Gazelle/sections/blog/index.php

204 lines
6.1 KiB
PHP
Raw Normal View History

2011-03-28 14:21:28 +00:00
<?
enforce_login();
define('ANNOUNCEMENT_FORUM_ID', 19);
2012-10-11 08:00:15 +00:00
View::show_header('Blog','bbcode');
2013-05-27 08:00:58 +00:00
require(SERVER_ROOT.'/classes/text.class.php');
2011-03-28 14:21:28 +00:00
$Text = new TEXT;
2013-04-19 08:00:55 +00:00
if (check_perms('admin_manage_blog')) {
if (!empty($_REQUEST['action'])) {
switch ($_REQUEST['action']) {
2013-10-01 23:08:42 +00:00
case 'deadthread':
2013-04-20 08:01:01 +00:00
if (is_number($_GET['id'])) {
2013-06-04 08:00:34 +00:00
$DB->query("
UPDATE blog
2013-10-15 08:01:05 +00:00
SET ThreadID = NULL
WHERE ID = ".$_GET['id']);
2011-03-28 14:21:28 +00:00
$Cache->delete_value('blog');
$Cache->delete_value('feed_blog');
}
header('Location: blog.php');
break;
2013-10-15 08:01:05 +00:00
2011-03-28 14:21:28 +00:00
case 'takeeditblog':
authorize();
2013-04-20 08:01:01 +00:00
if (is_number($_POST['blogid']) && is_number($_POST['thread'])) {
2013-06-04 08:00:34 +00:00
$DB->query("
UPDATE blog
2013-10-15 08:01:05 +00:00
SET
Title = '".db_string($_POST['title'])."',
Body = '".db_string($_POST['body'])."',
ThreadID = ".$_POST['thread']."
WHERE ID = '".db_string($_POST['blogid'])."'");
2011-03-28 14:21:28 +00:00
$Cache->delete_value('blog');
$Cache->delete_value('feed_blog');
}
header('Location: blog.php');
break;
2013-10-15 08:01:05 +00:00
2011-03-28 14:21:28 +00:00
case 'editblog':
2013-04-20 08:01:01 +00:00
if (is_number($_GET['id'])) {
2011-03-28 14:21:28 +00:00
$BlogID = $_GET['id'];
2013-06-04 08:00:34 +00:00
$DB->query("
SELECT Title, Body, ThreadID
FROM blog
2013-10-15 08:01:05 +00:00
WHERE ID = $BlogID");
2011-03-28 14:21:28 +00:00
list($Title, $Body, $ThreadID) = $DB->next_record();
}
break;
2013-10-15 08:01:05 +00:00
2011-03-28 14:21:28 +00:00
case 'deleteblog':
2013-04-20 08:01:01 +00:00
if (is_number($_GET['id'])) {
2011-03-28 14:21:28 +00:00
authorize();
2013-06-04 08:00:34 +00:00
$DB->query("
DELETE FROM blog
2013-10-15 08:01:05 +00:00
WHERE ID = '".db_string($_GET['id'])."'");
2011-03-28 14:21:28 +00:00
$Cache->delete_value('blog');
$Cache->delete_value('feed_blog');
}
header('Location: blog.php');
break;
2013-02-22 08:00:24 +00:00
2011-03-28 14:21:28 +00:00
case 'takenewblog':
authorize();
$Title = db_string($_POST['title']);
$Body = db_string($_POST['body']);
$ThreadID = $_POST['thread'];
2013-04-19 08:00:55 +00:00
if ($ThreadID && is_number($ThreadID)) {
2013-06-04 08:00:34 +00:00
$DB->query("
SELECT ForumID
FROM forums_topics
WHERE ID = $ThreadID");
2013-07-10 00:08:53 +00:00
if (!$DB->has_results()) {
2013-04-30 18:18:07 +00:00
error('No such thread exists!');
2011-03-28 14:21:28 +00:00
header('Location: blog.php');
2013-02-22 08:00:24 +00:00
}
2011-03-28 14:21:28 +00:00
} else {
2012-10-11 08:00:15 +00:00
$ThreadID = Misc::create_thread(ANNOUNCEMENT_FORUM_ID, $LoggedUser[ID], $Title, $Body);
2013-04-19 08:00:55 +00:00
if ($ThreadID < 1) {
2011-03-28 14:21:28 +00:00
error(0);
}
}
2013-02-22 08:00:24 +00:00
2013-05-16 16:15:57 +00:00
$DB->query("
2013-10-15 08:01:05 +00:00
INSERT INTO blog
(UserID, Title, Body, Time, ThreadID, Important)
VALUES
('".$LoggedUser['ID']."',
'".db_string($_POST['title'])."',
'".db_string($_POST['body'])."',
'".sqltime()."',
$ThreadID,
'".($_POST['important'] == '1' ? '1' : '0')."')");
2011-03-28 14:21:28 +00:00
$Cache->delete_value('blog');
2013-04-19 08:00:55 +00:00
if ($_POST['important'] == '1') {
2012-05-29 08:00:10 +00:00
$Cache->delete_value('blog_latest_id');
}
2013-04-19 08:00:55 +00:00
if (isset($_POST['subscribe'])) {
2013-06-04 08:00:34 +00:00
$DB->query("
INSERT IGNORE INTO users_subscriptions
VALUES ('$LoggedUser[ID]', $ThreadID)");
2011-03-28 14:21:28 +00:00
$Cache->delete_value('subscriptions_user_'.$LoggedUser['ID']);
}
header('Location: blog.php');
break;
}
}
2013-02-22 08:00:24 +00:00
2011-03-28 14:21:28 +00:00
?>
<div class="box thin">
<div class="head">
2013-10-15 08:01:05 +00:00
<?=(empty($_GET['action']) ? 'Create a blog post' : 'Edit blog post')?>
2011-03-28 14:21:28 +00:00
</div>
2013-10-15 08:01:05 +00:00
<form class="<?=empty($_GET['action']) ? 'create_form' : 'edit_form'?>" name="blog_post" action="blog.php" method="post">
2011-03-28 14:21:28 +00:00
<div class="pad">
2013-10-15 08:01:05 +00:00
<input type="hidden" name="action" value="<?=(empty($_GET['action']) ? 'takenewblog' : 'takeeditblog')?>" />
2011-03-28 14:21:28 +00:00
<input type="hidden" name="auth" value="<?=$LoggedUser['AuthKey']?>" />
2013-04-20 08:01:01 +00:00
<? if (!empty($_GET['action']) && $_GET['action'] == 'editblog') { ?>
2011-03-28 14:21:28 +00:00
<input type="hidden" name="blogid" value="<?=$BlogID; ?>" />
2013-04-19 08:00:55 +00:00
<? } ?>
2011-03-28 14:21:28 +00:00
<h3>Title</h3>
2013-04-19 08:00:55 +00:00
<input type="text" name="title" size="95"<? if (!empty($Title)) { echo ' value="'.display_str($Title).'"'; } ?> /><br />
2011-03-28 14:21:28 +00:00
<h3>Body</h3>
2013-04-19 08:00:55 +00:00
<textarea name="body" cols="95" rows="15"><? if (!empty($Body)) { echo display_str($Body); } ?></textarea> <br />
2013-06-04 08:00:34 +00:00
<input type="checkbox" value="1" name="important" id="important" checked="checked" /><label for="important">Important</label><br />
2011-03-28 14:21:28 +00:00
<h3>Thread ID</h3>
2013-04-19 08:00:55 +00:00
<input type="text" name="thread" size="8"<? if (!empty($ThreadID)) { echo ' value="'.display_str($ThreadID).'"'; } ?> />
2011-03-28 14:21:28 +00:00
(Leave blank to create thread automatically)
<br /><br />
2013-04-19 08:00:55 +00:00
<input id="subscribebox" type="checkbox" name="subscribe"<?=!empty($HeavyInfo['AutoSubscribe']) ? ' checked="checked"' : '' ?> tabindex="2" />
2011-03-28 14:21:28 +00:00
<label for="subscribebox">Subscribe</label>
2012-08-03 08:00:17 +00:00
2011-03-28 14:21:28 +00:00
<div class="center">
2013-10-15 08:01:05 +00:00
<input type="submit" value="<?=(!isset($_GET['action']) ? 'Create blog post' : 'Edit blog post') ?>" />
2011-03-28 14:21:28 +00:00
</div>
</div>
</form>
</div>
<br />
2013-02-22 08:00:24 +00:00
<?
2011-03-28 14:21:28 +00:00
}
?>
<div class="thin">
<?
if (!$Blog = $Cache->get_value('blog')) {
2013-07-10 00:08:53 +00:00
$DB->query("
SELECT
2013-04-19 08:00:55 +00:00
b.ID,
um.Username,
b.Title,
b.Body,
b.Time,
b.ThreadID
FROM blog AS b
2013-07-10 00:08:53 +00:00
LEFT JOIN users_main AS um ON b.UserID = um.ID
2011-03-28 14:21:28 +00:00
ORDER BY Time DESC
LIMIT 20");
$Blog = $DB->to_array();
2013-07-10 00:08:53 +00:00
$Cache->cache_value('Blog', $Blog, 1209600);
2011-03-28 14:21:28 +00:00
}
2012-05-29 08:00:10 +00:00
if ($LoggedUser['LastReadBlog'] < $Blog[0][0]) {
$Cache->begin_transaction('user_info_heavy_'.$LoggedUser['ID']);
$Cache->update_row(false, array('LastReadBlog' => $Blog[0][0]));
$Cache->commit_transaction(0);
2013-07-10 00:08:53 +00:00
$DB->query("
UPDATE users_info
SET LastReadBlog = '".$Blog[0][0]."'
WHERE UserID = ".$LoggedUser['ID']);
2012-05-29 08:00:10 +00:00
$LoggedUser['LastReadBlog'] = $Blog[0][0];
}
2011-03-28 14:21:28 +00:00
foreach ($Blog as $BlogItem) {
list($BlogID, $Author, $Title, $Body, $BlogTime, $ThreadID) = $BlogItem;
?>
<div id="blog<?=$BlogID?>" class="box">
<div class="head">
<strong><?=$Title?></strong> - posted <?=time_diff($BlogTime);?> by <?=$Author?>
2013-04-19 08:00:55 +00:00
<? if (check_perms('admin_manage_blog')) { ?>
2013-02-09 08:01:01 +00:00
- <a href="blog.php?action=editblog&amp;id=<?=$BlogID?>" class="brackets">Edit</a>
<a href="blog.php?action=deleteblog&amp;id=<?=$BlogID?>&amp;auth=<?=$LoggedUser['AuthKey']?>" class="brackets">Delete</a>
2013-04-19 08:00:55 +00:00
<? } ?>
2011-03-28 14:21:28 +00:00
</div>
<div class="pad">
<?=$Text->full_format($Body)?>
2013-04-19 08:00:55 +00:00
<? if ($ThreadID) { ?>
2011-03-28 14:21:28 +00:00
<br /><br />
2012-09-09 08:00:26 +00:00
<em><a href="forums.php?action=viewthread&amp;threadid=<?=$ThreadID?>">Discuss this post here</a></em>
2013-04-19 08:00:55 +00:00
<? if (check_perms('admin_manage_blog')) { ?>
2013-02-09 08:01:01 +00:00
<a href="blog.php?action=deadthread&amp;id=<?=$BlogID?>&amp;auth=<?=$LoggedUser['AuthKey']?>" class="brackets">Remove link</a>
2013-07-10 00:08:53 +00:00
<?
}
2011-03-28 14:21:28 +00:00
} ?>
</div>
</div>
<br />
2013-02-22 08:00:24 +00:00
<?
2011-03-28 14:21:28 +00:00
}
?>
</div>
<?
2012-10-11 08:00:15 +00:00
View::show_footer();
2011-03-28 14:21:28 +00:00
?>