function test($serviceId)
{
$tableau = Connexion::query('select url,port,texte,trl from services where id=\'' . $serviceId . '\'');
$url = $tableau[0][0];
$port = $tableau[0][1];
$texte = $tableau[0][2];
$ping = ping($url, $port, $texte, $tableau[0][3]);
$date = date('Y-m-d');
$heure = date('H:i:s');
$trl = $ping[2];
$etat = $ping[0] == true ? 1 : 0;
$codeHttp = strlen($ping[1]) != 3 ? '500' : $ping[1];
Connexion::exec('insert into tests (service_id,date,heure,trl,etat,codeHttp) values (\'' . $serviceId . '\',\'' . $date . '\',\'' . $heure . '\',\'' . $trl . '\',\'' . $etat . '\',\'' . $codeHttp . '\')');
if ($ping[0] == false or $trl * 1000 > $tableau[0][3] or $codeHttp != '200') {
$res = false;
} else {
$res = true;
validation($serviceId, $date, $heure);
}
if ($res == false) {
notif($serviceId, $date, $heure);
erreur($serviceId, $date, $heure);
}
return $res;
}
<?php
session_start();
$titre = "Editer un film";
$balises = true;
include "includes/identifiants.php";
include "includes/debut.php";
include "includes/navbar.php";
//debut code
echo '<div class="container"><div class="row">';
if ($id == 0) {
erreur(ERR_IS_NOT_CO);
} else {
$action = isset($_GET['action']) ? htmlspecialchars($_GET['action']) : '';
switch ($action) {
case 'post':
if (isset($_POST['title']) && isset($_POST['id'])) {
$id_mov = htmlspecialchars($_POST['id']);
$name = htmlspecialchars($_POST['title']);
$desc_short = isset($_POST['shortDescription']) ? htmlspecialchars($_POST['shortDescription']) : '';
$desc_long = isset($_POST['longDescription']) ? htmlspecialchars($_POST['longDescription']) : '';
$author = isset($_POST['director']) ? htmlspecialchars($_POST['director']) : '';
$year = isset($_POST['year']) ? htmlspecialchars($_POST['year']) : '';
$query = $db->prepare('UPDATE movie SET mov_name = :name, mov_description_short = :desc_short, mov_description_long = :desc_long, mov_author = :author, mov_year = :year WHERE mov_id = :id');
$query->execute(array('name' => $name, 'desc_short' => $desc_short, 'desc_long' => $desc_long, 'author' => $author, 'year' => $year, 'id' => $id_mov));
$query->CloseCursor();
$upload_image = upload('image', './images/movie/' . $id_mov, 1048576, array('png', 'gif', 'jpg', 'jpeg'));
if ($upload_image) {
echo 'Photo sauvegardée.</br>';
}
echo 'Film édité avec succes.';
} else {
$arr = array('status' => 1, 'pseudo_dest' => $pseudo_dest, 'pseudo_exp' => $pseudo_exp);
echo json_encode($arr);
}
}
} else {
$arr = array('status' => 0, 'err' => "Une erreur est survenue");
echo json_encode($arr);
}
} else {
$error = erreur('TOO_MANY_CARACT_MSG');
$arr = array('status' => 0, 'err' => $error);
echo json_encode($arr);
}
} else {
$error = erreur('TOO_MANY_LINES_MSG');
$arr = array('status' => 0, 'err' => $error);
echo json_encode($arr);
}
}
}
/* Récupérer les nouveaux msg privés */
if (isset($_POST['lastmsgid']) && isset($_POST['id_conv']) && isset($_POST['update_msg'])) {
$lastid = $_POST['lastmsgid'];
$id_conv = $_POST['id_conv'];
$updatemsg = $DB_con->prepare("SELECT * FROM messages WHERE id_conv=:id_conv AND id > :id ORDER BY id ASC");
$updatemsg->execute(array('id_conv' => $id_conv, 'id' => $lastid));
$nb_resultats = $updatemsg->rowCount();
if ($nb_resultats > 0) {
$donnees = array();
while ($resultline = $updatemsg->fetch(PDO::FETCH_ASSOC)) {
setFlash($error, "success");
$user->redirect('/deconnexion?logout=true');
} else {
$error = erreur('ACCOUNT_FAIL_DELETE');
setFlash($error, "danger");
}
} else {
$error = erreur('USER_ACTUAL_PASSWORD_FAIL');
setFlash($error, "danger");
}
} else {
$error = erreur('USER_NO_CHECK');
setFlash($error, "danger");
}
} else {
$error = erreur('USER_NO_FIELDTEXT');
setFlash($error, "danger");
}
}
}
require $_SERVER['DOCUMENT_ROOT'] . '/app/controllers/navbar.php';
?>
<div class="container" id="firstcontainer">
<div class="row">
<div class="col-sm-2 col-md-3"></div>
<div class="col-xs-12 col-sm-8 col-md-6" id="divparams">
<h2 class="page-header">Paramètres du compte</h2>
<?php
flash();
if (isset($_GET['suppr']) && !empty($_GET['suppr']) && $_GET['suppr'] == "user") {
function read_xml_file()
{
global $xml_liste_fichiers;
global $local_install_dir;
global $xml_infos;
global $install_files;
global $install_dirs;
global $install_infos;
// Création du parseur XML
$parseurXML = xml_parser_create("ISO-8859-1");
// Nom des fonctions à appeler lorsque des balises ouvrantes ou fermantes sont rencontrées
xml_set_element_handler($parseurXML, "fonctionBaliseOuvrante", "fonctionBaliseFermante");
// Nom de la fonction à appeler lorsque du texte est rencontré
xml_set_character_data_handler($parseurXML, "fonctionTexte");
// Ouverture du fichier
if (!($fp = @fopen($local_install_dir . $xml_liste_fichiers, "r"))) {
$erreur = "Impossible de lire le fichier XML (Listing des fichiers à Uploader)";
}
if (!$fp) {
erreur("Impossible d'ouvrir le fichier XML");
}
// Lecture ligne par ligne
while ($ligneXML = fgets($fp, 1024)) {
// Analyse de la ligne
// REM: feof($fp) retourne TRUE s'il s'agit de la dernière ligne du fichier.
xml_parse($parseurXML, $ligneXML, feof($fp)) or erreur("Fichier incorrect sur LM.fr");
}
xml_parser_free($parseurXML);
fclose($fp);
$xml_infos = array("install_files" => $install_files, "install_dirs" => $install_dirs, "install_infos" => $install_infos);
return $xml_infos;
}
$ok = false;
}
lire_fichier(dirname(__FILE__) . "/css/expected_highest_screen.css", $expected);
$compacte = minifier_css($css_code, array('media' => 'screen', 'template' => 'highest'));
if (rtrim($compacte) != rtrim($expected)) {
erreur("minifier_css(array('media'=>'screen','template'=>'highest'))", $compacte, $expected);
$ok = false;
}
lire_fichier(dirname(__FILE__) . "/css/source_simple.css", $css_code);
lire_fichier(dirname(__FILE__) . "/css/expected_simple.css", $expected);
$compacte = minifier_css($css_code, 'screen');
if (rtrim($compacte) != rtrim($expected)) {
erreur("minifier_css('screen')", $compacte, $expected);
$ok = false;
}
lire_fichier(dirname(__FILE__) . "/css/expected_url_abs.css", $expected);
lire_fichier(dirname(__FILE__) . "/css/source_url_abs.css", $source);
$compacte = urls_absolues_css($source, "http://example.org/squelettes/source.css");
if (rtrim($compacte) != rtrim($expected)) {
erreur("urls_absolues_css()", $compacte, $expected);
$ok = false;
}
if ($ok) {
echo "OK";
}
function erreur($titre, $result, $expected)
{
echo "Erreur {$titre}<br />";
echo "<tt>Resultat:</tt><pre>{$result}</pre>";
echo "<tt>Attendu :</tt><pre>{$expected}</pre>";
}
<?php
session_start();
$titre = "Poster";
$balises = true;
include "includes/identifiants.php";
include "includes/debut.php";
include "includes/menu.php";
//Qu'est ce qu'on veut faire ? poster, répondre ou éditer ?
$action = isset($_GET['action']) ? htmlspecialchars($_GET['action']) : '';
//Il faut être connecté pour poster !
if ($id == 0) {
erreur(ERR_IS_CO);
}
//Si on veut poster un nouveau topic, la variable f se trouve dans l'url,
//On récupère certaines valeurs
if (isset($_GET['f'])) {
$forum = (int) $_GET['f'];
$query = $db->prepare('SELECT forum_name, auth_view, auth_post, auth_topic, auth_annonce, auth_modo
FROM forum_forum WHERE forum_id =:forum');
$query->bindValue(':forum', $forum, PDO::PARAM_INT);
$query->execute();
$data = $query->fetch();
echo '<p><i>Vous êtes ici</i> : <a href="./index.php">Index du forum</a> -->
<a href="./voirforum.php?f=' . $data['forum_id'] . '">' . stripslashes(htmlspecialchars($data['forum_name'])) . '</a>
--> Nouveau topic</p>';
} elseif (isset($_GET['t'])) {
$topic = (int) $_GET['t'];
$query = $db->prepare('SELECT topic_titre, forum_topic.forum_id,
forum_name, auth_view, auth_post, auth_topic, auth_annonce, auth_modo
FROM forum_topic
if (rtrim($compacte) != rtrim($expected)) {
erreur("minifier_css('screen')", $compacte, $expected);
$ok = false;
}
$compacte = minifier_css($css_code, array('media' => 'screen'));
if (rtrim($compacte) != rtrim($expected)) {
erreur("minifier_css(array('media'=>'screen'))", $compacte, $expected);
$ok = false;
}
lire_fichier(dirname(__FILE__) . "/css/expected_highest_screen.css", $expected);
$compacte = minifier_css($css_code, array('media' => 'screen', 'template' => 'highest'));
if (rtrim($compacte) != rtrim($expected)) {
erreur("minifier_css(array('media'=>'screen','template'=>'highest'))", $compacte, $expected);
$ok = false;
}
lire_fichier(dirname(__FILE__) . "/css/source_simple.css", $css_code);
lire_fichier(dirname(__FILE__) . "/css/expected_simple.css", $expected);
$compacte = minifier_css($css_code, 'screen');
if (rtrim($compacte) != rtrim($expected)) {
erreur("minifier_css('screen')", $compacte, $expected);
$ok = false;
}
if ($ok) {
echo "OK";
}
function erreur($titre, $result, $expected)
{
echo "Erreur {$titre}<br />";
echo "<tt>Resultat:</tt><pre>{$result}</pre>";
echo "<tt>Attendu :</tt><pre>{$expected}</pre>";
}
function update($db, $params, $cle, $nomcle = "cle")
{
$liste = "";
$compt = 0;
$donnees = array();
foreach ($params as $champ => $valeur) {
if ($liste != "") {
$liste = $liste . ", ";
}
$liste = $liste . "`" . $champ . "` = :valeur" . $compt;
$donnees['valeur' . $compt] = $params[$champ] === false ? null : $params[$champ];
$compt++;
}
$requete = "UPDATE `" . $db . "` SET " . $liste . " Where `" . $nomcle . "` = " . $this->quote($cle) . "";
$traitement = $this->prepare($requete);
$num = 0;
foreach ($donnees as $champ => $valeur) {
$traitement->bindValue(":" . $champ . "", $valeur);
}
$resultat = $traitement->execute();
if ($resultat) {
return $resultat;
} else {
// erreur
erreur(print_r($traitement->errorInfo(), true));
return false;
}
}
session_start();
$titre = "Voir un forum";
include "includes/identifiants.php";
include "includes/debut.php";
include "includes/menu.php";
//On récupère la valeur de f
$forum = (int) $_GET['f'];
//A partir d'ici, on va compter le nombre de messages
//pour n'afficher que les 25 premiers
$query = $db->prepare('SELECT forum_name, forum_topic, auth_view, auth_topic FROM forum_forum WHERE forum_id = :forum');
$query->bindValue(':forum', $forum, PDO::PARAM_INT);
$query->execute();
$data = $query->fetch();
if (!verif_auth($data['auth_view'])) {
erreur(ERR_AUTH_VIEW);
}
$totalDesMessages = $data['forum_topic'] + 1;
$nombreDeMessagesParPage = 25;
$nombreDePages = ceil($totalDesMessages / $nombreDeMessagesParPage);
echo '<p><i>Vous êtes ici</i> : <a href="./index.php">Index du forum</a> -->
<a href="./voirforum.php?f=' . $forum . '">' . stripslashes(htmlspecialchars($data['forum_name'])) . '</a>';
//Nombre de pages
$page = isset($_GET['page']) ? intval($_GET['page']) : 1;
//On affiche les pages 1-2-3, etc.
echo '<p>Page : ';
for ($i = 1; $i <= $nombreDePages; $i++) {
if ($i == $page) {
echo $i;
} else {
echo '
exit(-1);
}
$debug = isset($_POST['debug']);
$criteres = $actions = NULL;
if (!isset($_POST['criteres']) || !isset($_POST['actions'])) {
if ($debug) {
echo 'Pas de paramètres POST, utilisation de constantes.<br /><br />';
$criteres = ['Cr1' => 3, 'Cr2' => 2, 'Cr3' => 3, 'Cr4' => 1, 'Cr5' => 1];
echo json_encode($criteres);
$actions = ['P1' => ['Cr1' => 10, 'Cr2' => 20, 'Cr3' => 5, 'Cr4' => 10, 'Cr5' => 16], 'P2' => ['Cr1' => 0, 'Cr2' => 5, 'Cr3' => 5, 'Cr4' => 16, 'Cr5' => 10], 'P3' => ['Cr1' => 0, 'Cr2' => 10, 'Cr3' => 0, 'Cr4' => 16, 'Cr5' => 7], 'P4' => ['Cr1' => 20, 'Cr2' => 5, 'Cr3' => 10, 'Cr4' => 10, 'Cr5' => 13], 'P5' => ['Cr1' => 20, 'Cr2' => 10, 'Cr3' => 15, 'Cr4' => 10, 'Cr5' => 13], 'P6' => ['Cr1' => 20, 'Cr2' => 10, 'Cr3' => 20, 'Cr4' => 13, 'Cr5' => 13]];
echo json_encode($actions);
} else {
erreur('veuillez passer des chaines JSON `criteres` et `actions` en paramètre POST.');
}
} else {
$criteres = json_decode($_POST['criteres'], TRUE);
if ($criteres == NULL) {
erreur('chaine JSON `criteres` malformée.');
}
$actions = json_decode($_POST['actions'], TRUE);
if ($actions == NULL) {
erreur('chaine JSON `actions` malformée.');
}
}
if ($debug) {
electre1($criteres, $actions, TRUE);
} else {
$result = json_encode(electre1($criteres, $actions));
header('Content-Type: application/json');
echo $result;
}
$passwordrepeat = $_POST['passwordrepeat'];
if ($password == $passwordrepeat) {
if (strlen(utf8_decode($password)) > 5) {
$passwordhash = passwordhash($password);
$changepass = $DB_con->prepare("UPDATE users SET password=:password WHERE email=:email");
$changepass->execute(array('password' => $passwordhash, 'email' => $_GET['email']));
$deletetoken = $DB_con->prepare("DELETE FROM forget_password WHERE email=:email AND token=:token");
$deletetoken->execute(array('email' => $_GET['email'], 'token' => $_GET['token']));
setFlash('Votre mot de passe a bien été changé ! Reconnectez vous', "success");
$user->redirect('/connexion');
} else {
$error = erreur('USER_PASSWORD_CARACT');
setFlash($error, "danger");
}
} else {
$error = erreur('USER_SAME_PASSWORD');
setFlash($error, "danger");
}
}
if (isset($_GET['email']) && isset($_GET['token'])) {
$checktoken = $DB_con->prepare("SELECT * FROM forget_password WHERE email=:email AND token=:token LIMIT 1");
$checktoken->execute(array('email' => $_GET['email'], 'token' => $_GET['token']));
if ($checktoken->rowCount() > 0) {
$resetpasswordok = true;
} else {
setFlash('L\'url de réinitialisation est incorrect !', "danger");
$user->redirect('/connexion');
}
}
require $_SERVER['DOCUMENT_ROOT'] . '/app/controllers/navbar.php';
?>
/* Connexion de l'utilisateur */
if (isset($_POST['submitconnexion'])) {
$encoding = 'utf-8';
$username = trim($_POST['email']);
$username = htmlspecialchars($username, ENT_QUOTES, $encoding);
$password = trim($_POST['password']);
$password = htmlspecialchars($password, ENT_QUOTES, $encoding);
$username = mb_strtolower($username, 'UTF-8');
if (empty($username) || empty($password)) {
$error = erreur('USER_NO_FIELDTEXT');
setFlash($error, "danger");
} else {
if ($user->login($username, $password)) {
$user->redirect('/');
} else {
$error = erreur('USER_ID_ERROR');
setFlash($error, "danger");
}
}
}
require $_SERVER['DOCUMENT_ROOT'] . '/app/controllers/navbar.php';
?>
<div class="container" id="firstcontainer">
<div class="row">
<div class="col-sm-2 col-md-3"></div>
<div class="col-xs-12 col-sm-8 col-md-6">
<h2 class="page-header" style="margin-bottom: 35px;border-bottom: 1px solid #9E9E9E;text-align: center;">Connexion</h2>
<form method="post" accept-charset="UTF-8">
<div class="row">
<?php
flash();
if (empty($descfile) || empty($_FILES['fileinput']['name'])) {
$error = erreur('USER_NO_FIELDTEXT');
setFlash($error, "danger");
} else {
if (strlen(utf8_decode($descfile)) <= 55) {
if ($result = $fichier->uploadfile('fileinput', '/uploads/sharefiles/', $descfile, $conf)) {
if ($result['status'] != 1) {
$error = $result['err'];
setFlash($error, "danger");
} else {
$success = "Le fichier à bien été partagé";
setFlash($success, "success");
$user->redirect('/partage_fichiers');
}
} else {
$error = erreur('FAIL_UPLOAD_FILE');
setFlash($error, "danger");
}
} else {
$error = "Trop de caractères pour la description (50 max)";
setFlash($error, "danger");
}
}
}
if (isset($_GET['id']) && isset($_GET['auteur']) && isset($_GET['date_fichier']) && isset($_GET['supprfile'])) {
$ifexistingfiles = $DB_con->prepare("SELECT * FROM fichier WHERE id=:id AND auteur=:auteur AND date_fichier=:date_fichier LIMIT 1");
$ifexistingfiles->execute(array('id' => $_GET['id'], 'auteur' => $_GET['auteur'], 'date_fichier' => $_GET['date_fichier']));
if ($ifexistingfiles->rowCount() > 0) {
$result = $ifexistingfiles->fetch();
$chemin_fichier = $_SERVER['DOCUMENT_ROOT'] . '/uploads/sharefiles/' . $result['nom'];
$access_file = '/uploads/sharefiles/' . $result['nom'];
/* On connecte l'utilisateur directement */
$session = md5(rand());
$lastco = strftime('%d %B %Y à %H:%M');
$updateMembre = $DB_con->prepare('UPDATE users SET session=:session, lastco=:lastco WHERE email=:email');
$updateMembre->execute(array('email' => $email, 'session' => $session, 'lastco' => $lastco));
$getuserinfo = $DB_con->prepare("SELECT id FROM users WHERE email=:email LIMIT 1");
$getuserinfo->execute(array('email' => $email));
$userRow = $getuserinfo->fetch(PDO::FETCH_ASSOC);
$_SESSION['session'] = $session;
$_SESSION['userid'] = $userRow['id'];
$_SESSION['userpseudo'] = $prenomplusnom;
$_SESSION['username'] = $pseudo;
$_SESSION['userclasse'] = $classe;
$user->redirect('/');
} else {
setFlash(erreur('SIGNUP_FAIL'), "danger");
}
}
} catch (PDOException $e) {
echo $e->getMessage();
}
}
}
}
}
}
}
}
}
}
require $_SERVER['DOCUMENT_ROOT'] . '/app/controllers/navbar.php';
echo '<p>Désolé ce membre n existe pas, veuillez vérifier et
réessayez à nouveau.</p>';
}
break;
case "supprimer":
//On récupère la valeur de l'id
$id_mess = (int) $_GET['id'];
//Il faut vérifier que le membre est bien celui qui a reçu le message
$query = $db->prepare('SELECT mp_receveur
FROM forum_mp WHERE mp_id = :id');
$query->bindValue(':id', $id_mess, PDO::PARAM_INT);
$query->execute();
$data = $query->fetch();
//Sinon la sanction est terrible :p
if ($id != $data['mp_receveur']) {
erreur(ERR_WRONG_USER);
}
$query->CloseCursor();
//2 cas pour cette partie : on est sûr de supprimer ou alors on ne l'est pas
$sur = (int) $_GET['sur'];
//Pas encore certain
if ($sur == 0) {
echo '<p>Etes-vous certain de vouloir supprimer ce message ?<br />
<a href="./messagesprives.php?action=supprimer&id=' . $id_mess . '&sur=1">
Oui</a> - <a href="./messagesprives.php">Non</a></p>';
} else {
$query = $db->prepare('DELETE from forum_mp WHERE mp_id = :id');
$query->bindValue(':id', $id_mess, PDO::PARAM_INT);
$query->execute();
$query->CloseCursor();
echo '<p>Le message a bien été supprimé.<br />
include $_SERVER['DOCUMENT_ROOT'] . '/app/view/post.template.php';
$view = ob_get_clean();
ob_end_flush();
$arr = array('status' => 1, 'view' => $view);
echo json_encode($arr);
} else {
$arr = array('status' => 0, 'err' => $erreur);
echo json_encode($arr);
}
} else {
$error = erreur('TOO_MANY_CARACT_POST');
$arr = array('status' => 0, 'err' => $error);
echo json_encode($arr);
}
} else {
$error = erreur('TOO_MANY_LINES');
$arr = array('status' => 0, 'err' => $error);
echo json_encode($arr);
}
}
}
/* Supprimer un post */
if (isset($_POST['post_id']) && isset($_POST['supprpost'])) {
$id_post = htmlspecialchars($_POST['post_id']);
if ($post->supprpost($id_post, $_SESSION['username'])) {
if ($comment->suppr_all_comments($id_post)) {
$arr = array('status' => 1);
echo json_encode($arr);
} else {
$arr = array('status' => 0, 'err' => $erreur);
echo json_encode($arr);
}
}
/* On update l'image de profil de l'utilisateur */
if (isset($_FILES['imgprofil'])) {
unset($_SESSION['imgprofil']);
if (!empty($_FILES['imgprofil']['name'])) {
if ($img->upload_img('imgprofil', '/images/profil/')) {
$error = erreur('CHANGE_INFO_SUCCESS');
setFlash($error, "success");
$user->redirect('/profiledit');
} else {
$error = "Erreur lors de l'upload";
setFlash($error, "danger");
}
} else {
$error = erreur('USER_NO_FILE_INPUT');
setFlash($error, "danger");
}
}
if (!isset($_SESSION['imgprofil'])) {
$hrefimgprofil = $img->get_img_profil($user_id, $id_user);
} else {
$hrefimgprofil = $_SESSION['imgprofil'];
}
require $_SERVER['DOCUMENT_ROOT'] . '/app/controllers/navbar.php';
?>
<div class="container" id="firstcontainer">
<div class="row">
<div class="col-xs-12" style="text-align: center;">
<div class="header_edit_profil">
<div class="profile-pic">
function authentificationRequire()
{
if (!isset($_SESSION["user"])) {
erreur(401, "Authentification requise : <a href='/Portail/Inscription'>Inscription</a> - <a href='/Portail/Connexion'>Connexion</a>");
}
}
if ($public_event == "friends") {
$public_event = "0";
} else {
if ($public_event == "public") {
$public_event = "1";
} else {
$public_event = "0";
}
}
if ($classe->addevent($name_event, $desc_event, $date_event, $type_event, $_SESSION['userclasse'], $public_event)) {
$arr = array('status' => 1);
echo json_encode($arr);
} else {
$arr = array('status' => 0, 'err' => $erreur);
echo json_encode($arr);
}
} else {
$error = erreur('TOO_MANY_CARACT_POST');
$arr = array('status' => 0, 'err' => $error);
echo json_encode($arr);
}
}
}
/* Ne plus afficher l'anniversaire */
if (isset($_POST['dontseeanniv'])) {
$_SESSION['avoidanniv'] = true;
}
/* Ne plus afficher l'evenement */
if (isset($_POST['dontseeevent'])) {
$_SESSION['avoidevent'] = true;
}
$nbrcomments = $comment->get_nbr_comments($post_id);
$last_comment = $comment->get_last_comment_user($post_id, $comment_auteur);
$comment_id = $last_comment['id'];
$numcomment = $comment_id;
ob_start();
include $_SERVER['DOCUMENT_ROOT'] . '/app/view/comment.template.php';
$view = ob_get_clean();
ob_end_flush();
$arr = array('status' => 1, 'view' => $view, 'nbrcomment' => $nbrcomments);
echo json_encode($arr);
} else {
$arr = array('status' => 0, 'err' => $erreur);
echo json_encode($arr);
}
} else {
$error = erreur('TOO_MANY_CARACT_COMMENT');
$arr = array('status' => 0, 'err' => $error);
echo json_encode($arr);
}
}
}
/* Afficher plus */
if (isset($_POST['post_id']) && isset($_POST['lastcomment']) && isset($_POST['loadmore'])) {
$id = htmlspecialchars($_POST['post_id']);
$lastcomment = (int) htmlspecialchars($_POST['lastcomment']);
$nbrcomments = $comment->get_nbr_comments($id);
$requeteoldcomments = $DB_con->prepare("SELECT * FROM comments WHERE id_post=:id_post ORDER BY id DESC LIMIT " . $lastcomment . ", 5");
$requeteoldcomments->execute(array('id_post' => $id));
$numcomment = $lastcomment;
while ($selectedComment = $requeteoldcomments->fetch()) {
$post_id = $id;
