| [ Index ] |
PHP Cross Reference of phpBB 3.0 Beta 3 |
[Summary view] [Print] [Text view]
1 <?php 2 /** 3 * 4 * @package ucp 5 * @version $Id: ucp_pm_compose.php,v 1.56 2006/11/12 14:29:32 naderman Exp $ 6 * @copyright (c) 2005 phpBB Group 7 * @license http://opensource.org/licenses/gpl-license.php GNU Public License 8 * 9 */ 10 11 /** 12 * Compose private message 13 * Called from ucp_pm with mode == 'compose' 14 */ 15 function compose_pm($id, $mode, $action) 16 { 17 global $template, $db, $auth, $user; 18 global $phpbb_root_path, $phpEx, $config; 19 20 include($phpbb_root_path . 'includes/functions_posting.' . $phpEx); 21 include($phpbb_root_path . 'includes/functions_display.' . $phpEx); 22 include($phpbb_root_path . 'includes/message_parser.' . $phpEx); 23 24 if (!$action) 25 { 26 $action = 'post'; 27 } 28 29 // Grab only parameters needed here 30 $to_user_id = request_var('u', 0); 31 $to_group_id = request_var('g', 0); 32 $msg_id = request_var('p', 0); 33 $draft_id = request_var('d', 0); 34 $lastclick = request_var('lastclick', 0); 35 36 // Do NOT use request_var or specialchars here 37 $address_list = isset($_REQUEST['address_list']) ? $_REQUEST['address_list'] : array(); 38 39 $submit = (isset($_POST['post'])) ? true : false; 40 $preview = (isset($_POST['preview'])) ? true : false; 41 $save = (isset($_POST['save'])) ? true : false; 42 $load = (isset($_POST['load'])) ? true : false; 43 $cancel = (isset($_POST['cancel']) && !isset($_POST['save'])) ? true : false; 44 $delete = (isset($_POST['delete'])) ? true : false; 45 46 $remove_u = (isset($_REQUEST['remove_u'])) ? true : false; 47 $remove_g = (isset($_REQUEST['remove_g'])) ? true : false; 48 $add_to = (isset($_REQUEST['add_to'])) ? true : false; 49 $add_bcc = (isset($_REQUEST['add_bcc'])) ? true : false; 50 51 $refresh = isset($_POST['add_file']) || isset($_POST['delete_file']) || isset($_POST['edit_comment']) || $save || $load 52 || $remove_u || $remove_g || $add_to || $add_bcc; 53 54 $action = ($delete && !$preview && !$refresh && $submit) ? 'delete' : $action; 55 56 $error = array(); 57 $current_time = time(); 58 59 // Was cancel pressed? If so then redirect to the appropriate page 60 if ($cancel || ($current_time - $lastclick < 2 && $submit)) 61 { 62 if ($msg_id) 63 { 64 redirect(append_sid("{$phpbb_root_path}ucp.$phpEx", 'i=pm&mode=view&action=view_message&p=' . $msg_id)); 65 } 66 redirect(append_sid("{$phpbb_root_path}ucp.$phpEx", 'i=pm')); 67 } 68 69 // Output PM_TO box if message composing 70 if ($action != 'edit') 71 { 72 if ($config['allow_mass_pm'] && $auth->acl_get('u_masspm')) 73 { 74 $sql = 'SELECT group_id, group_name, group_type 75 FROM ' . GROUPS_TABLE . ' 76 WHERE group_type NOT IN (' . GROUP_HIDDEN . ', ' . GROUP_CLOSED . ') 77 AND group_receive_pm = 1 78 ORDER BY group_type DESC'; 79 $result = $db->sql_query($sql); 80 81 $group_options = ''; 82 while ($row = $db->sql_fetchrow($result)) 83 { 84 $group_options .= '<option' . (($row['group_type'] == GROUP_SPECIAL) ? ' class="blue"' : '') . ' value="' . $row['group_id'] . '">' . (($row['group_type'] == GROUP_SPECIAL) ? $user->lang['G_' . $row['group_name']] : $row['group_name']) . '</option>'; 85 } 86 $db->sql_freeresult($result); 87 } 88 89 $template->assign_vars(array( 90 'S_SHOW_PM_BOX' => true, 91 'S_ALLOW_MASS_PM' => ($config['allow_mass_pm'] && $auth->acl_get('u_masspm')) ? true : false, 92 'S_GROUP_OPTIONS' => ($config['allow_mass_pm'] && $auth->acl_get('u_masspm')) ? $group_options : '', 93 'U_SEARCH_USER' => append_sid("{$phpbb_root_path}memberlist.$phpEx", 'mode=searchuser&form=post&field=username_list')) 94 ); 95 } 96 97 $sql = ''; 98 99 // What is all this following SQL for? Well, we need to know 100 // some basic information in all cases before we do anything. 101 switch ($action) 102 { 103 case 'post': 104 if (!$auth->acl_get('u_sendpm')) 105 { 106 trigger_error('NO_AUTH_SEND_MESSAGE'); 107 } 108 break; 109 110 case 'reply': 111 case 'quote': 112 case 'forward': 113 case 'quotepost': 114 if (!$msg_id) 115 { 116 trigger_error('NO_MESSAGE'); 117 } 118 119 if (!$auth->acl_get('u_sendpm')) 120 { 121 trigger_error('NO_AUTH_SEND_MESSAGE'); 122 } 123 124 if ($action == 'quotepost') 125 { 126 $sql = 'SELECT p.post_id as msg_id, p.post_text as message_text, p.poster_id as author_id, p.post_time as message_time, p.bbcode_bitfield, p.bbcode_uid, p.enable_sig, p.enable_smilies, p.enable_magic_url, t.topic_title as message_subject, u.username as quote_username 127 FROM ' . POSTS_TABLE . ' p, ' . TOPICS_TABLE . ' t, ' . USERS_TABLE . " u 128 WHERE p.post_id = $msg_id 129 AND t.topic_id = p.topic_id 130 AND u.user_id = p.poster_id"; 131 } 132 else 133 { 134 $sql = 'SELECT t.*, p.*, u.username as quote_username 135 FROM ' . PRIVMSGS_TO_TABLE . ' t, ' . PRIVMSGS_TABLE . ' p, ' . USERS_TABLE . ' u 136 WHERE t.user_id = ' . $user->data['user_id'] . " 137 AND p.author_id = u.user_id 138 AND t.msg_id = p.msg_id 139 AND p.msg_id = $msg_id"; 140 } 141 break; 142 143 case 'edit': 144 if (!$msg_id) 145 { 146 trigger_error('NO_MESSAGE'); 147 } 148 149 // check for outbox (not read) status, we do not allow editing if one user already having the message 150 $sql = 'SELECT p.*, t.* 151 FROM ' . PRIVMSGS_TO_TABLE . ' t, ' . PRIVMSGS_TABLE . ' p 152 WHERE t.user_id = ' . $user->data['user_id'] . ' 153 AND t.folder_id = ' . PRIVMSGS_OUTBOX . " 154 AND t.msg_id = $msg_id 155 AND t.msg_id = p.msg_id"; 156 break; 157 158 case 'delete': 159 if (!$auth->acl_get('u_pm_delete')) 160 { 161 trigger_error('NO_AUTH_DELETE_MESSAGE'); 162 } 163 164 if (!$msg_id) 165 { 166 trigger_error('NO_MESSAGE'); 167 } 168 169 $sql = 'SELECT msg_id, pm_unread, pm_new, author_id, folder_id 170 FROM ' . PRIVMSGS_TO_TABLE . ' 171 WHERE user_id = ' . $user->data['user_id'] . " 172 AND msg_id = $msg_id"; 173 break; 174 175 case 'smilies': 176 generate_smilies('window', 0); 177 break; 178 179 default: 180 trigger_error('NO_ACTION_MODE', E_USER_ERROR); 181 } 182 183 if ($action == 'forward' && (!$config['forward_pm'] || !$auth->acl_get('u_pm_forward'))) 184 { 185 trigger_error('NO_AUTH_FORWARD_MESSAGE'); 186 } 187 188 if ($action == 'edit' && !$auth->acl_get('u_pm_edit')) 189 { 190 trigger_error('NO_AUTH_EDIT_MESSAGE'); 191 } 192 193 if ($sql) 194 { 195 $result = $db->sql_query_limit($sql, 1); 196 $post = $db->sql_fetchrow($result); 197 $db->sql_freeresult($result); 198 199 if (!$post) 200 { 201 trigger_error('NO_MESSAGE'); 202 } 203 204 $msg_id = (int) $post['msg_id']; 205 $folder_id = (isset($post['folder_id'])) ? $post['folder_id'] : 0; 206 $message_text = (isset($post['message_text'])) ? $post['message_text'] : ''; 207 208 if ((!$post['author_id'] || ($post['author_id'] == ANONYMOUS && $action != 'delete')) && $msg_id) 209 { 210 trigger_error('NO_AUTHOR'); 211 } 212 213 if ($action == 'quotepost') 214 { 215 // Decode text for message display 216 decode_message($message_text, $post['bbcode_uid']); 217 } 218 219 if ($action != 'delete') 220 { 221 $enable_urls = $post['enable_magic_url']; 222 $enable_sig = (isset($post['enable_sig'])) ? $post['enable_sig'] : 0; 223 224 $message_attachment = (isset($post['message_attachement'])) ? $post['message_attachement'] : 0; 225 $message_subject = $post['message_subject']; 226 $message_time = $post['message_time']; 227 $bbcode_uid = $post['bbcode_uid']; 228 229 $quote_username = (isset($post['quote_username'])) ? $post['quote_username'] : ''; 230 $icon_id = (isset($post['icon_id'])) ? $post['icon_id'] : 0; 231 232 if (($action == 'reply' || $action == 'quote' || $action == 'quotepost') && !sizeof($address_list) && !$refresh && !$submit && !$preview) 233 { 234 $address_list = array('u' => array($post['author_id'] => 'to')); 235 } 236 else if ($action == 'edit' && !sizeof($address_list) && !$refresh && !$submit && !$preview) 237 { 238 // Rebuild TO and BCC Header 239 $address_list = rebuild_header(array('to' => $post['to_address'], 'bcc' => $post['bcc_address'])); 240 } 241 242 if ($action == 'quotepost') 243 { 244 $check_value = 0; 245 } 246 else 247 { 248 $check_value = (($post['enable_bbcode']+1) << 8) + (($post['enable_smilies']+1) << 4) + (($enable_urls+1) << 2) + (($post['enable_sig']+1) << 1); 249 } 250 } 251 } 252 else 253 { 254 $message_attachment = 0; 255 $message_text = $message_subject = ''; 256 257 if ($to_user_id && $action == 'post') 258 { 259 $address_list['u'][$to_user_id] = 'to'; 260 } 261 else if ($to_group_id && $action == 'post') 262 { 263 $address_list['g'][$to_group_id] = 'to'; 264 } 265 $check_value = 0; 266 } 267 268 if (($to_group_id || isset($address_list['g'])) && (!$config['allow_mass_pm'] || !$auth->acl_get('u_masspm'))) 269 { 270 trigger_error('NO_AUTH_GROUP_MESSAGE'); 271 } 272 273 if ($action == 'edit' && !$refresh && !$preview && !$submit) 274 { 275 if (!($message_time > time() - ($config['pm_edit_time'] * 60) || !$config['pm_edit_time'])) 276 { 277 trigger_error('CANNOT_EDIT_MESSAGE_TIME'); 278 } 279 } 280 281 if (!isset($icon_id)) 282 { 283 $icon_id = 0; 284 } 285 286 $message_parser = new parse_message(); 287 288 $message_parser->message = ($action == 'reply') ? '' : $message_text; 289 unset($message_text); 290 291 $s_action = append_sid("{$phpbb_root_path}ucp.$phpEx", "i=$id&mode=$mode&action=$action", true, $user->session_id); 292 $s_action .= ($msg_id) ? "&p=$msg_id" : ''; 293 294 // Delete triggered ? 295 if ($action == 'delete') 296 { 297 // Folder id has been determined by the SQL Statement 298 // $folder_id = request_var('f', PRIVMSGS_NO_BOX); 299 300 // Do we need to confirm ? 301 if (confirm_box(true)) 302 { 303 delete_pm($user->data['user_id'], $msg_id, $folder_id); 304 305 /** 306 * @todo jump to next message in "history"? 307 */ 308 $meta_info = append_sid("{$phpbb_root_path}ucp.$phpEx", "i=pm&folder=$folder_id"); 309 $message = $user->lang['MESSAGE_DELETED']; 310 311 meta_refresh(3, $meta_info); 312 $message .= '<br /><br />' . sprintf($user->lang['RETURN_FOLDER'], '<a href="' . $meta_info . '">', '</a>'); 313 trigger_error($message); 314 } 315 else 316 { 317 $s_hidden_fields = array( 318 'p' => $msg_id, 319 'f' => $folder_id, 320 'action' => 'delete' 321 ); 322 323 // "{$phpbb_root_path}ucp.$phpEx?i=pm&mode=compose" 324 confirm_box(false, 'DELETE_MESSAGE', build_hidden_fields($s_hidden_fields)); 325 } 326 } 327 328 // Handle User/Group adding/removing 329 handle_message_list_actions($address_list, $remove_u, $remove_g, $add_to, $add_bcc); 330 331 // Check for too many recipients 332 if ((!$config['allow_mass_pm'] || !$auth->acl_get('u_masspm')) && num_recipients($address_list) > 1) 333 { 334 $address_list = get_recipient_pos($address_list, 1); 335 $error[] = $user->lang['TOO_MANY_RECIPIENTS']; 336 } 337 338 // Always check if the submitted attachment data is valid and belongs to the user. 339 // Further down (especially in submit_post()) we do not check this again. 340 $message_parser->get_submitted_attachment_data(); 341 342 if ($message_attachment && !$submit && !$refresh && !$preview && $action == 'edit') 343 { 344 // Do not change to SELECT * 345 $sql = 'SELECT attach_id, is_orphan, attach_comment, real_filename 346 FROM ' . ATTACHMENTS_TABLE . " 347 WHERE post_msg_id = $msg_id 348 AND in_message = 1 349 AND is_orphan = 0 350 ORDER BY filetime " . ((!$config['display_order']) ? 'DESC' : 'ASC'); 351 $result = $db->sql_query($sql); 352 $message_parser->attachment_data = array_merge($message_parser->attachment_data, $db->sql_fetchrowset($result)); 353 $db->sql_freeresult($result); 354 } 355 356 if (!in_array($action, array('quote', 'edit', 'delete', 'forward'))) 357 { 358 $enable_sig = ($config['allow_sig'] && $auth->acl_get('u_sig') && $user->optionget('attachsig')); 359 $enable_smilies = ($config['allow_smilies'] && $auth->acl_get('u_pm_smilies') && $user->optionget('smilies')); 360 $enable_bbcode = ($config['allow_bbcode'] && $auth->acl_get('u_pm_bbcode') && $user->optionget('bbcode')); 361 $enable_urls = true; 362 } 363 364 $enable_magic_url = $drafts = false; 365 366 // User own some drafts? 367 if ($auth->acl_get('u_savedrafts') && $action != 'delete') 368 { 369 $sql = 'SELECT draft_id 370 FROM ' . DRAFTS_TABLE . ' 371 WHERE forum_id = 0 372 AND topic_id = 0 373 AND user_id = ' . $user->data['user_id'] . 374 (($draft_id) ? " AND draft_id <> $draft_id" : ''); 375 $result = $db->sql_query_limit($sql, 1); 376 $row = $db->sql_fetchrow($result); 377 $db->sql_freeresult($result); 378 379 if ($row) 380 { 381 $drafts = true; 382 } 383 } 384 385 if ($action == 'edit') 386 { 387 $message_parser->bbcode_uid = $bbcode_uid; 388 } 389 390 $bbcode_status = ($config['allow_bbcode'] && $config['auth_bbcode_pm'] && $auth->acl_get('u_pm_bbcode')) ? true : false; 391 $smilies_status = ($config['allow_smilies'] && $config['auth_smilies_pm'] && $auth->acl_get('u_pm_smilies')) ? true : false; 392 $img_status = ($config['auth_img_pm'] && $auth->acl_get('u_pm_img')) ? true : false; 393 $flash_status = ($config['auth_flash_pm'] && $auth->acl_get('u_pm_flash')) ? true : false; 394 $url_status = ($config['allow_post_links']) ? true : false; 395 396 // Save Draft 397 if ($save && $auth->acl_get('u_savedrafts')) 398 { 399 $subject = request_var('subject', '', true); 400 $subject = (!$subject && $action != 'post') ? $user->lang['NEW_MESSAGE'] : $subject; 401 $message = request_var('message', '', true); 402 403 utf8_normalize_nfc(array(&$subject, &$message)); 404 405 if ($subject && $message) 406 { 407 if (confirm_box(true)) 408 { 409 $sql = 'INSERT INTO ' . DRAFTS_TABLE . ' ' . $db->sql_build_array('INSERT', array( 410 'user_id' => $user->data['user_id'], 411 'topic_id' => 0, 412 'forum_id' => 0, 413 'save_time' => $current_time, 414 'draft_subject' => $subject, 415 'draft_message' => $message) 416 ); 417 $db->sql_query($sql); 418 419 $redirect_url = append_sid("{$phpbb_root_path}ucp.$phpEx", "i=pm&mode=$mode"); 420 421 meta_refresh(3, $redirect_url); 422 $message = $user->lang['DRAFT_SAVED'] . '<br /><br />' . sprintf($user->lang['RETURN_UCP'], '<a href="' . $redirect_url . '">', '</a>'); 423 424 trigger_error($message); 425 } 426 else 427 { 428 $s_hidden_fields = build_hidden_fields(array( 429 'mode' => $mode, 430 'action' => $action, 431 'save' => true, 432 'subject' => $subject, 433 'message' => $message, 434 'u' => $to_user_id, 435 'g' => $to_group_id, 436 'p' => $msg_id) 437 ); 438 439 confirm_box(false, 'SAVE_DRAFT', $s_hidden_fields); 440 } 441 } 442 443 unset($subject, $message); 444 } 445 446 // Load Draft 447 if ($draft_id && $auth->acl_get('u_savedrafts')) 448 { 449 $sql = 'SELECT draft_subject, draft_message 450 FROM ' . DRAFTS_TABLE . " 451 WHERE draft_id = $draft_id 452 AND topic_id = 0 453 AND forum_id = 0 454 AND user_id = " . $user->data['user_id']; 455 $result = $db->sql_query_limit($sql, 1); 456 457 if ($row = $db->sql_fetchrow($result)) 458 { 459 $message_parser->message = $row['draft_message']; 460 $message_subject = $row['draft_subject']; 461 462 $template->assign_var('S_DRAFT_LOADED', true); 463 } 464 else 465 { 466 $draft_id = 0; 467 } 468 $db->sql_freeresult($result); 469 } 470 471 // Load Drafts 472 if ($load && $drafts) 473 { 474 load_drafts(0, 0, $id); 475 } 476 477 if ($submit || $preview || $refresh) 478 { 479 $subject = request_var('subject', '', true); 480 $message_parser->message = request_var('message', '', true); 481 482 utf8_normalize_nfc(array(&$subject, &$message_parser->message)); 483 484 $icon_id = request_var('icon', 0); 485 486 $enable_bbcode = (!$bbcode_status || isset($_POST['disable_bbcode'])) ? false : true; 487 $enable_smilies = (!$smilies_status || isset($_POST['disable_smilies'])) ? false : true; 488 $enable_urls = (isset($_POST['disable_magic_url'])) ? 0 : 1; 489 $enable_sig = (!$config['allow_sig']) ? false : ((isset($_POST['attach_sig'])) ? true : false); 490 491 if ($submit) 492 { 493 $status_switch = (($enable_bbcode+1) << 8) + (($enable_smilies+1) << 4) + (($enable_urls+1) << 2) + (($enable_sig+1) << 1); 494 $status_switch = ($status_switch != $check_value); 495 } 496 else 497 { 498 $status_switch = 1; 499 } 500 501 // Parse Attachments - before checksum is calculated 502 $message_parser->parse_attachments('fileupload', $action, 0, $submit, $preview, $refresh, true); 503 504 // Parse message 505 $message_parser->parse($enable_bbcode, ($config['allow_post_links']) ? $enable_urls : false, $enable_smilies, $img_status, $flash_status, true, $config['allow_sig_links']); 506 507 if ($action != 'edit' && !$preview && !$refresh && $config['flood_interval'] && !$auth->acl_get('u_ignoreflood')) 508 { 509 // Flood check 510 $last_post_time = $user->data['user_lastpost_time']; 511 512 if ($last_post_time) 513 { 514 if ($last_post_time && ($current_time - $last_post_time) < intval($config['flood_interval'])) 515 { 516 $error[] = $user->lang['FLOOD_ERROR']; 517 } 518 } 519 } 520 521 // Subject defined 522 if (!$subject && !($remove_u || $remove_g || $add_to || $add_bcc)) 523 { 524 $error[] = $user->lang['EMPTY_SUBJECT']; 525 } 526 527 if (!sizeof($address_list)) 528 { 529 $error[] = $user->lang['NO_RECIPIENT']; 530 } 531 532 if (sizeof($message_parser->warn_msg) && !($remove_u || $remove_g || $add_to || $add_bcc)) 533 { 534 $error[] = implode('<br />', $message_parser->warn_msg); 535 } 536 537 // Store message, sync counters 538 if (!sizeof($error) && $submit) 539 { 540 $pm_data = array( 541 'msg_id' => (int) $msg_id, 542 'from_user_id' => $user->data['user_id'], 543 'from_user_ip' => $user->data['user_ip'], 544 'from_username' => $user->data['username'], 545 'reply_from_root_level' => (isset($root_level)) ? (int) $root_level : 0, 546 'reply_from_msg_id' => (int) $msg_id, 547 'icon_id' => (int) $icon_id, 548 'enable_sig' => (bool) $enable_sig, 549 'enable_bbcode' => (bool) $enable_bbcode, 550 'enable_smilies' => (bool) $enable_smilies, 551 'enable_urls' => (bool) $enable_urls, 552 'bbcode_bitfield' => $message_parser->bbcode_bitfield, 553 'bbcode_uid' => $message_parser->bbcode_uid, 554 'message' => $message_parser->message, 555 'attachment_data' => $message_parser->attachment_data, 556 'filename_data' => $message_parser->filename_data, 557 'address_list' => $address_list 558 ); 559 unset($message_parser); 560 561 // ((!$message_subject) ? $subject : $message_subject) 562 $msg_id = submit_pm($action, $subject, $pm_data, true); 563 564 $return_message_url = append_sid("{$phpbb_root_path}ucp.$phpEx", 'i=pm&mode=view&p=' . $msg_id); 565 $return_folder_url = append_sid("{$phpbb_root_path}ucp.$phpEx", 'i=pm&folder=outbox'); 566 meta_refresh(3, $return_message_url); 567 568 $message = $user->lang['MESSAGE_STORED'] . '<br /><br />' . sprintf($user->lang['VIEW_MESSAGE'], '<a href="' . $return_message_url . '">', '</a>') . '<br /><br />' . sprintf($user->lang['CLICK_RETURN_FOLDER'], '<a href="' . $return_folder_url . '">', '</a>', $user->lang['PM_OUTBOX']); 569 trigger_error($message); 570 } 571 572 $message_subject = $subject; 573 } 574 575 // Preview 576 if (!sizeof($error) && $preview) 577 { 578 $post_time = ($action == 'edit') ? $post_time : $current_time; 579 580 $preview_message = $message_parser->format_display($enable_bbcode, $enable_urls, $enable_smilies, false); 581 582 $preview_signature = $user->data['user_sig']; 583 $preview_signature_uid = $user->data['user_sig_bbcode_uid']; 584 $preview_signature_bitfield = $user->data['user_sig_bbcode_bitfield']; 585 586 // Signature 587 if ($enable_sig && $config['allow_sig'] && $preview_signature) 588 { 589 $parse_sig = new parse_message($preview_signature); 590 $parse_sig->bbcode_uid = $preview_signature_uid; 591 $parse_sig->bbcode_bitfield = $preview_signature_bitfield; 592 593 $parse_sig->format_display($enable_bbcode, $enable_urls, $enable_smilies); 594 $preview_signature = $parse_sig->message; 595 unset($parse_sig); 596 } 597 else 598 { 599 $preview_signature = ''; 600 } 601 602 // Attachment Preview 603 if (sizeof($message_parser->attachment_data)) 604 { 605 $extensions = $update_count = array(); 606 607 $template->assign_var('S_HAS_ATTACHMENTS', true); 608 display_attachments(0, 'attachment', $message_parser->attachment_data, $update_count); 609 } 610 611 $preview_subject = censor_text($subject); 612 613 if (!sizeof($error)) 614 { 615 $template->assign_vars(array( 616 'PREVIEW_SUBJECT' => $preview_subject, 617 'PREVIEW_MESSAGE' => $preview_message, 618 'PREVIEW_SIGNATURE' => $preview_signature, 619 620 'S_DISPLAY_PREVIEW' => true) 621 ); 622 } 623 unset($message_text); 624 } 625 626 // Decode text for message display 627 $bbcode_uid = (($action == 'quote' || $action == 'forward') && !$preview && !$refresh && !sizeof($error)) ? $bbcode_uid : $message_parser->bbcode_uid; 628 629 $message_parser->decode_message($bbcode_uid); 630 631 if (($action == 'quote' || $action == 'quotepost') && !$preview && !$refresh) 632 { 633 if ($action == 'quotepost') 634 { 635 $post_id = request_var('p', 0); 636 if ($config['allow_post_links']) 637 { 638 $message_link = "[url=" . generate_board_url() . "/viewtopic.$phpEx?p={$post_id}#p{$post_id}]{$message_subject}[/url]\n\n"; 639 } 640 else 641 { 642 $message_link = $user->lang['SUBJECT'] . ': ' . $message_subject . " (" . generate_board_url() . "/viewtopic.$phpEx?p={$post_id}#p{$post_id})\n\n"; 643 } 644 } 645 else 646 { 647 $message_link = ''; 648 } 649 $message_parser->message = $message_link . '[quote="' . $quote_username . '"]' . censor_text(trim($message_parser->message)) . "[/quote]\n"; 650 } 651 652 if (($action == 'reply' || $action == 'quote' || $action == 'quotepost') && !$preview && !$refresh) 653 { 654 $message_subject = ((!preg_match('/^Re:/', $message_subject)) ? 'Re: ' : '') . censor_text($message_subject); 655 } 656 657 if ($action == 'forward' && !$preview && !$refresh && !$submit) 658 { 659 $fwd_to_field = write_pm_addresses(array('to' => $post['to_address']), 0, true); 660 661 if ($config['allow_post_links']) 662 { 663 $quote_username_text = '[url=' . generate_board_url() . "/memberlist.$phpEx?mode=viewprofile&u={$post['author_id']}]{$quote_username}[/url]"; 664 } 665 else 666 { 667 $quote_username_text = $quote_username . ' (' . generate_board_url() . "/memberlist.$phpEx?mode=viewprofile&u={$post['author_id']})"; 668 } 669 670 $forward_text = array(); 671 $forward_text[] = $user->lang['FWD_ORIGINAL_MESSAGE']; 672 $forward_text[] = sprintf($user->lang['FWD_SUBJECT'], censor_text($message_subject)); 673 $forward_text[] = sprintf($user->lang['FWD_DATE'], $user->format_date($message_time)); 674 $forward_text[] = sprintf($user->lang['FWD_FROM'], $quote_username_text); 675 $forward_text[] = sprintf($user->lang['FWD_TO'], implode(', ', $fwd_to_field['to'])); 676 677 $message_parser->message = implode("\n", $forward_text) . "\n\n[quote=\"{$quote_username}\"]\n" . censor_text(trim($message_parser->message)) . "\n[/quote]"; 678 $message_subject = ((!preg_match('/^Fwd:/', $message_subject)) ? 'Fwd: ' : '') . censor_text($message_subject); 679 } 680 681 $attachment_data = $message_parser->attachment_data; 682 $filename_data = $message_parser->filename_data; 683 $message_text = $message_parser->message; 684 unset($message_parser); 685 686 // MAIN PM PAGE BEGINS HERE 687 688 // Generate smiley listing 689 generate_smilies('inline', 0); 690 691 // Generate PM Icons 692 $s_pm_icons = false; 693 if ($config['enable_pm_icons']) 694 { 695 $s_pm_icons = posting_gen_topic_icons($action, $icon_id); 696 } 697 698 // Generate inline attachment select box 699 posting_gen_inline_attachments($attachment_data); 700 701 // Build address list for display 702 // array('u' => array($author_id => 'to')); 703 if (sizeof($address_list)) 704 { 705 // Get Usernames and Group Names 706 $result = array(); 707 if (!empty($address_list['u'])) 708 { 709 $sql = 'SELECT user_id as id, username as name, user_colour as colour 710 FROM ' . USERS_TABLE . ' 711 WHERE ' . $db->sql_in_set('user_id', array_map('intval', array_keys($address_list['u']))); 712 $result['u'] = $db->sql_query($sql); 713 } 714 715 if (!empty($address_list['g'])) 716 { 717 $sql = 'SELECT group_id as id, group_name as name, group_colour as colour, group_type 718 FROM ' . GROUPS_TABLE . ' 719 WHERE group_receive_pm = 1 720 AND ' . $db->sql_in_set('group_id', array_map('intval', array_keys($address_list['g']))); 721 $result['g'] = $db->sql_query($sql); 722 } 723 724 $u = $g = array(); 725 $_types = array('u', 'g'); 726 foreach ($_types as $type) 727 { 728 if (isset($result[$type]) && $result[$type]) 729 { 730 while ($row = $db->sql_fetchrow($result[$type])) 731 { 732 if ($type == 'g') 733 { 734 $row['name'] = ($row['group_type'] == GROUP_SPECIAL) ? $user->lang['G_' . $row['name']] : $row['name']; 735 } 736 737 ${$type}[$row['id']] = array('name' => $row['name'], 'colour' => $row['colour']); 738 } 739 $db->sql_freeresult($result[$type]); 740 } 741 } 742 743 // Now Build the address list 744 $plain_address_field = ''; 745 foreach ($address_list as $type => $adr_ary) 746 { 747 foreach ($adr_ary as $id => $field) 748 { 749 if (!isset(${$type}[$id])) 750 { 751 unset($address_list[$type][$id]); 752 continue; 753 } 754 755 $field = ($field == 'to') ? 'to' : 'bcc'; 756 $type = ($type == 'u') ? 'u' : 'g'; 757 $id = (int) $id; 758 759 $template->assign_block_vars($field . '_recipient', array( 760 'NAME' => ${$type}[$id]['name'], 761 'IS_GROUP' => ($type == 'g'), 762 'IS_USER' => ($type == 'u'), 763 'COLOUR' => (${$type}[$id]['colour']) ? ${$type}[$id]['colour'] : '', 764 'UG_ID' => $id, 765 'U_VIEW' => ($type == 'u') ? append_sid("{$phpbb_root_path}memberlist.$phpEx", 'mode=viewprofile&u=' . $id) : append_sid("{$phpbb_root_path}memberlist.$phpEx", 'mode=group&g=' . $id), 766 'TYPE' => $type) 767 ); 768 } 769 } 770 } 771 772 // Build hidden address list 773 $s_hidden_address_field = ''; 774 foreach ($address_list as $type => $adr_ary) 775 { 776 foreach ($adr_ary as $id => $field) 777 { 778 $s_hidden_address_field .= '<input type="hidden" name="address_list[' . (($type == 'u') ? 'u' : 'g') . '][' . (int) $id . ']" value="' . (($field == 'to') ? 'to' : 'bcc') . '" />'; 779 } 780 } 781 782 $bbcode_checked = (isset($enable_bbcode)) ? !$enable_bbcode : (($config['allow_bbcode'] && $auth->acl_get('u_pm_bbcode')) ? !$user->optionget('bbcode') : 1); 783 $smilies_checked = (isset($enable_smilies)) ? !$enable_smilies : (($config['allow_smilies'] && $auth->acl_get('u_pm_smilies')) ? !$user->optionget('smilies') : 1); 784 $urls_checked = (isset($enable_urls)) ? !$enable_urls : 0; 785 $sig_checked = $enable_sig; 786 787 switch ($action) 788 { 789 case 'post': 790 $page_title = $user->lang['POST_NEW_PM']; 791 break; 792 793 case 'quote': 794 $page_title = $user->lang['POST_QUOTE_PM']; 795 break; 796 797 case 'quotepost': 798 $page_title = $user->lang['POST_PM_POST']; 799 break; 800 801 case 'reply': 802 $page_title = $user->lang['POST_REPLY_PM']; 803 break; 804 805 case 'edit': 806 $page_title = $user->lang['POST_EDIT_PM']; 807 break; 808 809 case 'forward': 810 $page_title = $user->lang['POST_FORWARD_PM']; 811 break; 812 813 default: 814 trigger_error('NO_ACTION_MODE', E_USER_ERROR); 815 } 816 817 $s_hidden_fields = '<input type="hidden" name="lastclick" value="' . $current_time . '" />'; 818 $s_hidden_fields .= (isset($check_value)) ? '<input type="hidden" name="status_switch" value="' . $check_value . '" />' : ''; 819 $s_hidden_fields .= ($draft_id || isset($_REQUEST['draft_loaded'])) ? '<input type="hidden" name="draft_loaded" value="' . ((isset($_REQUEST['draft_loaded'])) ? intval($_REQUEST['draft_loaded']) : $draft_id) . '" />' : ''; 820 821 $form_enctype = (@ini_get('file_uploads') == '0' || strtolower(@ini_get('file_uploads')) == 'off' || @ini_get('file_uploads') == '0' || !$config['allow_pm_attach'] || !$auth->acl_get('u_pm_attach')) ? '' : ' enctype="multipart/form-data"'; 822 823 // Start assigning vars for main posting page ... 824 $template->assign_vars(array( 825 'L_POST_A' => $page_title, 826 'L_ICON' => $user->lang['PM_ICON'], 827 'L_MESSAGE_BODY_EXPLAIN' => (intval($config['max_post_chars'])) ? sprintf($user->lang['MESSAGE_BODY_EXPLAIN'], intval($config['max_post_chars'])) : '', 828 829 'SUBJECT' => (isset($message_subject)) ? $message_subject : '', 830 'MESSAGE' => $message_text, 831 'BBCODE_STATUS' => ($bbcode_status) ? sprintf($user->lang['BBCODE_IS_ON'], '<a href="' . append_sid("{$phpbb_root_path}faq.$phpEx", 'mode=bbcode') . '">', '</a>') : sprintf($user->lang['BBCODE_IS_OFF'], '<a href="' . append_sid("{$phpbb_root_path}faq.$phpEx", 'mode=bbcode') . '">', '</a>'), 832 'IMG_STATUS' => ($img_status) ? $user->lang['IMAGES_ARE_ON'] : $user->lang['IMAGES_ARE_OFF'], 833 'FLASH_STATUS' => ($flash_status) ? $user->lang['FLASH_IS_ON'] : $user->lang['FLASH_IS_OFF'], 834 'SMILIES_STATUS' => ($smilies_status) ? $user->lang['SMILIES_ARE_ON'] : $user->lang['SMILIES_ARE_OFF'], 835 'URL_STATUS' => ($url_status) ? $user->lang['URL_IS_ON'] : $user->lang['URL_IS_OFF'], 836 'MINI_POST_IMG' => $user->img('icon_post_target', $user->lang['PM']), 837 'ERROR' => (sizeof($error)) ? implode('<br />', $error) : '', 838 839 'S_EDIT_POST' => ($action == 'edit'), 840 'S_SHOW_PM_ICONS' => $s_pm_icons, 841 'S_BBCODE_ALLOWED' => $bbcode_status, 842 'S_BBCODE_CHECKED' => ($bbcode_checked) ? ' checked="checked"' : '', 843 'S_SMILIES_ALLOWED' => $smilies_status, 844 'S_SMILIES_CHECKED' => ($smilies_checked) ? ' checked="checked"' : '', 845 'S_SIG_ALLOWED' => ($config['allow_sig'] && $auth->acl_get('u_sig')), 846 'S_SIGNATURE_CHECKED' => ($sig_checked) ? ' checked="checked"' : '', 847 'S_LINKS_ALLOWED' => $url_status, 848 'S_MAGIC_URL_CHECKED' => ($urls_checked) ? ' checked="checked"' : '', 849 'S_SAVE_ALLOWED' => $auth->acl_get('u_savedrafts'), 850 'S_HAS_DRAFTS' => ($auth->acl_get('u_savedrafts') && $drafts), 851 'S_FORM_ENCTYPE' => $form_enctype, 852 853 'S_BBCODE_IMG' => $img_status, 854 'S_BBCODE_FLASH' => $flash_status, 855 'S_BBCODE_QUOTE' => true, 856 'S_BBCODE_URL' => $url_status, 857 858 'S_POST_ACTION' => $s_action, 859 'S_HIDDEN_ADDRESS_FIELD' => $s_hidden_address_field, 860 'S_HIDDEN_FIELDS' => $s_hidden_fields, 861 862 'S_CLOSE_PROGRESS_WINDOW' => isset($_POST['add_file']), 863 'U_PROGRESS_BAR' => append_sid("{$phpbb_root_path}posting.$phpEx", 'f=0&mode=popup'), 864 'UA_PROGRESS_BAR' => append_sid("{$phpbb_root_path}posting.$phpEx", 'f=0&mode=popup', false), 865 ) 866 ); 867 868 // Build custom bbcodes array 869 display_custom_bbcodes(); 870 871 // Attachment entry 872 if ($auth->acl_get('u_pm_attach') && $config['allow_pm_attach'] && $form_enctype) 873 { 874 posting_gen_attachment_entry($attachment_data, $filename_data); 875 } 876 } 877 878 /** 879 * For composing messages, handle list actions 880 */ 881 function handle_message_list_actions(&$address_list, $remove_u, $remove_g, $add_to, $add_bcc) 882 { 883 global $auth, $db; 884 885 // Delete User [TO/BCC] 886 if ($remove_u) 887 { 888 $remove_user_id = array_keys($_REQUEST['remove_u']); 889 unset($address_list['u'][(int) $remove_user_id[0]]); 890 } 891 892 // Delete Group [TO/BCC] 893 if ($remove_g) 894 { 895 $remove_group_id = array_keys($_REQUEST['remove_g']); 896 unset($address_list['g'][(int) $remove_group_id[0]]); 897 } 898 899 // Add User/Group [TO] 900 if ($add_to || $add_bcc) 901 { 902 $type = ($add_to) ? 'to' : 'bcc'; 903 904 // Add Selected Groups 905 $group_list = request_var('group_list', array(0)); 906 907 if (sizeof($group_list)) 908 { 909 foreach ($group_list as $group_id) 910 { 911 $address_list['g'][$group_id] = $type; 912 } 913 } 914 915 // User ID's to add... 916 $user_id_ary = array(); 917 918 // Build usernames to add 919 $usernames = (isset($_REQUEST['username'])) ? array(request_var('username', '', true)) : array(); 920 $username_list = request_var('username_list', '', true); 921 if ($username_list) 922 { 923 $usernames = array_merge($usernames, explode("\n", $username_list)); 924 } 925 926 // Reveal the correct user_ids 927 if (sizeof($usernames)) 928 { 929 $user_id_ary = array(); 930 user_get_id_name($user_id_ary, $usernames); 931 } 932 933 // Add Friends if specified 934 $friend_list = (is_array($_REQUEST['add_' . $type])) ? array_map('intval', array_keys($_REQUEST['add_' . $type])) : array(); 935 $user_id_ary = array_merge($user_id_ary, $friend_list); 936 937 if (sizeof($user_id_ary)) 938 { 939 // We need to check their PM status (do they want to receive PM's?) 940 // Only check if not a moderator or admin, since they are allowed to override this user setting 941 if (!$auth->acl_gets('a_', 'm_') && !$auth->acl_getf_global('m_')) 942 { 943 $sql = 'SELECT user_id 944 FROM ' . USERS_TABLE . ' 945 WHERE ' . $db->sql_in_set('user_id', $user_id_ary) . ' 946 AND user_allow_pm = 1'; 947 $result = $db->sql_query($sql); 948 949 while ($row = $db->sql_fetchrow($result)) 950 { 951 if ($row['user_id'] == ANONYMOUS) 952 { 953 continue; 954 } 955 956 $address_list['u'][$row['user_id']] = $type; 957 } 958 $db->sql_freeresult($result); 959 } 960 else 961 { 962 foreach ($user_id_ary as $user_id) 963 { 964 if ($user_id == ANONYMOUS) 965 { 966 continue; 967 } 968 969 $address_list['u'][$user_id] = $type; 970 } 971 } 972 } 973 } 974 } 975 976 /** 977 * Return number of private message recipients 978 */ 979 function num_recipients($address_list) 980 { 981 $num_recipients = 0; 982 983 foreach ($address_list as $field => $adr_ary) 984 { 985 $num_recipients += sizeof($adr_ary); 986 } 987 988 return $num_recipients; 989 } 990 991 /** 992 * Get recipient at position 'pos' 993 */ 994 function get_recipient_pos($address_list, $position = 1) 995 { 996 $recipient = array(); 997 998 $count = 1; 999 foreach ($address_list as $field => $adr_ary) 1000 { 1001 foreach ($adr_ary as $id => $type) 1002 { 1003 if ($count == $position) 1004 { 1005 $recipient[$field][$id] = $type; 1006 break 2; 1007 } 1008 $count++; 1009 } 1010 } 1011 1012 return $recipient; 1013 } 1014 1015 ?>
title
Description
Body
title
Description
Body
title
Description
Body
title
Body
| Generated: Wed Nov 22 00:35:05 2006 | Cross-referenced by PHPXref 0.6 |