Enano CMS (1.0.x): plugins/PrivateMessages.php@0b53c89a7d11 (annotated)

0 902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	1	<?php
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	2	/*
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	3	Plugin Name: Private Message frontend
23 320acf077276 At last, I fixed all those phased-out enano.homelinux.org links! Dan parents: 22 diff changeset	4	Plugin URI: http://enanocms.org/
0 902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	5	Description: Provides the page Special:PrivateMessages, which is used to manage private message functions. Also handles buddy lists.
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	6	Author: Dan Fuhry
85 7c68a18a27be AJAX comments are now paginated; plugin manager can now show system plugins; typo in installer corrected; links in oxygen/stpatty/admin footers changed to "About Enano" page; 1.0.1 release candidate Dan parents: 23 diff changeset	7	Version: 1.0.1
23 320acf077276 At last, I fixed all those phased-out enano.homelinux.org links! Dan parents: 22 diff changeset	8	Author URI: http://enanocms.org/
0 902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	9	*/
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	10
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	11	/*
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	12	* Enano - an open-source CMS capable of wiki functions, Drupal-like sidebar blocks, and everything in between
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	13	* Version 1.0 release candidate 2
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	14	* Copyright (C) 2006-2007 Dan Fuhry
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	15	*
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	16	* This program is Free Software; you can redistribute and/or modify it under the terms of the GNU General Public License
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	17	* as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version.
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	18	*
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	19	* This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	20	* warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for details.
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	21	*/
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	22
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	23	global $db, $session, $paths, $template, $plugins; // Common objects
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	24
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	25	$plugins->attachHook('base_classes_initted', '
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	26	global $paths;
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	27	$paths->add_page(Array(
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	28	\'name\'=>\'Private Messages\',
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	29	\'urlname\'=>\'PrivateMessages\',
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	30	\'namespace\'=>\'Special\',
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	31	\'special\'=>0,\'visible\'=>1,\'comments_on\'=>0,\'protected\'=>1,\'delvotes\'=>0,\'delvote_ips\'=>\'\',
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	32	));
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	33	');
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	34
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	35	function page_Special_PrivateMessages()
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	36	{
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	37	global $db, $session, $paths, $template, $plugins; // Common objects
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	38	if(!$session->user_logged_in) die_friendly('Access denied', '<p>You need to <a href="'.makeUrlNS('Special', 'Login/'.$paths->page).'">log in</a> to view your private messages.</p>');
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	39	$argv = Array();
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	40	$argv[] = $paths->getParam(0);
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	41	$argv[] = $paths->getParam(1);
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	42	$argv[] = $paths->getParam(2);
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	43	if(!$argv[0]) $argv[0] = 'InVaLiD';
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	44	switch($argv[0])
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	45	{
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	46	default:
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	47	header('Location: '.makeUrlNS('Special', 'PrivateMessages/Folder/Inbox'));
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	48	break;
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	49	case 'View':
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	50	$id = $argv[1];
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	51	if(!preg_match('#^([0-9]+)$#', $id)) die_friendly('Message error', '<p>Invalid message ID</p>');
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	52	$q = $db->sql_query('SELECT p.message_from, p.message_to, p.subject, p.message_text, p.date, p.folder_name, u.signature FROM '.table_prefix.'privmsgs AS p LEFT JOIN '.table_prefix.'users AS u ON (p.message_from=u.username) WHERE message_id='.$id.'');
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	53	if(!$q) $db->_die('The message data could not be selected.');
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	54	$r = $db->fetchrow();
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	55	$db->free_result();
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	56	if( ($r['message_to'] != $session->username && $r['message_from'] != $session->username ) \|\| $r['folder_name']=='drafts' ) die_friendly('Access denied', '<p>You are not authorized to view this message.</p>');
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	57	if($r['message_to'] == $session->username)
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	58	{
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	59	$q = $db->sql_query('UPDATE '.table_prefix.'privmsgs SET message_read=1 WHERE message_id='.$id.'');
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	60	$db->free_result();
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	61	if(!$q) $db->_die('Could not mark message as read');
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	62	}
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	63	$template->header();
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	64	userprefs_show_menu();
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	65	?>
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	66	<br />
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	67	<div class="tblholder"><table border="0" width="100%" cellspacing="1" cellpadding="4">
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	68	<tr><th colspan="2">Private message from <?php echo $r['message_from']; ?></th></tr>
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	69	<tr><td class="row1">Subject:</td><td class="row1"><?php echo $r['subject']; ?></td></tr>
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	70	<tr><td class="row2">Date:</td><td class="row2"><?php echo date('M j, Y G:i', $r['date']); ?></td></tr>
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	71	<tr><td class="row1">Message:</td><td class="row1"><?php echo RenderMan::render($r['message_text']);
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	72	if($r['signature'] != '')
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	73	{
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	74	echo '<hr style="margin-left: 1em; width: 200px;" />';
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	75	echo RenderMan::render($r['signature']);
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	76	}
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	77	?></td></tr>
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	78	<tr><td colspan="2" class="row3"><a href="<?php echo makeUrlNS('Special', 'PrivateMessages/Compose/ReplyTo/'.$id); ?>">Send reply</a> \| <a href="<?php echo makeUrlNS('Special', 'PrivateMessages/Delete/'.$id); ?>">Delete message</a> \| <?php if($r['folder_name'] != 'archive') { ?><a href="<?php echo makeUrlNS('Special', 'PrivateMessages/Move/'.$id.'/Archive'); ?>">Archive message</a> \| <?php } ?><a href="<?php echo makeUrlNS('Special', 'PrivateMessages/Folder/Inbox') ?>">Return to inbox</a></td></tr>
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	79	</table></div>
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	80	<?php
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	81	$template->footer();
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	82	break;
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	83	case 'Move':
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	84	$id = $argv[1];
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	85	if(!preg_match('#^([0-9]+)$#', $id)) die_friendly('Message error', '<p>Invalid message ID</p>');
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	86	$q = $db->sql_query('SELECT message_to FROM '.table_prefix.'privmsgs WHERE message_id='.$id.'');
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	87	if(!$q) $db->_die('The message data could not be selected.');
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	88	$r = $db->fetchrow();
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	89	$db->free_result();
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	90	if($r['message_to'] != $session->username) die_friendly('Access denied', '<p>You are not authorized to alter this message.</p>');
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	91	$fname = $argv[2];
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	92	if(!$fname \|\| ( $fname != 'Inbox' && $fname != 'Outbox' && $fname != 'Sent' && $fname != 'Drafts' && $fname != 'Archive' ) ) die_friendly('Invalid request', '<p>The folder name "'.$fname.'" is invalid.</p>');
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	93	$q = $db->sql_query('UPDATE '.table_prefix.'privmsgs SET folder_name=\''.strtolower($fname).'\' WHERE message_id='.$id.';');
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	94	$db->free_result();
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	95	if(!$q) $db->_die('The message was not successfully moved.');
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	96	die_friendly('Message status', '<p>Your message has been moved to the folder "'.$fname.'".</p><p><a href="'.makeUrlNS('Special', 'PrivateMessages/Folder/Inbox').'">Return to inbox</a></p>');
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	97	break;
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	98	case 'Delete':
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	99	$id = $argv[1];
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	100	if(!preg_match('#^([0-9]+)$#', $id)) die_friendly('Message error', '<p>Invalid message ID</p>');
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	101	$q = $db->sql_query('SELECT message_to FROM '.table_prefix.'privmsgs WHERE message_id='.$id.'');
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	102	if(!$q) $db->_die('The message data could not be selected.');
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	103	$r = $db->fetchrow();
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	104	if($r['message_to'] != $session->username) die_friendly('Access denied', '<p>You are not authorized to delete this message.</p>');
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	105	$q = $db->sql_query('DELETE FROM '.table_prefix.'privmsgs WHERE message_id='.$id.';');
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	106	if(!$q) $db->_die('The message was not successfully deleted.');
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	107	$db->free_result();
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	108	die_friendly('Message status', '<p>The message has been deleted.</p><p><a href="'.makeUrlNS('Special', 'PrivateMessages/Folder/Inbox').'">Return to inbox</a></p>');
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	109	break;
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	110	case 'Compose':
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	111	if($argv[1]=='Send' && isset($_POST['_send']))
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	112	{
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	113	// Check each POST DATA parameter...
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	114	if(!isset($_POST['to']) \|\| ( isset($_POST['to']) && $_POST['to'] == '')) die_friendly('Sending of message failed', '<p>Please enter the username to which you want to send your message.</p>');
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	115	if(!isset($_POST['subject']) \|\| ( isset($_POST['subject']) && $_POST['subject'] == '')) die_friendly('Sending of message failed', '<p>Please enter a subject for your message.</p>');
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	116	if(!isset($_POST['message']) \|\| ( isset($_POST['message']) && $_POST['message'] == '')) die_friendly('Sending of message failed', '<p>Please enter a message to send.</p>');
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	117	$namelist = $_POST['to'];
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	118	$namelist = str_replace(', ', ',', $namelist);
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	119	$namelist = explode(',', $namelist);
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	120	foreach($namelist as $n) { $n = $db->escape($n); }
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	121	$subject = RenderMan::preprocess_text($_POST['subject']);
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	122	$message = RenderMan::preprocess_text($_POST['message']);
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	123	$base_query = 'INSERT INTO '.table_prefix.'privmsgs(message_from,message_to,date,subject,message_text,folder_name,message_read) VALUES';
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	124	foreach($namelist as $n)
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	125	{
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	126	$base_query .= '(\''.$session->username.'\', \''.$n.'\', '.time().', \''.$subject.'\', \''.$message.'\', \'inbox\', 0),';
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	127	}
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	128	$base_query = substr($base_query, 0, strlen($base_query)-1) . ';';
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	129	$result = $db->sql_query($base_query);
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	130	$db->free_result();
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	131	if(!$result) $db->_die('The message could not be sent.');
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	132	else die_friendly('Message status', '<p>Your message has been sent. You may edit the message if you wish; one copy for each recipient will be in your outbox until each recipient has read it. Return to your <a href="'.makeUrlNS('Special', 'PrivateMessages/Folder/Inbox').'">inbox</a>.</p>');
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	133	return;
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	134	} elseif($argv[1]=='Send' && isset($_POST['_savedraft'])) {
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	135	// Check each POST DATA parameter...
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	136	if(!isset($_POST['to']) \|\| ( isset($_POST['to']) && $_POST['to'] == '')) die_friendly('Sending of message failed', '<p>Please enter the username to which you want to send your message.</p>');
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	137	if(!isset($_POST['subject']) \|\| ( isset($_POST['subject']) && $_POST['subject'] == '')) die_friendly('Sending of message failed', '<p>Please enter a subject for your message.</p>');
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	138	if(!isset($_POST['message']) \|\| ( isset($_POST['message']) && $_POST['message'] == '')) die_friendly('Sending of message failed', '<p>Please enter a message to send.</p>');
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	139	$namelist = $_POST['to'];
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	140	$namelist = str_replace(', ', ',', $namelist);
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	141	$namelist = explode(',', $namelist);
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	142	foreach($namelist as $n) { $n = $db->escape($n); }
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	143	if(count($namelist) > MAX_PMS_PER_BATCH && $session->get_permssions('mod_misc')) die_friendly('Limit exceeded', '<p>You can only send this message to a maximum of '.MAX_PMS_PER_BATCH.' users.</p>');
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	144	$subject = $db->escape($_POST['subject']);
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	145	$message = RenderMan::preprocess_text($_POST['message']);
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	146	$base_query = 'INSERT INTO '.table_prefix.'privmsgs(message_from,message_to,date,subject,message_text,folder_name,message_read) VALUES';
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	147	foreach($namelist as $n)
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	148	{
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	149	$base_query .= '(\''.$session->username.'\', \''.$n.'\', '.time().', \''.$subject.'\', \''.$message.'\', \'drafts\', 0),';
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	150	}
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	151	$base_query = substr($base_query, 0, strlen($base_query)-1) . ';';
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	152	$result = $db->sql_query($base_query);
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	153	$db->free_result();
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	154	if(!$result) $db->_die('The message could not be saved.');
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	155	} elseif(isset($_POST['_inbox'])) {
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	156	header('Location: '.makeUrlNS('Special', 'PrivateMessages/Folder/Inbox'));
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	157	}
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	158	if($argv[1] == 'ReplyTo' && preg_match('#^([0-9]+)$#', $argv[2]))
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	159	{
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	160	$to = '';
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	161	$text = '';
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	162	$subj = '';
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	163	$id = $argv[2];
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	164	$q = $db->sql_query('SELECT p.message_from, p.message_to, p.subject, p.message_text, p.date, p.folder_name, u.signature FROM '.table_prefix.'privmsgs AS p LEFT JOIN '.table_prefix.'users AS u ON (p.message_from=u.username) WHERE message_id='.$id.';');
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	165	if(!$q) $db->_die('The message data could not be selected.');
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	166	$r = $db->fetchrow();
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	167	$db->free_result();
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	168	if( ($r['message_to'] != $session->username && $r['message_from'] != $session->username ) \|\| $r['folder_name']=='drafts' ) die_friendly('Access denied', '<p>You are not authorized to view the contents of this message.</p>');
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	169	$subj = 'Re: ' . $r['subject'];
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	170	$text = "\n\n\nOn ".date('M j, Y G:i', $r['date']).", ".$r['message_from']." wrote:\n> ".str_replace("\n", "\n> ", $r['message_text']); // Way less complicated than using a regex ;-)
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	171
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	172	$tbuf = $text;
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	173	while( preg_match("/\n([\> ]*?)\> \>/", $text) )
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	174	{
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	175	$text = preg_replace("/\n([\> ]*?)\> \>/", '\\1>>', $text);
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	176	if ( $text == $tbuf )
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	177	break;
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	178	$tbuf = $text;
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	179	}
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	180
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	181	$to = $r['message_from'];
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	182	} else {
22 d0314575e2f0 More preliminary l10n work; userpage portal style basics implemented Dan parents: 0 diff changeset	183	if(( $argv[1]=='to' \|\| $argv[1]=='To' ) && $argv[2]) $to = $argv[2];
0 902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	184	else $to = '';
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	185	$text = '';
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	186	$subj = '';
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	187	}
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	188	$template->header();
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	189	userprefs_show_menu();
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	190	echo '<form action="'.makeUrlNS('Special', 'PrivateMessages/Compose/Send').'" method="post" onsubmit="if(!submitAuthorized) return false;">';
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	191	?>
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	192	<br />
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	193	<div class="tblholder"><table border="0" width="100%" cellspacing="1" cellpadding="4">
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	194	<tr><th colspan="2">Compose new private message</th></tr>
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	195	<tr><td class="row1">To:<br /><small>Separate multiple names with a single comma; you<br />can send this message to up to <b><?php echo (string)MAX_PMS_PER_BATCH; ?></b> users.</small></td><td class="row1"><?php echo $template->username_field('to', (isset($_POST['_savedraft'])) ? $_POST['to'] : $to ); ?></td></tr>
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	196	<tr><td class="row2">Subject:</td><td class="row2"><input name="subject" type="text" size="30" value="<?php if(isset($_POST['_savedraft'])) echo $_POST['subject']; else echo $subj; ?>" /></td></tr>
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	197	<tr><td class="row1">Message:</td><td class="row1" style="min-width: 80%;"><textarea rows="20" cols="40" name="message" style="width: 100%;"><?php if(isset($_POST['_savedraft'])) echo $_POST['message']; else echo $text; ?></textarea></td></tr>
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	198	<tr><th colspan="2"><input type="submit" name="_send" value="Send message" /> <input type="submit" name="_savedraft" value="Save as draft" /> <input type="submit" name="_inbox" value="Back to Inbox" /></th></tr>
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	199	</table></div>
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	200	<?php
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	201	echo '</form>';
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	202	$template->footer();
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	203	break;
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	204	case 'Edit':
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	205	$id = $argv[1];
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	206	if(!preg_match('#^([0-9]+)$#', $id)) die_friendly('Message error', '<p>Invalid message ID</p>');
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	207	$q = $db->sql_query('SELECT message_from, message_to, subject, message_text, date, folder_name, message_read FROM '.table_prefix.'privmsgs WHERE message_id='.$id.'');
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	208	if(!$q) $db->_die('The message data could not be selected.');
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	209	$r = $db->fetchrow();
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	210	$db->free_result();
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	211	if($r['message_from'] != $session->username \|\| $r['message_read'] == 1 ) die_friendly('Access denied', '<p>You are not authorized to edit this message.</p>');
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	212	$fname = $argv[2];
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	213
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	214	if(isset($_POST['_send']))
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	215	{
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	216	// Check each POST DATA parameter...
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	217	if(!isset($_POST['to']) \|\| ( isset($_POST['to']) && $_POST['to'] == '')) die_friendly('Sending of message failed', '<p>Please enter the username to which you want to send your message.</p>');
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	218	if(!isset($_POST['subject']) \|\| ( isset($_POST['subject']) && $_POST['subject'] == '')) die_friendly('Sending of message failed', '<p>Please enter a subject for your message.</p>');
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	219	if(!isset($_POST['message']) \|\| ( isset($_POST['message']) && $_POST['message'] == '')) die_friendly('Sending of message failed', '<p>Please enter a message to send.</p>');
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	220	$namelist = $_POST['to'];
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	221	$namelist = str_replace(', ', ',', $namelist);
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	222	$namelist = explode(',', $namelist);
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	223	foreach($namelist as $n) { $n = $db->escape($n); }
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	224	$subject = RenderMan::preprocess_text($_POST['subject']);
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	225	$message = RenderMan::preprocess_text($_POST['message']);
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	226	$base_query = 'UPDATE '.table_prefix.'privmsgs SET subject=\''.$subject.'\',message_to=\''.$namelist[0].'\',message_text=\''.$message.'\',folder_name=\'inbox\' WHERE message_id='.$id.';';
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	227	$result = $db->sql_query($base_query);
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	228	$db->free_result();
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	229	if(!$result) $db->_die('The message could not be sent.');
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	230	else die_friendly('Message status', '<p>Your message has been sent. You may edit the message if you wish; one copy for each recipient will be in your outbox until each recipient has read it. Return to your <a href="'.makeUrlNS('Special', 'PrivateMessages/Folder/Inbox').'">inbox</a>.</p>');
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	231	return;
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	232	} elseif(isset($_POST['_savedraft'])) {
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	233	// Check each POST DATA parameter...
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	234	if(!isset($_POST['to']) \|\| ( isset($_POST['to']) && $_POST['to'] == '')) die_friendly('Sending of message failed', '<p>Please enter the username to which you want to send your message.</p>');
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	235	if(!isset($_POST['subject']) \|\| ( isset($_POST['subject']) && $_POST['subject'] == '')) die_friendly('Sending of message failed', '<p>Please enter a subject for your message.</p>');
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	236	if(!isset($_POST['message']) \|\| ( isset($_POST['message']) && $_POST['message'] == '')) die_friendly('Sending of message failed', '<p>Please enter a message to send.</p>');
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	237	$namelist = $_POST['to'];
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	238	$namelist = str_replace(', ', ',', $namelist);
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	239	$namelist = explode(',', $namelist);
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	240	foreach($namelist as $n) { $n = $db->escape($n); }
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	241	$subject = $db->escape($_POST['subject']);
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	242	$message = RenderMan::preprocess_text($_POST['message']);
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	243	$base_query = 'UPDATE '.table_prefix.'privmsgs SET subject=\''.$subject.'\',message_to=\''.$namelist[0].'\',message_text=\''.$message.'\' WHERE message_id='.$id.';';
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	244	$result = $db->sql_query($base_query);
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	245	$db->free_result();
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	246	if(!$result) $db->_die('The message could not be saved.');
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	247	}
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	248	if($argv[1]=='to' && $argv[2]) $to = $argv[2];
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	249	else $to = '';
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	250	$template->header();
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	251	userprefs_show_menu();
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	252	echo '<form action="'.makeUrlNS('Special', 'PrivateMessages/Edit/'.$id).'" method="post">';
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	253	?>
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	254	<br />
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	255	<div class="tblholder"><table border="0" width="100%" cellspacing="1" cellpadding="4">
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	256	<tr><th colspan="2">Edit draft</th></tr>
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	257	<tr><td class="row1">To:<br /><small>Separate multiple names with a single comma</small></td><td class="row1"><input name="to" type="text" size="30" value="<?php if(isset($_POST['_savedraft'])) echo $_POST['to']; else echo $r['message_to']; ?>" /></td></tr>
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	258	<tr><td class="row2">Subject:</td><td class="row2"><input name="subject" type="text" size="30" value="<?php if(isset($_POST['_savedraft'])) echo $_POST['subject']; else echo $r['subject']; ?>" /></td></tr>
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	259	<tr><td class="row1">Message:</td><td class="row1"><textarea rows="20" cols="40" name="message" style="width: 100%;"><?php if(isset($_POST['_savedraft'])) echo $_POST['message']; else echo $r['message_text']; ?></textarea></td></tr>
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	260	<tr><th colspan="2"><input type="submit" name="_send" value="Send message" /> <input type="submit" name="_savedraft" value="Save as draft" /></th></tr>
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	261	</table></div>
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	262	<?php
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	263	echo '</form>';
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	264	$template->footer();
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	265	break;
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	266	case 'Folder':
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	267	$template->header();
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	268	userprefs_show_menu();
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	269	switch($argv[1])
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	270	{
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	271	default:
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	272	echo '<p>The folder "'.$argv[1].'" does not exist. Return to your <a href="'.makeUrlNS('Special', 'PrivateMessages/Folder/Inbox').'">inbox</a>.</p>';
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	273	break;
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	274	case 'Inbox':
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	275	case 'Outbox':
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	276	case 'Sent':
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	277	case 'Drafts':
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	278	case 'Archive':
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	279	?>
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	280	<table border="0" width="100%" cellspacing="10" cellpadding="0">
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	281	<tr>
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	282	<td style="padding: 0px; width: 120px;" valign="top" >
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	283	<div class="tblholder" style="width: 120px;"><table border="0" width="120" cellspacing="1" cellpadding="4">
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	284	<tr><th><small>Private messages</small></th></tr>
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	285	<tr><td class="row1"><small><a href="<?php echo $session->append_sid('Inbox'); ?>">Inbox</a> </small></td></tr>
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	286	<tr><td class="row2"><small><a href="<?php echo $session->append_sid('Outbox'); ?>">Outbox</a> </small></td></tr>
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	287	<tr><td class="row1"><small><a href="<?php echo $session->append_sid('Sent'); ?>">Sent Items</a></small></td></tr>
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	288	<tr><td class="row2"><small><a href="<?php echo $session->append_sid('Drafts'); ?>">Drafts</a> </small></td></tr>
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	289	<tr><td class="row1"><small><a href="<?php echo $session->append_sid('Archive'); ?>">Archive</a></small></td></tr>
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	290	<tr><th><small>Buddies</small></th></tr>
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	291	<tr><td class="row2"><small><a href="<?php echo makeUrlNS('Special', 'PrivateMessages/FriendList'); ?>">Friend list</a></small></td></tr>
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	292	<tr><td class="row1"><small><a href="<?php echo makeUrlNS('Special', 'PrivateMessages/FoeList'); ?>">Foe list</a></small></td></tr>
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	293	</table></div>
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	294	</td>
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	295	<td valign="top">
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	296	<?php
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	297	$fname = strtolower($argv[1]);
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	298	switch($argv[1])
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	299	{
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	300	case 'Inbox':
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	301	case 'Archive':
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	302	default:
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	303	$q = $db->sql_query('SELECT p.message_id, p.message_from, p.message_to, p.date, p.subject, p.message_read FROM '.table_prefix.'privmsgs AS p WHERE p.folder_name=\''.$fname.'\' AND p.message_to=\''.$session->username.'\' ORDER BY date DESC;');
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	304	break;
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	305	case 'Outbox':
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	306	$q = $db->sql_query('SELECT p.message_id, p.message_from, p.message_to, p.date, p.subject, p.message_read FROM '.table_prefix.'privmsgs AS p WHERE p.message_from=\''.$session->username.'\' AND message_read=0 ORDER BY date DESC;');
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	307	break;
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	308	case 'Sent':
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	309	$q = $db->sql_query('SELECT p.message_id, p.message_from, p.message_to, p.date, p.subject, p.message_read FROM '.table_prefix.'privmsgs AS p WHERE p.message_from=\''.$session->username.'\' AND message_read=1 ORDER BY date DESC;');
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	310	break;
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	311	case 'Drafts':
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	312	$q = $db->sql_query('SELECT p.message_id, p.message_from, p.message_to, p.date, p.subject, p.message_read FROM '.table_prefix.'privmsgs AS p WHERE p.folder_name=\''.$fname.'\' AND p.message_from=\''.$session->username.'\' ORDER BY date DESC;');
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	313	break;
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	314	}
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	315	if($argv[1] == 'Drafts' \|\| $argv[1] == 'Outbox') $act = 'Edit';
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	316	else $act = 'View';
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	317	if(!$q) $db->_die('The private message data could not be selected.');
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	318	echo '<form action="'.makeUrlNS('Special', 'PrivateMessages/PostHandler').'" method="post"><div class="tblholder"><table border="0" width="100%" cellspacing="1" cellpadding="4"><tr><th colspan="4" style="text-align: left;">Folder: '.$argv[1].'</th></tr><tr><th class="subhead">';
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	319	if($fname == 'drafts' \|\| $fname == 'Outbox') echo 'To'; else echo 'From';
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	320	echo '</th><th class="subhead">Subject</th><th class="subhead">Date</th><th class="subhead">Mark</th></tr>';
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	321	if($db->numrows() < 1)
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	322	echo '<tr><td style="text-align: center;" class="row1" colspan="4">No messages in this folder.</td></tr>';
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	323	else {
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	324	$cls = 'row2';
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	325	while($r = $db->fetchrow())
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	326	{
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	327	if($cls == 'row2') $cls='row1';
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	328	else $cls = 'row2';
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	329	$mto = str_replace(' ', '_', $r['message_to']);
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	330	$mfr = str_replace(' ', '_', $r['message_from']);
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	331	echo '<tr><td class="'.$cls.'"><a href="'.makeUrlNS('User', ( $fname == 'drafts') ? $mto : $mfr).'">';
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	332	if($fname == 'drafts' \|\| $fname == 'outbox') echo $r['message_to']; else echo $r['message_from'];
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	333	echo '</a></td><td class="'.$cls.'"><a href="'.makeUrlNS('Special', 'PrivateMessages/'.$act.'/'.$r['message_id']).'">';
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	334	if($r['message_read'] == 0) echo '<b>';
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	335	echo $r['subject'];
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	336	if($r['message_read'] == 0) echo '</b>';
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	337	echo '</a></td><td class="'.$cls.'">'.date('M j, Y G:i', $r['date']).'</td><td class="'.$cls.'" style="text-align: center;"><input name="marked_'.$r['message_id'].'" type="checkbox" /></td></tr>';
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	338	}
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	339	$db->free_result();
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	340	}
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	341	echo '<tr><th style="text-align: right;" colspan="4"><input type="hidden" name="folder" value="'.$fname.'" /><input type="submit" name="archive" value="Archive selected" /> <input type="submit" name="delete" value="Delete selected" /> <input type="submit" name="deleteall" value="Delete all" /></th></tr>';
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	342	echo '</table></div></form>
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	343	<br />
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	344	<a href="'.makeUrlNS('Special', 'PrivateMessages/Compose/').'">New message</a>
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	345	</td></tr></table>';
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	346	break;
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	347	}
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	348	$template->footer();
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	349	break;
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	350	case 'PostHandler':
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	351	$fname = $db->escape(strtolower($_POST['folder']));
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	352	if($fname=='drafts' \|\| $fname=='outbox')
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	353	{
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	354	$q = $db->sql_query('SELECT p.message_id, p.message_from, p.message_to, p.date, p.subject FROM '.table_prefix.'privmsgs AS p WHERE p.folder_name=\''.$fname.'\' AND p.message_from=\''.$session->username.'\' ORDER BY date DESC;');
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	355	} else {
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	356	$q = $db->sql_query('SELECT p.message_id, p.message_from, p.message_to, p.date, p.subject FROM '.table_prefix.'privmsgs AS p WHERE p.folder_name=\''.$fname.'\' AND p.message_to=\''.$session->username.'\' ORDER BY date DESC;');
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	357	}
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	358	if(!$q) $db->_die('The private message data could not be selected.');
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	359
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	360	if(isset($_POST['archive'])) {
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	361	while($row = $db->fetchrow($q))
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	362	{
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	363	if(isset($_POST['marked_'.$row['message_id']]))
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	364	{
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	365	$e = $db->sql_query('UPDATE '.table_prefix.'privmsgs SET folder_name=\'archive\' WHERE message_id='.$row['message_id'].';');
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	366	if(!$e) $db->_die('Message '.$row['message_id'].' was not successfully moved.');
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	367	$db->free_result();
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	368	}
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	369	}
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	370	} elseif(isset($_POST['delete'])) {
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	371	while($row = $db->fetchrow($q))
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	372	{
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	373	if(isset($_POST['marked_'.$row['message_id']]))
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	374	{
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	375	$e = $db->sql_query('DELETE FROM '.table_prefix.'privmsgs WHERE message_id='.$row['message_id'].';');
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	376	if(!$e) $db->_die('Message '.$row['message_id'].' was not successfully moved.');
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	377	$db->free_result();
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	378	}
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	379	}
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	380	} elseif(isset($_POST['deleteall'])) {
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	381	while($row = $db->fetchrow($q))
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	382	{
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	383	$e = $db->sql_query('DELETE FROM '.table_prefix.'privmsgs WHERE message_id='.$row['message_id'].';');
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	384	if(!$e) $db->_die('Message '.$row['message_id'].' was not successfully moved.');
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	385	$db->free_result();
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	386	}
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	387	} else {
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	388	die_friendly('Invalid request', 'This section can only be accessed from within another Private Message section.');
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	389	}
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	390	$db->free_result($q);
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	391	header('Location: '.makeUrlNS('Special', 'PrivateMessages/Folder/'. substr(strtoupper($_POST['folder']), 0, 1) . substr(strtolower($_POST['folder']), 1, strlen($_POST['folder'])) ));
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	392	break;
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	393	case 'FriendList':
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	394	if($argv[1] == 'Add')
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	395	{
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	396	if(isset($_POST['_go']))
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	397	$buddyname = $_POST['buddyname'];
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	398	elseif($argv[2])
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	399	$buddyname = $argv[2];
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	400	else
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	401	die_friendly('Error adding buddy', '<p>No name specified</p>');
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	402	$q = $db->sql_query('SELECT user_id FROM '.table_prefix.'users WHERE username=\''.$db->escape($buddyname).'\'');
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	403	if(!$q) $db->_die('The buddy\'s user ID could not be selected.');
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	404	if($db->numrows() < 1) echo '<h3>Error adding buddy</h3><p>The username you entered is not in use by any registered user.</p>';
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	405	{
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	406	$r = $db->fetchrow();
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	407	$db->free_result();
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	408	$q = $db->sql_query('INSERT INTO '.table_prefix.'buddies(user_id,buddy_user_id,is_friend) VALUES('.$session->user_id.', '.$r['user_id'].', 1);');
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	409	if(!$q) echo '<h3>Warning:</h3><p>Buddy could not be added: '.mysql_error().'</p>';
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	410	$db->free_result();
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	411	}
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	412	} elseif($argv[1] == 'Remove' && preg_match('#^([0-9]+)$#', $argv[2])) {
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	413	// Using WHERE user_id prevents users from deleting others' buddies
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	414	$q = $db->sql_query('DELETE FROM '.table_prefix.'buddies WHERE user_id='.$session->user_id.' AND buddy_id='.$argv[2].';');
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	415	$db->free_result();
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	416	if(!$q) echo '<h3>Warning:</h3><p>Buddy could not be deleted: '.mysql_error().'</p>';
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	417	if(mysql_affected_rows() < 1) echo '<h3>Warning:</h3><p>No rows were affected. Either the selected buddy ID does not exist or you tried to delete someone else\'s buddy.</p>';
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	418	}
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	419	$template->header();
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	420	userprefs_show_menu();
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	421	?>
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	422	<table border="0" width="100%" cellspacing="10" cellpadding="0">
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	423	<tr>
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	424	<td style="padding: 0px; width: 120px;" valign="top" >
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	425	<div class="tblholder" style="width: 120px;"><table border="0" width="120" cellspacing="1" cellpadding="4">
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	426	<tr><th><small>Private messages</small></th></tr>
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	427	<tr><td class="row1"><small><a href="<?php echo $session->append_sid('Inbox'); ?>">Inbox</a> </small></td></tr>
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	428	<tr><td class="row2"><small><a href="<?php echo $session->append_sid('Outbox'); ?>">Outbox</a> </small></td></tr>
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	429	<tr><td class="row1"><small><a href="<?php echo $session->append_sid('Sent'); ?>">Sent Items</a></small></td></tr>
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	430	<tr><td class="row2"><small><a href="<?php echo $session->append_sid('Drafts'); ?>">Drafts</a> </small></td></tr>
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	431	<tr><td class="row1"><small><a href="<?php echo $session->append_sid('Archive'); ?>">Archive</a></small></td></tr>
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	432	<tr><th><small>Buddies</small></th></tr>
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	433	<tr><td class="row2"><small><a href="<?php echo makeUrlNS('Special', 'PrivateMessages/FriendList'); ?>">Friend list</a></small></td></tr>
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	434	<tr><td class="row1"><small><a href="<?php echo makeUrlNS('Special', 'PrivateMessages/FoeList'); ?>">Foe list</a></small></td></tr>
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	435	</table></div>
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	436	</td>
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	437	<td valign="top">
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	438	<?php
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	439	$q = $db->sql_query('SELECT u.username,b.buddy_id FROM '.table_prefix.'buddies AS b LEFT JOIN '.table_prefix.'users AS u ON ( u.user_id=b.buddy_user_id ) WHERE b.user_id='.$session->user_id.' AND is_friend=1;');
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	440	if(!$q) $db->_die('The buddy list could not be selected.');
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	441	else
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	442	{
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	443	$allbuds = '';
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	444	echo '<br /><div class="tblholder"><table border="0" width="100%" cellspacing="1" cellpadding="4"><tr><th colspan="3">Buddy list for '.$session->username.'</th></tr>';
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	445	if($db->numrows() < 1) echo '<tr><td class="row3">No buddies in your list.</td></tr>';
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	446	$cls = 'row2';
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	447	while ( $row = $db->fetchrow() )
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	448	{
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	449	if($cls=='row2') $cls = 'row1';
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	450	else $cls = 'row2';
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	451	echo '<tr><td class="'.$cls.'"><a href="'.makeUrlNS('User', str_replace(' ', '_', $row['username'])).'" '. ( isPage($paths->nslist['User'].str_replace(' ', '_', $row['username'])) ? '' : 'class="wikilink-nonexistent" ' ) .'>'.$row['username'].'</a></td><td class="'.$cls.'"><a href="'.makeUrlNS('Special', 'PrivateMessages/Compose/to/'.str_replace(' ', '_', $row['username'])).'">Send private message</a></td><td class="'.$cls.'"><a onclick="return confirm(\'Are you sure you want to delete this user from your buddy list?\')" href="'.makeUrlNS('Special', 'PrivateMessages/FriendList/Remove/'.$row['buddy_id']).'">Remove</a></td></tr>';
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	452	$allbuds .= str_replace(' ', '_', $row['username']).',';
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	453	}
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	454	$db->free_result();
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	455	$allbuds = substr($allbuds, 0, strlen($allbuds)-1);
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	456	if($cls=='row2') $cls = 'row1';
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	457	else $cls = 'row2';
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	458	echo '<tr><td colspan="3" class="'.$cls.'" style="text-align: center;"><a href="'.makeUrlNS('Special', 'PrivateMessages/Compose/to/'.$allbuds).'">Send a PM to all buddies</a></td></tr>';
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	459	echo '</table></div>';
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	460	}
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	461	echo '<form action="'.makeUrlNS('Special', 'PrivateMessages/FriendList/Add').'" method="post" onsubmit="if(!submitAuthorized) return false;">
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	462	<h3>Add a new friend</h3>';
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	463	echo '<p>Username: '.$template->username_field('buddyname').' <input type="submit" name="_go" value="Add" /></p>';
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	464	echo '</form>';
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	465	?>
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	466	</td>
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	467	</tr>
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	468	</table>
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	469	<?php
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	470	$template->footer();
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	471	break;
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	472	case 'FoeList':
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	473	if($argv[1] == 'Add' && isset($_POST['_go']))
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	474	{
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	475	$q = $db->sql_query('SELECT user_id FROM '.table_prefix.'users WHERE username=\''.$db->escape($_POST['buddyname']).'\'');
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	476	if(!$q) $db->_die('The buddy\'s user ID could not be selected.');
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	477	if($db->numrows() < 1) echo '<h3>Error adding buddy</h3><p>The username you entered is not in use by any registered user.</p>';
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	478	{
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	479	$r = $db->fetchrow();
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	480	$q = $db->sql_query('INSERT INTO '.table_prefix.'buddies(user_id,buddy_user_id,is_friend) VALUES('.$session->user_id.', '.$r['user_id'].', 0);');
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	481	if(!$q) echo '<h3>Warning:</h3><p>Buddy could not be added: '.mysql_error().'</p>';
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	482	}
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	483	$db->free_result();
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	484	} elseif($argv[1] == 'Remove' && preg_match('#^([0-9]+)$#', $argv[2])) {
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	485	// Using WHERE user_id prevents users from deleting others' buddies
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	486	$q = $db->sql_query('DELETE FROM '.table_prefix.'buddies WHERE user_id='.$session->user_id.' AND buddy_id='.$argv[2].';');
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	487	$db->free_result();
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	488	if(!$q) echo '<h3>Warning:</h3><p>Buddy could not be deleted: '.mysql_error().'</p>';
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	489	if(mysql_affected_rows() < 1) echo '<h3>Warning:</h3><p>No rows were affected. Either the selected buddy ID does not exist or you tried to delete someone else\'s buddy.</p>';
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	490	}
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	491	$template->header();
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	492	userprefs_show_menu();
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	493	?>
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	494	<table border="0" width="100%" cellspacing="10" cellpadding="0">
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	495	<tr>
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	496	<td style="padding: 0px; width: 120px;" valign="top" >
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	497	<div class="tblholder" style="width: 120px;"><table border="0" width="120" cellspacing="1" cellpadding="4">
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	498	<tr><th><small>Private messages</small></th></tr>
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	499	<tr><td class="row1"><small><a href="<?php echo $session->append_sid('Inbox'); ?>">Inbox</a> </small></td></tr>
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	500	<tr><td class="row2"><small><a href="<?php echo $session->append_sid('Outbox'); ?>">Outbox</a> </small></td></tr>
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	501	<tr><td class="row1"><small><a href="<?php echo $session->append_sid('Sent'); ?>">Sent Items</a></small></td></tr>
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	502	<tr><td class="row2"><small><a href="<?php echo $session->append_sid('Drafts'); ?>">Drafts</a> </small></td></tr>
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	503	<tr><td class="row1"><small><a href="<?php echo $session->append_sid('Archive'); ?>">Archive</a></small></td></tr>
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	504	<tr><th><small>Buddies</small></th></tr>
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	505	<tr><td class="row2"><small><a href="<?php echo makeUrlNS('Special', 'PrivateMessages/FriendList'); ?>">Friend list</a></small></td></tr>
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	506	<tr><td class="row1"><small><a href="<?php echo makeUrlNS('Special', 'PrivateMessages/FoeList'); ?>">Foe list</a></small></td></tr>
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	507	</table></div>
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	508	</td>
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	509	<td valign="top">
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	510	<?php
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	511	$q = $db->sql_query('SELECT u.username,b.buddy_id FROM '.table_prefix.'buddies AS b LEFT JOIN '.table_prefix.'users AS u ON ( u.user_id=b.buddy_user_id ) WHERE b.user_id='.$session->user_id.' AND is_friend=0;');
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	512	if(!$q) $db->_die('The buddy list could not be selected.');
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	513	else
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	514	{
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	515	$allbuds = '';
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	516	echo '<br /><div class="tblholder"><table border="0" width="100%" cellspacing="1" cellpadding="4"><tr><th colspan="3">Foe list for '.$session->username.'</th></tr>';
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	517	if($db->numrows() < 1) echo '<tr><td class="row2">No foes in your list.</td></tr>';
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	518	$cls = 'row2';
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	519	while ( $row = $db->fetchrow() )
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	520	{
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	521	if($cls=='row2') $cls = 'row1';
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	522	else $cls = 'row2';
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	523	echo '<tr><td class="'.$cls.'"><a href="'.makeUrlNS('User', str_replace(' ', '_', $row['username'])).'" '. ( isPage($paths->nslist['User'].str_replace(' ', '_', $row['username'])) ? '' : 'class="wikilink-nonexistent" ' ) .'>'.$row['username'].'</a></td><td class="'.$cls.'"><a href="'.makeUrlNS('Special', 'PrivateMessages/Compose/to/'.str_replace(' ', '_', $row['username'])).'">Send private message</a></td><td class="'.$cls.'"><a onclick="return confirm(\'Are you sure you want to delete this user from your buddy list?\')" href="'.makeUrlNS('Special', 'PrivateMessages/FriendList/Remove/'.$row['buddy_id']).'">Remove</a></td></tr>';
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	524	$allbuds .= str_replace(' ', '_', $row['username']).',';
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	525	}
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	526	$allbuds = substr($allbuds, 0, strlen($allbuds)-1);
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	527	if($cls=='row2') $cls = 'row1';
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	528	else $cls = 'row2';
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	529	//echo '<tr><td colspan="3" class="'.$cls.'" style="text-align: center;"><a href="'.makeUrlNS('Special', 'PrivateMessages/Compose/to/'.$allbuds).'">Send a PM to all buddies</a></td></tr>';
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	530	echo '</table></div>';
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	531	}
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	532	$db->free_result();
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	533	echo '<form action="'.makeUrlNS('Special', 'PrivateMessages/FoeList/Add').'" method="post" onsubmit="if(!submitAuthorized) return false;">
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	534	<h3>Add a new foe</h3>';
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	535	echo '<p>Username: '.$template->username_field('buddyname').' <input type="submit" name="_go" value="Add" /></p>';
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	536	echo '</form>';
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	537	?>
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	538	</td>
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	539	</tr>
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	540	</table>
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	541	<?php
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	542	$template->footer();
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	543	break;
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	544	}
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	545	}
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	546
902822492a68 Initial population dan@scribus.fuhry.local.fuhry.local parents: diff changeset	547	?>

author	Dan
	Sun, 19 Aug 2007 15:53:56 -0400
changeset 96	0b53c89a7d11
parent 85	7c68a18a27be
child 181	9237767a23ae
permissions	-rw-r--r--