PageRenderTime 61ms CodeModel.GetById 28ms RepoModel.GetById 0ms app.codeStats 0ms

/forumcp.php

https://bitbucket.org/johnroyer/phpwind8.7
PHP | 1720 lines | 1513 code | 125 blank | 82 comment | 434 complexity | 5f8a25f112a170b528b44a5c3eb6ed20 MD5 | raw file

Large files files are truncated, but you can click here to view the full file

    

  1. <?php

    2. 

  2. require_once('global.php');

    3. 

  3. require_once(R_P.'require/functions.php');

    4. 

  4. require_once(R_P.'require/forum.php');

    5. 

  5. require_once(R_P.'require/bbscode.php');

    6. 

  6. //* include_once pwCache::getPath(D_P.'data/bbscache/forum_cache.php');

    7. 

  7. pwCache::getData(D_P.'data/bbscache/forum_cache.php');

    8. 

  8. $groupid == 'guest' && Showmsg('not_login');

    9. 

  9. 

    10. 

  10. $fiddb = array();

    11. 

  11. S::gp(array('action'));

    12. 

  12. 

    13. 

  13. if ($db_mode != 'bbs' && $db_bfn == 'index.php') {

    14. 

  14. 	$db_bfn_temp = $db_bbsurl."/index.php?m=bbs";

    15. 

  15. } else {

    16. 

  16. 	$db_bfn_temp = $db_bfn;

    17. 

  17. }

    18. 

  18. $isGM = S::inArray($windid,$manager);

    19. 

  19. $forumcp_type = $db->get_value("SELECT forumset FROM pw_forumsextra WHERE fid=".S::sqlEscape($fid));

    20. 

  20. $forumcp_type = $forumcp_type ? unserialize($forumcp_type) : array();

    21. 

  21. if ($action) {

    22. 

  22. 	!$fid && Showmsg('data_error');

    23. 

  23. 	if (!($forums = L::forum($fid))) {

    24. 

  24. 		Showmsg('data_error');

    25. 

  25. 	}

    26. 

  26. 	(!$forums || $forums['type'] == 'category') && Showmsg('data_error');

    27. 

  27. 	$isBM = admincheck($forums['forumadmin'],$forums['fupadmin'],$windid);

    28. 

  28. 	if (!in_array($groupid,array('3','4')) && !$isBM && !$isGM) {

    29. 

  29. 		Showmsg('not_forumadmin');

    30. 

  30. 	}

    31. 

  31. 	$forumset = $forums['forumset'];

    32. 

  32. 	$first_admin = $db_adminset && strpos($forums['forumadmin'],','.$windid.',')===0 ? 1 : 0;

    33. 

  33. } else {

    34. 

  34. 	$query = $db->query("SELECT fid,forumadmin,fupadmin FROM pw_forums WHERE cms=0 AND type!='category'");

    35. 

  35. 	while ($rt = $db->fetch_array($query)) {

    36. 

  36. 		if (in_array($groupid,array('3','4')) || admincheck($rt['forumadmin'],$rt['fupadmin'],$windid) || $isGM) {

    37. 

  37. 			$fiddb[] = $rt['fid'];

    38. 

  38. 		}

    39. 

  39. 	}

    40. 

  40. 	!$fiddb && Showmsg('not_forumadmin');

    41. 

  41. }

    42. 

  42. require_once(R_P.'require/header.php');

    43. 

  43. 

    44. 

  44. if (!$action) {

    45. 

  45. 

    46. 

  46. 	$forum_name = '';

    47. 

  47. 	$fids		= S::sqlImplode($fiddb);

    48. 

  48. 	$froumdb	= array();

    49. 

  49. 	$query = $db->query("SELECT * FROM pw_forums f LEFT JOIN pw_forumdata fd USING(fid) WHERE f.fid IN($fids)");

    50. 

  50. 	while ($rt = $db->fetch_array($query)) {

    51. 

  51. 		$forumdb[] = $rt;

    52. 

  52. 	}

    53. 

  53. 	$i = count($forumdb);

    54. 

  54. 	if ($i > 4) {

    55. 

  55. 		$j_sum = 4;

    56. 

  56. 		$j_wid = '25%';

    57. 

  57. 	} else {

    58. 

  58. 		$j_sum = $i;

    59. 

  59. 		$j_wid = (100/$i).'%';

    60. 

  60. 	}

    61. 

  61. 	require_once(PrintEot('forumcp'));footer();

    62. 

  62. 

    63. 

  63. } elseif ($action == 'edit') {

    64. 

  64. 

    65. 

  65. 	$forum_name = S::striptags($forums['name']);

    66. 

  66. 	S::gp(array('type'));

    67. 

  67. 	!$type && $type = 'msg';

    68. 

  68. 	if ($type == 'notice') {

    69. 

  69. 		if(!$isGM && $forumcp_type['addnotice'] == 0){

    70. 

  70. 			showMsg('您沒有管理權限!');

    71. 

  71. 		}

    72. 

  72. 		$annoucedb = array();

    73. 

  73. 		$pages = ''; $page = (int)$_GET['page']; (int)$page<1 && $page = 1;

    74. 

  74. 		$query = $db->query('SELECT aid,ifopen,vieworder,author,subject,startdate,enddate FROM pw_announce WHERE fid='.S::sqlEscape($fid).' ORDER BY fid,vieworder,startdate DESC '.S::sqlLimit(($page-1)*$db_perpage,$db_perpage));

    75. 

  75. 		while ($rt = $db->fetch_array($query)) {

    76. 

  76. 			$rt['subject'] = substrs($rt['subject'],30);

    77. 

  77. 			$rt['starttime'] = $rt['startdate'] ? get_date($rt['startdate'],'Y-m-d H:i') : '--';

    78. 

  78. 			$rt['endtime'] = $rt['enddate'] ? get_date($rt['enddate'],'Y-m-d H:i') : '--';

    79. 

  79. 			$annoucedb[] = $rt;

    80. 

  80. 		}

    81. 

  81. 		$db->free_result($query);

    82. 

  82. 		$count = $db->get_value('SELECT COUNT(*) FROM pw_announce WHERE fid='.S::sqlEscape($fid));

    83. 

  83. 		if ($count > $db_perpage) {

    84. 

  84. 			require_once(R_P.'require/forum.php');

    85. 

  85. 			$pages = numofpage($count,$page,ceil($count/$db_perpage), "forumcp.php?action=edit&fid=$fid&type=$type&");

    86. 

  86. 		}

    87. 

  87. 

    88. 

  88. 		require_once(PrintEot('forumcp'));footer();

    89. 

  89. 	} elseif ($type == 'n_del') {

    90. 

  90. 

    91. 

  91. 		PostCheck();

    92. 

  92. 		$aid = (int)$_GET['aid'];

    93. 

  93. 		$rt = $db->get_one('SELECT aid,fid,ifopen FROM pw_announce WHERE aid='.S::sqlEscape($aid));

    94. 

  94. 		(!$rt['aid'] || $rt['fid']!=$fid) && Showmsg('data_error');

    95. 

  95. 		//* $db->update('DELETE FROM pw_announce WHERE aid='.S::sqlEscape($aid));

    96. 

  96. 		pwQuery::delete('pw_announce', 'aid=:aid', array($aid));

    97. 

  97. 		if ($rt['ifopen']) {

    98. 

  98. 			require_once(R_P.'require/updatenotice.php');

    99. 

  99. 			updatecache_i_i($fid);

    100. 

  100. 		}

    101. 

  101. 		refreshto("forumcp.php?action=edit&fid=$fid&type=notice",'operate_success');

    102. 

  102. 

    103. 

  103. 	} elseif ($type == 'n_order') {

    104. 

  104. 

    105. 

  105. 		PostCheck();

    106. 

  106. 		!is_array($vieworder = $_POST['vieworder']) && $vieworder = array();

    107. 

  107. 		$updatedb = array();

    108. 

  108. 		foreach ($vieworder as $key => $value) {

    109. 

  109. 			if (is_numeric($key)) {

    110. 

  110. 				$value = (int)$value;

    111. 

  111. 				$updatedb[$value] .= ",'$key'";

    112. 

  112. 			}

    113. 

  113. 		}

    114. 

  114. 		foreach ($updatedb as $key => $value) {

    115. 

  115. 			//* $value && $db->update("UPDATE pw_announce SET vieworder='$key' WHERE aid IN (".substr($value,1).')');

    116. 

  116. 			$value && $db->update(pwQuery::buildClause("UPDATE :pw_table SET vieworder=:vieworder WHERE aid IN (".substr($value,1).')', array('pw_announce',$key)));

    117. 

  117. 		}

    118. 

  118. 		require_once(R_P.'require/updatenotice.php');

    119. 

  119. 		updatecache_i_i($fid);

    120. 

  120. 		refreshto("forumcp.php?action=edit&type=notice&fid=$fid",'operate_success');

    121. 

  121. 

    122. 

  122. 	} elseif ($type == 'add' || $type == 'edit') {

    123. 

  123. 		S::gp(array('aid'),'GP',2);

    124. 

  124. 

    125. 

  125. 		if(!$isGM && $forumcp_type['addnotice'] == 0){

    126. 

  126. 			showMsg('您沒有管理權限!');

    127. 

  127. 		}

    128. 

  128. 

    129. 

  129. 		if (empty($_POST['step'])) {

    130. 

  130. 

    131. 

  131. 			$ifopen_Y = 'CHECKED'; $vieworder = (int)$vieworder;

    132. 

  132. 			$ifopen_N = $subject = $atc_content = $enddate = '';

    133. 

  133. 			$startdate = get_date($timestamp,'Y-m-d H:i');

    134. 

  134. 			if ($type == 'edit') {

    135. 

  135. 				$db_redundancy = 0;

    136. 

  136. 				$rt = $db->get_one('SELECT aid,fid,ifopen,vieworder,startdate,enddate,subject,content FROM pw_announce WHERE aid='.S::sqlEscape($aid));

    137. 

  137. 				!$rt['aid'] && Showmsg('data_error');

    138. 

  138. 				extract($rt,EXTR_OVERWRITE);

    139. 

  139. 				if (!$ifopen) {

    140. 

  140. 					$ifopen_Y = '';

    141. 

  141. 					$ifopen_N = 'CHECKED';

    142. 

  142. 				}

    143. 

  143. 				$startdate && $startdate = get_date($startdate,'Y-m-d H:i'); $enddate && $enddate = get_date($enddate,'Y-m-d H:i');

    144. 

  144. 				$atc_content = $content;

    145. 

  145. 			}

    146. 

  146. 			require_once(PrintEot('forumcp'));footer();

    147. 

  147. 		} else {

    148. 

  148. 			PostCheck();

    149. 

  149. 			!$fid && Showmsg('annouce_fid');

    150. 

  150. 			S::gp(array('startdate','enddate','atc_title'),'P');

    151. 

  151. 			$startdate = $startdate ? PwStrtoTime($startdate) : $timestamp;

    152. 

  152. 			$enddate = $enddate ? PwStrtoTime($enddate) : '';

    153. 

  153. 			$enddate && $enddate<=$startdate && Showmsg('annouce_time');

    154. 

  154. 			S::gp(array('ifopen','vieworder'),'P',2);

    155. 

  155. 			$atc_content = trim(S::escapeChar($_POST['atc_content']));

    156. 

  156. 			if ($type == 'add') {

    157. 

  157. 				(!$atc_title || strlen(trim($atc_title)) == 0) && Showmsg('annouce_title');

    158. 

  158. 				(!$atc_content || strlen($atc_content) == 0) && Showmsg('annouce_content');

    159. 

  159. 				/**

    160. 

  160. 				$pwSQL = S::sqlSingle(array(

    161. 

  161. 					'fid'		=> $fid,

    162. 

  162. 					'ifopen'	=> $ifopen,

    163. 

  163. 					'vieworder'	=> $vieworder,

    164. 

  164. 					'author'	=> $windid,

    165. 

  165. 					'startdate'	=> $startdate,

    166. 

  166. 					'enddate'	=> $enddate,

    167. 

  167. 					'url'		=> $url,

    168. 

  168. 					'subject'	=> $atc_title,

    169. 

  169. 					'content'	=> $atc_content

    170. 

  170. 				));

    171. 

  171. 				$db->update("INSERT INTO pw_announce SET $pwSQL");

    172. 

  172. 				**/

    173. 

  173. 				pwQuery::insert('pw_announce', array(

    174. 

  174. 					'fid'		=> $fid,

    175. 

  175. 					'ifopen'	=> $ifopen,

    176. 

  176. 					'vieworder'	=> $vieworder,

    177. 

  177. 					'author'	=> $windid,

    178. 

  178. 					'startdate'	=> $startdate,

    179. 

  179. 					'enddate'	=> $enddate,

    180. 

  180. 					'url'		=> $url,

    181. 

  181. 					'subject'	=> $atc_title,

    182. 

  182. 					'content'	=> $atc_content

    183. 

  183. 				));

    184. 

  184. 				

    185. 

  185. 				if ($ifopen && (!$enddate || $enddate>=$timestamp)) {

    186. 

  186. 					require_once(R_P.'require/updatenotice.php');

    187. 

  187. 					updatecache_i_i($fid);

    188. 

  188. 				}

    189. 

  189. 			} else {

    190. 

  190. 				$rt = $db->get_one('SELECT aid,fid,content FROM pw_announce WHERE aid='.S::sqlEscape($aid));

    191. 

  191. 				!$atc_title && Showmsg('annouce_title');

    192. 

  192. 				!$atc_content && Showmsg('annouce_content');

    193. 

  193. 

    194. 

  194. 				(!$rt['aid'] || $rt['fid']!=$fid) && Showmsg('data_error');

    195. 

  195. 				$pwSQL = array(

    196. 

  196. 					'ifopen'	=> $ifopen,

    197. 

  197. 					'vieworder'	=> $vieworder,

    198. 

  198. 					'startdate'	=> $startdate,

    199. 

  199. 					'enddate'	=> $enddate,

    200. 

  200. 					'url'		=> $url,

    201. 

  201. 					'subject'	=> $atc_title,

    202. 

  202. 					'content'	=> $atc_content

    203. 

  203. 				);

    204. 

  204. 				//* $db->update("UPDATE pw_announce SET $pwSQL WHERE aid=".S::sqlEscape($aid));

    205. 

  205. 				pwQuery::update('pw_announce','aid=:aid', array($aid), $pwSQL);

    206. 

  206. 				

    207. 

  207. 				require_once(R_P.'require/updatenotice.php');

    208. 

  208. 				updatecache_i_i($fid);

    209. 

  209. 			}

    210. 

  210. 			refreshto("forumcp.php?action=edit&type=notice&fid=$fid",'operate_success');

    211. 

  211. 		}

    212. 

  212. 	} elseif ($type == 'report') {

    213. 

  213. 

    214. 

  214. 		S::gp(array('page'),'GP',2);

    215. 

  215. 		$page < 1 && $page = 1;

    216. 

  216. 		$limit = S::sqlLimit(($page-1)*$db_perpage,$db_perpage);

    217. 

  217. 

    218. 

  218. 		if($forums['childid'] == 1) {

    219. 

  219. 			foreach ($forum as $key => $value) {

    220. 

  220. 				if($value['fup'] == $fid){

    221. 

  221. 					$fiddb[] = $key;

    222. 

  222. 				}

    223. 

  223. 				if(in_array($value['fup'],$fiddb)) {

    224. 

  224. 					$fiddb[] = $key;

    225. 

  225. 				}

    226. 

  226. 			}

    227. 

  227. 		}

    228. 

  228. 		$fiddb = array_merge(array($fid),$fiddb);

    229. 

  229. 

    230. 

  230. 		$rt = $db->get_one('SELECT COUNT(*) AS count FROM pw_report r LEFT JOIN pw_threads t ON t.tid=r.tid WHERE t.fid IN('.S::sqlImplode($fiddb).')');

    231. 

  231. 		$sum = $rt['count'];

    232. 

  232. 		$numofpage = ceil($sum/$db_perpage);

    233. 

  233. 		$pages = numofpage($sum,$page,$numofpage,"forumcp.php?action=edit&type=report&fid=$fid&");

    234. 

  234. 

    235. 

  235. 		$query = $db->query('SELECT r.*,m.username,t.fid FROM pw_report r LEFT JOIN pw_members m ON m.uid=r.uid LEFT JOIN pw_threads t ON t.tid=r.tid WHERE t.fid IN ('.S::sqlImplode($fiddb).') ORDER BY id '.$limit);

    236. 

  236. 		while ($rt = $db->fetch_array($query)) {

    237. 

  237. 			$rt['fname'] = $forum[$rt['fid']]['name'];

    238. 

  238. 			$reportdb[] = $rt;

    239. 

  239. 		}

    240. 

  240. 		require_once(PrintEot('forumcp'));footer();

    241. 

  241. 

    242. 

  242. 	} elseif ($type == 'f_type') {

    243. 

  243. 		if(!$isGM && $forumcp_type['allowtpctype'] == 0){

    244. 

  244. 			showMsg('您沒有管理權限。');

    245. 

  245. 		}

    246. 

  246. 		if (!($foruminfo = L::forum($fid))) {

    247. 

  247. 			Showmsg('data_error');

    248. 

  248. 		}

    249. 

  249. 		$forumset = $foruminfo['forumset'];

    250. 

  250. 			S::gp(array('dodel'));

    251. 

  251. 		if ($dodel == 'delttype') {

    252. 

  252. 			S::gp(array('typename','id'));

    253. 

  253. 			$id_array = array();

    254. 

  254. 			if ($typename == 'top') {

    255. 

  255. 				$query = $db->query("SELECT id FROM pw_topictype WHERE upid=".S::sqlEscape($id));

    256. 

  256. 				while ($rt = $db->fetch_array($query)) {

    257. 

  257. 					$id_array[] = $rt['id'];

    258. 

  258. 				}

    259. 

  259. 			}

    260. 

  260. 			$id_array = array_merge($id_array,array($id));

    261. 

  261. 			if (!empty($id_array)) {

    262. 

  262. 				require_once (R_P.'admin/cache.php');

    263. 

  263. 				$db->update("DELETE FROM pw_topictype WHERE id IN (".S::sqlImplode($id_array).")");

    264. 

  264. 				updatecache_f();

    265. 

  265. 				refreshto("forumcp.php?action=edit&type=f_type&fid=$fid", '刪除成功!');

    266. 

  266. 			} else {

    267. 

  267. 				Showmsg('data_error');

    268. 

  268. 			}

    269. 

  269. 		}

    270. 

  270. 		if (empty($_POST['step'])) {

    271. 

  271. 			$basename = "forumcp.php?action=edit&type=f_type&fid=$fid";

    272. 

  272. 			$forumset['addtpctype'] ? $addtpctype_Y='checked' : $addtpctype_N='checked';

    273. 

  273. 			$t_type = (int)$foruminfo['t_type'];

    274. 

  274. 			${'t_type_'.$t_type}='checked';

    275. 

  275. 

    276. 

  276. 			//主題分類

    277. 

  277. 			$query = $db->query("SELECT id,name,vieworder,upid,logo,ifsys FROM pw_topictype WHERE fid=".S::sqlEscape($fid)." ORDER BY vieworder");

    278. 

  278. 			while ($rt = $db->fetch_array($query)) {

    279. 

  279. 				$rt['name'] = str_replace(array('<','>','"',"'"),array("&lt;","&gt;","&quot;","&#39;"),$rt['name']);

    280. 

  280. 				if($rt['upid'] == 0) {

    281. 

  281. 					$typedb[$rt['id']] = $rt;

    282. 

  282. 				} else {

    283. 

  283. 					$subtypedb[$rt['id']] = $rt;

    284. 

  284. 				}

    285. 

  285. 			}

    286. 

  286. 

    287. 

  287. 			require_once(PrintEot('forumcp'));footer();

    288. 

  288. 

    289. 

  289. 		} else {

    290. 

  290. 			PostCheck();

    291. 

  291. 			S::slashes($forumset);

    292. 

  292. 			S::gp(array('t_view_db','t_logo_db','new_t_view_db','new_t_logo_db','t_sys_db','new_t_sub_logo_db','new_t_sub_view_db','addtpctype'),'P');

    293. 

  293. 			S::gp(array('t_db','new_t_db','new_t_sub_db','f_type','t_type'),'P',0);

    294. 

  294. 			$temptype = array('t_db','new_t_db','new_t_logo_db','new_t_sub_db');

    295. 

  295. 			empty($t_db) && $t_db = array();

    296. 

  296. 			empty($new_t_db) && $new_t_db = array();

    297. 

  297. 			empty($new_t_sub_db) && $new_t_sub_db = array();

    298. 

  298. 			foreach ($t_db as $key => $value) {

    299. 

  299. 				$value = str_replace(array('&#46;&#46;','&#41;','&#60;','&#61;'),array('..',')','<','='),$value);

    300. 

  300. 				$t_db[$key] = $value;

    301. 

  301. 			}

    302. 

  302. 

    303. 

  303. 

    304. 

  304. 			//主題分類

    305. 

  305. 			empty($t_db) && $t_db = array();

    306. 

  306. 			empty($new_t_db) && $new_t_db = array();

    307. 

  307. 			empty($new_t_sub_db) && $new_t_sub_db = array();

    308. 

  308. 

    309. 

  309. 			//更新原有的分類

    310. 

  310. 			foreach ($t_db as $key => $value) {

    311. 

  311. 

    312. 

  312. 				if(empty($value)) continue;

    313. 

  313. 				$db->update("UPDATE pw_topictype SET " . S::sqlSingle(array(

    314. 

  314. 					'name'			=> $value,

    315. 

  315. 					'logo'			=> $t_logo_db[$key],

    316. 

  316. 					'vieworder'		=> $t_view_db[$key],

    317. 

  317. 					'ifsys'			=> isset($t_sys_db[$key]) ? $t_sys_db[$key] : 0,

    318. 

  318. 				)) . " WHERE id=".S::sqlEscape($key));

    319. 

  319. 			}

    320. 

  320. 

    321. 

  321. 			//增加新分類

    322. 

  322. 

    323. 

  323. 			foreach ($new_t_db as $key => $value) {

    324. 

  324. 				if(empty($value)) continue;

    325. 

  325. 				$value = str_replace(array('&#46;&#46;','&#41;','&#60;','&#61;'),array('..',')','<','='),$value);

    326. 

  326. 				$typedb[] = array (

    327. 

  327. 					'fid' => $fid,

    328. 

  328. 					'name' => $value,

    329. 

  329. 					'logo'=>$new_t_logo_db[$key],

    330. 

  330. 					'vieworder'=>$new_t_view_db[$key],

    331. 

  331. 					'ifsys' => isset($new_t_sys_db[$key]) ? $new_t_sys_db[$key] : 0

    332. 

  332. 				);

    333. 

  333. 			}

    334. 

  334. 

    335. 

  335. 			if ($typedb) {

    336. 

  336. 				$db->update("REPLACE INTO pw_topictype (fid,name,logo,vieworder,ifsys) VALUES " . S::sqlMulti($typedb));

    337. 

  337. 			}

    338. 

  338. 			//增加二級新分類

    339. 

  339. 			foreach ($new_t_sub_db as $key => $value) {

    340. 

  340. 				foreach ($value as $k => $v) {

    341. 

  341. 					if (empty($v)) continue;

    342. 

  342. 					$v = str_replace(array('&#46;&#46;','&#41;','&#60;','&#61;'),array('..',')','<','='),$v);

    343. 

  343. 					$subtypedb[] = array (

    344. 

  344. 						'fid' => $fid,

    345. 

  345. 						'name' => $v,

    346. 

  346. 						'logo'=>$new_t_sub_logo_db[$key][$k],

    347. 

  347. 						'vieworder'=>$new_t_sub_view_db[$key][$k],

    348. 

  348. 						'upid'=>$key,

    349. 

  349. 						'ifsys' => isset($new_t_sub_sys_db[$key][$k]) ? $new_t_sub_sys_db[$key][$k] : 0

    350. 

  350. 					);

    351. 

  351. 				}

    352. 

  352. 			}

    353. 

  353. 			if ($subtypedb) {

    354. 

  354. 				$db->update("REPLACE INTO pw_topictype (fid,name,logo,vieworder,upid,ifsys) VALUES " . S::sqlMulti($subtypedb));

    355. 

  355. 			}

    356. 

  356.             require_once (R_P.'admin/cache.php');

    357. 

  357. 			if ($addtpctype != $forumset['addtpctype']) {

    358. 

  358. 				$forumset['addtpctype'] = $addtpctype;

    359. 

  359. 				$forumset = serialize($forumset);

    360. 

  360. 				if ($foruminfo['fid']) {

    361. 

  361. 					$db->update('UPDATE pw_forumsextra SET forumset='.S::sqlEscape($forumset).' WHERE fid='.S::sqlEscape($fid));

    362. 

  362. 				} else {

    363. 

  363. 					$db->update('INSERT INTO pw_forumsextra SET '.S::sqlSingle(array('fid'=>$fid,'forumset'=>$forumset)));

    364. 

  364. 				}

    365. 

  365. 				updatecache_forums($fid);

    366. 

  366. 			}

    367. 

  367. 			$foruminfo = L::forum($fid);

    368. 

  368. 			if($t_type != $foruminfo['t_type']){

    369. 

  369. 				//$db->update("UPDATE pw_forums SET " . S::sqlSingle(array('t_type'=> $t_type)) . "WHERE fid=".S::sqlEscape($fid));

    370. 

  370. 				pwQuery::update('pw_forums', 'fid =:fid', array($fid), array('t_type' => $t_type));

    371. 

  371. 			}

    372. 

  372.             updatecache_f();

    373. 

  373. 			refreshto("forumcp.php?action=edit&type=f_type&fid=$fid",'operate_success');

    374. 

  374. 		}

    375. 

  375. 	} elseif ($type == 'reward') {

    376. 

  376. 

    377. 

  377. 		S::gp(array('starttime','endtime','username'));

    378. 

  378. 		S::gp(array('page'),'GP',2);

    379. 

  379. 		$page < 1 && $page=1;

    380. 

  380. 		$limit = "LIMIT ".($page-1)*$db_perpage.",$db_perpage";

    381. 

  381. 

    382. 

  382. 		$sql = $url_a = '';

    383. 

  383. 		$_POST['starttime'] && $starttime= PwStrtoTime($starttime);

    384. 

  384. 		$_POST['endtime']   && $endtime  = PwStrtoTime($endtime);

    385. 

  385. 		if ($username) {

    386. 

  386. 			$sql.=' AND t.author='.S::sqlEscape($username);

    387. 

  387. 			$url_a.="username=".rawurlencode($username)."&";

    388. 

  388. 		}

    389. 

  389. 		if ($starttime) {

    390. 

  390. 			$sql.=' AND t.postdate>'.S::sqlEscape($starttime);

    391. 

  391. 			$url_a.="starttime=$starttime&";

    392. 

  392. 		}

    393. 

  393. 		if ($endtime) {

    394. 

  394. 			$sql.=' AND t.postdate<'.S::sqlEscape($endtime);

    395. 

  395. 			$url_a.="endtime=$endtime&";

    396. 

  396. 		}

    397. 

  397. 

    398. 

  398. 		$rt = $db->get_one("SELECT COUNT(*) AS count FROM pw_threads t LEFT JOIN pw_reward r USING(tid) WHERE t.fid=".S::sqlEscape($fid)." AND t.special='3' AND t.state='0' AND r.timelimit<".S::sqlEscape($timestamp).$sql);

    399. 

  399. 		$sum = $rt['count'];

    400. 

  400. 		$numofpage = ceil($sum/$db_perpage);

    401. 

  401. 		$pages = numofpage($sum,$page,$numofpage,"forumcp.php?action=edit&type=reward&fid=$fid&$url_a");

    402. 

  402. 

    403. 

  403. 		$threaddb = array();

    404. 

  404. 		$query = $db->query("SELECT t.tid,t.fid,t.subject,t.author,t.authorid,t.postdate,r.cbtype,r.cbval,r.catype,r.caval FROM pw_threads t LEFT JOIN pw_reward r USING(tid) WHERE t.fid=".S::sqlEscape($fid)." AND t.special='3' AND t.state='0' AND r.timelimit>".S::sqlEscape($timestamp).$sql." ORDER BY t.postdate $limit");

    405. 

  405. 

    406. 

  406. 		while ($rt = $db->fetch_array($query)) {

    407. 

  407. 			$rt['postdate'] = get_date($rt['postdate'],'Y-m-d');

    408. 

  408. 			$rt['cbtype'] = is_numeric($rt['cbtype']) ? $_CREDITDB[$rt['cbtype']][0] : ${'db_'.$rt['cbtype'].'name'};

    409. 

  409. 			$rt['catype'] = is_numeric($rt['catype']) ? $_CREDITDB[$rt['catype']][0] : ${'db_'.$rt['catype'].'name'};

    410. 

  410. 			$rt['binfo'] = $rt['cbval']."&nbsp;".$rt['cbtype'];

    411. 

  411. 			$rt['ainfo'] = $rt['caval']."&nbsp;".$rt['catype'];

    412. 

  412. 			$threaddb[]  = $rt;

    413. 

  413. 		}

    414. 

  414. 		require_once(PrintEot('forumcp'));footer();

    415. 

  415. 

    416. 

  416. 	} elseif ($type == 'thread') {

    417. 

  417. 		if(!$isGM && $forumcp_type['allowtpctype'] == 0)

    418. 

  418. 			showMsg('您沒有管理權限!');

    419. 

  419. 		S::gp(array('starttime','endtime','username','t_type'));

    420. 

  420. 		S::gp(array('page'),'GP',2);

    421. 

  421. 		$page < 1 && $page=1;

    422. 

  422. 		$limit="LIMIT ".($page-1)*$db_perpage.",$db_perpage";

    423. 

  423. 		$sql = $url_a = '';

    424. 

  424. 		$_POST['starttime'] && $starttime= PwStrtoTime($starttime);

    425. 

  425. 		$_POST['endtime']   && $endtime  = PwStrtoTime($endtime);

    426. 

  426. 		if ($username) {

    427. 

  427. 			$sql.=' AND author='.S::sqlEscape($username);

    428. 

  428. 			$url_a.="username=".rawurlencode($username)."&";

    429. 

  429. 		}

    430. 

  430. 		if ($starttime) {

    431. 

  431. 			$sql.=' AND postdate>'.S::sqlEscape($starttime);

    432. 

  432. 			$url_a.="starttime=$starttime&";

    433. 

  433. 		}

    434. 

  434. 		if ($endtime) {

    435. 

  435. 			$sql.=' AND postdate<'.S::sqlEscape($endtime);

    436. 

  436. 			$url_a.="endtime=$endtime&";

    437. 

  437. 		}

    438. 

  438. 		if ($t_type) {

    439. 

  439. 			switch($t_type) {

    440. 

  440. 				case 'digest':

    441. 

  441. 					$sql.=" AND digest>'0'";

    442. 

  442. 					break;

    443. 

  443. 				case 'active':

    444. 

  444. 					$sql.=" AND special='2'";

    445. 

  445. 					break;

    446. 

  446. 				case 'reward':

    447. 

  447. 					$sql.=" AND special='3'";

    448. 

  448. 					break;

    449. 

  449. 				case 'sale':

    450. 

  450. 					$sql.=" AND special='4'";

    451. 

  451. 					break;

    452. 

  452. 				default :

    453. 

  453. 					$sql.=" AND digest>'0'";

    454. 

  454. 			}

    455. 

  455. 			$url_a.="t_type=$t_type&";

    456. 

  456. 		}

    457. 

  457. 		if ($sql) {

    458. 

  458. 			$rt = $db->get_one("SELECT COUNT(*) AS sum FROM pw_threads WHERE fid=".S::sqlEscape($fid)." AND ifcheck=1 $sql");

    459. 

  459. 		} else {

    460. 

  460. 			$rt = $db->get_one('SELECT topic AS sum FROM pw_forumdata WHERE fid='.S::sqlEscape($fid));

    461. 

  461. 		}

    462. 

  462. 		$pages = numofpage($rt['sum'],$page,ceil($rt['sum']/$db_perpage), "forumcp.php?action=edit&type=thread&fid=$fid&$url_a");

    463. 

  463. 		$query = $db->query("SELECT tid,subject,author,authorid,postdate,titlefont,topped,digest,specialsort FROM pw_threads WHERE fid=".S::sqlEscape($fid)." AND ifcheck='1' $sql ORDER BY specialsort DESC,lastpost DESC $limit");

    464. 

  464. 		$threaddb = $toppedThread = array();

    465. 

  465. 		while ($rt = $db->fetch_array($query)) {

    466. 

  466. 			$rt['subject'] = substrs($rt['subject'],35);

    467. 

  467. 			if ($rt['titlefont']) {

    468. 

  468. 				$titledetail = explode("~",$rt['titlefont']);

    469. 

  469. 				if ($titledetail[0])$rt['subject'] = "<font color=\"$titledetail[0]\">$rt[subject]</font>";

    470. 

  470. 				if ($titledetail[1])$rt['subject'] = "<b>$rt[subject]</b>";

    471. 

  471. 				if ($titledetail[2])$rt['subject'] = "<i>$rt[subject]</i>";

    472. 

  472. 				if ($titledetail[3])$rt['subject'] = "<u>$rt[subject]</u>";

    473. 

  473. 			}

    474. 

  474. 			$rt['postdate'] = get_date($rt['postdate']);

    475. 

  475. 			

    476. 

  476. 			if (!$rt['specialsort']) {

    477. 

  477. 				$threaddb[] = $rt;

    478. 

  478. 				continue;

    479. 

  479. 			}

    480. 

  480. 			$rt['specialsort'] && $toppedThread[] = $rt;

    481. 

  481. 		}

    482. 

  482. 		S::isArray($toppedThread) && $threaddb = array_merge($toppedThread, $threaddb);

    483. 

  483. 		require_once PrintEot('forumcp');footer();

    484. 

  484. 

    485. 

  485. 	} elseif ($type == 'tcheck') {

    486. 

  486. 		if(!$isGM && !pwRights($isBM,'viewcheck')) Showmsg('not_forumadmin');

    487. 

  487. 		if (empty($_POST['step'])) {

    488. 

  488. 

    489. 

  489. 			S::gp(array('starttime','endtime','username','t_type'));

    490. 

  490. 			S::gp(array('page'),'GP',2);

    491. 

  491. 			$page < 1 && $page=1;

    492. 

  492. 			$limit = "LIMIT ".($page-1)*$db_perpage.",$db_perpage";

    493. 

  493. 			$sql = $url_a = '';

    494. 

  494. 			$_POST['starttime'] && $starttime= PwStrtoTime($starttime);

    495. 

  495. 			$_POST['endtime']   && $endtime  = PwStrtoTime($endtime);

    496. 

  496. 			if ($username) {

    497. 

  497. 				$sql.=' AND author='.S::sqlEscape($username);

    498. 

  498. 				$url_a.="username=".rawurlencode($username)."&";

    499. 

  499. 			}

    500. 

  500. 			if ($starttime) {

    501. 

  501. 				$sql.=' AND postdate>'.S::sqlEscape($starttime);

    502. 

  502. 				$url_a.="starttime=$starttime&";

    503. 

  503. 			}

    504. 

  504. 			if ($endtime) {

    505. 

  505. 				$sql.=' AND postdate<'.S::sqlEscape($endtime);

    506. 

  506. 				$url_a.="endtime=$endtime&";

    507. 

  507. 			}

    508. 

  508. 			if ($t_type) {

    509. 

  509. 				switch($t_type) {

    510. 

  510. 					case 'digest':

    511. 

  511. 						$sql.=" AND digest>'0'";

    512. 

  512. 						break;

    513. 

  513. 					case 'active':

    514. 

  514. 						$sql.=" AND special='2'";

    515. 

  515. 						break;

    516. 

  516. 					case 'reward':

    517. 

  517. 						$sql.=" AND special='3'";

    518. 

  518. 						break;

    519. 

  519. 					case 'sale':

    520. 

  520. 						$sql.=" AND special='4'";

    521. 

  521. 						break;

    522. 

  522. 					default :

    523. 

  523. 						$sql.=" AND digest>'0'";

    524. 

  524. 				}

    525. 

  525. 				$url_a .= "t_type=$t_type&";

    526. 

  526. 				${'t_type_' . $t_type} = 'selected';

    527. 

  527. 			}

    528. 

  528. 			$rt = $db->get_one("SELECT COUNT(*) AS sum FROM pw_threads WHERE fid=".S::sqlEscape($fid)." AND ifcheck='0' $sql");

    529. 

  529. 			$pages = numofpage($rt['sum'],$page,ceil($rt['sum']/$db_perpage), "forumcp.php?action=edit&type=tcheck&fid=$fid&$url_a");

    530. 

  530. 

    531. 

  531. 			$threaddb = $ttable_a = $attachs = array();

    532. 

  532. 			$query = $db->query("SELECT tid,subject,author,authorid,postdate FROM pw_threads WHERE fid=".S::sqlEscape($fid)." AND ifcheck='0' $sql ORDER BY specialsort DESC,lastpost DESC $limit");

    533. 

  533. 			while ($rt = $db->fetch_array($query)) {

    534. 

  534. 				$rt['subject']	= substrs($rt['subject'],35);

    535. 

  535. 				$rt['postdate']	= get_date($rt['postdate']);

    536. 

  536. 				$threaddb[$rt['tid']] = $rt;

    537. 

  537. 				$ttable_a[GetTtable($rt['tid'])][] = $rt['tid'];

    538. 

  538. 			}

    539. 

  539. 			if ($threaddb) {

    540. 

  540. 				$pw_attachs = L::loadDB('attachs', 'forum');

    541. 

  541. 				$attachs = $pw_attachs->gets(array('tid' => array_keys($threaddb), 'pid' => 0));

    542. 

  542. 				$attachShow = new attachShow(true);

    543. 

  543. 				$attachShow->setData($attachs, 'tid');

    544. 

  544. 			}

    545. 

  545. 

    546. 

  546. 			//* include_once pwCache::getPath(D_P.'data/bbscache/wordsfb.php');

    547. 

  547. 			pwCache::getData(D_P.'data/bbscache/wordsfb.php');

    548. 

  548. 			foreach ($ttable_a as $pw_tmsgs => $value) {

    549. 

  549. 				$value = S::sqlImplode($value);

    550. 

  550. 				$query = $db->query("SELECT tid,content,ifconvert,aid FROM $pw_tmsgs WHERE tid IN($value)");

    551. 

  551. 				while ($rt = $db->fetch_array($query)) {

    552. 

  552. 					$rt['content'] = str_replace("\n","<br>",$rt['content']);

    553. 

  553. 					$rt['ifconvert'] == 2 && $rt['content'] = convert($rt['content'], $db_windpost);

    554. 

  554. 					if ($rt['aid']) {

    555. 

  555. 						$rt += $attachShow->parseAttachs($rt['tid'], $rt['content'], 0);

    556. 

  556. 						if ($rt['pic']) {

    557. 

  557. 							foreach ($rt['pic'] as $k => $v) {

    558. 

  558. 								$rt['content'] .= '<br />' . $v['img'];

    559. 

  559. 							}

    560. 

  560. 						}

    561. 

  561. 						if ($rt['downattach']) {

    562. 

  562. 							foreach ($rt['downattach'] as $k => $v) {

    563. 

  563. 								$rt['content'] .= "<br />附件:<a href=\"job.php?action=download&aid=$v[aid]\" onclick=\"return ajaxurl(this);\"> <font color=\"red\">$v[name]</font></a> ($v[size] K)";

    564. 

  564. 							}

    565. 

  565. 						}

    566. 

  566. 					}

    567. 

  567. 					foreach ($alarm as $key => $value) {

    568. 

  568. 						$rt['content'] = str_replace($key,'<span style="background-color:#ffff66">'.$key.'</span>',$rt['content']);

    569. 

  569. 					}

    570. 

  570. 					$threaddb[$rt['tid']]['content'] = $rt['content'];

    571. 

  571. 				}

    572. 

  572. 			}

    573. 

  573. 			require_once PrintEot('forumcp');footer();

    574. 

  574. 

    575. 

  575. 		} elseif ($_POST['step'] == 3) {

    576. 

  576. 

    577. 

  577. 			PostCheck();

    578. 

  578. 			S::gp(array('selid','ifmsg'));

    579. 

  579. 			$tids = array();

    580. 

  580. 			foreach ($selid as $key=>$value) {

    581. 

  581. 				is_numeric($value) && $tids[] = $value;

    582. 

  582. 			}

    583. 

  583. 			!$tids && Showmsg('id_error');

    584. 

  584. 			//$db->update("UPDATE pw_threads SET ifcheck='1' WHERE tid IN(".S::sqlImplode($tids).") AND fid=".S::sqlEscape($fid));

    585. 

  585. 			pwQuery::update('pw_threads', "tid IN (:tid) AND fid=:fid", array($tids, $fid), array("ifcheck"=>1));

    586. 

  586. 

    587. 

  587. 			$checkarticle = L::loadClass('DelArticle', 'forum');

    588. 

  588. 			$readdb = $checkarticle->getTopicDb("tid ".$checkarticle->sqlFormatByIds($tids));

    589. 

  589. 			foreach ($readdb as $tpcData) {

    590. 

  590. 				if ($ifmsg) {

    591. 

  591. 					M::sendNotice(

    592. 

  592. 						array($tpcData['author']),

    593. 

  593. 						array(

    594. 

  594. 							'title' => getLangInfo('writemsg','check_title'),

    595. 

  595. 							'content' => getLangInfo('writemsg','check_content',array(

    596. 

  596. 								'manager'	=> $windid,

    597. 

  597. 								'fid'		=> $tpcData['fid'],

    598. 

  598. 								'tid'		=> $tpcData['tid'],

    599. 

  599. 								'subject'	=> $tpcData['subject'],

    600. 

  600. 								'postdate'	=> get_date($tpcData['postdate']),

    601. 

  601. 								'forum'		=> strip_tags($forum[$fid]['name']),

    602. 

  602. 								'affect'    => "",

    603. 

  603. 								'admindate'	=> get_date($timestamp),

    604. 

  604. 								'reason'	=> stripslashes($atc_content)

    605. 

  605. 							)),

    606. 

  606. 						)

    607. 

  607. 					);

    608. 

  608. 				}

    609. 

  609. 			}

    610. 

  610. 

    611. 

  611. 			// $threadList = L::loadClass("threadlist", 'forum');

    612. 

  612. 			// $threadList->refreshThreadIdsByForumId($fid);

    613. 

  613. 			Perf::gatherInfo('changeThreadWithForumIds', array('fid'=>$fid));

    614. 

  614. 			$todayTopicNum = count((array)$tids);

    615. 

  615. 			require_once(R_P.'require/updateforum.php');

    616. 

  616. 			updateforum($fid);

    617. 

  617. 			refreshto("forumcp.php?action=edit&type=$type&fid=$fid",'operate_success');

    618. 

  618. 

    619. 

  619. 		} else {

    620. 

  620. 

    621. 

  621. 			PostCheck();

    622. 

  622. 			S::gp(array('selid','ifmsg'));

    623. 

  623. 			$delids = '';

    624. 

  624. 			foreach ($selid as $key => $value) {

    625. 

  625. 				if (is_numeric($value)) {

    626. 

  626. 					$delids .= $value.',';

    627. 

  627. 				}

    628. 

  628. 			}

    629. 

  629. 			!$delids && Showmsg('mawhole_nodata');

    630. 

  630. 			$delids = substr($delids,0,-1);

    631. 

  631. 

    632. 

  632. 			$readdb = array();

    633. 

  633. 			$delarticle = L::loadClass('DelArticle', 'forum');

    634. 

  634. 			$readdb = $delarticle->getTopicDb("tid ".$delarticle->sqlFormatByIds($delids));

    635. 

  635. 

    636. 

  636. 			//積分操作

    637. 

  637. 			require_once(R_P.'require/credit.php');

    638. 

  638. 			$creditOpKey = "Delete";

    639. 

  639. 			$foruminfo = L::forum($fid);

    640. 

  640. 			$creditset = $credit->creditset($foruminfo['creditset'],$db_creditset);

    641. 

  641. 			$msg_delrvrc  = abs($creditset['Delete']['rvrc']);

    642. 

  642. 			$msg_delmoney = abs($creditset['Delete']['money']);

    643. 

  643. 		

    644. 

  644. 			foreach ($readdb as $tpcData) {

    645. 

  645. 				if ($ifmsg) {

    646. 

  646. 					isset($msg_delrvrc) && $tmp_msg_delrvrc = ($msg_delrvrc != 0) ? "-{$msg_delrvrc}" : 0;

    647. 

  647. 					isset($msg_delmoney) && $tmp_msg_delmoney = ($msg_delmoney != 0) ? "-{$msg_delmoney}" : 0;

    648. 

  648. 					M::sendNotice(

    649. 

  649. 						array($tpcData['author']),

    650. 

  650. 						array(

    651. 

  651. 							'title' => getLangInfo('writemsg','del_title'),

    652. 

  652. 							'content' => getLangInfo('writemsg','del_content',array(

    653. 

  653. 								'manager'	=> $windid,

    654. 

  654. 								'fid'		=> $tpcData['fid'],

    655. 

  655. 								'tid'		=> $tpcData['tid'],

    656. 

  656. 								'subject'	=> $tpcData['subject'],

    657. 

  657. 								'postdate'	=> get_date($tpcData['postdate']),

    658. 

  658. 								'forum'		=> strip_tags($forum[$fid]['name']),

    659. 

  659. 								'affect' => "{$db_rvrcname}:{$tmp_msg_delrvrc},{$db_moneyname}:{$tmp_msg_delmoney}",

    660. 

  660. 								'admindate'	=> get_date($timestamp),

    661. 

  661. 								'reason'	=> stripslashes($atc_content)

    662. 

  662. 							)),

    663. 

  663. 						)

    664. 

  664. 					);

    665. 

  665. 				}

    666. 

  666. 			}

    667. 

  667. 			$delarticle->delTopic($readdb, false, true, array('reason' => $atc_content));

    668. 

  668. 

    669. 

  669. 			# memcache refresh

    670. 

  670. 			// $threadList = L::loadClass("threadlist", 'forum');

    671. 

  671. 			// $threadList->refreshThreadIdsByForumId($fid);

    672. 

  672. 			Perf::gatherInfo('changeThreadWithForumIds', array('fid'=>$fid));

    673. 

  673. 

    674. 

  674. 			refreshto("forumcp.php?action=edit&type=$type&fid=$fid",'operate_success');

    675. 

  675. 		}

    676. 

  676. 	} elseif ($type == 'pcheck') {

    677. 

  677. 		if(!$isGM && !pwRights($isBM,'viewcheck')) Showmsg('not_forumadmin');

    678. 

  678. 		if (empty($_POST['step'])) {

    679. 

  679. 

    680. 

  680. 			S::gp(array('starttime','endtime','username','ptable'));

    681. 

  681. 			S::gp(array('page'),'GP',2);

    682. 

  682. 			$page < 1 && $page=1;

    683. 

  683. 			$limit = S::sqlLimit(($page-1)*$db_perpage,$db_perpage);

    684. 

  684. 			$sql = $url_a = '';

    685. 

  685. 			$_POST['starttime'] && $starttime= PwStrtoTime($starttime);

    686. 

  686. 			$_POST['endtime']   && $endtime  = PwStrtoTime($endtime);

    687. 

  687. 			if ($username) {

    688. 

  688. 				$sql.=' AND author='.S::sqlEscape($username);

    689. 

  689. 				$url_a.="username=".rawurlencode($username)."&";

    690. 

  690. 			}

    691. 

  691. 			if ($starttime) {

    692. 

  692. 				$sql.=' AND postdate>'.S::sqlEscape($starttime);

    693. 

  693. 				$url_a.="starttime=$starttime&";

    694. 

  694. 			}

    695. 

  695. 			if ($endtime) {

    696. 

  696. 				$sql.=' AND postdate<'.S::sqlEscape($endtime);

    697. 

  697. 				$url_a.="endtime=$endtime&";

    698. 

  698. 			}

    699. 

  699. 			if ($db_plist && count($db_plist)>1) {

    700. 

  700. 				!is_numeric($ptable) && $ptable = $db_ptable;

    701. 

  701. 				foreach ($db_plist as $key=>$val) {

    702. 

  702. 					$name = $val ? $val : ($key != 0 ? getLangInfo('other','posttable').$key : getLangInfo('other','posttable'));

    703. 

  703. 					$p_table .= "<option value=\"$key\">".$name."</option>";

    704. 

  704. 				}

    705. 

  705. 				$p_table  = str_replace("<option value=\"$ptable\">","<option value=\"$ptable\" selected>",$p_table);

    706. 

  706. 				$url_a	 .= "ptable=$ptable&";

    707. 

  707. 				$pw_posts = GetPtable($ptable);

    708. 

  708. 			} else {

    709. 

  709. 				$pw_posts = 'pw_posts';

    710. 

  710. 			}

    711. 

  711. 			$rt = $db->get_one("SELECT COUNT(*) AS sum FROM $pw_posts WHERE fid=".S::sqlEscape($fid)." AND ifcheck='0' $sql");

    712. 

  712. 			$pages = numofpage($rt['sum'],$page,ceil($rt['sum']/$db_perpage), "forumcp.php?action=edit&type=$type&fid=$fid&$url_a");

    713. 

  713. 

    714. 

  714. 			$postdb = $tids = array();

    715. 

  715. 			//* include_once pwCache::getPath(D_P.'data/bbscache/wordsfb.php');

    716. 

  716. 			pwCache::getData(D_P.'data/bbscache/wordsfb.php');

    717. 

  717. 			$query = $db->query("SELECT pid,tid,subject,author,authorid,postdate,content,aid,ifconvert FROM $pw_posts WHERE fid=".S::sqlEscape($fid)." AND ifcheck='0' $sql $limit");

    718. 

  718. 			while ($rt = $db->fetch_array($query)) {

    719. 

  719. 				if ($rt['subject']) {

    720. 

  720. 					$rt['subject'] = substrs($rt['subject'],35);

    721. 

  721. 				} else {

    722. 

  722. 					$rt['subject'] = substrs($rt['content'],35);

    723. 

  723. 				}

    724. 

  724. 				$rt['postdate'] = get_date($rt['postdate']);

    725. 

  725. 				$rt['content']  = str_replace("\n","<br>",$rt['content']);

    726. 

  726. 				$rt['ifconvert'] == 2 && $rt['content'] = convert($rt['content'], $db_windpost);

    727. 

  727. 

    728. 

  728. 				foreach ($alarm as $key => $value) {

    729. 

  729. 					$rt['content'] = str_replace($key,'<span style="background-color:#ffff66">'.$key.'</span>',$rt['content']);

    730. 

  730. 				}

    731. 

  731. 				$postdb[$rt['pid']] = $rt;

    732. 

  732. 				if ($rt['aid']) {

    733. 

  733. 					$tids[] = $rt['tid'];

    734. 

  734. 				}

    735. 

  735. 			}

    736. 

  736. 			if ($tids) {

    737. 

  737. 				$pw_attachs = L::loadDB('attachs', 'forum');

    738. 

  738. 				$attachs = $pw_attachs->gets(array('tid' => $tids, 'pid' => array_keys($postdb)));

    739. 

  739. 				$attachShow = new attachShow(true);

    740. 

  740. 				$attachShow->setData($attachs);

    741. 

  741. 				foreach ($postdb as $key => $rt) {

    742. 

  742. 					if (!$rt['aid']) continue; 

    743. 

  743. 					$rt += $attachShow->parseAttachs($rt['pid'], $rt['content'], 0);

    744. 

  744. 					if ($rt['pic']) {

    745. 

  745. 						foreach ($rt['pic'] as $k => $v) {

    746. 

  746. 							$rt['content'] .= '<br />' . $v['img'];

    747. 

  747. 						}

    748. 

  748. 					}

    749. 

  749. 					if ($rt['downattach']) {

    750. 

  750. 						foreach ($rt['downattach'] as $k => $v) {

    751. 

  751. 							$rt['content'] .= "<br />附件:<a href=\"job.php?action=download&aid=$v[aid]\" onclick=\"return ajaxurl(this);\"> <font color=\"red\">$v[name]</font></a> ($v[size] K)";

    752. 

  752. 						}

    753. 

  753. 					}

    754. 

  754. 					$postdb[$rt['pid']] = $rt;

    755. 

  755. 				}

    756. 

  756. 			}

    757. 

  757. 			require_once PrintEot('forumcp');footer();

    758. 

  758. 

    759. 

  759. 		} elseif ($_POST['step'] == 3) {

    760. 

  760. 

    761. 

  761. 			PostCheck();

    762. 

  762. 			S::gp(array('selid','ptable'));

    763. 

  763. 			/*

    764. 

  764. 			$pids = '';

    765. 

  765. 			foreach ($selid as $key => $value) {

    766. 

  766. 				is_numeric($value) && $pids .= ($pids ? ',' : '').$value;

    767. 

  767. 			}

    768. 

  768. 			!$pids && Showmsg('id_error');

    769. 

  769. 			*/

    770. 

  770. 			$pids = array();

    771. 

  771. 			foreach ($selid as $key => $value) {

    772. 

  772. 				is_numeric($value) && $pids[] = $value;

    773. 

  773. 			}

    774. 

  774. 			!$pids && Showmsg('id_error');

    775. 

  775. 

    776. 

  776. 			$pw_posts = GetPtable($ptable);

    777. 

  777. 

    778. 

  778. 			$update_tids = array();

    779. 

  779. 			$query = $db->query("SELECT tid,pid,fid,aid,author,authorid,postdate,subject,content FROM $pw_posts WHERE fid='$fid' AND pid IN(".S::sqlImplode($pids).")");

    780. 

  780. 			while ($rt = $db->fetch_array($query)) {

    781. 

  781. 				$update_tids[$rt['tid']] ++;

    782. 

  782. 				if ($_POST['ifmsg']) {

    783. 

  783. 					if (!$rt['subject']) {

    784. 

  784. 						$rt['subject'] = substrs($rt['content'],35);

    785. 

  785. 					}

    786. 

  786. 					M::sendNotice(

    787. 

  787. 						array($rt['author']),

    788. 

  788. 						array(

    789. 

  789. 							'title' => getLangInfo('writemsg','check_title'),

    790. 

  790. 							'content' => getLangInfo('writemsg','check_content',array(

    791. 

  791. 								'manager'	=> $windid,

    792. 

  792. 								'fid'		=> $fid,

    793. 

  793. 								'tid'		=> $rt['tid'],

    794. 

  794. 								'subject'	=> substrs($rt['subject'],28),

    795. 

  795. 								'postdate'	=> get_date($rt['postdate']),

    796. 

  796. 								'forum'		=> strip_tags($forum[$fid]['name']),

    797. 

  797. 								'affect'	=> "",

    798. 

  798. 								'admindate'	=> get_date($timestamp),

    799. 

  799. 								'reason'	=> stripslashes($atc_content)

    800. 

  800. 							)),

    801. 

  801. 						)

    802. 

  802. 					);

    803. 

  803. 				}

    804. 

  804. 			}

    805. 

  805. 			foreach ($update_tids as $key => $value) {

    806. 

  806. 				$rt = $db->get_one("SELECT postdate,author FROM $pw_posts WHERE tid=".S::sqlEscape($key)."ORDER BY postdate DESC LIMIT 1");

    807. 

  807. 				//$db->update("UPDATE pw_threads SET replies=replies+".S::sqlEscape($value).",lastpost=".S::sqlEscape($rt['postdate'],false).",lastposter =".S::sqlEscape($rt['author'],false)."WHERE tid=".S::sqlEscape($key));

    808. 

  808. 				$db->update(pwQuery::buildClause("UPDATE :pw_table SET replies=replies+:replies, lastpost=:lastpost, lastposter=:lastposter WHERE tid=:tid", array('pw_threads', $value, $rt['postdate'], $rt['author'], $key)));

    809. 

  809. 				# memcache refresh

    810. 

  810. 				// $threadList = L::loadClass("threadlist", 'forum');

    811. 

  811.                 // $threadList->updateThreadIdsByForumId($fid,$tid);

    812. 

  812. 				Perf::gatherInfo('changeThreadWithForumIds', array('fid'=>$fid));

    813. 

  813. 			}

    814. 

  814. 

    815. 

  815. 			//$db->update("UPDATE $pw_posts SET ifcheck='1' WHERE pid IN(" . S::sqlImplode($pids) . ") AND fid='$fid'");

    816. 

  816. 			pwQuery::update($pw_posts, 'pid IN(:pid) AND fid=:fid', array($pids, $fid), array('ifcheck' => '1'));

    817. 

  817. 			require_once(R_P.'require/updateforum.php');

    818. 

  818. 			updateforum($fid);

    819. 

  819. 			refreshto("forumcp.php?action=edit&type=$type&fid=$fid",'operate_success');

    820. 

  820. 

    821. 

  821. 		} else {

    822. 

  822. 			PostCheck();

    823. 

  823. 			S::gp(array('selid','ptable'));

    824. 

  824. 

    825. 

  825. 			require_once(R_P.'require/credit.php');

    826. 

  826. 

    827. 

  827. 			$creditOpKey = "Deleterp";

    828. 

  828. 			$foruminfo = L::forum($fid);

    829. 

  829. 			$creditset = $credit->creditset($foruminfo['creditset'],$db_creditset);

    830. 

  830. 

    831. 

  831. 			//$tids = '';

    832. 

  832. 			$_tids = $_pids = $deluids = array();

    833. 

  833. 			/*foreach ($selid as $key => $value) {

    834. 

  834. 				is_numeric($value) && $tids .= ($tids ? ',' : '').$value;

    835. 

  835. 			}

    836. 

  836. 			!$tids && Showmsg('id_error');*/

    837. 

  837. 

    838. 

  838. 			$pidArr = array();

    839. 

  839. 			foreach ($selid as $key => $value) {

    840. 

  840. 				is_numeric($value) && $pidArr[] = $value;

    841. 

  841. 			}

    842. 

  842. 			!$pidArr && Showmsg('id_error');

    843. 

  843. 

    844. 

  844. 			$msg_delrvrc  = abs($creditset['Deleterp']['rvrc']);

    845. 

  845. 			$msg_delmoney = abs($creditset['Deleterp']['money']);

    846. 

  846. 			$pw_posts = GetPtable($ptable);

    847. 

  847. 			$query = $db->query("SELECT tid,pid,fid,aid,author,authorid,postdate,subject,content FROM $pw_posts WHERE fid='$fid' AND pid IN(" . S::sqlImplode($pidArr) . ")");

    848. 

  848. 			while ($rt = $db->fetch_array($query)) {

    849. 

  849. 				$rt['fid'] != $fid && Showmsg('admin_forum_right');

    850. 

  850. 				$deluids[$rt['authorid']] = isset($deluids[$rt['authorid']]) ? $deluids[$rt['authorid']] + 1 : 1;

    851. 

  851. 

    852. 

  852. 				//積分操作

    853. 

  853. 				$credit->addLog("topic_$creditOpKey", $creditset[$creditOpKey], array(

    854. 

  854. 					'uid' => $rt['authorid'],

    855. 

  855. 					'username' => $rt['author'],

    856. 

  856. 					'ip' => $onlineip,

    857. 

  857. 					'fname' => strip_tags($foruminfo['name']),

    858. 

  858. 					'operator' => $windid,

    859. 

  859. 				));

    860. 

  860. 				$credit->sets($rt['authorid'],$creditset[$creditOpKey],false);

    861. 

  861. 

    862. 

  862. 				if ($rt['aid']) {

    863. 

  863. 					$_tids[$rt['tid']] = $rt['tid'];

    864. 

  864. 					$_pids[$rt['pid']] = $rt['pid'];

    865. 

  865. 				}

    866. 

  866. 

    867. 

  867. 				if ($_POST['ifmsg']) {

    868. 

  868. 					if (!$rt['subject']) {

    869. 

  869. 						$rt['subject'] = substrs($rt['content'],35);

    870. 

  870. 					}

    871. 

  871. 					M::sendNotice(

    872. 

  872. 						array($rt['author']),

    873. 

  873. 						array(

    874. 

  874. 							'title' => getLangInfo('writemsg','delrp_title'),

    875. 

  875. 							'content' => getLangInfo('writemsg','delrp_content',array(

    876. 

  876. 								'manager'	=> $windid,

    877. 

  877. 								'fid'		=> $fid,

    878. 

  878. 								'tid'		=> $rt['tid'],

    879. 

  879. 								'subject'	=> substrs($rt['subject'],28),

    880. 

  880. 								'postdate'	=> get_date($rt['postdate']),

    881. 

  881. 								'forum'		=> strip_tags($forum[$fid]['name']),

    882. 

  882. 								'affect'	=> "{$db_rvrcname}:-{$msg_delrvrc},{$db_moneyname}:-{$msg_delmoney}",

    883. 

  883. 								'admindate'	=> get_date($timestamp),

    884. 

  884. 								'reason'	=> stripslashes($atc_content)

    885. 

  885. 							)),

    886. 

  886. 						)

    887. 

  887. 					);

    888. 

  888. 				}

    889. 

  889. 

    890. 

  890. 			}

    891. 

  891. 			$credit->runsql();

    892. 

  892. 

    893. 

  893. 			//$db->update("DELETE FROM $pw_posts WHERE pid IN($tids)");

    894. 

  894. 			pwQuery::delete($pw_posts, 'pid IN(:pid)', array($pidArr));

    895. 

  895. 			if ($_tids && $_pids) {

    896. 

  896. 				$pw_attachs = L::loadDB('attachs', 'forum');

    897. 

  897. 				$attachdb = $pw_attachs->getByTid($_tids,$_pids);

    898. 

  898. 				require_once(R_P.'require/updateforum.php');

    899. 

  899. 				delete_att($attachdb);

    900. 

  900. 				pwFtpClose($ftp);

    901. 

  901. 			}

    902. 

  902. 			$userService = L::loadClass('UserService', 'user'); /* @var $userService PW_UserService */

    903. 

  903. 			foreach ($deluids as $uid => $value) {

    904. 

  904. 				$userService->updateByIncrement($uid, array(), array('postnum' => -$value));

    905. 

  905. 			}

    906. 

  906. 			refreshto("forumcp.php?action=edit&type=$type&fid=$fid",'operate_success');

    907. 

  907. 		}

    908. 

  908. 	} elseif ($type == 'commend') {

    909. 

  909. 

    910. 

  910. 		if (empty($_POST['step'])) {

    911. 

  911. 

    912. 

  912. 			$commendThread = array();

    913. 

  913. 			if ($forumset['commendlist']) {

    914. 

  914. 				$query = $db->query("SELECT tid,authorid,author,postdate,subject FROM pw_threads WHERE tid IN($forumset[commendlist])");

    915. 

  915. 				while ($rt=$db->fetch_array($query)) {

    916. 

  916. 					$rt['postdate'] = get_date($rt['postdate']);

    917. 

  917. 					$commendThread[] = $rt;

    918. 

  918. 				}

    919. 

  919. 			}

    920. 

  920. 			require_once PrintEot('forumcp');footer();

    921. 

  921. 

    922. 

  922. 		} else {

    923. 

  923. 

    924. 

  924. 			PostCheck();

    925. 

  925. 			S::gp(array('selid'));

    926. 

  926. 			foreach ($selid as $key => $value) {

    927. 

  927. 				if (is_numeric($value)) {

    928. 

  928. 					$forumset['commendlist'] = trim(str_replace(",$value,",",",",$forumset[commendlist],"),',');

    929. 

  929. 				}

    930. 

  930. 			}

    931. 

  931. 			updatecommend($fid,$forumset);

    932. 

  932. 			refreshto("forumcp.php?action=edit&type=$type&fid=$fid",'operate_success');

    933. 

  933. 		}

    934. 

  934. 	} elseif ($type == 'adminset') {

    935. 

  935. 

    936. 

  936. 		!$first_admin && Showmsg('undefined_action');

    937. 

  937. 		$admin_a = explode(',',trim($forums['forumadmin'],','));

    938. 

  938. 		$firstadmin = $admin_a[0];

    939. 

  939. 		$firstadmin != $windid && Showmsg('undefined_action');

    940. 

  940. 		if (empty($_POST['step'])) {

    941. 

  941. 			$s_admin = trim(str_replace(",$firstadmin,",',',$forums['forumadmin']),',');

    942. 

  942. 			require_once(PrintEot('forumcp'));footer();

    943. 

  943. 

    944. 

  944. 		} else {

    945. 

  945. 

    946. 

  946. 			PostCheck();

    947. 

  947. 			S::gp(array('forumadmin'),'P');

    948. 

  948. 

    949. 

  949. 			$userService = L::loadClass('UserService', 'user'); /* @var $userService PW_UserService */

    950. 

  950. 			$errorname = '';

    951. 

  951. 			if ($forums['forumadmin'] != stripslashes(",".$windid.",$forumadmin,")) {

    952. 

  952. 				$newadmin = array('0'=>$windid);

    953. 

  953. 				$newadmin_a = array_unique(explode(",",$forumadmin));

    954. 

  954. 				foreach ($newadmin_a as $aid => $value) {

    955. 

  955. 					$value = trim($value);

    956. 

  956. 					if ($value && !in_array($value,$newadmin)) {

    957. 

  957. 						$mb = $userService->getByUserName($value);

    958. 

  958. 						if ($mb) {

    959. 

  959. 							$newadmin[] = $value;

    960. 

  960. 							if ($mb['groupid'] == -1) {

    961. 

  961. 								$userService->update($mb['uid'], array('groupid' => 5));

    962. 

  962. 								$pwSQL = S::sqlSingle(array(

    963. 

  963. 									'uid'		=> $mb['uid'],

    964. 

  964. 									'username'	=> $value,

    965. 

  965. 									'groupid'	=> 5,

    966. 

  966. 									'groups'	=> $mb['groups']

    967. 

  967. 								));

    968. 

  968. 								$db->update("REPLACE INTO pw_administrators SET $pwSQL");

    969. 

  969. 							} elseif ($mb['groupid'] <> 5 && strpos($mb['groups'],',5,')===false) {

    970. 

  970. 								$mb['groups'] = $mb['groups'] ? $mb['groups'].'5,' : ",5,";

    971. 

  971. 								$userService->update($mb['uid'], array('groups' => $mb['groups']));

    972. 

  972. 								$pwSQL = S::sqlSingle(array(

    973. 

  973. 									'uid'		=> $mb['uid'],

    974. 

  974. 									'username'	=> $value,

    975. 

  975. 									'groupid'	=> $mb['groupid'],

    976. 

  976. 									'groups'	=> $mb['groups']

    977. 

  977. 								));

    978. 

  978. 								$db->update("REPLACE INTO pw_administrators SET $pwSQL");

    979. 

  979. 							}

    980. 

  980. 						} else {

    981. 

  981. 							$errorname .= ','.$value;

    982. 

  982. 						}

    983. 

  983. 					}

    984. 

  984. 				}

    985. 

  985. 				$oldfadmin = explode(',',trim($forums['forumadmin'],','));

    986. 

  986. 				if ($oldfadmin) {

    987. 

  987. 					$f_admin = array();

    988. 

  988. 					$query = $db->query("SELECT forumadmin FROM pw_forums WHERE fid<>".S::sqlEscape($fid)." AND forumadmin<>''");

    989. 

  989. 					while ($rt = $db->fetch_array($query)) {

    990. 

  990. 						foreach (explode(",",$rt['forumadmin']) as $key=>$value) {

    991. 

  991. 							if ($value = trim($value)) {

    992. 

  992. 								$f_admin[] = $value;

    993. 

  993. 							}

    994. 

  994. 						}

    995. 

  995. 					}

    996. 

  996. 					$f_admin = array_unique($f_admin);

    997. 

  997. 

    998. 

  998. 					foreach ($userService->getByUserNames($oldfadmin) as $rt) {

    999. 

  999. 						if (!in_array($rt['username'],$newadmin) && !in_array($rt['username'],$f_admin)) {

    1000. 

  1000. 							if ($rt['groupid']=='5') {

    1001. 

  1001. 								$userService->update($rt['uid'], array('groupid' => -1));

    1002. 

  1002. 								$rt['groupid'] = -1;

    1003. 

  1003. 							} else {

    1004. 

  1004. 								$rt['groups'] = str_replace(',5,',',',$rt['groups']);

    1005. 

  1005. 								$rt['groups']==',' && $rt['groups'] = '';

    1006. 

  1006. 								$userService->update($rt['uid'], array('groups' => $rt['groups']));

    1007. 

  1007. 							}

    1008. 

  1008. 							if (in_array($rt['groupid'],array('-1','6','7')) && $rt['groups']=='') {

    1009. 

  1009. 								$db->update("DELETE FROM pw_administrators WHERE uid=".S::sqlEscape($rt['uid'],false));

    1010. 

  1010. 							} else {

    1011. 

  1011. 								$db->update("REPLACE INTO pw_administrators SET".S::sqlSingle(array(

    1012. 

  1012. 									'uid'		=> $rt['uid'],

    1013. 

  1013. 									'username'	=> $rt['username'],

    1014. 

  1014. 									'groupid'	=> $rt['groupid'],

    1015. 

  1015. 									'groups'	=> $rt['groups']

    1016. 

  1016. 								),false));

    1017. 

  1017. 							}

    1018. 

  1018. 						}

    1019. 

  1019. 					}

    1020. 

  1020. 				}

    1021. 

  1021. 				$newadmin = addslashes(implode(',',$newadmin));

    1022. 

  1022. 				//$db->update("UPDATE pw_forums SET forumadmin=',$newadmin,' WHERE fid=".S::sqlEscape($fid));

    1023. 

  1023. 				pwQuery::update('pw_forums', 'fid=:fid', array($fid), array('forumadmin'=>",$newadmin,"));

    1024. 

  1024. 				require_once R_P.'admin/cache.php';

    1025. 

  1025. 				updatecache_forums($fid);

    1026. 

  1026. 				updatecache_fd(true);

    1027. 

  1027. 			}

    1028. 

  1028. 			if ($errorname) {

    1029. 

  1029. 				$errorname = S::escapeChar(substr($errorname,1));

    1030. 

  1030. 				Showmsg('user_not_exists');

    1031. 

  1031. 			} else {

    1032. 

  1032. 				refreshto("forumcp.php?action=edit&type=$type&fid=$fid",'operate_success');

    1033. 

  1033. 			}

    1034. 

  1034. 		}

    1035. 

  1035. 	} elseif ($type == 'trecycle' && $db_recycle) {

    1036. 

  1036. 

    1037. 

  1037. 		require_once(R_P.'require/updateforum.php');

    1038. 

  1038. 		require_once(R_P.'require/writelog.php');

    1039. 

  1039. 		S::gp(array('page','step'),'GP',2);

    1040. 

  1040. 

    1041. 

  1041. 		if (empty($step)) {

    1042. 

  1042. 

    1043. 

  1043. 			S::gp(array('username','starttime','endtime','t_type'));

    1044. 

  1044. 			$page<1 && $page = 1;

    1045. 

  1045. 			$limit = S::sqlLimit(($page-1)*$db_perpage,$db_perpage);

    1046. 

  1046. 

    1047. 

  1047. 			$sql = $url_a = '';

    1048. 

  1048. 			$starttime && $starttime= PwStrtoTime($starttime);

    1049. 

  1049. 			$endtime   && $endtime  = PwStrtoTime($endtime);

    1050. 

  1050. 			if ($username) {

    1051. 

  1051. 				$sql.=' AND t.author='.S::sqlEscape($username);

    1052. 

  1052. 				$url_a.="username=".rawurlencode($username)."&";

    1053. 

  1053. 			}

    1054. 

  1054. 			if ($starttime) {

    1055. 

  1055. 				$sql.=' AND t.postdate>'.S::sqlEscape($starttime);

    1056. 

  1056. 				$url_a.="starttime=$starttime&";

    1057. 

  1057. 			}

    1058. 

  1058. 			if ($endtime) {

    1059. 

  1059. 				$sql.=' AND t.postdate<'.S::sqlEscape($endtime);

    1060. 

  1060. 				$url_a.="endtime=$endtime&";

    1061. 

  1061. 			}

    1062. 

  1062. 			if ($t_type) {

    1063. 

  1063. 				switch($t_type) {

    1064. 

  1064. 					case 'digest':

    1065. 

  1065. 						$sql.=" AND t.digest>'0'";

    1066. 

  1066. 						break;

    1067. 

  1067. 					case 'active':

    1068. 

  1068. 						$sql.=" AND t.special='2'";

    1069. 

  1069. 						break;

    1070. 

  1070. 					case 'reward':

    1071. 

  1071. 						$sql.=" AND t.special='3'";

    1072. 

  1072. 						break;

    1073. 

  1073. 					case 'sale':

    1074. 

  1074. 						$sql.=" AND t.special='4'";

    1075. 

  1075. 						break;

    1076. 

  1076. 					default :

    1077. 

  1077. 				}

    1078. 

  1078. 				${'t_type_'.$t_type} = 'selected';

    1079. 

  1079. 				$url_a.="t_type=$t_type&";

    1080. 

  1080. 			}

    1081. 

  1081. 			$rt = $db->get_one("SELECT COUNT(*) AS sum FROM pw_recycle r LEFT JOIN pw_threads t USING(tid) WHERE r.pid='0' AND r.fid=".S::sqlEscape($fid).$sql);

    1082. 

  1082. 			$pages = numofpage($rt['sum'],$page,ceil($rt['sum']/$db_perpage), "forumcp.php?action=edit&type=trecycle&fid=$fid&$url_a");

    1083. 

  1083. 

    1084. 

  1084. 			$ttable_a = array();

    1085. 

  1085. 			$query = $db->query("SELECT r.*,t.subject,t.author,t.authorid,t.postdate FROM pw_recycle r LEFT JOIN pw_threads t USING(tid) WHERE r.pid='0' AND r.fid=".S::sqlEscape($fid).$sql." ORDER BY deltime DESC $limit");

    1086. 

  1086. 			while ($rt = $db->fetch_array($query)) {

    1087. 

  1087. 				$rt['deltime'] = get_date($rt['deltime']);

    1088. 

  1088. 				$rt['subject'] = substrs($rt['subject'],40);

    1089. 

  1089. 				$rt['fname']   = $forum[$rt['fid']]['name'];

    1090. 

  1090. 				$rt['postdate'] = get_date($rt['postdate'], 'Y-m-d H:i:s');

    1091. 

  1091. 				$recycledb[$rt['tid']] = $rt;

    1092. 

  1092. 				$ttable_a[GetTtable($rt['tid'])][] = $rt['tid'];

    1093. 

  1093. 			}

    1094. 

  1094. 			foreach ($ttable_a as $pw_tmsgs => $value) {

    1095. 

  1095. 				$value = S::sqlImplode($value);

    1096. 

  1096. 				$query = $db->query("SELECT tid,content,userip FROM $pw_tmsgs WHERE tid IN($value)");

    1097. 

  1097. 				while ($rt = $db->fetch_array($query)) {

    1098. 

  1098. 					$rt['content'] = str_replace("\n","<br>",$rt['content']);

    1099. 

  1099. 					$recycledb[$rt['tid']]['content'] = convert($rt['content'], $db_windpost);

    1100. 

  1100. 					$recycledb[$rt['tid']]['userip'] = $rt['userip'];

    1101. 

  1101. 				}

    1102. 

  1102. 			}

    1103. 

  1103. 			require_once(PrintEot('forumcp'));footer();

    1104. 

  1104. 

    1105. 

  1105. 		} elseif ($_POST['step'] == '1' && $forumset['recycle'] & 2) {

    1106. 

  1106. 

    1107. 

  1107. 			PostCheck();

    1108. 

  1108. 			S::gp(array('ids'),'P');

    1109. 

  1109. 			count($ids) > 500 && Showmsg('forumcp_recycle_maxcount');

    1110. 

  1110. 			recycle($ids);

    1111. 

  1111. 			$logdb = array(

    1112. 

  1112. 				'type'      => 'recycle',

    1113. 

  1113. 				'username1' => '',

    1114. 

  1114. 				'username2' => $windid,

    1115. 

  1115. 				'field1'    => $fid,

    1116. 

  1116. 				'field2'    => '',

    1117. 

  1117. 				'field3'    => '',

    1118. 

  1118. 				'descrip'   => 'recycle_topic_delete',

    1119. 

  1119. 				'timestamp' => $timestamp,

    1120. 

  1120. 				'ip'        => $onlineip,

    1121. 

  1121. 				'affect'    => '',

    1122. 

  1122. 				'forum'		=> $forum[$fid]['name'],

    1123. 

  1123. 				'reason'	=> ''

    1124. 

  1124. 			);

    1125. 

  1125. 			writelog($logdb);

    1126. 

  1126. 			refreshto("forumcp.php?action=edit&type=trecycle&fid=$fid",'operate_success');

    1127. 

  1127. 

    1128. 

  1128. 		} elseif ($_POST['step'] == '2' && $forumset['recycle'] & 4) {

    1129. 

  1129. 

    1130. 

  1130. 			PostCheck();

    1131. 

  1131. 			S::gp(array('ids'),'P');

    1132. 

  1132. 			count($ids) > 500 && Showmsg('forumcp_recycle_maxcount');

    1133. 

  1133. 			$reids = $logdb = $ptable_a = array();

    1134. 

  1134. 			foreach ($ids as $key => $value) {

    1135. 

  1135. 				if (is_numeric($value)) {

    1136. 

  1136. 					$reids[] = $value;

    1137. 

  1137. 				}

    1138. 

  1138. 			}

    1139. 

  1139. 			!$reids && Showmsg('forumcp_recycle_nodata');

    1140. 

  1140. 

    1141. 

  1141. 			$reids = S::sqlImplode($reids);

    1142. 

  1142. 			$query = $db->query("SELECT r.*,t.ptable FROM pw_recycle r LEFT JOIN pw_threads t ON r.tid=t.tid WHERE r.pid='0' AND r.tid IN ($reids)");

    1143. 

  1143. 			$reids = $ptable_a = array();

    1144. 

  1144. 			while ($read = $db->fetch_array($query)) {

    1145. 

  1145. 				$read['fid'] != $fid && Showmsg('admin_forum_right');

    1146. 

  1146. 				$ptable_a[$read['ptable']] = 1;

    1147. 

  1147. 				$reids[] = $read['tid'];

    1148. 

  1148. 			}

    1149. 

  1149. 			if ($reids) {

    1150. 

  1150. 				$pw_attachs = L::loadDB('attachs', 'forum');

    1151. 

  1151. 				$pw_attachs->updateByTid($reids,array('fid'=>$fid));

    1152. 

  1152. 

    1153. 

  1153. 				//* $reids = S::sqlImplode($reids);

    1154. 

  1154. 				//* $db->update("UPDATE pw_threads SET ".S::sqlSingle(array('fid'=>$fid,'ifshield'=>0))."WHERE tid IN($reids)");

    1155. 

  1155. 				pwQuery::update('pw_threads', 'tid IN (:tid)' , array($reids), array('fid'=>$fid,'ifshield'=>0));

    1156. 

  1156. 				$db->update("DELETE FROM pw_recycle WHERE tid IN (" . S::sqlImplode($reids) . ")");

    1157. 

  1157. 

    1158. 

  1158. 				foreach ($ptable_a as $key => $val) {

    1159. 

  1159. 					$pw_posts = GetPtable($key);

    1160. 

  1160. 					//$db->update("UPDATE $pw_posts SET fid=".S::sqlEscape($fid)."WHERE tid IN($reids)");

    1161. 

  1161. 					pwQuery::update($pw_posts, 'tid IN(:tid)', array($reids), array('fid' => $fid));

    1162. 

  1162. 				}

    1163. 

  1163. 			}

    1164. 

  1164. 			updateforum($fid);

    1165. 

  1165. 			$logdb = array(

    1166. 

  1166. 				'type'      => 'recycle',

    1167. 

  1167. 				'username1' => '',

    1168. 

  1168. 				'username2' => $windid,

    1169. 

  1169. 				'field1'    => $fid,

    1170. 

  1170. 				'field2'    => '',

    1171. 

  1171. 				'field3'    => '',

    1172. 

  1172. 				'descrip'   => 'recycle_topic_restore',

    1173. 

  1173. 				'timestamp' => $timestamp,

    1174. 

  1174. 				'ip'        => $onlineip,

    1175. 

  1175. 				'affect'    => '',

    1176. 

  1176. 				'forum'		=> $forum[$fid]['name'],

    1177. 

  1177. 				'reason'	=> ''

    1178. 

  1178. 			);

    1179. 

  1179. 			writelog($logdb);

    1180. 

  1180. 			refreshto("forumcp.php?action=edit&type=trecycle&fid=$fid",'operate_success');

    1181. 

  1181. 

    1182. 

  1182. 		} elseif ($step == '3' && $forumset['recycle'] & 8) {

    1183. 

  1183. 

    1184. 

  1184. 			PostCheck();

    1185. 

  1185. 			$ids = array();

    1186. 

  1186. 			$flag = false;

    1187. 

  1187. 			$query = $db->query("SELECT * FROM pw_recycle WHERE fid=".S::sqlEscape($fid)." AND pid='0' LIMIT 100");

    1188. 

  1188. 			while ($rt = $db->fetch_array($query)) {

    1189. 

  1189. 				$flag || $flag = true;

    1190. 

  1190. 				$ids[] = $rt['tid'];

    1191. 

  1191. 			}

    1192. 

  1192. 			if ($flag) {

    1193. 

  1193. 				recycle($ids);

    1194. 

  1194. 				refreshto("forumcp.php?action=edit&type=trecycle&fid=$fid&step=3&verify=$verifyhash", 'delete_recycle');

    1195. 

  1195. 			} else {

    1196. 

  1196. 				$logdb = array(

    1197. 

  1197. 					'type'      => 'recycle',

    1198. 

  1198. 					'username1' => '',

    1199. 

  1199. 					'username2' => $windid,

    1200. 

  1200. 					'field1'    => $fid,

    1201. 

  1201. 					'field2'    => '',

    1202. 

  1202. 					'field3'    => '',

    1203. 

  1203. 					'descrip'   => 'recycle_topic_empty',

    1204. 

  1204. 					'timestamp' => $timestamp,

    1205. 

  1205. 					'ip'        => $onlineip,

    1206. 

  1206. 					'affect'    => '',

    1207. 

  1207. 					'forum'		=> $forum[$fid]['name'],

    1208. 

  1208. 					'reason'	=> ''

    1209. 

  1209. 				);

    1210. 

  1210. 				writelog($logdb);

    1211. 

  1211. 				refreshto("forumcp.php?action=edit&type=trecycle&fid=$fid",'operate_success');

    1212. 

  1212. 			}

    1213. 

  1213. 		}

    1214. 

  1214. 	} elseif ($type == 'precycle' && $db_recycle) {

    1215. 

  1215. 

    1216. 

  1216. 		require_once(R_P.'require/updateforum.php');

    1217. 

  1217. 		require_once(R_P.'require/writelog.php');

    1218. 

  1218. 		S::gp(array('ptable'));

    1219. 

  1219. 		S::gp(array('step','page'),'GP',2);

    1220. 

  1220. 		$db_perpage = 10;

    1221. 

  1221. 

    1222. 

  1222. 		if (empty($step)) {

    1223. 

  1223. 

    1224. 

  1224. 			S::gp(array('username','starttime','endtime','t_type'));

    1225. 

  1225. 			$sql = $url_a = '';

    1226. 

  1226. 			if ($db_plist && count($db_plist)>1) {

    1227. 

  1227. 				!is_numeric($ptable) && $ptable = $db_ptable;

    1228. 

  1228. 				foreach ($db_plist as $key=>$val) {

    1229. 

  1229. 					$name = $val ? $val : ($key != 0 ? getLangInfo('other','posttable').$key : getLangInfo('other','posttable'));

    1230. 

  1230. 					$p_table .= "<option value=\"$key\">".$name."</option>";

    1231. 

  1231. 				}

    1232. 

  1232. 				$p_table  = str_replace("<option value=\"$ptable\">","<option value=\"$ptable\" selected>",$p_table);

    1233. 

  1233. 

    1234. 

  1234. 				$url_a	 .= "ptable=$ptable&";

    1235. 

  1235. 				$pw_posts = GetPtable($ptable);

    1236. 

  1236. 			} else {

    1237. 

  1237. 				$pw_posts = 'pw_posts';

    1238. 

  1238. 			}

    1239. 

  1239. 			$starttime && $starttime= PwStrtoTime($starttime);

    1240. 

  1240. 			$endtime   && $endtime  = PwStrtoTime($endtime);

    1241. 

  1241. 			if ($username) {

    1242. 

  1242. 				$sql.=' AND p.author='.S::sqlEscape($username);

    1243. 

  1243. 				$url_a.="username=".rawurlencode($username)."&";

    1244. 

  1244. 			}

    1245. 

  1245. 			if ($starttime) {

    1246. 

  1246. 				$sql.=' AND p.postdate>'.S::sqlEscape($starttime);

    1247. 

  1247. 				$url_a.="starttime=$starttime&";

    1248. 

  1248. 			}

    1249. 

  1249. 			if ($endtime) {

    1250. 

  1250. 				$sql.=' AND p.postdate<'.S::sqlEscape($endtime);

    1251. 

  1251. 				$url_a.="endtime=$endtime&";

    1252. 

  1252. 			}

    1253. 

  1253. 			if ($t_type) {

    1254. 

  1254. 				switch($t_type) {

    1255. 

  1255. 					case 'digest':

    1256. 

  1256. 						$sql.=" AND t.digest>'0'";

    1257. 

  1257. 						break;

    1258. 

  1258. 					case 'active':

    1259. 

  1259. 						$sql.=" AND t.special='2'";

    1260. 

  1260. 						break;

    1261. 

  1261. 					case 'reward':

    1262. 

  1262. 						$sql.=" AND t.special='3'";

    1263. 

  1263. 						break;

    1264. 

  1264. 					case 'sale':

    1265. 

  1265. 						$sql.=" AND t.special='4'";

    1266. 

  1266. 						break;

    1267. 

  1267. 					default :

    1268. 

  1268. 						$sql.="";

    1269. 

  1269. 				}

    1270. 

  1270. 				${'t_type_'.$t_type} = 'selected';

    1271. 

  1271. 				$url_a.="t_type=$t_type&";

    1272. 

  1272. 			}

    1273. 

  1273. 

    1274. 

  1274. 			(!is_numeric($page) || $page<1) && $page = 1;

    1275. 

  1275. 			$limit = "LIMIT ".($page-1)*$db_perpage.",$db_perpage";

    1276. 

  1276. 			$rt    = $db->get_one("SELECT COUNT(*) AS sum FROM pw_recycle r LEFT JOIN $pw_posts p USING(pid) LEFT JOIN pw_threads t ON r.tid=t.tid WHERE r.fid=".S::sqlEscape($fid)." AND r.pid>'0' AND p.fid='0' $sql");

    1277. 

  1277. 			$pages = numofpage($rt['sum'],$page,ceil($rt['sum']/$db_perpage), "forumcp.php?action=edit&type=precycle&fid=$fid&$url_a");

    1278. 

  1278. 

    1279. 

  1279. 			$query = $db->query("SELECT r.*,p.author,p.authorid,p.content,p.postdate,t.subject FROM pw_recycle r LEFT JOIN $pw_posts p ON r.pid=p.pid LEFT JOIN pw_threads t ON r.tid=t.tid WHERE r.fid=".S::sqlEscape($fid)." AND r.pid>'0' AND p.fid='0' $sql ORDER BY r.deltime DESC $limit");

    1280. 

  1280. 			while ($rt = $db->fetch_array($query)) {

    1281. 

  1281. 				$rt['deltime'] = get_date($rt['deltime']);

    1282. 

  1282. 				$rt['postdate'] = get_date($rt['postdate']);

    1283. 

  1283. 				$rt['subject'] = substrs($rt['subject'],40);

    1284. 

  1284. 				$rt['content'] = str_replace("\n","<br>",$rt['content']);

    1285. 

  1285. 				$rt['content'] = convert($rt['content'], $db_windpost);

    1286. 

  1286. 				$rt['fname']   = $forum[$rt['fid']]['name'];

    1287. 

  1287. 				$recycledb[]   = $rt;

    1288. 

  1288. 			}

    1289. 

  1289. 			require_once(PrintEot('forumcp'));footer();

    1290. 

  1290. 

    1291. 

  1291. 		} elseif ($_POST['step'] == '1' && $forumset['recycle'] & 2) {

    1292. 

  1292. 

    1293. 

  1293. 			PostCheck();

    1294. 

  1294. 			S::gp(array('ids'),'P');

    1295. 

  1295. 			count($ids) > 500 && Showmsg('forumcp_recycle_maxcount');

    1296. 

  1296. 			$delids = array();

    1297. 

  1297. 			foreach ($ids as $key => $value) {

    1298. 

  1298. 				if (is_numeric($value)) {

    1299. 

  1299. 					$delids[] = $value;

    1300. 

  1300. 				}

    1301. 

  1301. 			}

    1302. 

  1302. 			$delids && $delids = S::sqlImplode($delids);

    1303. 

  1303. 			!$delids && Showmsg('forumcp_recycle_nodata');

    1304. 

  1304. 			!is_numeric($ptable) && $ptable = $db_ptable;

    1305. 

  1305. 			$pw_posts = GetPtable($ptable);

    1306. 

  1306. 

    1307. 

  1307. 			$_pids = $_tids = array();

    1308. 

  1308. 			$query = $db->query("SELECT * FROM pw_recycle WHERE pid IN($delids)");

    1309. 

  1309. 			while ($read = $db->fetch_array($query)) {

    1310. 

  1310. 				$read['fid'] != $fid && Showmsg('admin_forum_right');

    1311. 

  1311. 				$_tids[$read['tid']] = $read['tid'];

    1312. 

  1312. 				$_pids[$read['pid']] = $read['pid'];

    1313. 

  1313. 			}

    1314. 

  1314. 			if ($_pids) {

    1315. 

  1315. 				$pw_attachs = L::loadDB('attachs', 'forum');

    1316. 

  1316. 				$atta
    1317.

Large files files are truncated, but you can click here to view the full file