a href=forum.php?id=$forumid>$forum[title]</a> - ". ($restricted ? "Restricted thread" : "$thread[title]") ."<form action=newreply.php name=replier method=post> $tblstart";
replytoolbar(1);
if($log) activitycheck($loguserid);
if(!$_POST[action] && !$thread[closed] && !($banned && $log) && ($power>=$forum[minpowerreply] or $forum[minpowerreply]<1) && $id>0) {
print $header;
print "";
if($log){
$username=$loguser[name];
$password=$logpassword;
}
if($postid){
$posts=mysql_query("SELECT user,text,thread FROM posts,posts_text WHERE id=$postid AND id=pid");
$post=mysql_fetch_array($posts);
$post[text]=str_replace('<br>',$br,$post[text]);
$u=$post[user];
$users[$u]=loaduser($u,1);
if($post[thread]==$id) $quotemsg="[quote=".$users[$u][name]."]$post[text][/quote]
";
}
$postlist="$tccellh width=150>User</td>$tccellh>Post<tr>";
$threadpostcount=0;
$ppp++;
$posts=mysql_query("SELECT name,posts,sex,powerlevel,user,text,options,num FROM users u,posts p,posts_text WHERE thread=$id AND p.id=pid AND user=u.id ORDER BY p.id DESC LIMIT $ppp");
while($post=mysql_fetch_array($posts)){
$bg='tdbg1';
$threadpostcount++;
if($threadpostcount<$ppp){
if(round($threadpostcount/2)==$threadpostcount/2) $bg='tdbg2';
$postnum=($post[num]?"$post[num]/":'');
$tcellbg="<td class='tbl $bg font' valign=top>";
$namecolor=getnamecolor($post[sex],$post[powerlevel]);
$postlist.="
$tcellbg<a href=profile.php?id=$post[user]><font $namecolor>$post[name]</font></a>$smallfont<br>
Posts: $postnum$post[posts]</td>
$tcellbg".doreplace2(dofilters($post[text]), $post[options])."<tr>
";
}else{
$tcellbg="<td bgcolor=$tablebg1 valign=top colspan=2";
$postlist.="<td colspan=2 class='tbl $bg font'>This is a long thread. Click <a href=thread.php?id=$id>here</a> to view it.</td>";
}
}
print "
<body>
$tccellh width=150>&nbsp</td>$tccellh>&nbsp<tr>
$tccell1><b>User name:</td> $tccell2l>$inpt=username VALUE=\"".htmlspecialchars($username)."\" SIZE=25 MAXLENGTH=25><tr>
$tccell1><b>Password:</td> $tccell2l>$inpp=password VALUE=\"".htmlspecialchars($password)."\" SIZE=13 MAXLENGTH=32><tr>
$tccell1><b>Reply:</td>
$tccell2l>".replytoolbar(2)."
$txta=message ROWS=20 COLS=$numcols style=\"width: 100%; max-width: 800px;\" ".replytoolbar(3).">". htmlspecialchars($quotemsg) ."</TEXTAREA>
<tr>
$tccell1><b>Mood avatar:</td> $tccell2l>". moodlist() ."<tr>
$tccell1>&nbsp</td>$tccell2l>
$inph=action VALUE=postreply>
$inph=id VALUE=$id>
$inph=valid value=\"". md5($_SERVER['REMOTE_ADDR'] . $id ."sillysaltstring") ."\">
$inps=submit VALUE=\"Submit reply\">
$inps=preview VALUE=\"Preview reply\"></td>
<tr>$tccell1><b>Options:</b></td>$tccell2l>
$inpc=\"nosmilies\" id=\"nosmilies\" value=\"1\"><label for=\"nosmilies\">Disable Smilies</label> -
$inpc=\"nolayout\" id=\"nolayout\" value=\"1\"><label for=\"nolayout\">Disable Layout</label> -
$inpc=\"nohtml\" id=\"nohtml\" value=\"1\"><label for=\"nohtml\">Disable HTML</label></td></tr>
$modoptions
$tblend
<br>
$tblstart$postlist$tblend
</table>
</form>
$fonttag<a href=index.php>$boardname</a> - <a href=forum.php?id=$forumid>$forum[title]</a> - $thread[title]
".replytoolbar(4);
} elseif(!$_POST[action]) {
print $header;
print "$tccell1>You are not allowed to post in this thread.</table>";
}
if($_POST[action]=='postreply' && !($banned && $log) && $id>0) {
$userid=checkuser($username,$password);
if (stripos($message, "i hate metal man!!") !== false) {
xk_ircsend("1|". xk(4) ."NO BONUS!". xk() ." Seems that ". xk(11) ."'$username'". xk() ." is another rereg, so I've banned his account (". xk(11) ."$userid". xk() .") and IP (". xk(11) ."$userip". xk() .").");
$sql -> query("UPDATE `users` SET `power` = '-1', `title` = 'Get out.' WHERE `id` = '$userid'");
$sql -> query("INSERT INTO `ipbans` SET `ip` = '". $_SERVER['REMOTE_ADDR'] ."', `date` = '". ctime() ."', `reason` = 'NO BONUS'");
die("Winners don't do drugs!");
}
$error='';
if($userid==-1)
$error="Either you didn't enter an existing username, or you haven't entered the right password for the username.";
else{
$user=@mysql_fetch_array(mysql_query("SELECT * FROM users WHERE id=$userid"));
// if($thread[lastposter]==$userid && $user[powerlevel]<=2)
// $error='You already have the last reply in this thread.';
if($thread[closed])
$error='The thread is closed and no more replies can be posted.';
if($user[powerlevel]<$forum[minpowerreply])
$error='Replying in this forum is restricted, and you are not allowed to post in this forum.';
if(!$message)
$error="You didn't enter anything in the post.";
}
if(!$error){
activitycheck($userid);
$sign=$user[signature];
$head=$user[postheader];
if($user[postbg]) $head="<div style=background:url($user[postbg]);height=100%>$head";
$numposts=$user[posts]+1;
$numdays=(ctime()-$user[regdate])/86400;
$message=doreplace($message,$numposts,$numdays,$username);
$rsign=doreplace($sign,$numposts,$numdays,$username);
$rhead=doreplace($head,$numposts,$numdays,$username);
$currenttime=ctime();
if($submit){
if (!(!$x_hacks['host'] && $userid == 715) || true) {
mysql_query("UPDATE `users` SET `posts` = `posts` + 1, `lastposttime` = '$currenttime' WHERE `id` = '$userid'");
if ($nolayout) {
$headid = 0;
$signid = 0;
} else {
$headid=getpostlayoutid($head);
$signid=getpostlayoutid($sign);
}
if ($ismod) {
if ($close) $close = "`closed` = '1',";
else $close = "`closed` = '0',";
if ($stick) $stick = "`sticky` = '1',";
else $stick = "`sticky` = '0',";
}
mysql_query("INSERT INTO posts (thread,user,date,ip,num,headid,signid,moodid) VALUES ($id,$userid,$currenttime,'$userip',$numposts,$headid,$signid,'". $_POST['moodid'] ."')");
$pid=mysql_insert_id();
$options = intval($nosmilies) . "|" . intval($nohtml);
if($pid) mysql_query("INSERT INTO `posts_text` (`pid`,`text`,`tagval`, `options`) VALUES ('$pid','$message','$tagval', '$options')");
if (in_array($id, array(3424, 3425, 3426, 3816, 4907)) && !$x_hacks['host']) {
$lastgmpost = $sql -> resultq("SELECT MAX(`id`) FROM `posts` WHERE `user` = '24' AND `thread` = '$id'");
if ($id == 3424) {
$inarray = "49, 203, 41, 29";
} elseif ($id == 3425) {
$inarray = "3, 25, 14, 22";
} elseif ($id == 3426) {
$inarray = "61, 1, 18, 555";
} elseif ($id == 3816) {
$inarray = "4, 10, 66, 125";
} elseif ($id == 4907) {
$inarray = "18, 19, 21, 2";
}
$playerposts = $sql -> resultq("SELECT COUNT(DISTINCT `user`) FROM `posts` WHERE `user` IN ($inarray) AND `thread` = '$id' AND `id` > '$lastgmpost'");
if ($playerposts >= 4) $stick .= " `icon` = 'images/piticon-ok.png',";
else $stick .= " `icon` = 'images/piticon-wait.png',";
}
mysql_query("UPDATE `threads` SET $close $stick `replies` = `replies` + 1, `lastpostdate` = '$currenttime', `lastposter` = '$userid' WHERE `id`='$id'");
mysql_query("UPDATE `forums` SET `numposts` = `numposts` + 1, `lastpostdate` = '$currenttime', `lastpostuser` ='$userid', `lastpostid` = '$pid' WHERE `id`='$forumid'");
mysql_query("UPDATE `threadsread` SET `read` = '0' WHERE `tid` = '$id'");
mysql_query("REPLACE INTO threadsread SET `uid` = '$userid', `tid` = '$id', `time` = ". ctime() .", `read` = '1'");
/*
print "
$tccell1>Reply posted successfully!
<br>".redirect("thread.php?pid=$pid#$pid", $thread[title], 0) .$tblend;
*/
xk_ircout("reply", $user['name'], array(
'forum' => $forum['title'],
'fid' => $forumid,
'thread' => str_replace("&lt;", "<", $thread['title']),
'pid' => $pid,
'pow' => $forum['minpower'],
));
if (in_array($id, array(3426, 4907, 6358)) && !$x_hacks['host'] && false) {
relay_vgg($id, $userid, $username, $message);
}
return header("Location: thread.php?pid=$pid#$pid");
} else {
print "
$tccell1>Reply posted successfully!
<br>".redirect("thread.php?id=$id", $thread[title], 0) .$tblend;
}
}else{
loadtlayout();
$message = stripslashes($message);
$ppost=$user;
$ppost[uid]=$userid;
$ppost[num]=$numposts;
$ppost[posts]++;
$ppost[lastposttime]=$currenttime;
$ppost[date]=$currenttime;
$ppost[moodid]=$_POST['moodid'];
if ($nolayout) {
$ppost[headtext] = "";
$ppost[signtext] = "";
} else {
$ppost[headtext]=$rhead;
$ppost[signtext]=$rsign;
}
$ppost[text]=$message;
$ppost[options] = $nosmilies . "|" . $nohtml;
if($isadmin) $ip=$userip;
if ($nosmilies) $nosmilieschk = " checked";
if ($nohtml) $nohtmlchk = " checked";
if ($nolayout) $nolayoutchk = " checked";
print "$header
<body onload=window.document.REPLIER.message.focus()>
$tccellh>Post preview
$tblend$tblstart
".threadpost($ppost,1)."
$tblend<br>$tblstart
<FORM ACTION=newreply.php NAME=REPLIER METHOD=POST>
$tccellh width=150>&nbsp</td>$tccellh>&nbsp<tr>
$tccell1><b>Reply:</td>
$tccell2l>$txta=message ROWS=20 COLS=$numcols style=\"width: 100%; max-width: 800px;\">". htmlspecialchars($message) ."</TEXTAREA><tr>
$tccell1 width=150><b>Mood avatar:</b></td>$tccell2l>". moodlist($_POST['moodid']) ."<tr>
$tccell1>&nbsp</td>$tccell2l>
$inps=submit VALUE=\"Submit reply\">
$inps=preview VALUE=\"Preview reply\"></td>
$inph=username VALUE=\"".htmlspecialchars($username)."\">
$inph=password VALUE=\"".htmlspecialchars($password)."\">
$inph=valid value=\"". md5($_SERVER['REMOTE_ADDR'] . $id ."sillysaltstring") ."\">
$inph=action VALUE=postreply>
$inph=id VALUE=$id>
<tr>$tccell1><b>Options:</b></td>$tccell2l>
$inpc=\"nosmilies\" id=\"nosmilies\" value=\"1\"><label for=\"nosmilies\">Disable Smilies</label> -
$inpc=\"nolayout\" id=\"nolayout\" value=\"1\"><label for=\"nolayout\">Disable Layout</label> -
$inpc=\"nohtml\" id=\"nohtml\" value=\"1\"><label for=\"nohtml\">Disable HTML</label></td></tr>
$modoptions
$tblend
</FORM>
$tblstart$postlist$tblend
</td></FORM>
";
}
}else
print "$header$tccell1>Couldn't enter the post. $error<br>".redirect("thread.php?id=$id", $thread['title'], 0);
}
if($thread[closed])
print "
$tccell1>Sorry, but this thread is closed, and no more replies can be posted in it.
<br>".redirect("thread.php?id=$id",$thread[title],0);
if($banned and $log)
print "
$tccell1>Sorry, but you are banned from the board, and can not post.
<br>".redirect("thread.php?id=$id",$thread[title],0);
print $footer;
printtimedif($startingtime);
function activitycheck($userid){
global $id,$thread,$header,$tblstart,$tccell1,$tblend,$footer,$loguser;
$activity=mysql_result(mysql_query("SELECT count(*) FROM posts WHERE user=$userid AND thread=$id AND date>".(ctime()-86400)),0,0);
// if($activity>=(stristr($thread[title],'ACS ')?5:5000))
// die("$tblstart$tccell1>You have posted enough in this thread today. Come back later!$tblend$footer");
$activity=mysql_result(mysql_query("SELECT count(*) FROM posts WHERE user=$userid AND date>".(ctime()-300)),0,0);
if($activity && $userid == 1079)
die("$header$tblstart$tccell1>You can only post once every five minutes! Make it count!$tblend$footer");
}
Reference in New Issue View Git Blame Copy Permalink