print_no_permission(); } if (!($permissions['albumpermissions'] & $vbulletin->bf_ugp_albumpermissions['canviewalbum']) or !($vbulletin->options['socnet'] & $vbulletin->bf_misc_socnet['enable_albums'] and $vbulletin->options['socnet_groups_albums_enabled'])) { print_no_permission(); } if (!($group['options'] & $vbulletin->bf_misc_socialgroupoptions['enable_group_albums'])) { print_no_permission(); } if ($group['membertype'] != 'member' and !can_moderate(0, 'caneditalbumpicture')) { if ($vbulletin->userinfo['permissions']['socialgrouppermissions'] & $vbulletin->bf_ugp_socialgrouppermissions['canjoingroups'] and can_join_group($group)) { standard_error(fetch_error('must_be_group_member_view_add_pictures_join_x', 'group.php?' . $vbulletin->session->vars['sessionurl'] . 'do=join&groupid=' . $group['groupid'])); } else { standard_error(fetch_error('must_be_group_member_view_add_pictures')); } } $pictureinfo = fetch_socialgroup_picture($vbulletin->GPC['pictureid'], $group['groupid']); if (!$pictureinfo) { standard_error(fetch_error('invalidid', $vbphrase['picture'], $vbulletin->options['contactuslink'])); } $pictureinfo['adddate'] = vbdate($vbulletin->options['dateformat'], $pictureinfo['dateline'], true); $pictureinfo['addtime'] = vbdate($vbulletin->options['timeformat'], $pictureinfo['dateline']); $pictureinfo['caption_html'] = nl2br(fetch_word_wrapped_string(fetch_censored_text($pictureinfo['caption']))); $navpictures_sql = $db->query_read_slave("\n\t\tSELECT socialgrouppicture.pictureid\n\t\tFROM " . TABLE_PREFIX . "socialgrouppicture AS socialgrouppicture\n\t\tINNER JOIN " . TABLE_PREFIX . "picture AS picture ON (socialgrouppicture.pictureid = picture.pictureid)\n\t\tINNER JOIN " . TABLE_PREFIX . "socialgroupmember AS socialgroupmember ON\n\t\t\t(socialgroupmember.userid = picture.userid AND socialgroupmember.groupid = {$group['groupid']} AND socialgroupmember.type = 'member')\n\t\tWHERE socialgrouppicture.groupid = {$group['groupid']}\n\t\tORDER BY socialgrouppicture.dateline DESC\n\t"); $pic_location = fetch_picture_location_info($navpictures_sql, $pictureinfo['pictureid']); ($hook = vBulletinHook::fetch_hook('group_picture')) ? eval($hook) : false; $show['edit_picture_option'] = ($pictureinfo['userid'] == $vbulletin->userinfo['userid'] or can_moderate(0, 'caneditalbumpicture')); $show['remove_picture_option'] = ($pictureinfo['userid'] == $vbulletin->userinfo['userid'] or fetch_socialgroup_modperm('canremovepicture', $group)); if ($show['edit_picture_option']) { // we need an album this picture is in to edit it $album = $db->query_first_slave("\n\t\t\tSELECT albumid\n\t\t\tFROM " . TABLE_PREFIX . "albumpicture\n\t\t\tWHERE pictureid = {$pictureinfo['pictureid']}\n\t\t\tLIMIT 1\n\t\t"); }
if ($vbulletin->GPC['groupid']) { $group = fetch_socialgroupinfo($vbulletin->GPC['groupid']); if (!$group) { standard_error(fetch_error('invalidid', $vbphrase['social_group'], $vbulletin->options['contactuslink'])); } if (!($group['options'] & $vbulletin->bf_misc_socialgroupoptions['enable_group_albums'])) { print_no_permission(); } if ($group['membertype'] != 'member' and !can_moderate(0, 'caneditalbumpicture')) { if ($vbulletin->userinfo['permissions']['socialgrouppermissions'] & $vbulletin->bf_ugp_socialgrouppermissions['canjoingroups']) { standard_error(fetch_error('must_be_group_member_view_add_pictures_join_x', fetch_seo_url('group', $group))); } else { standard_error(fetch_error('must_be_group_member_view_add_pictures')); } } $pictureinfo = fetch_socialgroup_picture($vbulletin->GPC['attachmentid'], $vbulletin->GPC['groupid']); $navbits = array(fetch_seo_url('grouphome', array()) => $vbphrase['social_groups'], fetch_seo_url('group', $group) => $group['name'], fetch_seo_url('group', $group, array('do', 'grouppictures')) => $vbphrase['pictures']); } else { $pictureinfo = array(); } } if (!$pictureinfo or $pictureinfo['state'] == 'moderation') { standard_error(fetch_error('invalidid', $vbphrase['picture'], $vbulletin->options['contactuslink'])); } if ($vbulletin->GPC['commentid']) { $commentinfo = fetch_picturecommentinfo($pictureinfo['filedataid'], $pictureinfo['userid'], $vbulletin->GPC['commentid']); if (!$commentinfo) { standard_error(fetch_error('invalidid', $vbphrase['comment'], $vbulletin->options['contactuslink'])); } } else { $commentinfo = array();