function commentsSave($data) { global $cms_db_tables; $data = stripFromArray($data); $data = htmlspecialchars_deep($data); $table = $cms_db_tables['table_comments']; //$data_to_save_options ['delete_cache_groups'] = array ('comments' ); $id = CI::model('core')->saveData($table, $data); if (intval($id) != 0) { CI::model('core')->cleanCacheGroup('comments/' . $id); } CI::model('core')->cleanCacheGroup('comments/global'); if (trim($data['to_table']) != '' and trim($data['to_table_id']) != '') { $cache_group = "comments/{$data['to_table']}/{$data['to_table_id']}"; //var_dump($cache_group); CI::model('core')->cleanCacheGroup($cache_group); } return $id; }
function message_send() { exit('Function ' . __FUNCTION__ . ' moved to the users API'); if ($_POST) { $this->_requireLogin(); $currentUser = CI::library('session')->userdata('user'); $messageKey = $_POST['mk']; unset($_POST['mk']); $messageKey = base64_decode($messageKey); $messageKey = CI::model('core')->securityDecryptString($messageKey); if ($currentUser['email'] != $messageKey) { exit(1); } $data = $_POST; $data = stripFromArray($data); $data = htmlspecialchars_deep($data); /* * Format data array */ // from user $data['from_user'] = intval($currentUser['id']); // to user $data['to_user'] = intval($data['receiver']); unset($data['receiver']); // parent id if ($data['conversation']) { $data['parent_id'] = $data['conversation']; } unset($data['conversation']); // validate 'to_user' if ($data['parent_id']) { $parentMessage = CI::model('core')->fetchDbData('firecms_messages', array(array('id', $data['parent_id']))); $parentMessage = $parentMessage[0]; if (!in_array($data['to_user'], array($parentMessage['from_user'], $parentMessage['to_user']))) { throw new Exception('Cheating detected.'); } } $sent = CI::model('core')->saveData('firecms_messages', $data); echo $sent; CI::model('core')->cleanCacheGroup('messages'); } }
function message_send() { require_once APPPATH . 'controllers/api/_api_require_login.php'; if ($_POST) { $currentUser = CI::library('session')->userdata('user'); $messageKey = $_POST['mk']; unset($_POST['mk']); //$messageKey = ( $messageKey ); $messageKey = CI::model('core')->securityDecryptString($messageKey); //var_dump( CI::model('core')->userId (), $messageKey); if (CI::model('core')->userId() != $messageKey) { exit('Error in $messageKey'); } $data = $_POST; $data = stripFromArray($data); $data = htmlspecialchars_deep($data); /* * Format data array */ // from user $data['from_user'] = intval(CI::model('core')->userId()); // to user if (intval($data['receiver']) == 0) { $data['receiver'] = $data['to_user']; } $data['to_user'] = intval($data['receiver']); unset($data['receiver']); // parent id if ($data['conversation']) { $data['parent_id'] = $data['conversation']; } unset($data['conversation']); // validate 'to_user' if ($data['parent_id']) { $parentMessage = CI::model('core')->fetchDbData(TABLE_PREFIX . 'messages', array(array('id', $data['parent_id']))); $parentMessage = $parentMessage[0]; if (!in_array($data['to_user'], array($parentMessage['from_user'], $parentMessage['to_user']))) { //throw new Exception ( 'Cheating detected.' ); } } $data['is_read'] = 'n'; $sent = CI::model('messages')->messageSave($data); if (intval($data['parent_id']) != 0) { $data2 = array(); $data2['is_read'] = 'n'; $data2 = CI::model('messages')->messageSave($data2); $cache_group = 'users/messages/' . $data['parent_id']; CI::model('core')->cleanCacheGroup($cache_group); } //echo $sent; echo 'Message sent'; $cache_group = 'users/messages/global/'; CI::model('core')->cleanCacheGroup($cache_group); } }