1<?php 2/** 3 * Post deletion page. 4 * 5 * Deletes the specified post (and, if necessary, the topic it is in). 6 * 7 * @copyright (C) 2008-2012 PunBB, partially based on code (C) 2008-2009 FluxBB.org 8 * @license http://www.gnu.org/licenses/gpl.html GPL version 2 or higher 9 * @package PunBB 10 */ 11 12 13if (!defined('FORUM_ROOT')) 14 define('FORUM_ROOT', './'); 15require FORUM_ROOT.'include/common.php'; 16 17($hook = get_hook('dl_start')) ? eval($hook) : null; 18 19if ($forum_user['g_read_board'] == '0') 20 message($lang_common['No view']); 21 22// Load the delete.php language file 23require FORUM_ROOT.'lang/'.$forum_user['language'].'/delete.php'; 24 25$id = isset($_GET['id']) ? intval($_GET['id']) : 0; 26if ($id < 1) 27 message($lang_common['Bad request']); 28 29 30// Fetch some info about the post, the topic and the forum 31$query = array( 32 'SELECT' => 'f.id AS fid, f.forum_name, f.moderators, f.redirect_url, fp.post_replies, fp.post_topics, t.id AS tid, t.subject, t.first_post_id, t.closed, p.poster, p.poster_id, p.message, p.hide_smilies, p.posted', 33 'FROM' => 'posts AS p', 34 'JOINS' => array( 35 array( 36 'INNER JOIN' => 'topics AS t', 37 'ON' => 't.id=p.topic_id' 38 ), 39 array( 40 'INNER JOIN' => 'forums AS f', 41 'ON' => 'f.id=t.forum_id' 42 ), 43 array( 44 'LEFT JOIN' => 'forum_perms AS fp', 45 'ON' => '(fp.forum_id=f.id AND fp.group_id='.$forum_user['g_id'].')' 46 ) 47 ), 48 'WHERE' => '(fp.read_forum IS NULL OR fp.read_forum=1) AND p.id='.$id 49); 50 51($hook = get_hook('dl_qr_get_post_info')) ? eval($hook) : null; 52$result = $forum_db->query_build($query) or error(__FILE__, __LINE__); 53$cur_post = $forum_db->fetch_assoc($result); 54 55if (!$cur_post) 56 message($lang_common['Bad request']); 57 58// Sort out who the moderators are and if we are currently a moderator (or an admin) 59$mods_array = ($cur_post['moderators'] != '') ? unserialize($cur_post['moderators']) : array(); 60$forum_page['is_admmod'] = ($forum_user['g_id'] == FORUM_ADMIN || ($forum_user['g_moderator'] == '1' && array_key_exists($forum_user['username'], $mods_array))) ? true : false; 61 62$cur_post['is_topic'] = ($id == $cur_post['first_post_id']) ? true : false; 63 64($hook = get_hook('dl_pre_permission_check')) ? eval($hook) : null; 65 66// Do we have permission to delete this post? 67if ((($forum_user['g_delete_posts'] == '0' && !$cur_post['is_topic']) || 68 ($forum_user['g_delete_topics'] == '0' && $cur_post['is_topic']) || 69 $cur_post['poster_id'] != $forum_user['id'] || 70 $cur_post['closed'] == '1') && 71 !$forum_page['is_admmod']) 72 message($lang_common['No permission']); 73 74 75($hook = get_hook('dl_post_selected')) ? eval($hook) : null; 76 77// User pressed the cancel button 78if (isset($_POST['cancel'])) 79 redirect(forum_link($forum_url['post'], $id), $lang_common['Cancel redirect']); 80 81// User pressed the delete button 82else if (isset($_POST['delete'])) 83{ 84 ($hook = get_hook('dl_form_submitted')) ? eval($hook) : null; 85 86 if (!isset($_POST['req_confirm'])) 87 redirect(forum_link($forum_url['post'], $id), $lang_common['No confirm redirect']); 88 89 if ($cur_post['is_topic']) 90 { 91 // Delete the topic and all of it's posts 92 delete_topic($cur_post['tid'], $cur_post['fid']); 93 94 $forum_flash->add_info($lang_delete['Topic del redirect']); 95 96 ($hook = get_hook('dl_topic_deleted_pre_redirect')) ? eval($hook) : null; 97 98 redirect(forum_link($forum_url['forum'], array($cur_post['fid'], sef_friendly($cur_post['forum_name']))), $lang_delete['Topic del redirect']); 99 } 100 else 101 { 102 // Delete just this one post 103 delete_post($id, $cur_post['tid'], $cur_post['fid']); 104 105 // Fetch previus post #id in some topic for redirect after delete 106 $query = array( 107 'SELECT' => 'p.id', 108 'FROM' => 'posts AS p', 109 'WHERE' => 'p.topic_id = '.$cur_post['tid'].' AND p.id < '.$id, 110 'ORDER BY' => 'p.id DESC', 111 'LIMIT' => '1' 112 ); 113 114 ($hook = get_hook('dl_post_deleted_get_prev_post_id')) ? eval($hook) : null; 115 $result = $forum_db->query_build($query) or error(__FILE__, __LINE__); 116 $prev_post = $forum_db->fetch_assoc($result); 117 118 $forum_flash->add_info($lang_delete['Post del redirect']); 119 120 ($hook = get_hook('dl_post_deleted_pre_redirect')) ? eval($hook) : null; 121 122 if (isset($prev_post['id'])) 123 { 124 redirect(forum_link($forum_url['post'], $prev_post['id']), $lang_delete['Post del redirect']); 125 } 126 else 127 { 128 redirect(forum_link($forum_url['topic'], array($cur_post['tid'], sef_friendly($cur_post['subject']))), $lang_delete['Post del redirect']); 129 } 130 } 131} 132 133// Run the post through the parser 134if (!defined('FORUM_PARSER_LOADED')) 135 require FORUM_ROOT.'include/parser.php'; 136 137$cur_post['message'] = parse_message($cur_post['message'], $cur_post['hide_smilies']); 138 139// Setup form 140$forum_page['group_count'] = $forum_page['item_count'] = $forum_page['fld_count'] = 0; 141$forum_page['form_action'] = forum_link($forum_url['delete'], $id); 142 143$forum_page['hidden_fields'] = array( 144 'form_sent' => '<input type="hidden" name="form_sent" value="1" />', 145 'csrf_token' => '<input type="hidden" name="csrf_token" value="'.generate_form_token($forum_page['form_action']).'" />' 146); 147 148// Setup form information 149$forum_page['frm_info'] = array( 150 '<li><span>'.$lang_delete['Forum'].':<strong> '.forum_htmlencode($cur_post['forum_name']).'</strong></span></li>', 151 '<li><span>'.$lang_delete['Topic'].':<strong> '.forum_htmlencode($cur_post['subject']).'</strong></span></li>' 152); 153 154// Generate the post heading 155$forum_page['post_ident'] = array(); 156$forum_page['post_ident']['byline'] = '<span class="post-byline">'.sprintf((($cur_post['is_topic']) ? $lang_delete['Topic byline'] : $lang_delete['Reply byline']), '<strong>'.forum_htmlencode($cur_post['poster']).'</strong>').'</span>'; 157$forum_page['post_ident']['link'] = '<span class="post-link"><a class="permalink" href="'.forum_link($forum_url['post'], $cur_post['tid']).'">'.format_time($cur_post['posted']).'</a></span>'; 158 159($hook = get_hook('dl_pre_item_ident_merge')) ? eval($hook) : null; 160 161// Generate the post title 162if ($cur_post['is_topic']) 163 $forum_page['item_subject'] = sprintf($lang_delete['Topic title'], $cur_post['subject']); 164else 165 $forum_page['item_subject'] = sprintf($lang_delete['Reply title'], $cur_post['subject']); 166 167$forum_page['item_subject'] = forum_htmlencode($forum_page['item_subject']); 168 169// Setup breadcrumbs 170$forum_page['crumbs'] = array( 171 array($forum_config['o_board_title'], forum_link($forum_url['index'])), 172 array($cur_post['forum_name'], forum_link($forum_url['forum'], array($cur_post['fid'], sef_friendly($cur_post['forum_name'])))), 173 array($cur_post['subject'], forum_link($forum_url['topic'], array($cur_post['tid'], sef_friendly($cur_post['subject'])))), 174 (($cur_post['is_topic']) ? $lang_delete['Delete topic'] : $lang_delete['Delete post']) 175); 176 177($hook = get_hook('dl_pre_header_load')) ? eval($hook) : null; 178 179define ('FORUM_PAGE', 'postdelete'); 180require FORUM_ROOT.'header.php'; 181 182// START SUBST - <!-- forum_main --> 183ob_start(); 184 185($hook = get_hook('dl_main_output_start')) ? eval($hook) : null; 186 187?> 188 <div class="main-content main-frm"> 189 <div class="ct-box info-box"> 190 <ul class="info-list"> 191 <?php echo implode("\n\t\t\t\t", $forum_page['frm_info'])."\n" ?> 192 </ul> 193 </div> 194<?php ($hook = get_hook('dl_pre_post_display')) ? eval($hook) : null; ?> 195 <div class="post singlepost"> 196 <div class="posthead"> 197 <h3 class="hn post-ident"><?php echo implode(' ', $forum_page['post_ident']) ?></h3> 198<?php ($hook = get_hook('dl_new_post_head_option')) ? eval($hook) : null; ?> 199 </div> 200 <div class="postbody"> 201 <div class="post-entry"> 202 <h4 class="entry-title hn"><?php echo $forum_page['item_subject'] ?></h4> 203 <div class="entry-content"> 204 <?php echo $cur_post['message']."\n" ?> 205 </div> 206<?php ($hook = get_hook('dl_new_post_entry_data')) ? eval($hook) : null; ?> 207 </div> 208 </div> 209 </div> 210 <form class="frm-form" method="post" accept-charset="utf-8" action="<?php echo $forum_page['form_action'] ?>"> 211 <div class="hidden"> 212 <?php echo implode("\n\t\t\t\t", $forum_page['hidden_fields'])."\n" ?> 213 </div> 214<?php ($hook = get_hook('dl_pre_confirm_delete_fieldset')) ? eval($hook) : null; ?> 215 <fieldset class="frm-group group<?php echo ++$forum_page['group_count'] ?>"> 216 <legend class="group-legend"><strong><?php echo ($cur_post['is_topic']) ? $lang_delete['Delete topic'] : $lang_delete['Delete post'] ?></strong></legend> 217<?php ($hook = get_hook('dl_pre_confirm_delete_checkbox')) ? eval($hook) : null; ?> 218 <div class="sf-set set<?php echo ++$forum_page['item_count'] ?>"> 219 <div class="sf-box checkbox"> 220 <span class="fld-input"><input type="checkbox" id="fld<?php echo ++$forum_page['fld_count'] ?>" name="req_confirm" value="1" checked="checked" /></span> 221 <label for="fld<?php echo $forum_page['fld_count'] ?>"><span><?php echo $lang_delete['Please confirm'] ?></span> <?php printf(((($cur_post['is_topic'])) ? $lang_delete['Delete topic label'] : $lang_delete['Delete post label']), forum_htmlencode($cur_post['poster']), format_time($cur_post['posted'])) ?></label> 222 </div> 223 </div> 224<?php ($hook = get_hook('dl_pre_confirm_delete_fieldset_end')) ? eval($hook) : null; ?> 225 </fieldset> 226<?php ($hook = get_hook('dl_confirm_delete_fieldset_end')) ? eval($hook) : null; ?> 227 <div class="frm-buttons"> 228 <span class="submit primary caution"><input type="submit" name="delete" value="<?php echo ($cur_post['is_topic']) ? $lang_delete['Delete topic'] : $lang_delete['Delete post'] ?>" /></span> 229 <span class="cancel"><input type="submit" name="cancel" value="<?php echo $lang_common['Cancel'] ?>" formnovalidate /></span> 230 </div> 231 </form> 232 </div> 233<?php 234 235$forum_id = $cur_post['fid']; 236 237($hook = get_hook('dl_end')) ? eval($hook) : null; 238 239$tpl_temp = forum_trim(ob_get_contents()); 240$tpl_main = str_replace('<!-- forum_main -->', $tpl_temp, $tpl_main); 241ob_end_clean(); 242// END SUBST - <!-- forum_main --> 243 244require FORUM_ROOT.'footer.php'; 245