Gazelle/sections/wiki/takecreate.php
2013-11-05 08:01:12 +00:00

79 lines
1.9 KiB
PHP

<?
authorize();
$P = array();
$P = db_array($_POST);
include(SERVER_ROOT.'/classes/validate.class.php');
$Val = new VALIDATE;
$Val->SetFields('title', '1', 'string', 'The title must be between 3 and 100 characters', array('maxlength' => 100, 'minlength' => 3));
//$Val->SetFields('alias', '1', 'string', 'Please include at least 1 alias, the entire string should be between 2 and 100 characters.', array('maxlength' => 100, 'minlength' => 2));
$Err = $Val->ValidateForm($_POST);
if (!$Err) {
$DB->query("
SELECT ID
FROM wiki_articles
WHERE Title = '$P[title]'");
if ($DB->has_results()) {
list($ID) = $DB->next_record();
$Err = 'An article with that name already exists <a href="wiki.php?action=article&amp;id='.$ID.'">here</a>.';
}
}
if ($Err) {
error($Err);
}
if (check_perms('admin_manage_wiki')) {
$Read = $_POST['minclassread'];
$Edit = $_POST['minclassedit'];
if (!is_number($Read)) {
error(0); //int?
}
if (!is_number($Edit)) {
error(0);
}
if ($Edit > $LoggedUser['EffectiveClass']) {
error('You can\'t restrict articles above your own level');
}
if ($Edit < $Read) {
$Edit = $Read; //Human error fix.
}
} else {
$Read = 100;
$Edit = 100;
}
$DB->query("
INSERT INTO wiki_articles
(Revision, Title, Body, MinClassRead, MinClassEdit, Date, Author)
VALUES
('1', '$P[title]', '$P[body]', '$Read', '$Edit', '".sqltime()."', '$LoggedUser[ID]')");
$ArticleID = $DB->inserted_id();
/*
$NewAlias = $Alias->convert($_POST['alias']);
if ($NewAlias != '') {
$DB->query("
INSERT INTO wiki_aliases (Alias, ArticleID)
VALUES ('$NewAlias', '$ArticleID')");
}
*/
$TitleAlias = $Alias->convert($_POST['title']);
if ($TitleAlias != $Alias) {
$DB->query("
INSERT INTO wiki_aliases (Alias, ArticleID)
VALUES ('".db_string($TitleAlias)."', '$ArticleID')");
}
$Alias->flush();
Misc::write_log("Wiki article $ArticleID (".$_POST['title'].") was created by ".$LoggedUser['Username']);
header("Location: wiki.php?action=article&id=$ArticleID");
?>