Gazelle/sections/requests/take_warn.php

<?php
if (!check_perms('users_warn')) {
	error(404);
}
Misc::assert_isset_request($_POST, array('reason', 'privatemessage', 'body', 'length', 'groupid', 'postid', 'userid'));

$Reason = $_POST['reason'];
$PrivateMessage = $_POST['privatemessage'];
$Body = $_POST['body'];
$Length = $_POST['length'];
$GroupID = (int) $_POST['groupid'];
$PostID = (int) $_POST['postid'];
$UserID = (int) $_POST['userid'];
$Key = (int) $_POST['key'];
$SQLTime = sqltime();
$UserInfo = Users::user_info($UserID);
if ($UserInfo['Class'] > $LoggedUser['Class']) {
	error(403);
}
$URL = "https://" . SSL_SITE_URL . "/requests.php?action=view&id=$GroupID&postid=$PostID#post$PostID";
if ($Length != 'verbal') {
	$Time = ((int) $Length) * (7 * 24 * 60 * 60);
	Tools::warn_user($UserID, $Time, "$URL - " . $Reason);
	$Subject = "You have received a warning";
	$PrivateMessage = "You have received a $Length week warning for [url=$URL]this post.[/url]\n\n" . $PrivateMessage;
	$WarnTime = time_plus($Time);
	$AdminComment = date("Y-m-d") . ' - Warned until ' . $WarnTime . ' by ' . $LoggedUser['Username'] . " for $URL \nReason: $Reason\n\n";
} else {
	$Subject = "You have received a verbal warning";
	$PrivateMessage = "You have received a verbal warning for [url=$URL]this post.[/url]\n\n" . $PrivateMessage;
	$AdminComment = date("Y-m-d") . ' - Verbally warned by ' . $LoggedUser['Username'] . " for $URL \nReason: $Reason\n\n";
}
$DB->query("INSERT INTO users_warnings_forums (UserID, Comment) VALUES('$UserID', '" . db_string($AdminComment)
				. "')
	        ON DUPLICATE KEY UPDATE Comment = CONCAT('" . db_string($AdminComment) . "', Comment)");
Tools::update_user_notes($UserID, $AdminComment);
Misc::send_pm($UserID, $LoggedUser['ID'], $Subject, $PrivateMessage);

$DB->query("SELECT
				rc.Body,
				rc.AuthorID,
				rc.RequestID,
				rc.AddedTime
				FROM requests_comments AS rc
				WHERE rc.ID='".db_string($_POST['post'])."'");
list($OldBody, $AuthorID,$RequestID,$AddedTime)=$DB->next_record();

$DB->query("SELECT ceil(COUNT(ID) / ".POSTS_PER_PAGE.") AS Page FROM requests_comments WHERE RequestID = $GroupID AND ID <= $PostID");
list($Page) = $DB->next_record();

if ($LoggedUser['ID']!=$AuthorID && !check_perms('site_moderate_forums')) { error(404); }
if ($DB->record_count()==0) { error(404); }

// Perform the update
$DB->query("UPDATE requests_comments SET
				Body = '" . db_string($Body) . "',
				EditedUserID = '".$LoggedUser['ID']."',
				EditedTime = '".sqltime()."'
				WHERE ID='".$PostID."'");

// Update the cache
$CatalogueID = floor((TORRENT_COMMENTS_PER_PAGE*$Page-TORRENT_COMMENTS_PER_PAGE)/THREAD_CATALOGUE);
$Cache->begin_transaction('request_comments_'.$RequestID.'_catalogue_'.$CatalogueID);

$Cache->update_row($Key, array(
	'ID'=>$PostID,
	'AuthorID'=>$AuthorID,
	'AddedTime'=>$AddedTime,
	'Body'=>$Body,
	'EditedUserID'=>db_string($LoggedUser['ID']),
	'EditedTime'=>sqltime(),
	'Username'=>$LoggedUser['Username']
));
$Cache->commit_transaction(0);

$DB->query("INSERT INTO comments_edits (Page, PostID, EditUser, EditTime, Body)
								VALUES ('requests', ".$PostID.", ".db_string($LoggedUser['ID']).", '".sqltime()."', '".db_string($OldBody)."')");


header("Location: requests.php?id=$GroupID&postid=$PostID#post$PostID");
?>
;
Empty commit 2013-02-25 08:00:45 +00:00			`<?php`
			`if (!check_perms('users_warn')) {`
			`error(404);`
			`}`
			`Misc::assert_isset_request($_POST, array('reason', 'privatemessage', 'body', 'length', 'groupid', 'postid', 'userid'));`

Empty commit 2013-03-10 08:00:41 +00:00			`$Reason = $_POST['reason'];`
			`$PrivateMessage = $_POST['privatemessage'];`
			`$Body = $_POST['body'];`
Empty commit 2013-02-25 08:00:45 +00:00			`$Length = $_POST['length'];`
			`$GroupID = (int) $_POST['groupid'];`
			`$PostID = (int) $_POST['postid'];`
			`$UserID = (int) $_POST['userid'];`
			`$Key = (int) $_POST['key'];`
			`$SQLTime = sqltime();`
			`$UserInfo = Users::user_info($UserID);`
			`if ($UserInfo['Class'] > $LoggedUser['Class']) {`
			`error(403);`
			`}`
			`$URL = "https://" . SSL_SITE_URL . "/requests.php?action=view&id=$GroupID&postid=$PostID#post$PostID";`
			`if ($Length != 'verbal') {`
			`$Time = ((int) $Length) * (7 * 24 * 60 * 60);`
			`Tools::warn_user($UserID, $Time, "$URL - " . $Reason);`
			`$Subject = "You have received a warning";`
			`$PrivateMessage = "You have received a $Length week warning for [url=$URL]this post.[/url]\n\n" . $PrivateMessage;`
			`$WarnTime = time_plus($Time);`
			`$AdminComment = date("Y-m-d") . ' - Warned until ' . $WarnTime . ' by ' . $LoggedUser['Username'] . " for $URL \nReason: $Reason\n\n";`
			`} else {`
			`$Subject = "You have received a verbal warning";`
			`$PrivateMessage = "You have received a verbal warning for [url=$URL]this post.[/url]\n\n" . $PrivateMessage;`
			`$AdminComment = date("Y-m-d") . ' - Verbally warned by ' . $LoggedUser['Username'] . " for $URL \nReason: $Reason\n\n";`
			`}`
			`$DB->query("INSERT INTO users_warnings_forums (UserID, Comment) VALUES('$UserID', '" . db_string($AdminComment)`
			`. "')`
			`ON DUPLICATE KEY UPDATE Comment = CONCAT('" . db_string($AdminComment) . "', Comment)");`
			`Tools::update_user_notes($UserID, $AdminComment);`
			`Misc::send_pm($UserID, $LoggedUser['ID'], $Subject, $PrivateMessage);`

			`$DB->query("SELECT`
			`rc.Body,`
			`rc.AuthorID,`
			`rc.RequestID,`
			`rc.AddedTime`
			`FROM requests_comments AS rc`
			`WHERE rc.ID='".db_string($_POST['post'])."'");`
			`list($OldBody, $AuthorID,$RequestID,$AddedTime)=$DB->next_record();`

			`$DB->query("SELECT ceil(COUNT(ID) / ".POSTS_PER_PAGE.") AS Page FROM requests_comments WHERE RequestID = $GroupID AND ID <= $PostID");`
			`list($Page) = $DB->next_record();`

			`if ($LoggedUser['ID']!=$AuthorID && !check_perms('site_moderate_forums')) { error(404); }`
			`if ($DB->record_count()==0) { error(404); }`

			`// Perform the update`
			`$DB->query("UPDATE requests_comments SET`
Empty commit 2013-03-10 08:00:41 +00:00			`Body = '" . db_string($Body) . "',`
Empty commit 2013-02-25 08:00:45 +00:00			`EditedUserID = '".$LoggedUser['ID']."',`
			`EditedTime = '".sqltime()."'`
			`WHERE ID='".$PostID."'");`

			`// Update the cache`
			`$CatalogueID = floor((TORRENT_COMMENTS_PER_PAGE*$Page-TORRENT_COMMENTS_PER_PAGE)/THREAD_CATALOGUE);`
			`$Cache->begin_transaction('request_comments_'.$RequestID.'_catalogue_'.$CatalogueID);`

			`$Cache->update_row($Key, array(`
			`'ID'=>$PostID,`
			`'AuthorID'=>$AuthorID,`
			`'AddedTime'=>$AddedTime,`
Empty commit 2013-03-10 08:00:41 +00:00			`'Body'=>$Body,`
Empty commit 2013-02-25 08:00:45 +00:00			`'EditedUserID'=>db_string($LoggedUser['ID']),`
			`'EditedTime'=>sqltime(),`
			`'Username'=>$LoggedUser['Username']`
			`));`
			`$Cache->commit_transaction(0);`

			`$DB->query("INSERT INTO comments_edits (Page, PostID, EditUser, EditTime, Body)`
			`VALUES ('requests', ".$PostID.", ".db_string($LoggedUser['ID']).", '".sqltime()."', '".db_string($OldBody)."')");`


			`header("Location: requests.php?id=$GroupID&postid=$PostID#post$PostID");`
			`?>`
			`;`