public function _delete($db, $cid, $isdel = true)
{
$cid = trim($cid);
$cid = (int) $cid;
if (!$cid) {
return prompt::info('非法访问!');
}
$sql = "select * from class where cid='{$cid}'";
$result = $db->_query($sql);
if (!($class = $result->fetch())) {
return prompt::info('栏目不存在!');
}
if ($class['isfinal']) {
$sql = "insert into recyclebin (cid, name, tname, `thetime`, `alias`, tables_num, records_num) values ('{$parent}', '{$class['classname']}', '{$class['tname']}', now(), '{$class['alias']}', '{$class['tables_num']}', '{$class['records_num']}')";
$db->insert($sql);
} else {
$pcid = $class['parentclass'] . '|' . $cid . ',%';
$sql = "select * from class where parentclass like '{$pcid}'";
$result = $db->_query($sql);
$num_rows = $result->num_rows;
for ($i = 0; $i < $num_rows; ++$i) {
$subclass = $result->fetch();
if ($subclass['isfinal']) {
$sql = "insert into recyclebin (cid, name, tname, `thetime`, `alias`, tables_num, records_num) values ('{$parent}', '{$class['classname']}', '{$class['tname']}', now(), '{$class['alias']}', '{$class['tables_num']}', '{$class['records_num']}')";
$db->insert($sql);
}
$sql = "delete from class where cid='{$subclass['cid']}'";
$db->del($sql);
}
}
if ($isdel) {
$sql = "delete from class where cid='{$cid}'";
$db->del($sql);
}
$this->deldir($class['dir'], $isdel);
}
public function add_comment($db)
{
if (is_string($user = user::login($db))) {
return $user;
}
if (is_string($group = user::group($db, $user['gid']))) {
return $group;
}
if (!$group['iscomment']) {
return prompt::error(305, $group['gname'] . '不能发布评论!');
}
if (isset($_POST['pid']) && isset($_POST['hascomment']) && isset($_POST['comment_content'])) {
$hascomment = trim($_POST['hascomment']);
//if($hascomment !== '1' && $hascomment !== '0') return prompt::error(305, '模板错误!');
$aid = trim($_POST['aid']);
if (!($aid = (int) $aid)) {
return prompt::error(305, '模板错误!');
}
$pid = trim($_POST['pid']);
$hascomment = (int) $hascomment;
$pid = (int) $pid;
$comment = filter($_POST['comment_content']);
if ($comment === '') {
return prompt::error(305, '评论内容不能为空!');
}
} else {
return prompt::error(305, '非法访问!');
}
if (!$hascomment) {
$sql = "update article set hascomment=1 where aid={$aid}";
$db->update($sql, 1);
}
$uid = $user['uid'];
$username = $user['username'];
$ip = $_SERVER['REMOTE_ADDR'];
$sql = "insert into comment (`pid`, `aid`, `comment`, `uid`, `username`, `ip`, `posttime`) values ('{$pid}', '{$aid}', '{$comment}', '{$uid}', '{$username}', '{$ip}', now())";
$db->insert($sql);
}
