query(" SELECT CEIL(( SELECT COUNT(ID) + 1 FROM requests_comments AS rc WHERE rc.RequestID = '$RequestID' ) / ".TORRENT_COMMENTS_PER_PAGE." ) AS Pages"); list($Pages) = $DB->next_record(); $DB->query(" INSERT INTO requests_comments (RequestID, AuthorID, AddedTime, Body) VALUES ('$RequestID', '".db_string($LoggedUser['ID'])."', '".sqltime()."', '".db_string($_POST['body'])."')"); $PostID = $DB->inserted_id(); $CatalogueID = floor((TORRENT_COMMENTS_PER_PAGE * $Pages - TORRENT_COMMENTS_PER_PAGE) / THREAD_CATALOGUE); $Cache->begin_transaction("request_comments_$RequestID"."_catalogue_$CatalogueID"); $Post = array( 'ID'=>$PostID, 'AuthorID'=>$LoggedUser['ID'], 'AddedTime'=>sqltime(), 'Body'=>$_POST['body'], 'EditedUserID'=>0, 'EditedTime'=>'0000-00-00 00:00:00', 'Username'=>'' ); $Cache->insert('', $Post); $Cache->commit_transaction(0); $Cache->increment("request_comments_$RequestID"); header("Location: requests.php?action=view&id=$RequestID&page=$Pages"); break; case 'get_post': enforce_login(); if (!$_GET['post'] || !is_number($_GET['post'])) { error(0); } $DB->query(" SELECT Body FROM requests_comments WHERE ID = '".db_string($_GET['post'])."'"); list($Body) = $DB->next_record(MYSQLI_NUM); echo trim($Body); break; case 'takeedit_comment': enforce_login(); authorize(); include(SERVER_ROOT.'/classes/text.class.php'); // Text formatting class $Text = new TEXT; // Quick SQL injection check if (!$_POST['post'] || !is_number($_POST['post'])) { error(0); } // Mainly $DB->query(" SELECT rc.Body, rc.AuthorID, rc.RequestID, rc.AddedTime FROM requests_comments AS rc WHERE rc.ID = '".db_string($_POST['post'])."'"); list($OldBody, $AuthorID, $RequestID, $AddedTime) = $DB->next_record(); $DB->query(" SELECT ceil(COUNT(ID) / ".POSTS_PER_PAGE.") AS Page FROM requests_comments WHERE RequestID = $RequestID AND ID <= $_POST[post]"); list($Page) = $DB->next_record(); if ($LoggedUser['ID'] != $AuthorID && !check_perms('site_moderate_forums')) { error(404); } if (!$DB->has_results()) { error(404); } // Perform the update $DB->query(" UPDATE requests_comments SET Body = '".db_string($_POST['body'])."', EditedUserID = '".db_string($LoggedUser['ID'])."', EditedTime = '".sqltime()."' WHERE ID = '".db_string($_POST['post'])."'"); // Update the cache $CatalogueID = floor((TORRENT_COMMENTS_PER_PAGE * $Page - TORRENT_COMMENTS_PER_PAGE) / THREAD_CATALOGUE); $Cache->begin_transaction("request_comments_$RequestID"."_catalogue_$CatalogueID"); $Cache->update_row($_POST['key'], array( 'ID'=>$_POST['post'], 'AuthorID'=>$AuthorID, 'AddedTime'=>$AddedTime, 'Body'=>$_POST['body'], 'EditedUserID'=>db_string($LoggedUser['ID']), 'EditedTime'=>sqltime(), 'Username'=>$LoggedUser['Username'] )); $Cache->commit_transaction(0); $DB->query(" INSERT INTO comments_edits (Page, PostID, EditUser, EditTime, Body) VALUES ('requests', ".db_string($_POST['post']).", ".db_string($LoggedUser['ID']).", '".sqltime()."', '".db_string($OldBody)."')"); // This gets sent to the browser, which echoes it in place of the old body echo $Text->full_format($_POST['body']); break; case 'delete_comment': enforce_login(); authorize(); // Quick SQL injection check if (!$_GET['postid'] || !is_number($_GET['postid'])) { error(0); } // Make sure they are moderators if (!check_perms('site_moderate_forums')) { error(403); } // Get topicid, forumid, number of pages $DB->query(" SELECT DISTINCT RequestID, CEIL(COUNT(rc.ID) / ".TORRENT_COMMENTS_PER_PAGE.") AS Pages, CEIL(SUM(IF(rc.ID <= ".$_GET['postid'].", 1, 0)) / ".TORRENT_COMMENTS_PER_PAGE.") AS Page FROM requests_comments AS rc WHERE rc.RequestID = ( SELECT RequestID FROM requests_comments WHERE ID = '".db_string($_GET['postid'])."' )"); list($RequestID, $Pages, $Page) = $DB->next_record(); // $Pages = number of pages in the thread // $Page = which page the post is on // These are set for cache clearing. $DB->query(" DELETE FROM requests_comments WHERE ID = '".db_string($_GET['postid'])."'"); //We need to clear all subsequential catalogues as they've all been bumped with the absence of this post $ThisCatalogue = floor((TORRENT_COMMENTS_PER_PAGE * $Page - TORRENT_COMMENTS_PER_PAGE) / THREAD_CATALOGUE); $LastCatalogue = floor((TORRENT_COMMENTS_PER_PAGE * $Pages - TORRENT_COMMENTS_PER_PAGE) / THREAD_CATALOGUE); for ($i = $ThisCatalogue; $i <= $LastCatalogue; $i++) { $Cache->delete_value("request_comments_$RequestID" . "_catalogue_$i"); } // Delete thread info cache (eg. number of pages) $Cache->delete_value("request_comments_$GroupID"); break; case 'warn': include(SERVER_ROOT.'/sections/requests/warn.php'); break; case 'take_warn': include(SERVER_ROOT.'/sections/requests/take_warn.php'); break; default: error(0); } } ?>