mirror of
https://github.com/WhatCD/Gazelle.git
synced 2025-01-19 04:31:36 +00:00
f76e290493
Allow FLS to assign to staff or forum staff Allow FLS to unresolve all FLS PMs empty commit (testing debug site) empty commit (again) Permissions can only be created up to your current level Permissions can only be altered up to your current level Image proxy should function correctly with SSL now Forums can only be altered up to your current level Adding option to delete polls Remove ghost resolver bug Fixing autocomplete escpaing improved .gitignore Adding debug to all ajax pages Fixed escaping on autocomplete pages
58 lines
2.1 KiB
PHP
58 lines
2.1 KiB
PHP
<?
|
|
authorize();
|
|
|
|
if(!check_perms('admin_manage_forums')) { error(403); }
|
|
$P = db_array($_POST);
|
|
if($_POST['submit'] == 'Delete'){ //Delete
|
|
if(!is_number($_POST['id']) || $_POST['id'] == ''){ error(0); }
|
|
$DB->query('DELETE FROM forums WHERE ID='.$_POST['id']);
|
|
} else { //Edit & Create, Shared Validation
|
|
$Val->SetFields('name', '1','string','The name must be set, and has a max length of 40 characters', array('maxlength'=>40, 'minlength'=>1));
|
|
$Val->SetFields('description', '0','string','The description has a max length of 255 characters', array('maxlength'=>255));
|
|
$Val->SetFields('sort', '1','number','Sort must be set');
|
|
$Val->SetFields('categoryid', '1','number','Category must be set');
|
|
$Val->SetFields('minclassread', '1','number','MinClassRead must be set');
|
|
$Val->SetFields('minclasswrite', '1','number','MinClassWrite must be set');
|
|
$Val->SetFields('minclasscreate', '1','number','MinClassCreate must be set');
|
|
$Err=$Val->ValidateForm($_POST); // Validate the form
|
|
if($Err){ error($Err); }
|
|
|
|
if($P['minclassread'] > $LoggedUser['Class'] || $P['minclasswrite'] > $LoggedUser['Class'] || $P['minclasscreate'] > $LoggedUser['Class']) {
|
|
error(403);
|
|
}
|
|
|
|
|
|
if($_POST['submit'] == 'Edit'){ //Edit
|
|
if(!is_number($_POST['id']) || $_POST['id'] == ''){ error(0); }
|
|
$DB->query("SELECT MinClassRead FROM forums WHERE ID=".$P['id']);
|
|
if($DB->record_count() < 1) {
|
|
error(404);
|
|
} else {
|
|
list($MinClassRead) = $DB->next_record();
|
|
if($MinClassRead > $LoggedUser['Class']) {
|
|
error(403);
|
|
}
|
|
}
|
|
|
|
$DB->query("UPDATE forums SET
|
|
Sort='$P[sort]',
|
|
CategoryID='$P[categoryid]',
|
|
Name='$P[name]',
|
|
Description='$P[description]',
|
|
MinClassRead='$P[minclassread]',
|
|
MinClassWrite='$P[minclasswrite]',
|
|
MinClassCreate='$P[minclasscreate]'
|
|
WHERE ID='$P[id]'");
|
|
} else { //Create
|
|
$DB->query("INSERT INTO forums
|
|
(Sort, CategoryID, Name, Description, MinClassRead, MinClassWrite, MinClassCreate) VALUES
|
|
('$P[sort]', '$P[categoryid]', '$P[name]','$P[description]','$P[minclassread]','$P[minclasswrite]','$P[minclasscreate]')");
|
|
}
|
|
}
|
|
|
|
$Cache->delete('forums_list'); // Clear cache
|
|
|
|
// Go back
|
|
header('Location: tools.php?action=forum')
|
|
?>
|