function write() { $id = Request::post('entry_id'); $title = Request::post('title'); $body = Request::post('body'); $id_parent = Request::post('answer_to'); global $current_user; $query = 'SELECT * FROM `blog_entries` WHERE `id`=' . $id; $data = Database::sql2row($query); $entry = new Entrie($data); if (!$current_user->authorized) { throw new Exception('must be autorized'); } if (!$body) { throw new Exception('body missed'); } if (!$title) { throw new Exception('title missed'); } if ($id_parent) { // answer $query = 'SELECT * FROM `blog_entries_comments` WHERE `id`=' . $id_parent; $parent_comment = Database::sql2row($query); if ($parent_comment['id_parent'] > 0) { $answer_to = $id_parent; $id_parent = $parent_comment['id_parent']; } else { $answer_to = $id_parent; $id_parent = $parent_comment['id']; } } else { $answer_to = 0; $id_parent = 0; } $query = 'INSERT INTO `blog_entries_comments` SET `id_entry`=' . $id . ', `id_user`=' . $current_user->id . ', `id_parent`=' . $id_parent . ', `time`=' . time() . ', `title`=' . Database::escape($title) . ', `comment`=' . Database::escape($body) . ', `answer_to`=' . $answer_to; Database::query($query); $comment_id = Database::lastInsertId(); $entry->updateCommentsCount(); header('Location: ' . '/blog/' . $entry->user->getNickName() . '/' . $entry->id . '#comment-' . $comment_id); exit(0); }