Gazelle/sections/wiki/takeedit.php

<?
authorize();

include(SERVER_ROOT.'/classes/validate.class.php');
$Val = new VALIDATE;

if (!is_number($_POST['id']) || $_POST['id'] == '') {
	error(0);
}
$Val->SetFields('title', '1', 'string', 'The title must be between 3 and 100 characters', array('maxlength' => 100, 'minlength' => 3));
$Err = $Val->ValidateForm($_POST);
$ArticleID = $_POST['id'];

if ($Err) {
	error($Err);
}

$P = array();
$P = db_array($_POST);

$Article = $Alias->article($ArticleID);
list($Revision, $Title, $Body, $CurRead, $CurEdit, $Date, $Author) = array_shift($Article);
if ($CurEdit > $LoggedUser['EffectiveClass']) {
	error(403);
}

if (check_perms('admin_manage_wiki')) {
	$Read=$_POST['minclassread'];
	$Edit=$_POST['minclassedit'];
	if (!is_number($Read)) {
		error(0); //int?
	}
	if (!is_number($Edit)) {
		error(0);
	}
	if ($Edit > $LoggedUser['EffectiveClass']) {
		error('You can\'t restrict articles above your own level.');
	}
	if ($Edit < $Read) {
		$Edit = $Read; //Human error fix.
	}
}

$MyRevision = $_POST['revision'];
if ($MyRevision != $Revision) {
	error('This article has already been modified from its original version.');
}

$DB->query("
	INSERT INTO wiki_revisions
		(ID, Revision, Title, Body, Date, Author)
	VALUES
		('".db_string($ArticleID)."', '".db_string($Revision)."', '".db_string($Title)."', '".db_string($Body)."', '".db_string($Date)."', '".db_string($Author)."')");
$SQL = "
	UPDATE wiki_articles
	SET
		Revision = '".db_string($Revision + 1)."',
		Title = '$P[title]',
		Body = '$P[body]',";
if ($Read && $Edit) {
	$SQL .= "
		MinClassRead = '$Read',
		MinClassEdit = '$Edit',";
}
$SQL .= "
		Date = '".sqltime()."',
		Author = '$LoggedUser[ID]'
	WHERE ID = '$P[id]'";
$DB->query($SQL);
$Cache->delete_value("wiki_article_$ArticleID");
header("Location: wiki.php?action=article&id=$ArticleID");
?>
Initial import from revision 11440 2011-03-28 14:21:28 +00:00			`<?`
			`authorize();`

Empty commit 2013-05-27 08:00:58 +00:00			`include(SERVER_ROOT.'/classes/validate.class.php');`
Initial import from revision 11440 2011-03-28 14:21:28 +00:00			`$Val = new VALIDATE;`

Empty commit 2013-04-20 08:01:01 +00:00			`if (!is_number($_POST['id']) \|\| $_POST['id'] == '') {`
			`error(0);`
			`}`
Empty commit 2013-11-05 08:01:12 +00:00			`$Val->SetFields('title', '1', 'string', 'The title must be between 3 and 100 characters', array('maxlength' => 100, 'minlength' => 3));`
Initial import from revision 11440 2011-03-28 14:21:28 +00:00			`$Err = $Val->ValidateForm($_POST);`
Empty commit 2013-04-20 08:01:01 +00:00			`$ArticleID = $_POST['id'];`
Initial import from revision 11440 2011-03-28 14:21:28 +00:00
Empty commit 2013-04-20 08:01:01 +00:00			`if ($Err) {`
Initial import from revision 11440 2011-03-28 14:21:28 +00:00			`error($Err);`
			`}`

Empty commit 2013-04-20 08:01:01 +00:00			`$P = array();`
			`$P = db_array($_POST);`
Initial import from revision 11440 2011-03-28 14:21:28 +00:00
			`$Article = $Alias->article($ArticleID);`
			`list($Revision, $Title, $Body, $CurRead, $CurEdit, $Date, $Author) = array_shift($Article);`
Empty commit 2013-04-20 08:01:01 +00:00			`if ($CurEdit > $LoggedUser['EffectiveClass']) {`
			`error(403);`
			`}`
Initial import from revision 11440 2011-03-28 14:21:28 +00:00
Empty commit 2013-04-20 08:01:01 +00:00			`if (check_perms('admin_manage_wiki')) {`
Initial import from revision 11440 2011-03-28 14:21:28 +00:00			`$Read=$_POST['minclassread'];`
			`$Edit=$_POST['minclassedit'];`
Empty commit 2013-04-20 08:01:01 +00:00			`if (!is_number($Read)) {`
			`error(0); //int?`
			`}`
			`if (!is_number($Edit)) {`
			`error(0);`
			`}`
			`if ($Edit > $LoggedUser['EffectiveClass']) {`
			`error('You can\'t restrict articles above your own level.');`
			`}`
			`if ($Edit < $Read) {`
			`$Edit = $Read; //Human error fix.`
			`}`
Initial import from revision 11440 2011-03-28 14:21:28 +00:00			`}`

Empty commit 2013-04-20 08:01:01 +00:00			`$MyRevision = $_POST['revision'];`
			`if ($MyRevision != $Revision) {`
			`error('This article has already been modified from its original version.');`
			`}`
Initial import from revision 11440 2011-03-28 14:21:28 +00:00
Empty commit 2013-11-05 08:01:12 +00:00			`$DB->query("`
			`INSERT INTO wiki_revisions`
			`(ID, Revision, Title, Body, Date, Author)`
			`VALUES`
			`('".db_string($ArticleID)."', '".db_string($Revision)."', '".db_string($Title)."', '".db_string($Body)."', '".db_string($Date)."', '".db_string($Author)."')");`
			`$SQL = "`
			`UPDATE wiki_articles`
			`SET`
			`Revision = '".db_string($Revision + 1)."',`
			`Title = '$P[title]',`
			`Body = '$P[body]',";`
Empty commit 2013-04-20 08:01:01 +00:00			`if ($Read && $Edit) {`
Empty commit 2013-11-05 08:01:12 +00:00			`$SQL .= "`
			`MinClassRead = '$Read',`
			`MinClassEdit = '$Edit',";`
Initial import from revision 11440 2011-03-28 14:21:28 +00:00			`}`
Empty commit 2013-11-05 08:01:12 +00:00			`$SQL .= "`
			`Date = '".sqltime()."',`
			`Author = '$LoggedUser[ID]'`
			`WHERE ID = '$P[id]'";`
Initial import from revision 11440 2011-03-28 14:21:28 +00:00			`$DB->query($SQL);`
Empty commit 2013-11-05 08:01:12 +00:00			`$Cache->delete_value("wiki_article_$ArticleID");`
			`header("Location: wiki.php?action=article&id=$ArticleID");`
Initial import from revision 11440 2011-03-28 14:21:28 +00:00			`?>`