/doweneed/forums/privmsg.php
PHP | 1997 lines | 1510 code | 289 blank | 198 comment | 318 complexity | d5303bf2450fb76cf33fc0cfe539cc7c MD5 | raw file
Possible License(s): AGPL-1.0
Large files files are truncated, but you can click here to view the full file
- <?php
- /***************************************************************************
- * privmsgs.php
- * -------------------
- * begin : Saturday, Jun 9, 2001
- * copyright : (C) 2001 The phpBB Group
- * email : support@phpbb.com
- *
- * $Id: privmsg.php,v 1.96.2.9 2002/07/19 15:19:31 psotfx Exp $
- *
- *
- ***************************************************************************/
- /***************************************************************************
- *
- * This program is free software; you can redistribute it and/or modify
- * it under the terms of the GNU General Public License as published by
- * the Free Software Foundation; either version 2 of the License, or
- * (at your option) any later version.
- *
- ***************************************************************************/
- define('IN_PHPBB', true);
- $phpbb_root_path = './';
- include($phpbb_root_path . 'extension.inc');
- include($phpbb_root_path . 'common.'.$phpEx);
- include($phpbb_root_path . 'includes/bbcode.'.$phpEx);
- include($phpbb_root_path . 'includes/functions_post.'.$phpEx);
- //
- // Is PM disabled?
- //
- if ( !empty($board_config['privmsg_disable']) )
- {
- message_die(GENERAL_MESSAGE, 'PM_disabled');
- }
- $html_entities_match = array('#&#', '#<#', '#>#');
- $html_entities_replace = array('&', '<', '>');
- //
- // Parameters
- //
- $submit = ( isset($HTTP_POST_VARS['post']) ) ? TRUE : 0;
- $submit_search = ( isset($HTTP_POST_VARS['usersubmit']) ) ? TRUE : 0;
- $submit_msgdays = ( isset($HTTP_POST_VARS['submit_msgdays']) ) ? TRUE : 0;
- $cancel = ( isset($HTTP_POST_VARS['cancel']) ) ? TRUE : 0;
- $preview = ( isset($HTTP_POST_VARS['preview']) ) ? TRUE : 0;
- $confirm = ( isset($HTTP_POST_VARS['confirm']) ) ? TRUE : 0;
- $delete = ( isset($HTTP_POST_VARS['delete']) ) ? TRUE : 0;
- $delete_all = ( isset($HTTP_POST_VARS['deleteall']) ) ? TRUE : 0;
- $save = ( isset($HTTP_POST_VARS['save']) ) ? TRUE : 0;
- $refresh = $preview || $submit_search;
- $mark_list = ( !empty($HTTP_POST_VARS['mark']) ) ? $HTTP_POST_VARS['mark'] : 0;
- if ( isset($HTTP_POST_VARS['folder']) || isset($HTTP_GET_VARS['folder']) )
- {
- $folder = ( isset($HTTP_POST_VARS['folder']) ) ? $HTTP_POST_VARS['folder'] : $HTTP_GET_VARS['folder'];
- if ( $folder != 'inbox' && $folder != 'outbox' && $folder != 'sentbox' && $folder != 'savebox' )
- {
- $folder = 'inbox';
- }
- }
- else
- {
- $folder = 'inbox';
- }
- //
- // Start session management
- //
- $userdata = session_pagestart($user_ip, PAGE_PRIVMSGS);
- init_userprefs($userdata);
- //
- // End session management
- //
- //
- // Cancel
- //
- if ( $cancel )
- {
- $header_location = ( @preg_match('/Microsoft|WebSTAR|Xitami/', getenv('SERVER_SOFTWARE')) ) ? 'Refresh: 0; URL=' : 'Location: ';
- header($header_location . append_sid("privmsg.$phpEx?folder=$folder", true));
- exit;
- }
- //
- // Var definitions
- //
- if ( !empty($HTTP_POST_VARS['mode']) || !empty($HTTP_GET_VARS['mode']) )
- {
- $mode = ( !empty($HTTP_POST_VARS['mode']) ) ? $HTTP_POST_VARS['mode'] : $HTTP_GET_VARS['mode'];
- }
- else
- {
- $mode = '';
- }
- $start = ( !empty($HTTP_GET_VARS['start']) ) ? intval($HTTP_GET_VARS['start']) : 0;
- if ( isset($HTTP_POST_VARS[POST_POST_URL]) || isset($HTTP_GET_VARS[POST_POST_URL]) )
- {
- $privmsg_id = ( isset($HTTP_POST_VARS[POST_POST_URL]) ) ? intval($HTTP_POST_VARS[POST_POST_URL]) : intval($HTTP_GET_VARS[POST_POST_URL]);
- }
- else
- {
- $privmsg_id = '';
- }
- $error = FALSE;
- //
- // Define the box image links
- //
- $inbox_img = ( $folder != 'inbox' || $mode != '' ) ? '<a href="' . append_sid("privmsg.$phpEx?folder=inbox") . '"><img src="' . $images['pm_inbox'] . '" border="0" alt="' . $lang['Inbox'] . '" /></a>' : '<img src="' . $images['pm_inbox'] . '" border="0" alt="' . $lang['Inbox'] . '" />';
- $inbox_url = ( $folder != 'inbox' || $mode != '' ) ? '<a href="' . append_sid("privmsg.$phpEx?folder=inbox") . '">' . $lang['Inbox'] . '</a>' : $lang['Inbox'];
- $outbox_img = ( $folder != 'outbox' || $mode != '' ) ? '<a href="' . append_sid("privmsg.$phpEx?folder=outbox") . '"><img src="' . $images['pm_outbox'] . '" border="0" alt="' . $lang['Outbox'] . '" /></a>' : '<img src="' . $images['pm_outbox'] . '" border="0" alt="' . $lang['Outbox'] . '" />';
- $outbox_url = ( $folder != 'outbox' || $mode != '' ) ? '<a href="' . append_sid("privmsg.$phpEx?folder=outbox") . '">' . $lang['Outbox'] . '</a>' : $lang['Outbox'];
- $sentbox_img = ( $folder != 'sentbox' || $mode != '' ) ? '<a href="' . append_sid("privmsg.$phpEx?folder=sentbox") . '"><img src="' . $images['pm_sentbox'] . '" border="0" alt="' . $lang['Sentbox'] . '" /></a>' : '<img src="' . $images['pm_sentbox'] . '" border="0" alt="' . $lang['Sentbox'] . '" />';
- $sentbox_url = ( $folder != 'sentbox' || $mode != '' ) ? '<a href="' . append_sid("privmsg.$phpEx?folder=sentbox") . '">' . $lang['Sentbox'] . '</a>' : $lang['Sentbox'];
- $savebox_img = ( $folder != 'savebox' || $mode != '' ) ? '<a href="' . append_sid("privmsg.$phpEx?folder=savebox") . '"><img src="' . $images['pm_savebox'] . '" border="0" alt="' . $lang['Savebox'] . '" /></a>' : '<img src="' . $images['pm_savebox'] . '" border="0" alt="' . $lang['Savebox'] . '" />';
- $savebox_url = ( $folder != 'savebox' || $mode != '' ) ? '<a href="' . append_sid("privmsg.$phpEx?folder=savebox") . '">' . $lang['Savebox'] . '</a>' : $lang['Savebox'];
- // ----------
- // Start main
- //
- if ( $mode == 'newpm' )
- {
- $gen_simple_header = TRUE;
- $page_title = $lang['Private_Messaging'];
- include($phpbb_root_path . 'includes/page_header.'.$phpEx);
- $template->set_filenames(array(
- 'body' => 'privmsgs_popup.tpl')
- );
- if ( $userdata['session_logged_in'] )
- {
- if ( $userdata['user_new_privmsg'] )
- {
- $l_new_message = ( $userdata['user_new_privmsg'] == 1 ) ? $lang['You_new_pm'] : $lang['You_new_pms'];
- }
- else
- {
- $l_new_message = $lang['You_no_new_pm'];
- }
- $l_new_message .= '<br /><br />' . sprintf($lang['Click_view_privmsg'], '<a href="' . append_sid("privmsg.".$phpEx."?folder=inbox") . '" onClick="jump_to_inbox();return false;" target="_new">', '</a>');
- }
- else
- {
- $l_new_message = $lang['Login_check_pm'];
- }
- $template->assign_vars(array(
- 'L_CLOSE_WINDOW' => $lang['Close_window'],
- 'L_MESSAGE' => $l_new_message)
- );
- $template->pparse('body');
- include($phpbb_root_path . 'includes/page_tail.'.$phpEx);
-
- }
- else if ( $mode == 'read' )
- {
- if ( !empty($HTTP_GET_VARS[POST_POST_URL]) )
- {
- $privmsgs_id = intval($HTTP_GET_VARS[POST_POST_URL]);
- }
- else
- {
- message_die(GENERAL_ERROR, $lang['No_post_id']);
- }
- if ( !$userdata['session_logged_in'] )
- {
- $header_location = ( @preg_match('/Microsoft|WebSTAR|Xitami/', getenv('SERVER_SOFTWARE')) ) ? 'Refresh: 0; URL=' : 'Location: ';
- header($header_location . append_sid("login.$phpEx?redirect=privmsg.$phpEx&folder=$folder&mode=$mode&" . POST_POST_URL . "=$privmsgs_id", true));
- exit;
- }
- //
- // SQL to pull appropriate message, prevents nosey people
- // reading other peoples messages ... hopefully!
- //
- switch( $folder )
- {
- case 'inbox':
- $l_box_name = $lang['Inbox'];
- $pm_sql_user = "AND pm.privmsgs_to_userid = " . $userdata['user_id'] . "
- AND ( pm.privmsgs_type = " . PRIVMSGS_READ_MAIL . "
- OR pm.privmsgs_type = " . PRIVMSGS_NEW_MAIL . "
- OR pm.privmsgs_type = " . PRIVMSGS_UNREAD_MAIL . " )";
- break;
- case 'outbox':
- $l_box_name = $lang['Outbox'];
- $pm_sql_user = "AND pm.privmsgs_from_userid = " . $userdata['user_id'] . "
- AND ( pm.privmsgs_type = " . PRIVMSGS_NEW_MAIL . "
- OR pm.privmsgs_type = " . PRIVMSGS_UNREAD_MAIL . " ) ";
- break;
- case 'sentbox':
- $l_box_name = $lang['Sentbox'];
- $pm_sql_user = "AND pm.privmsgs_from_userid = " . $userdata['user_id'] . "
- AND pm.privmsgs_type = " . PRIVMSGS_SENT_MAIL;
- break;
- case 'savebox':
- $l_box_name = $lang['Savebox'];
- $pm_sql_user .= "AND ( ( pm.privmsgs_to_userid = " . $userdata['user_id'] . "
- AND pm.privmsgs_type = " . PRIVMSGS_SAVED_IN_MAIL . " )
- OR ( pm.privmsgs_from_userid = " . $userdata['user_id'] . "
- AND pm.privmsgs_type = " . PRIVMSGS_SAVED_OUT_MAIL . " )
- )";
- break;
- default:
- message_die(GENERAL_ERROR, $lang['No_such_folder']);
- break;
- }
- //
- // Major query obtains the message ...
- //
- $sql = "SELECT u.username AS username_1, u.user_id AS user_id_1, u2.username AS username_2, u2.user_id AS user_id_2, u.user_sig_bbcode_uid, u.user_posts, u.user_from, u.user_website, u.user_email, u.user_icq, u.user_aim, u.user_yim, u.user_regdate, u.user_msnm, u.user_viewemail, u.user_rank, u.user_sig, u.user_avatar, pm.*, pmt.privmsgs_bbcode_uid, pmt.privmsgs_text
- FROM " . PRIVMSGS_TABLE . " pm, " . PRIVMSGS_TEXT_TABLE . " pmt, " . USERS_TABLE . " u, " . USERS_TABLE . " u2
- WHERE pm.privmsgs_id = $privmsgs_id
- AND pmt.privmsgs_text_id = pm.privmsgs_id
- $pm_sql_user
- AND u.user_id = pm.privmsgs_from_userid
- AND u2.user_id = pm.privmsgs_to_userid";
- if ( !($result = $db->sql_query($sql)) )
- {
- message_die(GENERAL_ERROR, 'Could not query private message post information', '', __LINE__, __FILE__, $sql);
- }
- //
- // Did the query return any data?
- //
- if ( !($privmsg = $db->sql_fetchrow($result)) )
- {
- $header_location = ( @preg_match('/Microsoft|WebSTAR|Xitami/', getenv('SERVER_SOFTWARE')) ) ? 'Refresh: 0; URL=' : 'Location: ';
- header($header_location . append_sid("privmsg.$phpEx?folder=$folder", true));
- exit;
- }
- $privmsg_id = $privmsg['privmsgs_id'];
- //
- // Is this a new message in the inbox? If it is then save
- // a copy in the posters sent box
- //
- if ( ( $privmsg['privmsgs_type'] == PRIVMSGS_NEW_MAIL || $privmsg['privmsgs_type'] == PRIVMSGS_UNREAD_MAIL ) && $folder == 'inbox' )
- {
- $sql = "UPDATE " . PRIVMSGS_TABLE . "
- SET privmsgs_type = " . PRIVMSGS_READ_MAIL . "
- WHERE privmsgs_id = " . $privmsg['privmsgs_id'];
- if ( !$db->sql_query($sql) )
- {
- message_die(GENERAL_ERROR, 'Could not update private message read status', '', __LINE__, __FILE__, $sql);
- }
- $sql = "UPDATE " . USERS_TABLE . "
- SET user_unread_privmsg = user_unread_privmsg - 1
- WHERE user_id = " . $userdata['user_id'];
- if ( !$db->sql_query($sql) )
- {
- message_die(GENERAL_ERROR, 'Could not update private message read status for user', '', __LINE__, __FILE__, $sql);
- }
- //
- // Check to see if the poster has a 'full' sent box
- //
- $sql = "SELECT COUNT(privmsgs_id) AS sent_items, MIN(privmsgs_date) AS oldest_post_time
- FROM " . PRIVMSGS_TABLE . "
- WHERE privmsgs_type = " . PRIVMSGS_SENT_MAIL . "
- AND privmsgs_from_userid = " . $privmsg['privmsgs_from_userid'];
- if ( !($result = $db->sql_query($sql)) )
- {
- message_die(GENERAL_ERROR, 'Could not obtain sent message info for sendee', '', __LINE__, __FILE__, $sql);
- }
- $sql_priority = ( SQL_LAYER == 'mysql' ) ? 'LOW_PRIORITY' : '';
- if ( $sent_info = $db->sql_fetchrow($result) )
- {
- if ( $sent_info['sent_items'] >= $board_config['max_sentbox_privmsgs'] )
- {
- $sql = "DELETE $sql_priority FROM " . PRIVMSGS_TABLE . "
- WHERE privmsgs_type = " . PRIVMSGS_SENT_MAIL . "
- AND privmsgs_date = " . $sent_info['oldest_post_time'] . "
- AND privmsgs_from_userid = " . $privmsg['privmsgs_from_userid'];
- if ( !$db->sql_query($sql) )
- {
- message_die(GENERAL_ERROR, 'Could not delete oldest privmsgs', '', __LINE__, __FILE__, $sql);
- }
- }
- }
- //
- // This makes a copy of the post and stores it as a SENT message from the sendee. Perhaps
- // not the most DB friendly way but a lot easier to manage, besides the admin will be able to
- // set limits on numbers of storable posts for users ... hopefully!
- //
- $sql = "INSERT $sql_priority INTO " . PRIVMSGS_TABLE . " (privmsgs_type, privmsgs_subject, privmsgs_from_userid, privmsgs_to_userid, privmsgs_date, privmsgs_ip, privmsgs_enable_html, privmsgs_enable_bbcode, privmsgs_enable_smilies, privmsgs_attach_sig)
- VALUES (" . PRIVMSGS_SENT_MAIL . ", '" . str_replace("\'", "''", addslashes($privmsg['privmsgs_subject'])) . "', " . $privmsg['privmsgs_from_userid'] . ", " . $privmsg['privmsgs_to_userid'] . ", " . $privmsg['privmsgs_date'] . ", '" . $privmsg['privmsgs_ip'] . "', " . $privmsg['privmsgs_enable_html'] . ", " . $privmsg['privmsgs_enable_bbcode'] . ", " . $privmsg['privmsgs_enable_smilies'] . ", " . $privmsg['privmsgs_attach_sig'] . ")";
- if ( !$db->sql_query($sql) )
- {
- message_die(GENERAL_ERROR, 'Could not insert private message sent info', '', __LINE__, __FILE__, $sql);
- }
- $privmsg_sent_id = $db->sql_nextid();
- $sql = "INSERT $sql_priority INTO " . PRIVMSGS_TEXT_TABLE . " (privmsgs_text_id, privmsgs_bbcode_uid, privmsgs_text)
- VALUES ($privmsg_sent_id, '" . $privmsg['privmsgs_bbcode_uid'] . "', '" . str_replace("\'", "''", addslashes($privmsg['privmsgs_text'])) . "')";
- if ( !$db->sql_query($sql) )
- {
- message_die(GENERAL_ERROR, 'Could not insert private message sent text', '', __LINE__, __FILE__, $sql);
- }
- }
- //
- // Pick a folder, any folder, so long as it's one below ...
- //
- $post_urls = array(
- 'post' => append_sid("privmsg.$phpEx?mode=post"),
- 'reply' => append_sid("privmsg.$phpEx?mode=reply&" . POST_POST_URL . "=$privmsg_id"),
- 'quote' => append_sid("privmsg.$phpEx?mode=quote&" . POST_POST_URL . "=$privmsg_id"),
- 'edit' => append_sid("privmsg.$phpEx?mode=edit&" . POST_POST_URL . "=$privmsg_id")
- );
- $post_icons = array(
- 'post_img' => '<a href="' . $post_urls['post'] . '"><img src="' . $images['pm_postmsg'] . '" alt="' . $lang['Post_new_pm'] . '" border="0"></a>',
- 'post' => '<a href="' . $post_urls['post'] . '">' . $lang['Post_new_pm'] . '</a>',
- 'reply_img' => '<a href="' . $post_urls['reply'] . '"><img src="' . $images['pm_replymsg'] . '" alt="' . $lang['Post_reply_pm'] . '" border="0"></a>',
- 'reply' => '<a href="' . $post_urls['reply'] . '">' . $lang['Post_reply_pm'] . '</a>',
- 'quote_img' => '<a href="' . $post_urls['quote'] . '"><img src="' . $images['pm_quotemsg'] . '" alt="' . $lang['Post_quote_pm'] . '" border="0"></a>',
- 'quote' => '<a href="' . $post_urls['quote'] . '">' . $lang['Post_quote_pm'] . '</a>',
- 'edit_img' => '<a href="' . $post_urls['edit'] . '"><img src="' . $images['pm_editmsg'] . '" alt="' . $lang['Edit_pm'] . '" border="0"></a>',
- 'edit' => '<a href="' . $post_urls['edit'] . '">' . $lang['Edit_pm'] . '</a>'
- );
- if ( $folder == 'inbox' )
- {
- $post_img = $post_icons['post_img'];
- $reply_img = $post_icons['reply_img'];
- $quote_img = $post_icons['quote_img'];
- $edit_img = '';
- $post = $post_icons['post'];
- $reply = $post_icons['reply'];
- $quote = $post_icons['quote'];
- $edit = '';
- $l_box_name = $lang['Inbox'];
- }
- else if ( $folder == 'outbox' )
- {
- $post_img = $post_icons['post_img'];
- $reply_img = '';
- $quote_img = '';
- $edit_img = $post_icons['edit_img'];
- $post = $post_icons['post'];
- $reply = '';
- $quote = '';
- $edit = $post_icons['edit'];
- $l_box_name = $lang['Outbox'];
- }
- else if ( $folder == 'savebox' )
- {
- if ( $privmsg['privmsgs_type'] == PRIVMSGS_SAVED_IN_MAIL )
- {
- $post_img = $post_icons['post_img'];
- $reply_img = $post_icons['reply_img'];
- $quote_img = $post_icons['quote_img'];
- $edit_img = '';
- $post = $post_icons['post'];
- $reply = $post_icons['reply'];
- $quote = $post_icons['quote'];
- $edit = '';
- }
- else
- {
- $post_img = $post_icons['post_img'];
- $reply_img = '';
- $quote_img = '';
- $edit_img = '';
- $post = $post_icons['post'];
- $reply = '';
- $quote = '';
- $edit = '';
- }
- $l_box_name = $lang['Saved'];
- }
- else if ( $folder == 'sentbox' )
- {
- $post_img = $post_icons['post_img'];
- $reply_img = '';
- $quote_img = '';
- $edit_img = '';
- $post = $post_icons['post'];
- $reply = '';
- $quote = '';
- $edit = '';
- $l_box_name = $lang['Sent'];
- }
- $s_hidden_fields = '<input type="hidden" name="mark[]" value="' . $privmsgs_id . '" />';
- $page_title = $lang['Read_pm'];
- include($phpbb_root_path . 'includes/page_header.'.$phpEx);
- //
- // Load templates
- //
- $template->set_filenames(array(
- 'body' => 'privmsgs_read_body.tpl')
- );
- make_jumpbox('viewforum.'.$phpEx);
- $template->assign_vars(array(
- 'INBOX_IMG' => $inbox_img,
- 'SENTBOX_IMG' => $sentbox_img,
- 'OUTBOX_IMG' => $outbox_img,
- 'SAVEBOX_IMG' => $savebox_img,
- 'INBOX' => $inbox_url,
- 'POST_PM_IMG' => $post_img,
- 'REPLY_PM_IMG' => $reply_img,
- 'EDIT_PM_IMG' => $edit_img,
- 'QUOTE_PM_IMG' => $quote_img,
- 'POST_PM' => $post,
- 'REPLY_PM' => $reply,
- 'EDIT_PM' => $edit,
- 'QUOTE_PM' => $quote,
- 'SENTBOX' => $sentbox_url,
- 'OUTBOX' => $outbox_url,
- 'SAVEBOX' => $savebox_url,
- 'BOX_NAME' => $l_box_name,
- 'L_MESSAGE' => $lang['Message'],
- 'L_INBOX' => $lang['Inbox'],
- 'L_OUTBOX' => $lang['Outbox'],
- 'L_SENTBOX' => $lang['Sent'],
- 'L_SAVEBOX' => $lang['Saved'],
- 'L_FLAG' => $lang['Flag'],
- 'L_SUBJECT' => $lang['Subject'],
- 'L_POSTED' => $lang['Posted'],
- 'L_DATE' => $lang['Date'],
- 'L_FROM' => $lang['From'],
- 'L_TO' => $lang['To'],
- 'L_SAVE_MSG' => $lang['Save_message'],
- 'L_DELETE_MSG' => $lang['Delete_message'],
- 'S_PRIVMSGS_ACTION' => append_sid("privmsg.$phpEx?folder=$folder"),
- 'S_HIDDEN_FIELDS' => $s_hidden_fields)
- );
-
- $username_from = $privmsg['username_1'];
- $user_id_from = $privmsg['user_id_1'];
- $username_to = $privmsg['username_2'];
- $user_id_to = $privmsg['user_id_2'];
- $post_date = create_date($board_config['default_dateformat'], $privmsg['privmsgs_date'], $board_config['board_timezone']);
- $temp_url = append_sid("profile.$phpEx?mode=viewprofile&" . POST_USERS_URL . '=' . $user_id_from);
- $profile_img = '<a href="' . $temp_url . '"><img src="' . $images['icon_profile'] . '" alt="' . $lang['Read_profile'] . '" title="' . $lang['Read_profile'] . '" border="0" /></a>';
- $profile = '<a href="' . $temp_url . '">' . $lang['Read_profile'] . '</a>';
- $temp_url = append_sid("privmsg.$phpEx?mode=post&" . POST_USERS_URL . "=$poster_id");
- $pm_img = '<a href="' . $temp_url . '"><img src="' . $images['icon_pm'] . '" alt="' . $lang['Send_private_message'] . '" title="' . $lang['Send_private_message'] . '" border="0" /></a>';
- $pm = '<a href="' . $temp_url . '">' . $lang['Send_private_message'] . '</a>';
- if ( !empty($privmsg['user_viewemail']) || $userdata['user_level'] == ADMIN )
- {
- $email_uri = ( $board_config['board_email_form'] ) ? append_sid("profile.$phpEx?mode=email&" . POST_USERS_URL .'=' . $user_id_from) : 'mailto:' . $privmsg['user_email'];
- $email_img = '<a href="' . $email_uri . '"><img src="' . $images['icon_email'] . '" alt="' . $lang['Send_email'] . '" title="' . $lang['Send_email'] . '" border="0" /></a>';
- $email = '<a href="' . $email_uri . '">' . $lang['Send_email'] . '</a>';
- }
- else
- {
- $email_img = '';
- $email = '';
- }
- $www_img = ( $privmsg['user_website'] ) ? '<a href="' . $privmsg['user_website'] . '" target="_userwww"><img src="' . $images['icon_www'] . '" alt="' . $lang['Visit_website'] . '" title="' . $lang['Visit_website'] . '" border="0" /></a>' : '';
- $www = ( $privmsg['user_website'] ) ? '<a href="' . $privmsg['user_website'] . '" target="_userwww">' . $lang['Visit_website'] . '</a>' : '';
- if ( !empty($privmsg['user_icq']) )
- {
- $icq_status_img = '<a href="http://wwp.icq.com/' . $privmsg['user_icq'] . '#pager"><img src="http://web.icq.com/whitepages/online?icq=' . $privmsg['user_icq'] . '&img=5" width="18" height="18" border="0" /></a>';
- $icq_img = '<a href="http://wwp.icq.com/scripts/search.dll?to=' . $privmsg['user_icq'] . '"><img src="' . $images['icon_icq'] . '" alt="' . $lang['ICQ'] . '" title="' . $lang['ICQ'] . '" border="0" /></a>';
- $icq = '<a href="http://wwp.icq.com/scripts/search.dll?to=' . $privmsg['user_icq'] . '">' . $lang['ICQ'] . '</a>';
- }
- else
- {
- $icq_status_img = '';
- $icq_img = '';
- $icq = '';
- }
- $aim_img = ( $privmsg['user_aim'] ) ? '<a href="aim:goim?screenname=' . $privmsg['user_aim'] . '&message=Hello+Are+you+there?"><img src="' . $images['icon_aim'] . '" alt="' . $lang['AIM'] . '" title="' . $lang['AIM'] . '" border="0" /></a>' : '';
- $aim = ( $privmsg['user_aim'] ) ? '<a href="aim:goim?screenname=' . $privmsg['user_aim'] . '&message=Hello+Are+you+there?">' . $lang['AIM'] . '</a>' : '';
- $temp_url = append_sid("profile.$phpEx?mode=viewprofile&" . POST_USERS_URL . "=$poster_id");
- $msn_img = ( $privmsg['user_msnm'] ) ? '<a href="' . $temp_url . '"><img src="' . $images['icon_msnm'] . '" alt="' . $lang['MSNM'] . '" title="' . $lang['MSNM'] . '" border="0" /></a>' : '';
- $msn = ( $privmsg['user_msnm'] ) ? '<a href="' . $temp_url . '">' . $lang['MSNM'] . '</a>' : '';
- $yim_img = ( $privmsg['user_yim'] ) ? '<a href="http://edit.yahoo.com/config/send_webmesg?.target=' . $privmsg['user_yim'] . '&.src=pg"><img src="' . $images['icon_yim'] . '" alt="' . $lang['YIM'] . '" title="' . $lang['YIM'] . '" border="0" /></a>' : '';
- $yim = ( $privmsg['user_yim'] ) ? '<a href="http://edit.yahoo.com/config/send_webmesg?.target=' . $privmsg['user_yim'] . '&.src=pg">' . $lang['YIM'] . '</a>' : '';
- $temp_url = append_sid("search.$phpEx?search_author=" . urlencode($username_from) . "&showresults=posts");
- $search_img = '<a href="' . $temp_url . '"><img src="' . $images['icon_search'] . '" alt="' . $lang['Search_user_posts'] . '" title="' . $lang['Search_user_posts'] . '" border="0" /></a>';
- $search = '<a href="' . $temp_url . '">' . $lang['Search_user_posts'] . '</a>';
- //
- // Processing of post
- //
- $post_subject = $privmsg['privmsgs_subject'];
- $private_message = $privmsg['privmsgs_text'];
- $bbcode_uid = $privmsg['privmsgs_bbcode_uid'];
- if ( $board_config['allow_sig'] )
- {
- $user_sig = ( $privmsg['privmsgs_from_userid'] == $userdata['user_id'] ) ? $userdata['user_sig'] : $privmsg['user_sig'];
- }
- else
- {
- $user_sig = '';
- }
- $user_sig_bbcode_uid = ( $privmsg['privmsgs_from_userid'] == $userdata['user_id'] ) ? $userdata['user_sig_bbcode_uid'] : $privmsg['user_sig_bbcode_uid'];
- //
- // If the board has HTML off but the post has HTML
- // on then we process it, else leave it alone
- //
- if ( !$board_config['allow_html'] )
- {
- if ( $user_sig != '' && $privmsg['privmsgs_enable_sig'] && $userdata['user_allowhtml'] )
- {
- $user_sig = preg_replace('#(<)([\/]?.*?)(>)#is', "<\\2>", $user_sig);
- }
- if ( $privmsg['privmsgs_enable_html'] )
- {
- $private_message = preg_replace('#(<)([\/]?.*?)(>)#is', "<\\2>", $private_message);
- }
- }
- if ( $user_sig != '' && $privmsg['privmsgs_attach_sig'] && $user_sig_bbcode_uid != '' )
- {
- $user_sig = ( $board_config['allow_bbcode'] ) ? bbencode_second_pass($user_sig, $user_sig_bbcode_uid) : preg_replace('/\:[0-9a-z\:]+\]/si', ']', $user_sig);
- }
- if ( $bbcode_uid != '' )
- {
- $private_message = ( $board_config['allow_bbcode'] ) ? bbencode_second_pass($private_message, $bbcode_uid) : preg_replace('/\:[0-9a-z\:]+\]/si', ']', $private_message);
- }
- $private_message = make_clickable($private_message);
- if ( $privmsg['privmsgs_attach_sig'] && $user_sig != '' )
- {
- $private_message .= '<br /><br />_________________<br />' . make_clickable($user_sig);
- }
- $orig_word = array();
- $replacement_word = array();
- obtain_word_list($orig_word, $replacement_word);
- if ( count($orig_word) )
- {
- $post_subject = preg_replace($orig_word, $replacement_word, $post_subject);
- $private_message = preg_replace($orig_word, $replacement_word, $private_message);
- }
- if ( $board_config['allow_smilies'] && $privmsg['privmsgs_enable_smilies'] )
- {
- $private_message = smilies_pass($private_message);
- }
- $private_message = str_replace("\n", '<br />', $private_message);
- //
- // Dump it to the templating engine
- //
- $template->assign_vars(array(
- 'MESSAGE_TO' => $username_to,
- 'MESSAGE_FROM' => $username_from,
- 'RANK_IMAGE' => $rank_image,
- 'POSTER_JOINED' => $poster_joined,
- 'POSTER_POSTS' => $poster_posts,
- 'POSTER_FROM' => $poster_from,
- 'POSTER_AVATAR' => $poster_avatar,
- 'POST_SUBJECT' => $post_subject,
- 'POST_DATE' => $post_date,
- 'MESSAGE' => $private_message,
- 'PROFILE_IMG' => $profile_img,
- 'PROFILE' => $profile,
- 'SEARCH_IMG' => $search_img,
- 'SEARCH' => $search,
- 'EMAIL_IMG' => $email_img,
- 'EMAIL' => $email,
- 'WWW_IMG' => $www_img,
- 'WWW' => $www,
- 'ICQ_STATUS_IMG' => $icq_status_img,
- 'ICQ_IMG' => $icq_img,
- 'ICQ' => $icq,
- 'AIM_IMG' => $aim_img,
- 'AIM' => $aim,
- 'MSN_IMG' => $msn_img,
- 'MSN' => $msn,
- 'YIM_IMG' => $yim_img,
- 'YIM' => $yim)
- );
- $template->pparse('body');
- include($phpbb_root_path . 'includes/page_tail.'.$phpEx);
- }
- else if ( ( $delete && $mark_list ) || $delete_all )
- {
- if ( !$userdata['session_logged_in'] )
- {
- $header_location = ( @preg_match('/Microsoft|WebSTAR|Xitami/', getenv('SERVER_SOFTWARE')) ) ? 'Refresh: 0; URL=' : 'Location: ';
- header($header_location . append_sid("login.$phpEx?redirect=privmsg.$phpEx&folder=inbox", true));
- exit;
- }
- if ( isset($mark_list) && !is_array($mark_list) )
- {
- // Set to empty array instead of '0' if nothing is selected.
- $mark_list = array();
- }
- if ( !$confirm )
- {
- $s_hidden_fields = '<input type="hidden" name="mode" value="' . $mode . '" />';
- $s_hidden_fields .= ( isset($HTTP_POST_VARS['delete']) ) ? '<input type="hidden" name="delete" value="true" />' : '<input type="hidden" name="deleteall" value="true" />';
- for($i = 0; $i < count($mark_list); $i++)
- {
- $s_hidden_fields .= '<input type="hidden" name="mark[]" value="' . $mark_list[$i] . '" />';
- }
- //
- // Output confirmation page
- //
- include($phpbb_root_path . 'includes/page_header.'.$phpEx);
- $template->set_filenames(array(
- 'confirm_body' => 'confirm_body.tpl')
- );
- $template->assign_vars(array(
- 'MESSAGE_TITLE' => $lang['Information'],
- 'MESSAGE_TEXT' => ( count($mark_list) == 1 ) ? $lang['Confirm_delete_pm'] : $lang['Confirm_delete_pms'],
- 'L_YES' => $lang['Yes'],
- 'L_NO' => $lang['No'],
- 'S_CONFIRM_ACTION' => append_sid("privmsg.$phpEx?folder=$folder"),
- 'S_HIDDEN_FIELDS' => $s_hidden_fields)
- );
- $template->pparse('confirm_body');
- include($phpbb_root_path . 'includes/page_tail.'.$phpEx);
- }
- else if ( $confirm )
- {
- if ( $delete_all )
- {
- switch($folder)
- {
- case 'inbox':
- $delete_type = "privmsgs_to_userid = " . $userdata['user_id'] . " AND (
- privmsgs_type = " . PRIVMSGS_READ_MAIL . " OR privmsgs_type = " . PRIVMSGS_NEW_MAIL . " OR privmsgs_type = " . PRIVMSGS_UNREAD_MAIL . " )";
- break;
- case 'outbox':
- $delete_type = "privmsgs_from_userid = " . $userdata['user_id'] . " AND ( privmsgs_type = " . PRIVMSGS_NEW_MAIL . " OR privmsgs_type = " . PRIVMSGS_UNREAD_MAIL . " )";
- break;
- case 'sentbox':
- $delete_type = "privmsgs_from_userid = " . $userdata['user_id'] . " AND privmsgs_type = " . PRIVMSGS_SENT_MAIL;
- break;
- case 'savebox':
- $delete_type = "( ( privmsgs_from_userid = " . $userdata['user_id'] . "
- AND privmsgs_type = " . PRIVMSGS_SAVED_OUT_MAIL . " )
- OR ( privmsgs_to_userid = " . $userdata['user_id'] . "
- AND privmsgs_type = " . PRIVMSGS_SAVED_IN_MAIL . " ) )";
- break;
- }
- $sql = "SELECT privmsgs_id
- FROM " . PRIVMSGS_TABLE . "
- WHERE $delete_type";
- if ( !($result = $db->sql_query($sql)) )
- {
- message_die(GENERAL_ERROR, 'Could not obtain id list to delete all messages', '', __LINE__, __FILE__, $sql);
- }
- while ( $row = $db->sql_fetchrow($result) )
- {
- $mark_list[] = $row['privmsgs_id'];
- }
- unset($delete_type);
- }
- if ( count($mark_list) )
- {
- $delete_sql_id = implode(', ', $mark_list);
- //
- // Need to decrement the new message counter of recipient
- // problem is this doesn't affect the unread counter even
- // though it may be the one that needs changing ... hhmmm
- //
- if ( $folder == 'outbox' )
- {
- $sql = "SELECT privmsgs_to_userid
- FROM " . PRIVMSGS_TABLE . "
- WHERE privmsgs_id IN ($delete_sql_id)
- AND privmsgs_from_userid = " . $userdata['user_id'] . "
- AND privmsgs_type = " . PRIVMSGS_NEW_MAIL;
- if ( !($result = $db->sql_query($sql)) )
- {
- message_die(GENERAL_ERROR, 'Could not obtain user id list for outbox messages', '', __LINE__, __FILE__, $sql);
- }
- $update_pm_sql = '';
- while( $row = $db->sql_fetchrow($result) )
- {
- $update_pm_sql .= ( ( $update_pm_sql != '' ) ? ', ' : '' ) . $row['privmsgs_to_userid'];
- }
- if ( $update_pm_sql != '' )
- {
- $sql = "UPDATE " . USERS_TABLE . "
- SET user_new_privmsg = user_new_privmsg - 1
- WHERE user_id IN ($update_pm_sql)";
- if ( !$db->sql_query($sql) )
- {
- message_die(GENERAL_ERROR, 'Could not update users new msg counters', '', __LINE__, __FILE__, $sql);
- }
- }
- $sql = "SELECT privmsgs_to_userid
- FROM " . PRIVMSGS_TABLE . "
- WHERE privmsgs_id IN ($delete_sql_id)
- AND privmsgs_from_userid = " . $userdata['user_id'] . "
- AND privmsgs_type = " . PRIVMSGS_UNREAD_MAIL;
- if ( !($result = $db->sql_query($sql)) )
- {
- message_die(GENERAL_ERROR, 'Could not obtain user id list for outbox messages', '', __LINE__, __FILE__, $sql);
- }
- $update_pm_sql = '';
- while( $row = $db->sql_fetchrow($result) )
- {
- $update_pm_sql .= ( ( $update_pm_sql != '' ) ? ', ' : '' ) . $row['privmsgs_to_userid'];
- }
- if ( $update_pm_sql != '' )
- {
- $sql = "UPDATE " . USERS_TABLE . "
- SET user_unread_privmsg = user_unread_privmsg - 1
- WHERE user_id IN ($update_pm_sql)";
- if ( !$db->sql_query($sql) )
- {
- message_die(GENERAL_ERROR, 'Could not update users new msg counters', '', __LINE__, __FILE__, $sql);
- }
- }
- }
- $delete_text_sql = "DELETE FROM " . PRIVMSGS_TEXT_TABLE . "
- WHERE privmsgs_text_id IN ($delete_sql_id)";
- $delete_sql = "DELETE FROM " . PRIVMSGS_TABLE . "
- WHERE privmsgs_id IN ($delete_sql_id)
- AND ";
- switch( $folder )
- {
- case 'inbox':
- $delete_sql .= "privmsgs_to_userid = " . $userdata['user_id'] . " AND (
- privmsgs_type = " . PRIVMSGS_READ_MAIL . " OR privmsgs_type = " . PRIVMSGS_NEW_MAIL . " OR privmsgs_type = " . PRIVMSGS_UNREAD_MAIL . " )";
- break;
- case 'outbox':
- $delete_sql .= "privmsgs_from_userid = " . $userdata['user_id'] . " AND (
- privmsgs_type = " . PRIVMSGS_NEW_MAIL . " OR privmsgs_type = " . PRIVMSGS_UNREAD_MAIL . " )";
- break;
- case 'sentbox':
- $delete_sql .= "privmsgs_from_userid = " . $userdata['user_id'] . " AND privmsgs_type = " . PRIVMSGS_SENT_MAIL;
- break;
- case 'savebox':
- $delete_sql .= "( ( privmsgs_from_userid = " . $userdata['user_id'] . "
- AND privmsgs_type = " . PRIVMSGS_SAVED_OUT_MAIL . " )
- OR ( privmsgs_to_userid = " . $userdata['user_id'] . "
- AND privmsgs_type = " . PRIVMSGS_SAVED_IN_MAIL . " ) )";
- break;
- }
- if ( !$db->sql_query($delete_sql, BEGIN_TRANSACTION) )
- {
- message_die(GENERAL_ERROR, 'Could not delete private message info', '', __LINE__, __FILE__, $delete_sql);
- }
- if ( !$db->sql_query($delete_text_sql, END_TRANSACTION) )
- {
- message_die(GENERAL_ERROR, 'Could not delete private message text', '', __LINE__, __FILE__, $delete_text_sql);
- }
- }
- }
- }
- else if ( $save && $mark_list && $folder != 'savebox' && $folder != 'outbox' )
- {
- if ( !$userdata['session_logged_in'] )
- {
- $header_location = ( @preg_match('/Microsoft|WebSTAR|Xitami/', getenv('SERVER_SOFTWARE')) ) ? 'Refresh: 0; URL=' : 'Location: ';
- header($header_location . append_sid("login.$phpEx?redirect=privmsg.$phpEx&folder=inbox", true));
- exit;
- }
- //
- // See if recipient is at their savebox limit
- //
- $sql = "SELECT COUNT(privmsgs_id) AS savebox_items, MIN(privmsgs_date) AS oldest_post_time
- FROM " . PRIVMSGS_TABLE . "
- WHERE ( ( privmsgs_to_userid = " . $userdata['user_id'] . "
- AND privmsgs_type = " . PRIVMSGS_SAVED_IN_MAIL . " )
- OR ( privmsgs_from_userid = " . $userdata['user_id'] . "
- AND privmsgs_type = " . PRIVMSGS_SAVED_OUT_MAIL . ") )";
- if ( !($result = $db->sql_query($sql)) )
- {
- message_die(GENERAL_ERROR, 'Could not obtain sent message info for sendee', '', __LINE__, __FILE__, $sql);
- }
- $sql_priority = ( SQL_LAYER == 'mysql' ) ? 'LOW_PRIORITY' : '';
- if ( $saved_info = $db->sql_fetchrow($result) )
- {
- if ( $saved_info['savebox_items'] >= $board_config['max_savebox_privmsgs'] )
- {
- $sql = "DELETE $sql_priority FROM " . PRIVMSGS_TABLE . "
- WHERE ( ( privmsgs_to_userid = " . $userdata['user_id'] . "
- AND privmsgs_type = " . PRIVMSGS_SAVED_IN_MAIL . " )
- OR ( privmsgs_from_userid = " . $userdata['user_id'] . "
- AND privmsgs_type = " . PRIVMSGS_SAVED_OUT_MAIL . ") )
- AND privmsgs_date = " . $saved_info['oldest_post_time'];
- if ( !$db->sql_query($sql) )
- {
- message_die(GENERAL_ERROR, 'Could not delete oldest privmsgs', '', __LINE__, __FILE__, $sql);
- }
- }
- }
- //
- // Process request
- //
- $saved_sql = "UPDATE " . PRIVMSGS_TABLE;
- switch( $folder )
- {
- case 'inbox':
- $saved_sql .= " SET privmsgs_type = " . PRIVMSGS_SAVED_IN_MAIL . "
- WHERE privmsgs_to_userid = " . $userdata['user_id'] . "
- AND ( privmsgs_type = " . PRIVMSGS_READ_MAIL . "
- OR privmsgs_type = " . PRIVMSGS_NEW_MAIL . "
- OR privmsgs_type = " . PRIVMSGS_UNREAD_MAIL . ")";
- break;
- case 'outbox':
- $saved_sql .= " SET privmsgs_type = " . PRIVMSGS_SAVED_OUT_MAIL . "
- WHERE privmsgs_from_userid = " . $userdata['user_id'] . "
- AND ( privmsgs_type = " . PRIVMSGS_NEW_MAIL . "
- OR privmsgs_type = " . PRIVMSGS_UNERAD_MAIL . " ) ";
- break;
- case 'sentbox':
- $saved_sql .= " SET privmsgs_type = " . PRIVMSGS_SAVED_OUT_MAIL . "
- WHERE privmsgs_from_userid = " . $userdata['user_id'] . "
- AND privmsgs_type = " . PRIVMSGS_SENT_MAIL;
- break;
- }
- if ( count($mark_list) )
- {
- $saved_sql_id = '';
- for($i = 0; $i < count($mark_list); $i++)
- {
- $saved_sql_id .= ( ( $saved_sql_id != '' ) ? ', ' : '' ) . $mark_list[$i];
- }
- $saved_sql .= " AND privmsgs_id IN ($saved_sql_id)";
- if ( !$db->sql_query($saved_sql) )
- {
- message_die(GENERAL_ERROR, 'Could not save private messages', '', __LINE__, __FILE__, $saved_sql);
- }
- }
- }
- else if ( $submit || $refresh || $mode != '' )
- {
- if ( !$userdata['session_logged_in'] )
- {
- $user_id = ( isset($HTTP_GET_VARS[POST_USERS_URL]) ) ? '&' . POST_USERS_URL . '=' . intval($HTTP_GET_VARS[POST_USERS_URL]) : '';
- $header_location = ( @preg_match('/Microsoft|WebSTAR|Xitami/', getenv('SERVER_SOFTWARE')) ) ? 'Refresh: 0; URL=' : 'Location: ';
- header($header_location . append_sid("login.$phpEx?redirect=privmsg.$phpEx&folder=$folder&mode=$mode" . $user_id, true));
- exit;
- }
- //
- // Toggles
- //
- if ( !$board_config['allow_html'] )
- {
- $html_on = 0;
- }
- else
- {
- $html_on = ( $submit || $refresh ) ? ( ( !empty($HTTP_POST_VARS['disable_html']) ) ? 0 : TRUE ) : $userdata['user_allowhtml'];
- }
- if ( !$board_config['allow_bbcode'] )
- {
- $bbcode_on = 0;
- }
- else
- {
- $bbcode_on = ( $submit || $refresh ) ? ( ( !empty($HTTP_POST_VARS['disable_bbcode']) ) ? 0 : TRUE ) : $userdata['user_allowbbcode'];
- }
- if ( !$board_config['allow_smilies'] )
- {
- $smilies_on = 0;
- }
- else
- {
- $smilies_on = ( $submit || $refresh ) ? ( ( !empty($HTTP_POST_VARS['disable_smilies']) ) ? 0 : TRUE ) : $userdata['user_allowsmile'];
- }
- $attach_sig = ( $submit || $refresh ) ? ( ( !empty($HTTP_POST_VARS['attach_sig']) ) ? TRUE : 0 ) : $userdata['user_attachsig'];
- $user_sig = ( $userdata['user_sig'] != '' && $board_config['allow_sig'] ) ? $userdata['user_sig'] : "";
-
- if ( $submit && $mode != 'edit' )
- {
- //
- // Flood control
- //
- $sql = "SELECT MAX(privmsgs_date) AS last_post_time
- FROM " . PRIVMSGS_TABLE . "
- WHERE privmsgs_from_userid = " . $userdata['user_id'];
- if ( $result = $db->sql_query($sql) )
- {
- $db_row = $db->sql_fetchrow($result);
- $last_post_time = $db_row['last_post_time'];
- $current_time = time();
- if ( ( $current_time - $last_post_time ) < $board_config['flood_interval'])
- {
- message_die(GENERAL_MESSAGE, $lang['Flood_Error']);
- }
- }
- //
- // End Flood control
- //
- }
- if ( $submit )
- {
- if ( !empty($HTTP_POST_VARS['username']) )
- {
- $to_username = $HTTP_POST_VARS['username'];
- $sql = "SELECT user_id, user_notify_pm, user_email, user_lang, user_active
- FROM " . USERS_TABLE . "
- WHERE username = '" . str_replace("\'", "''", $to_username) . "'
- AND user_id <> " . ANONYMOUS;
- if ( !($result = $db->sql_query($sql)) )
- {
- $error = TRUE;
- $error_msg = $lang['No_such_user'];
- }
- $to_userdata = $db->sql_fetchrow($result);
- }
- else
- {
- $error = TRUE;
- $error_msg .= ( ( !empty($error_msg) ) ? '<br />' : '' ) . $lang['No_to_user'];
- }
- $privmsg_subject = trim(strip_tags($HTTP_POST_VARS['subject']));
- if ( empty($privmsg_subject) )
- {
- $error = TRUE;
- $error_msg .= ( ( !empty($error_msg) ) ? '<br />' : '' ) . $lang['Empty_subject'];
- }
- if ( !empty($HTTP_POST_VARS['message']) )
- {
- if ( !$error )
- {
- if ( $bbcode_on )
- {
- $bbcode_uid = make_bbcode_uid();
- }
- $privmsg_message = prepare_message($HTTP_POST_VARS['message'], $html_on, $bbcode_on, $smilies_on, $bbcode_uid);
- }
- }
- else
- {
- $error = TRUE;
- $error_msg .= ( ( !empty($error_msg) ) ? '<br />' : '' ) . $lang['Empty_message'];
- }
- }
- if ( $submit && !$error )
- {
- //
- // Has admin prevented user from sending PM's?
- //
- if ( !$userdata['user_allow_pm'] )
- {
- $message = $lang['Cannot_send_privmsg'];
- message_die(GENERAL_MESSAGE, $message);
- }
- $msg_time = time();
- if ( $mode != 'edit' )
- {
- //
- // See if recipient is at their inbox limit
- //
- $sql = "SELECT COUNT(privmsgs_id) AS inbox_items, MIN(privmsgs_date) AS oldest_post_time
- FROM " . PRIVMSGS_TABLE . "
- WHERE ( privmsgs_type = " . PRIVMSGS_NEW_MAIL . "
- OR privmsgs_type = " . PRIVMSGS_READ_MAIL . "
- OR privmsgs_type = " . PRIVMSGS_UNREAD_MAIL . " )
- AND privmsgs_to_userid = " . $to_userdata['user_id'];
- if ( !($result = $db->sql_query($sql)) )
- {
- message_die(GENERAL_MESSAGE, $lang['No_such_user']);
- }
- $sql_priority = ( SQL_LAYER == 'mysql' ) ? 'LOW_PRIORITY' : '';
- if ( $inbox_info = $db->sql_fetchrow($result) )
- {
- if ( $inbox_info['inbox_items'] >= $board_config['max_inbox_privmsgs'] )
- {
- $sql = "DELETE $sql_priority FROM " . PRIVMSGS_TABLE . "
- WHERE ( privmsgs_type = " . PRIVMSGS_NEW_MAIL . "
- OR privmsgs_type = " . PRIVMSGS_READ_MAIL . "
- OR privmsgs_type = " . PRIVMSGS_UNREAD_MAIL . " )
- AND privmsgs_date = " . $inbox_info['oldest_post_time'] . "
- AND privmsgs_to_userid = " . $to_userdata['user_id'];
- if ( !$db->sql_query($sql) )
- {
- message_die(GENERAL_ERROR, 'Could not delete oldest privmsgs', '', __LINE__, __FILE__, $sql);
- }
- }
- }
- $sql_info = "INSERT INTO " . PRIVMSGS_TABLE . " (privmsgs_type, privmsgs_subject, privmsgs_from_userid, privmsgs_to_userid, privmsgs_date, privmsgs_ip, privmsgs_enable_html, privmsgs_enable_bbcode, privmsgs_enable_smilies, privmsgs_attach_sig)
- VALUES (" . PRIVMSGS_NEW_MAIL . ", '" . str_replace("\'", "''", $privmsg_subject) . "', " . $userdata['user_id'] . ", " . $to_userdata['user_id'] . ", $msg_time, '$user_ip', $html_on, $bbcode_on, $smilies_on, $attach_sig)";
- }
- else
- {
- $sql_info = "UPDATE " . PRIVMSGS_TABLE . "
- SET privmsgs_type = " . PRIVMSGS_NEW_MAIL . ", privmsgs_subject = '" . str_replace("\'", "''", $privmsg_subject) . "', privmsgs_from_userid = " . $userdata['user_id'] . ", privmsgs_to_userid = " . $to_userdata['user_id'] . ", privmsgs_date = $msg_time, privmsgs_ip = '$user_ip', privmsgs_enable_html = $html_on, privmsgs_enable_bbcode = $bbcode_on, privmsgs_enable_smilies = $smilies_on, privmsgs_attach_sig = $attach_sig
- WHERE privmsgs_id = $privmsg_id";
- }
- if ( !($result = $db->sql_query($sql_info, BEGIN_TRANSACTION)) )
- {
- message_die(GENERAL_ERROR, "Could not insert/update private message sent info.", "", __LINE__, __FILE__, $sql_info);
- }
- if ( $mode != 'edit' )
- {
- $privmsg_sent_id = $db->sql_nextid();
- $sql = "INSERT INTO " . PRIVMSGS_TEXT_TABLE . " (privmsgs_text_id, privmsgs_bbcode_uid, privmsgs_text)
- VALUES ($privmsg_sent_id, '" . $bbcode_uid . "', '" . str_replace("\'", "''", $privmsg_message) . "')";
- }
- else
- {
- $sql = "UPDATE " . PRIVMSGS_TEXT_TABLE . "
- SET privmsgs_text = '" . str_replace("\'", "''", $privmsg_message) . "', privmsgs_bbcode_uid = '$bbcode_uid'
- WHERE privmsgs_text_id = $privmsg_id";
- }
- if ( !$db->sql_query($sql, END_TRANSACTION) )
- {
- message_die(GENERAL_ERROR, "Could not insert/update private message sent text.", "", __LINE__, __FILE__, $sql_info);
- }
- if ( $mode != 'edit' )
- {
- //
- // Add to the users new pm counter
- //
- $sql = "UPDATE " . USERS_TABLE . "
- SET user_new_privmsg = user_new_privmsg + 1, user_last_privmsg = " . time() . "
- WHERE user_id = " . $to_userdata['user_id'];
- if ( !$status = $db->sql_query($sql) )
- {
- message_die(GENERAL_ERROR, 'Could not update private message new/read status for user', '', __LINE__, __FILE__, $sql);
- }
- if ( $to_userdata['user_notify_pm'] && !empty($to_userdata['user_email']) && $to_userdata['user_active'] )
- {
- $email_headers = 'From: ' . $board_config['board_email'] . "\nReturn-Path: " . $board_config['board_email'] . "\n";
- $script_name = preg_replace('/^\/?(.*?)\/?$/', "\\1", trim($board_config['script_path']));
- $script_name = ( $script_name != '' ) ? $script_name . '/privmsg.'.$phpEx : 'privmsg.'.$phpEx;
- $server_name = trim($board_config['server_name']);
- $server_protocol = ( $board_config['cookie_secure'] ) ? 'https://' : 'http://';
- $server_port = ( $board_config['server_port'] <> 80 ) ? ':' . trim($board_config['server_port']) . '/' : '/';
- include($phpbb_root_path . 'includes/emailer.'.$phpEx);
- $emailer = new emailer($board_config['smtp_delivery']);
-
- $emailer->use_template('privmsg_notify', $to_userdata['user_lang']);
- $emailer->extra_headers($email_headers);
- $emailer->email_address($to_userdata['user_email']);
- $emailer->set_subject(); //$lang['Notification_subject']
-
- $emailer->assign_vars(array(
- 'USERNAME' => $to_username,
- 'SITENAME' => $board_config['sitename'],
- 'EMAIL_SIG' => str_replace('<br />', "\n", "-- \n" . $board_config['board_email_sig']),
- 'U_INBOX' => $server_protocol . $server_name . $server_port . $script_name . '?folder=inbox')
- );
- $emailer->send();
- $emailer->reset();
- }
- }
- $template->assign_vars(array(
- 'META' => '<meta http-equiv="refresh" content="3;url=' . append_sid("privmsg.$phpEx?folder=inbox") . '">')
- );
- $msg = $lang['Message_sent'] . '<br /><br />' . sprintf($lang['Click_return_inbox'], '<a href="' . append_sid("privmsg.$phpEx?folder=inbox") . '">', '</a> ') . '<br /><br />' . sprintf($lang['Click_return_index'], '<a href="' . append_sid("index.$phpEx") . '">', '</a>');
- message_die(GENERAL_MESSAGE, $msg);
- }
- else if ( $preview || $refresh || $error )
- {
- //
- // If we're previewing or refreshing then obtain the data
- // passed to the script, process it a little, do some checks
- // where neccessary, etc.
- //
- $to_username = ( isset($HTTP_POST_VARS['username']) ) ? trim(strip_tags(stripslashes($HTTP_POST_VARS['username']))) : '';
- $privmsg_subject = ( isset($HTTP_POST_VARS['subject']) ) ? trim(strip_tags(stripslashes($HTTP_POST_VARS['subject']))) : '';
- $privmsg_message = ( isset($HTTP_POST_VARS['message']) ) ? trim($HTTP_POST_VARS['message']) : '';
- $privmsg_message = preg_replace('#<textarea>#si', '<textarea>', $privmsg_message);
- if ( !$preview )
- {
- $privmsg_message = stripslashes($privmsg_message);
- }
- //
- // Do mode specific things
- //
- if ( $mode == 'post' )
- {
- $page_title = $lang['Post_new_pm'];
- $user_sig = ( $userdata['user_sig'] != '' && $board_config['allow_sig'] ) ? $userdata['user_sig'] : '';
- }
- else if ( $mode == 'reply' )
- {
- $page_title = $lang['Post_reply_pm'];
- $user_sig = ( $userdata['user_sig'] != '' && $board_config['allow_sig'] ) ? $userdata['user_sig'] : '';
- }
- else if ( $mode == 'edit' )
- {
- $page_title = $lang['Edit_pm'];
- $sql = "SELECT u.user_id, u.user_sig
- FROM " . PRIVMSGS_TABLE . " pm, " . USERS_TABLE . " u
- WHERE pm.privmsgs_id = $privmsg_id
- AND u.user_id = pm.privmsgs_from_userid";
- if ( !($result = $db->sql_query($sql)) )
- {
- message_die(GENERAL_ERROR, "Could not obtain post and post text", "", __LINE__, __FILE__, $sql);
- }
- if ( $postrow = $db->sql_fetchrow($result) )
- {
- if ( $userdata['user_id'] != $postrow['user_id'] )
- {
- message_die(GENERAL_MESSAGE, $lang['Edit_own_posts']);
- }
- $user_sig = ( $postrow['user_sig'] != '' && $board_config['allow_sig'] ) ? $postrow['user_sig'] : '';
- }
- }
- }
- else
- {
- if ( !$privmsg_id && ( $mode == 'reply' || $mode == 'edit' || $mode == 'quote' ) )
- {
- message_die(GENERAL_ERROR, $lang['No_post_id']);
- }
- if ( !empty($HTTP_GET_VARS[POST_USERS_URL]) )
- {
- $user_id = intval($HTTP_GET_VARS[POST_USERS_URL]);
- $sql = "SELECT username
- FROM " . USERS_TABLE . "
- WHERE user_id = $user_id
- AND user_id <> " . ANONYMOUS;
- if ( !($result = $db->sql_query($sql)) )
- {
- $error = TRUE;
- $error_msg = $lang['No_such_user'];
- }
- if ( $row = $db->sql_fetchrow($result) )
- {
- $to_username = $row['username'];
- }
- }
- if ( $mode == 'edit' )
- {
- $sql = "SELECT pm.*, pmt.privmsgs_bbcode_uid, pmt.privmsgs_text, u.username, u.user_id, u.user_sig
- FROM " . PRIVMSGS_TABLE . " pm, " . PRIVMSGS_TEXT_TABLE . " pmt, " . USERS_TABLE . " u
- WHERE pm.privmsgs_id = $privmsg_id
- AND pmt.privmsgs_text_id = pm.privmsgs_id
- AND pm.privmsgs_from_userid = " . $userdata['user_id'] . "
- AND ( pm.privmsgs_type = " . PRIVMSGS_NEW_MAIL . "
- OR pm.privmsgs_type = " . PRIVMSGS_UNREAD_MAIL . " )
- AND u.user_id = pm.privmsgs_to_userid";
- if ( !($result = $db->sql_query($sql)) )
- {
- message_die(GENERAL_ERROR, 'Could not obtain private message for editing', '', __LINE__, __FILE__, $sql);
- }
- if ( !($privmsg = $db->sql_fetchrow($result)) )
- {
- $header_location = ( @preg_match('/Microsoft|WebSTAR|Xitami/', getenv('SERVER_SOFTWARE')) ) ? 'Refresh: 0; URL=' : 'Location: ';
- header($header_location . append_sid("privmsg.$phpEx?folder=$folder", true));
- exit;
- }
- $privmsg_subject = $privmsg['privmsgs_subject'];
- $privmsg_message = $privmsg['privmsgs_text'];
- $privmsg_bbcode_uid = $privmsg['privmsgs_bbcode_uid'];
- $privmsg_bbcode_enabled = ($privmsg['privmsgs_enable_bbcode'] == 1);
- if ( $privmsg_bbcode_enabled )
- {
- $privmsg_message = preg_replace("/\:(([a-z0-9]:)?)$privmsg_bbcode_uid/si", '', $privmsg_message);
- }
-
- $privmsg_message = str_replace('<br />', "\n", $privmsg_message);
- $privmsg_message = preg_replace('#</textarea>#si', '</textarea>', $privmsg_message);
- $user_sig = ( $board_config['allow_sig'] ) ? $privmsg['user_sig'] : '';
- $to_username = $privmsg['username'];
- $to_userid = $privmsg['user_id'];
- }
- else if ( $mode == 'reply' || $mode == 'quote' )
- {
- $sql = "SELECT pm.privmsgs_subject, pm.privmsgs_date, pmt.privmsgs_bbcode_uid, pmt.privmsgs_text, u.username, u.user_id
- FROM " . PRIVMSGS_TABLE . " pm, " . PRIVMSGS_TEXT_TABLE . " pmt, " . USERS_TABLE . " u
- WHERE pm.privmsgs_id = $privmsg_id
- AND pmt.privmsgs_text_id = pm.privmsgs_id
- AND pm.privmsgs_to_userid = " . $userdata['user_id'] . "
- AND u.user_id = pm.privmsgs_from_userid";
- if ( !($result = $db->sql_query($sql)) )
- {
- message_die(GENERAL_ERROR, 'Could not obtain private message for editing', '', __LINE__, __FILE__, $sql);
- }
- if ( !($privmsg = $db->sql_fetchrow($result)) )
- {
- $header_location = ( @preg_match('/Microsoft|WebSTAR|Xitami/', getenv('SERVER_SOFTWARE')) ) ? 'Refresh: 0; URL=' : 'Location: ';
- header($header_location . append_sid("privmsg.$phpEx?folder=$folder", true));
- exit;
- }
- $privmsg_subject = ( ( !preg_match('/^Re:/', $privmsg['privmsgs_subject']) ) ? 'Re: ' : '' ) . $privmsg['privmsgs_subject'];
- $to_username = $privmsg['username'];
- $to_userid = $privmsg['user_id'];
- if ( $mode == 'quote' )
- {
- $privmsg_message = $privmsg['privmsgs_text'];
- $privmsg_bbcode_uid = $privmsg['privmsgs_bbcode_uid'];
- $privmsg_message = preg_replace("/\:(([a-z0-9]:)?)$privmsg_bbcode_uid/si", '', $privmsg_message);
- $privmsg_message = str_replace('<br />', "\n", $privmsg_message);
- $privmsg_message = preg_replace('#</textarea>#si', '</textarea>', $privmsg_message);
-
- $msg_date = create_date($board_config['default_dateformat'], $privmsg['privmsgs_date'], $board_config['board_timezone']);
- $privmsg_message = '[quote="' . $to_username . '"]' . $privmsg_message . '[/quote]';
- $mode = 'reply';
- }
- }
- }
- //
- // Has admin prevented user from sending PM's?
- //
- if ( !$userdata['user_allow_pm'] && $mode != 'edit' )
- {
- $message = $lang['Cannot_send_privmsg'];
- message_die(GENERAL_MESSAGE, $message);
- }
- //
- // Start output, first preview, then errors then post form
- //
- $page_title = $lang['Send_private_message'];
- include($phpbb_root_path . 'includes/page_header.'.$phpEx);
- if ( $preview && !$error )
- {
- $orig_word = array();
- $replacement_word = array();
- obtain_word_list($orig_word, $replacement_word);
- if ( $bbcode_on )
- {
- $bbcode_uid = make_bbcode_uid();
- }
- $preview_message = stripslashes(prepare_message($privmsg_message, $html_on, $bbcode_on, $smilies_on, $bbcode_uid));
- $privmsg_message = stripslashes(preg_replace($html_entities_match, $html_entities_replace, $privmsg_message));
- //
- // Finalise processing as per viewtopic
- //
- if ( !$html_on )
- {
- if ( $user_sig != '' || !$userdata['user_allowhtml'] )
- {
- $user_sig = preg_replace('#(<)([\/]?.*?)(>)#is', "<\\2>", $user_sig);
- }
- }
- if ( $attach_sig && $user_sig != '' && $userdata['user_sig_bbcode_uid'] )
- {
- $user_sig = bbencode_second_pass($user_sig, $userdata[…
Large files files are truncated, but you can click here to view the full file