本文整理汇总了PHP中check_forum_password函数的典型用法代码示例。如果您正苦于以下问题:PHP check_forum_password函数的具体用法?PHP check_forum_password怎么用?PHP check_forum_password使用的例子?那么, 这里精选的函数代码示例或许可以为您提供帮助。
在下文中一共展示了check_forum_password函数的15个代码示例,这些例子默认根据受欢迎程度排序。您可以为喜欢或者感觉有用的代码点赞,您的评价将有助于系统推荐出更棒的PHP代码示例。
示例1: xthreads_upload_attachments_global
function xthreads_upload_attachments_global()
{
//if($mybb->request_method == 'post' && ($current_page == 'newthread.php' || ($current_page == 'editpost.php' && $mybb->input['action'] != 'deletepost'))
// the above line is always checked and true
global $mybb, $current_page, $thread;
if ($current_page == 'editpost.php') {
// check if first post
$pid = (int) $mybb->input['pid'];
if (!$thread) {
$post = get_post($pid);
if (!empty($post)) {
$thread = get_thread($post['tid']);
}
if (empty($thread)) {
return;
}
$pid = $post['pid'];
}
if ($thread['firstpost'] != $pid) {
return;
}
} elseif ($mybb->input['tid']) {
/* ($mybb->input['action'] == 'editdraft' || $mybb->input['action'] == 'savedraft') && */
$thread = get_thread((int) $mybb->input['tid']);
if ($thread['visible'] != -2 || $thread['uid'] != $mybb->user['uid']) {
// ensure that this is, indeed, a draft
unset($GLOBALS['thread']);
}
}
// permissions check - ideally, should get MyBB to do this, but I see no easy way to implement it unfortunately
if ($mybb->user['suspendposting'] == 1) {
return;
}
if ($thread['fid']) {
$fid = $thread['fid'];
} else {
$fid = (int) $mybb->input['fid'];
}
$forum = get_forum($fid);
if (!$forum['fid'] || $forum['open'] == 0 || $forum['type'] != 'f') {
return;
}
$forumpermissions = forum_permissions($fid);
if ($forumpermissions['canview'] == 0) {
return;
}
if ($current_page == 'newthread.php' && $forumpermissions['canpostthreads'] == 0) {
return;
} elseif ($current_page == 'editpost.php') {
if (!is_moderator($fid, 'caneditposts')) {
if ($thread['closed'] == 1 || $forumpermissions['caneditposts'] == 0 || $mybb->user['uid'] != $thread['uid']) {
return;
}
if ($mybb->settings['edittimelimit'] != 0 && $thread['dateline'] < TIME_NOW - $mybb->settings['edittimelimit'] * 60) {
return;
}
}
}
if (!verify_post_check($mybb->input['my_post_key'], true)) {
return;
}
check_forum_password($forum['fid']);
xthreads_upload_attachments();
}
示例2: get_announcement_func
function get_announcement_func($xmlrpc_params)
{
global $db, $lang, $mybb, $position, $plugins, $pids, $groupscache;
$input = Tapatalk_Input::filterXmlInput(array('topic_id' => Tapatalk_Input::STRING, 'start_num' => Tapatalk_Input::INT, 'last_num' => Tapatalk_Input::INT, 'return_html' => Tapatalk_Input::INT), $xmlrpc_params);
$parser = new Tapatalk_Parser();
// Load global language phrases
$lang->load("announcements");
$aid = intval($_GET['aid']);
// Get announcement fid
$query = $db->simple_select("announcements", "fid", "aid='{$aid}'");
$announcement = $db->fetch_array($query);
$plugins->run_hooks("announcements_start");
if (!$announcement) {
error($lang->error_invalidannouncement);
}
// Get forum info
$fid = $announcement['fid'];
if ($fid > 0) {
$forum = get_forum($fid);
if (!$forum) {
error($lang->error_invalidforum);
}
// Make navigation
build_forum_breadcrumb($forum['fid']);
// Permissions
$forumpermissions = forum_permissions($forum['fid']);
if ($forumpermissions['canview'] == 0 || $forumpermissions['canviewthreads'] == 0) {
error_no_permission();
}
// Check if this forum is password protected and we have a valid password
check_forum_password($forum['fid']);
}
add_breadcrumb($lang->nav_announcements);
$archive_url = build_archive_link("announcement", $aid);
// Get announcement info
$time = TIME_NOW;
$query = $db->query("\n\t\tSELECT u.*, u.username AS userusername, a.*, f.*\n\t\tFROM " . TABLE_PREFIX . "announcements a\n\t\tLEFT JOIN " . TABLE_PREFIX . "users u ON (u.uid=a.uid)\n\t\tLEFT JOIN " . TABLE_PREFIX . "userfields f ON (f.ufid=u.uid)\n\t\tWHERE a.startdate<='{$time}' AND (a.enddate>='{$time}' OR a.enddate='0') AND a.aid='{$aid}'\n\t");
$announcementarray = $db->fetch_array($query);
if (!$announcementarray) {
error($lang->error_invalidannouncement);
}
// Gather usergroup data from the cache
// Field => Array Key
$data_key = array('title' => 'grouptitle', 'usertitle' => 'groupusertitle', 'stars' => 'groupstars', 'starimage' => 'groupstarimage', 'image' => 'groupimage', 'namestyle' => 'namestyle', 'usereputationsystem' => 'usereputationsystem');
foreach ($data_key as $field => $key) {
$announcementarray[$key] = $groupscache[$announcementarray['usergroup']][$field];
}
$announcementarray['dateline'] = $announcementarray['startdate'];
$announcementarray['userusername'] = $announcementarray['username'];
$announcement = build_postbit($announcementarray, 3);
$announcementarray['subject'] = $parser->parse_badwords($announcementarray['subject']);
$lang->forum_announcement = $lang->sprintf($lang->forum_announcement, htmlspecialchars_uni($announcementarray['subject']));
if ($announcementarray['startdate'] > $mybb->user['lastvisit']) {
$setcookie = true;
if (isset($mybb->cookies['mybb']['announcements']) && is_scalar($mybb->cookies['mybb']['announcements'])) {
$cookie = my_unserialize(stripslashes($mybb->cookies['mybb']['announcements']));
if (isset($cookie[$announcementarray['aid']])) {
$setcookie = false;
}
}
if ($setcookie) {
my_set_array_cookie('announcements', $announcementarray['aid'], $announcementarray['startdate'], -1);
}
}
$user_info = get_user($announcementarray['aid']);
$icon_url = absolute_url($user_info['avatar']);
// prepare xmlrpc return
$xmlrpc_post = new xmlrpcval(array('topic_id' => new xmlrpcval('ann_' . $announcementarray['aid']), 'post_title' => new xmlrpcval(basic_clean($announcementarray['subject']), 'base64'), 'post_content' => new xmlrpcval(process_post($announcementarray['message'], $input['return_html']), 'base64'), 'post_author_id' => new xmlrpcval($announcementarray['uid']), 'post_author_name' => new xmlrpcval(basic_clean($announcementarray['username']), 'base64'), 'user_type' => new xmlrpcval(check_return_user_type($announcementarray['username']), 'base64'), 'icon_url' => new xmlrpcval(absolute_url($icon_url)), 'post_time' => new xmlrpcval(mobiquo_iso8601_encode($announcementarray['dateline']), 'dateTime.iso8601'), 'timestamp' => new xmlrpcval($announcementarray['dateline'], 'string')), 'struct');
$result = array('total_post_num' => new xmlrpcval(1, 'int'), 'can_reply' => new xmlrpcval(false, 'boolean'), 'can_subscribe' => new xmlrpcval(false, 'boolean'), 'posts' => new xmlrpcval(array($xmlrpc_post), 'array'));
return new xmlrpcresp(new xmlrpcval($result, 'struct'));
}
示例3: get_post
// Fetch the post from the database.
$post = get_post($mybb->get_input('pid', MyBB::INPUT_INT));
// No result, die.
if (!$post) {
xmlhttp_error($lang->post_doesnt_exist);
}
// Fetch the thread associated with this post.
$thread = get_thread($post['tid']);
// Fetch the specific forum this thread/post is in.
$forum = get_forum($thread['fid']);
// Missing thread, invalid forum? Error.
if (!$thread || !$forum || $forum['type'] != "f") {
xmlhttp_error($lang->thread_doesnt_exist);
}
// Check if this forum is password protected and we have a valid password
if (check_forum_password($forum['fid'], 0, true)) {
xmlhttp_error($lang->wrong_forum_password);
}
// Fetch forum permissions.
$forumpermissions = forum_permissions($forum['fid']);
$plugins->run_hooks("xmlhttp_edit_post_start");
// If this user is not a moderator with "caneditposts" permissions.
if (!is_moderator($forum['fid'], "caneditposts")) {
// Thread is closed - no editing allowed.
if ($thread['closed'] == 1) {
xmlhttp_error($lang->thread_closed_edit_message);
} else {
if ($forum['open'] == 0 || $forumpermissions['caneditposts'] == 0 || $mybb->user['uid'] != $post['uid'] || $mybb->user['uid'] == 0 || $mybb->user['suspendposting'] == 1) {
xmlhttp_error($lang->no_permission_edit_post);
} else {
if ($mybb->usergroup['edittimelimit'] != 0 && $post['dateline'] < TIME_NOW - $mybb->usergroup['edittimelimit'] * 60) {
示例4: m_delete_post_func
function m_delete_post_func($xmlrpc_params)
{
global $input, $post, $thread, $forum, $pid, $tid, $fid, $modlogdata, $db, $lang, $theme, $plugins, $mybb, $session, $settings, $cache, $time, $mybbgroups, $moderation, $parser;
$input = Tapatalk_Input::filterXmlInput(array('post_id' => Tapatalk_Input::INT, 'mode' => Tapatalk_Input::INT, 'reason_text' => Tapatalk_Input::STRING), $xmlrpc_params);
// Load global language phrases
$lang->load("editpost");
$plugins->run_hooks("editpost_start");
// No permission for guests
if (!$mybb->user['uid']) {
error_no_permission();
}
// Get post info
$pid = intval($input['post_id']);
$query = $db->simple_select("posts", "*", "pid='{$pid}'");
$post = $db->fetch_array($query);
if (!$post['pid']) {
error($lang->error_invalidpost);
}
// Get thread info
$tid = $post['tid'];
$thread = get_thread($tid);
if (!$thread['tid']) {
error($lang->error_invalidthread);
}
// Get forum info
$fid = $post['fid'];
$forum = get_forum($fid);
if (!$forum || $forum['type'] != "f") {
error($lang->error_closedinvalidforum);
}
if ($forum['open'] == 0 || $mybb->user['suspendposting'] == 1) {
error_no_permission();
}
$forumpermissions = forum_permissions($fid);
if (!is_moderator($fid, "candeleteposts")) {
if ($thread['closed'] == 1) {
error($lang->redirect_threadclosed);
}
if ($forumpermissions['candeleteposts'] == 0) {
error_no_permission();
}
if ($mybb->user['uid'] != $post['uid']) {
error_no_permission();
}
}
// Check if this forum is password protected and we have a valid password
check_forum_password($forum['fid']);
$plugins->run_hooks("editpost_deletepost");
$modlogdata['fid'] = $fid;
$modlogdata['tid'] = $tid;
$query = $db->simple_select("posts", "pid", "tid='{$tid}'", array("limit" => 1, "order_by" => "dateline", "order_dir" => "asc"));
$firstcheck = $db->fetch_array($query);
if ($firstcheck['pid'] == $pid) {
if ($forumpermissions['candeletethreads'] == 1 || is_moderator($fid, "candeletethreads")) {
delete_thread($tid);
mark_reports($tid, "thread");
log_moderator_action($modlogdata, $lang->thread_deleted);
} else {
error_no_permission();
}
} else {
if ($forumpermissions['candeleteposts'] == 1 || is_moderator($fid, "candeleteposts")) {
// Select the first post before this
delete_post($pid, $tid);
mark_reports($pid, "post");
log_moderator_action($modlogdata, $lang->post_deleted);
} else {
error_no_permission();
}
}
$response = new xmlrpcval(array('result' => new xmlrpcval(true, 'boolean'), 'is_login_mod' => new xmlrpcval(true, 'boolean'), 'result_text' => new xmlrpcval("", 'base64')), 'struct');
return new xmlrpcresp($response);
}
示例5: subscribe_forum_func
function subscribe_forum_func($xmlrpc_params)
{
global $db, $user, $config, $auth;
$user->setup('viewforum');
$params = php_xmlrpc_decode($xmlrpc_params);
$forum_id = intval($params[0]);
if (!$forum_id) {
trigger_error('NO_FORUM');
}
$user_id = $user->data['user_id'];
$sql_from = FORUMS_TABLE . ' f';
$lastread_select = '';
// Grab appropriate forum data
if ($config['load_db_lastread'] && $user->data['is_registered']) {
$sql_from .= ' LEFT JOIN ' . FORUMS_TRACK_TABLE . ' ft ON (ft.user_id = ' . $user->data['user_id'] . '
AND ft.forum_id = f.forum_id)';
$lastread_select .= ', ft.mark_time';
}
if ($user->data['is_registered']) {
$sql_from .= ' LEFT JOIN ' . FORUMS_WATCH_TABLE . ' fw ON (fw.forum_id = f.forum_id AND fw.user_id = ' . $user->data['user_id'] . ')';
$lastread_select .= ', fw.notify_status';
}
$sql = "SELECT f.* {$lastread_select}\n FROM {$sql_from}\n WHERE f.forum_id = {$forum_id}";
$result = $db->sql_query($sql);
$forum_data = $db->sql_fetchrow($result);
$db->sql_freeresult($result);
if (!$forum_data) {
trigger_error('NO_FORUM');
}
// Permissions check
if (!$auth->acl_gets('f_list', 'f_read', $forum_id) || $forum_data['forum_type'] == FORUM_LINK && $forum_data['forum_link'] && !$auth->acl_get('f_read', $forum_id)) {
if ($user->data['user_id'] != ANONYMOUS) {
trigger_error('SORRY_AUTH_READ');
}
trigger_error('LOGIN_VIEWFORUM');
}
// Forum is passworded ... check whether access has been granted to this
// user this session, if not show login box
if ($forum_data['forum_password'] && !check_forum_password($forum_id)) {
trigger_error('LOGIN_FORUM');
}
// Is this forum a link? ... User got here either because the
// number of clicks is being tracked or they guessed the id
if ($forum_data['forum_type'] == FORUM_LINK && $forum_data['forum_link']) {
trigger_error('NO_FORUM');
}
// Not postable forum or showing active topics?
if (!($forum_data['forum_type'] == FORUM_POST || $forum_data['forum_flags'] & FORUM_FLAG_ACTIVE_TOPICS && $forum_data['forum_type'] == FORUM_CAT)) {
trigger_error('NO_FORUM');
}
// Ok, if someone has only list-access, we only display the forum list.
// We also make this circumstance available to the template in case we want to display a notice. ;)
if (!$auth->acl_get('f_read', $forum_id)) {
trigger_error('SORRY_AUTH_READ');
}
if (($config['email_enable'] || $config['jab_enable']) && $config['allow_forum_notify'] && $forum_data['forum_type'] == FORUM_POST && $auth->acl_get('f_subscribe', $forum_id)) {
$notify_status = isset($forum_data['notify_status']) ? $forum_data['notify_status'] : 'unset';
$table_sql = FORUMS_WATCH_TABLE;
$where_sql = 'forum_id';
$match_id = $forum_id;
// Is user watching this thread?
if ($user_id != ANONYMOUS) {
if ($notify_status == 'unset') {
$sql = "SELECT notify_status\n FROM {$table_sql}\n WHERE {$where_sql} = {$match_id}\n AND user_id = {$user_id}";
$result = $db->sql_query($sql);
$notify_status = ($row = $db->sql_fetchrow($result)) ? $row['notify_status'] : NULL;
$db->sql_freeresult($result);
}
if (!is_null($notify_status) && $notify_status !== '') {
if ($notify_status) {
$sql = 'UPDATE ' . $table_sql . "\n SET notify_status = 0\n WHERE {$where_sql} = {$match_id}\n AND user_id = {$user_id}";
$db->sql_query($sql);
}
} else {
$sql = 'INSERT INTO ' . $table_sql . " (user_id, {$where_sql}, notify_status)\n VALUES ({$user_id}, {$match_id}, 0)";
$db->sql_query($sql);
}
$s_result = true;
} else {
trigger_error('LOGIN_VIEWFORUM');
}
} else {
$s_result = false;
}
$response = new xmlrpcval(array('result' => new xmlrpcval($s_result, 'boolean'), 'result_text' => new xmlrpcval($s_result ? '' : 'Subscribe failed', 'base64')), 'struct');
return new xmlrpcresp($response);
}
示例6: get_topic_func
function get_topic_func($xmlrpc_params)
{
global $db, $auth, $user, $config;
$user->setup('viewforum');
$params = php_xmlrpc_decode($xmlrpc_params);
list($start, $limit) = process_page($params[1], $params[2]);
// get forum id from parameters
$forum_id = intval($params[0]);
if (!$forum_id) {
trigger_error('NO_FORUM');
}
// check if need sticky/announce topic only
$topic_type = '';
if (isset($params[3])) {
// check if need sticky topic only
if ($params[3] == 'TOP') {
$topic_type = POST_STICKY;
$start = 0;
$limit = 20;
} else {
if ($params[3] == 'ANN') {
$topic_type = POST_ANNOUNCE . ', ' . POST_GLOBAL;
$start = 0;
$limit = 20;
}
}
}
// $default_sort_days = (!empty($user->data['user_topic_show_days'])) ? $user->data['user_topic_show_days'] : 0;
// $default_sort_key = (!empty($user->data['user_topic_sortby_type'])) ? $user->data['user_topic_sortby_type'] : 't';
// $default_sort_dir = (!empty($user->data['user_topic_sortby_dir'])) ? $user->data['user_topic_sortby_dir'] : 'd';
//
// $sort_days = request_var('st', $default_sort_days); // default to get all topic
// $sort_key = request_var('sk', $default_sort_key); // default sort by last post time
// $sort_dir = request_var('sd', $default_sort_dir); // default sort as DESC
$sort_days = 0;
$sort_key = 't';
$sort_dir = 'd';
//------- Grab appropriate forum data --------
$sql = "SELECT f.* FROM " . FORUMS_TABLE . " f WHERE f.forum_id = {$forum_id}";
$result = $db->sql_query($sql);
$forum_data = $db->sql_fetchrow($result);
$db->sql_freeresult($result);
// Forum does not exist
if (!$forum_data) {
trigger_error('NO_FORUM');
}
// Can not get topics from link forum
if ($forum_data['forum_type'] == FORUM_LINK) {
trigger_error('NO_FORUM');
}
// Permissions check
if (!$auth->acl_gets('f_list', 'f_read', $forum_id) || $forum_data['forum_type'] == FORUM_LINK && $forum_data['forum_link'] && !$auth->acl_get('f_read', $forum_id)) {
if ($user->data['user_id'] != ANONYMOUS) {
trigger_error('SORRY_AUTH_READ');
}
trigger_error('LOGIN_VIEWFORUM');
}
// Forum is passworded
if ($forum_data['forum_password'] && !check_forum_password($forum_id)) {
trigger_error('LOGIN_FORUM');
}
if (!$auth->acl_get('f_read', $forum_id)) {
trigger_error('NO_READ_ACCESS');
}
// Topic ordering options
$sort_by_sql = array('a' => 't.topic_first_poster_name', 't' => 't.topic_last_post_time', 'r' => 't.topic_replies', 's' => 't.topic_title', 'v' => 't.topic_views');
// Limit topics to certain time frame, obtain correct topic count
// global announcements must not be counted, normal announcements have to
// be counted, as forum_topics(_real) includes them
$sql_approved = $auth->acl_get('m_approve', $forum_id) ? '' : ' AND t.topic_approved = 1 ';
// Get all shadow topics in this forum
$sql = 'SELECT t.topic_moved_id, t.topic_id
FROM ' . TOPICS_TABLE . ' t
WHERE t.forum_id = ' . $forum_id . '
AND t.topic_type IN (' . POST_NORMAL . ', ' . POST_STICKY . ', ' . POST_ANNOUNCE . ', ' . POST_GLOBAL . ')
AND t.topic_status = ' . ITEM_MOVED . ' ' . $sql_approved;
$result = $db->sql_query($sql);
$shadow_topic_list = array();
while ($row = $db->sql_fetchrow($result)) {
$shadow_topic_list[$row['topic_moved_id']] = $row['topic_id'];
}
$db->sql_freeresult($result);
// Pick out those shadow topics that the user has no permission to access
if (!empty($shadow_topic_list)) {
$sql = 'SELECT t.topic_id, t.forum_id
FROM ' . TOPICS_TABLE . ' t
WHERE ' . $db->sql_in_set('t.topic_id', array_keys($shadow_topic_list));
$result = $db->sql_query($sql);
while ($row = $db->sql_fetchrow($result)) {
if ($auth->acl_get('f_read', $row['forum_id'])) {
unset($shadow_topic_list[$row['topic_id']]);
}
}
$db->sql_freeresult($result);
}
// Grab all topic data
$topic_list = array();
$sql_limit = $limit;
// num of topics needs to be return, default is 20, at most 50
$sql_sort_order = $sort_by_sql[$sort_key] . ' ' . ($sort_dir == 'd' ? 'DESC' : 'ASC');
//.........这里部分代码省略.........
示例7: check_forum_password
/**
* Check the password given on a certain forum for validity
*
* @param int The forum ID
* @param boolean The Parent ID
*/
function check_forum_password($fid, $pid = 0)
{
global $mybb, $header, $footer, $headerinclude, $theme, $templates, $lang, $forum_cache;
$showform = true;
if (!is_array($forum_cache)) {
$forum_cache = cache_forums();
if (!$forum_cache) {
return false;
}
}
// Loop through each of parent forums to ensure we have a password for them too
$parents = explode(',', $forum_cache[$fid]['parentlist']);
rsort($parents);
if (!empty($parents)) {
foreach ($parents as $parent_id) {
if ($parent_id == $fid || $parent_id == $pid) {
continue;
}
if ($forum_cache[$parent_id]['password'] != "") {
check_forum_password($parent_id, $fid);
}
}
}
$password = $forum_cache[$fid]['password'];
if ($password) {
if ($mybb->input['pwverify'] && $pid == 0) {
if ($password == $mybb->input['pwverify']) {
my_setcookie("forumpass[{$fid}]", md5($mybb->user['uid'] . $mybb->input['pwverify']), null, true);
$showform = false;
} else {
eval("\$pwnote = \"" . $templates->get("forumdisplay_password_wrongpass") . "\";");
$showform = true;
}
} else {
if (!$mybb->cookies['forumpass'][$fid] || $mybb->cookies['forumpass'][$fid] && md5($mybb->user['uid'] . $password) != $mybb->cookies['forumpass'][$fid]) {
$showform = true;
} else {
$showform = false;
}
}
} else {
$showform = false;
}
if ($showform) {
if ($pid) {
header("Location: " . $mybb->settings['bburl'] . "/" . get_forum_link($fid));
} else {
$_SERVER['REQUEST_URI'] = htmlspecialchars_uni($_SERVER['REQUEST_URI']);
eval("\$pwform = \"" . $templates->get("forumdisplay_password") . "\";");
output_page($pwform);
}
exit;
}
}
示例8: thread_info
}
$threadinfo = thread_info($_REQUEST['id']);
if (!$threadinfo['threadid'] || $threadinfo['del']) {
message($apx->lang->get('MSG_THREADNOTEXIST'));
}
$foruminfo = forum_info($threadinfo['forumid']);
if (!$foruminfo['forumid']) {
message($apx->lang->get('MSG_FORUMNOTEXIST'));
}
if (!forum_access_read($foruminfo)) {
tmessage('noright', array(), false, false);
}
if (!forum_access_post($foruminfo, $threadinfo)) {
tmessage('noright', array(), false, false);
}
check_forum_password($foruminfo);
////////////////////////////////////////////////////////////////////////////////////////// POST ERSTELLEN
//Vorschau generieren
if ($_POST['preview']) {
$preview = $_POST['text'];
if ($_POST['transform_links']) {
$preview = transform_urls($preview);
}
$preview = forum_replace($preview, $_POST['allowcodes'], $_POST['allowsmilies']);
$apx->tmpl->assign('PREVIEW', $preview);
} elseif ($_POST['send']) {
//Captcha prüfen
if ($set['forum']['captcha'] && !$user->info['userid']) {
require BASEDIR . 'lib/class.captcha.php';
$captcha = new captcha();
$captchafailed = $captcha->check();
示例9: trigger_error
// Setup look and feel
$user->setup('viewtopic', $topic_data['forum_style']);
if (!$topic_data['topic_approved'] && !$auth->acl_get('m_approve', $forum_id)) {
trigger_error('NO_TOPIC');
}
// Start auth check (tapatalk add: avoid permission check for global announcement topic)
if (!$auth->acl_get('f_read', $forum_id) && $topic_data['topic_type'] != POST_GLOBAL) {
if ($user->data['user_id'] != ANONYMOUS) {
trigger_error('SORRY_AUTH_READ');
}
trigger_error('LOGIN_VIEWFORUM');
//login_box('', $user->lang['LOGIN_VIEWFORUM']);
}
// Forum is passworded ... check whether access has been granted to this
// user this session, if not show login box
if ($topic_data['forum_password'] && !check_forum_password($forum_id)) {
trigger_error('LOGIN_FORUM');
//login_forum_box($topic_data);
}
/*
// Redirect to login or to the correct post upon emailed notification links
if (isset($_GET['e']))
{
$jump_to = request_var('e', 0);
$redirect_url = append_sid("{$phpbb_root_path}viewtopic.$phpEx", "f=$forum_id&t=$topic_id");
if ($user->data['user_id'] == ANONYMOUS)
{
trigger_error('LOGIN_NOTIFY_TOPIC');
//login_box($redirect_url . "&p=$post_id&e=$jump_to", $user->lang['LOGIN_NOTIFY_TOPIC']);
示例10: build_forumbits
$bgcolor = "trow1";
if ($mybb->settings['subforumsindex'] != 0) {
$showdepth = 3;
} else {
$showdepth = 2;
}
$subforums = '';
$child_forums = build_forumbits($fid, 2);
$forums = $child_forums['forum_list'];
if ($forums) {
$lang->sub_forums_in = $lang->sprintf($lang->sub_forums_in, $foruminfo['name']);
eval("\$subforums = \"" . $templates->get("forumdisplay_subforums") . "\";");
}
$excols = "forumdisplay";
// Password protected forums
check_forum_password($foruminfo['fid']);
if ($foruminfo['linkto']) {
header("Location: {$foruminfo['linkto']}");
exit;
}
// Make forum jump...
if ($mybb->settings['enableforumjump'] != 0) {
$forumjump = build_forum_jump("", $fid, 1);
}
if ($foruminfo['type'] == "f" && $foruminfo['open'] != 0 && $fpermissions['canpostthreads'] != 0 && $mybb->user['suspendposting'] == 0) {
eval("\$newthread = \"" . $templates->get("forumdisplay_newthread") . "\";");
}
if ($fpermissions['cansearch'] != 0 && $foruminfo['type'] == "f") {
eval("\$searchforum = \"" . $templates->get("forumdisplay_searchforum") . "\";");
}
// Gather forum stats
示例11: remove_attachment_func
function remove_attachment_func($xmlrpc_params)
{
global $db, $auth, $user, $config, $phpbb_root_path, $phpEx;
$user->setup('posting');
if (!$user->data['is_registered']) {
trigger_error('LOGIN_EXPLAIN_POST');
}
$params = php_xmlrpc_decode($xmlrpc_params);
include $phpbb_root_path . 'includes/functions_posting.' . $phpEx;
include $phpbb_root_path . 'includes/message_parser.' . $phpEx;
// get parameters
$attachment_id = isset($params[0]) ? intval($params[0]) : trigger_error('Attachment not exists');
$forum_id = isset($params[1]) ? intval($params[1]) : trigger_error('NO_FORUM');
$group_id = isset($params[2]) ? $params[2] : '';
$post_id = isset($params[3]) ? intval($params[3]) : '';
$_POST['attachment_data'] = $group_id ? unserialize(base64_decode($group_id)) : array();
// Forum does not exist
if (!$forum_id) {
trigger_error('NO_FORUM');
}
$sql = "SELECT f.* FROM " . FORUMS_TABLE . " f WHERE f.forum_id = {$forum_id}";
$result = $db->sql_query($sql);
$forum_data = $db->sql_fetchrow($result);
$db->sql_freeresult($result);
if (!$forum_data) {
trigger_error('NO_FORUM');
}
if ($forum_data['forum_password'] && !check_forum_password($forum_id)) {
trigger_error('LOGIN_FORUM');
}
if (!$auth->acl_gets('f_read', $forum_id)) {
if ($user->data['user_id'] != ANONYMOUS) {
trigger_error('USER_CANNOT_READ');
}
trigger_error('LOGIN_EXPLAIN_POST');
}
// Is the user able to post within this forum?
if ($forum_data['forum_type'] != FORUM_POST) {
trigger_error('USER_CANNOT_FORUM_POST');
}
// Check permissions
if ($user->data['is_bot'] || !$auth->acl_get('f_attach', $forum_id) || !$auth->acl_get('u_attach') || !$config['allow_attachments'] || @ini_get('file_uploads') == '0' || strtolower(@ini_get('file_uploads')) == 'off') {
trigger_error('NOT_AUTHORISED');
}
if (!$auth->acl_get('f_post', $forum_id) && !$auth->acl_gets('f_edit', 'm_edit', $forum_id) && !$auth->acl_get('f_reply', $forum_id)) {
trigger_error('USER_CANNOT_POST');
}
global $warn_msg;
$position = '';
foreach ($_POST['attachment_data'] as $pos => $data) {
if ($data['attach_id'] == $attachment_id) {
$position = $pos;
break;
}
}
if ($position === '') {
$warn_msg = 'Attachment not exists';
} else {
$_POST['delete_file'][$position] = 'Delete file';
$_REQUEST['delete_file'][$position] = 'Delete file';
$message_parser = new parse_message();
$message_parser->get_submitted_attachment_data();
$message_parser->parse_attachments('fileupload', 'post', $forum_id, false, false, true);
$group_id = base64_encode(serialize($message_parser->attachment_data));
$warn_msg = join("\n", $message_parser->warn_msg);
}
$xmlrpc_result = new xmlrpcval(array('result' => new xmlrpcval($warn_msg ? false : true, 'boolean'), 'result_text' => new xmlrpcval(strip_tags($warn_msg), 'base64'), 'group_id' => new xmlrpcval($group_id)), 'struct');
return new xmlrpcresp($xmlrpc_result);
}
示例12: m_rename_topic_func
function m_rename_topic_func($xmlrpc_params)
{
global $db, $auth, $user, $config, $template, $cache, $phpEx, $phpbb_root_path, $phpbb_home;
$user->setup('posting');
include $phpbb_root_path . 'includes/message_parser.' . $phpEx;
$params = php_xmlrpc_decode($xmlrpc_params);
$submit = true;
$preview = false;
$refresh = false;
$mode = 'edit';
// get topic information from parameters
$topic_id = intval($params[0]);
$post_title = $db->sql_escape(trim($params[1]));
//$post_content = $params[2];
$GLOBALS['return_html'] = isset($params[3]) ? $params[3] : false;
$sql = 'SELECT * FROM ' . POSTS_TABLE . ' WHERE topic_id = ' . $topic_id . ' ORDER BY post_time ASC';
$result = $db->sql_query_limit($sql, 1);
$first_post_data = $db->sql_fetchrow($result);
$post_id = $first_post_data['post_id'];
if (empty($post_id)) {
trigger_error('NO_POST');
}
$post_data = array();
$sql = 'SELECT p.*, t.*, f.*, u.username
FROM ' . POSTS_TABLE . ' p
LEFT JOIN ' . TOPICS_TABLE . ' t ON (p.topic_id = t.topic_id)
LEFT JOIN ' . FORUMS_TABLE . ' f ON (t.forum_id = f.forum_id OR (t.topic_type = ' . POST_GLOBAL . ' AND f.forum_type = ' . FORUM_POST . '))
LEFT JOIN ' . USERS_TABLE . ' u ON (p.poster_id = u.user_id)' . "\r\r\n WHERE p.post_id = {$post_id}";
$result = $db->sql_query_limit($sql, 1);
$post_data = $db->sql_fetchrow($result);
$db->sql_freeresult($result);
if (!$post_data) {
trigger_error('NO_POST');
}
// Use post_row values in favor of submitted ones...
$forum_id = (int) $post_data['forum_id'];
$topic_id = (int) $post_data['topic_id'];
$post_id = (int) $post_id;
// Need to login to passworded forum first?
if ($post_data['forum_password'] && !check_forum_password($forum_id)) {
trigger_error('LOGIN_FORUM');
}
// Is the user able to read within this forum?
if (!$auth->acl_get('f_read', $forum_id)) {
trigger_error('USER_CANNOT_READ');
}
// Permission to do the action asked?
if (!($user->data['is_registered'] && $auth->acl_gets('f_edit', 'm_edit', $forum_id))) {
trigger_error('USER_CANNOT_EDIT');
}
// Forum/Topic locked?
if (($post_data['forum_status'] == ITEM_LOCKED || isset($post_data['topic_status']) && $post_data['topic_status'] == ITEM_LOCKED) && !$auth->acl_get('m_edit', $forum_id)) {
trigger_error($post_data['forum_status'] == ITEM_LOCKED ? 'FORUM_LOCKED' : 'TOPIC_LOCKED');
}
// Can we edit this post ... if we're a moderator with rights then always yes
// else it depends on editing times, lock status and if we're the correct user
if (!$auth->acl_get('m_edit', $forum_id)) {
if ($user->data['user_id'] != $post_data['poster_id']) {
trigger_error('USER_CANNOT_EDIT');
}
if (!($post_data['post_time'] > time() - $config['edit_time'] * 60 || !$config['edit_time'])) {
trigger_error('CANNOT_EDIT_TIME');
}
if ($post_data['post_edit_locked']) {
trigger_error('CANNOT_EDIT_POST_LOCKED');
}
}
if (empty($post_title)) {
trigger_error('EMPTY_SUBJECT');
}
$sql = "UPDATE " . TOPICS_TABLE . " SET topic_title = '{$post_title}' WHERE topic_id = '{$topic_id}' ";
$db->sql_query($sql);
$sql = "UPDATE " . POSTS_TABLE . " SET post_subject = '{$post_title}' WHERE post_id = '{$post_id}'";
$db->sql_query($sql);
$xmlrpc_reply_topic = new xmlrpcval(array('result' => new xmlrpcval(true, 'boolean'), 'is_login_mod' => new xmlrpcval(true, 'boolean'), 'result_text' => new xmlrpcval("", 'base64')), 'struct');
return new xmlrpcresp($xmlrpc_reply_topic);
}
示例13: AND
}
$sql = 'SELECT f.*, t.*, p.*, u.username, u.username_clean, u.user_sig, u.user_sig_bbcode_uid, u.user_sig_bbcode_bitfield
FROM ' . POSTS_TABLE . ' p, ' . TOPICS_TABLE . ' t, ' . FORUMS_TABLE . ' f, ' . USERS_TABLE . " u\r\r\n WHERE p.post_id = {$post_id}\r\r\n AND t.topic_id = p.topic_id\r\r\n AND u.user_id = p.poster_id\r\r\n AND (f.forum_id = t.forum_id\r\r\n OR f.forum_id = {$forum_id})" . ($auth->acl_get('m_approve', $forum_id) ? '' : 'AND p.post_approved = 1');
$result = $db->sql_query($sql);
$post_data = $db->sql_fetchrow($result);
$db->sql_freeresult($result);
if (!$post_data) {
$user->setup('posting');
trigger_error('NO_POST');
}
$user->setup(array('posting', 'mcp', 'viewtopic'), $post_data['forum_style']);
// Use post_row values in favor of submitted ones...
$forum_id = !empty($post_data['forum_id']) ? (int) $post_data['forum_id'] : (int) $forum_id;
$topic_id = !empty($post_data['topic_id']) ? (int) $post_data['topic_id'] : (int) $topic_id;
$post_id = !empty($post_data['post_id']) ? (int) $post_data['post_id'] : (int) $post_id;
if ($post_data['forum_password'] && !check_forum_password($forum_id)) {
trigger_error('LOGIN_FORUM');
}
// Check permissions
if ($user->data['is_bot'] || $user->data['user_id'] == ANONYMOUS) {
trigger_error('USER_CANNOT_DELETE');
}
// Is the user able to read within this forum?
if (!$auth->acl_get('f_read', $forum_id)) {
trigger_error('USER_CANNOT_READ');
}
if (!$user->data['is_registered'] || !$auth->acl_gets('f_delete', 'm_delete', $forum_id)) {
trigger_error('USER_CANNOT_DELETE');
}
// Forum/Topic locked?
if (($post_data['forum_status'] == ITEM_LOCKED || isset($post_data['topic_status']) && $post_data['topic_status'] == ITEM_LOCKED) && !$auth->acl_get('m_edit', $forum_id)) {
示例14: save_raw_post_func
function save_raw_post_func($xmlrpc_params)
{
global $db, $auth, $user, $config, $template, $cache, $phpEx, $phpbb_root_path, $phpbb_home;
$user->setup('posting');
include $phpbb_root_path . 'includes/message_parser.' . $phpEx;
$params = php_xmlrpc_decode($xmlrpc_params);
$submit = true;
$preview = false;
$refresh = false;
$mode = 'edit';
// get post information from parameters
$post_id = intval($params[0]);
$post_title = $params[1];
$post_content = $params[2];
$GLOBALS['return_html'] = isset($params[3]) ? $params[3] : false;
$post_data = array();
$sql = 'SELECT p.*, t.*, f.*, u.username
FROM ' . POSTS_TABLE . ' p
LEFT JOIN ' . TOPICS_TABLE . ' t ON (p.topic_id = t.topic_id)
LEFT JOIN ' . FORUMS_TABLE . ' f ON (t.forum_id = f.forum_id OR (t.topic_type = ' . POST_GLOBAL . ' AND f.forum_type = ' . FORUM_POST . '))
LEFT JOIN ' . USERS_TABLE . ' u ON (p.poster_id = u.user_id)' . "\r\r\n WHERE p.post_id = {$post_id}";
$result = $db->sql_query_limit($sql, 1);
$post_data = $db->sql_fetchrow($result);
$db->sql_freeresult($result);
if (!$post_data) {
trigger_error('NO_POST');
}
// Use post_row values in favor of submitted ones...
$forum_id = (int) $post_data['forum_id'];
$topic_id = (int) $post_data['topic_id'];
$post_id = (int) $post_id;
// Need to login to passworded forum first?
if ($post_data['forum_password'] && !check_forum_password($forum_id)) {
trigger_error('LOGIN_FORUM');
}
// Is the user able to read within this forum?
if (!$auth->acl_get('f_read', $forum_id)) {
trigger_error('USER_CANNOT_READ');
}
// Permission to do the action asked?
if (!($user->data['is_registered'] && $auth->acl_gets('f_edit', 'm_edit', $forum_id))) {
trigger_error('USER_CANNOT_EDIT');
}
// Forum/Topic locked?
if (($post_data['forum_status'] == ITEM_LOCKED || isset($post_data['topic_status']) && $post_data['topic_status'] == ITEM_LOCKED) && !$auth->acl_get('m_edit', $forum_id)) {
trigger_error($post_data['forum_status'] == ITEM_LOCKED ? 'FORUM_LOCKED' : 'TOPIC_LOCKED');
}
// Can we edit this post ... if we're a moderator with rights then always yes
// else it depends on editing times, lock status and if we're the correct user
if (!$auth->acl_get('m_edit', $forum_id)) {
if ($user->data['user_id'] != $post_data['poster_id']) {
trigger_error('USER_CANNOT_EDIT');
}
if (!($post_data['post_time'] > time() - $config['edit_time'] * 60 || !$config['edit_time'])) {
trigger_error('CANNOT_EDIT_TIME');
}
if ($post_data['post_edit_locked']) {
trigger_error('CANNOT_EDIT_POST_LOCKED');
}
}
// Determine some vars
if (isset($post_data['poster_id']) && $post_data['poster_id'] == ANONYMOUS) {
$post_data['quote_username'] = !empty($post_data['post_username']) ? $post_data['post_username'] : $user->lang['GUEST'];
} else {
$post_data['quote_username'] = isset($post_data['username']) ? $post_data['username'] : '';
}
$post_data['post_edit_locked'] = isset($post_data['post_edit_locked']) ? (int) $post_data['post_edit_locked'] : 0;
$post_data['post_subject'] = in_array($mode, array('quote', 'edit')) ? $post_data['post_subject'] : (isset($post_data['topic_title']) ? $post_data['topic_title'] : '');
$post_data['topic_time_limit'] = isset($post_data['topic_time_limit']) ? $post_data['topic_time_limit'] ? (int) $post_data['topic_time_limit'] / 86400 : (int) $post_data['topic_time_limit'] : 0;
$post_data['poll_length'] = !empty($post_data['poll_length']) ? (int) $post_data['poll_length'] / 86400 : 0;
$post_data['poll_start'] = !empty($post_data['poll_start']) ? (int) $post_data['poll_start'] : 0;
$post_data['icon_id'] = !isset($post_data['icon_id']) || in_array($mode, array('quote', 'reply')) ? 0 : (int) $post_data['icon_id'];
$post_data['poll_options'] = array();
// Get Poll Data
if ($post_data['poll_start']) {
$sql = 'SELECT poll_option_text
FROM ' . POLL_OPTIONS_TABLE . "\r\r\n WHERE topic_id = {$topic_id}\r\r\n ORDER BY poll_option_id";
$result = $db->sql_query($sql);
while ($row = $db->sql_fetchrow($result)) {
$post_data['poll_options'][] = trim($row['poll_option_text']);
}
$db->sql_freeresult($result);
}
$orig_poll_options_size = sizeof($post_data['poll_options']);
$message_parser = new parse_message();
if (isset($post_data['post_text'])) {
$message_parser->message =& $post_data['post_text'];
unset($post_data['post_text']);
}
// Set some default variables
$uninit = array('post_attachment' => 0, 'poster_id' => $user->data['user_id'], 'enable_magic_url' => 0, 'topic_status' => 0, 'topic_type' => POST_NORMAL, 'post_subject' => '', 'topic_title' => '', 'post_time' => 0, 'post_edit_reason' => '', 'notify_set' => 0);
foreach ($uninit as $var_name => $default_value) {
if (!isset($post_data[$var_name])) {
$post_data[$var_name] = $default_value;
}
}
unset($uninit);
// Always check if the submitted attachment data is valid and belongs to the user.
// Further down (especially in submit_post()) we do not check this again.
$message_parser->get_submitted_attachment_data($post_data['poster_id']);
//.........这里部分代码省略.........
示例15: replyban_run
function replyban_run()
{
global $db, $mybb, $lang, $templates, $theme, $headerinclude, $header, $footer, $replyban, $moderation;
$lang->load("replyban");
if ($mybb->input['action'] != "replyban" && $mybb->input['action'] != "do_replyban" && $mybb->input['action'] != "liftreplyban") {
return;
}
if ($mybb->input['action'] == "replyban") {
$tid = $mybb->get_input('tid', MyBB::INPUT_INT);
$thread = get_thread($tid);
if (!is_moderator($thread['fid'], "canmanagethreads")) {
error_no_permission();
}
if (!$thread['tid']) {
error($lang->error_invalidthread);
}
$thread['subject'] = htmlspecialchars_uni($thread['subject']);
$lang->reply_bans_for = $lang->sprintf($lang->reply_bans_for, $thread['subject']);
check_forum_password($thread['fid']);
build_forum_breadcrumb($thread['fid']);
add_breadcrumb($thread['subject'], get_thread_link($thread['tid']));
add_breadcrumb($lang->reply_bans);
$query = $db->query("\r\n\t\t\tSELECT r.*, u.username\r\n\t\t\tFROM " . TABLE_PREFIX . "replybans r\r\n\t\t\tLEFT JOIN " . TABLE_PREFIX . "users u ON (r.uid=u.uid)\r\n\t\t\tWHERE r.tid='{$thread['tid']}'\r\n\t\t\tORDER BY r.dateline DESC\r\n\t\t");
while ($ban = $db->fetch_array($query)) {
$ban['reason'] = htmlspecialchars_uni($ban['reason']);
$ban['username'] = build_profile_link($ban['username'], $ban['uid']);
if ($ban['lifted'] == 0) {
$ban['lifted'] = $lang->permanent;
} else {
$ban['lifted'] = my_date('relative', $ban['lifted'], '', 2);
}
$alt_bg = alt_trow();
eval("\$ban_bit .= \"" . $templates->get("moderation_replyban_bit") . "\";");
}
if (!$ban_bit) {
eval("\$ban_bit = \"" . $templates->get("moderation_replyban_no_bans") . "\";");
}
// Generate the banned times dropdown
$liftlist = '';
$bantimes = fetch_ban_times();
foreach ($bantimes as $time => $title) {
$selected = '';
if (isset($banned['bantime']) && $banned['bantime'] == $time) {
$selected = " selected=\"selected\"";
}
$thattime = '';
if ($time != '---') {
$dateline = TIME_NOW;
if (isset($banned['dateline'])) {
$dateline = $banned['dateline'];
}
$thatime = my_date("D, jS M Y @ g:ia", ban_date2timestamp($time, $dateline));
$thattime = " ({$thatime})";
}
eval("\$liftlist .= \"" . $templates->get("moderation_replyban_liftlist") . "\";");
}
eval("\$replyban = \"" . $templates->get("moderation_replyban") . "\";");
output_page($replyban);
}
if ($mybb->input['action'] == "do_replyban" && $mybb->request_method == "post") {
// Verify incoming POST request
verify_post_check($mybb->get_input('my_post_key'));
$tid = $mybb->get_input('tid', MyBB::INPUT_INT);
$thread = get_thread($tid);
if (!is_moderator($thread['fid'], "canmanagethreads")) {
error_no_permission();
}
if (!$thread['tid']) {
error($lang->error_invalidthread);
}
$user = get_user_by_username($mybb->input['username'], array('fields' => array('username')));
if (!$user['uid']) {
error($lang->error_invaliduser);
}
$mybb->input['reason'] = $mybb->get_input('reason');
if (!trim($mybb->input['reason'])) {
error($lang->error_missing_reason);
}
$query = $db->simple_select('replybans', 'rid', "uid='{$user['uid']}' AND tid='{$thread['tid']}'");
$existingban = $db->fetch_field($query, 'rid');
if ($existingban > 0) {
error($lang->error_alreadybanned);
}
if ($mybb->get_input('liftban') == '---') {
$lifted = 0;
} else {
$lifted = ban_date2timestamp($mybb->get_input('liftban'), 0);
}
$reason = my_substr($mybb->input['reason'], 0, 240);
$insert_array = array('uid' => $user['uid'], 'tid' => $thread['tid'], 'dateline' => TIME_NOW, 'reason' => $db->escape_string($reason), 'lifted' => $db->escape_string($lifted));
$db->insert_query('replybans', $insert_array);
log_moderator_action(array("tid" => $thread['tid'], "fid" => $thread['fid'], "uid" => $user['uid'], "username" => $user['username']), $lang->user_reply_banned);
moderation_redirect("moderation.php?action=replyban&tid={$thread['tid']}", $lang->redirect_user_banned_replying);
}
if ($mybb->input['action'] == "liftreplyban") {
// Verify incoming POST request
verify_post_check($mybb->get_input('my_post_key'));
$rid = $mybb->get_input('rid', MyBB::INPUT_INT);
$query = $db->simple_select("replybans", "*", "rid='{$rid}'");
$ban = $db->fetch_array($query);
//.........这里部分代码省略.........